Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Basic exploitation of TCP/IP

Avatar for Johnny Vestergaard Johnny Vestergaard
July 29, 2012
Technology
0
150

Basic exploitation of TCP/IP

Slides used for a security workshop at a local technology academy.
Avatar for Johnny Vestergaard

Johnny Vestergaard

July 29, 2012
Tweet

More Decks by Johnny Vestergaard

See All by Johnny Vestergaard
Introduction to deception technology
Avatar for Johnny Vestergaard johnnykv
0
110
Use of operational deceptions to divert cyber attacks
Avatar for Johnny Vestergaard johnnykv
1
120
Honeypot Workshop
Avatar for Johnny Vestergaard johnnykv
1
120
Deception, Honeypots and Honeyclients
Avatar for Johnny Vestergaard johnnykv
0
58
Hacking Demystified
Avatar for Johnny Vestergaard johnnykv
1
66
XSS Lightning talk
Avatar for Johnny Vestergaard johnnykv
1
56
Sans Christmas Hacking Challenge 2011
Avatar for Johnny Vestergaard johnnykv
0
93
Hacking Demystified
Avatar for Johnny Vestergaard johnnykv
0
97

Other Decks in Technology

See All in Technology
25分で解説する「最小権限の原則」を実現するための AWS「ポリシー」大全
Avatar for opelab opelab
8
2k
Oracle Audit Vault and Database Firewall 20 概要
Avatar for oracle4engineer oracle4engineer
PRO
2
1.6k
DroidKnights 2025 - Jetpack XR 살펴보기: XR 개발은 어떻게 이루어지는가?
Avatar for Quokkaman heesung6701
1
160
Microsoft Build 2025 技術/製品動向 for Microsoft Startup Tech Community
Avatar for Toru Makabe torumakabe
1
190
_第3回__AIxIoTビジネス共創ラボ紹介資料_20250617.pdf
Avatar for AIxIoTビジネス共創ラボ iotcomjpadmin
0
140
Amazon S3標準/ S3 Tables/S3 Express One Zoneを使ったログ分析
Avatar for ShigeruOda shigeruoda
1
320
生成AIでwebアプリケーションを作ってみた
Avatar for tajimon tajimon
2
120
Prox Industries株式会社 会社紹介資料
Avatar for Prox proxindustries
0
140
2年でここまで成長!AWSで育てたAI Slack botの軌跡
Avatar for iwamot iwamot
PRO
2
130
Claude Code Actionを使ったコード品質改善の取り組み
Avatar for Katsunori Kanda potix2
PRO
2
600
AIエージェント最前線! Amazon Bedrock、Amazon Q、そしてMCPを使いこなそう
Avatar for みのるん minorun365
PRO
10
2.7k
(非公式) AWS Summit Japan と 海浜幕張 の歩き方 2025年版
Avatar for Kosuke ENOMOTO coosuke
PRO
1
320

Featured

See All Featured
Done Done
Avatar for chrislema chrislema
184
16k
4 Signs Your Business is Dying
Avatar for Josh Pigford shpigford
184
22k
10 Git Anti Patterns You Should be Aware of
Avatar for Lemi Orhan Ergin lemiorhan
PRO
657
60k
StorybookのUI Testing Handbookを読んだ
Avatar for Shingo Yamazaki zakiyama
30
5.8k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
Avatar for panda_program panda_program
107
19k
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
Avatar for Eileen M. Uchitelle eileencodes
137
34k
Distributed Sagas: A Protocol for Coordinating Microservices
Avatar for Caitie McCaffrey caitiem20
331
22k
Fashionably flexible responsive web design (full day workshop)
Avatar for Andy Clarke malarkey
407
66k
Evolution of real-time – Irina Nazarova, EuRuKo, 2024
Avatar for Irina Nazarova irinanazarova
8
790
Build your cross-platform service in a week with App Engine
Avatar for Jose L jlugia
231
18k
Typedesign – Prime Four
Avatar for Hannes Fritz hannesfritz
42
2.7k
The Art of Programming - Codeland 2020
Avatar for Erika Heidi erikaheidi
54
13k

Transcript

  1. Basic exploitation of TCP/IP

  2. Workshop Hækling er svært! Par hækling gør denne workshop lettere!

  3. Planen 1. Opsætning af miljø 2. Lær Python :-) 3.

    TCP/IP recap 4. Monitering af egen netværkstrafik 5. Udvikling med Scapy 6. ISP logning

  4. Værktøjer • Virtualbox (eller din foretrukne VM host) • Backtrack

    • Wireshark • Scapy • Python

  5. Session #1 - Backtrack! • Start Backtrack live CD •

    loadkeys dk • Xorg -configure • cp /root/xorg.conf.new /etc/X11/xorg.conf • startx • Start browser, check connectivity

  6. Python på 30 sekunder • en_liste = [] • en_liste.append('Jens')

    • en_liste.append('Klaus') • for item in en_liste: • print item • ; og {} er NOGO i Python... (pssst! {} = dict) • Tillykke, du kan nu kode Python! :-)

  7. Session #2 - Python • En rundtur i python REPL.

    • Lav et program der: ◦ Acceptere et kommandolinje argument (prog.py x-y) ▪ "x-y" er en string som skal splittes. ◦ Ud fra argumentet laver en liste vha. range() ◦ Iterere og udskriver hver enkelt element i listen.

  8. TCP/IP - Data flow TCP IP HTTP ARP

  9. TCP/IP Header IP TCP HTTP

  10. TCP/IP Recap Three way handshake .NET Applikation Håndteres på OS

    niveau

  11. TCP/IP Recap Three way handshake .NET Applikation Håndteres på OS

    niveau Socket O pen

  12. Session #3 - Wireshark • Layers • Three way handshake

    • Samling af sammenhørende pakker

  13. Session #4 - Log på VPN! • wget bitly.com/XXXXXXX •

    tar xvf XXXXXXX • cd witchcraft • ./setup-fw • openvpn client.conf • ping 10.1.1.1

  14. Scapy • Manipulering af pakker • Kodning/Dekodning af pakker •

    Fuld kontrol over pakkernes opbygning ◦ Forfalskning ◦ "umulige" pakker • Sniffing • Diverse højniveau funktioner ◦ arpcachepoison, traceroute, p0f, osv...

  15. Session #5 - Basal scapy • Håndkodning af pakker. •

    Sammensætning af layers. • Full connect (3-way handshake). ◦ Som sammenhængende python program.

  16. Session #6 - Trickery • Forfalskning (spoofing) • Half open

    scan

  17. Session #7 - Portscanner • Udvikling af portscanner ◦ Automatisering

    af scapy kommandoer • Følgende skal implementeres: ◦ Full connect scan (3-way handshake) ◦ Stealth scan ◦ Bonus ting og sager...