Scribd
Upload
7K views87 pages

Ethical Hacking Unit 1 - Full Notes

This document discusses an introduction to ethical hacking and network defense course. It covers topics like the differences between hacking and ethical hacking, types of hackers (white hat, black hat, grey hat, etc.), and types of hacking (computer hacking, network hacking). The document is a lecture presented by an instructor to teach students about these core concepts in cybersecurity.

Uploaded by

Dinesh
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
7K views87 pages

Ethical Hacking Unit 1 - Full Notes

This document discusses an introduction to ethical hacking and network defense course. It covers topics like the differences between hacking and ethical hacking, types of hackers (white hat, black hat, grey hat, etc.), and types of hacking (computer hacking, network hacking). The document is a lecture presented by an instructor to teach students about these core concepts in cybersecurity.

Uploaded by

Dinesh
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 87

DEPARTMENT OF COMPUTER

SCIENCE AND ENGINEERING


20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Introduction to ethical hacking
UNIT 1 - INTRODUCTION
Introduction to ethical hacking. Fundamentals of computer networking. TCP/IP
protocol stack. IP addressing and routing. TCP and UDP. IP subnets. Routing
protocols. IP version 6.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Introduction to Ethical Hacking

Differences Between Hacking and Ethical Hacking:


S. No. Hacking Ethical Hacking
Steal valuable information of company and Hack system to reduce vulnerabilities of
1.
individual for illegal activity company’s system
Legal practice, authorized by the company
2. Illegal practice and considered a crime
or individual
Such types of hackers are called black-hat Such types of hackers are called white-hat
3.
hackers hackers
Such hackers try to access restricted
Such hackers create firewalls and security
4. networks through illegal practices and
protocols.
reduce the security of data.
They work with different government
5. They work for themselves for dirty money.
agencies and big tech companies.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Introduction to Ethical Hacking

Ethical Hacking
Ethical hacking is to scan vulnerabilities and to
find potential threats on a computer or network
Ethical Hacker
An ethical hacker finds the weak points or
loopholes in a computer, web application or network
and reports them to the organization.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE

These are various types of hackers:


(1) White Hat Hackers (Cyber-Security Hacker)
(2) Black Hat Hackers (Cracker)
(3) Gray Hat Hackers (Both)
(4) Blue Hat hackers
(5) Green Hat Hackers
(6) Red Hat Hackers.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Introduction to Ethical Hacking

White Hat Hackers:


➢ Here, we look for bugs and ethically report them to the organization.
➢ We are authorized as a user to test for bugs in a website or network and report it
to them.
➢ White hat hackers generally get all the needed information about the application
or network to test for, from the organization itself.
➢ They use their skills to test it before the website goes live or attacked by malicious
hackers.
➢ To become a white hat hacker, you can earn a bachelor’s degree in computer science, information
technology, or cybersecurity.
➢ In addition, certifications such as Certified Ethical Hacker (CEH) and Certified Information Systems
Security Professional (CISSP) are highly recommended

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Introduction to Ethical Hacking

Black Hat Hackers:


Here, the organization doesn’t allow the user to test it.
They unethically enter inside the website and steal data from the admin panel or
manipulate the data.
They only focus on themselves and the advantages they will get from the personal
data for personal financial gain.
They can cause major damage to the company by altering the functions which lead
to the loss of the company at a much higher extent.
These hackers use a variety of tools and techniques to achieve their goals. One of
the most common methods used by black hat hackers is phishing, which involves
tricking people into providing credentials or personal information via fake websites or
emails.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Introduction to Ethical Hacking

Grey Hat Hackers:


They sometimes access to the data and violates the law.
But never have the same intention as Black hat hackers, they often operate for the
common good.
The main difference is that they exploit vulnerability publicly whereas white hat
hackers do it privately for the company.
One criticism of Grey Hat hackers is that their actions can still cause harm.
Even if they do not steal or damage data, their unauthorized access to computer
systems can still disrupt operations and cause financial losses for companies.
Additionally, there is always the risk that a Grey Hat hacker will accidentally cause
damage while attempting to identify vulnerabilities

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Introduction to Ethical Hacking

Blue Hat hackers:


They are much like the Script kiddies or packet monkeys; Young or inexperienced
hackers. They are beginners in the field of hacking.
If anyone makes angry a script kiddie and he/she may take revenge, then they are
considered as the blue hat hackers.
Blue Hat hackers payback to those who have challenged them or angry them.
Like the Script Kiddies, Blue hat hackers also have no desire to learn.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Introduction to Ethical Hacking

Green Hat hackers :


• They are also amateurs in the world of hacking but they are bit
different from script kiddies.
• They care about hacking and strive to become full-blown hackers.
• They are inspired by the hackers and ask them few questions about.
• While hackers are answering their question they will listen to its
novelty.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Introduction to Ethical Hacking

Red Hat Hackers:


They are also known as the eagle-eyed hackers.
Like white hat hackers, red hat hackers also aims to halt the black hat hackers.
There is a major difference in the way they operate.
They become ruthless while dealing with malware actions of the black hat hackers.
Red hat hacker will keep on attacking the hacker aggressively that the hacker may
know it as well have to replace the whole system.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE

What are the types of Hacking?


Computer Hacking or System Hacking

This type of hacking includes illegally gaining access to individual systems


or computers within a network. This is often seen when the target is singular, or
the purpose is to steal information from a network of computers. It is the job of
ethical hackers to try and get into the systems to identify the weak points.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Introduction to Ethical Hacking

Network Hacking or Wireless Network Hacking –

Wireless Hacking is the process of stealing, capturing, or monitoring the


wireless packets within a particular network. Once a hacker gets access to the
wireless network, they can also access passwords, chat sessions, user history,
etc. Ethical Hackers use similar methods to breach the wireless network and find
new and different ways that Black Hat hackers can use.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Introduction to Ethical Hacking

Email Hacking – In the digital world of the corporate sector, emails contain
extremely sensitive data & information that hackers may be interested in. Email
hacking can include hacking into the network to get email passwords and gaining
unauthorized access to the email of an individual or employees of a business. This
can expose an individual's personal life or reveal sensitive data from business
emails. A phishing attack (widespread) can also lead to users compromising their
personal information or data security.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE

Website Hacking or Web Application Hacking – Unethical hackers might show


interest in hacking websites or web servers as it can negatively affect a business.
This can lead to the website being down for extended periods (loss of business,
exposure, and recognition), theft of software and database, and even permanent
damage. However, ethical hackers attempt to do this with permission and then
suggest how the cracks can be fixed.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Introduction to Ethical Hacking

PASSWORD HACKING (It can be a part of computer or system hacking)

Hackers utilize the data stored on the computer and on the servers to access
the passwords to any website, computer, email, accounts, etc., and then use that
information for malicious purposes. Ethical hackers use similar methods to do so and
identify any security measures that can be followed to prevent this.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Introduction to Ethical Hacking

What should you do after hacked?

➢ Shutdown or turn off the system

➢ Separate the system from the network

➢ Restore the system with the backup or reinstall all programs

➢ Connect the system to the network

➢ Reset Your Passwords

➢ It can be good to call police

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Introduction to Ethical Hacking

Ethical Hacking - Terminologies


Hacking - Showing computer expertise.
Cracking - Breaching security on software or systems.
Spoofing - Faking the originating IP address in a datagram.
Denial of Service (DoS) - Flooding a host with sufficient network
traffic so that it cannot respond anymore.
Port Scanning - Searching for vulnerabilities.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE

GAINING ACCESS
Front door Software vulnerability exploitation
• Password guessing • Often advertised on the OEMs
• Password/key stealing (Original Equipment Manufactures)
web site along with security patches.
Back doors • Fertile ground for script kiddies
• Often left by original developers as looking for something to do.
debug and /or diagnostic tools.

