Investigation of Threats for Common Network Attacks
Keywords:
Information Security, Network Security, Ethical HackingAbstract
Security in computer networks and Internet have serious implications in today’s dynamic work environment. Therefore, security mechanisms and policies must be followed and studied continually by investigating the techniques and sophisticated tools for protecting assets of essential network security, which is always required and important for any organization to maintain the confidentiality, integrity and to ensure availability of data. In this context, computer networks needed to be tested and audited against any possible attacks and analyzing the existing vulnerabilities. In this paper, we propose a penetration testing model to evaluate and analyze the vulnerabilities and weaknesses of four VMware workstations. We have studied and implemented three attacks using nmap, nessus, and metasploit tools were. The studied attacks include denial of service, backdoor, and man in the middle. The obtained results showed that vulnerabilities were exist in Windows 8, Windows 10, and Windows XP, and hence the proper countermeasures were found and reported to keep such systems secure.
References
[1] Purna Chandra Sethi and Prafulla Kumar Behera, “Methods of Network Security and Improving the Quality of Service – A Survey”, IJARCSSE, Volume 5, Issue 7, July 2015.
[2] Richard R. Linde, ''Operating system penetration". In Proceedings of the May 19-22, 1975, national computer conference and exposition, AFIPS ’75, pages 361–368, New York, NY, USA, 1975. ACM.
[3] K. Xynos, I. Sutherlan, H. Read, E. Everitt, and J C A. Blyth. "Penetration testing and vulnerability assessments: A professional approach". In Proceedings of the 1st International Cyber Resilience Conference. Edith Cown University, Perth, Western Australia, SECAU - Security Research Centre, 2010.
[4] Nishant Shrestha, "Security Assessment via Penetration Testing; A Network and System Administrator's Approach", Master, DoI, OSLO, 2012.
[5] Robert W. Beggs, "Mastering Kali Linux for Advanced Penetration Testing", UK: Packt Publishing Ltd, 2014.
[6] James Broad and Andrew Bindner, "Hacking with Kali". First edition. USA: Steve Elliot, 2014.
[7] "Tenable Network Security”. http://www.nessus.org/expertresources/ Videos. [Accessed on Nov 25, 2018].
[8] Purna Chandra Sethi and Prafulla Kumar Behera, "Methods of Network Security and Improving the Quality of Service – A Survey", IJARCSSE, Volume 5, Issue 7, July 2015.
[9] Georgi Weidman, "Penetration Testing A Hand-on Introduction to Hacking". San Francisco: William Pollock, 2014.
Downloads
Published
Issue
Section
License
Copyright (c) 2020 Journal of Electrical and Electronic Engineering and Information Technology

This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License.
