Software Development Exam > Software Development Videos > Ethical Hacking using Kali Linux (in English) > Lesson 61 : Java Applet Attack Method Continues
Lesson 61 : Java Applet Attack Method Continues Video Lecture | Ethical Hacking using Kali Linux (in English) - Software Development
FAQs on Lesson 61 : Java Applet Attack Method Continues Video Lecture - Ethical Hacking using Kali Linux (in English) - Software Development
| 1. What is a Java applet attack? |  |
Ans. A Java applet attack is a type of cyber attack where malicious code is embedded within a Java applet, which is a small program that can be run within a web browser. The attack aims to exploit vulnerabilities in the Java applet to compromise the security of the user's computer or network.
| 2. How does a Java applet attack work? | |
Ans. A Java applet attack typically works by tricking the user into visiting a website that contains a malicious applet. The applet is then executed by the user's web browser, allowing the attacker to exploit any vulnerabilities in the Java applet's code. This can lead to the installation of malware, theft of sensitive information, or unauthorized access to the user's system.
| 3. What are the risks of a Java applet attack? | |
Ans. The risks of a Java applet attack include the potential for malware installation, unauthorized access to the user's system, theft of sensitive information, and the ability for the attacker to gain control over the user's computer or network. These attacks can also be used as a gateway for further exploitation or as a part of a larger cyber attack.
| 4. How can I protect myself from Java applet attacks? | |
Ans. To protect yourself from Java applet attacks, it is recommended to keep your Java software up to date with the latest security patches. Additionally, you can disable Java applets in your web browser settings or use browser extensions that block Java applets from running. It is also important to exercise caution when visiting unfamiliar websites or clicking on suspicious links to minimize the risk of encountering malicious applets.
| 5. Can Java applet attacks be detected and prevented? | |
Ans. Yes, Java applet attacks can be detected and prevented through various security measures. Network intrusion detection systems (IDS) and antivirus software can help detect and block malicious applets. Additionally, regularly updating your software, using a firewall, and implementing strong security practices can significantly reduce the risk of falling victim to a Java applet attack.
Text Transcript from Video
normally how to go ahead and use my own
IP address so I'll go ahead and select
this just copy it and I'll paste it over
here I see a payload Handler on a
different IP from your external NAT port
forward address no I'll just go and see
it enter here I believe I need to enter
something so I'll just select yes no
different IP from your external an that
I believe so no let's check and select
the option that you want
so over here we can go ahead and make
your own self signed certificate applet
use one that is built in into a city or
you can go ahead and have your own
signing certificate I would be using the
built in one on the cities of the select
two and I'll hit enter enter the URL to
clone so I'll probably go ahead and use
the Gmail one so I'll just go ahead and
select Gmail
okay did not start the new tab Gmail
just copied this and I'll paste it over
here so this would be going out I'm
cloning this website so what I need to
do is that I need to go ahead and
forward my IP address to that person as
soon as he clicks on that link he will
be getting something that that he needs
to go ahead and run this java and over
here it's asking me which one do I want
to run if I go and select one it will go
to open the command prompt but I don't
want a command problem because I have my
meterpreter shell which can do much more
than just command prompt so I'll just
select two and I'll hit enter and I
would be using a backdoor executable
which is quite good enough for me to go
and gain access to the root system port
would be the same that's for 43
yeah let the listener start while I was
by that time I'll just go ahead and use
my IP address okay as you can see moving
payload into the cloud side that means
the fake website that I created I have
moved this my virus into that website so
right now let's say for example let me
tell you what exactly is the difference
between actually going that I am fishing
that person to open our payload which is
inside a PDF or an mp3 or a difference
between actually going in and do that if
I go ahead and install a PDF or install
install a payload inside a PDF
I just couldn't cancel this and if I go
and send that to that person okay let me
check so if I go ahead and do that what
would normally happen is that if the
person does not have it orbiter install
he will not be able to run that PDF file
and I won't be able to open anything so
over here
I need to make sure that even if the
person does not have the Adobe Reader
installed he should be able to run
that's why I am going red and asking him
to run this website so I would go ahead
and send this to a wire email or through
Facebook or something like that oh my
god see this video or see this image
something and I'll go ahead and paste it
over here not this just copy it and now
okay as you can see this site uses a
Java plug-in that will be soon be
unsupported okay
let's see what it's giving me as you can
see it's giving me this error that
