Sybex CEH Certified Ethical Hacker Version 8 Study Guide

More documents

Recommendations

Info

$math_puzzles_book_$

458 sniffers – stateful multilayer inspection firewalls sniffers, 209–210 attack detection, 230 exam essentials, 230 law enforcement issues, 212 overview, 210–212 reading output, 221–224, 221–223 review questions, 231–234 session, 289 session hijacking, 286 summary, 230 switched networks. See switched network sniffing TCPdump, 218–221, 218–220 tools, 213 Wireshark, 214–218, 214–218 sniffing packets, 157 SNMP (Simple Network Management Protocol) description, 133 enumeration with, 137–139 exploiting, 130 SNMPv1 protocol, 137 SNMPv2 protocol, 138 SNMPv3 protocol, 138 SNScan utility, 139 social engineering, 5, 18, 235–236 cryptography attacks, 70 description, 236–237 effectiveness, 237–238 exam essentials, 252–253 footprinting, 88, 96–97 identity theft, 250–252 impact, 239–240 phases, 239 review questions, 254–257 social networking, 241–246 success, 238–239 summary, 252 targets, 240–241 threats, 246–249 social networking countermeasures, 245–246 footprinting, 91–92 mistakes, 243–245 overview, 241–242 software malicious. See malware piracy, 5 software-based access points (SAPs), 351 software installation, spyware infection in, 193 solar film windows, 408 solid-core doors, 402 Sony Corporation, attack on, 331 source IP reputation filtering, 277 source routing, 293, 293, 385–386 SOX (Sarbanes-Oxley) law, 19 SPAN (Switched Port Analyzers) ports, 227 sparse-infector viruses, 187 Spears, Britney, 242 Spector Pro tool, 204 splicing, session, 384 spoofing DNS, 293 vs. hijacking, 286 IP, 292, 292, 385–386 MAC, 226, 362 spyware, 158 description, 183 infection methods, 192–193 SQL injection, 329–330 blind, 341 countermeasures, 343–344 data alteration, 339–341 database vulnerabilities, 334–336 evading detection mechanisms, 342–343 exam essentials, 344 information gathering, 342 initiating attacks, 337–339 overview, 330–332 results, 332–333 review questions, 345–347 summary, 344 targets, 336–337 web applications, 333–334 SQL Slammer worm, 190–191 SQLPing 3.0 tool, 335–336 SQLRecon tool, 335 SSH tunneling, reverse, 362 SSIDs (service set identifiers), 352–353 SSL (Secure Sockets Layer), 74 Stacheldraht tool, 273 stack overflows, 267–271, 268–269 standard windows, 408 star layout, 27, 28 stateful multilayer inspection firewalls, 381
stateful packet firewalls – teardrop attacks 459 stateful packet firewalls, 43 stateless protocols in web applications, 312 statements of desired skills, 93 stealing information IDs in session hijacking, 285 by malware, 181 passwords and usernames, 5 stealth scans, 112–113, 113 Stealth tool, 202 stealth viruses, 187 steel doors, 402 stolen equipment attacks, 18 stolen sessions. See session hijacking stored XSS Attacks, 291 strcat() function, 267 strcpy() function, 267 Stunnel program, 321 Stuxnet worm, 32 subdomains, 90 subnetting, 35 subordinate CAs, 67 SubSeven program, 196 suicide hackers, 8–9 SuperScan scanner, 136 switched network sniffing, 224 ARP poisoning, 225–226, 226 defenses, 227 MAC flooding, 224–225, 224, 228–229 MAC spoofing, 226 port mirrors, 227 Switched Port Analyzers (SPAN) ports, 227 switches, 40–41 syllable password attacks, 156 symmetric cryptography, 61–62 SYN packets, 33, 110–111, 111 floods, 263–266, 265–267, 315 sequence numbers, 295, 295 SYN-ACK packets, 33, 110–111, 111 SYSKEY feature, 165–166 system access, 151–152 active online attacks, 158 authentication, 165–169 covering tracks, 170–172 distributed network