Lesson 8 Flashcards
Passive packet sniffing
Actor intercepts and examines data packets as they travel to and from a network without actually participating in the communication or modifying the packets.
How can you protect against a malicious packet sniffer?
By using a VPN (virtual private network)
to encrypt data.
IP spoofing
A type of DDoS attack. It overwhelms the target with traffic while masking the Malicious source. Attackers modify the source IP address.
Smurf attack
Type of DDoS attack. It occurs at the network layer, it interrupts the service by saturating the target with a large volume of unnecessary traffic.
Active packet sniffing
Packets are manipulated in transit
ICMP flood
A type of DoS attack performed by an attacker repeatedly sending ICMP request packets
On-path attack
An attack where a malicious actor places themselves in the middle of an authorized connection and intercepts or alters data in transit
Replay attack
A network attack performed when an attacker interrupts data in transit and delays or repeats it at another time
Brute force attack
Trial and error process of discovering private info.
Simple brute force
Tries to guess password
Dictionary attack (brute force)
Uses a list of commonly used passwords
Virtual machines (vms)
Software versions of physical computers, used to run code in an isolated environment. They can be deleted and replaced after testing malware.
Sandbox environments
A type of testing environment that allows you to execute software or programs separate from your network used for testing patches.
Salting and hashing
Hashing converts info into an untie value that dance used to determine the integrity. Salting adds random characters to hashed passwords
CAPTCHA
Completely automated public turing to tell computers and humans apart
