Labs completed for the ISTD Course 50.020 Network Security.
This lab covers the following topics:
- How the sniffing and spoofing work
- Packet sniffing using the pcap library and Scapy
- Packet spoofing using raw socket and Scapy
- Manipulating packets using Scapy
This lab covers the following topics:
- The ARP protocol
- The ARP cache poisoning attack
- Man-in-the-middle attack
- Scapy programming
This lab covers the following topics:
- The TCP protocol
- TCP SYN flood attack, and SYN cookies
- TCP reset attack
- TCP session hijacking attack
- Reverse shell
This lab covers the following topics:
- DNS and how it works
- DNS server setup
- DNS cache poisoning attack
- Spoofing DNS responses
- Packet spoofing
This lab covers the following topics:
- Public-key encryption
- Public-Key Infrastructure (PKI)
- Certificate Authority (CA) and root CA
- X.509 certificate and self-signed certificate
- Apache, HTTP, and HTTPS
- Man-in-the-middle attacks
This lab covers the following topics:
- Firewall
- Netfilter
- Loadable kernel module
- Bypassing firewalls using SSH tunnel
The lab covers the following topics:
- Virtual Private Network
- The TUN/TAP virtual interface
- IP tunneling
- Routing
This lab covers the following topics:
- Cross-Site Scripting attack
- XSS worm and self-propagation
- Session cookies
- HTTP GET and POST requests
- JavaScript and Ajax
This lab covers the following topics:
- Cross-Site Request Forgery attack
- CSRF countermeasures: Secret token and Same-site cookie
- HTTP GET and POST requests
- JavaScript and Ajax
Tis labs covers the following topics:
- Inspecting & modifying wireless card parameters
- Changing the wireless transmission channel
- Flooding attacks
- Cracking keys of WPA2 protected networks.