Project 1: Network Penetration Testing
|
|
- Ashlynn Reed
- 5 years ago
- Views:
Transcription
1 Project 1: Network Penetration Testing October 11, 2004 This is a seven week project in which you will explore, test, and verify the presence of known vulnerabilities from the bottom to the top of OSI layer [1] in your network. You will be using the ISIS test bed, ASSET, for this project. The network topology is depicted in figure 2. The project itself is divided into five sections according to the OSI layers (see figure 1) and you will work on one section every week. For each section you will use the pentest procedure discussed in the class and refine your attack trees. In the sixth week you will present the final attack tree that incorporates all the attack trees you have developed to meet a final goal. Week 1: Physical Network Survey In the first week of this project you will test the physical security of the network. In addition, you will gather vital information about the hardware, software, procedures, and tools used in the network and used to maintain the testbed that may come in handy in future. Following is an incomplete list of items you must consider when assessing physical security of a network. In addition, you may cover any other relevant items as part of your pentest process. The list and questions are provided as a guide and by no means exhaustive. Your grades, however, will depend on the comprehensiveness of information you gather. 1. Equipment Security: How are the equipments protected? Who has access to what equipment? What is the process of gaining access equipments in the network? What kind of switches are in the network? Can you access the switch s console port? What is the physical topology of the network? 2. Network Media Security: What type of network media is used? How can the network media be accessed tapped? 3. EMI from Network Media and Equipment What protection measures are taken to avoid EMI? Is there any EMI from the media? Are there any hardware tools to extract data from EMI emitted by the media, switch or any other networking equipment? At the end of the week you would have gathered all necessary information relevant to assess physical security of the network. Your report will structure this information in a readable form. In addition, you will create an attack tree with all the information you gathered. Then, verify which attacks are viable on the network and refine your attack tree accordingly. The report you turn should include at least the following information: 1
2 Week 7 Final Presentation Application Week 6 TCP, UDP, HTTP, SQL, DNS, IMAP, and SMTP Presentation Session Week 4, 5 OSPF, BGP Week 2, 3 CAM Table, VLAN, STP, ARP Week 1 Physical Topology Survey Transport Network Data Link Physical Figure 1: Project 1 Schedule Information you gathered on the network infrastructure, processes, etc. An attack tree for the network Methods taken to verify the attacks in the attack tree Pruned/refined attack tree noting which attacks are viable and which ones are not. This attack tree should include a cost metric so that we can find out the most serious threats immediately. Note: Please note that your report should include two attack trees. One prior to verifying attacks and the other (pruned tree) which has only attacks that are viable on the network. Also, note that this section is concerned only about the physical security of the network. Week 2 & 3: Data Link Security In this two week exercise you will explore and verify vulnerabilities in layer-2 protocols and mechanisms used in ISIS. In particular, you will be dealing with CAM Tables, VLANs (802.1Q), and Spanning Tree Protocol [2, 3]. From previous week s exercise you already know the type of switches in use and the topology. In the first week you will create three attacks trees, one for each protocol or mechanism, and prune them using the knowledge you gained from last week. For example, you may have attacks in your initial attack tree that are specific to certain switches or software versions, which you could eliminate. You should also create a Plan of Attack that you would use to verify your semi-pruned attack tree. Your Plan of Attack must at least include the following: What off-the-shelf tools are planning to use or develop and use? A detailed procedures to test each protocol or mechanism and what are expecting to observe in each step Backup plans if things go wrong. (Things will go wrong, and you are expected to predict what can go wrong and be prepared for that event. To the best you can) In the second week you will execute your Plan of Attack and prune the attack tree further to reflect the results you observe. The following is a preliminary guide-line for the goals to achieve for each attack: 1. CAM table: Make your behave like HUB ed network 2
