SlideShare a Scribd company logo

WEEK-01.pdf

I
Infraj1Circle

This document provides an overview of an Ethical Hacking course. It discusses the first lecture which introduces ethical hacking and penetration testing. Key points covered include defining ethical hacking, the role of an ethical hacker, and some common hacking techniques like spoofing, denial of service attacks, and gaining unauthorized access. The document also discusses legal and illegal hacking activities.

Education
1 of 79
Download to read offline
Course Name: Ethical Hacking Faculty Name: Prof. Indranil Sen Gupta Department : Computer Science and Engineering Topic Lecture 1: IntroducDon to Ethical Hacking
q What is ethical hacking? q Penetra1on tes1ng q Role of the ethical hacker
What is Ethical Hacking? • It refers to the act of loca1ng weaknesses and vulnerabili1es of computer and informa1on systems by replica1ng the intent and ac1ons of malicious hackers. • It is also known as penetra'on tes'ng, intrusion tes'ng or red teaming. 3
IntroducDon to Ethical Hacking • Ethical Hackers • Employed by companies to perform penetra1on test. • PenetraDon Test • Legal aCempt to break into the company’s network to find the weak links. • Tester only report findings, does not provide solu1ons. • Security Test • Also includes analyzing company’s security policy and procedures. • Tester offers solu1ons to secure or protect the network. 4
Some Terminologies • Hacking - showing computer exper1se. • Cracking - breaching security on soMware or systems. • Spoofing - faking the origina1ng IP address in a datagram. • Denial of Service (DoS) - flooding a host with sufficient network traffic so that it cannot respond anymore. • Port Scanning - searching for vulnerabili1es. 5
Gaining access • Front door • Password guessing • Password/key stealing • Back doors • OMen leM by original developers as debug and/or diagnos1c tools. • Trojan Horses • Usually hidden inside of soMware that we download and install from the net. • Many install backdoors. • SoMware vulnerability exploitaDon • OMen adver1sed on the OEMs web site along with security patches. • Fer1le ground for script kiddies looking for something to do. 6
Once inside, the hacker can... • Modify logs • To cover their tracks. • Steal files • Some1mes destroy aMer stealing. • An expert hacker would steal and cover their tracks to remain undetected. • Modify files • To let you know they were there. • To cause mischief. • Install back doors • So they can get in again. • ACack other systems 7
The Role of Security and PenetraDon Testers • Script kiddies or packet monkeys • Young or inexperienced hackers. • Copy codes and techniques from knowledgeable hackers. • Experienced penetra1on testers write programs or scripts using • Perl, C, C++, Python, JavaScript, Visual Basic, SQL, and many others. 8
PenetraDon-TesDng Methodologies • Tiger box • Collec1on of OSs and hacking tools. • Usually on a laptop. • Helps penetra1on testers and security testers conduct vulnerabili1es assessments and aCacks. • White box model • Tester is told everything about the network topology and technology. • Tester is authorized to interview IT personnel and company employees. • Makes tester’s job a liCle easier. 9
• Black box model • Tester is not given details about the network. • Burden is on the tester to find the details. • Gray box model • Hybrid of the white and black box models. • Company gives tester par1al informa1on. 10
What You Can Do Legally • Laws involving technology change as rapidly as technology itself. • Find what is legal for you locally. • Laws change from place to place. • Be aware of what is allowed and what is not allowed. 11
Laws of the Land • Tools on your computer might be illegal to possess. • Contact local law enforcement agencies before installing hacking tools. • WriCen words are open to interpreta1on. • Governments are gehng more serious about punishment for cybercrimes. 12
What You Cannot Do Legally • Accessing a computer without permission is illegal. • Other illegal ac1ons: • Installing worms or viruses • Denial of Service aCacks • Denying users access to network resources • Be careful your ac1ons do not prevent customers from doing their jobs. 13
Ethical Hacking in a Nutshell • What it takes to be a security tester? • Knowledge of network and computer technology. • Ability to communicate with management and IT personnel. • Understanding of the laws. • Ability to use necessary tools. 14
In this course, we shall cover: • Relevant networking technologies • Basic cryptographic concepts • Case studies of secure applica1ons • Unconven1onal aCacks • Tools demonstra1on 15
16
Course Name: Ethical Hacking Faculty Name: Prof. Indranil Sen Gupta Department : Computer Science and Engineering Topic Lecture 2: Basic Concepts of Networking (Part I)
q Types of computer networks q Circuit switching and packet switching q Virtual circuits
Networking: Basic Concepts • Computer Network • A communica;on system for connec;ng computers / hosts • Why? • Be@er connec;vity • Be@er communica;on • Be@er sharing of resources • Bring people together 3
Types of Computer Networks • Local Area Network (LAN) • Connects hosts within a rela;vely small geographical area vSame room vSame building vSame campus • Wide Area Network (WAN) • Hosts may be widely dispersed vAcross campuses vAcross ci;es / countries/ con;nents 4 Faster Cheaper Slower Expensive
Data CommunicaLon over a Network • Broadly two approaches: a) Circuit switching b) Packet switching 5 A B C D E F G H
Circuit Switching • A dedicated communica;on path is established between two sta;ons. • The path follows a fixed sequence of intermediate links. • A logical channel gets defined on each physical link. vDedicated to the connec;on. A B C D E F G H 6
Circuit Switching (contd.) • Three steps are required for communica;on: a) ConnecLon establishment • Required before data transmission. b) Data transfer • Can proceed at maximum speed. c) ConnecLon terminaLon • Required aUer data transmission is over. • For dealloca;on of network resources. 7
Circuit Switching (contd.) • Drawbacks: • Channel capacity is dedicated during the en;re dura;on of communica;on. vAcceptable for voice communica;on. vVery inefficient for bursty traffic like data. • There is an ini;al delay. vFor connec;on establishment. 8
Packet Switching • Modern form of long-distance data communica;on. • Network resources are not dedicated. • A link can be shared. • The basic technology has evolved over ;me. • Basic concept has remained the same. 9
Packet Switching (contd.) • Data are transmi@ed in short packets (~ Kbytes). • A longer message is broken up into smaller chunks. • The chunks are called packets. • Every packet contains a header. vRelevant informa;on for rou;ng, etc. 10 Message H H H PACKETS
Packet Switching (contd.) • Packet switching is based on store-and-forward concept. • Each intermediate network node receives a whole packet. • Decides the route. • Forwards the packet along the selected route. • Each intermediate node (router) maintains a rou.ng table. 11
Packet Switching (contd.) • Advantages: • Links can be shared; so link u;liza;on is be@er. • Suitable for computer-generated (bursty) traffic. • Buffering and data rate conversion can be performed easily. • Some packets may be given priority over others, if desired. 12
Packet Switching (contd.) • How are packets transmi@ed? • Two alterna;ve approaches: a) Virtual Circuits b) Datagram • The abstract network model: A B C D E F G H 13
(a) Virtual Circuit Approach • Similar in concept to circuit switching. • A route is established before packet transmission starts. • All packets follow the same path. • The links comprising the path are not dedicated. vDifferent from circuit switching in this respect. • Analogy: • Telephone system. 14
(a) Virtual Circuit Approach (contd.) • How it works? • Route is established a priori. • Packet forwarded from one node to the next using store-and-forward scheme. • Only the virtual circuit number need to be carried by a packet. vEach intermediate node maintains a table. vCreated during route establishment. vUsed for packet forwarding. • No dynamic rou;ng decision is taken by the intermediate nodes. 15
16
Course Name: Ethical Hacking Faculty Name: Prof. Indranil Sen Gupta Department : Computer Science and Engineering Topic Lecture 3: Basic Concepts of Networking (Part II)
q Datagrams q Layered network architecture
(b) Datagram Approach • Basic concept: • No route is established beforehand. • Each packet is transmi>ed as an independent en?ty. • Does not maintain any history. • Analogy: • Postal system. 3
Datagram Approach (contd.) • Every intermediate node has to take rou?ng decisions dynamically. • Makes use of a rou$ng table. • Every packet must contain source and des$na$on addresses. • Problems: • Packets may be delivered out of order. • If a node crashes momentarily, all of its queued packets are lost. • Duplicate packets may also be generated. 4
