What are worms?
05.10.08  |  SecurityTeam

Worms are programs that replicate themselves from one system to another without using a host file. Although in most cases worms exist inside files, such as Word or Excel documents, there is a difference between how worms and viruses use the host file. Usually, a worm releases a document that already has a macro containing [...]

What are whois queries?
04.10.08  |  SecurityTeam

Whois queries are used to determine the IP address ranges associated with clients. A whois query can be run on most UNIX environments. In a Windows environment, the tools such as WsPingPro and Sam Spade can be used to perform whois queries. Whois queries can also be executed over the Web from www.arin.net and www.networksolutions.com.

What are the various Trojan vectors?
03.10.08  |  Hacking, SecurityTeam

A Trojan may infect any system through Trojan vectors. The most common Trojan vectors are as follows: * Email attachments * Social engineering * NetBIOS remote installation * Physical access * Fake executables * Spyware and adware * IRC and IM chats * Flash applets * ActiveX controls, VBScript, and Java scripts

What are the various steps in the pre-attack phase?
02.10.08  |  SecurityTeam

In the pre-attack phase, there are seven steps, which have been defined by the EC-Council, as follows: 1. Information gathering 2. Determining network range 3. Identifying active machines 4. Finding open ports and applications 5. OS fingerprinting 6. Fingerprinting services 7. Mapping the network

What are the various modes of system security testing?
01.10.08  |  SecurityTeam

The various modes of system security testing are as follows: 1. Remote network: This mode attempts to simulate an attack launched over the Internet. The primary defenses that must be defeated in this test are border firewalls, filtering routers, etc. 2. Remote dial-up network: This mode simulates an attack against the client’s modem pools. The [...]