GIAC
192.0.0.0 through 223.255.255.255 - subnet mask of 255.255.255.0
Going around with equipment to detect wireless networks
Switches along the path can be requested to allocate the desired amount of bandwidth. If the circuit has the required bandwidth - the circuit is set up.
Local area network - small network confined to small location - all equipment owned by a single entity - vulnerable to inside threats and logic bombs
Outside attack from network - Outsider attack from telephone - Insider attack from local network - insider attack from local system - attack from malicious code
Protected at rest - protected in transit - secure the key
Wide Area Network - Larger than MAN or LAN - uses public network - phone lines - and leased lines to tie LAN and MAN over a dispersed area
Handles the network address scheme and connectivity of multiple network segments. It handles communication.
53 bytes - 48 bytes for data - 5 bytes for the header
1.0.0.0 through 127.255.255.255 - subnet mask starts at 255.0.0.0
Allows admins to remotely access a system for troubleshooting. - E.g VNC - GoToMyPc - PC Anywhere
Stateful firewalls maintain state of traffic flows
Physical layer - Data link layer - Network Layer - Transport Layer - Session Layer - Presentation Layer - Application Layer
A cracking tool inserted into the OS that allows the attacker to do as they please.
Simplest form of a research honeypot - useful in identifying nature of TCP scans - allows attacker to complete 3-way handshake - listens on a defined port - logs incoming requests for analysis
Program disguised as something helpful - only to perform actions the user did not intend. Opening ports - installing other programs - etc.
Malicious code might execute destructive overwrite to hard disks -Malicious mas mailing code might expose sensitive information to the internet - web server compromise might expose organization to ridicule - Web server compromise might expose custom
An agreement on how different computer will work - protocols define the format and order of messages and what to do upon receipt of the messages - basically the rules of the network
FTP data - 21 - FTP - 23 - Telnet - 25 - SNMP - 53 - DNS - 79 - Finger - 80 - HTTP - 110 - POP - 443 - HTTPS
ATM supports two types of virtual circuits: permanent virtual circuits and switches virtual circuit - PVC is set up in advance - usually manually - SVC is established automatically through a signaling protocol and can be created on the fly - establis
UDP based infection - infected through vulnerability in SQL server - caused DoS on saturated networks
An FTP that allows downloads only if the user knows the exact name of the file they're looking for
True positive - false positive - true negative - false negative
Most commonly used transport protocol today - ensures reliable packet delivery - has error handling built in
Simple attack done by simply browsing available information that's allowed on a local network.
Confidentiality - integrity - availability