Skip to Content (press Enter/Return)
preview

Nt1330 Unit 7 Lab

explanatory Essay
545 words
Open Document
545 words
  • Small
  • Normal
  • Large
  • Huge
bookmark

LAB 7 – PING OF DEATH 7.0. INTRODUCTION The Ping of Death (POD) is a type of denial of service attack in which the attacker attempts to crash, destabilize, or freeze the targeted computer or service by sending malformed or oversized packets using a simple ping command. (Incapsula, n.d.) This kind of denial of service attack was mainly used in legacy systems because they wouldn’t know what to do with a packet that’s larger than the standard IPv4 packet size of 65,537 when they received it. 000738527 Page 21 of 37 In this lab, we explore how the POD is done by setting up a virtual environment running Win95 as the victim and four others as an attackers. 7.1. REQUIREMENTS/OBJECTIVES  To run and observe the effects of a denial of service attack …show more content…

In this essay, the author

  • Explains how the pod is done by setting up a virtual environment running win95 as the victim and four others as an attackers.
  • Describes how they started their windows 95 machines, then went to the victim (pod server) and clicked run from the start menu and entered winipcfg to show the ip address.
  • Explains that they repeated the ping ten times and left all command prompts running. they then went to the pod server and opened system monitor tool to show the performance of the system.
  • Explains how they started to ping the pod server from all the machines, each having 10 instances of the command prompt running. the processor usage on the server was increasing and increasing until it reached 100%.
  • Describes how the pod server was overwhelmed and the system froze. after a few minutes, some pings started timing out on the attacking machines.
  • Explains the ping of death, a type of denial of service attack in which the attacker attempts to crash, destabilize, or freeze the targeted computer or service by sending malformed or oversized packets.
  • Explains that dos attacks are common among legacy systems, such as ping flood, which sends icmp (internet control message protocol) without waiting for a reply.

I started to ping the POD server from all the machines, each having 10 instances of the command prompt running. As I continued to increase number of ping instances, I noticed that the processor usage on the POD server was increasing and increasing until it came to 100% when all the attacking machines where pinging at the same time. Below is figure 16 showing the graph. Figure 16 100% System Performance Rate 000738527 Page 23 of 37 Once the POD server was overwhelmed, the machine became very slow. Its response time to any command was very long almost nonexistent. The system froze, because I couldn’t even move the mouse. After a few minutes though, I noticed that some pings started timing out on the attacking machines. 7.3. PERSONAL EVALUATION/CONCLUSION This kind of attack if performed on a website means it would bring the website down and therefore no one would have access to it. It poses great danger to the users and stakeholders of the website for it to be down, especially one that manages payment transactions. This kind of DOS attack although common among legacy systems is also possible now with the attack called ping flood, which sends ICMP (internet control message protocol) via ping without waiting for a

Get Access
Check Writing Quality
Related
  • comparative
  • analytical
  • explanatory
  • Nt1310 Unit 3 Network Attack
    comparative essay
    The attack/threat on the Sony PlayStation network was a DDoS (Distributed Denial of Service) as it caused the servers to go down,

    In this essay, the author

    • Explains that the report will discuss the current network attacks/threats that have happened since 2013. the sony playstation network attack and ashley madison attack will also be discussed.
    • Explains that the attack on sony's playstation network was a ddos (distributed denial of service). the lizard squad took down the psn in december and again in august of 2014.
    • Explains that lizard squad and anonymous were responsible for the attacks in december and august. they could be arrested by the fbi for trying to take down a big networking company.
    • Explains that the ashley madison attack was a backdoor because the impact team could have used this door to gain access to the databases. the website's promise to delete data about their customers was wrong.
    • Explains that the impact team was responsible for the attack, but no one knows the exact identity of the hacker/hackers who took this information.
    • Compares the 2011 psn attack with the ashley madison attack in that both websites had their customer's personal information taken by the hackers/attackers. the impact group used a back door while the lizard squad only ddosed.
    1019 words
    Read More
  • Dos Attack Essay
    analytical essay
    DoS ,Denial of Service, attacks are one of the most significant problems faced in the internet. There is a pretty simple way to understand the it, for example, there is a restaurant called DoS, there are so many ways for bad guys to stop the restaurant from normal running, such as destroying the cashier making other customer unable to pay, blocking the door making other people unable to get in, kidnapping the chef. Correspondingly, there are thousands of ways for hacker to initiate the DoS attack. There are two major aspect to launch the attack: band width attack and connection attack. the band width attack means hacker will send enormous information packet to the network, making network resource unavailable, so that the service will deny other customers’ request. For the connection attack, hacker will send tremendous connection request to the server, consuming all the system resource, so that the server will unable to receive other customers’ request. In past time, the attacker have to use huge band width to launch the DoS attack, however, it is almost impossible for one person to have it, in order to solve this, the hacker develop some software to control multiple compromised system flooding the targeted system with traffic, which is called DDoS(Distributed Denial of Service). As i mentioned above, there are many ways to launch the attack, such as ping flood(sending the server overwhelming number of ping packets), ping of death(sending the server with malformed ping packet), SYN flood, teardrop attacks, smurf attack, P2P attacks, application level flood.

