Trehb101.com - Got Geek? » eavesdropping http://www.trehb101.com Information Security : Technology : Project Management : Life Thu, 31 Mar 2011 22:23:44 +0000 http://wordpress.org/?v=2.8.6 en hourly 1 CISSP Exam Note (Domain 2: Telecommunications and Networking Security) – Classes of Network Abuse http://www.trehb101.com/index.php/2009/12/07/cissp-exam-note-domain-2-telecommunications-and-networking-security-%e2%80%93-classes-of-network-abuse/ http://www.trehb101.com/index.php/2009/12/07/cissp-exam-note-domain-2-telecommunications-and-networking-security-%e2%80%93-classes-of-network-abuse/#comments Mon, 07 Dec 2009 20:48:00 +0000 TheDon http://www.trehb101.com/?p=243 Class A

  • Unauthorized access through circumvention of security access controls
  • Masquerading, logon abuse (primarily internal attacks)

Class B – non-business use of systems

Class C

  • Eavesdropping
  • Active: Tampering with a transmission to create a covert signaling channel or probing the network
  • Passive – Covertly monitoring or listening to transmissions that is unauthorized
  • Covert Channel – using a hidden unauthorized communication
  • Tapping – refers to the physical interception of transmission medium (like splicing of cable)

    • Planning to take the CISSP Exam?

    Get a copy of my personal notes (300plus pages worth) that I used to pass the exam for only $25.00.

    Click the Add To Cart Button to Purchase

    Click the Add To Cart Button to Purchase

    Plus you will also get copies of notes from other CISSPs.

    Learn more about this package by visiting this blog entry: CISSP REVIEW NOTES I USED TO PASS THE EXAM.

    CLICK BELOW TO MAKE YOUR PURCHASE NOW.

    All Purchases are securely processed through Paypal. Once you click the button please check your shopping cart at the upper right hand side of the page to complete your order.

    IMPORTANT NOTICE:

    I MANUALLY REVIEW ALL ORDERS. SO ONCE YOU PURCHASE THE PRODUCT, THERE WILL BE SOME DELAY ON YOU RECEIVING AN E-MAIL FROM ME WITH THE LINK TO THE DOWNLOAD AREA OF THE PRODUCT. YOU WILL GET A RESPONSE FROM ME WITHIN 24-48 HOURS.

Class D – denial of service saturation of network services

Class E

  • Network Intrusion – external penetration
  • Spoofing – a spoofing attack involves nothing more than forging one’s source address; the act of using one machine to impersonate another
  • Piggy Backing – attack using another user’s connection
  • Back Door – attack via dial-up or external connection

Class F

  • Probing
  • Gives an intruder a road map of the network for DoS attach
  • Gives a list of available services
  • Traffic analysis via sniffers, which scans the host for available services
    • Like a telephone wiretap allows the FBI to listen in to people’s conversation, a “sniffing” program lets someone listen in on computer conversations
  • Tools: Telnet (manual), vulnerability scanners (automatic)
]]> http://www.trehb101.com/index.php/2009/12/07/cissp-exam-note-domain-2-telecommunications-and-networking-security-%e2%80%93-classes-of-network-abuse/feed/ 0