3 ASSET Network Victim Network Figure 2: Your Test Network for Project-1 2. STP: Make all the traffic between and go through 3. VLAN : Try to send a packet to in victim s network from your network directly (i.e. without going through the routers) You are free to extend the goals of your attacks but your report must include the verification of at least the attacks above. Your report should include the following items: An overview of VLANs, CAMs, and STP. An attack tree for the each of the above protocol Verification (include source code in all cases) of the goals listed above Prune the attack tree accordingly and attach the pruned tree Please answer the following questions: Are there any well-known vulnerabilities specific to the switches in ISIS? If so, please describe the vulnerabilities in detail (and cite your source). Are there any well-known vulnerabilities in the protocols and mechanisms in general? If so, please describe the vulnerabilities in detail (and cite your source). How are these CAM tables implemented in switches? Are there separate CAM for each port, VLAN, or for group of ports? List tools available to test vulnerabilities at layer-2? Week 4 & 5: IP Routing Security In the last exercise you studied and tested layer 2 protocols and mechanisms in ASSET for vulnerabilities. For the following two weeks your task is to do the same in layer 3. In particular, you will study the design 3
4 PIX M1 M2 M3 M4 M5 Intermediate Network Net 4 Net 5 Net 6 OSPF BGP Figure 3: ASSET s IP Routing Topology and implementation of OSPF and BGP and test them for vulnerabilities. Figure 3 depicts the IP routing topology and yes ASSET uses both BGP and OSPF for routing. The following is a list of tasks for this two-week long assignment. Week 4 Understand the need for routing protocols, where the protocols fit in a network, and their importance. What are the differences between BGP and OSPF? What are their alternatives? Understand the design details of OSPF and BGP. You can go through the RFCs [4, 5, 6]. You must understand the preconditions and postconditions proposed in the RFCs for the protocols proper operations. Using the RFCs as a guide please answer the following questions: 1. Draw functional diagrams for OSPF and BGP. 2. Identify preconditions and postconditions for each item. 3. Note any explicit or implicit assumptions made by in the RFC, as these will help exploit the protocols. As you can see the RFCs are old. Do the OSPF and BGP used in ASSET follow the RFCs. That is, is the implementation we are using different from the ones proposed in the RFCs. If so what has changed? How is the Intermediate network wired? Create a list of attacks against OSPF and BGP. Here is an incomplete list of studies and research papers on this subject [7, 8, 9, 10]. Create a separate attack tree and Plan of Attack for each protocol. As usual create an attack tree with all the vulnerabilities. Then verify the vulnerabilities and prune your attack trees accordingly. Please attach all four attack trees to your report. 4
5 Week 5 Week 5 is allotted for you to test the vulnerabilities and prepare your report. ASSET uses both BGP and OSPF for routing, so test to see if it is vulnerable to any of the attack. Week 6: Application security TBA Week 7: Final Presentation TBA References [1] Eugene Blanchard, Introduction to Networking: and Data Communications to networking/c4412.htm, Commandprompt, Inc, Internet page. [2] Ido Dubrawsky, Safe Layer 2 Security In Depth Version 2 /cuso/epso/sqfr/sfblu wp.pdf, Cisco Systems Inc. Internet White Paper. [3] Cisco Systems, Virtual LAN Security Best Practices /si/casi/ca6000/prodlit/vlnwp wp.pdf, Cisco Systems Inc. Internet White Paper. [4] J. Moy, OSPF, RFC IETF, [5] Y. Rekhter, RFC A Border Gateway Protocol 4 (BGP-4). IETF, [6] An Internet Encyclopedia [7] Butler, K. Mcdaniel, P. A Survey of BGP Security [8] Vetter, B. An Experimental Study of Insider Attacks For OSPF Routing Protocol U.S. Department of Defense Advanced Research Projects Agency and the U.S. AFRL [9] Bellovin, S. Routing Security smb/talks/routesec.pdf AT&T Research Labs, [10] Wang, F. On the vulnerabilities and protection of OSPF routing protocol rsg/routing/references/wang98vulnerability.pdf. 5
TestOut Network Pro - English 5.0.x COURSE OUTLINE. Modified
TestOut Network Pro - English 5.0.x COURSE OUTLINE Modified 2018-03-06 TestOut Network Pro Outline - English 5.0.x Videos: 130 (17:10:31) Demonstrations: 78 (8:46:15) Simulations: 88 Fact Sheets: 136 Exams:
More informationTestOut Network Pro - English 4.1.x COURSE OUTLINE. Modified
TestOut Network Pro - English 4.1.x COURSE OUTLINE Modified 2017-07-06 TestOut Network Pro Outline - English 4.1.x Videos: 141 (18:42:14) Demonstrations: 81 (10:38:59) Simulations: 92 Fact Sheets: 145
More informationIntroduction. An introduction to the equipment and organization of the Internet Lab.
