Capt Froberg Outline I have a computer now what How attackers get in your computer How to keep attackers out Computer Tools The Froberg Trifecta First Party Windows Applications I have a computer now what ID: 624156
Download Presentation The PPT/PDF document "Defense 101" is the property of its rightful owner. Permission is granted to download and print the materials on this web site for personal, non-commercial use only, and to display it on your personal computer provided you do not modify the materials and that you retain all copyright notices contained in the materials. By downloading content from our website, you accept the terms of this agreement.
Slide1
Defense 101
Capt
FrobergSlide2
Outline
I have a computer, now what?
How attackers get in your computer
How to keep attackers out
Computer Tools
The Froberg
Trifecta
First Party Windows ApplicationsSlide3
I have a computer, now what
?Slide4
I have a computer, now what?
How about:Slide5
How attackers get in your computer
YOU
… and the InternetSlide6
How attackers get in your computer
1. Using the Internet without patching your system or installing the appropriate softwareSlide7
How attackers get in your computer
2. Going to websites without script-blocking add-ons/pluginsSlide8
How attackers get in your computer
3
. Parents and Old People (A.K.A. Uneducated computer users)Slide9
How attackers get in your computer
4. Downloading “free” ANYTHINGSlide10
How attackers get in your computer
5
. Not performing system maintenanceSlide11
How to keep attackers out
Uninstall unneeded software on FIRST TIME BOOT of a machine
Install appropriate Anti-Malware, Anti-Virus, and Firewalls
SYSTEM UPDATE FTW!Slide12
How to keep attackers out
DO NOT USE INTERNET EXPLORER
Use Firefox
or Chrome
Install a script BlockerI use NoScript on Firefox by noscript.netI use NotScripts on Chrome by Levi GilbertsonInstall an Ad BlockerI use AdBlockPlus on both Firefox and Chrome by adblockplus.orgSlide13
How to keep attackers out
Start a dialog to talk about defensive computing
Show them materials (news articles, videos, etc.)
Explain to them how attackers can get in a machine
Be their computer repairmanSlide14
How to keep attackers out
Free is usually good, but on the Internet that is BAD
Open source software is
(or rather can be)
GOOD and FREE
It’s hard to know when something is free and goodDo research before downloading OR installing softwareFind references on reputable sites Zdnet, Wired, PC Magazine, CNN, Ars Techica, Life Hacker, etc.Slide15
How to keep attackers out
Question
Would you drive a car and NEVER change its oil?
Parallel Question
Have you ever changed your computer’s
“oil”?Slide16
How to keep attackers out
P
atches
U
ninstalling
old programsDefragmentationMalware/virus scanningBacking up of personal filesReinstalling of Operating System every 6ish months
System utilities such as msconfig, etc.Configuring startup programs and services
Computer Oil?!?!Slide17
Computer Tools
The Froberg
Trifecta (circa 2012)
NOTE: I also use script and advertisement blockers on my Internet Browsers!Slide18
Computer Tools
First
Party Windows
Applications– GUI Based
Disk
Defragmenter (dfrgui.exe or found under system tools. Start via Run*)Reorganizes data on your HDD for optimal access timesmsconfig.exe (Start via Run*)
Allows configuration of startup programs and services**Computer Management (Start compmgmt.msc via Run*, or right click Computer and select manage)Centralized tool for Windows Administration
Windows Task Manager (Press Ctrl+Shift+Esc or Ctrl+Alt+Del and select)Allows viewing, starting, and stopping of programs, processes, and servicesLook in C:\Windows\system32\ for EXE or MSC programs
*Run is a command line prompt that will run default Windows tools without the full path of execution. You can access it by pressing Windows button + R
** Wikipedia says: “…a
Windows service
is a long-running executable that performs specific functions and it is designed not to require user intervention. Windows services can be configured to start when the operating system is booted and run in the background as long as Windows is running, or they can be started manually when required
”Slide19
Computer Tools
Party
Windows
Applications – Command Line
LAB TIME!!!!
There are TOO many programs, so we’ll look at these freely, hands onSlide20
Lab – Look at Command Line Tools
Start Command Line
Press Windows Button + R, type “CMD”, press Enter
TYPE: “Help
”
Look at various tools and try them out!Pro Tips<command> >> filename.txt (Ex. Help >> help.txt)This will output the results of a command to a text file<command> /? (Ex. ping /?)
This is the command’s own help pageBatch Script FTWA Batch script is a text file with command line commands that will run in orderAllows a person to save repetitive operations and automate themHUGE resource: commandwindows.comSlide21
Lab – Fun Things I Do
Tasklist
Lists all tasks running
t
asklist
/svcNetstatWill show ALL network connectionsn
etstat /anobTreeShows a tree of files with folderstree c:\ /A /F COMBO BREAKER: tree and findstr
via pipePipe will allow you to string together commands with the symbol: |This will allow you to do POWERFUL combosThe following finds ALL folders and exe’s in a computer and save the report to a filetree c:\ /A /F |
findstr /c:\ /c:+ /c:.exe >> C:\tree_exes.txt
F
ind
This can find a string with in a file and give a count of occurrence
The following finds all the
exe’s
from the last command
find /C “.exe” c:\tree_exes.txt