IDEAS home Printed from https://ideas.repec.org/a/gam/jsusta/v14y2022i19p12288-d927128.html
   My bibliography  Save this article

Alternate Data Stream Attack Framework to Perform Stealth Attacks on Active Directory Hosts

Author

Listed:
  • Akashdeep Bhardwaj

    (School of Computer Science, University of Petroleum and Energy Studies, Dehradun 248007, India)

  • Keshav Kaushik

    (School of Computer Science, University of Petroleum and Energy Studies, Dehradun 248007, India)

  • Mashael S. Maashi

    (Software Engineering Department, College of Computer and Information Sciences, King Saud University, Riyadh 11451, Saudi Arabia)

  • Mohammed Aljebreen

    (Department of Computer Science, Community College, King Saud University, Riyadh 11437, Saudi Arabia)

  • Salil Bharany

    (Department of Computer Engineering & Technology, Guru Nanak Dev University, Amritsar 143005, India)

Abstract

Microsoft’s file system, NTFS, is the most utilised file system by Windows OS versions XP, Vista, 7, and 10. These systems have a little-known file attribute feature known as alternate data streams (ADS) which allows each file in the NTFS file system to have multiple data streams. ADS cannot be removed from the NTFS operating systems. However, the presence of ADS is not inevitably an issue in the OS or file system. Valid instances can be found on systems if scanned and might be valid. Windows OS does not have any in-built tools or applications to determine and remove the presence of existing ADS. This research presents ADSA or alternate data stream attack framework to exploit the alternate data streams and perform cyberattacks on Microsoft operating systems. This research discusses the process of creating and searching alternate data streams with a standard file and an executable binary. The authors executed ADS-hidden executable binary in the ADS. The authors present methods to detect and perform a clean-up by deleting the alternate data stream.

Suggested Citation

  • Akashdeep Bhardwaj & Keshav Kaushik & Mashael S. Maashi & Mohammed Aljebreen & Salil Bharany, 2022. "Alternate Data Stream Attack Framework to Perform Stealth Attacks on Active Directory Hosts," Sustainability, MDPI, vol. 14(19), pages 1-19, September.
    • Handle: RePEc:gam:jsusta:v:14:y:2022:i:19:p:12288-:d:927128
    as

    Download full text from publisher

    File URL: https://www.mdpi.com/2071-1050/14/19/12288/pdf
    Download Restriction: no
    File URL: https://www.mdpi.com/2071-1050/14/19/12288/
    Download Restriction: no
    ---><---

    References listed on IDEAS

    as
    1. Mohammed Shuaib & Sumit Badotra & Muhammad Irfan Khalid & Abeer D. Algarni & Syed Sajid Ullah & Sami Bourouis & Jawaid Iqbal & Salil Bharany & Lokesh Gundaboina, 2022. "A Novel Optimization for GPU Mining Using Overclocking and Undervolting," Sustainability, MDPI, vol. 14(14), pages 1-15, July.
    2. Salil Bharany & Sandeep Sharma & Surbhi Bhatia & Mohammad Khalid Imam Rahmani & Mohammed Shuaib & Saima Anwar Lashari, 2022. "Energy Efficient Clustering Protocol for FANETS Using Moth Flame Optimization," Sustainability, MDPI, vol. 14(10), pages 1-22, May.
    3. Salil Bharany & Sandeep Sharma & Sumit Badotra & Osamah Ibrahim Khalaf & Youseef Alotaibi & Saleh Alghamdi & Fawaz Alassery, 2021. "Energy-Efficient Clustering Scheme for Flying Ad-Hoc Networks Using an Optimized LEACH Protocol," Energies, MDPI, vol. 14(19), pages 1-20, September.
    4. Salil Bharany & Sandeep Sharma & Osamah Ibrahim Khalaf & Ghaida Muttashar Abdulsahib & Abeer S. Al Humaimeedy & Theyazn H. H. Aldhyani & Mashael Maashi & Hasan Alkahtani, 2022. "A Systematic Survey on Energy-Efficient Techniques in Sustainable Cloud Computing," Sustainability, MDPI, vol. 14(10), pages 1-89, May.
    Full references (including those not matched with items on IDEAS)