Datagram Approach (contd.) • Advantages: • Faster than virtual circuit for smaller number of packets. vNo route establishment and termina?on. • More flexible. • Packets between two hosts may follow different paths. vCan handle conges?on/failed link. 5 A B C D E F G H
ComparaJve Study • Three types of delays must be considered: a) Propaga?on Delay • Time taken by a data signal to propagate from one node to the next. b) Transmission Time • Time taken to send out a packet by the transmi>er. c) Processing Delay • Time taken by a node to process a packet. 6
Circuit Switching • AUer ini?al circuit establishment, data bits sent con?nuously without any delay. 7
Virtual Circuit Packet Switching • The Call Request packet sent from source to des?na?on. • The Call Accept packet returns back. • Packets sent sequen?ally in a pipelined fashion. • Store-and-forward approach. 8
Datagram Packet Switching • No ini?al delay. • The packets are sent out independently. • May follow different paths. • Also follows store-and-forward approach. 9
Layered Network Architecture • Open systems interconnec?on (OSI) reference model. • Seven layer model. • Communica?on func?ons are par??oned into a hierarchical set of layers. • Objec?ve: • Systema?c approach to design. • Changes in one layer should not require changes in other layers. 10
The 7-layer OSI Model ApplicaJon PresentaJon Session Transport Network Datalink Physical Host-to-host Point-to-point 11
Layer FuncJons • Physical • Transmit raw bit stream over a physical medium. • Data Link • Reliable transfer of frames over a point-to-point link (flow control, error control). • Network • Establishing, maintaining and termina?ng connec?ons. • Routes packets through point-to-point links. 12 ApplicaJon PresentaJon Session Transport Network Datalink Physical
Layer FuncJons (contd.) • Transport • End-to-end reliable data transfer, with error recovery and flow control. • Session • Manages sessions. • PresentaJon • Provides data independence. • ApplicaJon • Interface point for user applica?ons. 13 ApplicaJon PresentaJon Session Transport Network Datalink Physical
How Data Flows APPLICATION NETWORK TRANSPORT PRESENTATION SESSION PHYSICAL DATA LINK APPLICATION NETWORK TRANSPORT PRESENTATION SESSION PHYSICAL DATA LINK N P DL N P DL S B A D 14
Internetworking Devices • Hub • Extends the span of a single LAN. • Bridge / Layer-2 Switch • Connects two or more LANs together. • Works at data link layer level. • Router / Layer-3 Switch • Connects any combina?on of LANs and WANs. • Works at network layer level. 15
Typical Internetworking Structure 16
17
Course Name: Ethical Hacking Faculty Name: Prof. Indranil Sen Gupta Department : Computer Science and Engineering Topic Lecture 4: TCP/IP Protocol Stack (Part I)
q TCP/IP protocol stack q Basic func5ons of TCP, UDP and IP q Data encapsula5on
IntroducGon • TCP/IP is the most fundamental protocol used in the Internet. • Allows computers to communicate / share resources. • Used as a standard. • To bridge the gap between non-compa5ble plaCorms. • Work on TCP/IP started in the 1970s. • Funded by US Military. • Advanced Research Project Agency (ARPA). 3
Network Layering in TCP/IP • In 1978, Interna5onal Standards Organiza5on (ISO) proposed the 7-layer OSI reference model for network services and protocols. • TCP/IP does not strictly follow the OSI model. • It follows a simplified 4-layer model. 4
The 7-layer OSI Model ApplicaGon PresentaGon Session Transport Network Datalink Physical Host-to-host Point-to-point 5 ApplicaGon Transport Network Datalink Frame transmission over link Packet delivery across Internet End-to-end message transfer Runs on top of layers 1,2,3 The 4-layer TCP/IP Model
Data Flow in 4-layer Model A B C ApplicaGon Transport Network Datalink ApplicaGon Transport Network Datalink Network Datalink 6
TCP/IP Protocol Suite • Refers to a family of protocols. • The protocols are built on top of connec5onless technology (datagrams). • Data sent from one node to another as a sequence of datagrams. • Each datagram is sent independently. • The datagrams corresponding to the same message may follow different routes. vVariable delay, arrival order at des5na5on. 7
TCP/IP Family Members (ParGal List) Datalink and Hardware Layer (e.g., Ethernet) Internet Protocol (IP) ICMP IGMP ARP RARP Transmission Control Protocol (TCP) User Datagram Protocol (UDP) FTP TFTP SMTP SNMP DNS User Process 8
• Address ResoluGon Protocol (ARP) • Map IP addresses to hardware (MAC) addresses. • Reverse Address ResoluGon Protocol (RARP) • Map hardware addresses to IP addresses. • Internet Control Message Protocol (ICMP) • A network device can send error messages and other informa5on. • Internet Group Management Protocol (IGMP) • A node can send its mul5cast group membership to adjacent routers. 9
Typical Scenario Datalink and Hardware Layer (e.g., Ethernet) IP TCP UDP User Process User Process 10
What does IP do? • IP transports datagrams (packets) from a source node to a des5na5on node. • Responsible for rou5ng the packets. • Breaks a packet into smaller packets, if required. • Unreliable service. vA packet may be lost in transit. vPackets may arrive out of order. vDuplicate packets may be generated. 11
What does TCP do? • TCP provides a connec5on-oriented, reliable service for sending messages. • Split a message into packets. • Reassemble packets at des5na5on. • Resend packets that were lost in transit. • Interface with IP: • Each packet forwarded to IP for delivery. • Error control is done by TCP. 12
What does UDP do? • UDP provides a connec5onless, unreliable service for sending datagrams (packets). • Messages small enough to fit in a packet (e.g., DNS query). • Simpler (and faster) than TCP. • Never split data into mul5ple packets. • Does not care about error control. • Interface with IP: • Each UDP packet sent to IP for delivery. 13
Addresses in TCP/IP Datalink and Hardware Layer (e.g., Ethernet) IP TCP UDP User Process User Process Port Address (16 bits) IP Address (32 bits) Physical Address (48 bits) 14
EncapsulaGon • Basic concept: • As data flows down the protocol hierarchy, headers (and trailers) get appended to it. • As data moves up the hierarchy, headers (and trailers) get stripped off. • An example to illustrate: • Trivial file transfer protocol (TFTP). • TFTP client transfers 200 bytes of data. • 4 bytes of TFTP header gets added. 15 TFTP client UDP IP Ethernet TFTP server UDP IP Ethernet
EncapsulaGon in TFTP Data Data Data Data Data H-TFTP H-TFTP H-TFTP H-TFTP H-UDP H-UDP H-UDP H-IP H-IP H-Eth T-Eth 14 20 8 4 200 4 TFTP message UDP packet IP packet Ethernet frame 16
17
Course Name: Ethical Hacking Faculty Name: Prof. Indranil Sen Gupta Department : Computer Science and Engineering Topic Lecture 5: TCP/IP Protocol Stack (Part II)
q IP Datagrams q IP Header fields
IP Datagrams
The IP Layer • IP layer provides a connec7onless, unreliable delivery system for packets. • Each packet is independent of one another. • IP layer need not maintain any history. • Each IP packet must contain the source and des7na7on addresses. • IP layer does not guarantee delivery of packets. • IP layer encapsula7on • Receives a data chunk from the higher layer (TCP or UDP). • Prepends a header of minimum 20 bytes. vContaining relevant informa7on for handling rou7ng and flow control. 4
IllustraGon Data Data 20 bytes IP header 5
Format of IP Datagram Total Length IdenGficaGon Service type VER HLEN Fragment Offset Time to Live Protocol Flags Header Checksum Source IP Address DesGnaGon IP Address OpGons DATA --------- HEADER -------- 0 4 8 15 16 31 6
IP Header Fields • VER (4 bits) • Version of the IP protocol in use (typically 4). • HLEN (4 bits) • Length of the header, expressed as the number of 32-bit words. • Minimum size is 5, and maximum 15. • Total Length (16 bits) • Length in bytes of the datagram, including headers. • Maximum datagram size :: 216 = 65536 bytes. 7
IP Header Fields (contd.) • Service Type (8 bits) • Allows packet to be assigned a priority. • Router can use this field to route packets. • Time to Live (8 bits) • Prevents a packet from traveling in a loop. • Senders sets a value, that is decremented at each hop. If it reaches zero, packet is discarded. • Protocol (8 bits) • Iden7fies the higher layer protocol being used. 8
IP Header Fields (contd.) • Source IP address (32 bits) • Internet address of the sender. • DesGnaGon IP address (32 bits) • Internet address of the des7na7on. • IdenGficaGon, Flags, Fragment Offset • Used for handling fragmenta7on. • OpGons (variable width) • Can be given provided router supports. • Source rou7ng, for example. 9
IP Header Fields (contd.) • Header Checksum (16 bits) • Covers only the IP header. • How computed? vHeader treated as a sequence of 16-bit integers. vThe integers are all added using ones complement arithme7c. vOnes complement of the final sum is taken as the checksum. • A mismatch in checksum causes the datagram to be discarded. 10
Viewing IP Packets • We can use packet sniffers to view IP packets. • Some popular packet sniffers: • Wireshark • Windump • tcpdump • Tshark • SolarWinds • …. and many more 11
Wireshark … 12
13

