Penetration Testing and Network Defense

Index

[SYMBOL] [A] [B] [C] [D] [E] [F] [G] [H] [I] [J] [K] [L] [M] [N] [O] [P] [Q] [R] [S] [T] [U] [V] [W] [X] [Z]

backdoor applications 2nd 3rd

     detecting     preventing

backup policies

bandwidth attacks

banner grabbing

basic authentication bypass attacks basic HTTP authentication Beast

     client configuration 2nd     gaining access with, case study     server settings Beastkit

behavior-based virus detection, CSA behavioral profiling Berners-Lee, Tim black-box tests black-hat hackers Blaster worm blind hijacking

blind spoofing

BO2K (Back Orifice 2000) 2nd     plug-ins Borghard, Peter

BoSniffer program

Boson GetPass

Boson RIP Route Generator

breaching internal networks, case study Brown Orifice

Brumleve, Dan brute force attacks

     Brutus     detecting 2nd     HTTP Brute Forcer    on SQL servers         case study 2nd

         detecting

     protecting against

     testing database vulnerability to

Brutus

buffer overflows

     case study

     heap buffers

     Linux privilege escalation

     on IIS web servers

     preventing

     simple buffer overflow example

     stack smashing exploit

     stacks

     tools for attempting     Windows privilege escalation

BugBear virus

bypassing firewalls

     ICMP tunneling

     Loki ICMP tunneling bytecode