Class 3 Lab 4 ‐ Bypassing DLP - Justin-Boyd/CIT-Class GitHub Wiki

Task 1: Installing Chrome

Step 1

Drag and drop the ChromeSetup.exe file to the Windows 7 machine.

Step 2

Install ChromeSetup.exe to the Windows 7 machine. Once the installation is complete, Chrome will open.

Task 2: Scanning an Encoded File

Step 1

Make sure both OpenDLP and Windows 7 machines are running. There’s no need to log into OpenDLP.

Step 2

In your Windows 7 machine, open the browser and browse to https://www.base64encode.org/

Step 3

Double-click the Deployed_Agents.html file and copy its contents. The file should be in the Windows 7 Downloads folder.

Step 4

Paste the content in the area for encoding text on the website opened earlier.

Step 5

Click Encode and copy the result.

Step 6

Right-click the Deployed_Agents.html file and select Open with….

Step 7

Click Other Programs, select Notepad, and then click OK.

Step 8

Replace the contents with the text copied from the website. Then press Ctrl + s to save the file

Step 9

Browse to the OpenDLP interface at https:///OpenDLP/index.html and click OK in the certification confirmation.

Step 10

Select Continue to this website and then click OK in the certification confirmation.

Step 11

Enter the username dlpuser and the password OpenDLP and click OK.

Step 12

Select Scans and then click Start New Scan.

Step 13

Name the scan Bypass and select the profile Win7 (win_share). In the Systems to scan area, enter the path to the shared Downloads folder used in the previous lab. Then click Start to begin the scan.

Step 14

Navigate to View Scans/Results.

Step 15

Select the Bypass scan and click View Scan Details.

Step 16

Note the findings show 0, which means the OpenDLP tool was unable to detect the sensitive encoded data.

⚠️ GitHub.com Fallback ⚠️