    In this essay, the author

    • Explains that dos attacks are one of the most significant problems faced in the internet.
    • Argues that the internet has to be able to offer great reliable service, even if there are so many hostility.
    • Explains that the ip address can be divided into two parts: a set of client addresses and server addresses, and forbid the connection between two clients and two servers.
    • Explains that it is not necessary for the client address to have meaning on the global network, the address only need to be meaningful in the path between server and client, making the server know where the packet should send toward.
    816 words
    Read More
  • The New DoS Attack
    comparative essay
    A “denial of service” attack or DoS attack targets a computer and a network and attempts to prevent a user from accessing information. The victim of the attack may not be able to access bank information, email, or other services. The term “denial of service” is the name of the attack because the attacker floods the server with requests which then “denies” the legitimate user access to the server because the server can only handle a certain amount of requests. (McDowell, 2009). A DoS attack can affect an email account by maximizing the number of emails an account can receive, therefore, denying legitimate emails from being sent to the account. The DoS attack can go a step further and distribute the attack (DDoS) from the victim’s computer onto other networks or computers. The attack takes advantage of the weaknesses of network and sends a surge of information by using more than one computer at the same time. (McDowell, 2009).

    In this essay, the author

    • Defines a "denial of service" attack and explains the steps involved in an attack. the impact of the attack on financial and business operations will be outlined.
    • Explains that a new type of dos attack emerged in 2010 attacking phone lines. the attack is consciously planned by the criminal by obtaining sensitive information from the victim.
    • Explains that small to mid-size businesses are the focus of telephone dos attacks, and that the first step in avoiding being a victim of an attack is understanding the impact of the attack.
    • Advises businesses and individuals to monitor bank account balances, change log in information periodically, and never give personal information to unsolicited callers.
    • Cites deutsch, william, and fbi.gov's "phone scam targets your bank account."
    • Explains neverfear.org's "performing a denial of service (dos) attack on a phone line." schwartz, matthew j. "denial of service attacks increased sharply in 2010.
    1148 words
    Read More
  • The Denial Of Service Attack (Dos)
    explanatory essay
    The Denial of Service attack (DoS), in this attack, the attacker does not actually access the system, but rather simply blocks access from legitimate users. In the words of the CERT (Computer Emergency Response Team) Coordination Center (the first computer security incident response team), “A ‘Denial-of-Service’ attack is characterized by an explicit attempt by attackers to prevent legitimate users of a service from using that service” (CERT, 2003). One often-used blocking method is flooding the targeted system with so many false connection requests that it cannot respond to legitimate requests. DoS is an extremely common attack method, second only to malware. (Easttom, 2014)

    In this essay, the author

    • Explains that the denial of service attack is characterized by an explicit attempt by attackers to prevent legitimate users of a service from using that service.
    • Explains that github was hit with a massive denial of service attack on march 27, 2015 — scripts belonging to the internet giant baidu began directing traffic to two specific github pages.
    324 words
    Read More
  • Nt2580 Unit 6 Lab 1
    analytical essay
    In this lab, we used Transmission Control Protocol (TCP) which is a connection oriented protocol, to demonstrate congestion control algorithms. As the name itself describes, these algorithms are used to avoid network congestion. The algorithms were implemented in three different scenarios i.e. No Drop Scenario, Drop_Fast Scenario and Drop_NoFast Scenario.

