Penetration Testing and Network Defense
| < Day Day Up > |
Index[SYMBOL] [A] [B] [C] [D] [E] [F] [G] [H] [I] [J] [K] [L] [M] [N] [O] [P] [Q] [R] [S] [T] [U] [V] [W] [X] [Z] e-commerce e-mail impersonation malware attachments e-mail policies EAPOW (Extensible Authentication Protocol over Wireless) EDGAR (Electronic Data Gathering, Analysis, and Retrieval) 2nd educating employees about password cracking EIP (extended instruction pointer) elements (HTML) elevation techniques for Microsoft Windows irix-login.c exploit rpc.statd exploit stack smashing exploit Elkern virus embryonic connectionsemployees impersonating tech support, impersonating telecommuter phone numbers, obtaining enabling access auditing encrypted passwords end-user impersonation enforcing standards for wireless networks EPHI (electronic public health information) erasing evidence stage of attacks passwords ESP (extended stack pointer) registers Ethereal configuring monitoring session hijacking attacks 2nd ethical hackers European Council Convention on Cybercrime evading IDSs example penetration test, LCN 2nd 3rd examples of buffer overflows Linux privilege escalation Windows privilege escalation of scan detection FIN scans NULL scans OS guessing scans SYN scans TCP Connect() scans Xmas tree scans of simple buffer overflows execiis-win32.exe executing DoS attacks Datapool Hgod Jolt2 Executive Summary 2nd expanding number of security threats, reasons for administrator trust availability of hacking tools business partnerships complexity of networks frequency of software updates hacktivism industry regulations marketing demands nature of open source proliferation of viruses and worms reliance on Internet unmonitored telecommuters and mobile users WLANs expiration dates of passwords, modifying exploits hidden fields zero-day extended stored procedures 2nd external JavaScript extra fun tab (SubSeven) |
| < Day Day Up > |