Ammar WK, profile picture
Uploaded byAmmar WK
PDF, PPTX965 views

Network security

The document discusses various topics related to network security including network layers, internet protocols like IPv4 and IPv6, network packet inspection, common attacks like spoofing, man-in-the-middle attacks, and denial of service attacks. It provides information on these topics and examples of hands-on exercises using tools like Wireshark to inspect network packets and demonstrate attacks. The document emphasizes the importance of network security defenses like IPsec, firewalls, intrusion detection systems, and security best practices.

Embed presentation

Download as PDF, PPTX
NETWORK SECURITY TEKNIS PELATIHAN KEAMANAN INFORMASI AHMAD MUAMMAR !(C)2011 | @Y3DIPS
AGENDA NETWORK LAYER INTERNET PROTOCOL IPV 4 IPV 6 IPSEC NETWORK PACKET INSPECTION AHMAD MUAMMAR !(C)2011 | @Y3DIPS
AGENDA ATTACKING IP V4 PASSIVE ACTIVE COMMON TYPES OF ATTACK + HANDS ON EAVESDROPPING SNIFFER ATTACK AHMAD MUAMMAR !(C)2011 | @Y3DIPS
AGENDA COMMON TYPES OF ATTACK SPOOFING TUNNELING MAN-IN-THE-MIDDLE (MITM) ATTACK DENIAL OF SERVICE ATTACK DEFENCE AHMAD MUAMMAR !(C)2011 | @Y3DIPS
NETWORK LAYER NO. 3 FROM OSI MODEL PROVIDES THE FUNCTIONAL AND PROCEDURAL MEANS OF TRANSFERING VARIABLE LENGTH DATA SEQUENCES FROM SOURCE HOST TO A DESTINATION ON ONE NETWORK TO ANOTHER, WHILE MAINTAINING THE QOS REQUESTED BY TRANSPORT LAYER FUCTION: PATH DETERMINATION AND LOGICAL ADRESSING; DATA UNIT : PACKET/DATAGRAM IP (IPV4, IPV6), ICMP, IPSEC, IGMP, IPX, APPLE TALK [1]: WIKIPEDIA.ORG AHMAD MUAMMAR !(C)2011 | @Y3DIPS
OSI 7 LAYER [1]: WIKIPEDIA.ORG AHMAD MUAMMAR !(C)2011 | @Y3DIPS
INTERNET PROTOCOL RESPONSIBLE FOR ADDRESSING HOSTS AND ROUTING DATAGRAM (PACKETS) FROM A SOURCE HOST TO DESTINATION HOST ACCROSS ONE OR MORE IP NETWORK. [1]: WIKIPEDIA.ORG AHMAD MUAMMAR !(C)2011 | @Y3DIPS
IPV4 FOURTH REVISION IN THE DEVELOPMENT OF IP AND THE FIRST VERSION OF THE PROTOCOL WIDELY DEPLOYED CONNECTIONLESS, NOT GUARANTEE DELIVERY, NOT ASSURING PROPER SEQUENCE OR AVOIDANCE OF DUPLICATE DELIVERY, 32 BIT = 192.168.0.1 IPSEC IS OPTIONAL [1]: WIKIPEDIA.ORG AHMAD MUAMMAR !(C)2011 | @Y3DIPS
IPV 6 SUCCESSOR OF IPV4 WITH MORE “BETTER” IMPROVEMENTS NEW PACKET HEADER MULTICAST (MULTIPLE DESTINATION IN SINGLE OPERATION) STATELESS ADDRESS AUTO CONFIGURATION LARGER ADDRESS SPACE 128 BIT = 2001:0db8:85a3:0000:0000:8a2e:0370:7334 IPSEC SUPPORT IS MANDATORY AHMAD MUAMMAR !(C)2011 | @Y3DIPS
IPSEC PROTOCOL SUITE FOR SECURING INTERNET PROTOCOL (IP) COMMUNICATIONS BY AUTHENTICATING AND ENCRYPTINH EACH IP PACKET OF A COMMUNICATION SESSION. END-TO-END SECURITY SCHEME PROTECT ANY APPLICATION TRAFFIC ACCROSS IP NETWORK AUTHENTICATION HEADER (AH), ENCAPSULATING SECURITY PAYLOAD (ESP), SECURITY ASSOCIATIONS (SA) AHMAD MUAMMAR !(C)2011 | @Y3DIPS
IPV4 V.S IPV6 AHMAD MUAMMAR !(C)2011 | @Y3DIPS
NETWORK PACKET INSPECTION AHMAD MUAMMAR !(C)2011 | @Y3DIPS
HANDS ON WIRESHARK PACKET INSPECTION AHMAD MUAMMAR !(C)2011 | @Y3DIPS
ATTACKING IPV4 SECURITY ISSUE LIES ON INTERNET PROTOCOL (NETWORK LAYER), NO AUTH AND ENCRYPTION IPSEC OPTIONAL UPPER LAYER, CREATED WITHOUT SECURITY CONSIDERATIONS, TCP PROTOCOLS: FTP, TELNET, SMTP, POP3 AHMAD MUAMMAR !(C)2011 | @Y3DIPS
ATTACKING IPV4 PASSIVE : NETWORK PACKET INFORMATION MIGHT BE MONITORED; ACTIVE: NETWORK PACKET INFORMATION IS ALTERED IN INTENT TO MODIFY, CORRUPT, OR DESTROY TEH DATA OR THE NETWORK. AHMAD MUAMMAR !(C)2011 | @Y3DIPS
