Themenabend/Firewall Piercing: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
Astro (Diskussion | Beiträge) K (IP-protocols = Internet Protocol protocols) |
Vater (Diskussion | Beiträge) K (Vater verschob Seite Themeabend/Firewall Piercing nach Themenabend/Firewall Piercing: fixed typo (damn!)) |
||
| (11 dazwischenliegende Versionen von 3 Benutzern werden nicht angezeigt) | |||
| Zeile 7: | Zeile 7: | ||
| Firewall Intro (Ausarbeitung, Vortrag zusammen) | | Firewall Intro (Ausarbeitung, Vortrag zusammen) | ||
|- | |- | ||
|hiding stuff in ip headers | | hiding stuff in ip headers (incl. stegtunnel) | ||
| ip and ssh tunnel | | ip and ssh tunnel | ||
|- | |- | ||
|- | |- | ||
| | | http-header | ||
| http,https, | | http,https, | ||
|- | |- | ||
| | | open connections from outside | ||
| DNS-tunnel (mit Verweis auf DNS-Vortrag) | | DNS-tunnel (mit Verweis auf DNS-Vortrag) | ||
|- | |- | ||
| | |||
| ACK tunnel | |||
|} | |} | ||
| Zeile 22: | Zeile 24: | ||
* short Intro to Firewalls | * short Intro to Firewalls | ||
** is a concept | |||
** Packetfilter | ** Packetfilter | ||
*** stateless | *** stateless | ||
| Zeile 48: | Zeile 51: | ||
** different networking protocols | ** different networking protocols | ||
** E-Mail tunnel | ** E-Mail tunnel | ||
** ACK-Tunnel | |||
** [[http://www.synacklabs.net/projects/stegtunnel/ Stegtunnel]] | |||
* opening connections from outside | |||
** send IP with IP/port into protected net (ping) => pinged host opens connection out | |||
** guessing Syncookies | |||
more to come ... | more to come ... | ||
| Zeile 65: | Zeile 73: | ||
** '' To circumvent firewalls one has to be creative ... find a hole in the set-up, exploit it! Enjoy!'' | ** '' To circumvent firewalls one has to be creative ... find a hole in the set-up, exploit it! Enjoy!'' | ||
** We show you: | ** We show you: | ||
*** some basic techniques and tools | *** Don't expect a cook book! | ||
*** some examples | *** We're going to show some basic techniques and tools | ||
*** some examples will show how to use them | |||
Aktuelle Version vom 17. Juni 2014, 18:55 Uhr
| Caldrin | Alien8 |
|---|---|
| ICMP-Tunnel | Firewall Intro (Ausarbeitung, Vortrag zusammen) |
| hiding stuff in ip headers (incl. stegtunnel) | ip and ssh tunnel |
| http-header | http,https, |
| open connections from outside | DNS-tunnel (mit Verweis auf DNS-Vortrag) |
| ACK tunnel |
Contents
- short Intro to Firewalls
- is a concept
- Packetfilter
- stateless
- stateful
- NAT (IP header recalculation, CRC checks ...)
- Application Layer Gateway
- Basics
- nc / cryptcat
- the art of hiding (backpacking your data)
- Tunnel
- ip tunnel (incl. Why TCP over TCP is a bad idea)
- ssh tunnel
- Tunnel
- Simple Examples of tunnel
- HTTPS-Tunnel (connect)
- Http-Tunnel (GET / POST)
- Web-Shell
- Advanced Examples
- HTTP header
- ICMP-Tunnel
- DNS-Tunnel
- hiding stuff in ip headers
- different networking protocols
- E-Mail tunnel
- ACK-Tunnel
- [Stegtunnel]
- opening connections from outside
- send IP with IP/port into protected net (ping) => pinged host opens connection out
- guessing Syncookies
more to come ...
Storyline
Introduction
- Welcome ... Thanx for comming ... In Aug we did TA for c3d2 about Firewalls, Got interested in that topic or some joke
- What is a firewall?
- Packetfilter
- stateless
- stateful
- NAT (IP header recalculation, CRC checks ...)
- Application Layer Gateway
- Packetfilter
If you believe in those systems giving you the perfect protection: Don't waste your time! Good bye!
- What we are going to show:
- To circumvent firewalls one has to be creative ... find a hole in the set-up, exploit it! Enjoy!
- We show you:
- Don't expect a cook book!
- We're going to show some basic techniques and tools
- some examples will show how to use them