Hacking tool

Abstract: In this paper we propose a methodology used to analyse collected pagefiles belonging to public computers using a pagefile collection tool (PCT), which is suitable to be used in a live forensics context. After that, we investigated how to gather sensitive information such as passwords and usernames, which we found in half of the analysed pagefiles. Undoubtedly, this fact can be used by a forensics practitioner to solve the investigation faster, by using such information in order to acquire useful information about a crime. However, if such forensic pagefile collection tool was used as a hacking tool, it could cause leakage of privacy information. To be more precise, it allows easy gathering of critical information such as passwords and credit card numbers. Accordingly, in order to solve this problem, we have proposed a programming methodology to prevent the "swap-out" of sensitive information from main memory to pagefile. Finally, we also proposed a system model to perform the encryption of pagefile memory in order to improve the security of a computer system.

Abstract: With the rapidly increasing complexity of computer systems and the sophistication of hacking tools and techniques, there is a crucial need for computer forensic analysis techniques. Very few techniques exist to support forensic analysis of unknown executable files. The existing techniques primarily inspect executable files to detect known signatures or are based on metadata information. A key goal of such forensic investigation is to identify malicious executable files that hackers might have installed in a targeted system. Finding such malware in a compromised system is difficult because it is hard to identify the purpose of the fragments of executable files. In this paper, we present a similarity-based technique that analyzes targeted executable files to identify a malware present in a compromised system. The technique involves assigning a similarity value to the fragments of executable files present in a compromised hard disk against a set of source files. We present some results based on the comparison of assembly instruction sequences of well-known hacking tools with those of various executable files, and suggest various ways to reduce the false positives.

Abstract: In this paper, we predicted the changes of cyber-attacks techniques and patterns after the fourth industrial revolution with the epochal shift of information and communication technology and innovation of science and technology. Cyber space will be hyper-connection, cross-domain, and super intelligence space as connecting everything in the world due to a fusion of information and communication technologies such as artificial intelligence, internet of things, and cyber-physical systems. Cyber-attacks will use all electronic devices including wireless or wire networks, hardware, software, and cyber-physical systems as a route. The hacking tool's functions will evolve into a variety of forms reflecting human thought and behavioral procedures. The attack target will not be limited to a specific object. The purpose of the cyber-attack is to focus on secondary effects and indirect attacks as well as direct attacks.

Abstract: The messenger is a free information and communication means for easy information exchange with acquaintances connected to the Internet during ordinary work process. Therefore, acquaintances (automatically) connected while the Internet is connected are people well known to a messenger user. This study relates to an analysis of online banking security crack made in the following process: a hacker hacks messengers, for example, NateOn, MSN and the like, to become close to victims as if the hacker is a close acquaintance, and then sends a hacking tool (keylog, remote monitoring, etc.) in the manner of social engineering. The hacker uses the hacking tool to steal personal online banking information including hacked person’s bank account, ID, PW, certificate, security card information and the like and then to withdraw cash balance of the target account. This study also aims to find elements vulnerable to personal Internet banking transaction hacking to develop security measures for the relevant vulnerability in order to enhance secure and safe Internet banking transactions of people by preventing Internet banking security cracks.