EAVESDROPPING THE MAJORITY OF NETWORK COMMUNICATIONS OCCUR IN UNSECURED OR “CLEARTEXT” FORMAT THE ABILITY TO MONITOR THE NETWORK COMMUNICATION IS THE BIGGEST SECURITY PROBLEMS THAT WE’VE FACED HUB NETWORK DEVICE, ACCESS TO THE GATEWAY/ ROUTER DEVICE AHMAD MUAMMAR !(C)2011 | @Y3DIPS
SNIFFER ATTACK SNIFFER IS AN APPLICATION OR DEVICE THAT CAN READ, MONITOR, AND CAPTURE NETWORK PACKET. IF PACKET NOT ENCRYPTED THE ATTACKER CAN VIEW FULL DATA INSIDE THE PACKET IF PACKET ENCRYPTED THE ATTACKER NEED TO CREATE/USE/HAVE A VALID KEY TUNNEL ONLY PACKET CAN ALSO BE BROKEN OPEN AND READ AHMAD MUAMMAR !(C)2011 | @Y3DIPS
SNIFFER ATTACK TCPDUMP WIRESHARK (FORMERLY ETHEREAL) ETTERCAP CAIN AND ABEL DSNIFF AHMAD MUAMMAR !(C)2011 | @Y3DIPS
HANDS ON WIRESHARK RECOVERY AHMAD MUAMMAR !(C)2011 | @Y3DIPS
SPOOFING SPOOF = MASQUEARADE[1] IS A SITUATION IN WHICH A PROGRAM SUCCESSFULLY MASQUARADES AS ANOTHER BY FALSIFYING DATA AND THEREBY GAINING AN ILLEGITIMATE ADVANTAGE[2] [1]: RFC4949 [2]: WIKIPEDIA.ORG AHMAD MUAMMAR !(C)2011 | @Y3DIPS
SPOOFING IPSPOOFING, E.G: MODIFY SOURCE ADDRESS A COMMON MISCONCEPTION: IP SPOOFING CAN BE USED TO HIDE IP ADDRESS WHILE SURFING THE INTERNET, CHATTING, ON-LINE, AND SO FORTH. THIS IS GENERALLY NOT TRUE. FORGING THE SOURCES IP ADDRESS CAUSES THE RESPONSES TO BE MISDIRECTED, MEANING CANNOT CREATE NORMAL NETWORK CONNECTION.[1] USUALLY COMBINE WITH NETWORK DOS/DDOS ATTACK [1]: ISS.NET AHMAD MUAMMAR !(C)2011 | @Y3DIPS
HANDS ON MAC SPOOFING IFCONFIG (IFACE) HW ETHER (NEW MAC) AHMAD MUAMMAR !(C)2011 | @Y3DIPS
TUNNELING TUNNEL IS A COMMUNICATION CHANNEL CREATED IN A COMPUTER NETWORK BY ENCAPSULATING (I.E., LAYERING) A COMMUNICATION PROTOCOL’S DATA PACKETS IN (I.E., ABOVE) A SECOND PROTOCOL THAT NORMALLY WOULD BE CARRIED ABOVE, OR AT THE SAME LAYER AS, THE FIRST ONE. [1] HTTP, SSH, DNS, ICMP SSH FOO@DOO -D PORT [1]: RFC4949 AHMAD MUAMMAR !(C)2011 | @Y3DIPS
HANDS ON HTTP OVER SSH (SSH TUNNELING) AHMAD MUAMMAR !(C)2011 | @Y3DIPS
MAN-IN-THE-MIDDLE A FORM OF ATTACK IN WHICH THE ATTACKER MAKES INDEPENDENT CONNECTIONS WITH THE VICTIMS AND RELAYS MESSAGES BETWEEN THEM, MAKING THEM BELIEVE THAT THEY ARE TALKING DIRECTLY TO EACH OTHER , WHEN IN FACT THE ENTIRE CONVERSATION CONTROLLED BY THE ATTACKER. ATTACKER IMPERSONATE EACH ENDPOINT TO THE SATISFACTION OF THE OTHER AHMAD MUAMMAR !(C)2011 | @Y3DIPS
MAN-IN-THE-MIDDLE AHMAD MUAMMAR !(C)2011 | @Y3DIPS
HANDS ON MAN-IN-THE-MIDDLE (MITM) USING CAIN ABEL AHMAD MUAMMAR !(C)2011 | @Y3DIPS
DENIAL OF SERVICE THE PREVENTION OF AUTHORIZED ACCESS TO A SYSTEM RESOURCE OR THE DELAYING OF SYSTEM OPERATIONS AND FUNCTION. [1] PING OF DEATH (ICMP FLOODING), SYNFLOOD DISTRIBUTED DOS, BOT NET [1]: RFC4949 AHMAD MUAMMAR !(C)2011 | @Y3DIPS
DENIAL OF SERVICE DOS ATTACKER MAY: ATTEMPT TO FLOOD A NETWORK, THEREBY PREVENTING LEGITIMATE NETWORK TRAFFIC ATTEMPT TO DISRUPT CONNECTIONS BETWEEN TWO MACHINES, THEREBY PREVENTING ACCESS TO SERVICE ATTEMPT TO PREVENT PARTICULAR INDIVIDUAL FROM ACCESING A SERVICE ATTEMPT TO DISRUPT SERVICE TO A SPECIFIC SYSTEM. AHMAD MUAMMAR !(C)2011 | @Y3DIPS
DENIAL OF SERVICE AHMAD MUAMMAR !(C)2011 | @Y3DIPS
HANDS ON EXAMPLE DOS AHMAD MUAMMAR !(C)2011 | @Y3DIPS
DEFENCE EDUCATE USER USING IPSEC (IPV6) IMPLEMENT BEST POLICY CONFIGURING FIREWALL, IDS, IPS REGULARLY AUDITS AHMAD MUAMMAR !(C)2011 | @Y3DIPS
DISCUSSION AHMAD MUAMMAR !(C)2011 | @Y3DIPS
NETWORK SECURITY TEKNIS PELATIHAN KEAMANAN INFORMASI AHMAD MUAMMAR !(C)2011 | @Y3DIPS

