


























































Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
An in-depth analysis of various cyber attacks, including denial-of-service (dos) attacks (syn flood, smurf, and ip fragmentation attacks), spoofing attacks (ip address, arp, web, and dns spoofing), social engineering attacks (dumpster diving and online attacks), and attacks against encrypted data (weak keys, mathematical attacks, birthday attack, password guessing, brute force, and dictionary attacks). The document also covers countermeasures for each type of attack.
Typology: Slides
1 / 66
This page cannot be seen from the preview
Don't miss anything!



























































Chapter 3
Explain denial-of-service (DoS) attacks Explain and discuss ping-of-death attacks Identify major components used in a DDoSattack and how they are installed Understand major types of spoofing attacks Discuss man-in-the-middle attacks, replayattacks, and TCP session hijacking continued…
Any malicious act that causes a system tobe unusable by its real user(s) Take numerous forms Are very common Can be very costly Major types SYN flood Smurf attack
Exploits the TCP three-way handshake Inhibits server’s ability to accept new TCPconnections
Uses IP packet fragmentation techniques tocrash remote systems
Use hundreds of hosts on the Internet to attackthe victim by flooding its link to the Internet ordepriving it of resources Used by hackers to target government andbusiness Internet sites Automated tools; can be executed by scriptkiddies Result in temporary loss of access to a given siteand associated loss in revenue and prestige
Security patches from software vendors Antivirus software Firewalls Ingress (inbound) and egress (outbound)filtering
Block at the firewall any packet that uses aprotocol or port that is not used for Internetcommunications on the network Block packets with a source addressoriginating inside your network fromentering your network