Tunnels are a way to circumvent security devices, and can be a way to upload a backdoor program. Lisa Bock covers some ways to reduce the threat of tunnels such as closing unnecessary ports and services, monitor traffic destined for port 80, use application proxy firewalls, and intrusion detection systems.
- [Voiceover] Tunnels bypass most firewall…and proxy restrictions by creating a path…through the firewall to communicate with remote hosts.…This can pose a serious threat.…Companies invest a great deal to provide…data loss prevention plans,…however, tunnels are a way to circumvent this…in that someone could upload a backdoor program.…Seek to reduce the threat of tunnels.…One thing you can do is allow only pre-approved software.…
It's really even best if it's only installed…by the administrator or network specialist.…In addition, the group policy object…can be set to not allow any software installations.…Close any unnecessary ports and services…and use anti-virus and anti-malware programs.…Now detecting HTTP tunnels is not impossible,…but it's really important to understand…normal packet size.…
Packets sent by a client to a website are generally small.…In addition, they're not generally a persistent connection.…So monitor, tune your devices to monitor…for lengthy connections using port 80…as this may indicate an HTTP tunnel.…
This course investigates the scanning tools and techniques used to obtain information from a target system, including specially crafted packets, TCP flags, UDP scans, and ping sweeps. Lisa Bock discusses how hackers can identify live systems via protocols, blueprint a network, and perform a vulnerability scan to find weaknesses. She also introduces some of the tools and techniques that hackers use to counter detection via evasion, concealment, and spoofing. In addition, learn how to reduce the threat of tunneling, a method hackers use to circumvent network security.
Note: Our Ethical Hacking series maps to the 18 parts of the EC-Council Certified Ethical Hacker (CEH) exam (312_50). This course maps to the 03 Scanning Networks domain.
- Scanning overview
- Port scanning countermeasures
- Scanning and querying DNS
- Scanning with ICMP
- Mapping (or blueprinting) a network
- Scanning for vulnerabilities
- Using tools such as hping and NetScan
- Evading detection
- Concealing your network traffic
- Preventing tunneling
Skill Level Intermediate
1. Scanning Overview and Methodology
2. Identifying Live Systems Using Protocols
3. Blueprint the Network
4. Vulnerability Scanning
Commercial and free scanners3m 17s
5. Scanning Tools
6. Evading Detection
7. Concealing and Spoofing
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.