What are the various methods of passive OS fingerprinting?
In passive OS fingerprinting, an attacker installs a sniffer on any third party such as a router on which the victim communicates frequently. Now he studies the sniffer’s log and responses, and receives hints about the remote OS with the help of the following parameters: * TTL values: This is Time To Live Value for [...]
What are the various countermeasures to a buffer overflow?
The countermeasures to a buffer overflow are as follows: * Perform manual auditing of the code. * Stack execution should be disabled. * Take the support of the functions which are not the cause of the buffer overflow. * * Take compiler support. For example, Java automatically checks if an array index is within the [...]
What are the various features of snort?
Snort has the following features: * It detects threats, such as buffer overflows, stealth port scans, CGI attacks, SMB probes and NetBIOS queries, NMAP and other port scanners, well-known backdoors and system vulnerabilities, and DDoS clients, and alerts the user about them. * It develops a new signature to find vulnerabilities. * It records packets [...]
What are the user authentications supported by the SSH-2 protocol?
The SSH-2 protocol supports the following user authentications: * Public key authentication (DSA, RSA*, OpenPGP) * Host-based authentication * Password-based authentication Note: SSH-1 supports a wider range of user authentications, i.e., the public-key, RSA only, RhostsRSA, password, Rhosts (rsh-style), TIS, and Kerberos authentications.
What are the steps for security evaluation?
The ethical hacking project comprises three phases, summarized as follows: 1. Preparation: In this phase, a formal contract that contains a non-disclosure clause as well as a legal clause to protect the ethical hacker against any prosecution that he may face during the conduct phase is signed. The contract also outlines the infrastructure perimeter, evaluation [...]
What are the security holes in the Basic Authentication scheme?
The Basic Authentication scheme uses the username and password and encrypts the password using base64 encoding. In spite of this, there are still many security holes in the Basic Authentication scheme. Although the password is stored on the server in encrypted format, it is passed from the client to the server in plain text format [...]
What are the phases of malicious hacking?
The following are the phases of malicious hacking: 1. Reconnaissance: In this phase, the attacker gathers information about the victim. 2. Scanning: In this phase, the attacker begins to probe the target for vulnerabilities that can be exploited. 3. Gaining Access: In this phase, the attacker exploits a vulnerability to gain access into the system. [...]
Exploit-DB Updates
- [webapps] - MOAUB #3 - Visinia 1.3 Multiple Vulnerabilities September 3, 2010
- [remote] - Trend Micro Internet Security Pro 2010 ActiveX extSetOwner Remote Code Execution September 3, 2010
- [webapps] - Shop a la Cart Multiple Vulnerabilities September 2, 2010
- [remote] - Backdoor password in Accton-based switches (3com, Dell, SMC, Foundry and EdgeCore) September 2, 2010
- [shellcode] - Shellcode Checksum Routine September 2, 2010
