Presentation is loading. Please wait.

Presentation is loading. Please wait.

Attack Methods  Attacks  DoS (Denial of Service)  Malware.

Published byTerence Harrell Modified over 8 years ago

Similar presentations

Presentation on theme: "Attack Methods  Attacks  DoS (Denial of Service)  Malware."— Presentation transcript:

1 Attack Methods  Attacks  DoS (Denial of Service)  Malware

2 Attacks  Collect information (mapping)  Break-In  Complete the Attack

3 Attack – Collect Information  Uncover the network (the active hosts) - ping-scan ( ping-sweep ) reverse nslookup  Eg. IpAngry  Uncover the application running - port-scanning ( nmap ) - fingerprints ( SW and version ) active & passive  Stealth scanning ( reduce, selective.. )  Packet Sniffering ( Eg. Ethereal )

4 Attack – Break-in  Password guessing  Known security holes ( bb/group )  Session Hijacking ( Seq# guess, relay )

5 Attack - Complete  What to do when a hacker is in  Downloads diff. tools ( sniffer,cracker,… )  Clear logs ( no tracks )  Setup backdoors ( accounts, applications, … ) spyware, Back Orifice, ….

6 Denial of Service  Single message DoS ( poor implementation of protocols Ping of Death )  Flooding Syn, smurf ( IP-spoofing )  Distributed DoS 1)zombies 2)attack ( e.g.one of above )

7 Malware  Virus  Worm  Protection

8 Malware - Overview Malware Needs Host Programs Independent * Trap doors* Worm * Logic Bombs* Zombie * Trojan Horse * Virus

9 Malware - Virus  Types of viruses  Parasitic (old fashion)  Memory-resident (even in Bios)  Boot sector  Stealth (tries to look uninfected)  Polymorphic (change ‘signature’)

10 Malware – virus - nature  Lifecycle 4 phases:  Dormant (idle)  Propagation (spreading)  Triggering (activated)  Execution (doing some kind of damage)  Where  E-mail  Macro to word  Programs  And the latest – in mobile phones

11 Malware – Worms ( Zombies )  Lifecycle:  Search new ’host’ – security holes  Connect to new host  Make a copy  Most famous worm (and the first one)  Morris 1988  The fastest spreading worm  Nimda 2001 in 22 minutes number 1 of most active viruses/worms

12 Protection  Antivirus programs  Detect, identification, removal  The battle virus vs. antivirus  Antivirus - Scanning for Signature - Try Generic Decryption - Still the time from a new Virus to get the antivirus become more critical ( e.g. caused this Nimda-worm )

Download ppt "Attack Methods  Attacks  DoS (Denial of Service)  Malware."

Similar presentations

Computer Security Patricia Roy Manatee Community College, Venice, FL ©2008, Prentice Hall Chapters 14 and 15 Operating Systems: Internals and Design Principles,

Computer Security Patricia Roy Manatee Community College, Venice, FL ©2008, Prentice Hall Chapters 14 and 15 Operating Systems: Internals and Design Principles,
30/04/2015Tim S Roberts 20081 COIT13152 Operating Systems T1, 2008 Tim S Roberts.

30/04/2015Tim S Roberts COIT13152 Operating Systems T1, 2008 Tim S Roberts.
Cryptography and Network Security Chapter 19 Fourth Edition by William Stallings.

Cryptography and Network Security Chapter 19 Fourth Edition by William Stallings.
Dr. John P. Abraham Professor UTPA 2 – Systems Threats and Risks.

Dr. John P. Abraham Professor UTPA 2 – Systems Threats and Risks.
Karlstad University Malware Ge Zhang Karlstad Univeristy.

Karlstad University Malware Ge Zhang Karlstad Univeristy.
Malware Ge Zhang Karlstad Univeristy. Focus What malware are Types of malware How do they propagate How do they hide How to detect them.

Malware Ge Zhang Karlstad Univeristy. Focus What malware are Types of malware How do they propagate How do they hide How to detect them.
NS-H0503-02/11041 Malicious Software. NS-H0503-02/11042 Why bother to secure data? Information has value, it can affect our lives and our livelihood Information.

NS-H /11041 Malicious Software. NS-H /11042 Why bother to secure data? Information has value, it can affect our lives and our livelihood Information.
Chapter 14 Computer Security Threats Patricia Roy Manatee Community College, Venice, FL ©2008, Prentice Hall Operating Systems: Internals and Design Principles,

Chapter 14 Computer Security Threats Patricia Roy Manatee Community College, Venice, FL ©2008, Prentice Hall Operating Systems: Internals and Design Principles,
Malicious Software programs exploiting system vulnerabilities known as malicious software or malware program fragments that need a host program e.g. viruses,

Malicious Software programs exploiting system vulnerabilities known as malicious software or malware program fragments that need a host program e.g. viruses,
1 Pertemuan 05 Malicious Software Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.

1 Pertemuan 05 Malicious Software Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
Review for Exam 4 School of Business Eastern Illinois University © Abdou Illia, Fall 2006.

Review for Exam 4 School of Business Eastern Illinois University © Abdou Illia, Fall 2006.
Computer Viruses. History Malicious software – 1970’s Programs distributed over exchange servers speeds spread of viruses Brain sparks term: Virus.

Computer Viruses. History Malicious software – 1970’s Programs distributed over exchange servers speeds spread of viruses Brain sparks term: Virus.
Henric Johnson1 Intruders and Viruses Henric Johnson Blekinge Institute of Technology, Sweden

Henric Johnson1 Intruders and Viruses Henric Johnson Blekinge Institute of Technology, Sweden
After this session, you should be able to:

After this session, you should be able to:
Attacks and Malicious Code Chapter 3. Learning Objectives Explain denial-of-service (DoS) attacks Explain and discuss ping-of-death attacks Identify major.

Attacks and Malicious Code Chapter 3. Learning Objectives Explain denial-of-service (DoS) attacks Explain and discuss ping-of-death attacks Identify major.
1 Computer Viruses (and other “Malicious Programs) Computer “Viruses” and related programs have the ability to replicate themselves on an ever increasing.

1 Computer Viruses (and other “Malicious Programs) Computer “Viruses” and related programs have the ability to replicate themselves on an ever increasing.
Cryptography and Network Security Chapter 21

Cryptography and Network Security Chapter 21
Henric Johnson1 Chapter 10 Malicious Software Henric Johnson Blekinge Institute of Technology, Sweden

Henric Johnson1 Chapter 10 Malicious Software Henric Johnson Blekinge Institute of Technology, Sweden
CSCE 815 Network Security Lecture 20 Intruders / Intrusion Detection April 3, 2003.

CSCE 815 Network Security Lecture 20 Intruders / Intrusion Detection April 3, 2003.

Similar presentations

Ads by Google