Irregular Expressions: November, 2011 archives Page 2

Posted by:

Dan O'Connor

I am not sure if this is getting worse, or if it is just being detected more. http://www.washingtonpost.com/world/europe/security-watchdog-norwegian-energy-defense-industries-hit-by-extensive-data-theft-attack/2011/11/17/gIQAzbMKUN_story.html This has to be both, I know this will keep...

November 18, 2011 11:48 PM

Web Vulnerability Assesments

Posted by: Dan O'Connor

http://www.acunetix.com/vulnerability-scanner/vulnerabilityscanner8.exe I have used this tool a few times and I really liked it. Comparing it to some of the others I have used, it's got a good interface just like the big boys, but not the big price tag. It can be used by even people that...

0 Comments

RSS Feed

Email a friend

November 18, 2011 11:42 PM

TCP Session Hijacking

Posted by: Dan O'Connor

initial sequence number, session hijacking, tcp, tcp session hijacking, transmission control protocol

Part of taking over a TCP session is knowing how it works, that's why I was previously talking about the TCP handshake. To take over a session there is a few general steps that need to be done. 1. You need to know the ISN, there is a few ways to do this.

In between, the...

0 Comments

RSS Feed

Email a friend

November 18, 2011 10:03 PM

TCP Threeway Handshake

Posted by: Dan O'Connor

initial sequence number, tcp, tcp isn, tcp three way handshake, transmission control protocol

I have been doing some research for a project and I wanted to share some things. During the three way handshake each host sets it's own ISN.

Host 1 sends a SYN packet to Host 2 with A as the ISN (Initial Sequence Number), this number should be non-predictable.
Host 2...

0 Comments

RSS Feed

Email a friend