A response to a deleted post asking how easy it is to take over a machine. "How easy is it to enter someone?"

To answer your question seriously. First, I am far from an expert on this (I'm a construction worker who does CTFs for fun) but there are several levels of access on a machine. It is entirely possible to click on a link and unknowingly give someone access to your browser.

Second, anything beyond your browser data (which could still be very dangerous in the wrong hands) is much more difficult.

Some applications such as Riot Games' Vanguard anti-cheat do install root kits on your computer however this requires your permission and a machine restart.

To my knowledge clicking on a link won't give anyone root access however, it might be possible to install a keylogger or other forms of Spyware which could then be used to learn passwords leading to root access and a complete takeover of your machine.

I should point out here that taking over a machine is a very purposeful and intentional thing which takes valuable time and resources.

The most dangerous thing is actually downloading files from sites you don't know or plugging in hardware that is infected with malware. For example a few lines of code on a flashdrive is plenty to allow a reverse shell to be run on your machine.

Lastly and I cannot stress this enough, I am not an expert. I do CTFs for fun and if you're concerned that someone is access your device without your knowledge or permission please contact a professional for assistance.

submitted by /u/dragonwarriorzuka
[link] [comments]

from hacking: security in practice https://ift.tt/2WSaiGr