Recommended

Slides internet technology
Slides internet technologySlides internet technology
Slides internet technology
Inexk Pedrero
 
Introduction to cyber forensics
Introduction to cyber forensicsIntroduction to cyber forensics
Introduction to cyber forensics
Anpumathews
 
Dist sniffing & scanning project
Dist sniffing & scanning projectDist sniffing & scanning project
Dist sniffing & scanning project
Rishu Seth
 
Normalizing Empire's Traffic to Evade Anomaly-Based IDS
Normalizing Empire's Traffic to Evade Anomaly-Based IDSNormalizing Empire's Traffic to Evade Anomaly-Based IDS
Normalizing Empire's Traffic to Evade Anomaly-Based IDS
Utku Sen
 
2018 FRSecure CISSP Mentor Program- Session 7
2018 FRSecure CISSP Mentor Program- Session 72018 FRSecure CISSP Mentor Program- Session 7
2018 FRSecure CISSP Mentor Program- Session 7
FRSecure
 
lecture06-link-layer.pdf
lecture06-link-layer.pdflecture06-link-layer.pdf
lecture06-link-layer.pdf
Enics
 
Unified Threat Management
Unified Threat ManagementUnified Threat Management
Unified Threat Management
Tapas Shome
 
Linux and firewall
Linux and firewallLinux and firewall
Linux and firewall
Mhmud Khraibene
 

Recommended

Slides internet technology
Slides internet technologySlides internet technology
Slides internet technology
Inexk Pedrero
 
Introduction to cyber forensics
Introduction to cyber forensicsIntroduction to cyber forensics
Introduction to cyber forensics
Anpumathews
 
Dist sniffing & scanning project
Dist sniffing & scanning projectDist sniffing & scanning project
Dist sniffing & scanning project
Rishu Seth
 
Normalizing Empire's Traffic to Evade Anomaly-Based IDS
Normalizing Empire's Traffic to Evade Anomaly-Based IDSNormalizing Empire's Traffic to Evade Anomaly-Based IDS
Normalizing Empire's Traffic to Evade Anomaly-Based IDS
Utku Sen
 
2018 FRSecure CISSP Mentor Program- Session 7
2018 FRSecure CISSP Mentor Program- Session 72018 FRSecure CISSP Mentor Program- Session 7
2018 FRSecure CISSP Mentor Program- Session 7
FRSecure
 
lecture06-link-layer.pdf
lecture06-link-layer.pdflecture06-link-layer.pdf
lecture06-link-layer.pdf
Enics
 
Unified Threat Management
Unified Threat ManagementUnified Threat Management
Unified Threat Management
Tapas Shome
 
Linux and firewall
Linux and firewallLinux and firewall
Linux and firewall
Mhmud Khraibene
 
Tutorial: Maximizing Performance and Network Utility with a Science DMZ
Tutorial: Maximizing Performance and Network Utility with a Science DMZTutorial: Maximizing Performance and Network Utility with a Science DMZ
Tutorial: Maximizing Performance and Network Utility with a Science DMZ
Globus
 
Ntc 362 forecasting and strategic planning -uopstudy.com
Ntc 362 forecasting and strategic planning -uopstudy.comNtc 362 forecasting and strategic planning -uopstudy.com
Ntc 362 forecasting and strategic planning -uopstudy.com
ULLPTT
 
Ntc 362 effective communication uopstudy.com
Ntc 362 effective communication uopstudy.comNtc 362 effective communication uopstudy.com
Ntc 362 effective communication uopstudy.com
ULLPTT
 
Network security basics
Network security basicsNetwork security basics
Network security basics
Skillspire LLC
 
Computer Networks for placements. It will help you for placement
Computer Networks for placements. It will help you for placementComputer Networks for placements. It will help you for placement
Computer Networks for placements. It will help you for placement
SagarGhosh48
 
SDN and Named Data Networking Security
SDN and Named Data Networking SecuritySDN and Named Data Networking Security
SDN and Named Data Networking Security
wolverinetyagi
 
Myles firewalls
Myles firewallsMyles firewalls
Myles firewalls
Shmulik Avidan
 
How we breach small and medium enterprises (SMEs)
How we breach small and medium enterprises (SMEs)How we breach small and medium enterprises (SMEs)
How we breach small and medium enterprises (SMEs)
NCC Group
 
Chapter 4
Chapter 4Chapter 4
Chapter 4
ushabarad142
 
IDS Evasion Techniques
IDS Evasion TechniquesIDS Evasion Techniques
IDS Evasion Techniques
Tudor Damian
 
Network security
Network security Network security
Network security
Vikas Jagtap
 
Congection control and Internet working
Congection control and Internet workingCongection control and Internet working
Congection control and Internet working
TharuniDiddekunta
 
Osi model
Osi modelOsi model
Osi model
sayyed sabir
 
Coporate Espionage
Coporate EspionageCoporate Espionage
Coporate Espionage
UTD Computer Security Group
 
Topic02-Architecture.pptx
Topic02-Architecture.pptxTopic02-Architecture.pptx
Topic02-Architecture.pptx
ImXaib
 
lecture 7.pptx
lecture 7.pptxlecture 7.pptx
lecture 7.pptx
MelkamuEndale1
 
Tech 2 tech low latency networking on Janet presentation
Tech 2 tech low latency networking on Janet presentationTech 2 tech low latency networking on Janet presentation
Tech 2 tech low latency networking on Janet presentation
Jisc
 
