IP
spoofing is one of the most common acts of online camouflage.
Address Resolution Protocol (ARP) spoofing: ARP spoofing occurs when an intruder attempts to
disguise its source hardware address (MAC address) to impersonate a trusted host. This is one of the
primary steps that aids many of the other attacks.
Man-in-the-middle attack (TCP hijacking): The man-in-the-middle (MITM), also known as a TCP
hijacking attack, is a well-known attack in which an intruder intercepts legitimate communication between
two points and can modify or control the TCP session without the knowledge of either the sender or the
recipient of the session. TCP hijacking is an exploit that targets the victims' TCP-based applications such
as Telnet, FTP, SMTP (e-mail), or HTTP sessions. An intruder can also be "inline" in an ongoing TCP session
between the sender and the receiver while using a sniffing program to watch the conversation.
Ping sweeps: A ping sweep, also known as an Internet Control Message Protocol (ICMP) sweep, is a
scanning technique used to determine live hosts (computers) in a network. A ping sweep, consists of ICMP
ECHO requests sent to multiple hosts (one at a time, unless a broadcast IP address is used).
Pages:
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351