HTTP Tunneling uses plain text, and will risk exposure of any activity sent to the target server. Lisa Bock discusses SSH tunnels, used to reduce the risk of firewall blocking and protect you against eavesdropping. Review local port forwarding and dynamic port forwarding along with Putty, a program used to set up a local SSH tunnel.
- [Voiceover] HTTP tunneling uses plain text,…and will risk exposure of any activity…sent to the target server.…To reduce the risk of firewall blocking,…and protect you against eavesdropping,…use an SSH tunnel.…Secure Shell is a protocol that uses encryption…to provide confidentiality,…host-based authentication,…and integrity protection.…An SSH tunnel is a way to bypass firewalls…that restrict access to outside servers.…
If, when accessing outside content,…users are required to pass through a proxy filter,…they can circumvent this…by connecting to an external SSH server…and create an SSH tunnel…to forward a given port on their local machine…to port 80 on a remote server.…An SSH tunnel uses port fowarding,…therefore, port fowarding must be enabled on the server.…Local port fowarding is the most common type,…and allows you to bypass a company's firewall…that blocks certain webpages.…
Connections from the client are fowarded by the SSH server…and then to a destination server.…Dynamic port forwarding uses socks chaining.…
This course investigates the scanning tools and techniques used to obtain information from a target system, including specially crafted packets, TCP flags, UDP scans, and ping sweeps. Lisa Bock discusses how hackers can identify live systems via protocols, blueprint a network, and perform a vulnerability scan to find weaknesses. She also introduces some of the tools and techniques that hackers use to counter detection via evasion, concealment, and spoofing. In addition, learn how to reduce the threat of tunneling, a method hackers use to circumvent network security.
Note: Our Ethical Hacking series maps to the 18 parts of the EC-Council Certified Ethical Hacker (CEH) exam (312_50). This course maps to the 03 Scanning Networks domain.
- Scanning overview
- Port scanning countermeasures
- Scanning and querying DNS
- Scanning with ICMP
- Mapping (or blueprinting) a network
- Scanning for vulnerabilities
- Using tools such as hping and NetScan
- Evading detection
- Concealing your network traffic
- Preventing tunneling
Skill Level Intermediate
1. Scanning Overview and Methodology
2. Identifying Live Systems Using Protocols
3. Blueprint the Network
4. Vulnerability Scanning
Commercial and free scanners3m 17s
5. Scanning Tools
6. Evading Detection
7. Concealing and Spoofing
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.