    In this essay, the author

    • Describes how the lab used transmission control protocol (tcp) to demonstrate congestion control algorithms, which are used to avoid network congestion.
    • Explains the objective of this lab is to set up a network which uses tcp for end-to-end transmission and analyse the size of the congestion window with different scenarios.
    • Explains that they started with creating a new project in riverbed modeler. according to the manual, they chose usa from the map list.
    • Explains how they added application config, profile configuration, ip32_cloud and two subnets into the project workspace.
    • Explains that the next step is to set the names of the devices on the network and edit their attributes.
    • Explains that for the west subnet, two ethernet_servers and one router are connected with a bidirectional 100 baset link.
    • Explains that the flavour is set to tohoe for no_drop and drop_nofast scenarios, and reno for drop
    • Explains that the ethernet_wkstn and ethernet4_slip8_gtwy are set similar to the west subnet node.
    • Compares the three scenarios for sent segment sequence number. the green curve represents no_drop scenario where there is no loss of packets and the blue curve which represents drop_fast scenario increases exponentially.
    • Explains how they gained practical exposure to the riverbed modeler, including the transmission control protocol, additive increase and multiplicative decease mechanisms, and how different algorithms like tahoe and reno effect congestion control mechanisms.
    • Explains that the name of the application is set to applications. the attributes are edited as shown in the picture below.
    • Explains that for the profile config, the name is set to profiles and the attributes are edited as shown in the picture below.
    • Analyzes the results of the no_drop scenario, showing that the congestion window is shot up because there isn't any retransmission of packets.
    • Analyzes the congestion window size graph with lots of fluctuations and spikes because discarded packets are retransmitted only after the time out period is reached.
    • Explains that for drop_fast scenario, we change the flavour of the tcp properties to reno for fast recovery and fast retransmit mechanism.
    • Explains that the segment sequence number is used as a reference number for the segments that are sent from the sender.
    • Analyzes the graph that compares segment sequence numbers of the three scenarios. drop_nofast has the slowest growth in sequence numbers.
    • Explains the drop_nofast scenario by comparing sent segment sequence number (red curve) with received segment ack number statistic (blue curve).
    • Explains how to create a duplicate of the drop_fast scenario by editing the attributes of client_east and assigning 65535 to its receiver buffer attribute.
    1286 words
    Read More
  • manuscript
    explanatory essay
    In the world of computer and network security, there are myriad ways to launch an attack, which, from the perspective of a network, can usually be defined as "traffic that has vicious intent." There are infinite computer attacks that no firewall can prevent, such as those executed locally on the machine by a malicious user. From the network's perspective, there are numerous types of attack. Attacks can be grouped into two types: brute force and precision. Juniper Firewall has the capability to protect against both types of attack. Denial of Service (DoS) attacks are one of the most well-known network security threats under brute force attacks, which is largely due to the high-profile way in which they can affect networks. Over the years, some of the largest, most respected Internet sites have been effectively taken offline by DoS attacks. A DoS attack typically has a singular focus, namely, to cause the services running on a particular host or network to become unavailable. Some DoS attacks exploit vulnerabilities in an operating system and cause it to crash, such as the infamous Winnuke attack. Others submerge a network or device with traffic so that there are no more resources to handle legitimate traffic.Precision attacks typically involve multiple phases and often involves a bit more thought than brute force attacks, all the way from reconnaissance to machine ownership. Before a precision attack is launched, information about the victim needs to be gathered. This information gathering typically takes the form of various types of scans to determine available hosts, networks, and ports. The hosts available on a network can be determined by ping sweeps. The available ports on a machine can be lo...

    In this essay, the author

    • Explains that attacks can be grouped into two types: brute force and precision. juniper firewall can protect against both types of attacks.
    • Explains how juniper firewall handles attack traffic on a per-flow basis.
    • Explains that malicious attacks have been increased due to the expansion in the field of computer networks.
    • Explains that enterprise it departments have rapidly adopted the usage of wi-fi networks because of which the network security involves an entirely new methods of vulnerability to malicious hackers and normal intruders.
    • Explains the total data communication system in enterprise network which includes data storage, accessing the data from one or many locations, methods used to secure the password from intruders or hackers.
    • Explains that the paper will discuss best practices for the protection of network from unauthorized users and hackers in all five areas to secure the enterprise network.
    • Explains that the thumb impression technique is cost effective and can be implemented easily with less investment.
    1038 words
    Read More
  • Authorize Case Study
    explanatory essay
    In September 2004, Authorize.Net's servers were knock by a Distributed Denial of Service (DDoS) show aggression. The DDoS show aggression/attack lasted for more one week and reason a virtual shut down of the payment gateway's service. The aggressor/attacker insisted money from Authorize.net in replace for ended the attack.

    In this essay, the author

    • Describes authorize.net as a payment gateway examine/service supplier allowing merchants to accept credit card and electronic check payments through their web site and in excess of an ip connection/link.
    • Explains how authorize.net's servers were knocked by a distributed denial of service (ddos) show aggression. the aggressor/attacker insisted money from authorized.net in replace for ended the attack.
    • Explains that authorize.net's web communications went offline on july 2, 2009 and stayed down the entire morning of july 3, 2009.
    • Explains that authorize.net started a twitter description that morning, but didn't modernize their phones until july 5 when they reopened telephones.
    206 words
    Read More
  • Nt1310 Unit 1 Lab Report
    explanatory essay
    Lab 1 demonstrates the capabilities of congestion control algorithms implemented by Transmission Control Protocol (TCP). It provides three scenarios to simulate these algorithms and will later compare the results.