Trojan Horses
• Usually hidden inside of software that
we download and install from the net.
• Many install backdoors.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Introduction to Ethical Hacking
Once inside, the hacker can...
Modify logs : To cover their tracks.
Steal files : Sometimes destroy after stealing.
An expert hacker would steal and cover their
tracks to remain undetected.
Modify files : To let you know they were there.
To cause mischief.
Install back doors : So, they can get in again.
Attack other systems
M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Introduction to Ethical Hacking
Ethical Hacking - Terminologies
• Adware − Adware is software designed to force pre-chosen ads to display on your system.
• Attack − An attack is an action that is done on a system to get its access and extract sensitive data.
• Back door − A back door, or trap door, is a hidden entry to a computing device or software that
bypasses security measures, such as logins and password protections.
• Bot − A bot is a program that automates an action so that it can be done repeatedly at a much higher
rate for a more sustained period than a human operator could do it. For example, sending HTTP, FTP
or Telnet at a higher rate or calling script to create objects at a higher rate.
• Brute force attack − A brute force attack is an automated and the simplest kind of method to gain
access to a system or website. It tries different combination of usernames and passwords, over and
over again, until it gets in.
• Cracker − A cracker is one who modifies the software to access the features which are considered
undesirable by the person cracking the software, especially copy protection features.
• Data breach – Data breach is the term used when the cyber-security incident takes place where sensitive
information is accessed without authority.
• Denial of service attack (DoS) − A denial of service (DoS) attack is a malicious attempt to make a
server or a network resource unavailable to users, usually by temporarily interrupting or suspending
the services of a host connected to the Internet.
• DDoS − Distributed denial of service attack.
M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Introduction to Ethical Hacking
Ethical Hacking - Terminologies
• Firewall − A firewall is a filter designed to keep unwanted intruders outside a computer system or network
while allowing safe communication between systems and users on the inside of the firewall.
• Keystroke logging − Keystroke logging is the process of tracking the keys which are pressed on a computer
(and which touchscreen points are used). It is simply the map of a computer/human interface. It is used by
gray and black hat hackers to record login IDs and passwords. Keyloggers are usually secreted onto a device
using a Trojan delivered by a phishing email.
• Malware − Malware is an umbrella term used to refer to a variety of forms of hostile or intrusive software,
including computer viruses, worms, Trojan horses, ransomware, spyware, adware, scareware, and other
malicious programs.
• Phishing − Phishing is an e-mail fraud method in which the perpetrator sends out legitimate-looking emails,
in an attempt to gather personal and financial information from recipients.
• Social engineering − Social engineering implies deceiving someone with the purpose of acquiring sensitive
and personal information, like credit card details or user names and passwords.
• Spam − A Spam is simply an unsolicited email, also known as junk email, sent to a large number of
recipients without their consent.
• Spoofing − Spoofing is a technique used to gain unauthorized access to computers, whereby the intruder
sends messages to a computer with an IP address indicating that the message is coming from a trusted host.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Introduction to Ethical Hacking
Ethical Hacking - Terminologies
• Spyware − Spyware is software that aims to gather information about a person or organization
without their knowledge and that may send such information to another entity without the
consumer's consent, or that asserts control over a computer without the consumer's knowledge.
• SQL Injection − SQL injection is an SQL code injection technique, used to attack data-driven
applications, in which malicious SQL statements are inserted into an entry field for execution (e.g.
to dump the database contents to the attacker).
• Trojan − A Trojan, or Trojan Horse, is a malicious program disguised to look like a valid program,
making it difficult to distinguish from programs that are supposed to be there designed with an
intention to destroy files, alter information, steal passwords or other information.
• Virus − A virus is a malicious program or a piece of code which is capable of copying itself and
typically has a detrimental effect, such as corrupting the system or destroying data.
• Vulnerability − A vulnerability is a weakness which allows a hacker to compromise the security
of a computer or network system.
• Worms − A worm is a self-replicating virus that does not alter files but resides in active memory
and duplicates itself.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Introduction to Ethical Hacking

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Introduction to Ethical Hacking
Penetration-Testing Methodologies

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

What is a Computer Network?


"A Computer Network is defined as a set of two or
more computers that are linked together ? either via
wired cables or wireless networks i.e., WiFi ? with the
purpose of communicating, exchanging, sharing or
distributing data, files and resources."

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

Computer Networks are built using a collection of


hardware (such as routers, switches, hubs, and so forth) and
networking software (such as operating systems, firewalls, or
corporate applications).