Introduction An introduction to the equipment and organization of the Internet Lab. Some material in this slide set is copyrighted, Pearson Education, 2004 Internet Lab Equipment 4 Linux PCs 4 Cisco Routers
More informationThis course prepares candidates for the CompTIA Network+ examination (2018 Objectives) N
CompTIA Network+ (Exam N10-007) Course Description: CompTIA Network+ is the first certification IT professionals specializing in network administration and support should earn. Network+ is aimed at IT
More informationCCNA Exploration Network Fundamentals
CCNA Exploration 4.0 1. Network Fundamentals The goal of this course is to introduce you to fundamental networking concepts and technologies. These online course materials will assist you in developing
More informationLINX accredited training Another 10 years. Stephen Groombridge Systems & Network Training
LINX accredited training Another 10 years Stephen Groombridge Systems & Network Training The training programme 2001 2008 2018 LINX 1 TCP/IP TCP/IP IPv4 some IPv6 IPv4 some/bit more IPv6 LINX 2 Static
More informationCCRI Networking Technology I CSCO-1850 Spring 2014
CCRI Networking Technology I CSCO-1850 Spring 2014 Instructor John Mowry Telephone 401-825-2138 E-mail jmowry@ccri.edu Office Hours Room 2126 Class Sections 102 Monday & Wednesday 6:00PM-9:50PM, starts
More informationHands-On TCP/IP Networking
Hands-On Course Description In this Hands-On TCP/IP course, the student will work on a live TCP/IP network, reinforcing the discussed subject material. TCP/IP is the communications protocol suite on which
More informationIETF RFCs Supported by Cisco NX-OS Unicast Features Release 6.x
IETF Supported by Cisco NX-OS Unicast Features Release 6.x BGP, page 1 First-Hop Redundancy Protocols, page 2 IP Services, page 3 IPv6, page 3 IS-IS, page 4 OSPF, page 5 RIP, page 5 BGP RFC 1997 BGP Communities
More informationStudy Guide. Module Two
Module Two Study Guide Study Guide Contents Part One -- Textbook Questions Part Two -- Assignment Questions Part Three -- Vocabulary Chapter 4 Data Link Layer What is the function of the data link layer?
More informationCompTIA Network+ Study Guide Table of Contents
CompTIA Network+ Study Guide Table of Contents Course Introduction Table of Contents Getting Started About This Course About CompTIA Certifications Module 1 / Local Area Networks Module 1 / Unit 1 Topologies
More informationUnderstanding Networking Fundamentals
Understanding Networking Fundamentals Training Details Training Time : 5 Days Capacity : 12 Prerequisites : There are no prerequisites for this course. About Training About Training A strong foundation
More informationUnderstanding Cisco Cybersecurity Fundamentals
210-250 Understanding Cisco Cybersecurity Fundamentals NWExam.com SUCCESS GUIDE TO CISCO CERTIFICATION Exam Summary Syllabus Questions Table of Contents Introduction to 210-250 Exam on Understanding Cisco
More informationOHLONE COLLEGE Ohlone Community College District OFFICIAL COURSE OUTLINE
OHLONE COLLEGE Ohlone Community College District OFFICIAL COURSE OUTLINE I. Description of Course: 1. Department/Course: CNET - 155A 2. Title: Introduction to Networks (CCNA1) 3. Cross Reference: 4. Units:
More informationIT114 NETWORK+ Learning Unit 1 Objectives: 1, 2 Time In-Class Time Out-Of-Class Hours 2-3. Lectures: Course Introduction and Overview
IT114 NETWORK+ Course Objectives Upon successful completion of this course, the student will be able to: 1. Identify the devices and elements of computer networks; 2. Diagram network models using the appropriate
More informationModular Policy Framework. Class Maps SECTION 4. Advanced Configuration
[ 59 ] Section 4: We have now covered the basic configuration and delved into AAA services on the ASA. In this section, we cover some of the more advanced features of the ASA that break it away from a
More informationScope and Sequence: CCNA Exploration v4.0
Scope and Sequence: CCNA Exploration v4.0 Last Updated August 30, 2007 The course objectives and outline for the final two CCNA Exploration courses, LAN Switching and Wireless and Accessing the WAN, are
More informationSYSTEMS ADMINISTRATION USING CISCO (315)
Page 1 of 11 Contestant Number: Time: Rank: SYSTEMS ADMINISTRATION USING CISCO (315) REGIONAL 2016 Multiple Choice: Multiple Choice (50 @ 10 points each) TOTAL POINTS (500 points) (500 points) Failure
More informationChapter 10: Review and Preparation for Troubleshooting Complex Enterprise Networks
