Network Security Footprint Scan Footprinting Scan Content u
- Slides: 25
Network Security Footprint & Scan Footprinting & Scan
Content u. What is Footprinting? u. Relationship between Ports and Services u. Several Scan Techniques u. Firewall and IDS (Intrusion Detection System) u. Operating System Detection 2 Footprinting & Scan
Footprinting 게시판 개인정보 ID 게시판 개인정보 ID 3 Footprinting & Scan
Ports FTP TFTP 20 Telnet 23 POP 3 25 SMTP 53 RPC DNS 80 Applications 161 IMAP HTTP SNMP Daemon: 서비스가 요청되었을 때, 이에 반응할 수 있도록 항상 실행되어 있는 프로그램 4 Footprinting & Scan
Let’s Practice u. Telnet 동작시키기 n Windows: [내컴퓨터] – [관리] – [서비스] 5 Footprinting & Scan
6 Footprinting & Scan
7 Footprinting & Scan
Disable = no 로 변경 telnet service 접속 telnet service 시작 8 Footprinting & Scan
Scan u What’s Scan? n 서비스를 제공하는 서버의 작동 여부와 그 서버가 제공하고 있는 서 비스를 확인하는 것. u 종류 n n Ping과 ICMP Scan n Echo Request & Reply n Timestamp Request & Reply n Information Request & Reply n ICMP Address Mask Request & Reply TCP와 UDP를 이용한 Scan n UDP Scan n TCP Open Scan n TCP Half Open Scan n Stealth Scan 9 Footprinting & Scan
Ping과 ICMP Scan 1 2 1 3 2 4 5 6 4 6 3 5 u Echo Request & Reply 1: ICMP 패킷의 길이 2: ICMP Echo Reply 패킷의 크기 3: Echo Request 패킷이 보내진 뒤 Reply 패킷을 받기까지의 시간 4: TTL 값 5: Request 패킷의 개수와 Reply 패킷의 개수, 손실된 패킷의 갯수 6: Request 패킷을 보낸 후 Reply 패킷이 오기까지의 시간 정보 10 Footprinting & Scan
n 운영체제별 ICMP 패킷 지원 여부 Information Timestamp Address Mask Linux X O X Free. BSD X O X Solaris X O O HP-UX O O X AIX v 4 O O X Windows 98 X O O Windows NT sp 4 X X X Windows 2000 X O X 11 Footprinting & Scan
TCP & UDP Scan u. UDP Scan 공격대상 공격자 공격대상 UDC Packet ICMP Unreachable Packet 12 Footprinting & Scan
u. TCP Half Open Scan 공격대상 공격자 공격대상 SYN RST + ACK SYN + ACK RST 14 Footprinting & Scan
u. Stealth Scan 공격대상 공격자 공격대상 FIN, NULL, XMAS Packets RST Packet ACK Packet TTL: on OS, window size: 0 ACK Packet TTL: < 64, window size: !0 10 bytes of TCP The other 10 bytes of TCP 15 Footprinting & Scan
Let’s Practice u. Installing fping 17 Footprinting & Scan
u. Results of fping 18 Footprinting & Scan
u. Installing sing 19 Footprinting & Scan
u. Results of sing 20 Footprinting & Scan
u. Installing nmap 21 Footprinting & Scan
22 Footprinting & Scan
23 Footprinting & Scan
Detection of Operation System u. Banner Grabbing n 원격지 시스템에서 로그인하면 보이는 안내문 u. TCP/IP 프로토콜의 반응 n n FIN Scan 적용 유무 Session 연결 시 TCP 패킷의 시퀀스 넘버 생성 n Windows n n Linux n n 시간에 따른 시퀀스 넘버 완전한 랜덤 Free. BSD, Digital-Unix, IRIX, Solaris n 시간에 따른 랜던한 증분 24 Footprinting & Scan
u. Banner Grabbing 25 Footprinting & Scan
- Footprinting vs enumeration
- Water footprint network
- Network centric computing
- Security security security
- The osi security architecture
- Security guide to network security fundamentals
- Wireless security in cryptography and network security
- Electronic mail security in network security
- Security guide to network security fundamentals
- Security guide to network security fundamentals
- Refresh crt consist of
- In random scan display the frame buffer holds
- Cathode ray tube in computer graphics
- Raster scan is more expensive than random scan
- Carrier content vs real content
- Dynamic content vs static content
- Security content automation protocol (scap)
- Content server security
- Digital footprint template
- Whats a digital footprint
- Calculate digital footprint
- Ecological footprint example
- Islandwood ecological footprint
- Ecological footprint map
- Ecological footprint components
- Iso 14067 carbon footprint of products