Please enable JavaScript.
Coggle requires JavaScript to display documents.
Incidents (Ch.17) (Responding (IDS Intrusion Detection System (know attack…
Incidents (Ch.17)
Responding
IDS Intrusion Detection System
know attack method
Knowledge based/ Signature-based/ pattern matched
Behavior-based/ statistical / anomaly / heuristic
Preventing
Understanding Attacks
Dos: Denials-of-Service
Smurf
ICMP Flood Victim IP
Source IP Spoofing
Destination IP Broadcast
Fraggle
Similar to smurf but use UDP packet
UDP Port 7, 19
SYN Flood Attack
Ping of Death
Over size ping backer > 64KB
Cause buffer overflow
Teadrops
small packets systems couldn't assemble back
Only receiving system know how to put them back
system updated with patches not susceptible
IDS capable checking malformed packets