ML13198A410.pdf
ML13198A410.pdfML13198A410.pdf
ML13198A410.pdf
ParasPatel967737
 
ML13198A410.pdf
ML13198A410.pdfML13198A410.pdf
ML13198A410.pdf
KalsoomTahir2
 
shivam sahu (firewall).pdfb jndvhjfvhjjf
shivam sahu (firewall).pdfb jndvhjfvhjjfshivam sahu (firewall).pdfb jndvhjfvhjjf
shivam sahu (firewall).pdfb jndvhjfvhjjf
sahushivam4928
 
Level 3 NCEA - NZ: A Nation In the Making 1872 - 1900 SML.ppt
Level 3 NCEA - NZ: A Nation In the Making 1872 - 1900 SML.pptLevel 3 NCEA - NZ: A Nation In the Making 1872 - 1900 SML.ppt
Level 3 NCEA - NZ: A Nation In the Making 1872 - 1900 SML.ppt
Henry Hollis
 
Data Structure using C by Dr. K Adisesha .ppsx
Data Structure using C by Dr. K Adisesha .ppsxData Structure using C by Dr. K Adisesha .ppsx
Data Structure using C by Dr. K Adisesha .ppsx
Prof. Dr. K. Adisesha
 

More Related Content

Similar to WEEK-01.pdf

Tutorial: Maximizing Performance and Network Utility with a Science DMZ
Tutorial: Maximizing Performance and Network Utility with a Science DMZTutorial: Maximizing Performance and Network Utility with a Science DMZ
Tutorial: Maximizing Performance and Network Utility with a Science DMZ
Globus
 
Ntc 362 forecasting and strategic planning -uopstudy.com
Ntc 362 forecasting and strategic planning -uopstudy.comNtc 362 forecasting and strategic planning -uopstudy.com
Ntc 362 forecasting and strategic planning -uopstudy.com
ULLPTT
 
Ntc 362 effective communication uopstudy.com
Ntc 362 effective communication uopstudy.comNtc 362 effective communication uopstudy.com
Ntc 362 effective communication uopstudy.com
ULLPTT
 
Network security basics
Network security basicsNetwork security basics
Network security basics
Skillspire LLC
 
Computer Networks for placements. It will help you for placement
Computer Networks for placements. It will help you for placementComputer Networks for placements. It will help you for placement
Computer Networks for placements. It will help you for placement
SagarGhosh48
 
SDN and Named Data Networking Security
SDN and Named Data Networking SecuritySDN and Named Data Networking Security
SDN and Named Data Networking Security
wolverinetyagi
 
Myles firewalls
Myles firewallsMyles firewalls
Myles firewalls
Shmulik Avidan
 
How we breach small and medium enterprises (SMEs)
How we breach small and medium enterprises (SMEs)How we breach small and medium enterprises (SMEs)
How we breach small and medium enterprises (SMEs)
NCC Group
 
Chapter 4
Chapter 4Chapter 4
Chapter 4
ushabarad142
 
IDS Evasion Techniques
IDS Evasion TechniquesIDS Evasion Techniques
IDS Evasion Techniques
Tudor Damian
 
Network security
Network security Network security
Network security
Vikas Jagtap
 
Congection control and Internet working
Congection control and Internet workingCongection control and Internet working
Congection control and Internet working
TharuniDiddekunta
 
Osi model
Osi modelOsi model
Osi model
sayyed sabir
 
Coporate Espionage
Coporate EspionageCoporate Espionage
Coporate Espionage
UTD Computer Security Group
 
Topic02-Architecture.pptx
Topic02-Architecture.pptxTopic02-Architecture.pptx
Topic02-Architecture.pptx
ImXaib
 
lecture 7.pptx
lecture 7.pptxlecture 7.pptx
lecture 7.pptx
MelkamuEndale1
 
Tech 2 tech low latency networking on Janet presentation
Tech 2 tech low latency networking on Janet presentationTech 2 tech low latency networking on Janet presentation
Tech 2 tech low latency networking on Janet presentation
Jisc
 
ML13198A410.pdf
ML13198A410.pdfML13198A410.pdf
ML13198A410.pdf
ParasPatel967737
 
ML13198A410.pdf
ML13198A410.pdfML13198A410.pdf
ML13198A410.pdf
KalsoomTahir2
 
shivam sahu (firewall).pdfb jndvhjfvhjjf
shivam sahu (firewall).pdfb jndvhjfvhjjfshivam sahu (firewall).pdfb jndvhjfvhjjf
shivam sahu (firewall).pdfb jndvhjfvhjjf
sahushivam4928
 

Similar to WEEK-01.pdf (20)

Tutorial: Maximizing Performance and Network Utility with a Science DMZ
Tutorial: Maximizing Performance and Network Utility with a Science DMZTutorial: Maximizing Performance and Network Utility with a Science DMZ
Tutorial: Maximizing Performance and Network Utility with a Science DMZ
 
Ntc 362 forecasting and strategic planning -uopstudy.com
Ntc 362 forecasting and strategic planning -uopstudy.comNtc 362 forecasting and strategic planning -uopstudy.com
Ntc 362 forecasting and strategic planning -uopstudy.com
 
Ntc 362 effective communication uopstudy.com
Ntc 362 effective communication uopstudy.comNtc 362 effective communication uopstudy.com
Ntc 362 effective communication uopstudy.com
 
Network security basics
Network security basicsNetwork security basics
Network security basics
 
Computer Networks for placements. It will help you for placement
Computer Networks for placements. It will help you for placementComputer Networks for placements. It will help you for placement
Computer Networks for placements. It will help you for placement
 
SDN and Named Data Networking Security
SDN and Named Data Networking SecuritySDN and Named Data Networking Security
SDN and Named Data Networking Security
 
Myles firewalls
Myles firewallsMyles firewalls
Myles firewalls
 
How we breach small and medium enterprises (SMEs)
How we breach small and medium enterprises (SMEs)How we breach small and medium enterprises (SMEs)
How we breach small and medium enterprises (SMEs)
 
Chapter 4
Chapter 4Chapter 4
Chapter 4
 
IDS Evasion Techniques
IDS Evasion TechniquesIDS Evasion Techniques
IDS Evasion Techniques
 
Network security
Network security Network security
Network security
 
Congection control and Internet working
Congection control and Internet workingCongection control and Internet working
Congection control and Internet working
 
Osi model
Osi modelOsi model
Osi model
 
Coporate Espionage
Coporate EspionageCoporate Espionage
Coporate Espionage
 
Topic02-Architecture.pptx
Topic02-Architecture.pptxTopic02-Architecture.pptx
Topic02-Architecture.pptx
 
lecture 7.pptx
lecture 7.pptxlecture 7.pptx
lecture 7.pptx
 
Tech 2 tech low latency networking on Janet presentation
Tech 2 tech low latency networking on Janet presentationTech 2 tech low latency networking on Janet presentation
Tech 2 tech low latency networking on Janet presentation
 
ML13198A410.pdf
ML13198A410.pdfML13198A410.pdf
ML13198A410.pdf
 
ML13198A410.pdf
ML13198A410.pdfML13198A410.pdf
ML13198A410.pdf
 
shivam sahu (firewall).pdfb jndvhjfvhjjf
shivam sahu (firewall).pdfb jndvhjfvhjjfshivam sahu (firewall).pdfb jndvhjfvhjjf
shivam sahu (firewall).pdfb jndvhjfvhjjf
 

Recently uploaded

Level 3 NCEA - NZ: A Nation In the Making 1872 - 1900 SML.ppt
Level 3 NCEA - NZ: A Nation In the Making 1872 - 1900 SML.pptLevel 3 NCEA - NZ: A Nation In the Making 1872 - 1900 SML.ppt
Level 3 NCEA - NZ: A Nation In the Making 1872 - 1900 SML.ppt
Henry Hollis
 
