THE

SPRAWL

researchcategories

network

packet filtering

wireshark, mergecap, editcap, tcpdump, tshark

Packet filtering is an important skill when capturing and managing large network dumps. In this article you will learn several tools and techniques used to simplify searching and extraction of useful data from captured data. Read more.

network reconnaissance

host discovery

arp, udp, icmp, ack, ip, ping, syn, tcp, dns, search engine, null, fin, xmas, covert, stealth, reconnaissance

In this article you will learn several active and stealth techniques used to discover even highly cloaked hosts. Read more.

port scanning

udp, icmp, ack, ip, syn, tcp, null, fin, xmas, ftp, networking, scanning, port scanning, idlescan, reconnaissance

Discovering open ports on a networked system is an important reconnaissance step used to enumerate potentially vulnerable services. In this article you will learn a number of techniques used to perform fast and reliable port scans while bypassing many trivial defenses. Read more.

network attacks

denial of service

syn, denial of service, land

A Denial of Service (DoS) attack is designed to prevent legitimate access to a target system. This article will cover techniques used to DoS a machine or service. Read more.

network tools

scapy

udp, icmp, ack, syn, tcp, port scanning, host discovery, os fingerprinting, wireless, sniffing, scapy

Scapy is a packet forging tool using Python as its domain specific language. It was developed by Philippe Biondi in 2003. Read more.

nmap

port scanning, host discovery, os fingerprinting, firewall, nmap, ids

nmap (Network MAPper) is a network port scanner with service version and operating system detection engines. The tool was originally developed by Fyodor and published in Phrack Issue 51 in 1997. The tool is command line although a number of GUIs exist. nmap runs on a variety of platforms including Linux, *BSD, Windows, and others. Read more.

hping

port scanning, denial of service, backdoor, covert channel, hping, host discovery, os fingerprinting

hping is a TCP/IP packet forging tool with embedded Tcl scripting functionality. Developed by antirez in 1998, it is now in its 3rd release. The tool runs on all major operatings systems including Linux, *BSD, and Windows. Read more.

tor

tor control protocol

tor

Tor implements a highly customizable control protocol which can be used to tune almost all aspects of its operation. In this article you will learn how to fine tune Tor client's operation, query runtime information, as well as create circuits of arbitrary size. Read more.

cryptography tls/ssl

tls and ssl cipher suites

tls, cipher suites, ssl

TLS/SSL protocols support a large number of cipher suites. A cipher suite is a collection of symmetric and asymmetric encryption algorithms used by hosts to establish a secure communication. Supported cipher suites can be classified based on encryption algorithm strength, key length, key exchange and authentication mechanisms. Some cipher suites offer better level of security than others (e.g. Several weak cipher suites were developed for export to comply with US export law). There are more than 200 known cipher suites. Read more.

stunnel

tls, ssl

Stunnel allows a user to tunnel any TCP based application protocol through a connection secured by TLS/SSL. Read more.

openssl

tls, ssl, openssl

OpenSSL is an open-source TLS/SSL toolkit implemented for a variety of platforms. In this article you will learn several openssl client and server commands useful in working with TLS/SSL protocol. Read more.

decrypting tls/ssl traffic with wireshark

tls, ssl, wireshark

Wireshark is capable of decrypting TLS/SSL traffic. This article will discuss the required conditions necessary for the decryption and walk you through the exact steps. Read more.

tls/ssl protocol

tls, ssl

Transport Layer Security (TLS) and Secure Sockets Layer (SSL) are two closely related protocols designed to protect confidentiality and integrity of data in transit between two hosts. Read more.

cryptography password cracking

john the ripper

sha, ntlm, des, password cracking, md5

John the Ripper is a multi-platform password cracking tool. Read more.

telephony

telephony tones

wardialing, tone detection

This article lists known tones that occur on the telephone line. Tones include the ones generate by the phone company, consumer products (e.g. answering machines, faxes, etc.), dialup services, etc. Read more.

oracle

oracle authentication

oracle

Oracle Authentication process requires users to provide correct username, password, database hostname, and instance name (SID). Read more.

oracle default ports

oracle, ports

Oracle Database is a complex system requiring a large number of services running on a single system. This article attempts to enumerate common Oracle services and associated network ports found on live systems. Read more.

oracle tns protocol

oracle

Oracle's proprietary TNS (Transparent Network Substrate) protocol is used to interact with Oracle's RDBMS. In this article you will learn about different TNS packet types and their structure. Read more.

oracle database commands

oracle, sql

Useful Oracle PL/SQL commands: Read more.

oracle rdbms

oracle

Oracle Database or RDBMS (Object-Relational Database Management System) is a complex system for storage and retrieval of relational data. In this article you will learn the basic architecture of the Oracle Databases as well as common attacks against it. Read more.

oracle tns listener

oracle

Oracle Listener serves as a main communication point for the database. It provides necessary abstraction to host's transport protocols in order to allow Oracle's higher level session protocols to function across multiple platforms. This article covers different commands used to interact with the TNS Listener as well as common attacks against it. Read more.