whether I want to run this application
now the person will simply go ahead and
click on run and as soon as they click
on done they will be reiterated to the
original website so normal person will
not able be able to understand exactly
what happened okay I just click the run
and I have my email ID I can surely go
ahead and log
but what they don't know is that I have
my meterpreter session open over here as
you can see I have sent my stage to that
specific website and my session has been
opened so I just got in see that
sessions 1l and I'll see that I and one
and my session has started okay I
believe multiple sessions were opened
okay perfect
so but there is a catch to this specific
error if I go ahead and close this thing
I'll show you what happens exactly as
you can see my if I couldn't type
something over here let's say LS it will
still work the reason being that even
though my meterpreter session was closed
there is still the chrome still runs in
the background and that's why my first
thing is running but if the person comes
and sees in his for some reason if he
goes ahead and opens this task manager
he will see that so many command lines
and so many PowerShell are still running
so he will probably try to go ahead and
run everything go ahead and close
everything over here so if you goes and
closes each and every other thing I will
probably okay as you can see my
meterpreter session has died so this
board and check I sessions you know okay
I still have my few other sessions
running because that specific Java
applet attack method open multiple
sessions such as good and background
this and let's see how much sessions I
have open I have four sessions open over
here so if the person goes ahead and
close all these PowerShell my session
will directly get closed but I don't
want that to happen so what I would do
is that I will go ahead and open either
of my sessions let's say for example one
and I will go out and see I'll just type
PS to see all the pids that are running
so as you can see I have whatever it's
running over here I can see all of these
things over here so I'll migrate my
virus to something else so let's see the
PID of Explorer dot exe our migrate -
with that so it's two three two four
so I'll just time migrate to three to
four our hit enter
let's see if I'm able to successfully
migrated perfect now even if the person
goes ahead and closes each and
everything over here I'll still be able
to keep my access to that no matter what
happens because I have magnet migrated
myself from the browser to the normal
normal application and now I have gone
ahead and close that or I have migrated
myself to the Explorer so until unless
he mic I extra dot exe is closed my
session will still be running I'll go
ahead and show you that I wouldn't close
all the command prompts and I will get a
few sessions start but my session our
original session is still running
I still go ahead and close all the okay
perfect everything else is closed I'll
even go down close the Java update
scheduler so as you can see I have to
send to a session for close I'll hit
enter it but as you can see I have still
this a specific meter battle is still
running if I go ahead and make it on the
background you can see that session 1 is
still running and all of this would be
dead so but eat the person is smart
enough which probably normalize and know
people are mad if eco student closes his
Explorer but he will not have any kind
of doubt that it will actually have
migrated to his extra but if he goes
ahead and closes that permit a
procession will close and we won't be
able do anything after that so but
normally the person will not be able to
go at I go to this much level and and he
will normally go ahead and not close the
Explorer which is actually a benefit for
us so yes that is it for this tutorial
guys and in the next tutorial are they
starting with the man in the middle
attack all the monkey in the middle
attacks till then have fun
IP address so I'll go ahead and select
this just copy it and I'll paste it over
here I see a payload Handler on a
different IP from your external NAT port
forward address no I'll just go and see
it enter here I believe I need to enter
something so I'll just select yes no
different IP from your external an that
I believe so no let's check and select
the option that you want
so over here we can go ahead and make
your own self signed certificate applet
use one that is built in into a city or
you can go ahead and have your own
signing certificate I would be using the
built in one on the cities of the select
two and I'll hit enter enter the URL to
clone so I'll probably go ahead and use
the Gmail one so I'll just go ahead and
select Gmail
okay did not start the new tab Gmail
just copied this and I'll paste it over
here so this would be going out I'm
cloning this website so what I need to
do is that I need to go ahead and
forward my IP address to that person as
soon as he clicks on that link he will
be getting something that that he needs
to go ahead and run this java and over
here it's asking me which one do I want
to run if I go and select one it will go
to open the command prompt but I don't
want a command problem because I have my
meterpreter shell which can do much more
than just command prompt so I'll just
select two and I'll hit enter and I
would be using a backdoor executable
which is quite good enough for me to go
and gain access to the root system port
would be the same that's for 43
yeah let the listener start while I was
by that time I'll just go ahead and use