0: Review and Preparation for Troubleshooting Complex Enterprise Networks CCNP TSHOOT: Maintaining and Troubleshooting IP Networks Chapter TSHOOT 1v6 0 1 0 Objectives Review key maintenance and troubleshooting
More informationCISCO QUAD Cisco CCENT/CCNA/CCDA/CCNA Security (QUAD)
Our Learning Exclusive Custom exam prep software and materials Exam delivery in classroom with 98% success Course specific thinqtank Learning publications to promote fun exciting learning Extended hours
More informationBTEC Level 3 Extended Diploma
BTEC Level 3 Extended Diploma Unit 9 Computer Network Routing and Routing Protocols BTEC Level 3 Extended Diploma Introduction to Routing Routing is the process that a router uses to forward packets toward
More informationLab 3.3 Configuring Wireshark and SPAN
Lab 3.3 Configuring Wireshark and SPAN Learning Objectives Install Wireshark on a host PC Configure a switch to use the SPAN monitoring tool. Topology Diagram Scenario In this lab, you will configure a
More informationCIT 380: Securing Computer Systems. Network Security Concepts
CIT 380: Securing Computer Systems Network Security Concepts Topics 1. Protocols and Layers 2. Layer 2 Network Concepts 3. MAC Spoofing 4. ARP 5. ARP Spoofing 6. Network Sniffing Protocols A protocol defines
More informationRouting Overview for Firepower Threat Defense
Path Determination This chapter describes underlying concepts of how routing behaves within the Cisco Firepower Threat Defense, and the routing protocols that are supported. Routing is the act of moving
More informationChapter 2. Switch Concepts and Configuration. Part II
Chapter 2 Switch Concepts and Configuration Part II CCNA3-1 Chapter 2-2 Switch Concepts and Configuration Configuring Switch Security MAC Address Flooding Passwords Spoofing Attacks Console Security Tools
More informationLab Network Baseline Discovery
Lab 1.2.6 Network Baseline Discovery Objective In this lab, the student will establish the baseline for the configuration and operation of the network. The student will complete the following tasks: Job
More informationNetworks Fall This exam consists of 10 problems on the following 13 pages.
CSCI 466 Final Networks Fall 2011 Name: This exam consists of 10 problems on the following 13 pages. You may use your two- sided hand- written 8 ½ x 11 note sheet during the exam and a calculator. No other
More informationInterconnecting Cisco Networking Devices Part 1 (ICND1) Course Overview
Interconnecting Cisco Networking Devices Part 1 (ICND1) Course Overview This course will teach students about building a simple network, establishing internet connectivity, managing network device security,
More informationEXAM - HP0-Y52. Applying HP FlexNetwork Fundamentals. Buy Full Product.
HP EXAM - HP0-Y52 Applying HP FlexNetwork Fundamentals Buy Full Product http://www.examskey.com/hp0-y52.html Examskey HP HP0-Y52 exam demo product is here for you to test the quality of the product. This
More informationInformation and Network Technology Revised Date 07/26/2012 Implementation Date 08/01/2012
Information and Network Technology Ben Eckart Revised Date 07/26/2012 Implementation Date 08/01/2012 COURSE OUTLINE CRT 286 LAN/WAN Implementation and Support 3 Credit Hours Course Description The focus
More informationCCNA 4 - Final Exam (B)
CCNA 4 - Final Exam (B) 1. Identify the factors that contribute to congestion on an Ethernet LAN. (Choose three.) improper placement of enterprise level servers addition of hosts to a physical segment
More information"Charting the Course... Interconnecting Cisco Networking Devices Accelerated 3.0 (CCNAX) Course Summary
Description Course Summary The Cisco CCNA curriculum includes a third course, Interconnecting Cisco Networking Devices: Accelerated (CCNAX), consisting of Interconnecting Cisco Networking Devices, Part
More informationReti di Calcolatori I
Reti di Calcolatori I Prof. Roberto Canonico Dipartimento di Ingegneria Elettrica e delle Tecnologie dell Informazione Corso di Laurea in Ingegneria delle Telecomunicazioni Corso di Laurea in Ingegneria
More informationASA Access Control. Section 3
[ 39 ] CCNP Security Firewall 642-617 Quick Reference Section 3 ASA Access Control Now that you have connectivity to the ASA and have configured basic networking settings on the ASA, you can start to look
More informationThis tutorial will help you in understanding IPv4 and its associated terminologies along with appropriate references and examples.