More Related Content

PDF
Penetration testing
byAmmar WK
 
PDF
Implementing security on android application
byIAEME Publication
 
PDF
Ce hv8 module 16 hacking mobile platforms
byMehrdad Jingoism
 
PDF
20120140504023
byIAEME Publication
 
PDF
War on stealth cyber attacks phishing docusign apache metron
bygvetticaden
 
PDF
Security against Web Application Attacks Using Ontology Based Intrusion Detec...
byIRJET Journal
 
PDF
Cybercrimes against the korean online banking systems 1227 eng_slideshare
byYoungjun Chang
 
PDF
Avar2011 changing security_awareness_training
byYoungjun Chang
 
Penetration testing
byAmmar WK
 
Implementing security on android application
byIAEME Publication
 
Ce hv8 module 16 hacking mobile platforms
byMehrdad Jingoism
 
20120140504023
byIAEME Publication
 
War on stealth cyber attacks phishing docusign apache metron
bygvetticaden
 
Security against Web Application Attacks Using Ontology Based Intrusion Detec...
byIRJET Journal
 
Cybercrimes against the korean online banking systems 1227 eng_slideshare
byYoungjun Chang
 
Avar2011 changing security_awareness_training
byYoungjun Chang
 

What's hot

PDF
Signaling security essentials. Ready, steady, 5G!
byPositiveTechnologies
 
PDF
Positive approach to security of Core networks
byPositiveTechnologies
 
PPT
Smart phone and mobile device security
byCAS
 
PPTX
cell phone viruses and security
byPRIYANKA944
 
PDF
Camera based attack detection and prevention tech niques on android mobile ph...
byeSAT Journals
 
