{[ promptMessage ]}

Bookmark it

{[ promptMessage ]}

Is Your Network Safe

Is Your Network Safe - Toolbox Computer Security Network...

Info iconThis preview shows pages 1–5. Sign up to view the full content.

View Full Document Right Arrow Icon
1 Computer Security Is Your Network Safe? Toolbox Network scouting OS fingerprinting Vulnerability scanner Network trace analysis Why scouting is important ? Scouting is the first step. You can’t attack what you don’t know. Scouting Process Hosts Ports Services Vulnerabilities DNS Queries Port scanning Topological Mapping DNS info DNS info Ping Traceroute Firewalking Ping Standard : ICMP TCP works as well ARP-ping (lan only) box:~# arping 192.168.0.1ARPING 192.168.0.160 bytes from 00:21:91:f8:48:3a (192.168.0.1): index=0 time=6.410 msec60 bytes from 00:21:91:f8:48:3a (192.168.0.1): index=1 time=3.351 msec60 bytes from 00:21:91:f8:48:3a (192.168.0.1): index=2 time=2.839 msec60 bytes from 00:21:91:f8:48:3a (192.168.0.1): index=3 time=7.165 msec Finding Routers traceroute / tracert – man traceroute – tracert /? Play with TTL
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
2 Looking Glass Servers If you do not wish to deal with traceroute on your own computer. In that case, you use use a Looking Glass server. These are publicly available traceroute servers provided by volunteers as a free service. Looking Glass Servers Go to http://www.traceroute.org/ . However, your results will almost certainly be inconsistent with the results from your own location because they use a different path to the server. Vanilla scan – version 1 Vanilla scan – version 2 HalfOpen scan Not standard scan Violates the RFC Null scan : no flag Xmas scan : all flag Fin scan: Fin flag
Background image of page 2
3 Null Scan The null scan turns off all flags. Creates a packet with a lack of TCP flags. This should never occur in the real world. If the port is closed, a RST frame should be returned Sorry! We’re closed! Null Scan The response of a null scan to an open port results in no response. I have nothing to say. XMAS Scan Sorry! We’re closed! 00101001 XMAS Scan Fin Scan port is clo s ed Fin Scan port is open Go ppund salt!
Background image of page 3

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
4 FTP Bounce Attack infamous in the network security world attack is not effective since the retooling of
Background image of page 4
Image of page 5
This is the end of the preview. Sign up to access the rest of the document.

{[ snackBarMessage ]}