SlideShare a Scribd company logo

Fools your enemy with MikroTik

Download as PPTX, PDF
D
Didiet Kusumadihardja

The document presents a presentation by Didiet Kusumadihardja at the Mikrotik User Meeting in 2016, focusing on IT security and the tactics used by hackers, specifically the stages of hacking and ways to mislead them using Mikrotik. It covers topics such as the global IT security incidents in Indonesia, cybercrime, and various hacking tools, along with the concept of honeypots to trap attackers. The presentation highlights strategies for utilizing fake servers and network address translation to confuse potential threats while improving security measures.

Internet
Related topics:
Information SecurityComputer Networking
1 of 46
Downloaded 206 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
Fools your enemy with Mikrotik BY: DIDIET KUSUMADIHARDJA MIKROTIK USER MEETING (MUM) 2016 JAKARTA, INDONESIA 14 OCTOBER 2016
About Me Didiet Kusumadihardja 1. IT Security Specialist  PT. Mitra Solusi Telematika 2. Trainer & IT Consultant  Arch Networks MTCNA, MTCINE, MTCWE, MTCUME, MTCTCE, MTCRE Didiet Kusumadihardja - didiet@arch.web.id 2
PT. Mitra Solusi Telematika Didiet Kusumadihardja - didiet@arch.web.id 3 Gedung TMT 2. GF Jl. Cilandak KKO Jakarta
Global IT Security Incident Didiet Kusumadihardja - didiet@arch.web.id 4
Global IT Security Incident 2014 Didiet Kusumadihardja - didiet@arch.web.id 5 Entire Network Canceled
Global IT Security Incident 2015 Didiet Kusumadihardja - didiet@arch.web.id 6 3 Tahun di Hack ( 2012 – 2015)
Global IT Security Incident 2016 Didiet Kusumadihardja - didiet@arch.web.id 7 500 Juta Account 3 Miliar Account ??? Source: Tech Times
Indonesia IT Security Incident Didiet Kusumadihardja - didiet@arch.web.id 8
Didiet Kusumadihardja - didiet@arch.web.id 9 Source: Akamai INDONESIA IS SAFE?
Indonesia IT Security Incident 2013 Didiet Kusumadihardja - didiet@arch.web.id 10 polri.go.id 2013 Deface Motive: Fame?
Indonesia IT Security Incident 2016 Didiet Kusumadihardja - didiet@arch.web.id 11 Teman Ahok DDoS Attack Motive: Politics?
Indonesia IT Security Incident 2016 Didiet Kusumadihardja - didiet@arch.web.id 12 Videotron Kebayoran Baru Jakarta Selatan Motive: Curiosity?
Source: Carnegie Mellon UniversityDidiet Kusumadihardja - didiet@arch.web.id 13 IT Security Trends Gak Perlu Pinter Buat Hacking
Hacking Tools Example Didiet Kusumadihardja - didiet@arch.web.id 14 Cain & Abel Kali Linux
Didiet Kusumadihardja - didiet@arch.web.id 15 Source: SCMagazine Modern Business Cybercrime as a Service (CaaS)
How Hackers do it? Didiet Kusumadihardja - didiet@arch.web.id 16
Hacking Phase 1.Reconnaissance 2.Scanning 3.Gaining Access 4.Maintaining Access 5.Clearing Tracks Source: Ethical Hacking by EC-CouncilDidiet Kusumadihardja - didiet@arch.web.id 17
Hacking Phase (Cont’d) 1.Reconnaissance 2.Scanning 3.Gaining Access 4.Maintaining Access 5.Clearing Tracks Information Gathering OS Detail Open Port Version Device Type Application Vulnerability Exploit Vulnerability Escalate Privilege Backdoors Delete/overwrite Event/Logs Data harvesting Didiet Kusumadihardja - didiet@arch.web.id 18
Hacking Phase Analogy 1.Reconnaissance 2.Scanning 3.Gaining Access 4.Maintaining Access 5.Clearing Tracks Didiet Kusumadihardja - didiet@arch.web.id 19
When we fools them? 1.Reconnaissance 2.Scanning 3.Gaining Access 4.Maintaining Access 5.Clearing Tracks Didiet Kusumadihardja - didiet@arch.web.id 20