my IP address okay as you can see moving
payload into the cloud side that means
the fake website that I created I have
moved this my virus into that website so
right now let's say for example let me
tell you what exactly is the difference
between actually going that I am fishing
that person to open our payload which is
inside a PDF or an mp3 or a difference
between actually going in and do that if
I go ahead and install a PDF or install
install a payload inside a PDF
I just couldn't cancel this and if I go
and send that to that person okay let me
check so if I go ahead and do that what
would normally happen is that if the
person does not have it orbiter install
he will not be able to run that PDF file
and I won't be able to open anything so
over here
I need to make sure that even if the
person does not have the Adobe Reader
installed he should be able to run
that's why I am going red and asking him
to run this website so I would go ahead
and send this to a wire email or through
Facebook or something like that oh my
god see this video or see this image
something and I'll go ahead and paste it
over here not this just copy it and now
okay as you can see this site uses a
Java plug-in that will be soon be
unsupported okay
let's see what it's giving me as you can
see it's giving me this error that
whether I want to run this application
now the person will simply go ahead and
click on run and as soon as they click
on done they will be reiterated to the
original website so normal person will
not able be able to understand exactly
what happened okay I just click the run
and I have my email ID I can surely go
ahead and log
but what they don't know is that I have
my meterpreter session open over here as
you can see I have sent my stage to that
specific website and my session has been
opened so I just got in see that
sessions 1l and I'll see that I and one
and my session has started okay I
believe multiple sessions were opened
okay perfect
so but there is a catch to this specific
error if I go ahead and close this thing
I'll show you what happens exactly as
you can see my if I couldn't type
something over here let's say LS it will
still work the reason being that even
though my meterpreter session was closed
there is still the chrome still runs in
the background and that's why my first
thing is running but if the person comes
and sees in his for some reason if he
goes ahead and opens this task manager
he will see that so many command lines
and so many PowerShell are still running
so he will probably try to go ahead and
run everything go ahead and close
everything over here so if you goes and
closes each and every other thing I will
probably okay as you can see my
meterpreter session has died so this
board and check I sessions you know okay
I still have my few other sessions
running because that specific Java
applet attack method open multiple
sessions such as good and background
this and let's see how much sessions I
have open I have four sessions open over
here so if the person goes ahead and
close all these PowerShell my session
will directly get closed but I don't
want that to happen so what I would do
is that I will go ahead and open either
of my sessions let's say for example one
and I will go out and see I'll just type
PS to see all the pids that are running
so as you can see I have whatever it's
running over here I can see all of these
things over here so I'll migrate my
virus to something else so let's see the
PID of Explorer dot exe our migrate -
with that so it's two three two four
so I'll just time migrate to three to
four our hit enter
let's see if I'm able to successfully
migrated perfect now even if the person
goes ahead and closes each and
everything over here I'll still be able
to keep my access to that no matter what
happens because I have magnet migrated
myself from the browser to the normal
normal application and now I have gone
ahead and close that or I have migrated
myself to the Explorer so until unless
he mic I extra dot exe is closed my
session will still be running I'll go
ahead and show you that I wouldn't close
all the command prompts and I will get a
few sessions start but my session our
original session is still running
I still go ahead and close all the okay
perfect everything else is closed I'll
even go down close the Java update
scheduler so as you can see I have to
send to a session for close I'll hit
enter it but as you can see I have still
this a specific meter battle is still
running if I go ahead and make it on the
background you can see that session 1 is
still running and all of this would be
dead so but eat the person is smart
enough which probably normalize and know
people are mad if eco student closes his
Explorer but he will not have any kind
of doubt that it will actually have
migrated to his extra but if he goes
ahead and closes that permit a
procession will close and we won't be
able do anything after that so but
normally the person will not be able to
go at I go to this much level and and he
will normally go ahead and not close the
Explorer which is actually a benefit for
us so yes that is it for this tutorial
guys and in the next tutorial are they
starting with the man in the middle
attack all the monkey in the middle
attacks till then have fun
Related Exams
About this Video
|
4.80/5 Rating |
|
Oct 24, 2024 Last updated |
Video Description: Lesson 61 : Java Applet Attack Method Continues for Software Development 2024 is part of Ethical Hacking using Kali Linux (in English) preparation.
