Presentation is loading. Please wait.

Presentation is loading. Please wait.

Address Spoofing, DoS, and VoIP Groups 5 and 6. Spoofing, DoS, and VoIP MAC Address Spoofing MAC Address Spoofing IP Spoofing IP Spoofing DNS Spoofing.

Published byKristopher Brendan Flynn Modified over 8 years ago

Similar presentations

Presentation on theme: "Address Spoofing, DoS, and VoIP Groups 5 and 6. Spoofing, DoS, and VoIP MAC Address Spoofing MAC Address Spoofing IP Spoofing IP Spoofing DNS Spoofing."— Presentation transcript:

1 Address Spoofing, DoS, and VoIP Groups 5 and 6

2 Spoofing, DoS, and VoIP MAC Address Spoofing MAC Address Spoofing IP Spoofing IP Spoofing DNS Spoofing DNS Spoofing TCP Spoofing TCP Spoofing DoS DoS E-mail Spoofing E-mail Spoofing VoIP Vulnerabilities VoIP Vulnerabilities

3 MAC Address Spoofing Windows: Control Panel setting Windows: Control Panel setting Linux: Linux: –ifconfig eth0 hw ether –ifconfig eth0 hw ether Detection: arpwatch Detection: arpwatch

4 IP Spoofing wINJECT wINJECT Fraggle Fraggle Stream Stream Detection: Detection: –Monitor traffic at border gateways

5 DNS Spoofing dsniff dsniff –Add to hostfile: –dsniff –i eth0 –f hostfile

6 DNS Spoofing Early warning: Early warning: –DoS slowing down valid DNS responses Prevention: Prevention: –Eventually, DNSSEC –Now: Server – SSL Server – SSL Client – check SSL certificate or use whois to confirm IP address Client – check SSL certificate or use whois to confirm IP address

7 TCP Spoofing Invading the Three-Way Handshake Invading the Three-Way Handshake A DoS attack: tcpkill A DoS attack: tcpkill Other dangers: SMTP Other dangers: SMTP –No need to be on network Defenses: Defenses: –Border routers should filter improper IP’s –What if hacker is on the network?

8 TCP Spoofing (cont.) Defense: Don’t get denied service! Defense: Don’t get denied service!

9 DoS Attacks Datapool: 106 DoS attacks Datapool: 106 DoS attacks Synful: SYN attack Synful: SYN attack Teardrop: fragments Teardrop: fragments UDPflood UDPflood Extra Attacks: Were any effective? Extra Attacks: Were any effective? Defenses hard to generalize Defenses hard to generalize

10 E-mail Spoofing Causes SMTP protocol does not authenticate SMTP protocol does not authenticate –Can include arbitrary FROM: address Mail servers become open relay for spammers Mail servers become open relay for spammersSolutions SMTP AUTH extension SMTP AUTH extension Certified Server Validation (CSV) and Sender Policy Framework (SPF) Protocols Certified Server Validation (CSV) and Sender Policy Framework (SPF) Protocols –Verify sender’s IP address with DNS entry

11 VoIP Security Sound data transmitted unencrypted Sound data transmitted unencrypted Vomit Vomit –Ethereal output to.wav conversion SIP supports encryption (S-RTP) SIP supports encryption (S-RTP) Voice over IP Security Alliance (VOIPSA) Voice over IP Security Alliance (VOIPSA)

12 Sources http://www.dnssec.net/ http://www.dnssec.net/ http://www.iglu.org.il/august/tcp- spoofing-html/ http://www.iglu.org.il/august/tcp- spoofing-html/ http://www.csvmail.org/ http://www.csvmail.org/ http://www.openspf.org/ http://www.openspf.org/ http://www.voipsa.org/ http://www.voipsa.org/

13 Questions ?

Download ppt "Address Spoofing, DoS, and VoIP Groups 5 and 6. Spoofing, DoS, and VoIP MAC Address Spoofing MAC Address Spoofing IP Spoofing IP Spoofing DNS Spoofing."

Similar presentations

Ethical Hacking Module VII Sniffers.

Ethical Hacking Module VII Sniffers.
COMP 7320 Internet Security: Prevention of DDoS Attacks By Dack Phillips.

