issuhub.com

CEH

(Jeff_L) #1

sequence numbers in packets – smurf attacks 457


sequence numbers in packets, 33, 34

SERP (search engine results page), 89

Serpent algorithm, 62

server administrators in client-server

relationship, 310

server-side technologies

description, 311

SQL injection, 333–334

ServerMask tool, 118

servers

client-server relationship, 310 –313

prox y, 120–122

web. See webservers and web applications

Service group, 132

service request floods, 262–263

service set identifiers (SSIDs), 352–353

services

degraded, 277

disabling, 276

enumeration. See enumeration of

services

Windows, 132–133

session fixation attacks, 291–292

session hijacking, 283–284

active and passive attacks, 287–288,

287–288

application-level, 289–290

concepts, 292–294, 292–294

defensive strategies, 302

exam essentials, 303

man-in-the-browser attacks, 290–291

man-in-the-middle attacks, 290 , 297–301,

297–301

overview, 284–285, 284

review questions, 304–307

summary, 302–303

TCP/IP, 295–296, 295

U DP, 301

web apps, 288–289

session IDs, 286

predicting, 286

web applications, 288–289, 320

session layer, 32

session management issues in web

applications, 320

session sniffing, 289

session splicing, 384

session tracking component in web

applications, 313

SETI@home project, 162–163

sexual solicitations in social networking, 244

SFind tool, 172

SHA-0 (Secure Hash Algorithm-0), 68

SHA-1 (Secure Hash Algorithm-1), 68

SHA-2 (Secure Hash Algorithm-2), 68

Shamir, Adi, 60

shared key authentication, 355

sharing information in social

networking, 243

sheep-dip systems, 189–190

Shell viruses, 188

shellcode, 270

shopping websites in social networking, 249

shoulder surfing, 97, 246

showmount command, 140

SIDs (security identifiers), 132

Siebel program, 332

signature detection, 376 –377

Simple Mail Transfer Protocol (SMTP)

description, 133

enumeration, 143 –144

sniffing, 212

Simple Network Management Protocol

(SNMP)

description, 133

enumeration with, 137–139

exploiting, 130

Site Report page, 90

site survey tools, 361

smart cards, 396

smashing stacks, 269 , 269

SMB over NetBIOS, 133

SMB over TCP, 133

Smith, David L., 4

SMTP (Simple Mail Transfer Protocol)

description, 133

enumeration, 143 –144

sniffing, 212

SMTP Relay service, 145

smurf attacks, 263, 315

bindex.indd 457 22-07-2014 11:00:57

Free download pdf
Get our desktop app
Company
Features
Documentation
Resources
© ISSUHUB. 2025. All rights reserved.