|
Logic bomb:
Will execute a program, or string of code, when a certain event happens.
Trojan horse:
Is a program disguised as another program.
Attacks
DoS / Denial of Service:
An attack consuming the victim's bandwidth or resources, that cause the system to crash or stop processing other packet.
Smurf:
Requires three players: the attacker, the victim and the amplifying network.
The attacker spoofs, or changes the source IP address in a packet header, to make an ICMP ECHO packet seem as though it originated at the victim's system. This ICMP ECHO message is broadcasted to the amplifying network, which will reply to the message in full force. The victims system and victim's network is overwhelmed.
Fraggle:
Uses UDP as its weapon of choice. The attacker broadcasts a spoofed UDP packet to the amplifying network, which in turn replies to the victim's system
SYN Flood:
Continually sending the victim SYN messages with spoofed packets. The victim will commit the necessary resources to set up this communication socket and it will send its SYN/ACK message waiting for the ACK message in return.
Teardrop:
An attacker sending very small packets that would cause a system to freeze or reboot. Causes by the fact that some systems make sure that packets are not too large, but do not check to see if a packet is too small.
DDoS / Distributed Denial of Service:
Is a logical extension of the DoS.
The attacker creates master controllers that can in turn control slaves / zombie machines.
DNS DoS Attacks:
A record at a DNS server is replaced with a new record pointing at a fake/false IP address.
Cache poisoning - The attacker inserting data into the cache of the server instead of replacing the actual records.
|
|