Why at Scanning Phase? Didiet Kusumadihardja - didiet@arch.web.id 21 TELNET SSH
Scanning Tools SoftPerfect Network Scanner The Dude Didiet Kusumadihardja - didiet@arch.web.id 22
How to fools them? Didiet Kusumadihardja - didiet@arch.web.id 23
Use a bait Didiet Kusumadihardja - didiet@arch.web.id 24 Honey Pot Hacker Bait
Web Server Example Web Server HTTP HTTPS = Didiet Kusumadihardja - didiet@arch.web.id 25
Confuse your enemy Didiet Kusumadihardja - didiet@arch.web.id 26 HTTP HTTPS
Server Farm Network Example 192.168.1.2  DNS Server 192.168.1.5  Web Server 192.168.1.10  DB Server 192.168.1.15  Mail Server SERVER X Didiet Kusumadihardja - didiet@arch.web.id 27 192.168.1.0/24
Confuse your enemy 192.168.1.1  Fake Server 1 192.168.1.2  DNS Server 192.168.1.3  Fake Server 2 192.168.1.4  Fake Server 3 192.168.1.5  Web Server 192.168.1.6  Fake Server 4 192.168.1.7  Fake Server 5 192.168.1.8  Fake Server 6 192.168.1.9  Fake Server 7 192.168.1.10  DB Server 192.168.1.11  Fake Server 8 192.168.1.12  Fake Server 9 192.168.1.13  Fake Server 10 192.168.1.14  Fake Server 11 192.168.1.15  Mail Server Didiet Kusumadihardja - didiet@arch.web.id 28 192.168.1.0/24
How we do it with Mikrotik? Didiet Kusumadihardja - didiet@arch.web.id 29
NAT (Network Address Translation) Didiet Kusumadihardja - didiet@arch.web.id 30
Fake NAT Didiet Kusumadihardja - didiet@arch.web.id 31
Fake Ports at your Web Server HTTP & HTTPS to Legitimate Server Other Ports to Fake Server Didiet Kusumadihardja - didiet@arch.web.id 32
Simple NAT for Web Server INTERNET ROUTER WEB SERVER 192.168.2.3 Chain Action NAT (Port Mapping) Didiet Kusumadihardja - didiet@arch.web.id 33
Add Additional NAT for Bait Web Server 192.168.2.3 Fake Server (Honey Pot) 192.168.2.4 Didiet Kusumadihardja - didiet@arch.web.id 34 Chain Action
Fake Server at your Server Farm Network Only one legitimate server Others are Fake Server Didiet Kusumadihardja - didiet@arch.web.id 35
Another Example Web Server 192.168.2.3 Fake Server (Honey Pot) 192.168.2.4 Didiet Kusumadihardja - didiet@arch.web.id 36 Chain Action
Combine with Honey Pot Didiet Kusumadihardja - didiet@arch.web.id 37 KFSensor Others HoneyPot: Honeyd, Kippo, Dionaea, Nepenthes
What Hacker See (NMAP) Before After Didiet Kusumadihardja - didiet@arch.web.id 38 Nmap / Zenmap
What Hacker See (SoftPerfect NetScan) Before After Didiet Kusumadihardja - didiet@arch.web.id 39 SoftPerfect Network Scanner
I don’t want to use HoneyPot Didiet Kusumadihardja - didiet@arch.web.id 40 Step 1: Chain Step 2: Action
What we see, If someone PING Didiet Kusumadihardja - didiet@arch.web.id 41 SRC-MAC ADDRESS SRC-IP ADDRESS
What we see, If someone NMAP Didiet Kusumadihardja - didiet@arch.web.id 42 Mikrotik LOG:
The Dude, Hotspot & Userman Didiet Kusumadihardja - didiet@arch.web.id 43 IP Address  MAC Address  User ID  Person
Use Case 1 Didiet Kusumadihardja - didiet@arch.web.id 44 Internet Café (WARNET) University Office Insider Threat
Use Case 2 Didiet Kusumadihardja - didiet@arch.web.id 45 Analytics For Fun Learn hacking method from hacker / script kiddies Research http://public.honeynet.id (Low Interaction Honeypot) (High Interaction Honeypot)
Thank you . . Question? DIDIET KUSUMADIHARDJA didiet@arch.web.id http://didiet.arch.web.id/ https://www.facebook.com/ArchNetID/ Didiet Kusumadihardja - didiet@arch.web.id 46

