Presentation is loading. Please wait.

Presentation is loading. Please wait.

COLIN O’HANLON & NICK CIGANKO Sam Spade: Network Query Tool.

Published byTabitha Burns Modified over 8 years ago

Similar presentations

Presentation on theme: "COLIN O’HANLON & NICK CIGANKO Sam Spade: Network Query Tool."— Presentation transcript:

1 COLIN O’HANLON & NICK CIGANKO Sam Spade: Network Query Tool

2 What it does Used to identify malicious sites Operates on multiple platforms Basic network query  Ping for service  Finger  Tracert  Whois  Reporting abuse  DNS diagnostics

3 Why? Block unwanted network contact  Spam mail origins  Adversary working from a specific IP  Malicious host General network curiosity

4 Other Features Scanning addresses Crawling for info Browsing  Source Blacklist Check Timezone check

5 Ping Contact a host (local or networked) Number of pings Types to ping IP Ping URL Ping

6 Finger Retrieves IP address Works on sites, mail hosts

7 Tracert Network hub diagnostics GUI focus

8 Whois Network Diagnostics Address Registration Admins

9 Abuse Reporting Site’s abuse department Finds associtaed complaint center and provides email address  Usually “abuse@ ” format

10 How does this help me now? Scenario: You have a malicious website that wants to access your computer but you cannot exit the browser window, ect.  Finger the URL for the IP  As Windows Admin: Start>Control Panel>System and Security>Windows Firewall>Advanced Settings  Select the INBOUND RULES, then single click the NEW RULE on the right panel  Custom Rule>All Programs>Next> Add (enter the IP as a These remote IP address) > BLOCK CONNECTION > Next>Next>Finish  DEMO

11

12 Questions or Concerns?

Download ppt "COLIN O’HANLON & NICK CIGANKO Sam Spade: Network Query Tool."

Similar presentations

Safer, Speedier and Sexier Surfing with Safari. Which Web Browser?

Safer, Speedier and Sexier Surfing with Safari. Which Web Browser?
NetScanTools ® LE Law Enforcement Version of NetScanTools ® from Northwest Performance Software, Inc. netscantools.com.

NetScanTools ® LE Law Enforcement Version of NetScanTools ® from Northwest Performance Software, Inc. netscantools.com.
X10 hosting Sign up for free account. Enter a domain name click continue Then Enter your email address Enter a password.

X10 hosting Sign up for free account. Enter a domain name click continue Then Enter your address Enter a password.
Operating System Customization

Operating System Customization
Remote Desktop Access Novell at Home. Remote desktop access Works on Broadband Computer at work must.

Remote Desktop Access Novell at Home. Remote desktop access Works on Broadband Computer at work must.
The Internet Useful Definitions and Concepts About the Internet.

The Internet Useful Definitions and Concepts About the Internet.
Security Tools CS-480b Dick Steflik. CACLS Windows NT, W2000, XP Displays or modifies access control lists (ACLs) of files.

Security Tools CS-480b Dick Steflik. CACLS Windows NT, W2000, XP Displays or modifies access control lists (ACLs) of files.
URL Obscuring COEN 152/252 Computer Forensics  Thomas Schwarz, S.J. 2004.

URL Obscuring COEN 152/252 Computer Forensics  Thomas Schwarz, S.J
What’s New in WatchGuard XCS 10.0 Update 3 WatchGuard Training.

What’s New in WatchGuard XCS 10.0 Update 3 WatchGuard Training.
Domain Name Server © N. Ganesan, Ph.D.. Reference.

Domain Name Server © N. Ganesan, Ph.D.. Reference.
Invoices On – Line Registration Instructions for Vendors.

Invoices On – Line Registration Instructions for Vendors.
Technical Training: DIR-615

Technical Training: DIR-615
By: Van Lam Info Tech 2 Period 10/11 Mr. Holmes Quincy High School.

By: Van Lam Info Tech 2 Period 10/11 Mr. Holmes Quincy High School.
Penetration Testing Edmund Whitehead Rayce West. Introduction - Definition of Penetration Testing - Who needs Penetration Testing? - Penetration Testing.

Penetration Testing Edmund Whitehead Rayce West. Introduction - Definition of Penetration Testing - Who needs Penetration Testing? - Penetration Testing.
Branded Websites. Branded Website Training Click the “Edit Pencil” to edit the website Enter in your iBoomerang username and password.

Branded Websites. Branded Website Training Click the “Edit Pencil” to edit the website Enter in your iBoomerang username and password.
Networking Feb. 6, 2008 by Larry Finger. Networking Hardware Glossary RJ45 – Official name for 8-pin connector Cat 5, 5E or 6 - Cable suitable for “high”-speed.

Networking Feb. 6, 2008 by Larry Finger. Networking Hardware Glossary RJ45 – Official name for 8-pin connector Cat 5, 5E or 6 - Cable suitable for “high”-speed.
Module 7: Configuring TCP/IP Addressing and Name Resolution.

Module 7: Configuring TCP/IP Addressing and Name Resolution.
Barracuda Load Balancer Server Availability and Scalability.

Barracuda Load Balancer Server Availability and Scalability.
Microsoft Azure Introduction ISYS 512. Microsoft Azure Microsoft Azure is a cloud.

Microsoft Azure Introduction ISYS 512. Microsoft Azure Microsoft Azure is a cloud.
Go to the MTSD Home Page In the URL add “/admin”

Go to the MTSD Home Page In the URL add “/admin”

Similar presentations

Ads by Google