Sign In Start Free Trial

Applied Network Security

By : Warun Levesque, Salmon, Michael McLafferty

Applied Network Security

By: Warun Levesque, Salmon, Michael McLafferty

Overview of this book

Computer networks are increasing at an exponential rate and the most challenging factor organisations are currently facing is network security. Breaching a network is not considered an ingenious effort anymore, so it is very important to gain expertise in securing your network. The book begins by showing you how to identify malicious network behaviour and improve your wireless security. We will teach you what network sniffing is, the various tools associated with it, and how to scan for vulnerable wireless networks. Then we’ll show you how attackers hide the payloads and bypass the victim’s antivirus. Furthermore, we’ll teach you how to spoof IP / MAC address and perform an SQL injection attack and prevent it on your website. We will create an evil twin and demonstrate how to intercept network traffic. Later, you will get familiar with Shodan and Intrusion Detection and will explore the features and tools associated with it. Toward the end, we cover tools such as Yardstick, Ubertooth, Wifi Pineapple, and Alfa used for wireless penetration testing and auditing. This book will show the tools and platform to ethically hack your own network whether it is for your business or for your personal home Wi-Fi.

Preface

Preface

What this book covers

What you need for this book

Who this book is for

Conventions

Reader feedback

Customer support

Free Chapter

Introduction to Network Security

Introduction to Network Security

Murphy's law

Hackers (and their types) defined

The hacking process

Ethical hacking issues

Current technologies

Recent events and statistics of network attacks

Security for individuals versus companies

Mitigation against threats

Building an assessment

Summary

References

Sniffing the Network

Sniffing the Network

What is network sniffing?

Lab 1-a scan to search for DDoS reflection UDP services

Using Wireshark filters

Wireshark filter cheat sheet

Lab 2

Sparta

Lab 3-scanning

Scanning a subnet

Evading firewalls

Gathering version info

Starting the listener

Summary

How to Crack Wi-Fi Passwords

How to Crack Wi-Fi Passwords

Why should we crack our own Wi-Fi?

What is packet injection?

Wi-Fi cracking tools

The Transmission Control Protocol (TCP) handshake

The short version (a cheat-sheet for the aircrack-ng suite)

Summary

Creating a RAT Using Msfvenom

Creating a RAT Using Msfvenom

Remote Access Trojans

Ways to disguise your RAT though Metasploit

Your defence

Summary

References

Veil Framework

Veil Framework

Veil-Evasion

Veil-Pillage

How do hackers hide their attack?

Intrusion with a PDF

Veil-PowerTools

What is antivirus protection?

Summary

References

Social Engineering Toolkit and Browser Exploitation

Social Engineering Toolkit and Browser Exploitation

Social engineering

What are web injections?

Cross site scripting (XSS) attacks

Browser exploitation with BeEF

Summary

Advanced Network Attacks

Advanced Network Attacks

What is an MITM attack?

Summary

Passing and Cracking the Hash

Passing and Cracking the Hash

What is a hash?

Cryptographic hash functions

How are hashes cracked?

How do pass the hash attacks impact businesses?

What defences are there against hash password attacks?

Summary

References

Links to download tools

SQL Injection

SQL Injection

What is SQL and how does it work?

SQL injection

Ways to defend against SQL injection attacks

Bypassing authentication

Finding vulnerabilities from a targeted sites

Hunting for web app vulnerabilities with Open Web Application Security Project (OWASP) ZAP

Summary

Scapy

Scapy

Scapy

Creating our first packet

The TCP three way handshake

Malformed packets

ACK scan

TCP port scanning

Summary

Web Application Exploits

Web Application Exploits

Web application exploits

What tools are used for web application penetration testing?

What is Autopwn?

What is BeEF and how to use it?

Summary

Evil Twins and Spoofing

Evil Twins and Spoofing

What is an evil twin?

What is address spoofing?

What is DNS spoofing?

How to detect an evil twin?

Summary

Injectable Devices

Injectable Devices

A deeper look into USB

How does the Rubber Ducky work?

Disabling ports

A KeyGrabber?

What the glitch?

Summary

The Internet of Things

The Internet of Things

What is the Internet of Things?

IOT and botnets

Summary

Sources

Detection Systems

Detection Systems

IDS

IPS

Host based

Network-based

Physical

Summary of differences

Security Information and Event Management (SIEM)

Splunk

Alert status

IDS versus IPS

Snort as an IPS

Lab 1-installing Snort and creating ICMP rules lab

Lab 2-create the following snort.conf and icmp.rules files

Lab 3-execute Snort

Lab 4-execute Snort as Daemon

Summary

Advance Wireless Security Lab Using the Wi-Fi Pineapple Nano/Tetra

Advance Wireless Security Lab Using the Wi-Fi Pineapple Nano/Tetra

The history of Wi-Fi - the WLAN standard

Wireless vulnerability

The Wi-Fi Pineapple

For penetration testing

Summary

Offensive Security and Threat Hunting

Offensive Security and Threat Hunting

What is offensive security?

SET browser exploit lab

Threat hunting platforms

Using the Pineapple for offensive security

Summary

Customer Reviews

5 star

0

4 star

0

3 star

0

2 star

0

1 star

0

TCP port scanning

The following command is used for TCP port scanning. Using this command will send a TCP SYN packet to each port. The command will then wait for a SYN-ACK, RST, or ICMP error indicating an open port:

>>> res,unans = sr( IP(dst="target") /TCP(flags="S", dport=(1,1024)) )

VLAN hopping

Attacks associated with virtual LAN networks such as VLAN hopping becomes a simple task by just double layering the Dot1Q protocol first with the VLAN you're going to send on then the VLAN that you are going to. This is make networks using VLANs vulnerable to DDoS attacks methods and other attack vectors:

>>> sendp(Ether()/Dot1Q(vlan=2)/Dot1Q(vlan=7)/IP(dst=target)/ICMP())

Search

Your notes and bookmarks