Professional Documents
Culture Documents
End-to-End Delivery
Properties Reliability
ID 0 (Root)
Flow and Sequence Control
ID 1-100 (System)
User Identifier (UID) Retransmissions
ID 500/1000 (User)
Source Port Destination Port
/etc/passwd
Accounts Sequence Number
ID 0 (Root)
Acknowledgement Number
ID 100 (Users Group)
Group Identifier (GID) Synchronize (SYN)
ID 1000 (User)
Acknowledgement (ACK)
/etc/groups Linux Basics
Segment Reset (RST)
id Offset, Reserved, Window, Flags
Finish (FIN)
uname Transmission Control Protocol (TCP)
Push (PSH)
finger
Commands Urgent (URG)
rpcinfo
Checksum, Options, Padding
rpcclient
Data
showmount
SYN, SeqA
Identifies User, Group and Computer
3-Way Handshake SYN ACK, SeqA+1, SeqB
Accounts
ACK, SeqB+1, SeqA
S-1-5-21-X-Y-Z-500 (Local Administrator RID 500)
Security Identifier (SID) netstat Netscan Tools
S-1-5-21-X-Y-Z-501 (Guest RID 501)
lsof Ostinato
S-1-5-21-X-Y-Z-1000 (Local User RID 1000+)
Rights and Permissions Tools netcat WAN Killer
Portion of SID Resource Identifier (RID)
telnet LANForge Fire
Resources Access Permissions
Ncat Colasoft Packet Builder
System Tasks Allowed User Rights
Microsoft Windows Basics
Connectionless
C:\Windows\System32\Config\SAM Passwords
16 bit Headers
net user
User Datagram Protocol (UDP)
Source Port
net view Commands
Destination Port
systeminfo Segment
Length
nmap -PI Ping
Checksum
nmap -Pn / -P0 No Ping
Data
nmap -PE
Unicast One-to-One
ECHO Request (Type 8) ECHO Networking Multicast One-to-Many (Group)
ECHO Reply (Type 0)
ICMP Ping Types One-to-All
nmap -PP Timestamp
Host Discovery 255.255.255.255
nmap -PM Address Mask Limited
Broadcast FF:FF:FF:FF:FF:FF
Types
nmap -sL Reverse DNS Lookup List Scan Directed 192.168.1.255 192.168.1.0/24
nmap -PS TCP SYN Ping Subnetting IPv4 Address All Host Bits = 1
nmap -PY SCTP INIT Ping Network Identifier All Host Bits = 0
Superscan Hping3
Tools
Advanced IP Scanner Scapy
MegaPing Cain
Maintaining Acces
Covering Tracks