|
Search Tech-Forums - link takes you to our Forum's search page. Note: The following is only a text archive! To view the actual forum discussion, please visit our website at http://www.tech-forums.net Pages:1 CEH: Exam Prep 2 - Technical Foundations of Hacking(Click here to view the original thread with full colors/images)Posted by: office politics [url=http://www.ethicalhacker.net/content/view/50/2/]The Technical Foundations of Hacking[/url] This chapter helps you prepare for the EC-Council Certified Ethical Hacker (CEH) Exam by covering the following EC Council objectives: -Understand the Open Systems Interconnect (OSI) Model OSI is important as it is the basis for describing and explaining how many network services and attacks work. -Have a basic knowledge of the Transmission Control Protocol/Internet Protocol (TCP/IP) and their functionality Many attacks are based on the misuse of the protocols that are part of the TCP/IP suite of protocols. -Describe the TCP packet structure Many scanning techniques make use of the TCP packet and its structure. -Know the TCP flags and their meaning TCP flags control the flow of traffic and are used to illicit information from servers during enumeration. -Understand how UDP differs from TCP UDP is a stateless protocol; understanding how it functions is critical in knowing how it might respond to queries. -Describe application ports and how they are numbered Ports identify applications; although you might not need to know all 65,000, you will need to know some common ones. -Describe how Internet Control Message Protocol (ICMP) functions and its purpose ICMP plays an important role in detecting logical errors and providing diagnostic information. Outline - Introduction The Attacker's Process Performance Reconnaissance Scanning and Enumeration Gaining Access Escalation of Privilege Maintaining Access Covering Tracks and Placing Backdoors The Ethical Hacker's Process National Institute of Standards Technology (NIST) Threat and Risk Assessment Working Guide (TRAWG) Operational Critical Threat, Asset, and Vulnerability Evaluation (OCTAVE) Open Source Security Testing Methodology Manual (OSSTMM) Security and the Stack The OSI Model Anatomy of TCP/IP Protocols Summary Key Terms Apply Your Knowledge Exercises Exam Questions Answers to Exam Questions Suggested Reading and Resources vBulletin Copyright ©2000 - 2003, Jelsoft Enterprises Limited. PPC Management vB Easy Archive Final - Created by Xenon |