Explore domain name system, an essential protocol that services every internal and external network. Lisa Bock discusses DNS, and security weaknesses that can be exploited using DNS along with footprinting tools: Whois dig and dnsdumpster, and best practices to ensure the security of the DNS infrastructure.
- [Voiceover] The Domain Name System is an…essential protocol that services every…internal and external network.…Without DNS, we would have a hard time…receiving email, going to webpages,…or because of integration with Active Directory,…doing a device look-up in a network.…Back in the late 1980s, efforts were made…to develop a hierarchy namespace…that provided a distributed database…allowing for local caching and ways to ensure…up to date entries such as time to live value…and a DNS header.…
The root was designed to handle the first couple of steps.…Top-level domain servers ensure another level…to split up the job of country top-level domain…and generic top-level domains until…a resolution is made.…When searching for a domain such as example.com…off the root is dot com, which is the top level domain.…Most of this is done for us using a recursive look-up.…A DNS server comes packaged with a hints file…that had 13 root severs.…
Here, I'm at this webpage where we can see…an example of a roots file.…This file is essential, however,…
This course investigates the scanning tools and techniques used to obtain information from a target system, including specially crafted packets, TCP flags, UDP scans, and ping sweeps. Lisa Bock discusses how hackers can identify live systems via protocols, blueprint a network, and perform a vulnerability scan to find weaknesses. She also introduces some of the tools and techniques that hackers use to counter detection via evasion, concealment, and spoofing. In addition, learn how to reduce the threat of tunneling, a method hackers use to circumvent network security.
Note: Our Ethical Hacking series maps to the 18 parts of the EC-Council Certified Ethical Hacker (CEH) exam (312_50). This course maps to the 03 Scanning Networks domain.
- Scanning overview
- Port scanning countermeasures
- Scanning and querying DNS
- Scanning with ICMP
- Mapping (or blueprinting) a network
- Scanning for vulnerabilities
- Using tools such as hping and NetScan
- Evading detection
- Concealing your network traffic
- Preventing tunneling
Skill Level Intermediate
1. Scanning Overview and Methodology
2. Identifying Live Systems Using Protocols
3. Blueprint the Network
4. Vulnerability Scanning
Commercial and free scanners3m 17s
5. Scanning Tools
6. Evading Detection
7. Concealing and Spoofing
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.