Dabarun ‘Yan Dandatsa da Hanyoyin Dakile Su (6)

Darasi Na (03): “Enumeration”

A darasin baya mai karatu ya ji bangarorin dake cikin darasin, da hanyoyin da ake bi wajen tantance na’urori da hanyoyin sadarwar dake dauke kan wani zangon sadarwa.  A darasi na uku mai take: “Enumeration,” cikin fannonin dake karkashin “Ethical Hacking,” dalibi zai koyi yadda ake isa ga hakikanin kafofin sadarwar dake kwamfuta ne, kai tsaye.  Wannan shi ne matakin dake biye da matakin darasin baya, wato: “Scanning Networks.”

Tsarin “Enumeration”

Asalin kalmar “Enumeration” na ishara ne ga tsarin kididdige abubuwa ta hanyar sanya musu alama.  Karkashin wannan darasi na uku, dalibi zai koyi yadda ake isa ga kafofin sadarwar dake kwamfuta, wanda a baya ya samu bayani kan yadda ake gano kafofin, tsakanin wadandan ke bude da wadanda suke kulle. Da masu dauke da wata manhajar sadarwa (Network Service) da wadanda suke holoko; babu komai a cikinsu.  Kafofin sadarwa, wato: “System Ports” hanyoyi ne da kwamfuta ke bi wajen aiwatar da sadarwa tsakaninta da kwamfuta ‘yar uwarta, ta hanyar wasu kananan manhajoji dake kafofin, wato: “Network Service.”

Shahararru daga cikin wadannan kafofin sadarwa dai sun hada da: “TCP/UDP 53,” wadda kafa ce dake dauke da tsarin “DNS Zone Transfer” da “UDP 161”, wadda ke dauke da tsarin “Simple Network Management Protocol” (SNMP), wanda tsari ne dake taimakawa wajen lura da zangon sadarwa dake dauke da na’urori da hanyoyin sadarwa.  Sai kafa mai suna: “TCP/UDP 389” mai dauke da tsarin “Lightweight Directory Access Protocol” (LDAP) wanda ke taimakawa wajen tantance gungu-gungu na matattarar bayanai dake zangon sadarwa.  Sai kafar “TCP 25”, wadda ke dauke da manhajar karba da aika sakonnin Imel, wato: “Simple Mail Transfer Protocol” ko “SMTP” a gajarce.  Wannan ka’idar sadarwa ce ke lura da sakonnin Imel dake shigowa cikin kwamfuta ko fita, a yayin da aka aika su.  Sannan ta wannan kafa, Dan dandatsa na iya kutsawa cikin kwamfuta don aiwatar da aika-aikarsa.

Sauran kafofin sadarwar sun hada da: “UDP 137” da “TCP 139” wadanda ke dauke da tsarin “NetBIOS Name Service” (NBNS) da kuma “NetBIOS Session Service” (SMB over NetBIOS).  Sai kafa mai suna: “TCP/UDP 135” mai dauke da manhaja ko tsarin sadarwa mai suna: “Microsoft RPC Endpoint Mapper.”  Wadannan su ne shahararrun kafofin sadarwa dake dauke cikin kwamfuta wadanda dalibi zai koyi yadda ake iya isa garesu cikin sauki.

Daga cikin abin da dalibi zai koya a wannan darasi na “Enumeration” akwai hakikanin abubuwan da ke dauke cikin wadannan kafafen sadarwa da bayaninsu ya gabata a sama.  Daga cikin mahimman abubuwan da ke dauke cikinsu akwai jerin sunayen kwamfutocin dake zangon sadarwa, da jerin gungun masu amfani da kwamfutocin dake zangon, wato: “User Domain”.  Da tsarin isa ga nau’ukan bayanan dake dauke cikin kwamfutocin da dai sauransu.

Manhajojin “Enumeration”

Daga cikin shahararrun manhajojin da ake amfani dasu wajen shiga wadannan kafofin sadarwa da dalibi zai koya karkashin wannan darasi dai akwai manhajar “SuperScan” wacce ke iya zakulo dukkan kafofin sadarwar dake dauke kan kwamfuta, tare da manhajojin dake cikinsu, da sunayen dake kwamfutar (usernames) da dai sauran bayanai.  Sai manhajar “Hyena,” da manhajar “WinFingerPrint”, wacce ke iya tantance maka jerin sunayen (username accounts) dake kan kwamfuta ko wani zangon sadarwa.  Wasu daga cikinsu sun hada da: “Nbtstat” da ke babbar manhajar Windows, da “Net View”, da “Net Use”, da “NetScanTools Pro”, da “DumpSec”, da “NessusWX”, da kuma manhajar “Hunt.”  Wannan jeri ne na wasu fitinannun manhajoji da ake amfani dasu don aiwatar da wannan aiki na riskar kafofin sadarwar kwamfuta.

Bayan wadannan, akwai jerin manhajoji dake taimaka wa Uban Zangon Sadarwa (Network Adminstrator) wajen tafiyar da kwamfutoci a zangon sadarwa. Wadannan jerin manhajoji dai Mark Russonovich ne ya gina su.   Ya gina jerin wadannan manhajoji ne sadda yake aiki da kamfanin Microsoft, cikin gungun kwararrun dake aiki kan babbar manhajar kwamfuta.  Wadannan manhajoji ya sanya musu suna: “SysInternalsSuite.”  Manhajoji ne sama da 40.  Shahararru daga cikinsu su ne: “PsExec”, da “PsList”, da “PsFile”, da PsLoggedOn”, da PsGetSid”, da “PsLogList”, da “PsKill”, da “PsPassword”, da “PsInfo”, da kuma “PsShutdown.”

Wadannan jerin hadakan manhajoji ne da ake amfani dasu wajen isa ga kafofin sadarwa dake kwamfuta, don tatsar nau’ukan bayanan da suka shafi masu amfani da ita a zangon da take.

Hanyoyin Kariya

Kasancewar wadannan kafofin sadarwa na kwamfuta suna dauke ne da manhajoji, hanyar kare su daga aika-aikar ‘yan Dandatsa sun ta’allaka ne ga sabunta zubinsu a kowane lokaci, da kuma canza tsarin da manhajojin suka zo dasu, wato: “Default Settings.”  Domin kasancewar galibin kamfanoni a baya su cika canza tsare-tsaren manhajojin da suke amfani dasu a zangon sadarwa ba, yasa ‘Yan Dandatsa ke kirdadon tsarinsu na asali, idan ma masu dauke da kalmar sirri ne, kamar na’urar Router misali, sukan yi kirdadon asalin kalmar sirrin da kamfanonin da suka kera suke basu, don samun isa garesu.  Rashin canza wadannan kalmomin sirri, da rashin canza hakikanin tsarin da manhajar ko na’urar tazo dasu ma yana haddasa barna mai yawa ta bangaren ‘yan Dandatsa.

A darasi na hudu da za mu kawo mako mai zuwa, mai karatu zai ji bayani kan yadda ake kutsawa cikin kwamfutar dake zangon sadarwa, da yadda ‘yan Dandatsa ke mallake kwamfutar bayan sun samu shiga cikinta, da irin dabarun da suke amfani dasu wajen boye sawunsu bayan sun gama gudanar da aika-aikansu.  Wannan darashi shi ake kira: “System Hacking.”