{[ promptMessage ]}

Bookmark it

{[ promptMessage ]}

homework_4 - Jose Ortiz Jr IT 430 Homework 4 April 7 2009 1...

Info icon This preview shows pages 1–2. Sign up to view the full content.

View Full Document Right Arrow Icon
Jose Ortiz Jr. IT 430 Homework 4 April 7, 2009 1) Discuss two ways to determine which ports are allowed through a firewall and which ports are filtered in the context of a penetration test. 2) Discuss several methods used to bypass a firewall in the context of a penetration test. 3) Describe the two categories of intrusion detection systems and how these systems can be circumvented in the context of a penetration test. 4) Discuss how MAC table flooding and ARP attacks can be used to attack network switches during a penetration test. With MAC table flooding, MAC addresses are stored in content addressable memory (CAM), which is 128 K of reserved memory to store MAC addresses for quick lookup. If a malicious hacker can flood CAM, he can cause the switch to begin flooding traffic everywhere, opening the door to man-in-the-middle (MITM) attacks or, even worse, crashing the switch in a DoS attack. ARP requests are sent out as broadcasts so that all hosts receive the request. A malicious hacker can send a spoofed ARP reply to capture
Image of page 1

Info icon This preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
Image of page 2
This is the end of the preview. Sign up to access the rest of the document.
  • Spring '09
  • Scher,statica
  • Computer network, IP address, MAC address, Denial-of-service attack, Address Resolution Protocol, Penetration test

{[ snackBarMessage ]}

What students are saying

  • Left Quote Icon

    As a current student on this bumpy collegiate pathway, I stumbled upon Course Hero, where I can find study resources for nearly all my courses, get online help from tutors 24/7, and even share my old projects, papers, and lecture notes with other students.

    Student Picture

    Kiran Temple University Fox School of Business ‘17, Course Hero Intern

  • Left Quote Icon

    I cannot even describe how much Course Hero helped me this summer. It’s truly become something I can always rely on and help me. In the end, I was not only able to survive summer classes, but I was able to thrive thanks to Course Hero.

    Student Picture

    Dana University of Pennsylvania ‘17, Course Hero Intern

  • Left Quote Icon

    The ability to access any university’s resources through Course Hero proved invaluable in my case. I was behind on Tulane coursework and actually used UCLA’s materials to help me move forward and get everything together on time.

    Student Picture

    Jill Tulane University ‘16, Course Hero Intern