Data Structure using C by Dr. K Adisesha .ppsx
Data Structure using C by Dr. K Adisesha .ppsxData Structure using C by Dr. K Adisesha .ppsx
Data Structure using C by Dr. K Adisesha .ppsx
Prof. Dr. K. Adisesha
 
Benner "Expanding Pathways to Publishing Careers"
Benner "Expanding Pathways to Publishing Careers"Benner "Expanding Pathways to Publishing Careers"
Benner "Expanding Pathways to Publishing Careers"
National Information Standards Organization (NISO)
 
Elevate Your Nonprofit's Online Presence_ A Guide to Effective SEO Strategies...
Elevate Your Nonprofit's Online Presence_ A Guide to Effective SEO Strategies...Elevate Your Nonprofit's Online Presence_ A Guide to Effective SEO Strategies...
Elevate Your Nonprofit's Online Presence_ A Guide to Effective SEO Strategies...
TechSoup
 
Temple of Asclepius in Thrace. Excavation results
Temple of Asclepius in Thrace. Excavation resultsTemple of Asclepius in Thrace. Excavation results
Temple of Asclepius in Thrace. Excavation results
Krassimira Luka
 
RESULTS OF THE EVALUATION QUESTIONNAIRE.pptx
RESULTS OF THE EVALUATION QUESTIONNAIRE.pptxRESULTS OF THE EVALUATION QUESTIONNAIRE.pptx
RESULTS OF THE EVALUATION QUESTIONNAIRE.pptx
zuzanka
 
NEWSPAPERS - QUESTION 1 - REVISION POWERPOINT.pptx
NEWSPAPERS - QUESTION 1 - REVISION POWERPOINT.pptxNEWSPAPERS - QUESTION 1 - REVISION POWERPOINT.pptx
NEWSPAPERS - QUESTION 1 - REVISION POWERPOINT.pptx
iammrhaywood
 
Leveraging Generative AI to Drive Nonprofit Innovation
Leveraging Generative AI to Drive Nonprofit InnovationLeveraging Generative AI to Drive Nonprofit Innovation
Leveraging Generative AI to Drive Nonprofit Innovation
TechSoup
 
Oliver Asks for More by Charles Dickens (9)
Oliver Asks for More by Charles Dickens (9)Oliver Asks for More by Charles Dickens (9)
Oliver Asks for More by Charles Dickens (9)
nitinpv4ai
 
skeleton System.pdf (skeleton system wow)
skeleton System.pdf (skeleton system wow)skeleton System.pdf (skeleton system wow)
skeleton System.pdf (skeleton system wow)
Mohammad Al-Dhahabi
 
BÀI TẬP BỔ TRỢ TIẾNG ANH LỚP 9 CẢ NĂM - GLOBAL SUCCESS - NĂM HỌC 2024-2025 - ...
BÀI TẬP BỔ TRỢ TIẾNG ANH LỚP 9 CẢ NĂM - GLOBAL SUCCESS - NĂM HỌC 2024-2025 - ...BÀI TẬP BỔ TRỢ TIẾNG ANH LỚP 9 CẢ NĂM - GLOBAL SUCCESS - NĂM HỌC 2024-2025 - ...
BÀI TẬP BỔ TRỢ TIẾNG ANH LỚP 9 CẢ NĂM - GLOBAL SUCCESS - NĂM HỌC 2024-2025 - ...
Nguyen Thanh Tu Collection
 
A Free 200-Page eBook ~ Brain and Mind Exercise.pptx
A Free 200-Page eBook ~ Brain and Mind Exercise.pptxA Free 200-Page eBook ~ Brain and Mind Exercise.pptx
A Free 200-Page eBook ~ Brain and Mind Exercise.pptx
OH TEIK BIN
 
Standardized tool for Intelligence test.
Standardized tool for Intelligence test.Standardized tool for Intelligence test.
Standardized tool for Intelligence test.
deepaannamalai16
 
CapTechTalks Webinar Slides June 2024 Donovan Wright.pptx
CapTechTalks Webinar Slides June 2024 Donovan Wright.pptxCapTechTalks Webinar Slides June 2024 Donovan Wright.pptx
CapTechTalks Webinar Slides June 2024 Donovan Wright.pptx
CapitolTechU
 
How to Manage Reception Report in Odoo 17
How to Manage Reception Report in Odoo 17How to Manage Reception Report in Odoo 17
How to Manage Reception Report in Odoo 17
Celine George
 
Pharmaceutics Pharmaceuticals best of brub
Pharmaceutics Pharmaceuticals best of brubPharmaceutics Pharmaceuticals best of brub
Pharmaceutics Pharmaceuticals best of brub
danielkiash986
 
CHUYÊN ĐỀ ÔN TẬP VÀ PHÁT TRIỂN CÂU HỎI TRONG ĐỀ MINH HỌA THI TỐT NGHIỆP THPT ...
CHUYÊN ĐỀ ÔN TẬP VÀ PHÁT TRIỂN CÂU HỎI TRONG ĐỀ MINH HỌA THI TỐT NGHIỆP THPT ...CHUYÊN ĐỀ ÔN TẬP VÀ PHÁT TRIỂN CÂU HỎI TRONG ĐỀ MINH HỌA THI TỐT NGHIỆP THPT ...
CHUYÊN ĐỀ ÔN TẬP VÀ PHÁT TRIỂN CÂU HỎI TRONG ĐỀ MINH HỌA THI TỐT NGHIỆP THPT ...
Nguyen Thanh Tu Collection
 
A Visual Guide to 1 Samuel | A Tale of Two Hearts
A Visual Guide to 1 Samuel | A Tale of Two HeartsA Visual Guide to 1 Samuel | A Tale of Two Hearts
A Visual Guide to 1 Samuel | A Tale of Two Hearts
Steve Thomason
 
How to Download & Install Module From the Odoo App Store in Odoo 17
How to Download & Install Module From the Odoo App Store in Odoo 17How to Download & Install Module From the Odoo App Store in Odoo 17
How to Download & Install Module From the Odoo App Store in Odoo 17
Celine George
 
Geography as a Discipline Chapter 1 __ Class 11 Geography NCERT _ Class Notes...
Geography as a Discipline Chapter 1 __ Class 11 Geography NCERT _ Class Notes...Geography as a Discipline Chapter 1 __ Class 11 Geography NCERT _ Class Notes...
Geography as a Discipline Chapter 1 __ Class 11 Geography NCERT _ Class Notes...
ImMuslim
 

Recently uploaded (20)

Level 3 NCEA - NZ: A Nation In the Making 1872 - 1900 SML.ppt
Level 3 NCEA - NZ: A Nation In the Making 1872 - 1900 SML.pptLevel 3 NCEA - NZ: A Nation In the Making 1872 - 1900 SML.ppt
Level 3 NCEA - NZ: A Nation In the Making 1872 - 1900 SML.ppt
 
Data Structure using C by Dr. K Adisesha .ppsx
Data Structure using C by Dr. K Adisesha .ppsxData Structure using C by Dr. K Adisesha .ppsx
Data Structure using C by Dr. K Adisesha .ppsx
 
Benner "Expanding Pathways to Publishing Careers"
Benner "Expanding Pathways to Publishing Careers"Benner "Expanding Pathways to Publishing Careers"
Benner "Expanding Pathways to Publishing Careers"
 
Elevate Your Nonprofit's Online Presence_ A Guide to Effective SEO Strategies...
Elevate Your Nonprofit's Online Presence_ A Guide to Effective SEO Strategies...Elevate Your Nonprofit's Online Presence_ A Guide to Effective SEO Strategies...
Elevate Your Nonprofit's Online Presence_ A Guide to Effective SEO Strategies...
 