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.
    1. Mohammed I. Alghamdi, 2022. "Optimization of Load Balancing and Task Scheduling in Cloud Computing Environments Using Artificial Neural Networks-Based Binary Particle Swarm Optimization (BPSO)," Sustainability, MDPI, vol. 14(19), pages 1-20, September.
    2. Keshav Kaushik & Akashdeep Bhardwaj & Salil Bharany & Naif Alsharabi & Ateeq Ur Rehman & Elsayed Tag Eldin & Nivin A. Ghamry, 2022. "A Machine Learning-Based Framework for the Prediction of Cervical Cancer Risk in Women," Sustainability, MDPI, vol. 14(19), pages 1-15, September.
    3. Manreet Sohal & Salil Bharany & Sandeep Sharma & Mashael S. Maashi & Mohammed Aljebreen, 2022. "A Hybrid Multi-Cloud Framework Using the IBBE Key Management System for Securing Data Storage," Sustainability, MDPI, vol. 14(20), pages 1-24, October.
    4. Edeh Michael Onyema & M. Anand Kumar & Sundaravadivazhagn Balasubaramanian & Salil Bharany & Ateeq Ur Rehman & Elsayed Tag Eldin & Muhammad Shafiq, 2022. "A Security Policy Protocol for Detection and Prevention of Internet Control Message Protocol Attacks in Software Defined Networks," Sustainability, MDPI, vol. 14(19), pages 1-19, September.
    5. Mohammed Shuaib & Sumit Badotra & Muhammad Irfan Khalid & Abeer D. Algarni & Syed Sajid Ullah & Sami Bourouis & Jawaid Iqbal & Salil Bharany & Lokesh Gundaboina, 2022. "A Novel Optimization for GPU Mining Using Overclocking and Undervolting," Sustainability, MDPI, vol. 14(14), pages 1-15, July.
    6. Supreet Kaur & Sandeep Sharma & Ateeq Ur Rehman & Elsayed Tag Eldin & Nivin A. Ghamry & Muhammad Shafiq & Salil Bharany, 2022. "Predicting Infection Positivity, Risk Estimation, and Disease Prognosis in Dengue Infected Patients by ML Expert System," Sustainability, MDPI, vol. 14(20), pages 1-20, October.
    7. Salil Bharany & Sandeep Sharma & Osamah Ibrahim Khalaf & Ghaida Muttashar Abdulsahib & Abeer S. Al Humaimeedy & Theyazn H. H. Aldhyani & Mashael Maashi & Hasan Alkahtani, 2022. "A Systematic Survey on Energy-Efficient Techniques in Sustainable Cloud Computing," Sustainability, MDPI, vol. 14(10), pages 1-89, May.
    8. Amit Sundas & Sumit Badotra & Salil Bharany & Ahmad Almogren & Elsayed M. Tag-ElDin & Ateeq Ur Rehman, 2022. "HealthGuard: An Intelligent Healthcare System Security Framework Based on Machine Learning," Sustainability, MDPI, vol. 14(19), pages 1-16, September.
    9. Akashdeep Bhardwaj & Keshav Kaushik & Salil Bharany & Ateeq Ur Rehman & Yu-Chen Hu & Elsayed Tag Eldin & Nivin A. Ghamry, 2022. "IIoT: Traffic Data Flow Analysis and Modeling Experiment for Smart IoT Devices," Sustainability, MDPI, vol. 14(21), pages 1-18, November.
    10. Shadab Alam & Mohammed Shuaib & Sadaf Ahmad & Dushantha Nalin K. Jayakody & Ammar Muthanna & Salil Bharany & Ibrahim A. Elgendy, 2022. "Blockchain-Based Solutions Supporting Reliable Healthcare for Fog Computing and Internet of Medical Things (IoMT) Integration," Sustainability, MDPI, vol. 14(22), pages 1-17, November.
    11. Sanjay Kumar & Rafeeq Ahmed & Salil Bharany & Mohammed Shuaib & Tauseef Ahmad & Elsayed Tag Eldin & Ateeq Ur Rehman & Muhammad Shafiq, 2022. "Exploitation of Machine Learning Algorithms for Detecting Financial Crimes Based on Customers’ Behavior," Sustainability, MDPI, vol. 14(21), pages 1-24, October.
    12. Satheeshkumar Palanisamy & Balakumaran Thangaraju & Osamah Ibrahim Khalaf & Youseef Alotaibi & Saleh Alghamdi & Fawaz Alassery, 2021. "A Novel Approach of Design and Analysis of a Hexagonal Fractal Antenna Array (HFAA) for Next-Generation Wireless Communication," Energies, MDPI, vol. 14(19), pages 1-18, September.
    13. Salil Bharany & Sandeep Sharma & Surbhi Bhatia & Mohammad Khalid Imam Rahmani & Mohammed Shuaib & Saima Anwar Lashari, 2022. "Energy Efficient Clustering Protocol for FANETS Using Moth Flame Optimization," Sustainability, MDPI, vol. 14(10), pages 1-22, May.
    14. Mudassir Khan & A. Ilavendhan & C. Nelson Kennedy Babu & Vishal Jain & S. B. Goyal & Chaman Verma & Calin Ovidiu Safirescu & Traian Candin Mihaltan, 2022. "Clustering Based Optimal Cluster Head Selection Using Bio-Inspired Neural Network in Energy Optimization of 6LowPAN," Energies, MDPI, vol. 15(13), pages 1-14, June.
    15. Na Huang & Xiang Li & Quanming Xu & Ronghao Chen & Huidong Chen & Aidong Chen, 2023. "Artificial Intelligence-Based Temperature Twinning and Pre-Control for Data Center Airflow Organization," Energies, MDPI, vol. 16(16), pages 1-15, August.
    16. Hemavathi & Sreenatha Reddy Akhila & Youseef Alotaibi & Osamah Ibrahim Khalaf & Saleh Alghamdi, 2022. "Authentication and Resource Allocation Strategies during Handoff for 5G IoVs Using Deep Learning," Energies, MDPI, vol. 15(6), pages 1-27, March.
    17. Kuruva Lakshmanna & Neelakandan Subramani & Youseef Alotaibi & Saleh Alghamdi & Osamah Ibrahim Khalafand & Ashok Kumar Nanda, 2022. "Improved Metaheuristic-Driven Energy-Aware Cluster-Based Routing Scheme for IoT-Assisted Wireless Sensor Networks," Sustainability, MDPI, vol. 14(13), pages 1-19, June.
    18. Shailendra Pratap Singh & Youseef Alotaibi & Gyanendra Kumar & Sur Singh Rawat, 2022. "Intelligent Adaptive Optimisation Method for Enhancement of Information Security in IoT-Enabled Environments," Sustainability, MDPI, vol. 14(20), pages 1-23, October.
    19. Monika Eisenbardt & Tomasz Eisenbardt, 2023. "Can Cryptocurrencies Be Feasibly Adopted as a National Currency? The Perspective of the Younger Generation," European Research Studies Journal, European Research Studies Journal, vol. 0(2), pages 463-481.

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:gam:jsusta:v:14:y:2022:i:19:p:12288-:d:927128. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: MDPI Indexing Manager (email available below). General contact details of provider: https://www.mdpi.com .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.