1st Edition
Network Attacks and Defenses A Hands-on Approach
Switch’s CAM Table Poisoning Attack
Lab 1.1: Switch’s CAM Table Poisoning
Lab 1.2: Prevention of CAM Table Poisoning Attack
ARP Cache Poisoning-Based MiM and DoS Attacks
Lab 2.1: ARP Cache Poisoning Attack
Lab 2.2: DoS Attack Based on ARP Cache Poisoning
Lab 2.3: MiM Attack Based on ARP Cache Poisoning
Abnormal ARP Traffic Detection and Prevention
Lab 3.1: Abnormal ARP Traffic Detection
Lab 3.2: Abnormal ARP Traffic Prevention Using Dynamic ARP Inspection for a Non-DHCP Network Environment
Lab 3.3: Abnormal ARP Traffic Prevention Using Dynamic ARP Inspection and DHCP
Snooping for a DHCP Environment
Network Traffic Sniffing and Promiscuous Mode Detection
Lab 4.1: Promiscuous Mode Detection
IP-Based Denial-of-Service Attacks
Lab 5.1: Land Attack
Lab 5.2: SYN Flood Attack
Lab 5.3: Teardrop Attack
Lab 5.4: UDP Flood Attack
Lab 5.5: Abnormal IP Packets
Reconnaissance Traffic
Lab 6.1: IP Address Sweeping
Lab 6.2: TCP Port Scanning
Lab 6.3: Remote Operating System Identification
Lab 6.4: Traceroute
Packet Filtering and Inspection
Lab 7.1: Basic Packet Filtering
Lab 7.2: Nonstandard Services Filtering
Lab 7.3: Consistency and Efficiency Verification of Firewall Filtering Rules
Lab 7.4: Packet Content Filtering
Lab 7.5: Stateless versus Stateful Packet Filtering
Lab 7.6: Active and Passive FTP Modes
Router Security
Lab 8.1: AAA Model Basics
Lab 8.2: Secure Network Services
Lab 8.3: Packet Filtering on a Border Router
Site-to-Site VPN Tunnel Implementation against Eavesdropping Attacks
Lab 9.1: Site-to-Site VPN — First Implementation
Lab 9.2: Site-to-Site VPN — Second
Implementation
Remote Access VPN Tunnel Implementation against Eavesdropping Attacks
Lab 10.1: Remote Access VPN — First Implementation
Lab 10.2: Remote Access VPN — Second Implementation
Index
Biography
Zouheir Trabelsi and Kadhim Hayawi are with United Arab Emirates University.