Temple of Asclepius in Thrace. Excavation results
Temple of Asclepius in Thrace. Excavation resultsTemple of Asclepius in Thrace. Excavation results
Temple of Asclepius in Thrace. Excavation results
 
RESULTS OF THE EVALUATION QUESTIONNAIRE.pptx
RESULTS OF THE EVALUATION QUESTIONNAIRE.pptxRESULTS OF THE EVALUATION QUESTIONNAIRE.pptx
RESULTS OF THE EVALUATION QUESTIONNAIRE.pptx
 
NEWSPAPERS - QUESTION 1 - REVISION POWERPOINT.pptx
NEWSPAPERS - QUESTION 1 - REVISION POWERPOINT.pptxNEWSPAPERS - QUESTION 1 - REVISION POWERPOINT.pptx
NEWSPAPERS - QUESTION 1 - REVISION POWERPOINT.pptx
 
Leveraging Generative AI to Drive Nonprofit Innovation
Leveraging Generative AI to Drive Nonprofit InnovationLeveraging Generative AI to Drive Nonprofit Innovation
Leveraging Generative AI to Drive Nonprofit Innovation
 
Oliver Asks for More by Charles Dickens (9)
Oliver Asks for More by Charles Dickens (9)Oliver Asks for More by Charles Dickens (9)
Oliver Asks for More by Charles Dickens (9)
 
skeleton System.pdf (skeleton system wow)
skeleton System.pdf (skeleton system wow)skeleton System.pdf (skeleton system wow)
skeleton System.pdf (skeleton system wow)
 
BÀI TẬP BỔ TRỢ TIẾNG ANH LỚP 9 CẢ NĂM - GLOBAL SUCCESS - NĂM HỌC 2024-2025 - ...
BÀI TẬP BỔ TRỢ TIẾNG ANH LỚP 9 CẢ NĂM - GLOBAL SUCCESS - NĂM HỌC 2024-2025 - ...BÀI TẬP BỔ TRỢ TIẾNG ANH LỚP 9 CẢ NĂM - GLOBAL SUCCESS - NĂM HỌC 2024-2025 - ...
BÀI TẬP BỔ TRỢ TIẾNG ANH LỚP 9 CẢ NĂM - GLOBAL SUCCESS - NĂM HỌC 2024-2025 - ...
 
A Free 200-Page eBook ~ Brain and Mind Exercise.pptx
A Free 200-Page eBook ~ Brain and Mind Exercise.pptxA Free 200-Page eBook ~ Brain and Mind Exercise.pptx
A Free 200-Page eBook ~ Brain and Mind Exercise.pptx
 
Standardized tool for Intelligence test.
Standardized tool for Intelligence test.Standardized tool for Intelligence test.
Standardized tool for Intelligence test.
 
CapTechTalks Webinar Slides June 2024 Donovan Wright.pptx
CapTechTalks Webinar Slides June 2024 Donovan Wright.pptxCapTechTalks Webinar Slides June 2024 Donovan Wright.pptx
CapTechTalks Webinar Slides June 2024 Donovan Wright.pptx
 
How to Manage Reception Report in Odoo 17
How to Manage Reception Report in Odoo 17How to Manage Reception Report in Odoo 17
How to Manage Reception Report in Odoo 17
 
Pharmaceutics Pharmaceuticals best of brub
Pharmaceutics Pharmaceuticals best of brubPharmaceutics Pharmaceuticals best of brub
Pharmaceutics Pharmaceuticals best of brub
 
CHUYÊN ĐỀ ÔN TẬP VÀ PHÁT TRIỂN CÂU HỎI TRONG ĐỀ MINH HỌA THI TỐT NGHIỆP THPT ...
CHUYÊN ĐỀ ÔN TẬP VÀ PHÁT TRIỂN CÂU HỎI TRONG ĐỀ MINH HỌA THI TỐT NGHIỆP THPT ...CHUYÊN ĐỀ ÔN TẬP VÀ PHÁT TRIỂN CÂU HỎI TRONG ĐỀ MINH HỌA THI TỐT NGHIỆP THPT ...
CHUYÊN ĐỀ ÔN TẬP VÀ PHÁT TRIỂN CÂU HỎI TRONG ĐỀ MINH HỌA THI TỐT NGHIỆP THPT ...
 
A Visual Guide to 1 Samuel | A Tale of Two Hearts
A Visual Guide to 1 Samuel | A Tale of Two HeartsA Visual Guide to 1 Samuel | A Tale of Two Hearts
A Visual Guide to 1 Samuel | A Tale of Two Hearts
 
How to Download & Install Module From the Odoo App Store in Odoo 17
How to Download & Install Module From the Odoo App Store in Odoo 17How to Download & Install Module From the Odoo App Store in Odoo 17
How to Download & Install Module From the Odoo App Store in Odoo 17
 
Geography as a Discipline Chapter 1 __ Class 11 Geography NCERT _ Class Notes...
Geography as a Discipline Chapter 1 __ Class 11 Geography NCERT _ Class Notes...Geography as a Discipline Chapter 1 __ Class 11 Geography NCERT _ Class Notes...
Geography as a Discipline Chapter 1 __ Class 11 Geography NCERT _ Class Notes...
 