More Related Content

PDF
MikroTik Security
Rofiq Fauzi
 
PDF
Mikro tik advanced training
Jignesh H. Bhalsod
 
PDF
Mikrotik Bridge Deep Dive
GLC Networks
 
PDF
MikroTik Firewall : Securing your Router with Port Knocking
Akbar Azwir, MM, PMP, PMI-SP, PSM I, CISSP
 
PDF
BGP on mikrotik
Achmad Mardiansyah
 
PDF
MPLS on Router OS V7 - Part 2
GLC Networks
 
PDF
VLAN on mikrotik
Achmad Mardiansyah
 
PDF
Ccnp workbook network bulls
Swapnil Kapate
 
MikroTik Security
Rofiq Fauzi
 
Mikro tik advanced training
Jignesh H. Bhalsod
 
Mikrotik Bridge Deep Dive
GLC Networks
 
MikroTik Firewall : Securing your Router with Port Knocking
Akbar Azwir, MM, PMP, PMI-SP, PSM I, CISSP
 
BGP on mikrotik
Achmad Mardiansyah
 
MPLS on Router OS V7 - Part 2
GLC Networks
 
VLAN on mikrotik
Achmad Mardiansyah
 
Ccnp workbook network bulls
Swapnil Kapate
 

What's hot (20)

PPTX
MikroTik MTCNA
Ali Layth
 
PPT
Chap 10 igmp
Noctorous Jamal
 
PDF
IPv6 with Mikrotik
GLC Networks
 
PDF
Mikrotik firewall mangle
Achmad Mardiansyah
 
PDF
Using Mikrotik Switch Features to Improve Your Network
GLC Networks
 
PPTX
ccna networking ppt
Er. Anmol Bhagat
 
PDF
Chapter 8 - IP Subnetting, Troubleshooting and Introduction to NAT 9e
adpeer
 
PDF
Mikrotik Load Balancing with PCC
GLC Networks
 
PPTX
IP Multicasting
Tharindu Kumara
 
PDF
Mikrotik Hotspot
GLC Networks
 
PDF
Mikrotik router os qos best practice
Bassel Kablawi
 
PDF
Difference b/w STP RSTP PVST & MSTP
Netwax Lab
 
DOC
Basic command to configure mikrotik
Tola LENG
 
PDF
Mikrotik fasttrack
Achmad Mardiansyah
 
PPTX
Routing Protocols and Concepts - Chapter 1
CAVC
 
PDF
ISP Load Balancing with Mikrotik ECMP
GLC Networks
 
PDF
How BGP Works
ThousandEyes
 
PDF
MikroTik Multicast Routing [www.imxpert.co]
Faisal Reza
 
PPTX
CCNA PPT
AIRTEL
 
PDF
Network LACP/Bonding/Teaming with Mikrotik
GLC Networks
 
MikroTik MTCNA
Ali Layth
 
Chap 10 igmp
Noctorous Jamal
 
IPv6 with Mikrotik
GLC Networks
 
Mikrotik firewall mangle
Achmad Mardiansyah
 
Using Mikrotik Switch Features to Improve Your Network
GLC Networks
 
ccna networking ppt
Er. Anmol Bhagat
 
Chapter 8 - IP Subnetting, Troubleshooting and Introduction to NAT 9e
adpeer
 
Mikrotik Load Balancing with PCC
GLC Networks
 
IP Multicasting
Tharindu Kumara
 
Mikrotik Hotspot
GLC Networks
 
Mikrotik router os qos best practice
Bassel Kablawi
 
Difference b/w STP RSTP PVST & MSTP
Netwax Lab
 
Basic command to configure mikrotik
Tola LENG
 
Mikrotik fasttrack
Achmad Mardiansyah
 
Routing Protocols and Concepts - Chapter 1
CAVC
 
ISP Load Balancing with Mikrotik ECMP
GLC Networks
 
How BGP Works
ThousandEyes
 
MikroTik Multicast Routing [www.imxpert.co]
Faisal Reza
 
CCNA PPT
AIRTEL
 
Network LACP/Bonding/Teaming with Mikrotik
GLC Networks
 
Ad

Viewers also liked (20)

