Sybex CEH Certified Ethical Hacker Version 8 Study Guide

More documents

Recommendations

Info

$math_puzzles_book_$

Contents Introduction Assessment Test xxi xxx Chapter 1 Getting Started with Ethical Hacking 1 Hacking: A Short History 2 The Early Days of Hacking 2 Current Developments 3 Hacking: Fun or Criminal Activity? 4 The Evolution and Growth of Hacking 6 What Is an Ethical Hacker? 7 Ethical Hacking and Penetration Testing 10 Hacking Methodologies 15 Vulnerability Research and Tools 18 Ethics and the Law 18 Summary 20 Exam Essentials 20 Review Questions 21 Chapter 2 System Fundamentals 25 Exploring Network Topologies 26 Working with the Open Systems Interconnection Model 30 Dissecting the TCP/IP Suite 33 IP Subnetting 35 Hexadecimal vs. Binary 35 Exploring TCP/IP Ports 37 Domain Name System 39 Understanding Network Devices 39 Routers and Switches 39 Working with MAC Addresses 41 Proxies and Firewalls 42 Intrusion Prevention and Intrusion Detection Systems 43 Network Security 44 Knowing Operating Systems 46 Windows 46 Mac OS 47 Linux 48 Backups and Archiving 49 Summary 49 Exam Essentials 50 Review Questions 51
Page 3: CEHv8 Certified Ethical Hacker Vers
Page 6 and 7: Senior Acquisitions Editor: Jeff Ke
Page 9 and 10: Acknowledgments First, I would like
Page 11: Contents at a Glance Introduction A
Page 15 and 16: Contents xiii Gaining Network Infor
Page 17 and 18: Contents xv Overt and Covert Channe
Page 19 and 20: Contents xvii Databases and Their V
Page 21: Table of Exercises Exercise 2.1 Fin
Page 24 and 25: xxii Introduction In many books, th
Page 26 and 27: xxiv Introduction Chapter 1: Gettin
Page 28 and 29: xxvi Introduction Chapter Review Qu
Page 30 and 31: xxviii Introduction Objectives Obje
Page 32 and 33: xxx Assessment Test Assessment Test
Page 34 and 35: xxxii Assessment Test 13. Which mec
Page 36 and 37: xxxiv Assessment Test 25. Which alg
Page 38 and 39: xxxvi Answers to Assessment Test An
Page 40 and 41: xxxviii Answers to Assessment Test
Page 43 and 44: Chapter 1 Getting Started with Ethi
Page 45 and 46: Hacking: A Short History 3 things t
Page 47 and 48: Hacking: A Short History 5 The prev
Page 49 and 50: What Is an Ethical Hacker? 7 Making
Page 51 and 52: What Is an Ethical Hacker? 9 Contra
Page 53 and 54: What Is an Ethical Hacker? 11 ■
Page 55 and 56: What Is an Ethical Hacker? 13 Black
Page 57 and 58: What Is an Ethical Hacker? 15 In th
Page 59 and 60: What Is an Ethical Hacker? 17 Both
Page 61 and 62: What Is an Ethical Hacker? 19 with
Page 63 and 64:
Review Questions 21 Review Question
Page 65 and 66:
Review Questions 23 13. Which type
Page 67 and 68:
Chapter 2 System Fundamentals CEH e
Page 69 and 70:
Exploring Network Topologies 27 bur
Page 71 and 72:
Exploring Network Topologies 29 Mes
Page 73 and 74:
Working with the Open Systems Inter
Page 75 and 76:
Dissecting the TCP/IP Suite 33 Two
Page 77 and 78:
Hexadecimal vs. Binary 35 You’ll
Page 79 and 80:
Exploring TCP/IP Ports 37 Exploring
Page 81 and 82:
Understanding Network Devices 39 Yo
Page 83 and 84:
Working with MAC Addresses 41 broke
Page 85 and 86:
Intrusion Prevention and Intrusion
Page 87 and 88:
Network Security 45 Vulnerability i
Page 89 and 90:
Knowing Operating Systems 47 ■
Page 91 and 92:
Summary 49 Backups and Archiving Ba
Page 93 and 94:
Review Questions 51 Review Question
Page 95 and 96:
Review Questions 53 13. An administ
Page 97 and 98:
Chapter 3 Cryptography CEH EXAM OBJ
Page 99 and 100:
Cryptography: Early Applications an
Page 101 and 102:
Cryptography in Action 59 So what d
Page 103 and 104:
Cryptography in Action 61 The terms
Page 105 and 106:
Cryptography in Action 63 The conce
Page 107 and 108:
Cryptography in Action 65 ■ ■
Page 109 and 110:
Cryptography in Action 67 Peer CA T
Page 111 and 112:
Issues with Cryptography 69 Let’s
Page 113 and 114:
Applications of Cryptography 71 coe
Page 115 and 116:
Applications of Cryptography 73 1.
Page 117 and 118:
Exam Essentials 75 Summary In this
Page 119 and 120:
Review Questions 77 7. A public key
Page 121:
Review Questions 79 19. Who first d
Page 124 and 125:
In this chapter, you’ll begin the
Page 126 and 127:
84 Chapter 4 ■ Footprinting and R
Page 128 and 129:
Page 130 and 131:
Page 132 and 133:
Page 134 and 135:
Page 136 and 137:
Page 138 and 139:
Page 140 and 141:
Page 142 and 143:
100 Chapter 4 ■ Footprinting and
Page 145 and 146:
Chapter 5 Scanning Networks CEH EXA
Page 147 and 148:
What Is Network Scanning? 105 It is
Page 149 and 150:
Checking for Live Systems 107 Modem
Page 151 and 152:
Checking for Live Systems 109 To us
Page 153 and 154:
Checking for Open Ports 111 FIGURE
Page 155 and 156:
Types of Scans 113 FIGURE 5.2 Half-
Page 157 and 158:
Types of Scans 115 In Nmap to perfo
Page 159 and 160:
Banner Grabbing 117 Banner Grabbing
Page 161 and 162:
Drawing Network Diagrams 119 Vulner
Page 163 and 164:
Using Proxies 121 Proxy servers are
Page 165 and 166:
Review Questions 123 Review Questio
Page 167 and 168:
Review Questions 125 13. What is an
Page 169 and 170:
Chapter 6 Enumeration of Services C
Page 171 and 172:
What Is Enumeration? 129 ■ ■
Page 173 and 174:
Windows Basics 131 is the user acco
Page 175 and 176:
Windows Basics 133 TCP 139 NetBIOS
Page 177 and 178:
Windows Basics 135 ■ ■ ■ ■
Page 179 and 180:
Enumeration with SNMP 137 The PsToo
Page 181 and 182:
Unix and Linux Enumeration 139 By d
Page 183 and 184:
LDAP and Directory Service Enumerat
Page 185 and 186:
SMTP Enumeration 143 The following
Page 187 and 188:
Summary 145 HELO 501 HELO requires
Page 189 and 190:
Page 191 and 192:
Review Questions 149 13. SNScan is
Page 193 and 194:
Chapter 7 Gaining Access to a Syste
Page 195 and 196:
Up to This Point 153 ■ ■ Facili
Page 197 and 198:
Up to This Point 155 ■ ■ ■
Page 199 and 200:
Up to This Point 157 Passive Online
Page 201 and 202:
Up to This Point 159 Password Hashi
Page 203 and 204:
Up to This Point 161 To perform thi
Page 205 and 206:
Up to This Point 163 analysis? Wher
Page 207 and 208:
Up to This Point 165 The pspv.exe t
Page 209 and 210:
Up to This Point 167 Overall, the p
Page 211 and 212:
Up to This Point 169 3. Type 1, or
Page 213 and 214:
Up to This Point 171 Disabling audi
Page 215 and 216:
Exam Essentials 173 social engineer
Page 217 and 218:
Review Questions 175 7. An attacker
Page 219:
Review Questions 177 19. If a domai
Page 222 and 223:
One of the prominent problems that
Page 224 and 225:
182 Chapter 8 ■ Trojans, Viruses,
Page 226 and 227:
Page 228 and 229:
Page 230 and 231:
Page 232 and 233:
Page 234 and 235:
Page 236 and 237:
Page 238 and 239:
Page 240 and 241:
Page 242 and 243:
Page 244 and 245:
Page 246 and 247:
Page 248 and 249:
Page 250 and 251:
Page 252 and 253:
Sniffing allows you to see all sort
Page 254 and 255:
212 Chapter 9 ■ Sniffers Law Enfo
Page 256 and 257:
214 Chapter 9 ■ Sniffers Wireshar
Page 258 and 259:
216 Chapter 9 ■ Sniffers You have
Page 260 and 261:
218 Chapter 9 ■ Sniffers Wireshar
Page 262 and 263:
220 Chapter 9 ■ Sniffers 4. There
Page 264 and 265:
222 Chapter 9 ■ Sniffers In Exerc
Page 266 and 267:
224 Chapter 9 ■ Sniffers The CEH
Page 268 and 269:
226 Chapter 9 ■ Sniffers FIGURE 9
Page 270 and 271:
228 Chapter 9 ■ Sniffers Mitigati
Page 272 and 273:
230 Chapter 9 ■ Sniffers Detectin
Page 274 and 275:
232 Chapter 9 ■ Sniffers 7. Bob i
Page 276 and 277:
234 Chapter 9 ■ Sniffers 18. Whic
Page 278 and 279:
So far in this book we have covered
Page 280 and 281:
238 Chapter 10 ■ Social Engineeri
Page 282 and 283:
Page 284 and 285:
Page 286 and 287:
Page 288 and 289:
Page 290 and 291:
Page 292 and 293:
Page 294 and 295:
Page 296 and 297:
Page 298 and 299:
Page 301 and 302:
Chapter 11 Denial of Service CEH EX
Page 303 and 304:
Understanding DoS 261 Typical victi
Page 305 and 306:
Understanding DoS 263 phone over an