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

Computer Network Types


•LAN [Local Area Network]
•WLAN [Wireless local area network]
•CAN [Campus Area Network]
•MAN [Metropolitan Area Network]
•PAN [Personal Area Network]
•SAN [Storage Area Network]
•VPN [Virtual Private Network]
•WAN [ Wide Area Network]
M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

LAN or Local Area Network is a


group of devices connecting the
computers and other devices such
as switches, servers, printers, etc.,
over a short distance such as office,
home. The commonly used LAN
is Ethernet LAN. This network is
used as it allows the user to transfer
or share data, files, and resources.
M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

WLAN or Wireless local area


network is similar to LAN with the
difference that it uses wireless
communication between devices
instead of wired connections. WLAN
typically involves a Wi-Fi router or
wireless access point for
devices, unlike smartphones,
laptops, desktops, etc.
M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

CAN or Campus Area


Network is a closed corporate
communication network. A CAN
is a mobile network that may
contain a private or public part.
CANs are widely used colleges,
academies, and corporate sites.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

MAN or Metropolitan Area


Network is typically a more
extensive network when compared
to LANs but is smaller than WANs.
This network ranges between
several buildings in the same city.
Man networks are connected via
fiber optic cable (usually high-speed
connection). Cities and government
bodies usually manage MANs
M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

PAN or Personal Area Network is a


type of network used personally and
usually serves one person. This
network usually connects devices
unlike your smartphones, laptop, or
desktop to sync content and share
small files, unlike songs, photos,
videos, calendars, etc. These devices
connect via wireless networks such
as Wi-Fi, Bluetooth, Infrared, etc.
M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

SAN or Storage Area Network is a


specialized high-speed network that
stores and provides access to block-level
storage. It is a dedicated shared network
that is used for cloud data storage that
appears and works like a storage drive.
SAN consists of various switches,
servers, and disks array. One of the
advantages of SAN is that it is fault-
tolerant, which means if any switch or
server goes down, the data can still be
accessed.
M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

VPN or Virtual Private Network is a


secure tool that encrypts point-to-
point Internet connection and hides
the user's IP address and virtual
location. It determines an
encrypted network to boost user's
online privacy so as their identity
and data are inaccessible to
hackers.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

WAN or Wide Area Network is the


most significant network type
connecting computers over a wide
geographical area, such as a
country, continent. WAN
includes several LANs, MANs, and
CANs. An example of WAN is
the Internet, which connects
billions of computers globally.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

Networking terms and concepts


1. IP address
An IP address or Internet Protocol is a unique number that represents the address
where you live on the Internet. Every device that is connected to the network has a string of
numbers or IP addresses unlike house addresses.
You won't find two devices connected to a network with an identical IP address. When your
computer sends data to another different, the sent data contains a 'header' that further
contains the devices' IP address, i.e., the source computer and the destination device.
2. Nodes
A node refers to a networking connection point where a connection occurs inside a
network that further helps in receiving, transmitting, creating, or storing files or data.
Multiple devices could be connected to the Internet or network using wired or wireless
nodes. To form a network connection, one requires two or more nodes where each node
carries its unique identification to obtain access, such as an IP address. Some examples of
nodes are computers, printers, modems, switches, etc.
M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

3. Routers
A router is a physical networking device, which forwards data packets between
networks. Routers do the data analysis, perform the traffic directing functions on the
network, and define the top route for the data packets to reach their destination node. A data
packet may have to surpass multiple routers present within the network until it reaches its
destination.

4. Switches
In a computer network, a switch is a device that connects other devices and helps in
node-to-node communication by deciding the best way of transmitting data within a
network (usually if there are multiple routes in a more extensive network).
Though a router also transmits information, it forwards the information only between
networks, whereas a switches forwards data between nodes present in a single network.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking
Switching is further classified into three types, which are as follows:
•Circuit Switching
•Packet Switching
•Message Switching
•Circuit Switching: In this switching type, a secure communication path is established
between nodes (or the sender and receiver) in a network. It establishes a dedicated
connection path before transferring the data, and this path assures a good transmission
bandwidth and prevents any other traffic from traveling on that path. For example, the
Telephone network.
•Packet Switching: With this technique, a message is broken into independent components
known as packets. Because of their small size, each packet is sent individually. The packets
traveling through the network will have their source and destination IP address.
•Message Switching: This switching technique uses the store and forward mechanism. It
sends the complete unit of the message from the source node, passing from multiple switches
until it reaches its intermediary node. It is not suitable for real-time applications.
M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

5. Ports
A port allows the user to access multiple applications by identifying a
connection between network devices. Each port is allocated a set of string numbers. If you
relate the IP address to a hotel's address, you can refer to ports as the hotel room number.
Network devices use port numbers to decide which application, service, or method is used to
forward the detailed information or the data.