PDF
CAPsMANv2 | Wireless APs Controller by MikroTik
Dobri Boyadzhiev
 
PDF
Detecting network virus using mikrotik
Achmad Mardiansyah
 
PDF
Mikrotik Network Simulator (MUM Presentation Material 2013)
Rofiq Fauzi
 
PDF
Wireless Project Using CAPsMAN
Aidan Venn MSc
 
PDF
MUM Madrid 2016 - Mikrotik y Suricata
Fajar Nugroho
 
PDF
Hotspot on Mikrotik Router
KHNOG
 
PDF
Mikrotik Hotspot User Manager
KHNOG
 
PDF
Using mikrotik with radius
Achmad Mardiansyah
 
PDF
MikroTik Hotspot 2.0 (IEEE 802.11u) - MUM Jakarta 2016
Rofiq Fauzi
 
PDF
Network Monitoring System
Rofiq Fauzi
 
PDF
(Mikrotik)MTCNA presentation Material-IDN
Andry Ansah
 
PDF
MikroTik BGP Security - MUM 2014 (rofiq fauzi)
Rofiq Fauzi
 
PPTX
Trabajo Practico Nº 1.IFTS Nº1.
CELESTE UCCI
 
PDF
Access point redundancy, by Lorenzo Busatti - MikroTik MUM USA Las Vegas 2011
Lorenzo Busatti
 
PPTX
Gerência fácil com RoMON
Pietro Scherer
 
PDF
AfterGlow
Raffael Marty
 
PPTX
Mikrotik
Michał Ruta
 
PPTX
Microsoft Office356 - prezentacja mozliwosci
Michał Ruta
 
PPTX
mikrotik
dewi aulia
 
PDF
Choosing MikroTik for Your Network
Faisal Reza
 
CAPsMANv2 | Wireless APs Controller by MikroTik
Dobri Boyadzhiev
 
Detecting network virus using mikrotik
Achmad Mardiansyah
 
Mikrotik Network Simulator (MUM Presentation Material 2013)
Rofiq Fauzi
 
Wireless Project Using CAPsMAN
Aidan Venn MSc
 
MUM Madrid 2016 - Mikrotik y Suricata
Fajar Nugroho
 
Hotspot on Mikrotik Router
KHNOG
 
Mikrotik Hotspot User Manager
KHNOG
 
Using mikrotik with radius
Achmad Mardiansyah
 
MikroTik Hotspot 2.0 (IEEE 802.11u) - MUM Jakarta 2016
Rofiq Fauzi
 
Network Monitoring System
Rofiq Fauzi
 
(Mikrotik)MTCNA presentation Material-IDN
Andry Ansah
 
MikroTik BGP Security - MUM 2014 (rofiq fauzi)
Rofiq Fauzi
 
Trabajo Practico Nº 1.IFTS Nº1.
CELESTE UCCI
 
Access point redundancy, by Lorenzo Busatti - MikroTik MUM USA Las Vegas 2011
Lorenzo Busatti
 
Gerência fácil com RoMON
Pietro Scherer
 
AfterGlow
Raffael Marty
 
Mikrotik
Michał Ruta
 
Microsoft Office356 - prezentacja mozliwosci
Michał Ruta
 
mikrotik
dewi aulia
 
Choosing MikroTik for Your Network
Faisal Reza
 
Ad

Similar to Fools your enemy with MikroTik (20)

PPTX
Introduction to ThousandEyes
ThousandEyes
 
PDF
Access RouterOS using Multi-Factor Authentication
Didiet Kusumadihardja
 
PDF
BRKSEC-2288.pdf
HaitamSouissi1
 
PDF
0328apjcintrotothousandeyeswebinar-230328233735-4df10d7f.pdf
Saurabh Chauhan
 
PPTX
Introduction To ThousandEyes
ThousandEyes
 
PPTX
CyberSecurityAwarenessPresentation2024.09.pptx
mequanntlakew
 
PPTX
Luca, Marius Alexandru „BitDefender apsaugos sprendimai organizacijoms“ (Rumu...
Lietuvos kompiuterininkų sąjunga
 
