This video covers the second part of section one dot to compare and contrast different types of attacks for the Company of Security plus exam.
In this video, I'll be talking about application and service attacks
on your screen. You see the many types of attacks that can occur and breach our information and data systems.
In this video, I'll be talking about application and service attacks such as buffer overflow, cross site scripting, cross site request for forgery, privilege escalation, injections, etcetera.
Also be talking about some cryptographic attack such as birthday greenbow tables, brute force and past the hash
application. Vulnerabilities are unknown. Threat vector in on your screen. You see some of the common types of attacks will be talking about each of these over the next few minutes.
A WASP is considered the authoritative source to understand about the top 10 applications security risks.
See a wasp dot org's for more information.
You see the list on your screen. It's very similar to the list that's also mentioned by security, plus
the first type of application attack. I'll discuss our buffer overflows.
This is a type of injection attack where more data is input through a field.
I think the buffer can hold. It's like trying to fill a bucket too full.
Any of the water that spills out is then executed. Any of the code that goes beyond the buffer could then be executed by the operating system. It's an anomaly. Were program while writing data to a registry or buffer overruns, the buffers boundaries and over its adjacent memory locations,
causing the breach.
The second form of application attack is injection that occurs when untrusted data is sent to an interpreter as a part of a command
or a query. Most common fall into the following categories using escape characters, not filter correctly type handling. Not properly done. Conditional errors and timing delays.
Way to defend this attack is to filter your input.
See the later video where I talk about how to protect Web applications.
Common examples of injection and tax include sequel injection
operating system injection, L DAP against the directory and XML injection.
Cross site scripting occurs whenever an application includes untrusted data and a new Web page without proper validation for escaping
You see an example on your screen.
Cross site request. Forgery. CSR F is an attack that forces an end user toe. Execute unwanted actions on a Web application.
Also known as a session writing or one click attack
privilege. Escalation is a form of pivoting attack.
The attacker will breach the system, having bear authentication writes their privileges
and then they try to gain further privileges, such as administrator or route were the privilege that is running a particular application.
It's the act of exploiting a bug design flaw or configuration oversight in the operating system. Application or software.
Begin elevated access to resources that are normally protected from that application or user.
How do we protect against thes application attacks
on your screen? You see some good ideas.
First of all, follows from good coding practices.
Goto a wasp and see their directions.
Worked with your application development team to make sure they learn good coding practices as well.
Filter and validate any input, any input that could come from an untrusted source. Anyone on the Internet should be filtered and validated. Basically, don't trust input.
Use a Web application firewall. A laugh, which is a specific device that scrubs for any unwanted data based on heuristics, anomalies or signatures.
You just want to build security into the software development life cycle,
lastly, have an instant response plan in place.
For one, that inevitable bad thing happens.
A zero day exploit is a type of an attack against a previously unknown security vulnerability.
It may take advantage of a security vulnerability on the same day that vulnerability becomes generally known. It's zero day because there's zero time to get the vulnerability fixed before it's announced.
Best known example, ISS stuxnet was the worm that took out nuclear generators.
Prevention for zero days include defense in depth,
staying up to date on patches and keeping your anti virus up to date.
There are other types of attacks you should be aware of, such as Impersonating, masquerading and relay attacks per person. A shin is the act of pretending to be someone or getting something to gain unauthorized access to a system. The prevention against these attacks are token authentication, such as using curb rose,
multi factor and two factor authentication,
and sequenced session identification.
Driver manipulation is another form of attack.
Drivers are the programs that control devices such as printers, media, keyboards, mice, et cetera.
Drivers are normally signed.
If you trust a driver from a source, he shouldn't
and it could lead to a breach onto your system.
Shaming is creating a library or modifying an existing one toe, bypass a driver and perform a function other than the one for which the AP I was created.
Re factoring is a type of driver of manipulation.
It's a set of techniques used to identify the flow and then modify the internal structure of code without changing the codes. Visible behavior.
Be familiar with these forms of driver manipulation and ways to secure against them.
There are numerous cryptographic attacks you should know
if you're not familiar with cryptography.
Reference. Domain six of the Company of Security Plus exam,
The first cryptographic attack our birthday attacks.
I kind of like two people having the same birthday. It's a one and 13 chance birthday attack. It's an attack against a cryptographic hash that looks for hash collisions,
exploiting the oneto, one nature of hashing function.
And if you're not familiar with hashing for two Section six,
a known plain text cipher text attack is when an attacker attempts to derive a cryptographic key by using pairs of known plane tax along with the corresponding cipher text.
So I have cipher text. I have the plain text. I might be able to determine what that key is.
A frequency analysis. Tak is looking at blocks of the encrypted message to determine if there any common patterns. So you're seeing multiple letters. Maybe they're not using assault.
We're not familiar with salt and check out section Six
Other types of cryptographic attacks include password attacks, such as a dictionary
attack, where you're systematically entering every word from the dictionary as a password.
Wait, a defeated is Don't use dictionary words as your password
brute force. It systematically attempted all possible combinations of letters, numbers and symbols. This is usually automated
rainbow tables that is all possible. Password hash is that air computed in advance?
The last cryptographic attack against passwords is past the hash.
It's where an attacker attempts to authenticate to remote server or service by intercepting password. Hash is on the network. See your study material for more information on these and other types of cryptographic attacks against passwords.
Let's practice on another sample quiz question
during a breach investigation, you noticed that the attacker entered the database through a Web front end application by manipulating the data base code to exploit a vulnerability.
What is the most likely name for this type of attack?
The answer is.
sequel injection. This is a form of injection attack against back in databases.
Which of the following types of attack is the result of software vulnerabilities and is caused by supplying more data than is expected in an input field?
The answer is
a buffer overflow attack.
This is basically the definition for buffer overflows. Question three,
which form of attack uses special programs that attempt all possible character combinations to determine password.
The answer is
brute force attack.
This is the definition.
This concludes Part two of section one dot to compare and contrast different types of attacks.
In this video, I talked about application service and cryptographic attacks