COMP 7320 Internet Security: Prevention of DDoS Attacks By Dack Phillips.
Addressing Security Issues IT Expo East 2011. Addressing Security Issues Unified Communications SIP Communications in a UC Environment.

Addressing Security Issues IT Expo East Addressing Security Issues Unified Communications SIP Communications in a UC Environment.
NETWORK SECURITY ADD ON NOTES MMD © Oct2012. IMPLEMENTATION Enable Passwords On Cisco Routers Via Enable Password And Enable Secret Access Control Lists.

NETWORK SECURITY ADD ON NOTES MMD © Oct2012. IMPLEMENTATION Enable Passwords On Cisco Routers Via Enable Password And Enable Secret Access Control Lists.
Paul Vanbosterhaut Managing Director, Vircom Europe January 2007 ModusGate™ 4.4 Smart Email Assurance Gateway Not Just Warmed-over Open Source Technology…

Paul Vanbosterhaut Managing Director, Vircom Europe January 2007 ModusGate™ 4.4 Smart Assurance Gateway Not Just Warmed-over Open Source Technology…
Network and Application Attacks Contributed by- Chandra Prakash Suryawanshi CISSP, CEH, SANS-GSEC, CISA, ISO 27001LI, BS 25999LA, ERM (ISB) June 2006.

Network and Application Attacks Contributed by- Chandra Prakash Suryawanshi CISSP, CEH, SANS-GSEC, CISA, ISO 27001LI, BS 25999LA, ERM (ISB) June 2006.
Firewalls By Tahaei Fall 2012. What is a firewall? a choke point of control and monitoring interconnects networks with differing trust imposes restrictions.

Firewalls By Tahaei Fall What is a firewall? a choke point of control and monitoring interconnects networks with differing trust imposes restrictions.
Module 7: Configuring Access to Internal Resources.

Module 7: Configuring Access to Internal Resources.
IUT– Network Security Course 1 Network Security Firewalls.

IUT– Network Security Course 1 Network Security Firewalls.
Cisco 2 - Routers Perrine. J Page 14/30/2015 Chapter 10 TCP/IP Protocol Suite The function of the TCP/IP protocol stack is to transfer information from.

Cisco 2 - Routers Perrine. J Page 14/30/2015 Chapter 10 TCP/IP Protocol Suite The function of the TCP/IP protocol stack is to transfer information from.
Hands-On Ethical Hacking and Network Defense Lecture 15 Man in the Middle Attack to get Passwords from HTTPS Sessions.

Hands-On Ethical Hacking and Network Defense Lecture 15 Man in the Middle Attack to get Passwords from HTTPS Sessions.
Denial of Service & Session Hijacking.  Rendering a system unusable to those who deserve it  Consume bandwidth or disk space  Overwhelming amount of.

Denial of Service & Session Hijacking.  Rendering a system unusable to those who deserve it  Consume bandwidth or disk space  Overwhelming amount of.
1 Reading Log Files. 2 Segment Format

1 Reading Log Files. 2 Segment Format
Sniffing, Spoofing, Hijacking This presentation is an amalgam of presentations by Mark Michael, Randy Marchany and Ed Skoudis. I have edited and added.

Sniffing, Spoofing, Hijacking This presentation is an amalgam of presentations by Mark Michael, Randy Marchany and Ed Skoudis. I have edited and added.
Computer Security Fundamentals by Chuck Easttom Chapter 4 Denial of Service Attacks.

Computer Security Fundamentals by Chuck Easttom Chapter 4 Denial of Service Attacks.
Web Server Administration TEC 236 Securing the Web Environment.

Web Server Administration TEC 236 Securing the Web Environment.
Network Attacks Mark Shtern.

Network Attacks Mark Shtern.
Lecture 25: Firewalls Introduce several types of firewalls

Lecture 25: Firewalls Introduce several types of firewalls
CMSC 414 Computer (and Network) Security Lecture 16 Jonathan Katz.

CMSC 414 Computer (and Network) Security Lecture 16 Jonathan Katz.
1 Network Security Derived from original slides by Henric Johnson Blekinge Institute of Technology, Sweden From the book by William Stallings.

1 Network Security Derived from original slides by Henric Johnson Blekinge Institute of Technology, Sweden From the book by William Stallings.

Similar presentations

Ads by Google