Rootkit.nl Logo - By Henry  Sponsored by:

   « Buy me a book and get your company on this place! »
   Home | Projects | Articles | Security Net | Contributors | Contact | My wishlist  

Security attacks



This list shows an overview of security attacks per area, including a description, tools involved and counter measures.

Any attack missing? Fill in the contact form!

Attack Description Tools Counter tools Counter measures
Hardware
DRAM chip freezingThis is done to exploit the little-known vulnerability of the DRAM chip, which can restore data while frozen Physical protection of host
Mod chippingBy placing a mod chip, protection layers can be circumvented
Network
ARP poisoningBy polluting ARP tables of switches/hosts, machines can be redirected to a man-in-the-middle host.Cain & Abel
CAM Overflow / MAC floodingFlooding a switch port with different MAC source addresses, trying to consume all the available memory. In some cases this could lead to a state in which the switch leaks data to other ports.Enable MAC limiting
Denial of ServiceLimiting the remaining resources of the victim, by overloading it with a high amount of, or malicious requests.
Man-in-the-middleaka bucket-brigade attack
Traffic sniffingSniffing network traffic when having access to the wireless or physical networkdsniff
Passwords
Dictionary attacks
Rainbow table attack
Weak passwordJohn the RipperUsing strong password policy
Software
Backdoor
Data hidingCompressing (APX)
Reverse engineering
RootkitChkrootkit, Rootkit Hunter, Skdet
Trojan
Web applications
Back-end authentication
Buffer overflow
Credential management
Cross site scripting (XSS)
MAC spoofing
Password in memory
Session hijacking
SQL injection
URL manipulation
Weak keysWEP uses a weak key mechanism
Web server configuration

Projects
» FreeBSD Easy Installation Generator
» Lynis
» Rootkit Hunter

Guides
» Architecture Best Practices
» OpenLDAP book (LPIC-3, 117-301)
» SNIA SCSE (S10-201)

About
» About me

Thanks to
» Contributors
» Sponsors


"A master piece of software and a must for every server admin." - Jose


Tip: Want to know everything about the latest changes and additions?
» Join the notification list





Valid XHTML 1.0!


[PHPips enabled] 		 
Copyright Rootkit.nl / Michael Boelen, 2003-2010
All rights reserved 		Hosted by Shock Media