The ACK and NACK of Programming - Cloud Object...
Transcript of The ACK and NACK of Programming - Cloud Object...
![Page 1: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/1.jpg)
NFJS Software Symposium Series 2012
Ken Sipe
The ACK and NACK of Programming
![Page 2: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/2.jpg)
Ack & NackAbout Speaker
Developer: Embedded, C++, Java, Groovy, Grails, C#, Objective CSpeaker: JavaOne 2009 Rock Star, NFJS, JAXMicrosoft MCPSun Certified Java 2 ArchitectMaster of Scrums Agile CoachInstructor: VisiBroker CORBA
Rational Rose, OOAD
http://kensipe.blogspot.com/http://del.icio.us/kensipetwitter: @[email protected]
![Page 3: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/3.jpg)
Ack & Nack
How Well Do You Know Your Computer?
3
![Page 4: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/4.jpg)
Ack & Nack
“The network is the computer”
-- John Gage
4
![Page 5: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/5.jpg)
Ack & NackMotivations
n Understand One Abstraction Lower¨ then where you are
n Developer Productivityn Security
![Page 6: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/6.jpg)
Ack & Nack
6
192.168.0.1
![Page 7: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/7.jpg)
Ack & Nack
7
![Page 8: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/8.jpg)
Ack & NackAgenda
n Understanding the Challengesn OSIn Tools of the traden WiFi
![Page 9: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/9.jpg)
![Page 10: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/10.jpg)
![Page 11: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/11.jpg)
![Page 12: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/12.jpg)
Ack & NackNetworking is Hard
n Asynchronousn Bandwidthn Latencyn Service Discovery
![Page 13: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/13.jpg)
Ack & Nack
OSI Model
13
![Page 14: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/14.jpg)
Ack & Nack7 Layers
n Physical Layern Data-Link Layern Network Layern Transport Layern Session Layern Presentation Layern Application Layer
![Page 15: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/15.jpg)
Ack & NackLayers
n Each Layer¨Has a Header
n contains protocol info
¨Has a Bodyn data
¨Wraps the Previous Layern The body of a layer is the head + body of the previous layer
![Page 16: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/16.jpg)
Ack & Nack
![Page 17: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/17.jpg)
Ack & Nack
Hardware
Ethernet Ports
IP
TCP
Socket
![Page 18: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/18.jpg)
Ack & Nack
Point to Point
Host to Host
![Page 19: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/19.jpg)
Ack & Nack
![Page 20: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/20.jpg)
Ack & NackPhysical Layer (Layer 1)
n Cablesn Physical Connections
![Page 21: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/21.jpg)
Ack & Nack
==
promiscuous mode cloaking
![Page 22: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/22.jpg)
Ack & Nack
n Hub¨ extends single LAN
n Bridge / Layer-2 Switch¨ connects 2 or more LANs together¨works a data link layer
n Router / Layer-3 Switch¨ connects any combination of LANs and WANs¨works at network layer
![Page 23: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/23.jpg)
Ack & NackData Link Layer (Layer 2)
n <inter-office mail> relative to postal systemn Media Access Control (MAC) addresses
¨ globally unique address¨ 6 bytes¨ xx:xx:xx:xx:xx:xx¨ 90:27:e4:f8:b5:15
90 27 e4 f8 b5 15{ {vendor code interface serial number
![Page 24: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/24.jpg)
Ack & NackMAC(s)
n Ethernet Header¨ 14 bytes¨ source and destination MAC for this packet
n MAC isn’t intended to change¨ fingerprint of the network
![Page 25: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/25.jpg)
Ack & NackARP
n Address Resolution Protocol (ARP)¨ associates MAC - IP¨ broadcast
n “Hey... Who has IP X?”
n Resolution usually is cached
![Page 26: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/26.jpg)
Ack & Nack
![Page 27: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/27.jpg)
Ack & Nack
n arp tools¨ arp
n arp -an arpon -ln arpon -i wlan0 -D
n mac spoofing¨ ifconfig wlan0 hw ether 00:80:48:BA:d1:30
n arp poisoning¨ arpspoof
n arpspoof -t <router_id> <local_ip>n arpspoof -t <local_ip> <router_id>
¨ ettercap -NaC <router_id> <local_ip>
![Page 28: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/28.jpg)
Ack & Nack
![Page 29: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/29.jpg)
Ack & NackNetwork Layer (Layer 3)
n Internet Protocol (IP)n Protocols
¨ ICMP¨ARP¨RARP
![Page 30: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/30.jpg)
Ack & NackIP
n Internet Protocol (IP)¨ versions:
n IPv4n IPv6
n Form:¨ xx.xx.xx.xx¨ 192.169.0.1 or 10.0.1.1
n Size:¨ 20 bytes
![Page 31: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/31.jpg)
Ack & Nack
n IPv4¨ 32 bits
n private¨ 10.0.0.0 - 10.255.255.255¨ 172.16.0.0 - 172.31.255.255¨ 192.168.0.0 - 192.168.255.255
![Page 32: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/32.jpg)
Ack & NackDatagrams Header
![Page 33: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/33.jpg)
Ack & Nack
n IPv6¨ 128 bits (16 bytes)
n 2001:0db8:3241:0000:0000:9a8f:00c9:952e
¨ leading zeros not written¨ consecutive all-zero groups can be replaced with ::
n 2001:0db8:3241::9a8f:00c9:952e
¨Reservedn ::1/128 (127.0.0.1 in IPv4)
![Page 34: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/34.jpg)
Ack & NackIP
n IP alone does NOT guarantee:¨ connections¨ ensure delivery
![Page 35: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/35.jpg)
Ack & Nack
![Page 36: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/36.jpg)
Ack & Nack
![Page 37: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/37.jpg)
Ack & NackDNS
n Domain Name System¨ resolve host name to IP address (A)¨ resolve an IP address to host name (PTR)¨ find mail servers for domain (MX)¨ find name servers for domain (NS)¨ find host name for IP (AAAA)¨ alias (CNAME)
![Page 38: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/38.jpg)
Ack & NackIP Tools
n ifconfig / ipconfign whoisn pingn dhclient
¨DNS utility
n nslookupn dsniff - DNS Spoofing
¨dnsspoof
![Page 39: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/39.jpg)
Ack & NackWhere in the IP?
