Themenabend/Firewall Piercing: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
K (not cookbook) |
Keine Bearbeitungszusammenfassung |
||
Zeile 7: | Zeile 7: | ||
| Firewall Intro (Ausarbeitung, Vortrag zusammen) | | Firewall Intro (Ausarbeitung, Vortrag zusammen) | ||
|- | |- | ||
|hiding stuff in ip headers | | hiding stuff in ip headers | ||
| ip and ssh tunnel | | ip and ssh tunnel | ||
|- | |- | ||
|- | |- | ||
| | | open connections from outside | ||
| http,https,http-header | | http,https,http-header | ||
|- | |- | ||
Zeile 50: | Zeile 50: | ||
** [[http://www.synacklabs.net/projects/stegtunnel/ Stegtunnel]] | ** [[http://www.synacklabs.net/projects/stegtunnel/ Stegtunnel]] | ||
* opening connections from outside | |||
** send IP with IP/port into protected net (ping), | |||
pinged host opens connection out | |||
** guessing Syncookies | |||
more to come ... | more to come ... |
Version vom 27. November 2004, 12:19 Uhr
Caldrin | Alien8 |
---|---|
ICMP-Tunnel | Firewall Intro (Ausarbeitung, Vortrag zusammen) |
hiding stuff in ip headers | ip and ssh tunnel |
open connections from outside | http,https,http-header |
DNS-tunnel (mit Verweis auf DNS-Vortrag) |
Contents
- short Intro to Firewalls
- Packetfilter
- stateless
- stateful
- NAT (IP header recalculation, CRC checks ...)
- Application Layer Gateway
- Packetfilter
- Basics
- nc / cryptcat
- the art of hiding (backpacking your data)
- Tunnel
- ip tunnel (incl. Why TCP over TCP is a bad idea)
- ssh tunnel
- Tunnel
- Simple Examples of tunnel
- HTTPS-Tunnel (connect)
- Http-Tunnel (GET / POST)
- Web-Shell
- Advanced Examples
- HTTP header
- ICMP-Tunnel
- DNS-Tunnel
- hiding stuff in ip headers
- different networking protocols
- E-Mail tunnel
- [Stegtunnel]
- opening connections from outside
- send IP with IP/port into protected net (ping),
pinged host opens connection out
- guessing Syncookies
more to come ...
Storyline
Introduction
- Welcome ... Thanx for comming ... In Aug we did TA for c3d2 about Firewalls, Got interested in that topic or some joke
- What is a firewall?
- Packetfilter
- stateless
- stateful
- NAT (IP header recalculation, CRC checks ...)
- Application Layer Gateway
- Packetfilter
If you believe in those systems giving you the perfect protection: Don't waste your time! Good bye!
- What we are going to show:
- To circumvent firewalls one has to be creative ... find a hole in the set-up, exploit it! Enjoy!
- We show you:
- Don't expect a cook book!
- We're going to show some basic techniques and tools
- some examples will show how to use them