6. Network cable types


Network cables are used as a connection medium between different
computers and other network devices. Typical examples of network cable types are Ethernet
cables, coaxial, and fiber optic. Though the selection of cable type usually depends on the
size of the network, the organization of network components, and the distance between the
network devices.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

Network Topology
"Network topology is defined as the arrangement of computers or
nodes of a computer network to establish communication among
all.“

NODE
A node refers to a device that can transmit, receive, create, or
store information.
The nodes are connected via a network link that could be either wired
(cables, Ethernet) or wireless (Bluetooth, Wi-Fi).

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

Bus network topology supports a common


transmission medium where each node is
directly connected with the main network cable.
•The data is transmitted through the main
network cable and is received by all nodes
simultaneously.
•A signal is generated through the source
machine, which contains the address of the
receiving machine. The signal travels in both the
direction to all the nodes connected to the bus
network until it reaches the destination node.
•Bus topology is not fault-tolerant and has a
limited cable length.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

Ring topology is a modified version of


bus topology where every node is
connected in a closed-loop forming peer-
to-peer LAN topology.
•Every node in a ring topology has
precisely two connections. The Adjacent
node pairs are connected directly,
whereas the non-adjacent nodes are
indirectly connected via various nodes.
•Ring topology supports a unidirectional
communication pattern where sending
and receiving of data occurs via TOKEN.
M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

Star network topology, every node is


connected using a single central hub
or switch.
•The hub or switch performs the
entire centralized administration.
Each node sends its data to the hub,
and later hub shares the received
information to the destination device.
•Two or more-star topologies can be
connected to each other with the
help of a repeater.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking
Mesh topology, every node in the network connection is
directly connected to one other forming overlapping
connections between the nodes.
•This topology delivers better fault tolerance because if
any network device fails, it won't affect the network, as
other devices can transfer information.
•The Mesh networks self-configure and self-organize,
finding the quickest, most secure way to transmit the
data.
•One can form a full mesh topology by connecting every
single node to another node in the network. Full mesh is
expensive and is only used in the networks, which
demands high data redundancy.
•Another type of mesh topology is partial mesh
topology, where only a few devices are connected, and
few are connected to the devices with which they share
the most information. This mesh type is applicable in the
networks, requiring less redundancy or a cost-effective
network topology that is easy to execute.
M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

Types of Network Cable

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

Data Communication over a Network


Circuit Switching
Packet switching

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

Circuit switching Network:


A circuit-switched network is one of the simplest data
communication methods in which a dedicated path is
established between the sending and receiving device. In this
physical links connect via a set of switches.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - Fundamentals of computer networking

Packet switching Network:


In the Packet switching Network, the message is divide
into packets. Each packet contains a header which includes
the source address, destination address, and control
information.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - TCP/IP PROTOCOL STACK
Introduction
• TCP/IP is the most fundamental protocol used in the Internet.
• Allows computers to communicate / share resources.
• Used as a standard.
• To bridge the gap between non-compatible platforms.
• Work on TCP/IP started in the 1970s.
• Funded by US Military.
• Advanced Research Project Agency (ARPA).
M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - TCP/IP PROTOCOL STACK
Network Layering in TCP/IP
• In 1978, Interna5onal Standards Organization (ISO) proposed the 7-layer OSI reference
model for network services and protocols.
• TCP/IP does not strictly follow the OSI model.

TCP/IP models are divided in four layers:


Application Layer : Handles the details of communication at the application level.
Transport Layer : Establishes and maintains a data connection and exchange
between two devices.
Network Layer : Also known as the internet layer, it handles the movement of packets
around the network and across other networks.
Physical Layer : It handles the physical parts of the communication between hosts
within the same network using wireless connections, ethernet cables,
and so on. It is also called the data link layer or interface layer.
M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - TCP/IP PROTOCOL STACK

Host– to - Host
Point-to-point

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - TCP/IP PROTOCOL STACK

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - TCP/IP PROTOCOL STACK

SYN
(Synchronize Sequence
Number).

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - TCP/IP PROTOCOL STACK

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - TCP/IP PROTOCOL STACK

What does IP do?