PDF
SS7: 2G/3G's weakest link
byPositiveTechnologies
 
PPTX
Telecom under attack: demo of fraud scenarios and countermeasures
byPositiveTechnologies
 
PPTX
Augusta gen v presentation adapture v2
byGreg Wartes, MCP
 
PPTX
Cyber security for Small and Medium CA
byNanda Mohan Shenoy
 
PDF
On the verge of fraud
byPositiveTechnologies
 
PDF
Color Code PIN Authentication System Using Multi-TouchTechnology
byIRJET Journal
 
PPT
Cell Phone Viruses & Security
byguestc03f28
 
PPTX
Mobile Security
byKevin Lee
 
PDF
UNDERSTANDING TRAFFIC PATTERNS OF COVID-19 IOC IN HUGE ACADEMIC BACKBONE NETW...
byIJNSA Journal
 
PPTX
Mobile Security - 2015 Wrap-up and 2016 Predictions
bySkycure
 
PDF
10940 img sytr12_mobile_malware
bySytelReplyUK
 
PDF
Implementing a comprehensive application security progaram - Tawfiq
byOWASP-Qatar Chapter
 
PPTX
How Healthcare CISOs Can Secure Mobile Devices
bySkycure
 
PDF
Avast Q1 Security Report 2015
byAvast
 
PDF
Tt 06-ck
byNarinrit Prem-apiwathanokul
 
Signaling security essentials. Ready, steady, 5G!
byPositiveTechnologies
 
Positive approach to security of Core networks
byPositiveTechnologies
 
Smart phone and mobile device security
byCAS
 
cell phone viruses and security
byPRIYANKA944
 
Camera based attack detection and prevention tech niques on android mobile ph...
byeSAT Journals
 
SS7: 2G/3G's weakest link
byPositiveTechnologies
 
Telecom under attack: demo of fraud scenarios and countermeasures
byPositiveTechnologies
 
Augusta gen v presentation adapture v2
byGreg Wartes, MCP
 
Cyber security for Small and Medium CA
byNanda Mohan Shenoy
 
On the verge of fraud
byPositiveTechnologies
 
Color Code PIN Authentication System Using Multi-TouchTechnology
byIRJET Journal
 
Cell Phone Viruses & Security
byguestc03f28
 
Mobile Security
byKevin Lee
 
UNDERSTANDING TRAFFIC PATTERNS OF COVID-19 IOC IN HUGE ACADEMIC BACKBONE NETW...
byIJNSA Journal
 
Mobile Security - 2015 Wrap-up and 2016 Predictions
bySkycure
 
10940 img sytr12_mobile_malware
bySytelReplyUK
 
Implementing a comprehensive application security progaram - Tawfiq
byOWASP-Qatar Chapter
 
How Healthcare CISOs Can Secure Mobile Devices
bySkycure
 
Avast Q1 Security Report 2015
byAvast
 
Tt 06-ck
byNarinrit Prem-apiwathanokul
 

Similar to Network security

PPTX
Lecture 7 Attacker and there tools.pptx
byAsmaaLafi1
 
PPTX
Ethical hacking nptel iit madraslecture1.pptx
byshaktiraomani1
 
PPT
Lecture7-8-Network Protocls attack in cyber.ppt
byMuhammadSaleemKhan26
 
PDF
A modern approach to safeguarding your ICS and SCADA systems
byAlane Moran
 
PDF
Cisco IOS Attack & Defense - The State of the Art
byamiable_indian
 
PPT
Isys20261 lecture 07
byWiliam Ferraciolli
 
PPT
network-security_for cybersecurity_experts
byabacusgtuc
 
PDF
Computer network (2)
byNYversity
 
PDF
Network and DNS Vulnerabilities
byn|u - The Open Security Community
 
PPT
Vulnerabilities in IP Protocols
bybabak danyal
 
PDF
Ten new topics on security+ 2011 (sy0 301) (domain 1.0 network security)
bychhoup
 
PPT
Ip Spoofing
byarpit.arp
 
PDF
Ip spoofing attacks
byApijay Kumar
 
DOCX
Chapter 11Networks of NetworksChapter 11 OutlineNetwor.docx
bybartholomeocoombs
 
