An Ettercap Primer
The purpose of this paper is to raise awareness of the flexibility of ettercap's features, to demonstrate several of its specific capabilities, and to offer defensive strategies. While there are countermeasures that may be implemented to prevent successful ettercap attacks, many LANs remain all too vulnerable.
Read the Article
|
SiVuS User Guide
User guide that covers the installation and operation of SiVuS the first publicly available vulnerability scanner for VoIP networks that use the SIP protocol.
Read the Article
|
User Info and User Dump Tutorial
The UserInfo and UserDump tools enumerate user credentials on Microsoft OS's as null sessions. Null sessions allow an anonymous attackers to extract a great deal of information about a system, most importantly, account names. They are dangerous because they allow attackers to pull juicy user data from the machine. Windows NT, 2000 and even Server 2003 domain controllers are susceptible to enumeration using null sessions. The key point to take away on null sessions and enumeration is that you can obtain account names to use on dictionary attacks and other information like last logon, privileges, and when and if the password expires. It even gives you the logon hours so we aren't knocking on the door when the user should be asleep and not able to log in.
Read the Article
|
Data reassembly with Ethereal
If you're like me, you've probably installed some flavor of Windows Server at some point, and you eventually got around to installing and playing with Network Monitor. Wow! Packet sniffing! You were excited to see what cool new worlds were going to open up to you. You quickly launched Network Monitor, started capturing data... and um... then what. You looked at all the cryptic information you've gathered, and you can decipher bits and pieces - but it's really not all that interesting. Other than source and destination ports and IP addresses, most of it doesn't make a lot of sense. Viewing the data payloads can be mildly interesting - if the information captured was transmitted in clear text, such as an IM conversation, FTP traffic or emails... but a lot of traffic is not transmitted in clear text. So what do you do with that?
Read the Article
|
Sniffing in a Switched Network - Arp Spoofing Using Ettercap and Ethereal
Many of us know that sniffing is possible in a shared i.e. non-switched ethernet environment. But only few of us know that sniffing is also possible in a switched ethernet environment. One of the reasons is that it's not that straighforward. But it's not impossible or difficult. You can use man in the middle technique like ARP spoofing to sniff in a switched environment. This presentation is an attempt to explain how can somebody sniff in a switched ethernet using ARP spoofing. Dsniff has existed for long as a tool for various sniffing activities. But recently, tools like EttercapNG have made it easier.
Read the Article
|
Monitoring Network Traffic
Reading network traffic is essential for system administrators, network engineers, and security analysts. At some point there will be a need to read the network traffic directly instead of monitoring application level details. Examples of situations that might require monitoring network traffic are, auditing network security, debugging network configurations, and analyzing usage patterns.
Read the Article
|
NetCat Tutorial
Throughout this tutorial, I will be giving examples on Linux systems. The official Netcat homepage makes no reference to Windows systems, however I have successfully built Netcat from source under Cygwin, and you can find a Win32 copy built by "@Stake" and all examples used below are fully supported under Windows.
Read the Article
|
Simple Traffic Analysis With Ethereal
This paper describes how to use the Ethereal Display Filter to examine a capture log file. The data analyzed was recorded by port and the amount of packet traffic received. The attack patterns that emerged from the data analysis generally correspond with well published vulnerabilities from expected open ports on a server. Attackers also seem to have a variety of ways to get a server and/or firewall to acknowledge traffic and verify a potential target.
Read the Article
|
Security Tool Review and Howto: kismet/gkismet
Kismet is an open source utility used for monitoring wireless network traffic. It is a popular choice for detecting/enumerating wireless access points and wireless clients.
Read the Article
|
Security Tool Review and Howto: nbtscan
As security conscious administrators or information security professionals we must remain up to date in the world of vulnerabilities. Knowing where these vulnerabilities lie in your I.T. infrastructure is an essential step to successful risk mitigation. This section will be dedicated to reviewing tools that will help us in identifying and locate various security vulnerabilities.
Read the Article
|