attacks, 162 exam essentials, 173 executing applications, 169–170 offline attacks, 159–162 passive online attacks, 157–158 passwords. See passwords review questions, 174–177 summary, 172–173 system administrators in social engineering, 240–241 system attacks in footprinting, 88 system fundamentals, 25–26 backups and archiving, 49 exam essentials, 50 firewalls, 43 hexadecimal vs. binary, 35–36 IP subnetting, 35 IPSs and IDSs, 43–44 MAC addresses, 41–43 network devices, 39–41 network security, 44–46, 44–45 network topologies, 26–29, 27–29 operating systems, 46–48 OSI model, 30–33, 31 proxies, 42 review questions, 51–54 summary, 49–50 TCP/IP ports, 37–39 TCP/IP suite, 33–35, 34 System group, 132 system hacking, 16, 83 system logs, 379 system processes in Windows, 131 system viruses, 186 T tabular objects, 138 Targa tool, 273 Target stores, attack on, 181–182 targets in SQL injection, 336–337 Targets of Evaluation (TOEs), 10 TCP protocol flags on packets, 385 scans, 110–111 services and ports, 132–133 TCP/IP suite, 33–35, 34 ports, 37–39 session hijacking, 295–296, 295 TCPdump tool, 213–214, 218–221, 218–220 TCPView tool, 197–198, 198 teardrop attacks, 263
Page 3:
CEHv8 Certified Ethical Hacker Vers
Page 6 and 7:
Senior Acquisitions Editor: Jeff Ke
Page 9 and 10:
Acknowledgments First, I would like
Page 11:
Contents at a Glance Introduction A
Page 14 and 15:
xii Contents Chapter 3 Cryptography
Page 16 and 17:
xiv Contents Commonly Exploited Ser
Page 18 and 19:
xvi Contents Chapter 11 Denial of S
Page 20 and 21:
xviii Contents Securing the Physica
Page 23 and 24:
Introduction If you’re preparing
Page 25 and 26:
Introduction xxiii How to Become a
Page 27 and 28:
Introduction xxv Tips for Taking th
Page 29 and 30:
Introduction xxvii 4. Answer all of
Page 31 and 32:
Introduction xxix Network/wireless
Page 33 and 34:
Assessment Test xxxi C. PPP D. SLIP
Page 35 and 36:
Assessment Test xxxiii 19. An indiv
Page 37 and 38:
Assessment Test xxxv 31. Which of t
Page 39 and 40:
Answers to Assessment Test xxxvii 1
Page 41:
CEHv8 Certified Ethical Hacker Vers
Page 44 and 45:
In this book you will learn the var
Page 46 and 47:
4 Chapter 1 ■ Getting Started wit
Page 48 and 49:
Page 50 and 51:
Page 52 and 53:
10 Chapter 1 ■ Getting Started wi
Page 54 and 55:
Page 56 and 57:
Page 58 and 59:
Page 60 and 61:
Page 62 and 63:
Page 64 and 65:
Page 66 and 67:
Page 68 and 69:
Every skill set comes with a histor
Page 70 and 71:
28 Chapter 2 ■ System Fundamental
Page 72 and 73:
Page 74 and 75:
Page 76 and 77:
Page 78 and 79:
Page 80 and 81:
Page 82 and 83:
Page 84 and 85:
Page 86 and 87:
Page 88 and 89:
Page 90 and 91:
Page 92 and 93:
Page 94 and 95:
Page 96 and 97:
Page 98 and 99:
This chapter covers cryptography, a
Page 100 and 101:
58 Chapter 3 ■ Cryptography The p
Page 102 and 103:
60 Chapter 3 ■ Cryptography ■
Page 104 and 105:
62 Chapter 3 ■ Cryptography MARS
Page 106 and 107:
64 Chapter 3 ■ Cryptography A has
Page 108 and 109:
66 Chapter 3 ■ Cryptography The C
Page 110 and 111:
68 Chapter 3 ■ Cryptography Under
Page 112 and 113:
70 Chapter 3 ■ Cryptography TABLE
Page 114 and 115:
72 Chapter 3 ■ Cryptography 5. On
Page 116 and 117:
74 Chapter 3 ■ Cryptography PGP w
Page 118 and 119:
76 Chapter 3 ■ Cryptography Revie
Page 120 and 121:
78 Chapter 3 ■ Cryptography 13. W
Page 123 and 124:
Chapter 4 Footprinting and Reconnai
Page 125 and 126:
Understanding the Steps of Ethical
Page 127 and 128:
What Is Footprinting? 85 Goals of t
Page 129 and 130:
Terminology in Footprinting 87 Orga
Page 131 and 132:
The Footprinting Process 89 Using S
Page 133 and 134:
The Footprinting Process 91 Locatio
Page 135 and 136:
The Footprinting Process 93 will no
Page 137 and 138:
The Footprinting Process 95 In secu
Page 139 and 140:
Exam Essentials 97 I want to introd
Page 141 and 142:
Review Questions 99 7. Which of the
Page 143:
Review Questions 101 19. Footprinti
Page 146 and 147:
Once you’ve completed the footpri
Page 148 and 149:
106 Chapter 5 ■ Scanning Networks
Page 150 and 151:
Page 152 and 153:
Page 154 and 155:
Page 156 and 157:
Page 158 and 159:
Page 160 and 161:
Page 162 and 163:
Page 164 and 165:
Page 166 and 167:
Page 168 and 169:
Page 170 and 171:
You’ve gathered a lot of informat
Page 172 and 173:
130 Chapter 6 ■ Enumeration of Se
Page 174 and 175:
Page 176 and 177:
Page 178 and 179:
Page 180 and 181:
Page 182 and 183:
Page 184 and 185:
Page 186 and 187:
Page 188 and 189:
Page 190 and 191:
Page 192 and 193:
Page 194 and 195:
Using the information gathered so f
Page 196 and 197:
154 Chapter 7 ■ Gaining Access to
Page 198 and 199:
Page 200 and 201:
Page 202 and 203:
Page 204 and 205:
Page 206 and 207:
Page 208 and 209:
Page 210 and 211:
Page 212 and 213:
Page 214 and 215:
Page 216 and 217:
Page 218 and 219:
Page 221 and 222:
Chapter 8 Trojans, Viruses, Worms,
Page 223 and 224:
Malware 181 In past decades, what w
Page 225 and 226:
Malware 183 The Patriot Act This ac
Page 227 and 228:
Malware 185 1. Design. The author e
Page 229 and 230:
Malware 187 ■ ■ Macro viruses d
Page 231 and 232:
Malware 189 How to Create a Virus C
Page 233 and 234:
Malware 191 A Closer Look at Slamme
Page 235 and 236:
Malware 193 ■ ■ Freeware—Down
Page 237 and 238:
Malware 195 Operations that could b
Page 239 and 240:
Malware 197 ■ NetMeeting Remote:
Page 241 and 242:
Malware 199 Tools for Creating Troj
Page 243 and 244:
Malware 201 5. In the next screen,
Page 245 and 246:
Overt and Covert Channels 203 ■ P
Page 247 and 248:
Exam Essentials 205 ■ ■ ■ ■
Page 249 and 250:
Review Questions 207 7. Which utili
Page 251 and 252:
Chapter 9 Sniffers CEH EXAM OBJECTI
Page 253 and 254:
Understanding Sniffers 211 When on
Page 255 and 256:
Using a Sniffer 213 In terms of LI,
Page 257 and 258:
Using a Sniffer 215 2. Choose Captu
Page 259 and 260:
Using a Sniffer 217 Table 9.1 lists
Page 261 and 262:
Using a Sniffer 219 2. Next you nee
Page 263 and 264:
Using a Sniffer 221 output from a s
Page 265 and 266:
Using a Sniffer 223 3. Select the T
Page 267 and 268:
Switched Network Sniffing 225 What
Page 269 and 270:
Switched Network Sniffing 227 Port
Page 271 and 272:
Switched Network Sniffing 229 root@
Page 273 and 274:
Review Questions 231 Review Questio
Page 275 and 276:
Review Questions 233 13. What is th
Page 277 and 278:
Chapter 10 Social Engineering CEH E
Page 279 and 280:
What Is Social Engineering? 237 If
Page 281 and 282:
What Is Social Engineering? 239 eng
Page 283 and 284:
What Is Social Networking? 241 Many
Page 285 and 286:
What Is Social Networking? 243 Mist
Page 287 and 288:
What Is Social Networking? 245 Ambe
Page 289 and 290:
Commonly Employed Threats 247 Dumps
Page 291 and 292:
Commonly Employed Threats 249 ■
Page 293 and 294:
Identity Theft 251 Although some si
Page 295 and 296:
Exam Essentials 253 Know about tech
Page 297 and 298:
Review Questions 255 7. Phishing ca
Page 299:
Review Questions 257 19. An attacke
Page 302 and 303:
This chapter will give you a firm u
Page 304 and 305:
262 Chapter 11 ■ Denial of Servic
Page 306 and 307:
Page 308 and 309:
Page 310 and 311:
Page 312 and 313:
Page 314 and 315:
Page 316 and 317:
Page 318 and 319:
Page 320 and 321:
Page 322 and 323:
Page 324 and 325:
Page 326 and 327:
The concept of session hijacking is
Page 328 and 329:
286 Chapter 12 ■ Session Hijackin
Page 330 and 331:
Page 332 and 333:
Page 334 and 335:
Page 336 and 337:
Page 338 and 339:
Page 340 and 341:
Page 342 and 343:
Page 344 and 345:
Page 346 and 347:
Page 348 and 349:
Page 351 and 352:
Chapter 13 Web Servers and Web Appl
Page 353 and 354:
Exploring the Client-Server Relatio
Page 355 and 356:
Page 357 and 358:
Page 359 and 360:
Page 361 and 362:
Page 363 and 364:
Page 365 and 366:
Exam Essentials 323 Summary This ch
Page 367 and 368:
Review Questions 325 7. In the fiel
Page 369:
Review Questions 327 19. What may b
Page 372 and 373:
This chapter covers SQL injection,
Page 374 and 375:
332 Chapter 14 ■ SQL Injection SE
Page 376 and 377:
334 Chapter 14 ■ SQL Injection Al
Page 378 and 379:
336 Chapter 14 ■ SQL Injection Ru
Page 380 and 381:
338 Chapter 14 ■ SQL Injection If
Page 382 and 383:
340 Chapter 14 ■ SQL Injection On
Page 384 and 385:
342 Chapter 14 ■ SQL Injection In
Page 386 and 387:
344 Chapter 14 ■ SQL Injection
Page 388 and 389:
346 Chapter 14 ■ SQL Injection 7.
Page 391 and 392:
Chapter 15 Wireless Networking CEH
Page 393 and 394:
What Is a Wireless Network? 351 ■
Page 395 and 396:
What Is a Wireless Network? 353 nam
Page 397 and 398:
What Is a Wireless Network? 355 Som
Page 399 and 400:
What Is a Wireless Network? 357 ■
Page 401 and 402:
What Is a Wireless Network? 359 Cra
Page 403 and 404:
What Is a Wireless Network? 361 Wha
Page 405 and 406:
What Is a Wireless Network? 363 Mis
Page 407 and 408:
What Is a Wireless Network? 365 Als
Page 409 and 410:
Summary 367 ■ ■ ■ An attacker
Page 411 and 412:
Review Questions 369 Review Questio
Page 413:
Review Questions 371 14. Bluejackin
Page 416 and 417:
At this point in this book you have
Page 418 and 419:
376 Chapter 16 ■ Evading IDSs, Fi
Page 420 and 421:
Page 422 and 423:
Page 424 and 425:
Page 426 and 427:
Page 428 and 429:
Page 430 and 431:
Page 432 and 433:
Page 435 and 436:
Chapter 17 Physical Security CEH EX
Page 437 and 438:
Introducing Physical Security 395 O
Page 439 and 440:
Introducing Physical Security 397 s
Page 441 and 442:
Introducing Physical Security 399 P
Page 443 and 444:
Introducing Physical Security 401 S
Page 445 and 446:
Introducing Physical Security 403 e
Page 447 and 448:
Introducing Physical Security 405 a
Page 449 and 450: Introducing Physical Security 407 V
Page 451 and 452: Exam Essentials 409 opening 18 feet
Page 453 and 454: Review Questions 411 7. Which of th
Page 455: Review Questions 413 19. What mecha
Page 458 and 459: 416 Appendix A ■ Answers to Revie
Page 480 and 481: 438 Appendix B ■ About the Additi
Page 482 and 483: 440 Appendix B ■ About the Additi
Page 484 and 485: 442 ARP (Address Resolution Protoco
Page 486 and 487: 444 Counter Mode with Cipher Block
Page 488 and 489: 446 EIP (Extended Instruction Point
Page 490 and 491: 448 Google Hacking Database (GHDB)
Page 492 and 493: 450 IP DHCP Snooping feature - Limi
Page 494 and 495: 452 mirrors, port - networks mirror
Page 496 and 497: 454 passwords - ports passwords cha
Page 498 and 499: 456 Remote Encrypted Callback Unix
Page 502 and 503: 460 Teflon Oil Patch program - unpr
Page 504 and 505: 462 webservers and web applications
Page 506 and 507: ee Online Study Tools FRegister on
show all

Sybex CEH Certified Ethical Hacker Version 8 Study Guide

Create successful ePaper yourself

Delete template?

Save as template?