TCP – Page 26 – WindowsTechs.com

Hostname resolution in TCPwrappers

Posted on September 29, 2017 by symcbean

Does anyone know how TCPwrappers matches incoming connections against rules containing hostnames?

Does this require a match on the PTR (i.e. only the canonical hostname will be of use in the hosts.allow/hosts.deny)

Or does… Continue reading Hostname resolution in TCPwrappers→

TCP – UDP packets [on hold]

Posted on September 24, 2017 by Petr

I have flooded my server with tcp/udp (layer 4 and layer 7) packets in order to see how does it work and what data contains. When I checked the access.log I couldn’t find any data.

Any idea how to get those logs?
I have web… Continue reading TCP – UDP packets [on hold]→

TCP – UDP packets [on hold]

Posted on September 24, 2017 by Petr

I have flooded my server with tcp/udp (layer 4 and layer 7) packets in order to see how does it work and what data contains. When I checked the access.log I couldn’t find any data.

Any idea how to get those logs?
I have web… Continue reading TCP – UDP packets [on hold]→

Protection against IP attacks

Posted on September 21, 2017 by Zachary K

To be clear: I am not a cybersecurity expert but, since I am learning quite a lot these days I wonder whether if an attacker sends a frame with an ACK flag to my boss’ computer (for example) and then uses the broadcast IP to … Continue reading Protection against IP attacks→

Insecure/Obsolete TCP/UDP Ports?

Posted on August 24, 2017 by Rei

I used CurrPorts to monitor TCP/IP network connections. This image shows when I don’t connect to the Internet but I don’t know why Avast Antivirus established this port. Is it insecure?

This image shows when I connected to… Continue reading Insecure/Obsolete TCP/UDP Ports?→

Generic SSL/TLS decryptor [on hold]

Posted on July 21, 2017 by user3182879

I’ve recently become a fan of MITM attacks and had some fun hacking some manipulating HTTPS requests and responses.

I did this using mitmproxy and installing the certificate on my phone.

I would like to be able to decrypt t… Continue reading Generic SSL/TLS decryptor [on hold]→

If TCP is more "secure" than UDP, how would a practical UDP "attack" look, for example during the initiation of a MS RDP connection?

Posted on July 21, 2017 by Kevin Morssink

In accordance to the recent question Why is TCP more secure than UDP?. How would an “attack” look when it comes to the practical aspect? A great example would be the use of TCP or UDP for Microsoft Remote Desktop (RDP) sessio… Continue reading If TCP is more "secure" than UDP, how would a practical UDP "attack" look, for example during the initiation of a MS RDP connection?→

Why is TCP more secure than UDP?

Posted on July 20, 2017 by sluge

While reading MS SDL (Microsoft Security Development Lifecycle) presentations I found a recommendation to replace UDP with TCP in applications because TCP is more secure than UDP. But both of them are only transport layers, nothing more.

… Continue reading Why is TCP more secure than UDP?→

Can a device accidentally transmit a Teardrop attack?

Posted on July 17, 2017 by iain

On reviewing the firewall log on my router (supplied by my fibre provider), I noticed a few curious entries. Several teardrop or derivative attacks, I’d expect to see things like this in the log from public addresses, but the… Continue reading Can a device accidentally transmit a Teardrop attack?→

Trying to examine URL redirection in Wireshark

Posted on July 15, 2017 by NickJones

I clicked on a link (indistannews.com) and was redirected to a different website (sexiniowa.com). [Warning – the latter site is a pornography website].

I looked at the transaction in Wireshark to try and see how I was redire… Continue reading Trying to examine URL redirection in Wireshark→