|
Title: CEH v5 Module 19: Evading IDS, Firewalls, and Honeypots Post by: don on November 16, 2006, 04:17:44 PM Introduction to Intrusion Detection Systems
Terminologies o Intrusion Detection System (IDS) • IDS Placement • Ways to Detect an Intrusion • Types of Intrusion Detection Systems • System Integrity Verifiers (SIV) • Tripwire • Cisco Security Agent (CSA) • Signature Analysis • General Indications of Intrusion System Indications • General Indications of Intrusion File System Indications • General Indications of Intrusion Network Indications • Intrusion Detection Tools - Snort 2.x • Steps to Perform After an IDS Detects an Attack • Evading IDS Systems • Ways to Evade IDS • Tools to Evade IDS • IDS Evading Tool: ADMutate • Packet Generators o Firewall • What is a Firewall? • What does a Firewall do? • Packet Filtering • What can't a Firewall do? • How does a Firewall Work? • Firewall Operations • Hardware Firewall • Software Firewall • Types of Firewalls - Packet Filtering Firewall - IP Packet Filtering Firewall - Circuit-Level Gateway - TCP Packet Filtering Firewall - Application-Level Firewall - Application Packet Filtering Firewall - Stateful Multilayer Inspection Firewall • Firewall Identification • Firewalking • Banner Grabbing • Breaching Firewalls • Bypassing a Firewall Using HTTP Tunnel • Placing Backdoors Through Firewalls • Hiding behind a Covert Channel: LOKI • ACK Tunneling • Tools to Breach Firewalls • Common Tool for Testing Firewall & IDS - IDS Informer - Evasion Gateway - Firewall Informer o Honeypot • What is a Honeypot? • The Honeynet Project • Types of Honeypots • Advantages and Disadvantages of a Honeypot • Where to Place a Honeypot ? • Honeypots - SPECTER - honeyd - KFSensor - Sebek • Physical and Virtual Honeypots • Tools to Detect Honeypots • What to do When Hacked? Source: http://www.eccouncil.org/EC-Council%20Education/ceh-course-outline.htm Don
Powered by SMF 1.1.7 |
SMF © 2006-2007, Simple Machines LLC
Joomla Bridge by JoomlaHacks.com |