Page 307 and 308:
Understanding DoS 265 1. You’ll m
Page 309 and 310:
Understanding DoS 267 Buffer Overfl
Page 311 and 312:
Understanding DoS 269 The key takea
Page 313 and 314:
Understanding DDoS 271 ■ ■ The
Page 315 and 316:
DDoS Tools 273 Tools for Creating B
Page 317 and 318:
DDoS Tools 275 4. Now that you have
Page 319 and 320:
Summary 277 Degrading Services In t
Page 321 and 322:
Page 323 and 324:
Review Questions 281 12. While moni
Page 325 and 326:
Chapter 12 Session Hijacking CEH EX
Page 327 and 328:
Understanding Session Hijacking 285
Page 329 and 330:
Page 331 and 332:
Page 333 and 334:
Page 335 and 336:
Page 337 and 338:
Page 339 and 340:
Page 341 and 342:
Page 343 and 344:
Page 345 and 346:
Exam Essentials 303 importance of u
Page 347 and 348:
Review Questions 305 A. Session spl
Page 349:
Review Questions 307 15. XSS is typ
Page 352 and 353:
A web application is an application
Page 354 and 355:
312 Chapter 13 ■ Web Servers and
Page 356 and 357:
Page 358 and 359:
Page 360 and 361:
Page 362 and 363:
Page 364 and 365:
Page 366 and 367:
Page 368 and 369:
Page 371 and 372:
Chapter 14 SQL Injection CEH EXAM O
Page 373 and 374:
Introducing SQL Injection 331 In th
Page 375 and 376:
Introducing SQL Injection 333 ■
Page 377 and 378:
Introducing SQL Injection 335 Recor
Page 379 and 380:
Introducing SQL Injection 337 inurl
Page 381 and 382:
Introducing SQL Injection 339 To ge
Page 383 and 384:
Introducing SQL Injection 341 Let
Page 385 and 386:
Introducing SQL Injection 343 ■
Page 387 and 388:
Page 389:
Review Questions 347 14. Which comm
Page 392 and 393:
Wireless networks have been popular
Page 394 and 395:
352 Chapter 15 ■ Wireless Network
Page 396 and 397:
Page 398 and 399:
Page 400 and 401:
Page 402 and 403:
Page 404 and 405:
Page 406 and 407:
Page 408 and 409:
Page 410 and 411:
Page 412 and 413:
Page 415 and 416:
Chapter 16 Evading IDSs, Firewalls,
Page 417 and 418:
Honeypots, IDSs, and Firewalls 375
Page 419 and 420:
Page 421 and 422:
Page 423 and 424:
Page 425 and 426:
Page 427 and 428:
Page 429 and 430:
Page 431 and 432:
Page 433:
Review Questions 391 14. SMTP is us
Page 436 and 437:
Working with all the technical and
Page 438 and 439:
396 Chapter 17 ■ Physical Securit
Page 440 and 441:
Page 442 and 443:
Page 444 and 445:
Page 446 and 447:
Page 448 and 449:
Page 450 and 451:
Page 452 and 453:
Page 454 and 455:
Page 457 and 458:
Appendix A Answers to Review Questi
Page 459 and 460:
Chapter 2: System Fundamentals 417
Page 461 and 462:
Chapter 4: Footprinting and Reconna
Page 463 and 464:
Chapter 5: Scanning Networks 421 Ch
Page 465 and 466:
Chapter 7: Gaining Access to a Syst
Page 467 and 468:
Chapter 9: Sniffers 425 19. C. A po
Page 469 and 470:
Chapter 11: Denial of Service 427 8
Page 471 and 472:
Chapter 12: Session Hijacking 429 1
Page 473 and 474:
Chapter 14: SQL Injection 431 8. C.
Page 475 and 476:
Chapter 15: Wireless Networking 433
Page 477 and 478:
Chapter 17: Physical Security 435 9
Page 479 and 480:
Appendix B About the Additional Stu
Page 481 and 482:
Troubleshooting 439 System Requirem
Page 483 and 484:
Index Note to the Reader: Throughou
Page 485 and 486:
uffer overflows - cookies 443 buffe
Page 487 and 488:
Department of Energy (DoE), attack
Page 489 and 490:
File Transfer Protocol (FTP) - Goog
Page 491 and 492:
HTTPRat tool - IP addresses 449 HTT
Page 493 and 494:
Link Extractor utility - Microsoft
Page 495 and 496:
New Connection Security Rule Wizard
Page 497 and 498:
Post Office Protocol (POP) - Remote
Page 499 and 500:
sequence numbers in packets - smurf
Page 501 and 502:
stateful packet firewalls - teardro
Page 503 and 504:
unsafe site warnings - webservers a
Page 505 and 506:
Xmas tree scans - zone transfers 46
Page 507:
WILEY END USER LICENSE AGREEMENT Go
show all

Sybex CEH Certified Ethical Hacker Version 8 Study Guide

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?