❖ IP transports datagrams (packets) from a source node to a destination
node.
❖ Responsible for routing the packets.
❖ Breaks a packet into smaller packets, if required.
UNRELIABLE SERVICE
➢ A packet may be lost in transit.
➢ Packets may arrive out of order.
➢ Duplicate packets may be generated.
M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - TCP/IP PROTOCOL STACK

What does TCP do?


TCP provides a connection-oriented, reliable service for sending messages.
➢ Split a message into packets.
➢ Reassemble packets at destination.
➢ Resend packets that were lost in transit.
Interface with IP:
• Each packet forwarded to IP for delivery.
• Error control is done by TCP.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - TCP/IP PROTOCOL STACK

What does UDP do?


UDP provides a connectionless, unreliable service for sending datagrams (packets).
• Messages small enough to fit in a packet (e.g., DNS query).
• Simpler (and faster) than TCP.
• Never split data into multiple packets.
• Does not care about error control.
Interface with IP:
• Each UDP packet sent to IP for delivery.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Addressing and Routing

IP Addressing
➢ An IP address is an address having information about how to reach a
specific host, especially outside the LAN. An IP address is a 32-bit
unique address having an address space of 232.
➢ Generally, there are two notations in which the IP address is written,
dotted decimal notation and hexadecimal notation.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Addressing and Routing

Dotted Decimal Notation

Hexadecimal Notation

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Addressing and Routing

Classful Addressing
The 32-bit IP address is divided into five sub-classes. These are:
Class A (Unicast) Class B (Unicast) Class C (Unicast)
Class D (Multicast) Class E (Reserved)

➢ Each of these classes has a valid range of IP addresses.


➢ Classes D and E are reserved for multicast and experimental purposes
respectively.
➢ The order of bits in the first octet determines the classes of the IP address.

The IPv4 address is divided into two parts:


Network ID Host ID

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Addressing and Routing

CLASS A CLASS B CLASS C


Class A are assigned to the Class B is assigned to networks that Class C are assigned to small-sized
networks that contain a large range from medium-sized to large- networks.
number of hosts. sized networks.
The higher-order bit of the first octet The higher-order bits of the first octet The higher-order bits of the first octet
in class A is always set to 0. of IP addresses of class B are always of IP addresses of class C is always set
set to 10. to 110.
The network ID is 8 bits long. The network ID is 16 bits long. The network ID is 24 bits long.
The host ID is 24 bits long. The host ID is 16 bits long. The host ID is 8 bits long.

IP addresses belonging to class A IP addresses belonging to IP addresses belonging to


ranges from Class B ranges from Class C range from
0.x.x.x – 127.x.x.x 128.0.x.x – 191.255.x.x. 192.0.0.x – 223.255.255.x.
M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Addressing and Routing

CLASS D CLASS E
IP address belonging to class D is reserved for multi- Class B is assigned to networks that range from
casting. medium-sized to large-sized networks.
The higher-order bits of the first octet of IP addresses The higher-order bits of the first octet of class E are
belonging to class D is always set to 1110. always set to 1111.
The network ID is 8 bits long. The network ID is 16 bits long.
The host ID is 24 bits long. The host ID is 16 bits long.

IP addresses belonging to class A ranges from IP addresses belonging to


0.x.x.x – 127.x.x.x Class B ranges from
128.0.x.x – 191.255.x.x.
M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Addressing and Routing

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Addressing and Routing

IP Routing:
▪ IP routing is the process that defines the shortest path through
which data travels to reach from source to destination.
▪ It determines the shortest path to send the data from one computer
to another computer in the same or different network.
▪ Routing uses different protocols for the different networks to find the
path that data follows.
▪ It defines the path through which data travel across multiple
networks from one computer to other.
▪ Forwarding the packets from source to destination via different
routers is called routing.
▪ The routing decision is taken by the routers.
M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Addressing and Routing

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Addressing and Routing

Different Types of Routing:


There are three different types of routing:
1. Static Routing : In this type of routing the routing table is updated by the
network administrator.
2. Dynamic Routing: In this type of routing the routing table is automatically
updated using routing protocols.
3. Default Routing: In this type of routing the router is configured to send all the
data towards a specific router. This routing is generally used
with the sub routers.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Addressing and Routing

Routing Protocols:

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Addressing and Routing

Interdomain Routing Protocols:


This routing is used among the autonomous networks
and it includes Path Vector Routing(PVR).

