Presentation is loading. Please wait.

Presentation is loading. Please wait.

Network and System Security Risk Assessment

Published byFrederica Pierce Modified over 6 years ago

Similar presentations

Presentation on theme: "Network and System Security Risk Assessment"— Presentation transcript:

1 Network and System Security Risk Assessment
--Introduction

2 Outline Why to begin this subject? What is in this course? 知己知彼,百战不殆。
Network Security System Security What is in this course? Network protocols and problems System security configuration and programming 知己知彼,百战不殆。

3 some interesting examples
Conan Kevin Mitnick And other hackers

4 An interesting movie clip
Phreaking is a slang term coined to describe the activity of a culture of people who study, experiment with, or explore telecommunication systems, such as equipment and systems connected to public telephone networks.

5 An interesting interview
Kevin Mitnick interview Kevin Mitnick attack in 1994 From the material we know, unlike most other hackers, Kevin Mitnick is quite social.

6 Purpose of the Course provide a basic introduction on common network and system security vulnerabilities; Cultivate basic networking and system programming skills;

7 Content of the Course Analysis of packet structure
Packet sniffing Port scanning…. …. Introduction to a number of threats and vulnerabilities of TCP/IP protocol stack: ARP poison… TCP SYN Flooding

8 Content of the Course Cover some computer system security problems and programming Firewall: iptables & netfilter Kernel module Rootkit ….

9 Experiments Write simple programs: backdoor; sniffer; Firewall;
Rootkit; ….

10 Expectation: Get an in-depth understanding of TCP/IP protocol stack
Familiarize with usage of various network commands and tools Master socket programming, netfilter, etc.

11 Contents of Network Security
Protocols, Vulnerabilities, Attacks & Defences ARP Protocol and ARP cache poisioning IP protocol, packet sniffering, IP spoofing, IP fragmentation attacks ICMP protocol and ICMP misbehaviors TCP protocol, TCP session hijacking, SYN flooding attacks, DoS attacks, and DDoS attacks IP Routing protocols and Attacks DNS and Pharming Port scanning and signature identification.

12 Skills to be mastered Various commands Various tools

13 Grading (subject to change)
Final Exam: 60% Labs and Projects: 30% Class Attendance: 10%

14 Demo: Security Tricks ARP Poisoning
Attackers use spoofed ARP message in LAN to associate MAC address and IP address in a malicious way to poison victim’s ARP cache Netwox 80 –eth –ip –eth-dst --ip-dst

15 Demo: Security Tricks ICMP Redirect Attack
Attackers sends ICMP redirect message to user, spoofing as default route, to change the best routing to attacker itself netwox 86 –gw –src-ip

16 Demo: Security Tricks SYN Flooding Attacks:
Perform denial of service attack, attacker sends packets of SYN request message to target and never sends ACK message. Netwox 76 –dst-ip --dst-port

17 Demo: Security Attacks
Backdoor Based on socket programming, this program will bind to a port and waits for a password The program is with root priviledge

18 Demo: Security Tricks A packet sniffer:
Write a program to sniff packets on the local machine with libpcap Compile self-defined rules

19 Demo: security tricks A simple packet filter:
Which will filter packets on lo interface, UDP packets, etc.

20 Demo: Security Tricks A simple rootkit to hide a process
When using ps, a process can be kept from shown

21 Reference http://baike.baidu.com/view/165032.htm

Download ppt "Network and System Security Risk Assessment"

Similar presentations

Network Vulnerabilities and Attacks Dr. John Abraham UTPA.

Network Vulnerabilities and Attacks Dr. John Abraham UTPA.
Man in the Middle Attack

Man in the Middle Attack
Lesson 3-Hacker Techniques

Lesson 3-Hacker Techniques
Denial of Service & Session Hijacking.  Rendering a system unusable to those who deserve it  Consume bandwidth or disk space  Overwhelming amount of.

Denial of Service & Session Hijacking.  Rendering a system unusable to those who deserve it  Consume bandwidth or disk space  Overwhelming amount of.
CIS 193A – Lesson13 Attack and Defense. CIS 193A – Lesson13 Focus Question Describe how Nmap, psad, and iptables work together for playing out attack.

CIS 193A – Lesson13 Attack and Defense. CIS 193A – Lesson13 Focus Question Describe how Nmap, psad, and iptables work together for playing out attack.
Network Security of Labnet ******. Introduction Test the network security of the servers on our Labnet domain Find Potential Weaknesses Find Security.

Network Security of Labnet ******. Introduction Test the network security of the servers on our Labnet domain Find Potential Weaknesses Find Security.
Sniffing, Spoofing, Hijacking This presentation is an amalgam of presentations by Mark Michael, Randy Marchany and Ed Skoudis. I have edited and added.

Sniffing, Spoofing, Hijacking This presentation is an amalgam of presentations by Mark Michael, Randy Marchany and Ed Skoudis. I have edited and added.
Suneeta Chawla Web Security Presentation Topic : IP Spoofing Date : 03/24/04.

Suneeta Chawla Web Security Presentation Topic : IP Spoofing Date : 03/24/04.
Hacking Linux Based on Hacking Linux Exposed Hatch, Lee, and Kurtz ISBN 0-07-212773-2.

Hacking Linux Based on Hacking Linux Exposed Hatch, Lee, and Kurtz ISBN
Computer Security Fundamentals by Chuck Easttom Chapter 4 Denial of Service Attacks.

Computer Security Fundamentals by Chuck Easttom Chapter 4 Denial of Service Attacks.
Network Attacks Mark Shtern.

Network Attacks Mark Shtern.
IP Spoofing, CS2651 IP Spoofing Bao Ho ToanTai Vu CS 265 - Security Engineering Spring 2003 San Jose State University.

IP Spoofing, CS2651 IP Spoofing Bao Ho ToanTai Vu CS Security Engineering Spring 2003 San Jose State University.
Scanning February 23, 2010 MIS 4600 – MBA 5880 - © Abdou Illia.

Scanning February 23, 2010 MIS 4600 – MBA © Abdou Illia.
TCP/IP Network and Firewall. IP Packet Protocol  1 ICMP packet  6 TCP packet  17 UDP packet.

TCP/IP Network and Firewall. IP Packet Protocol  1 ICMP packet  6 TCP packet  17 UDP packet.
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Information.

Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Information.
FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 6 Packet Filtering By Whitman, Mattord, & Austin© 2008 Course Technology.

FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 6 Packet Filtering By Whitman, Mattord, & Austin© 2008 Course Technology.
COEN 252: Computer Forensics Router Investigation.

COEN 252: Computer Forensics Router Investigation.
Introduction to InfoSec – Recitation 12 Nir Krakowski (nirkrako at post.tau.ac.il) Itamar Gilad (itamargi at post.tau.ac.il)

Introduction to InfoSec – Recitation 12 Nir Krakowski (nirkrako at post.tau.ac.il) Itamar Gilad (itamargi at post.tau.ac.il)
Internet Relay Chat Security Issues By Kelvin Lau and Ming Li.

Internet Relay Chat Security Issues By Kelvin Lau and Ming Li.
Common forms and remedies Neeta Bhadane Raunaq Nilekani Sahasranshu.

Common forms and remedies Neeta Bhadane Raunaq Nilekani Sahasranshu.

Similar presentations

Ads by Google