If a given
address is live, it will return an ICMP ECHO reply confirming a legitimate live host. Ping sweeps are widely
used in the reconnaissance phase of the attack process.
Port scanning: Port scanning is a method used to enumerate what services are running on a system. An
intruder sends random requests on different ports, and if the host responds to the request, the intruder
confirms that the port is active and in listening mode. The attacker can then plan exploits to any known
vulnerabilities by targeting these ports. A port scanner is a piece of software designed to search a network
host for open ports. Port scanning is also one of the primary reconnaissance techniques attackers use to
discover services that can be exploited.
Sniffing: A packet sniffer is software that uses a network adapter card in promiscuous mode to passively
capture all network packets that are being transmitted across the network.
Flooding: Flooding occurs when an excessive amount of unwanted data is sent, resulting in disruption of
data availability.
DoS/DDoS Attacks: In most cases, the objective of a DoS attack is to deprive legitimate user access to
services or resources. DoS attacks do not typically result in intrusion or the illegal theft of information, but
are geared to prevent access to authorized users by means of flooding the victim with an excessive
volume of packets.
Pages:
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342