Français
1. Mapping the network
First of all, the intruder needs to get an idea of what he's about to attack in order to select his targets. From his point of view, the network he wants to attack is no more than a subnet, with only a certain number of addresses in use. While the intruder can exploit information provided by public services such as the Domain Name Service (DNS) to obtain a few addresses that are definitely in use, he can't be sure of the rest, so he has to find the information himself. This can be done by scanning the target network.
1.1 Network scan
There are various techniques for scanning a target network. These are of course more or less unobtrusive, and therefore detectable by any protection mechanisms.
The Ultimate Scientific and Technical Reference
This article is included in
Security of information systems
This offer includes:
Knowledge Base
Updated and enriched with articles validated by our scientific committees
Services
A set of exclusive tools to complement the resources
Practical Path
Operational and didactic, to guarantee the acquisition of transversal skills
Doc & Quiz
Interactive articles with quizzes, for constructive reading
Mapping the network
Retrieve information, modify network behavior
Bibliography
Requests For Comments
Standard
- Information Technology – Telecommunications and information exchange between systems – Local and metropolitan networks – Common specifications – Part 3: Media access control bridges - ISO/IEC 15802-3 - 1998
Website
The Unofficial 802.11 Security Web Page http://www.drizzle.com/~aboba/IEEE
Tools
Taranis http://www.bitland.net/taranis
WEPCrack http://wepcrack.sourceforge.net
Macof http://security.royans.net/info/rawip/code/macof.shtml
...Organizations
Lawrence Berkeley National Laboratory's Network Research Group http://www-nrg.ee.lbl.gov
Computer Emergency Response Team – Industrie Services et Tertiaire (CERT-IST) http://www.cert-ist.com
Internet Assigned Numbers Authority (IANA)...
The Ultimate Scientific and Technical Reference