n tracerouten netstat -rn zenmap
![Page 40: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/40.jpg)
Ack & NackTransport Layer (Layer 5)
n Major Protocols¨Transmission Control Protocol (TCP)¨User Datagram Protocol (UDP)
n TCP used by:¨HTTP¨ SMTP¨ FTP
![Page 41: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/41.jpg)
Ack & NackUDP
n Less overhead¨ no connection establishment
n more effiecient¨ no guaranteed delivery
n Data reception from more than one machinen apps
¨weather, time, video, games
![Page 42: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/42.jpg)
Ack & NackTCP
n TCP¨Reliable¨Bi-Directional
n Ensures packets are ordered prior to sending to the next layer¨TCP Flags¨ sequence numbers
![Page 43: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/43.jpg)
Ack & NackTCP header
![Page 44: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/44.jpg)
Ack & NackTCP
TCP Flag Meaning Purpose
URG Urgent Important data
ACK Acknowledgement Acks a packet
PSH Push Do not buffer
RST Reset Resets a connection
SYN Synchronize Synchronizes the sequence numbers at the beginning of a connection
FIN Finish Goodbye
![Page 45: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/45.jpg)
Ack & Nack
![Page 46: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/46.jpg)
Ack & NackTCP Tools
n tcpdumpn wireshark
n Note:¨ pcap - packet capture
n libpcapn WinPcap
![Page 47: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/47.jpg)
Ack & NackWireshark
n find top talkers on the netn recognize the most common connection
problemsn spot delays between client requestn detect network congestionn graph application throughputn identify service response times
![Page 48: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/48.jpg)
Ack & Nack
![Page 49: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/49.jpg)
Ack & NackSession Layer
n Ports¨ 64k possible ports¨< 1024 privileged ports
n Well Known (/etc/services)¨ 22 - ssh¨ 25 - smtp¨ 80 - http¨ 443 - https
![Page 50: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/50.jpg)
Ack & NackSocket
n Socket¨ IP¨Port
¨ 192.168.0.1:80
![Page 51: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/51.jpg)
Ack & NackSocket Tools
n lsof¨ lsof -i
n open connections
¨ lsof -i -nn just TCP/UDP
¨ lsof -i :8080n who owns 8080
¨ lsof -u ksipen what owned by ksipe
¨ lsof +p 6565n what all does pid 6565 own
![Page 52: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/52.jpg)
Ack & Nack
![Page 53: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/53.jpg)
![Page 54: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/54.jpg)
![Page 55: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/55.jpg)
Ack & Nacknmap
n nmap -O localhost¨ guess the OS
n nmap -T4 -A localhost¨ agressively scan, at a level 4 (O, sC, traceroute)
![Page 56: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/56.jpg)
Ack & NackSession Tools - Proxy
![Page 57: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/57.jpg)
Ack & NackOther useful tools
n netcat¨$ nc -l 3333¨$ nc 192.168.0.1 3333
n $ ssh -f -L 23333:127.0.0.1:3333 [email protected] sleep 10; nc 127.0.0.1 3333 | pv -b > backup.iso¨ ssh with a port forward¨ copy of file through nc¨ port 3333 firewalled, port 22 open for ssh
![Page 58: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/58.jpg)
Ack & Nack
Wifi
58
![Page 59: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/59.jpg)
![Page 60: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/60.jpg)
![Page 61: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/61.jpg)
Ack & Nack
WiFi
61
Almost impossible to secure
![Page 62: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/62.jpg)
![Page 63: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/63.jpg)
Ack & NackManagement Frame
n Authn De-Authn Association Reqn Association Respn Reassociation Reqn Reassociation Respn Beaconn Probe Requestn Probe Resp
![Page 64: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/64.jpg)
![Page 65: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/65.jpg)
![Page 66: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/66.jpg)
Ack & NackWEP Crack
n In 2007¨ 3 seconds to crack 104-bit WEP key¨ 1.7GHz Pentium M¨< 1 min for data capture
n Today with GPU¨ “fjR8n”
n CPU in 24 sec w/ 9.8 million guesses/secn GPU < one sec w/ 3.3 billion guesses/sec
¨ “fh0GH5h”n CPU ~ 4 daysn GPU ~ 17 mins 30 secs
![Page 67: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/67.jpg)
Ack & NackSecuring your WiFi Access
n Business VPNn TorGuardn Tor Project
¨ https://www.torproject.org/
![Page 68: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/68.jpg)
![Page 69: The ACK and NACK of Programming - Cloud Object …s3-eu-west-1.amazonaws.com/presentations2013/64_presentation.pdf · NFJS Software Symposium Series 2012 Ken Sipe The ACK and NACK](https://reader030.fdocuments.net/reader030/viewer/2022020414/5ba0386f09d3f2da5b8cc6f4/html5/thumbnails/69.jpg)
Ack & NackSummary
n Top Tools¨WireShark¨ nmap¨ lsof¨ netstat¨ routetrace