PPT
Slides internet technology
byInexk Pedrero
 
PPTX
CompTIASecPLUS-Part1 Unlimited Edition- Edited.pptx
bymohedkhadar60
 
PPT
Lec21 security
byVijay Kanth
 
PDF
Attack the (Own) Network so You'll Survive
byAmmar WK
 
PDF
Internet Security Issues
byanides
 
PPT
12 tcp-dns
byCulverton Blessy
 
Lecture 7 Attacker and there tools.pptx
byAsmaaLafi1
 
Ethical hacking nptel iit madraslecture1.pptx
byshaktiraomani1
 
Lecture7-8-Network Protocls attack in cyber.ppt
byMuhammadSaleemKhan26
 
A modern approach to safeguarding your ICS and SCADA systems
byAlane Moran
 
Cisco IOS Attack & Defense - The State of the Art
byamiable_indian
 
Isys20261 lecture 07
byWiliam Ferraciolli
 
network-security_for cybersecurity_experts
byabacusgtuc
 
Computer network (2)
byNYversity
 
Network and DNS Vulnerabilities
byn|u - The Open Security Community
 
Vulnerabilities in IP Protocols
bybabak danyal
 
Ten new topics on security+ 2011 (sy0 301) (domain 1.0 network security)
bychhoup
 
Ip Spoofing
byarpit.arp
 
Ip spoofing attacks
byApijay Kumar
 
Chapter 11Networks of NetworksChapter 11 OutlineNetwor.docx
bybartholomeocoombs
 
Slides internet technology
byInexk Pedrero
 
CompTIASecPLUS-Part1 Unlimited Edition- Edited.pptx
bymohedkhadar60
 
Lec21 security
byVijay Kanth
 
Attack the (Own) Network so You'll Survive
byAmmar WK
 
Internet Security Issues
byanides
 
12 tcp-dns
byCulverton Blessy
 

More from Ammar WK

PDF
Mobile hacking, pentest, and malware
byAmmar WK
 
PDF
Cybercrime: A threat to Financial industry
byAmmar WK
 
PDF
y3dips - Who Own Your Sensitive Information?
byAmmar WK
 
PPT
Handout infosec defense-mechanism-y3dips
byAmmar WK
 
PDF
Bugbounty vs-0day
byAmmar WK
 
PDF
Network Packet Analysis
byAmmar WK
 
PDF
Advanced Persistent Threat
byAmmar WK
 
PDF
Packet analysis (Basic)
byAmmar WK
 
PDF
Vvdp-fgd-bssn
byAmmar WK
 
PDF
Hacker? : it's not about Black or White
byAmmar WK
 
PDF
Web Hacking (basic)
byAmmar WK
 
PDF
Burp suite
byAmmar WK
 
PDF
Introduction to IOS Application Penetration Testing
byAmmar WK
 
PDF
idsecconf2010-hacking priv8 network
byAmmar WK
 
PDF
How To [relatively] Secure your Web Applications
byAmmar WK
 
PDF
A Journey Into Pen-tester land: Myths or Facts!
byAmmar WK
 
PDF
Pen-testing is Dead?
byAmmar WK
 
PDF
Information Security Professional
byAmmar WK
 
PDF
Layer 7 denial of services attack mitigation
byAmmar WK
 
PDF
How To Become A Hacker
byAmmar WK
 
Mobile hacking, pentest, and malware
byAmmar WK
 
Cybercrime: A threat to Financial industry
byAmmar WK
 
y3dips - Who Own Your Sensitive Information?
byAmmar WK
 
Handout infosec defense-mechanism-y3dips
byAmmar WK
 
Bugbounty vs-0day
byAmmar WK
 
Network Packet Analysis
byAmmar WK
 
Advanced Persistent Threat
byAmmar WK
 
Packet analysis (Basic)
byAmmar WK
 
Vvdp-fgd-bssn
byAmmar WK
 
Hacker? : it's not about Black or White
byAmmar WK
 
Web Hacking (basic)
byAmmar WK
 
Burp suite
byAmmar WK
 
Introduction to IOS Application Penetration Testing
byAmmar WK
 
idsecconf2010-hacking priv8 network
byAmmar WK
 
How To [relatively] Secure your Web Applications
byAmmar WK
 
A Journey Into Pen-tester land: Myths or Facts!
byAmmar WK
 
Pen-testing is Dead?
byAmmar WK
 
Information Security Professional
byAmmar WK
 
Layer 7 denial of services attack mitigation
byAmmar WK
 
How To Become A Hacker
byAmmar WK
 

Recently uploaded

PDF
Lab 4.4 More Cloud Logging and Monitoring - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
PDF
Lab 4.3 Automated security scans with Jenkins - 2nd Sight Lab Cloud Security ...
by2nd Sight Lab
 