PPTX
Optimizing and Troubleshooting Digital Experience for a Hybrid Workforce
ThousandEyes
 
PPTX
EMEA Optimizing and Troubleshooting Digital Experience for a Hybrid Workforce
ThousandEyes
 
PPTX
December Patch Tuesday 2020
Ivanti
 
PPTX
Optimizing and Troubleshooting Digital Experience for a Hybrid Workforce
ThousandEyes
 
DOC
Ketan H Murudkar
Ketan Murudkar
 
PDF
Advanced Security on Kubernetes with Istio
Shunsuke Miyoshi
 
DOCX
Thamim
thamimul ansari
 
PDF
BlueHat v18 || Modern day entomology - examining the inner workings of the bu...
BlueHat Security Conference
 
PPTX
Itn instructor ppt_chapter1 exploring the network smartskills
Tiago Monteiro
 
PDF
Cisco @ Conference Board of Canada: Connecting Education with the 21st century
Marc Lijour, OCT, BSc, MBA
 
DOC
CV_Nitin
Nitin Shingane
 
PDF
Andrea Zwirner - Magento security and hardening strategies
Meet Magento Italy
 
DOC
UTHAYAKUMAR RESUME
Uthaya Kumar
 
Introduction to ThousandEyes
ThousandEyes
 
Access RouterOS using Multi-Factor Authentication
Didiet Kusumadihardja
 
BRKSEC-2288.pdf
HaitamSouissi1
 
0328apjcintrotothousandeyeswebinar-230328233735-4df10d7f.pdf
Saurabh Chauhan
 
Introduction To ThousandEyes
ThousandEyes
 
CyberSecurityAwarenessPresentation2024.09.pptx
mequanntlakew
 
Luca, Marius Alexandru „BitDefender apsaugos sprendimai organizacijoms“ (Rumu...
Lietuvos kompiuterininkų sąjunga
 
Optimizing and Troubleshooting Digital Experience for a Hybrid Workforce
ThousandEyes
 
EMEA Optimizing and Troubleshooting Digital Experience for a Hybrid Workforce
ThousandEyes
 
December Patch Tuesday 2020
Ivanti
 
Optimizing and Troubleshooting Digital Experience for a Hybrid Workforce
ThousandEyes
 
Ketan H Murudkar
Ketan Murudkar
 
Advanced Security on Kubernetes with Istio
Shunsuke Miyoshi
 
Thamim
thamimul ansari
 
BlueHat v18 || Modern day entomology - examining the inner workings of the bu...
BlueHat Security Conference
 
Itn instructor ppt_chapter1 exploring the network smartskills
Tiago Monteiro
 
Cisco @ Conference Board of Canada: Connecting Education with the 21st century
Marc Lijour, OCT, BSc, MBA
 
CV_Nitin
Nitin Shingane
 
Andrea Zwirner - Magento security and hardening strategies
Meet Magento Italy
 
UTHAYAKUMAR RESUME
Uthaya Kumar
 

More from Didiet Kusumadihardja (6)

PDF
Didiet Cybersecurity Consultant Portfolio - English
Didiet Kusumadihardja
 
PDF
Manajemen wireless rogue
Didiet Kusumadihardja
 
PDF
Personally identifiable information
Didiet Kusumadihardja
 
PDF
Adequate password policy
Didiet Kusumadihardja
 
PDF
Notifikasi penggunaan sistem
Didiet Kusumadihardja
 
PDF
Didiet Cyber Security Consultant Portfolio - Bahasa Indonesia
Didiet Kusumadihardja
 
Didiet Cybersecurity Consultant Portfolio - English
Didiet Kusumadihardja
 
Manajemen wireless rogue
Didiet Kusumadihardja
 
Personally identifiable information
Didiet Kusumadihardja
 
Adequate password policy
Didiet Kusumadihardja
 
Notifikasi penggunaan sistem
Didiet Kusumadihardja
 
Didiet Cyber Security Consultant Portfolio - Bahasa Indonesia
Didiet Kusumadihardja
 

Recently uploaded (20)

