Presentation is loading. Please wait.

Presentation is loading. Please wait.

Network Attacks Mark Shtern.

Published byRalf Douglas Hubbard Modified over 9 years ago

Similar presentations

Presentation on theme: "Network Attacks Mark Shtern."— Presentation transcript:

1 Network Attacks Mark Shtern

2 Types Of Network Attack
Passive attack Active attack

3 Passive network attack
Sniffing network traffic Wireshark Tcpdump Dsniff Reverse Engineer Protocol OS finger-printing p0f

4 Active network attack Masquerade (spoofing) Denial of Service (DoS)
Replay Attack, Reordering Message tampering (session hijacking)

5 Spoofing (ARP Poisoning)
ARP = Address Resolution Protocol ARP is used to find the destination node. In order to deliver the packet to the destination node, the sender broadcasts the IP address of the destination and obtains the MAC address (48-bits).

6 Spoofing (ARP Poisoning)
Copied from

7 ARP Poisoning Tools ARPoison Ettercap

8 TCP Handshake

9 DoS SYN flooding attack
SYN packets are sent to the target node with fake source IP addresses The node under attack sends an ACK packet and waits for response Since the request has not been processed, it takes up memory Eventually the attacked node is unable to process any requests as it runs out of memory storage space

10 Replay Replay involves capturing traffic while in transit and use that to gain access to systems. Example: Hacker sniffs login information of a valid user Even if the information is encrypted, the hacker replays the login information to fool the system and gains access

11 Replay Attack

12 Session hijack This means that the hacker has directed traffic to his server instead of a trusted server that the victim is assuming Example: A hacker ARP poisons the router to route all traffic to his computer The hacker modifies data packages

13 Questions ???

Download ppt "Network Attacks Mark Shtern."

Similar presentations

Module X Session Hijacking

Module X Session Hijacking
Ethical Hacking Module VII Sniffers.

Ethical Hacking Module VII Sniffers.
Network Vulnerabilities and Attacks Dr. John Abraham UTPA.

Network Vulnerabilities and Attacks Dr. John Abraham UTPA.
Security Lab 2 MAN IN THE MIDDLE ATTACK

Security Lab 2 MAN IN THE MIDDLE ATTACK
Man in the Middle Attack

Man in the Middle Attack
ARP Spoofing.

ARP Spoofing.
Network and Application Attacks Contributed by- Chandra Prakash Suryawanshi CISSP, CEH, SANS-GSEC, CISA, ISO 27001LI, BS 25999LA, ERM (ISB) June 2006.

Network and Application Attacks Contributed by- Chandra Prakash Suryawanshi CISSP, CEH, SANS-GSEC, CISA, ISO 27001LI, BS 25999LA, ERM (ISB) June 2006.
Computer Security and Penetration Testing

Computer Security and Penetration Testing
Hands-On Ethical Hacking and Network Defense Lecture 15 Man in the Middle Attack to get Passwords from HTTPS Sessions.

Hands-On Ethical Hacking and Network Defense Lecture 15 Man in the Middle Attack to get Passwords from HTTPS Sessions.
Dr. Igor Santos.  Denial of Service  Man in the middle  ICMP attacks 2.

Dr. Igor Santos.  Denial of Service  Man in the middle  ICMP attacks 2.
Denial of Service & Session Hijacking.  Rendering a system unusable to those who deserve it  Consume bandwidth or disk space  Overwhelming amount of.

Denial of Service & Session Hijacking.  Rendering a system unusable to those who deserve it  Consume bandwidth or disk space  Overwhelming amount of.
1 Reading Log Files. 2 Segment Format

1 Reading Log Files. 2 Segment Format
Sniffing, Spoofing, Hijacking This presentation is an amalgam of presentations by Mark Michael, Randy Marchany and Ed Skoudis. I have edited and added.

Sniffing, Spoofing, Hijacking This presentation is an amalgam of presentations by Mark Michael, Randy Marchany and Ed Skoudis. I have edited and added.
Suneeta Chawla Web Security Presentation Topic : IP Spoofing Date : 03/24/04.

Suneeta Chawla Web Security Presentation Topic : IP Spoofing Date : 03/24/04.
Security (Continued) V.T. Raja, Ph.D., Oregon State University.

Security (Continued) V.T. Raja, Ph.D., Oregon State University.
1 Eastern Michigan University Asad Khailany, Eastern Michigan University Dmitri Bagatelia, Eastern Michigan University Wafa Khorsheed, Eastern Michigan.

1 Eastern Michigan University Asad Khailany, Eastern Michigan University Dmitri Bagatelia, Eastern Michigan University Wafa Khorsheed, Eastern Michigan.
Hacking Presented By :KUMAR ANAND SINGH 04-243,ETC/2008.

Hacking Presented By :KUMAR ANAND SINGH ,ETC/2008.
IP Spoofing, CS2651 IP Spoofing Bao Ho ToanTai Vu CS 265 - Security Engineering Spring 2003 San Jose State University.

IP Spoofing, CS2651 IP Spoofing Bao Ho ToanTai Vu CS Security Engineering Spring 2003 San Jose State University.
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Information.

Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Information.
Analysis of Attack By Matt Kennedy. Different Type of Attacks o Access Attacks o Modification and Repudiation Attacks o DoS Attacks o DDoS Attacks o Attacks.

Analysis of Attack By Matt Kennedy. Different Type of Attacks o Access Attacks o Modification and Repudiation Attacks o DoS Attacks o DDoS Attacks o Attacks.

Similar presentations

Ads by Google