Category: Network Security

Read about how security administrators protect their networks .

PenTest Edition: Creating an Evil Twin or Fake Access Point Using Aircrack-ng and Dnsmasq [Part 1 – Setup]

thecybersecurityman on 11 Aug 2018

Before I start, I hope you already have a great understanding of 802.11 networks! A "Fake Access Point (AP)" is a type of wireless network attack in which an attacker uses software to create a malicious AP that is live and broadcasting out to wireless clients. Fake APs are rogue, and often times, the Service ...

Category: Hacking, Network Security, Networking Topics, Software Topics, Threats & Vulnerabilities, Tutorials

PenTest Edition: Evade Detection Using Tor and Proxy Chains

thecybersecurityman on 8 Aug 2018

"Goodluck, I'm behind 7 proxies." Hackers (or at least good hackers) hide their IP address so they can evade detection from security admins or security system logs, such as firewalls and Intrusion Detection Systems. Every time we send information out on the Internet from our computers, each packet contains an IP header, which stores the ...

Category: Hacking, Network Security, Tutorials

PenTest Edition: Using “theHarvester” to Gather E-mail accounts, Subdomains, Hosts, LinkedIn Users, Banner Information, and More!

thecybersecurityman on 1 Aug 2018

theHarvester is a neat information-gathering tool used by both ethical and non-ethical hackers to scrape up emails, subdomains, hosts, employee names, open ports, and banners from different public sources like popular search engines, PGP key servers, and the Shodan database. This program is particularly useful during the reconnaissance phase of gathering Open Source Intelligence (ONSIT). The ...

Category: Hacking, Network Security, Software Topics, Tutorials

An Intermediate-level Discussion on Network Switches

thecybersecurityman on 18 Jul 2018

A "switch" is a Data Link (layer 2) device responsible for receiving, processing, and forwarding network traffic based on destination MAC addresses. Modern day switches are "smart" and manageable, either from a web console or a command-line interface (CLI). Due to the fact that they break apart collision domains, eliminate collisions, provide full-duplex communication, and ...

Category: Network Security, Networking Topics

The Recent 4G LTE Network Vulnerabilities and Attacks

thecybersecurityman on 5 Jul 2018

In this blog post, I'll discuss the design and operation of a 4G LTE network. In hindsight, I realize topics such as these can get extremely lengthy. For that reason, I'll limit this discussion down to only the necessary technical details required to understand these new LTE attacks, while excluding any complicating, non-essentials. These new ...

Category: Access Control, Authentication, & Identity Management, Application, Data, & Host Security, Cryptography, Cyber Attacks, Cybersecurity News, Hacking, Network Security, Networking Topics, Software Topics, Technology, Threats & Vulnerabilities