PDF
How to Evaluate a High Performance Database
byScyllaDB
 
PDF
The State of the Gen AI economy - 2025 - The Meliora Company
byClive Dickens
 
PDF
100 Insights After the 200th Issue of NewMind AI Journal
byNewMind AI
 
PPTX
Session 2 - Solving Unstructured & Complex Documents with UiPath IXP
byDianaGray10
 
PDF
Data Virtualization in Action: Scaling APIs and Apps with FME
bySafe Software
 
PPTX
communication-skills-with-technology tools
byJaleto Sunkemo
 
PPTX
Building Agents in Microsoft Agent Framework.pptx
byUdaiappa Ramachandran
 
PDF
Access Control 2025: From Security Silo to Software-Defined Ecosystem
byMemoori
 
PDF
Machine Learning Primer: The Complete Crash Course (From Theory to Deployment)
byAeafat Ahmed Mubin
 
PPTX
UiPath Autonomous Agents | Building and Orchestrating Agents End-to-End
byUiPathCommunity
 
PDF
Lab 1.1 Introduction to AWS Automation - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
PPTX
Conversational Agents – Building Intelligent Assistants [Virtual Hands-on Wor...
byUiPathCommunity
 
PDF
Six Shifts For 2026 (And The Next Six Years)
byDavid Armano
 
PDF
DevFest El Jadida 2025 - Product Thinking
byElmehdi AMLOU
 
PPTX
Technology Consulting _ by Slidesgo.pptx
byfh82277
 
PPTX
DYNAMICALLY.pptx good for the teachers or students to do seminars and for tea...
bympoorvika031
 
PPTX
Software Analysis &Design ethiopia chap-2.pptx
byAbbas484771
 
PDF
Day 4 - Access, Deployments, and Monitoring - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
Lab 4.4 More Cloud Logging and Monitoring - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
Lab 4.3 Automated security scans with Jenkins - 2nd Sight Lab Cloud Security ...
by2nd Sight Lab
 
How to Evaluate a High Performance Database
byScyllaDB
 
The State of the Gen AI economy - 2025 - The Meliora Company
byClive Dickens
 
100 Insights After the 200th Issue of NewMind AI Journal
byNewMind AI
 
Session 2 - Solving Unstructured & Complex Documents with UiPath IXP
byDianaGray10
 
Data Virtualization in Action: Scaling APIs and Apps with FME
bySafe Software
 
communication-skills-with-technology tools
byJaleto Sunkemo
 
Building Agents in Microsoft Agent Framework.pptx
byUdaiappa Ramachandran
 
Access Control 2025: From Security Silo to Software-Defined Ecosystem
byMemoori
 
Machine Learning Primer: The Complete Crash Course (From Theory to Deployment)
byAeafat Ahmed Mubin
 
UiPath Autonomous Agents | Building and Orchestrating Agents End-to-End
byUiPathCommunity
 
Lab 1.1 Introduction to AWS Automation - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
Conversational Agents – Building Intelligent Assistants [Virtual Hands-on Wor...
byUiPathCommunity
 
Six Shifts For 2026 (And The Next Six Years)
byDavid Armano
 
DevFest El Jadida 2025 - Product Thinking
byElmehdi AMLOU
 
Technology Consulting _ by Slidesgo.pptx
byfh82277
 
DYNAMICALLY.pptx good for the teachers or students to do seminars and for tea...
bympoorvika031
 
Software Analysis &Design ethiopia chap-2.pptx
byAbbas484771
 
Day 4 - Access, Deployments, and Monitoring - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 