About the Tutorial Internet Protocol version 4 (IPv4) is the fourth version in the development of the Internet Protocol (IP) and the first version of the protocol to be widely deployed. IPv4 is described
More informationPerforming Path Traces
About Path Trace, page 1 Performing a Path Trace, page 13 Collecting QoS and Interface Statistics in a Path Trace, page 15 About Path Trace With Path Trace, the controller reviews and collects network
More informationexam. Number: Passing Score: 800 Time Limit: 120 min CISCO Interconnecting Cisco Networking Devices Part 1 (ICND)
100-105.exam Number: 100-105 Passing Score: 800 Time Limit: 120 min CISCO 100-105 Interconnecting Cisco Networking Devices Part 1 (ICND) Exam A QUESTION 1 Which route source code represents the routing
More informationRouter 6000 R17 Training Programs. Catalog of Course Descriptions
Router 6000 R7 Training Programs Catalog of Course Descriptions Catalog of Course Descriptions INTRODUCTION... 3 IP NETWORKING... 4 IP OVERVIEW & FUNDAMENTALS... 8 IP ROUTING OVERVIEW & FUNDAMENTALS...0
More informationCisco CCNA (ICND1, ICND2) Bootcamp
Cisco CCNA (ICND1, ICND2) Bootcamp Course Duration: 5 Days Course Overview This five-day course covers the essential topics of ICND1 and ICND2 in an intensive Bootcamp format. It teaches students the skills
More informationSecurity Baseline Data Model for Network Infrastructure Device draft-xia-sacm-nid-dp-security-baseline-00 draft-dong-sacm-nid-cp-security-baseline-00
Security Baseline Data Model for Network Infrastructure Device draft-xia-sacm-nid-dp-security-baseline-00 draft-dong-sacm-nid-cp-security-baseline-00 Liang Xia Guangying Zheng Yue Dong Huawei Huawei Huawei
More informationIntroduction. Goal of This Book. Audience for This Book
xxvi Networking for Home and Small Businesses, CCNA Discovery Learning Guide Cisco Networking Academy is a comprehensive e-learning program that delivers information technology skills to students around
More informationSWITCH Implementing Cisco IP Switched Networks
Hands-On SWITCH Implementing Cisco IP Switched Networks CCNP Course 2 Course Description Revised CCNP Curriculum and Exams Cisco has redesigned the CCNP courses and exams to reflect the evolving job tasks
More informationHacker Academy Ltd COURSES CATALOGUE. Hacker Academy Ltd. LONDON UK
Hacker Academy Ltd COURSES CATALOGUE Hacker Academy Ltd. LONDON UK TABLE OF CONTENTS Basic Level Courses... 3 1. Information Security Awareness for End Users... 3 2. Information Security Awareness for
More informationAssignment - 1 Chap. 1 Wired LAN s
Assignment - 1 Chap. 1 Wired LAN s 1. (1 Mark) 1. Draw the frame format of Ethernet. 2. What is unicast, multicast and broadcast address? 3. State the purpose of CRC field. 2. (5 Marks) 1. Explain how
More informationHands-On IP for TeleCom Technicians Internetworking, TCP/IP, VLANS, Wirelss and more...
Hands-On Internetworking, TCP/IP, VLANS, Wirelss 802.11 and more... Course Description The Internet Protocol Suite, commonly known as TCP/IP, forms the basis for the Internet and the next generation of
More informationQ&A. DEMO Version
Cisco Certified Network Associate Q&A DEMO Version Copyright (c) 2012 Chinatag LLC. All rights reserved. Important Note Please Read Carefully For demonstration purpose only, this free version Chinatag
More informationDeveloping ILNP. Saleem Bhatti, University of St Andrews, UK FIRE workshop, Chania. (C) Saleem Bhatti.
Developing ILNP Saleem Bhatti, University of St Andrews, UK 2010-07-16 FIRE workshop, Chania. (C) Saleem Bhatti. 1 What is ILNP? Identifier Locator Network Protocol: http://ilnp.cs.st-andrews.ac.uk/ ILNP
More informationICND1 v2.0 Interconnecting Cisco Networking Devices Part 1 CCENT & Part of CCNA Rout/Switch
ICND1 v2.0 Interconnecting Cisco Networking Devices Part 1 CCENT & Part of CCNA Rout/Switch Course Length: 5 days Course Delivery: Traditional Classroom Online Live Course Overview Interconnecting Cisco
More informationCompTIA Network+ Outcomes. Lab Outline. Course Code N Released March Skill Level Intermediate. Duration 26 hrs
CompTIA Network+ CompTIA Network+ Course Code N10-007 Released March 2018 Skill Level Intermediate Duration 26 hrs Outcomes After completing this Practice Lab, you will be able to: Lab Outline The CompTIA
More informationInterconnecting Cisco Networking Devices Part 1 ICND1
Interconnecting Cisco Networking Devices Part 1 ICND1 Course Length: 5 days Course Delivery: Traditional Classroom Online Live Course Overview Interconnecting Cisco Networking Devices, Part 1 (ICND1) v3.0
More informationCCNA-A Scope and Sequence (March 2007-Draft)
CCNA-A Scope and Sequence (March 2007-Draft) This document is a preliminary overview of the new CCNA-A curriculum and is subject to change since the courses are still under development. The English versions
More informationCisco Interconnecting Cisco Networking Devices Part 1.
