Investigation of Threats for Common Network Attacks

المؤلفون

  • Haytham F. Dhaw College of Electronic Technology Bani walid, Libya Author
  • Abdelsalam Almarimi Higher Institute of Engineering Technologies, Bani walid, Libya Author
  • Alhadi A. Alajeili Misrata IT Services Company, Tripoli, Libya Author

الكلمات المفتاحية:

Information Security، Network Security، Ethical Hacking

الملخص

Security in computer networks and Internet have serious implications in today’s dynamic work environment. Therefore, security mechanisms and policies must be followed and studied continually by investigating the techniques and sophisticated tools for protecting assets of essential network security, which is always required and important for any organization to maintain the confidentiality, integrity and to ensure availability of data. In this context, computer networks needed to be tested and audited against any possible attacks and analyzing the existing vulnerabilities. In this paper, we propose a penetration testing model to evaluate and analyze the vulnerabilities and weaknesses of four VMware workstations. We have studied and implemented three attacks using nmap, nessus, and metasploit tools were. The studied attacks include denial of service, backdoor, and man in the middle. The obtained results showed that vulnerabilities were exist in Windows 8, Windows 10, and Windows XP, and hence the proper countermeasures were found and reported to keep such systems secure.

المراجع

[1] Purna Chandra Sethi and Prafulla Kumar Behera, “Methods of Network Security and Improving the Quality of Service – A Survey”, IJARCSSE, Volume 5, Issue 7, July 2015.

[2] Richard R. Linde, ''Operating system penetration". In Proceedings of the May 19-22, 1975, national computer conference and exposition, AFIPS ’75, pages 361–368, New York, NY, USA, 1975. ACM.

[3] K. Xynos, I. Sutherlan, H. Read, E. Everitt, and J C A. Blyth. "Penetration testing and vulnerability assessments: A professional approach". In Proceedings of the 1st International Cyber Resilience Conference. Edith Cown University, Perth, Western Australia, SECAU - Security Research Centre, 2010.

[4] Nishant Shrestha, "Security Assessment via Penetration Testing; A Network and System Administrator's Approach", Master, DoI, OSLO, 2012.

[5] Robert W. Beggs, "Mastering Kali Linux for Advanced Penetration Testing", UK: Packt Publishing Ltd, 2014.

[6] James Broad and Andrew Bindner, "Hacking with Kali". First edition. USA: Steve Elliot, 2014.

[7] "Tenable Network Security”. http://www.nessus.org/expertresources/ Videos. [Accessed on Nov 25, 2018].

[8] Purna Chandra Sethi and Prafulla Kumar Behera, "Methods of Network Security and Improving the Quality of Service – A Survey", IJARCSSE, Volume 5, Issue 7, July 2015.

[9] Georgi Weidman, "Penetration Testing A Hand-on Introduction to Hacking". San Francisco: William Pollock, 2014.

التنزيلات

منشور

2020-07-01

كيفية الاقتباس

[1]
H. F. Dhaw, A. Almarimi, و A. A. Alajeili, "Investigation of Threats for Common Network Attacks", JEEEIT, م 1, عدد 1, ص 7–12, يوليو 2020, تاريخ الوصول: 18 يوليو، 2026. [مباشر على الإنترنت]. موجود في: https://jeeeit.com/index.php/jeeeit/article/view/16

المؤلفات المشابهة

يمكنك أيضاً إبدأ بحثاً متقدماً عن المشابهات لهذا المؤلَّف.