PPT
Design_with_Watersergyerge45hrbgre4top (1).ppt
DiogoRibeiro730590
 
PPTX
1402_iCSC_-_RESTful_Web_APIs_--_Josef_Hammer.pptx
mwnorman1
 
PDF
Smart Home Technology for Health Monitoring (www.kiu.ac.ug)
publication11
 
PPTX
newyork.pptxirantrafgshenepalchinachinane
PrashantKoirala12
 
PPTX
Slides PPTX: World Game (s): Eco Economic Epochs.pptx
Steven McGee
 
PDF
Introduction to the IoT system, how the IoT system works
TinBinh
 
PDF
The Ikigai Template _ Recalibrate How You Spend Your Time.pdf
KinchitJain2
 
PPTX
Database Information System - Management Information System
faizhossain3
 
PDF
simpleintnettestmetiaerl for the simple testint
sherlockholmes10009
 
PPT
415456121-Jiwratrwecdtwfdsfwgdwedvwe dbwsdjsadca-EVN.ppt
woldemariamworku2
 
PPTX
E -tech empowerment technologies PowerPoint
kylebalatero12
 
PDF
The New Creative Director: How AI Tools for Social Media Content Creation Are...
SageTitans
 
PPTX
SAP Ariba Sourcing PPT for learning material
NKKumar16
 
PDF
SlidesGDGoCxRAIS about Google Dialogflow and NotebookLM.pdf
minhtrietgect
 
PPTX
artificialintelligenceai1-copy-210604123353.pptx
b45r14
 
PPT
FIRE PREVENTION AND CONTROL PLAN- LUS.FM.MQ.OM.UTM.PLN.00014.ppt
MelwinPaul6
 
PPTX
Funds Management Learning Material for Beg
NKKumar16
 
PDF
📍 LABUAN4D EXCLUSIVE SERVER STAR GAMING ASIA NO.1 TERPOPULER DI INDONESIA ! 🌟
alexiskandar061
 
PDF
The Evolution of Traditional to New Media .pdf
NIKKODENSMIRO
 
PPTX
June-4-Sermon-Powerpoint.pptx USE THIS FOR YOUR MOTIVATION
KuyaRogie
 
Design_with_Watersergyerge45hrbgre4top (1).ppt
DiogoRibeiro730590
 
1402_iCSC_-_RESTful_Web_APIs_--_Josef_Hammer.pptx
mwnorman1
 
Smart Home Technology for Health Monitoring (www.kiu.ac.ug)
publication11
 
newyork.pptxirantrafgshenepalchinachinane
PrashantKoirala12
 
Slides PPTX: World Game (s): Eco Economic Epochs.pptx
Steven McGee
 
Introduction to the IoT system, how the IoT system works
TinBinh
 
The Ikigai Template _ Recalibrate How You Spend Your Time.pdf
KinchitJain2
 
Database Information System - Management Information System
faizhossain3
 
simpleintnettestmetiaerl for the simple testint
sherlockholmes10009
 
415456121-Jiwratrwecdtwfdsfwgdwedvwe dbwsdjsadca-EVN.ppt
woldemariamworku2
 
E -tech empowerment technologies PowerPoint
kylebalatero12
 
The New Creative Director: How AI Tools for Social Media Content Creation Are...
SageTitans
 
SAP Ariba Sourcing PPT for learning material
NKKumar16
 
SlidesGDGoCxRAIS about Google Dialogflow and NotebookLM.pdf
minhtrietgect
 
artificialintelligenceai1-copy-210604123353.pptx
b45r14
 
FIRE PREVENTION AND CONTROL PLAN- LUS.FM.MQ.OM.UTM.PLN.00014.ppt
MelwinPaul6
 
Funds Management Learning Material for Beg
NKKumar16
 
📍 LABUAN4D EXCLUSIVE SERVER STAR GAMING ASIA NO.1 TERPOPULER DI INDONESIA ! 🌟
alexiskandar061
 
The Evolution of Traditional to New Media .pdf
NIKKODENSMIRO
 
June-4-Sermon-Powerpoint.pptx USE THIS FOR YOUR MOTIVATION
KuyaRogie
 

Fools your enemy with MikroTik

Editor's Notes

  • #2: GREETINGS!