Cisco 100-105 Interconnecting Cisco Networking Devices Part 1 http://killexams.com/pass4sure/exam-detail/100-105 Question: 323 Refer to the exhibit. SwitchA receives the frame with the addressing shown.
More informationCCNA Security 1.0 Student Packet Tracer Manual
1.0 Student Packet Tracer Manual This document is exclusive property of Cisco Systems, Inc. Permission is granted to print and copy this document for non-commercial distribution and exclusive use by instructors
More informationSession Overview. ! Introduction! Layer 2 and 3 attack scenarios! CDP, STP & IEEE 802.1q! ARP attacks & ICMP abuse! Discovering & attacking IGPs
Session Overview! Introduction! Layer 2 and 3 attack scenarios! CDP, STP & IEEE 802.1q! ARP attacks & ICMP abuse! Discovering & attacking IGPs! RIP, IGRP, EIGRP and OSPF! Attacking tunnels! GRE intrusion
More informationCSCD 330 Network Programming Spring Lecture 1 - Course Details
CSCD 330 Network Programming Spring 2018 Lecture 1 - Course Details Contact Information Instructor: Carol Taylor 319A CEB Phone: 509-359-6065 E-mail: ctaylor@ewu.edu Course: CSCD330, CEB 107 Lecture, M,
More informationChoosing The Best Firewall Gerhard Cronje April 10, 2001
Choosing The Best Firewall Gerhard Cronje April 10, 2001 1. Introduction Due to the phenomenal growth of the Internet in the last couple of year s companies find it hard to operate without a presence on
More informationCCNA. Course Catalog
CCNA Course Catalog 2012-2013 This course is intended for the following audience: Network Administrator Network Engineer Systems Engineer CCNA Exam Candidates Cisco Certified Network Associate (CCNA 640-802)
More informationLab Configuring and Verifying Extended ACLs Topology
Topology 2015 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 1 of 8 Addressing Table Objectives Device Interface IP Address Subnet Mask Default Gateway R1 G0/1 192.168.10.1
More informationTop-Down Network Design
Top-Down Network Design Chapter Seven Selecting Switching and Routing Protocols Original slides by Cisco Press & Priscilla Oppenheimer Selection Criteria for Switching and Routing Protocols Network traffic
More informationCopyleft 2005, Binnur Kurt. Objectives
1 ing Fundamentals Copyleft 2005, Binnur Kurt Objectives Define basic networking terms Describe some commonly used network applications Describe the main purposes and functions of computer networking Describe
More informationRouting Security* CSE598K/CSE545 - Advanced Network Security Prof. McDaniel - Spring * Thanks to Steve Bellovin for slide source material.
Routing Security* CSE598K/CSE545 - Advanced Network Security Prof. McDaniel - Spring 2008 * Thanks to Steve Bellovin for slide source material. 1 Routing 101 Network routing exists to provide hosts desirable
More informationIntroduction to Networking
Introduction to Networking Chapters 1 and 2 Outline Computer Network Fundamentals Defining a Network Networks Defined by Geography Networks Defined by Topology Networks Defined by Resource Location OSI
More informationNetworking By: Vince
Networking 192.168.1.101 By: Vince Disclaimer I am NOT a Networking expert you might ask questions that I don t know the answer to Networking is hard to teach but I know how to do your homeworks so that
More informationComputer Forensics: Investigating Network Intrusions and Cybercrime, 2nd Edition. Chapter 2 Investigating Network Traffic
Computer Forensics: Investigating Network Intrusions and Cybercrime, 2nd Edition Chapter 2 Investigating Network Traffic Objectives After completing this chapter, you should be able to: Understand network
More informationThe Internet Protocol (IP)
The Internet Protocol (IP) The Blood of the Internet (C) Herbert Haas 2005/03/11 "Information Superhighway is really an acronym for 'Interactive Network For Organizing, Retrieving, Manipulating, Accessing
More informationOSI Model with Protocols. Layer Name PDU Address Protocols Device
NetEss Name: Networking Essentials Prof. CHIN OSI Model with Protocols Layer Name PDU Address Protocols Device 7 Application Data FTP, SSH, Telnet, SMTP, DNS TFTP,HTTP, POP3, IMAP, HTTPS 6 Presentation
More informationPROTECTING INFORMATION ASSETS NETWORK SECURITY
PROTECTING INFORMATION ASSETS NETWORK SECURITY PAUL SMITH 20 years of IT experience (desktop, servers, networks, firewalls.) 17 years of engineering in enterprise scaled networks 10+ years in Network Security
More informationSupported Standards. Class of Service Tagging for Ethernet frames. Multiple Spanning Tree Protocol. Rapid Spanning Tree Protocol
, page 1 This table lists the IEEE compliance standards. Table 1: IEEE Compliance s 802.1D MAC Bridges 802.1p Class of Service Tagging for Ethernet frames 802.1Q VLAN Tagging 802.1s Multiple Spanning Tree
More informationCourse: CCNA Bootcamp (Intensive CCNA)
Course: CCNA Bootcamp (Intensive CCNA) Duration: 5 Days Description Introduction to Networking course will prepare you for the basic knowledge and in-depth technology of networking design and implementation.