WEEK-01.pdf

  • 1. Course Name: Ethical Hacking Faculty Name: Prof. Indranil Sen Gupta Department : Computer Science and Engineering Topic Lecture 1: IntroducDon to Ethical Hacking
  • 2. q What is ethical hacking? q Penetra1on tes1ng q Role of the ethical hacker
  • 3. What is Ethical Hacking? • It refers to the act of loca1ng weaknesses and vulnerabili1es of computer and informa1on systems by replica1ng the intent and ac1ons of malicious hackers. • It is also known as penetra'on tes'ng, intrusion tes'ng or red teaming. 3
  • 4. IntroducDon to Ethical Hacking • Ethical Hackers • Employed by companies to perform penetra1on test. • PenetraDon Test • Legal aCempt to break into the company’s network to find the weak links. • Tester only report findings, does not provide solu1ons. • Security Test • Also includes analyzing company’s security policy and procedures. • Tester offers solu1ons to secure or protect the network. 4
  • 5. Some Terminologies • Hacking - showing computer exper1se. • Cracking - breaching security on soMware or systems. • Spoofing - faking the origina1ng IP address in a datagram. • Denial of Service (DoS) - flooding a host with sufficient network traffic so that it cannot respond anymore. • Port Scanning - searching for vulnerabili1es. 5
  • 6. Gaining access • Front door • Password guessing • Password/key stealing • Back doors • OMen leM by original developers as debug and/or diagnos1c tools. • Trojan Horses • Usually hidden inside of soMware that we download and install from the net. • Many install backdoors. • SoMware vulnerability exploitaDon • OMen adver1sed on the OEMs web site along with security patches. • Fer1le ground for script kiddies looking for something to do. 6
  • 7. Once inside, the hacker can... • Modify logs • To cover their tracks. • Steal files • Some1mes destroy aMer stealing. • An expert hacker would steal and cover their tracks to remain undetected. • Modify files • To let you know they were there. • To cause mischief. • Install back doors • So they can get in again. • ACack other systems 7
  • 8. The Role of Security and PenetraDon Testers • Script kiddies or packet monkeys • Young or inexperienced hackers. • Copy codes and techniques from knowledgeable hackers. • Experienced penetra1on testers write programs or scripts using • Perl, C, C++, Python, JavaScript, Visual Basic, SQL, and many others. 8
  • 9. PenetraDon-TesDng Methodologies • Tiger box • Collec1on of OSs and hacking tools. • Usually on a laptop. • Helps penetra1on testers and security testers conduct vulnerabili1es assessments and aCacks. • White box model • Tester is told everything about the network topology and technology. • Tester is authorized to interview IT personnel and company employees. • Makes tester’s job a liCle easier. 9
  • 10. • Black box model • Tester is not given details about the network. • Burden is on the tester to find the details. • Gray box model • Hybrid of the white and black box models. • Company gives tester par1al informa1on. 10
  • 11. What You Can Do Legally • Laws involving technology change as rapidly as technology itself. • Find what is legal for you locally. • Laws change from place to place. • Be aware of what is allowed and what is not allowed. 11
  • 12. Laws of the Land • Tools on your computer might be illegal to possess. • Contact local law enforcement agencies before installing hacking tools. • WriCen words are open to interpreta1on. • Governments are gehng more serious about punishment for cybercrimes. 12
  • 13. What You Cannot Do Legally • Accessing a computer without permission is illegal. • Other illegal ac1ons: • Installing worms or viruses • Denial of Service aCacks • Denying users access to network resources • Be careful your ac1ons do not prevent customers from doing their jobs. 13
  • 14. Ethical Hacking in a Nutshell • What it takes to be a security tester? • Knowledge of network and computer technology. • Ability to communicate with management and IT personnel. • Understanding of the laws. • Ability to use necessary tools. 14
  • 15. In this course, we shall cover: • Relevant networking technologies • Basic cryptographic concepts • Case studies of secure applica1ons • Unconven1onal aCacks • Tools demonstra1on 15
  • 16. 16
  • 17. Course Name: Ethical Hacking Faculty Name: Prof. Indranil Sen Gupta Department : Computer Science and Engineering Topic Lecture 2: Basic Concepts of Networking (Part I)
  • 18. q Types of computer networks q Circuit switching and packet switching q Virtual circuits
  • 19. Networking: Basic Concepts • Computer Network • A communica;on system for connec;ng computers / hosts • Why? • Be@er connec;vity • Be@er communica;on • Be@er sharing of resources • Bring people together 3
  • 20. Types of Computer Networks • Local Area Network (LAN) • Connects hosts within a rela;vely small geographical area vSame room vSame building vSame campus • Wide Area Network (WAN) • Hosts may be widely dispersed vAcross campuses vAcross ci;es / countries/ con;nents 4 Faster Cheaper Slower Expensive
  • 21. Data CommunicaLon over a Network • Broadly two approaches: a) Circuit switching b) Packet switching 5 A B C D E F G H
  • 22. Circuit Switching • A dedicated communica;on path is established between two sta;ons. • The path follows a fixed sequence of intermediate links. • A logical channel gets defined on each physical link. vDedicated to the connec;on. A B C D E F G H 6
  • 23. Circuit Switching (contd.) • Three steps are required for communica;on: a) ConnecLon establishment • Required before data transmission. b) Data transfer • Can proceed at maximum speed. c) ConnecLon terminaLon • Required aUer data transmission is over. • For dealloca;on of network resources. 7
  • 24. Circuit Switching (contd.) • Drawbacks: • Channel capacity is dedicated during the en;re dura;on of communica;on. vAcceptable for voice communica;on. vVery inefficient for bursty traffic like data. • There is an ini;al delay. vFor connec;on establishment. 8
  • 25. Packet Switching • Modern form of long-distance data communica;on. • Network resources are not dedicated. • A link can be shared. • The basic technology has evolved over ;me. • Basic concept has remained the same. 9
  • 26. Packet Switching (contd.) • Data are transmi@ed in short packets (~ Kbytes). • A longer message is broken up into smaller chunks. • The chunks are called packets. • Every packet contains a header. vRelevant informa;on for rou;ng, etc. 10 Message H H H PACKETS
  • 27. Packet Switching (contd.) • Packet switching is based on store-and-forward concept. • Each intermediate network node receives a whole packet. • Decides the route. • Forwards the packet along the selected route. • Each intermediate node (router) maintains a rou.ng table. 11
  • 28. Packet Switching (contd.) • Advantages: • Links can be shared; so link u;liza;on is be@er. • Suitable for computer-generated (bursty) traffic. • Buffering and data rate conversion can be performed easily. • Some packets may be given priority over others, if desired. 12
  • 29. Packet Switching (contd.) • How are packets transmi@ed? • Two alterna;ve approaches: a) Virtual Circuits b) Datagram • The abstract network model: A B C D E F G H 13
  • 30. (a) Virtual Circuit Approach • Similar in concept to circuit switching. • A route is established before packet transmission starts. • All packets follow the same path. • The links comprising the path are not dedicated. vDifferent from circuit switching in this respect. • Analogy: • Telephone system. 14
  • 31. (a) Virtual Circuit Approach (contd.) • How it works? • Route is established a priori. • Packet forwarded from one node to the next using store-and-forward scheme. • Only the virtual circuit number need to be carried by a packet. vEach intermediate node maintains a table. vCreated during route establishment. vUsed for packet forwarding. • No dynamic rou;ng decision is taken by the intermediate nodes. 15
  • 32. 16
  • 33. Course Name: Ethical Hacking Faculty Name: Prof. Indranil Sen Gupta Department : Computer Science and Engineering Topic Lecture 3: Basic Concepts of Networking (Part II)
  • 34. q Datagrams q Layered network architecture
  • 35. (b) Datagram Approach • Basic concept: • No route is established beforehand. • Each packet is transmi>ed as an independent en?ty. • Does not maintain any history. • Analogy: • Postal system. 3
  • 36. Datagram Approach (contd.) • Every intermediate node has to take rou?ng decisions dynamically. • Makes use of a rou$ng table. • Every packet must contain source and des$na$on addresses. • Problems: • Packets may be delivered out of order. • If a node crashes momentarily, all of its queued packets are lost. • Duplicate packets may also be generated. 4
  • 37. Datagram Approach (contd.) • Advantages: • Faster than virtual circuit for smaller number of packets. vNo route establishment and termina?on. • More flexible. • Packets between two hosts may follow different paths. vCan handle conges?on/failed link. 5 A B C D E F G H