Path Vector Routing:


•Path vector routing uses path vectors for routing.
•Border Gateway Protocol(BGP) is used in PVR for
making routing decisions.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Addressing and Routing

Intra domain Routing Protocols:


This routing is used within the autonomous networks and it includes two types of
routing: Distance Vector Routing(DVR) and Link State Routing(LSR).
Distance Vector Routing:
•Distance vector routing uses distance vectors for routing.
•It uses the Bellman-Ford algorithm for the computation of various distances.
•Routing Information Protocol(RIP) is used in DVR for making routing decisions.
•DVR suffers from count to infinity problem which can be solved using split-horizon or
route poisoning.
Link State Routing:
•Link State routing uses the state of the link for routing.
•It uses the Dijkstra algorithm for the computation of various distances.
•Open Shortest Path First(OSPF) is used in LSR for making routing decisions.
•LSR suffers from heavy traffic due to flooding which can be solved by the TTL field.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Subnets

IP Subnets
When a bigger network is divided into smaller networks,
to maintain security, then that is known as Subnetting. So,
maintenance is easier for smaller networks

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Subnets

Uses of Subnetting
1.Subnetting helps in organizing the network in an efficient
way which helps in expanding the technology for large firms
and companies.
2.Subnetting is used for specific staffing structures to reduce
traffic and maintain order and efficiency.
3.Subnetting divides domains of the broadcast so that traffic
is routed efficiently, which helps in improving network
performance.
4.Subnetting is used in increasing network security.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Subnets

Advantages of Subnetting
The advantages of Subnetting are mentioned below:
1.It provides security to one network from another network. eg)
In an Organisation, the code of the Developer department
must not be accessed by another department.
2.It may be possible that a particular subnet might need higher
network priority than others. For example, a Sales department
needs to host webcasts or video conferences.
3.In the case of Small networks, maintenance is easy.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Subnets

Disadvantages of Subnetting
The disadvantages of Subnetting are mentioned below:
1.In the case of a single network, only three steps are required to reach
a Process i.e Source Host to Destination Network, Destination Network
to Destination Host, and then Destination Host to Process.
2.In the case of a Single Network only two IP addresses are wasted to
represent Network Id and Broadcast address but in the case of
Subnetting two IP addresses are wasted for each Subnet.
3.The cost of the overall Network also increases. Subnetting requires
internal routers, Switches, Hubs, Bridges, etc. which are very costly.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Subnets

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Version 6

What is IP Address?
The address through which any computer
communicates with our computer is simply called an Internet
Protocol Address or IP address.
For Example, If we want to load a web page or we want
to download something, we require the address for delivery
of that particular file or webpage. That address is called an IP
Address.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Version 6
Types of IP Address
1.IPv4 (Internet Protocol Version 4)
2.IPv6 (Internet Protocol Version 6)
IPv4
IPv4 address consists of two things that are the network address and the host
address. It stands for Internet Protocol version four.
It was introduced in 1981 by DARPA and was the first deployed version in 1982 for
production on SATNET and on the ARPANET in January 1983.
IPv4 addresses are 32-bit integers that have to be expressed in Decimal Notation. It
is represented by 4 numbers separated by dots in the range of 0-255, which have to
be converted to 0 and 1, to be understood by Computers. For Example, An IPv4
Address can be written as 189.123.123.90.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Version 6
Difference Between IPv4 and IPv6

IPv4 IPv6
IPv4 has a 32-bit address length IPv6 has a 128-bit address length

It Supports Manual and DHCP address configuration It supports Auto and renumbering address configuration

In IPv4 end to end, connection integrity is Unachievable In IPv6 end-to-end, connection integrity is Achievable

The address space of IPv6 is quite large it can produce


It can generate 4.29×109 address space
3.4×1038 address space

The Security feature is dependent on the application IPSEC is an inbuilt security feature in the IPv6 protocol

Address representation of IPv4 is in decimal Address Representation of IPv6 is in hexadecimal

Fragmentation performed by Sender and forwarding routers In IPv6 fragmentation is performed only by the sender

In IPv6 packet flow identification are Available and uses the flow
In IPv4 Packet flow identification is not available
label field in the header

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Version 6
Difference Between IPv4 and IPv6