More informationIdentify the features of network and client operating systems (Windows, NetWare, Linux, Mac OS)
Course Outline Network+ Duration: 5 days (30 hours) Learning Objectives: Install and configure a network card Define the concepts of network layers Understand and implement the TCP/IP protocol Install
More informationAppendix C Software Specifications
Appendix C Software Specifications This appendix lists the following information: IEEE compliance RFC support ISO/IEC specification support Internet draft support NOTE: For a list of features supported
More informationThe OSI Model. Open Systems Interconnection (OSI). Developed by the International Organization for Standardization (ISO).
Network Models The OSI Model Open Systems Interconnection (OSI). Developed by the International Organization for Standardization (ISO). Model for understanding and developing computer-to-computer communication
More informationIdentity-Based Cyber Defense. March 2017
Identity-Based Cyber Defense March 2017 Attackers Continue to Have Success Current security products are necessary but not sufficient Assumption is you are or will be breached Focus on monitoring, detecting
More informationCCNA 1 Final Exam Answers UPDATE 2012 eg.1
CCNA 1 Final Exam Answers UPDATE 2012 eg.1 January 12th, 2012AdminLeave a commentgo to comments Which of the following are the address ranges of the private IP addresses? (Choose three.) 10.0.0.0 to 10.255.255.255
More informationIP Generic Training Programs. Catalog of Course Descriptions
IP Generic Training Programs Catalog of Course Descriptions Catalog of Course Descriptions INTRODUCTION... 4 BGP OVERVIEW & FUNDAMENTALS... 5 BNG FUNDAMENTALS... 8 BNG OVERVIEW... 10 DHCP-CLIPS FUNDAMENTALS...
More informationKen Agress, Senior Consultant PlanNet Consulting, LLC.
Elements of a Vulnerability Assessment Ken Agress, Senior Consultant PlanNet Consulting, LLC. Defining a Vulnerability Assessment Agenda Types of Vulnerability Assessments Are You Ready for an Assessment?
More informationTraining for the cyber professionals of tomorrow
Hands-On Labs Training for the cyber professionals of tomorrow CYBRScore is a demonstrated leader in professional cyber security training. Our unique training approach utilizes immersive hands-on lab environments
More informationSystrome Next Gen Firewalls
N E T K S Systrome Next Gen Firewalls Systrome s Next Generation Firewalls provides comprehensive security protection from layer 2 to layer 7 for the mobile Internet era. The new next generation security
More informationSYSTEMS ADMINISTRATION USING CISCO (315)
Page 1 of 10 Contestant Number: Time: Rank: SYSTEMS ADMINISTRATION USING CISCO (315) REGIONAL 2014 TOTAL POINTS (500) Failure to adhere to any of the following rules will result in disqualification: 1.
More informationIP Routing. Bharat S. Chaudhari International Institute of Information Technology Pune, India
IP Routing Bharat S. Chaudhari International Institute of Information Technology Pune, India June 21, 2005 Network Devices: Ø The networking and internetworking devices are divided in the following categories:
More informationTHE OSI MODEL. Application Presentation Session Transport Network Data-Link Physical. OSI Model. Chapter 1 Review.
THE OSI MODEL Application Presentation Session Transport Network Data-Link Physical OSI Model Chapter 1 Review By: Allan Johnson Table of Contents Go There! Go There! Go There! Go There! Go There! Go There!
