School

Note: this was converted from Typst to Markdown using AI assistance. The original Typst file can be found here along with the bibliography. Exercise 1: Anti Hardening Laboratory protocol Exercise 1: Anti Hardening Figure: Grouplogo Subject: ITSI Class: 4AHITN Name: Dan Eduard Leuska, Justin Tremurici, Stefan Fürst Group Name/Number: Die Goons / 1 Supervisor: ZIVK, SPAC Exercise dates: 22.09.25, 29.09.25, 06.10.25, 13.10.25 Submission date: 20.10.25 Table of Contents Summary Complete network topology of the exercise Exercise Execution Setup Architecture Connecting the Setup Using Tailscale Choosing Distros How Alpine is different from Debian Setting Up Alpine Setting Up Debian Setting Up Windows Server Setting Up the Services Setting Up PostgreSQL Database Schema Setting Up the API Setting Up the Frontend Setting Up Kubernetes Setting Up Docker Swarm Setting Up SMB Share Making the Application Insecure Authentication Bypass via JWT Parsing Authentication Bypass via HTTP Headers CSP Header Misconfiguration Hardcoding Secrets Database Listening on All Interfaces Making Windows Insecure Changing The Execution Policy Disabling Windows Defender Making Linux Insecure Disabling ASLR Writable Binaries How Tools Like Tailscale Help Harden Security References Summary This exercise is about hardening and then anti-hardening server applications and OSes, so a fictional app was created that features the requirements of having a database and a webserver. Everything was hosted on a laptop in VirtualBox with NAT networking and connected over Tailscale as will be further explained in Connecting the Setup Using Tailscale. ...

Note: this was converted using from LaTeX to Markdown using ChatGPT and Gemini. The original PDF and bibliography can be found here and here. WLAN setup and security Laboratory protocol Exercise 11: WLAN setup and security Figure: Grouplogo Subject: ITSI/NWT Class: 3AHITN Name: Stefan Fürst, Justin Tremurici Group Name/Number: GROUPNAME/12 Supervisor: ANGE, ZIVK Exercise dates: 16.05.2025 | 06.06.2025 Submission date: 10.06.2025 Table of Contents Task definition Summary Complete network topology of the exercise Exercise Execution Setting up the Network Configuring the Router Configuring the Access Point Testing connectivity and DHCP addresses Access Point Isolation Attacking the Wi-Fi Network Setting up the Wi-Fi Adapter Starting the attack Sending Deauthentication Frames Analyzing the 4-Way Handshake in Wireshark Cracking the Password Testing My Own Wi-Fi Mitigations of This Attack How WPA3 improves security Possible WPA3 Attacks References Task definition This task focuses on the setup and subsequent attack of a WLAN network. The initial phase, “Übung 10: Einrichten eines WLAN-Netzwerks,” guides students through provisioning a WLAN. This involves configuring an Access Point (AP), planning channel usage, setting up Network Address Translation (NAT) and a DHCP service, and ensuring full connectivity between wireless and wired clients. Students configure a router with NAT, establish a DHCP server, and set up the AP with WPA2 security, assessing password strength and measuring channel utilization. Connectivity tests confirm communication within the network and to the internet. Access Point Isolation is also explored, with a bonus task involving its configuration and demonstration of its effects. ...

Note: this was converted using from LaTeX to Markdown using Chat GPT 4.1 the original pdf can be found here along with the bibliography Laboratory protocol Exercise 10: Capturing of network traffic in the local network Figure: Grouplogo Subject: ITSI Class: 3AHITN Name: Stefan Fürst, Justin Tremurici Group Name/Number: Name here/12 Supervisor: SPAC, ZIVK Exercise dates: 11.04.2025 | 25.04.2025 | 09.05.2025 Submission date: 16.05.2025 Table of Contents Task definition Summary Complete network topology of the exercise Exercise Execution Building the Topologies Mirroring traffic in RouterOS v7 Comparing the traffic before and after the configuration Packet Sniffing on the Local Device Capturing a Ping Between Two Targets Capturing Plain Text Passwords Capturing a VoIP Call References Task definition This task focused on the passive interception of network traffic in a local network using either a hub or a managed switch with mirror ports. The objective was to analyze unaltered communications using Wireshark on both attacker and victim machines. Two topologies were tested: a hub-based setup, which allowed full traffic visibility, and a switch-based setup, where traffic was mirrored from victim ports to the attacker’s port. Devices were assigned static IP addresses from a private range, and VoIP communication was simulated using either software-based or physical IP phones. ...

The code for all setups is available on my GitHub here. Docker crash course What is docker? Docker is an open platform for developing, shipping, and running applications. Docker enables you to separate your applications from your infrastructure so you can deliver software quickly. With Docker, you can manage your infrastructure in the same ways you manage your applications. By taking advantage of Docker’s methodologies for shipping, testing, and deploying code, you can significantly reduce the delay between writing code and running it in production. ...

Note: this was converted using from LaTeX to Markdown using Chat GPT 4.1 the original pdf can be found here along with the bibliography Testing Windows server security Laboratory protocol Exercise 9: Testing Windows server security Figure: Grouplogo Subject: ITSI Class: 3AHITN Name: Stefan Fürst, Justin Tremurici Group Name/Number: Name here/12 Supervisor: SPAC, ZIVK Exercise dates: 14.03.2025 | 21.03.2025 | 28.03.2025 | 04.04.2025 Submission date: 11.04.2025 Table of Contents Task definition Summary Complete network topology of the exercise Exercise Execution Setting Up the Exercise Environment Brute-Forcing SMB with Hydra Analyzing Network Traffic with Wireshark Brute-Forcing RDP Explaining My Own RDP Brute-Forcing Script Analyzing Network Traffic with Wireshark (RDP) Hardening Windows Against Brute-Force Attacks Using EvLWatcher for Rate Limiting Disabling NTLM Authentication Configuring Login Timeout Settings Mimikatz: An Introduction What Can Mimikatz Do? How to Use Mimikatz Running Mimikatz Using Polyglot Files to Conceal Mimikatz DLL Side-Loading to Attempt to Bypass Windows Defender How to Detect and Block Mimikatz References Task definition This task was conducted using a combination of manual configuration and automated attack tools to evaluate the security posture of a Windows Server environment. The environment setup involved preparing both the target system and an attacker system running Kali Linux, which was equipped with tools such as Hydra for brute-force attacks and Wireshark for network traffic analysis. ...