Network security

  • 1.
    NETWORK SECURITY TEKNIS PELATIHANKEAMANAN INFORMASI AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 2.
    AGENDA NETWORK LAYER INTERNET PROTOCOL IPV 4 IPV 6 IPSEC NETWORK PACKET INSPECTION AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 3.
    AGENDA ATTACKING IP V4 PASSIVE ACTIVE COMMON TYPES OF ATTACK + HANDS ON EAVESDROPPING SNIFFER ATTACK AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 4.
    AGENDA COMMON TYPES OFATTACK SPOOFING TUNNELING MAN-IN-THE-MIDDLE (MITM) ATTACK DENIAL OF SERVICE ATTACK DEFENCE AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 5.
    NETWORK LAYER NO. 3 FROM OSI MODEL PROVIDES THE FUNCTIONAL AND PROCEDURAL MEANS OF TRANSFERING VARIABLE LENGTH DATA SEQUENCES FROM SOURCE HOST TO A DESTINATION ON ONE NETWORK TO ANOTHER, WHILE MAINTAINING THE QOS REQUESTED BY TRANSPORT LAYER FUCTION: PATH DETERMINATION AND LOGICAL ADRESSING; DATA UNIT : PACKET/DATAGRAM IP (IPV4, IPV6), ICMP, IPSEC, IGMP, IPX, APPLE TALK [1]: WIKIPEDIA.ORG AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 6.
    OSI 7 LAYER [1]:WIKIPEDIA.ORG AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 7.
    INTERNET PROTOCOL RESPONSIBLE FOR ADDRESSING HOSTS AND ROUTING DATAGRAM (PACKETS) FROM A SOURCE HOST TO DESTINATION HOST ACCROSS ONE OR MORE IP NETWORK. [1]: WIKIPEDIA.ORG AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 8.
    IPV4 FOURTH REVISION IN THE DEVELOPMENT OF IP AND THE FIRST VERSION OF THE PROTOCOL WIDELY DEPLOYED CONNECTIONLESS, NOT GUARANTEE DELIVERY, NOT ASSURING PROPER SEQUENCE OR AVOIDANCE OF DUPLICATE DELIVERY, 32 BIT = 192.168.0.1 IPSEC IS OPTIONAL [1]: WIKIPEDIA.ORG AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 9.
    IPV 6 SUCCESSOR OFIPV4 WITH MORE “BETTER” IMPROVEMENTS NEW PACKET HEADER MULTICAST (MULTIPLE DESTINATION IN SINGLE OPERATION) STATELESS ADDRESS AUTO CONFIGURATION LARGER ADDRESS SPACE 128 BIT = 2001:0db8:85a3:0000:0000:8a2e:0370:7334 IPSEC SUPPORT IS MANDATORY AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 10.
    IPSEC PROTOCOL SUITE FORSECURING INTERNET PROTOCOL (IP) COMMUNICATIONS BY AUTHENTICATING AND ENCRYPTINH EACH IP PACKET OF A COMMUNICATION SESSION. END-TO-END SECURITY SCHEME PROTECT ANY APPLICATION TRAFFIC ACCROSS IP NETWORK AUTHENTICATION HEADER (AH), ENCAPSULATING SECURITY PAYLOAD (ESP), SECURITY ASSOCIATIONS (SA) AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 11.
    IPV4 V.S IPV6 AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 12.
    NETWORK PACKET INSPECTION AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 13.
    HANDS ON WIRESHARK PACKETINSPECTION AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 14.
    ATTACKING IPV4 SECURITY ISSUELIES ON INTERNET PROTOCOL (NETWORK LAYER), NO AUTH AND ENCRYPTION IPSEC OPTIONAL UPPER LAYER, CREATED WITHOUT SECURITY CONSIDERATIONS, TCP PROTOCOLS: FTP, TELNET, SMTP, POP3 AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 15.
    ATTACKING IPV4 PASSIVE :NETWORK PACKET INFORMATION MIGHT BE MONITORED; ACTIVE: NETWORK PACKET INFORMATION IS ALTERED IN INTENT TO MODIFY, CORRUPT, OR DESTROY TEH DATA OR THE NETWORK. AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 16.
    EAVESDROPPING THE MAJORITY OFNETWORK COMMUNICATIONS OCCUR IN UNSECURED OR “CLEARTEXT” FORMAT THE ABILITY TO MONITOR THE NETWORK COMMUNICATION IS THE BIGGEST SECURITY PROBLEMS THAT WE’VE FACED HUB NETWORK DEVICE, ACCESS TO THE GATEWAY/ ROUTER DEVICE AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 17.