More informationETSF10 Internet Protocols Routing on the Internet
ETSF10 Internet Protocols Routing on the Internet 2012, Part 2, Lecture 1.2 Kaan Bür, Jens Andersson Routing on the Internet Unicast routing protocols (part 2) [ed.4 ch.22.4] [ed.5 ch.20.3] Forwarding
More informationIntroduction p. 1 Self-Assessment p. 9 Networking Fundamentals p. 17 Introduction p. 18 Components and Terms p. 18 Topologies p. 18 LAN Technologies
Introduction p. 1 Self-Assessment p. 9 Networking Fundamentals p. 17 Introduction p. 18 Components and Terms p. 18 Topologies p. 18 LAN Technologies p. 19 Ethernet p. 19 WAN Technologies p. 21 Dedicated
More informationLevel 6 Advanced Diploma in Routing & Switching (112) 151 Credits
Level 6 Advanced Diploma in Routing & Switching (112) 151 Credits Unit: Advanced LAN, WAN & Switching Configuration Exam Paper No.: 3 Prerequisites: Networking knowledge. Total Qualification Time: 320
More informationThreat Pragmatics. Target 6/19/ June 2018 PacNOG 22, Honiara, Solomon Islands Supported by:
Threat Pragmatics 25-29 June 2018 PacNOG 22, Honiara, Solomon Islands Supported by: Issue Date: Revision: 1 Target Many sorts of targets: Network infrastructure Network services Application services User
More informationINTERNET TEACHING LAB: Interior Gateway Protocol (IGP) LAB
INTERNET TEACHING LAB: Interior Gateway Protocol (IGP) LAB Overview In this lab, we will explore some common interior gateway protocols - RIP version 1 (Routing Information Protocol) - OSPF (Open Shortest
More informationChapter Three test. CompTIA Security+ SYO-401: Read each question carefully and select the best answer by circling it.
Chapter Three test Name: Period: CompTIA Security+ SYO-401: Read each question carefully and select the best answer by circling it. 1. What protocol does IPv6 use for hardware address resolution? A. ARP
More informationCSc 450/550 Computer Networks Internet Routing
CSc 450/550 Computer Networks Internet Routing Jianping Pan Summer 2007 7/12/07 CSc 450/550 1 Review Internet Protocol (IP) IP header addressing class-based, classless, hierarchical, NAT routing algorithms
More informationNetwork Engineering/Cyber Security I & II
Network Engineering/Cyber Security I & II Program Description: The first year course teaches the basic techniques of computer safety and maintenance. Students learn to assemble/disassemble personal computers
More informationCHCSS. Certified Hands-on Cyber Security Specialist (510)
CHCSS Certified Hands-on Cyber Security Specialist () SYLLABUS 2018 Certified Hands-on Cyber Security Specialist () 2 Course Description Entry level cyber security course intended for an audience looking
More informationDIS10.4ADVANCED NETWORK SECURITY
DIS10.4ADVANCED NETWORK SECURITY ABOUT DIS Why choose Us. Data and internet security council is the worlds top most information security certification body. Our uniquely designed course for information
More informationCISCO SYSTEM ADMINISTRATION (41)
CISCO SYSTEM ADMININSTRATION PAGE 1 OF 11 CONTESTANT ID# Time Rank CISCO SYSTEM ADMINISTRATION (41) Regional 2012 TOTAL POINTS (500) Failure to adhere to any of the following rules will result in disqualification:
More informationCisco Exam Cisco Interconnecting Cisco Networking Devices Part 1 (ICND) Version: 12.0 [ Total Questions: 202 ]
s@lm@n Cisco Exam 100-101 Cisco Interconnecting Cisco Networking Devices Part 1 (ICND) Version: 12.0 [ Total Questions: 202 ] Topic 7, Troubleshooting Cisco 100-101 : Practice Test Question No : 1 - (Topic
More information"Charting the Course... TSHOOT Troubleshooting and Maintaining Cisco IP Networks Course Summary
Course Summary Description This course is designed to help network professionals improve the skills and knowledge that they need to maintain their network and to diagnose and resolve network problems quickly
More informationInterconnecting Cisco Networking Devices: Accelerated
Interconnecting Cisco Networking Devices: Accelerated CCNAX v3.0; 5 days, Instructor-led Course Description The Cisco CCNA curriculum includes a third course, Interconnecting Cisco Networking Devices:
More informationLab - Using Wireshark to Examine a UDP DNS Capture
Topology Objectives Part 1: Record a PC s IP Configuration Information Part 2: Use Wireshark to Capture DNS Queries and Responses Part 3: Analyze Captured DNS or UDP Packets Background / Scenario If you
More informationbgpand - Architecting a modular BGP4 Attack & Anomalies Detection Platform
bgpand - Architecting a modular BGP4 Attack & Anomalies Detection Platform Mayank Bhatnagar TechMahindra Limited, SDF B-1, NSEZ, Noida-201305, India E-mail : mayank.bhatnagar2@techmahindra.com Abstract
More informationNeed For Protocol Architecture
Chapter 2 CS420/520 Axel Krings Page 1 Need For Protocol Architecture E.g. File transfer Source must activate communications path or inform network of destination Source must check destination is prepared
More informationNeed For Protocol Architecture
Chapter 2 CS420/520 Axel Krings Page 1 Need For Protocol Architecture E.g. File transfer Source must activate communications path or inform network of destination Source must check destination is prepared
More information