  • 38. ComparaJve Study • Three types of delays must be considered: a) Propaga?on Delay • Time taken by a data signal to propagate from one node to the next. b) Transmission Time • Time taken to send out a packet by the transmi>er. c) Processing Delay • Time taken by a node to process a packet. 6
  • 39. Circuit Switching • AUer ini?al circuit establishment, data bits sent con?nuously without any delay. 7
  • 40. Virtual Circuit Packet Switching • The Call Request packet sent from source to des?na?on. • The Call Accept packet returns back. • Packets sent sequen?ally in a pipelined fashion. • Store-and-forward approach. 8
  • 41. Datagram Packet Switching • No ini?al delay. • The packets are sent out independently. • May follow different paths. • Also follows store-and-forward approach. 9
  • 42. Layered Network Architecture • Open systems interconnec?on (OSI) reference model. • Seven layer model. • Communica?on func?ons are par??oned into a hierarchical set of layers. • Objec?ve: • Systema?c approach to design. • Changes in one layer should not require changes in other layers. 10
  • 43. The 7-layer OSI Model ApplicaJon PresentaJon Session Transport Network Datalink Physical Host-to-host Point-to-point 11
  • 44. Layer FuncJons • Physical • Transmit raw bit stream over a physical medium. • Data Link • Reliable transfer of frames over a point-to-point link (flow control, error control). • Network • Establishing, maintaining and termina?ng connec?ons. • Routes packets through point-to-point links. 12 ApplicaJon PresentaJon Session Transport Network Datalink Physical
  • 45. Layer FuncJons (contd.) • Transport • End-to-end reliable data transfer, with error recovery and flow control. • Session • Manages sessions. • PresentaJon • Provides data independence. • ApplicaJon • Interface point for user applica?ons. 13 ApplicaJon PresentaJon Session Transport Network Datalink Physical
  • 46. How Data Flows APPLICATION NETWORK TRANSPORT PRESENTATION SESSION PHYSICAL DATA LINK APPLICATION NETWORK TRANSPORT PRESENTATION SESSION PHYSICAL DATA LINK N P DL N P DL S B A D 14
  • 47. Internetworking Devices • Hub • Extends the span of a single LAN. • Bridge / Layer-2 Switch • Connects two or more LANs together. • Works at data link layer level. • Router / Layer-3 Switch • Connects any combina?on of LANs and WANs. • Works at network layer level. 15
  • 49. 17
  • 50. Course Name: Ethical Hacking Faculty Name: Prof. Indranil Sen Gupta Department : Computer Science and Engineering Topic Lecture 4: TCP/IP Protocol Stack (Part I)
  • 51. q TCP/IP protocol stack q Basic func5ons of TCP, UDP and IP q Data encapsula5on
  • 52. IntroducGon • TCP/IP is the most fundamental protocol used in the Internet. • Allows computers to communicate / share resources. • Used as a standard. • To bridge the gap between non-compa5ble plaCorms. • Work on TCP/IP started in the 1970s. • Funded by US Military. • Advanced Research Project Agency (ARPA). 3
  • 53. Network Layering in TCP/IP • In 1978, Interna5onal Standards Organiza5on (ISO) proposed the 7-layer OSI reference model for network services and protocols. • TCP/IP does not strictly follow the OSI model. • It follows a simplified 4-layer model. 4
  • 54. The 7-layer OSI Model ApplicaGon PresentaGon Session Transport Network Datalink Physical Host-to-host Point-to-point 5 ApplicaGon Transport Network Datalink Frame transmission over link Packet delivery across Internet End-to-end message transfer Runs on top of layers 1,2,3 The 4-layer TCP/IP Model
  • 55. Data Flow in 4-layer Model A B C ApplicaGon Transport Network Datalink ApplicaGon Transport Network Datalink Network Datalink 6
  • 56. TCP/IP Protocol Suite • Refers to a family of protocols. • The protocols are built on top of connec5onless technology (datagrams). • Data sent from one node to another as a sequence of datagrams. • Each datagram is sent independently. • The datagrams corresponding to the same message may follow different routes. vVariable delay, arrival order at des5na5on. 7
  • 57. TCP/IP Family Members (ParGal List) Datalink and Hardware Layer (e.g., Ethernet) Internet Protocol (IP) ICMP IGMP ARP RARP Transmission Control Protocol (TCP) User Datagram Protocol (UDP) FTP TFTP SMTP SNMP DNS User Process 8
  • 58. • Address ResoluGon Protocol (ARP) • Map IP addresses to hardware (MAC) addresses. • Reverse Address ResoluGon Protocol (RARP) • Map hardware addresses to IP addresses. • Internet Control Message Protocol (ICMP) • A network device can send error messages and other informa5on. • Internet Group Management Protocol (IGMP) • A node can send its mul5cast group membership to adjacent routers. 9
  • 59. Typical Scenario Datalink and Hardware Layer (e.g., Ethernet) IP TCP UDP User Process User Process 10
  • 60. What does IP do? • IP transports datagrams (packets) from a source node to a des5na5on node. • Responsible for rou5ng the packets. • Breaks a packet into smaller packets, if required. • Unreliable service. vA packet may be lost in transit. vPackets may arrive out of order. vDuplicate packets may be generated. 11
  • 61. What does TCP do? • TCP provides a connec5on-oriented, reliable service for sending messages. • Split a message into packets. • Reassemble packets at des5na5on. • Resend packets that were lost in transit. • Interface with IP: • Each packet forwarded to IP for delivery. • Error control is done by TCP. 12
  • 62. What does UDP do? • UDP provides a connec5onless, unreliable service for sending datagrams (packets). • Messages small enough to fit in a packet (e.g., DNS query). • Simpler (and faster) than TCP. • Never split data into mul5ple packets. • Does not care about error control. • Interface with IP: • Each UDP packet sent to IP for delivery. 13
  • 63. Addresses in TCP/IP Datalink and Hardware Layer (e.g., Ethernet) IP TCP UDP User Process User Process Port Address (16 bits) IP Address (32 bits) Physical Address (48 bits) 14
  • 64. EncapsulaGon • Basic concept: • As data flows down the protocol hierarchy, headers (and trailers) get appended to it. • As data moves up the hierarchy, headers (and trailers) get stripped off. • An example to illustrate: • Trivial file transfer protocol (TFTP). • TFTP client transfers 200 bytes of data. • 4 bytes of TFTP header gets added. 15 TFTP client UDP IP Ethernet TFTP server UDP IP Ethernet
  • 65. EncapsulaGon in TFTP Data Data Data Data Data H-TFTP H-TFTP H-TFTP H-TFTP H-UDP H-UDP H-UDP H-IP H-IP H-Eth T-Eth 14 20 8 4 200 4 TFTP message UDP packet IP packet Ethernet frame 16
  • 66. 17
  • 67. Course Name: Ethical Hacking Faculty Name: Prof. Indranil Sen Gupta Department : Computer Science and Engineering Topic Lecture 5: TCP/IP Protocol Stack (Part II)
  • 68. q IP Datagrams q IP Header fields
  • 70. The IP Layer • IP layer provides a connec7onless, unreliable delivery system for packets. • Each packet is independent of one another. • IP layer need not maintain any history. • Each IP packet must contain the source and des7na7on addresses. • IP layer does not guarantee delivery of packets. • IP layer encapsula7on • Receives a data chunk from the higher layer (TCP or UDP). • Prepends a header of minimum 20 bytes. vContaining relevant informa7on for handling rou7ng and flow control. 4
  • 72. Format of IP Datagram Total Length IdenGficaGon Service type VER HLEN Fragment Offset Time to Live Protocol Flags Header Checksum Source IP Address DesGnaGon IP Address OpGons DATA --------- HEADER -------- 0 4 8 15 16 31 6
  • 73. IP Header Fields • VER (4 bits) • Version of the IP protocol in use (typically 4). • HLEN (4 bits) • Length of the header, expressed as the number of 32-bit words. • Minimum size is 5, and maximum 15. • Total Length (16 bits) • Length in bytes of the datagram, including headers. • Maximum datagram size :: 216 = 65536 bytes. 7
  • 74. IP Header Fields (contd.) • Service Type (8 bits) • Allows packet to be assigned a priority. • Router can use this field to route packets. • Time to Live (8 bits) • Prevents a packet from traveling in a loop. • Senders sets a value, that is decremented at each hop. If it reaches zero, packet is discarded. • Protocol (8 bits) • Iden7fies the higher layer protocol being used. 8
  • 75. IP Header Fields (contd.) • Source IP address (32 bits) • Internet address of the sender. • DesGnaGon IP address (32 bits) • Internet address of the des7na7on. • IdenGficaGon, Flags, Fragment Offset • Used for handling fragmenta7on. • OpGons (variable width) • Can be given provided router supports. • Source rou7ng, for example. 9
  • 76. IP Header Fields (contd.) • Header Checksum (16 bits) • Covers only the IP header. • How computed? vHeader treated as a sequence of 16-bit integers. vThe integers are all added using ones complement arithme7c. vOnes complement of the final sum is taken as the checksum. • A mismatch in checksum causes the datagram to be discarded. 10
  • 77. Viewing IP Packets • We can use packet sniffers to view IP packets. • Some popular packet sniffers: • Wireshark • Windump • tcpdump • Tshark • SolarWinds • …. and many more 11
  • 79. 13