Network Security Assessment: Know Your Network

ICA client (Citrix) 

ICMP

    information request message 

    message types 

    probing 

        scanning and 

    query messages

        operating system responses to 

        operating system responses to broadcast 

    responses, passively monitoring 

    type 3 code 13 message 

IDA file extension 

    overflow 

IDC file extension 

identd service 

    scan 

idle scanning 

IDQ file extension 

IDS evasion  2nd 

IETF web site 

IFID values 

ifidds utility 

ifids utility, using to enumerate IFID values of RPC services 

IIS

    ASP scripts, testing 

    default executable directories 

    FTP vulnerabilities 

    ISAPI extensions

        vulnerabilities 

    Unicode exploit 

    Version 5.0 

    vulnerabilities  2nd 

    web server permissions 

    WebDAV vulnerabilities 

IKE (Internet Key Exchange ) 

    agressive mode 

    main mode 

    security issues 

ike-scan 

IKECrack utility 

ikeprobe utility 

ILMI string 

IMAP (Internet Message Access Protocol) 

    AUTHENTICATE command overflow 

    LOGIN command overflow 

index array manipulation 

information easily found on web 

information leak attack 

information, accessing poorly protected 

INFOSEC Assessment Methodology (IAM) framework 

initial reconnaissance 

Insecure.org web site 

INSERT query 

instruction pointer 

integer overflows  2nd 

internal IP address information, gleaning 

international registrars 

Internet Control Message Protocol  [See ICMP]

Internet Key Exchange  [See IKE]

Internet Printing Protocol (IPP) 

Internet Protocol Version 4 (IPv4) 

Internet Protocol Version 6 (IPv6) 

Internet Relay Chat (IRC) 

Internet Security Association and Key Management Protocol (ISAKMP) service 

Internet Software Consortium (ISC) 

InterScan VirusWall  2nd 

inverse TCP flag scanning 

    tools 

inverse TCP port scanning 

inverted technique 

IP address information

    gleaning internal 

IP assessment, low-level 

IP fingerprinting 

IP ID

    header scanning 

    incrementation 

    sequence generation 

IP network scanning 

    rationale behind 

IP networks and hosts of interest, identifying 

IPsec

    attack countermeasures 

    enumeration 

    VPNs 

        attacking 

ipsecscan 

IPv4 (Internet Protocol Version 4) 

IPv6 (Internet Protocol Version 6) 

ISAKMP (Internet Security Association and Key Management Protocol)  2nd 

    service probing 

    vulnerabilities 

ISAPI extensions 

    enumeration 

    respective server HTTP response codes 

    vulnerabilities 

ISAPI extensions security recommendations 

ISS BlackICE 

ISS Internet Scanner  2nd 

ISS X-Force 

    vulnerability database 

    web site