Module 2 part 1 Flashcards
Denial of Service & Social Engineering
What is Denial of Service (DoS) ?
- prevent legitimate users from accessing a resource, e.g., server.
- not obtaining sensitive information.
- The objective is to disable the system
Why is DoS considered “nasty”?
- One of the easiest attacks to launch
- Hard to trace the attacker
- Distributed DoS
What are the current and early motives of DoS attack?
Early DoS attacks largely proofs of concept or pranks.
Current : Recognition Political Competitive edge Extortion
What are the 6 classification of DoS attacks ?
VSSSDP
- volume
- source
- symmetry
- direction
- state change
- protocol layer
what are the examples of DoS attack by volume?
- Flooding DoS Attack large volume
- Logic DoS Attack low volume
What is flooding DoS attack ?
- overwhelm a system by sending a flood of real- looking but unnecessary data so that its resources are consumed
- bandwidth
- processing power
- memory capacity
- Network connections
What is logic DoS attack?
- exploit the vulnerabilities of the target intelligently, e.g alter the configuration of a router or access point to disable the system.
What is single source DoS attack?
- single connection to flood target or logic attack.
eg. low orbit ion canon
What is Distributed DoS (DDoS) attack ?
- multiple source simultaneously
- deploy botnets, malware or UDP servers.
What is symmetric DoS attack?
- the amount of resource required by the attacker matches the amount of resource flood the server.
e. g needs 1Gbps attacker generate 1Gbps
What is asymmetric DoS attack ?
- resource used are much less from the attacker than the victim.
e. g reflective Dos attack.
What is direct DoS attack ?
- attack directly from hacker’s machine
What is Reflective DoS attack?
- use intermediary devices to deliver attack traffic.
- Source IP address = Victim Server’s IP address
What is reflective and amplified DoS attack ?
- attack traffic is amplified by the intermediary devices.
- size of response packets is larger
What is permanent DoS attack?
- disable system permanently
- destroy firmware
- PDoS