IPv4 IPv6
In IPv4 checksum field is available In IPv6 checksum field is not available
In IPv6 multicast and anycast message transmission scheme is
It has a broadcast Message Transmission Scheme
available

In IPv4 Encryption and Authentication facility not provided In IPv6 Encryption and Authentication are provided

IPv4 has a header of 20-60 bytes. IPv6 has a header of 40 bytes fixed
IPv4 can be converted to IPv6 Not all IPv6 can be converted to IPv4

IPv4 consists of 4 fields which are separated by addresses dot (.) IPv6 consists of 8 fields, which are separated by a colon (:)

IPv4’s IP addresses are divided into five different classes. Class A ,


IPv6 does not have any classes of the IP address.
Class B, Class C, Class Da , Class E.

IPv4 supports VLSM(Variable Length subnet mask). IPv6 does not support VLSM.

Example of IPv4: 66.94.29.13 Example of IPv6: 2001:0000:3238:DFE1:0063:0000:0000:FEFB

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Version 6

Internet Protocol Version 6 (IPv6)


IPv6 was developed by Internet Engineering Task Force (IETF) to deal with the problem of IPv4 exhaustion.
IPv6 is a 128-bits address having an address space of 2128, which is way bigger than IPv4. IPv6 use Hexa-
Decimal format separated by colon (:) .
Components in Address format :
1.There are 8 groups and each group represents 2 Bytes (16-bits).
2.Each Hex-Digit is of 4 bits (1 nibble)
3.Delimiter used – colon (:)

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Version 6
Need for IPv6:
1. Large address space
An IPv6 address is 128 bits long .compared with the 32 bit address of IPv4, this is a huge(2 raised 96
times) increases in the address space.
2. Better header format
IPv6 uses a new header format in which options are separated from the base header and inserted,
when needed, between the base header and the upper layer data . This simplifies and speeds up the routing
process because most of the options do not need to be checked by routers.
3. New options
IPv6 has new options to allow for additional functionalities.
4. Allowance for extension
IPv6 is designed to allow the extension of the protocol if required by new technologies or applications.
5. Support for resource allocation
In IPv6,the type of service field has been removed, but two new fields , traffic class and flow label have
been added to enables the source to request special handling of the packet . this mechanism can be used to
support traffic such as real-time audio and video.
6. Support for more security
The encryption and authentication options in IPv6 provide confidentiality and integrity of the packet.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Version 6
IPv6 ADDRESSING METHODS
1. Unicast Address
Unicast Address identifies a single network interface. A packet sent to a unicast address
is delivered to the interface identified by that address.
2. Multicast Address
Multicast Address is used by multiple hosts, called as groups, acquires a multicast
destination address. These hosts need not be geographically together. If any packet is sent to
this multicast address, it will be distributed to all interfaces corresponding to that multicast
address. And every node is configured in the same way. In simple words, one data packet is sent
to multiple destinations simultaneously.
3. Anycast Address
Anycast Address is assigned to a group of interfaces. Any packet sent to an anycast
address will be delivered to only one member interface (mostly nearest host possible).

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Version 6
ADVANTAGES OF IPV6 :
1. Realtime Data Transmission : Realtime data transmission refers to the process of transmitting
data in a very fast manner or immediately. Example : Live streaming services such as cricket matches,
or other tournament that are streamed on web exactly as soon as it happens with a maximum delay
of 5-6 seconds.
2. IPv6 supports authentication: Verifying that the data received by the receiver from the sender is
exactly what the sender sent and came through the sender only not from any third party. Example :
Matching the hash value of both the messages for verification is also done by IPv6.
3. IPv6 performs Encryption: Ipv6 can encrypt the message at network layer even if the protocols of
application layer at user level didn’t encrypt the message which is a major advantage as it takes care
of encryption.
4. Faster processing at Router: Routers are able to process data packets of Ipv6 much faster due to
smaller Base header of fixed size – 40 bytes which helps in decreasing processing time resulting in
more efficient packet transmission. Whereas in Ipv4, we have to calculate the length of header which
lies between 20-60 bytes.

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Version 6

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Version 6

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.
20CS5905 - ETHICAL HACKING AND NETWORK DEFENCE - IP Version 6

M. Saravanan, AP/CSE
K.Ramakrishnan College of Technology,
Tiruchirappalli.

You might also like