The notes and questions for Lesson 61 : Java Applet Attack Method Continues have been prepared according to the Software Development exam syllabus.
Information about Lesson 61 : Java Applet Attack Method Continues covers all important topics for Software Development 2024 Exam.
Find important definitions, questions, notes, meanings, examples, exercises and tests below for Lesson 61 : Java Applet Attack Method Continues.
Introduction of Lesson 61 : Java Applet Attack Method Continues in English is available as part of our Ethical Hacking using Kali Linux (in English) for Software Development & Lesson 61 : Java Applet Attack Method Continues in
Hindi for Ethical Hacking using Kali Linux (in English) course. Download more important topics related with notes, lectures and mock test series for
Software Development Exam by signing up for free.
Description
Video Lecture & Questions for Lesson 61 : Java Applet Attack Method Continues Video Lecture | Ethical Hacking using Kali Linux (in English) - Software Development - Software Development full syllabus preparation | Free video for Software Development exam to prepare for Ethical Hacking using Kali Linux (in English).
Information about Lesson 61 : Java Applet Attack Method Continues
Here you can find the meaning of Lesson 61 : Java Applet Attack Method Continues defined & explained in the simplest way possible.
Besides explaining types of Lesson 61 : Java Applet Attack Method Continues theory, EduRev gives you an ample number of questions to practice Lesson 61 : Java Applet Attack Method Continues tests,
examples and also practice Software Development tests.
|
Explore Courses for Software Development exam
|
|
Signup for Free!
Signup to see your scores go up within 7 days! Learn & Practice with 1000+ FREE Notes, Videos & Tests.
Related Searches
video lectures
,Lesson 61 : Java Applet Attack Method Continues Video Lecture | Ethical Hacking using Kali Linux (in English) - Software Development
,practice quizzes
,Important questions
,Extra Questions
,Exam
,mock tests for examination
,MCQs
,Objective type Questions
,Previous Year Questions with Solutions
,Summary
,shortcuts and tricks
,Sample Paper
,study material
,ppt
,Free
,Viva Questions
,past year papers
,Lesson 61 : Java Applet Attack Method Continues Video Lecture | Ethical Hacking using Kali Linux (in English) - Software Development
,Lesson 61 : Java Applet Attack Method Continues Video Lecture | Ethical Hacking using Kali Linux (in English) - Software Development
,Semester Notes
;
Study Lesson 61 : Java Applet Attack Method Continues on the App
Students of Software Development can study Lesson 61 : Java Applet Attack Method Continues alongwith tests & analysis from the EduRev app,
which will help them while preparing for their exam. Apart from the Lesson 61 : Java Applet Attack Method Continues,
students can also utilize the EduRev App for other study materials such as previous year question papers, syllabus, important questions, etc.
The EduRev App will make your learning easier as you can access it from anywhere you want.
The content of Lesson 61 : Java Applet Attack Method Continues is prepared as per the latest Software Development syllabus.
|
© EduRev
|
Education Revolution
|
Follow Us
|
Signup to see your scores
go up within 7 days!
Access 1000+ FREE Docs, Videos and Tests
Takes less than 10 seconds to signup