    In this essay, the author

    • Explains that the purpose of lab 1 is to know and research about congestion control algorithms implemented in tcp. it usually done by simulating a network in riverbed modeler software.
    • Explains how they captured congestion window data for tcp by placing 2 subnets in usa, one on the west coast, and one in the east coast connected by an ip cloud.
    • Explains that the red line indicates the increased receiver buffer. due to increase in buffer, more data bytes can be transmitted in the identical period of time and very few periods of loss occur before the file is transmitted.
    • Explains that lab 1 facilitated them to understand and imagine how congestion occurs in tcp and how the same is controlled. fast retransmit and altering the buffer size on the receiver’s side can significantly reduce the time taken to transfer data.
    • Explains that lab 1 demonstrates the capabilities of congestion control algorithms implemented by transmission control protocol (tcp).
    • Explains that in the scenario ( no_drop ), there is a gradual increase in both the congestion window and the sent segment sequence number window.
    • Explains why segment sequence number remains unchanged with every drop in the congestion window. drop_nofast has the slowest growth in sequence numbers since it has 0.5% of packet drop.
    • Explains the overlaid results represent the loss of packets and their retransmission all occurring in timeout periods in the network.
    1033 words
    Read More
  • Network Security
    explanatory essay
    Without proper protection, any part of any network can be susceptible to attacks or unauthorized activity. Routers, switches, and hosts can all be violated by professional hackers, company competitors. In fact, according to several studies, more than half of all network attacks are waged internally. To determine the best ways to protect against attacks, we should understand the many types of attacks that can be instigated and the damage that these attacks can cause to data. The most common types of attacks include Denial of Service (DoS), password, an...

    In this essay, the author

    • Describes the basic threats to the network security and the fundamental issues of interest for designing a secure network.
    • Explains that network attacks cause organizations several hours or days of downtime and serious breaches in data confidentiality and integrity.
    • Explains that the objective of network security is to protect networks and their applications against attacks, ensuring information availability, confidentiality, and integrity.
    • Explains that the architecture should define common security services to be implemented across the network.
    • Opines that the security architecture should be deployed in a phased format, addressing the most critical areas first.
    • Explains that every network should include security components that address the following five aspects of network security.
    • Explains that identity is the accurate and positive identification of network users, hosts, applications, services, and resources. identity mechanisms ensure that authorized users gain access to enterprise computing resources while unauthorized users are denied access.
    • Explains firewalls, virus scanners and content filters, are the first security products that organizations deploy to improve their security posture.
    • Explains that internet-enabled business, or e-business, has drastically improved efficiency and revenue growth over the past few years. these applications require mission-critical networks that accommodate voice, video, and data traffic.
    • Explains the many types of attacks that can be instigated and the damage that these attacks can cause to data.
    • Explains that companies must protect confidential information from eavesdropping or tampering during transmission by implementing virtual private networks. encryption technology ensures that messages traveling across a vpn cannot be intercepted or read by anyone other than ized recipient.
    • Argues that network vulnerability scanners can proactively identify areas of weakness, and intrusion detection systems can monitor and react to security events as they occur.
    • Explains that wireless network security is a complex issue, but one that can be tackled easily.
    1526 words
    Read More
  • security
    explanatory essay
    Denial of Service attack occurs when a malicious user attempts to flood a networked computer or device with traffic in order to make the computer or device unavailable, the attack gets its name from its purpose it’s intended to deny the ability of an institution or company to provide service to its users or customers. (University, 2013)

    In this essay, the author

    • Defines security threats as acts or objects that pose a threat to securing systems.
    • Explains that technical attacks are considered one of the most challenging problems that e-commerce should face. they target sites such as banks, credit card payment gateways.
    • Explains that ddos attacks are when the attacker gets access to as many computers as possible and uses these computers to send data packets to the target computer.
    • Explains that ddos is considered the greatest security fear for it professionals, the most famous attacks happened in february 2000 where websites including yahoo, buy.com, e-bay, amazon and cnn were attacked and left inaccessible for several hours
    • Defines malwares as software programs designed to damage or do other unwanted actions on a computer system.
    • Explains that the user receives e-mail that appears familiar from one person, company or organization, but was actually sent by another person. the goal is to trick the victim into replying with sensitive information.
    • Explains that denial of service attacks are intended to deny an institution or company the ability to provide service to its users or customers.
    • Explains that viruses are software programs that insert themselves into the target to propagate and damage the system. trojan horses can affect your files, consume your memory, and cause your computer not to function correctly.
    • Explains that social engineering is a collection of tricks used to make the victims say or do something they otherwise wouldn't have like passwords or giving access to building or privileged information.
    • Explains the purpose of an attacker, which is to trick a victim into stealing information. these websites look exactly like your online banking portal or an online store, but are fake websites or mails designed by the attacker.
    • Explains bill wyman's book, email phishing attacks, s.l.: the sans securing the human program.
    515 words
    Read More
Get Access