    SNIFFER ATTACK SNIFFER ISAN APPLICATION OR DEVICE THAT CAN READ, MONITOR, AND CAPTURE NETWORK PACKET. IF PACKET NOT ENCRYPTED THE ATTACKER CAN VIEW FULL DATA INSIDE THE PACKET IF PACKET ENCRYPTED THE ATTACKER NEED TO CREATE/USE/HAVE A VALID KEY TUNNEL ONLY PACKET CAN ALSO BE BROKEN OPEN AND READ AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 18.
    SNIFFER ATTACK TCPDUMP WIRESHARK (FORMERLYETHEREAL) ETTERCAP CAIN AND ABEL DSNIFF AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 19.
    HANDS ON WIRESHARK RECOVERY AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 20.
    SPOOFING SPOOF = MASQUEARADE[1] IS A SITUATION IN WHICH A PROGRAM SUCCESSFULLY MASQUARADES AS ANOTHER BY FALSIFYING DATA AND THEREBY GAINING AN ILLEGITIMATE ADVANTAGE[2] [1]: RFC4949 [2]: WIKIPEDIA.ORG AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 21.
    SPOOFING IPSPOOFING, E.G: MODIFY SOURCE ADDRESS A COMMON MISCONCEPTION: IP SPOOFING CAN BE USED TO HIDE IP ADDRESS WHILE SURFING THE INTERNET, CHATTING, ON-LINE, AND SO FORTH. THIS IS GENERALLY NOT TRUE. FORGING THE SOURCES IP ADDRESS CAUSES THE RESPONSES TO BE MISDIRECTED, MEANING CANNOT CREATE NORMAL NETWORK CONNECTION.[1] USUALLY COMBINE WITH NETWORK DOS/DDOS ATTACK [1]: ISS.NET AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 22.
    HANDS ON MAC SPOOFING IFCONFIG (IFACE) HW ETHER (NEW MAC) AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 23.
    TUNNELING TUNNEL IS A COMMUNICATION CHANNEL CREATED IN A COMPUTER NETWORK BY ENCAPSULATING (I.E., LAYERING) A COMMUNICATION PROTOCOL’S DATA PACKETS IN (I.E., ABOVE) A SECOND PROTOCOL THAT NORMALLY WOULD BE CARRIED ABOVE, OR AT THE SAME LAYER AS, THE FIRST ONE. [1] HTTP, SSH, DNS, ICMP SSH FOO@DOO -D PORT [1]: RFC4949 AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 24.
    HANDS ON HTTP OVERSSH (SSH TUNNELING) AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 25.
    MAN-IN-THE-MIDDLE A FORM OFATTACK IN WHICH THE ATTACKER MAKES INDEPENDENT CONNECTIONS WITH THE VICTIMS AND RELAYS MESSAGES BETWEEN THEM, MAKING THEM BELIEVE THAT THEY ARE TALKING DIRECTLY TO EACH OTHER , WHEN IN FACT THE ENTIRE CONVERSATION CONTROLLED BY THE ATTACKER. ATTACKER IMPERSONATE EACH ENDPOINT TO THE SATISFACTION OF THE OTHER AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 26.
    MAN-IN-THE-MIDDLE AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 27.
    HANDS ON MAN-IN-THE-MIDDLE (MITM)USING CAIN ABEL AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 28.
    DENIAL OF SERVICE THE PREVENTION OF AUTHORIZED ACCESS TO A SYSTEM RESOURCE OR THE DELAYING OF SYSTEM OPERATIONS AND FUNCTION. [1] PING OF DEATH (ICMP FLOODING), SYNFLOOD DISTRIBUTED DOS, BOT NET [1]: RFC4949 AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 29.
    DENIAL OF SERVICE DOSATTACKER MAY: ATTEMPT TO FLOOD A NETWORK, THEREBY PREVENTING LEGITIMATE NETWORK TRAFFIC ATTEMPT TO DISRUPT CONNECTIONS BETWEEN TWO MACHINES, THEREBY PREVENTING ACCESS TO SERVICE ATTEMPT TO PREVENT PARTICULAR INDIVIDUAL FROM ACCESING A SERVICE ATTEMPT TO DISRUPT SERVICE TO A SPECIFIC SYSTEM. AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 30.
    DENIAL OF SERVICE AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 31.
    HANDS ON EXAMPLEDOS AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 32.
    DEFENCE EDUCATE USER USING IPSEC(IPV6) IMPLEMENT BEST POLICY CONFIGURING FIREWALL, IDS, IPS REGULARLY AUDITS AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 33.
    DISCUSSION AHMAD MUAMMAR !(C)2011 | @Y3DIPS
  • 34.
    NETWORK SECURITY TEKNIS PELATIHANKEAMANAN INFORMASI AHMAD MUAMMAR !(C)2011 | @Y3DIPS