Professional Documents
Culture Documents
Sec - Cac Kieu Tan Cong Mang Vs GT Tools
Sec - Cac Kieu Tan Cong Mang Vs GT Tools
p 1 of 17
DoS v DDoS l mt trong nhng dng tn cng nguy him nht i vi mt h thng mng. Bi vit
ny khng mun cc bn da vo cc tools trong ny tn cng, mc ch trnh by cc bn hiu
v kiu tn cng ny, v c nhng gii php phng chng.
Trong bi vit ny ti s trnh by vi cc bn chi tit v nh ngha, cc dng tn cng DoS v DDoS,
cng hng lot cc kin thc lin quan c tng hp. DoS v DDoS l mt trong nhng dng tn
cng nguy him nht i vi mt h thng mng. Bi vit ny ti khng mun cc bn da vo cc
tools trong ny tn cng, mc ch trnh by cc bn hiu v kiu tn cng ny, v c nhng gii
php phng chng.
1. Lch s cc cuc tn cng DoS v DDoS
2. nh ngha v: Denial of Service Attack
3. Cc dng tn cng DoS
4. Cc tool tn cng DoS
5. Mng BOT net
6. Tn cng DDoS
7. Phn loi tn cng DDoS
8. Cc tools tn cng DDoS
9. Su my tnh (worms) trong tn cng DDoS
I. Lch s ca tn cng DoS
1. Mc tiu
Mc tiu cc cuc tn cng thng vo cc trang web ln v cc t chc thng mi in t trn
Internet.
2. Cc cuc tn cng.
Vo ngy 15 thng 8 nm 2003, Microsoft chu t tn cng DoS cc mnh v lm gin on
websites trong vng 2 gi.
Vo lc 15:09 gi GMT ngy 27 thng 3 nm 2003: ton b phin bn ting anh ca website AlJazeera b tn cng lm gin on trong nhiu gi
II. nh ngha v tn cng DoS
Tn cng DoS l kiu tn cng v cng nguy him, hiu c n ta cn phi lm r nh ngha ca
tn cng DoS v cc dng tn cng DoS.
Tn cng DoS l mt kiu tn cng m mt ngi lm cho mt h thng khng th s dng, hoc
lm cho h thng chm i mt cch ng k vi ngi dng bnh thng, bng cch lm qu ti ti
nguyn ca h thng.
Nu k tn cng khng c kh nng thm nhp c vo h thng, th chng c gng tm cch lm
cho h thng sp v khng c kh nng phc v ngi dng bnh thng l tn cng Denial
of Service (DoS).
Mc d tn cng DoS khng c kh nng truy cp vo d liu thc ca h thng nhng n c th lm
gin on cc dch v m h thng cung cp. Nh nh ngha trn DoS khi tn cng vo mt h
thng s khai thc nhng ci yu nht ca h thng tn cng, nhng mc ch ca tn cng DoS:
1. Cc mc ch ca tn cng DoS
C gng chim bng thng mng v lm h thng mng b ngp (flood), khi h thng mng s
khng c kh nng p ng nhng dch v khc cho ngi dng bnh thng.
C gng lm ngt kt ni gia hai my, v ngn chn qu trnh truy cp vo dch v.
C gng ngn chn nhng ngi dng c th vo mt dch v no
C gng ngn chn cc dch v khng cho ngi khc c kh nng truy cp vo.
Khi tn cng DoS xy ra ngi dng c cm gic khi truy cp vo dch v nh b:
+ Disable Network Tt mng
+ Disable Organization T chc khng hot ng
+ Financial Loss Ti chnh b mt
2. Mc tiu m k tn cng thng s dng tn cng DoS
Nh chng ta bit bn trn tn cng DoS xy ra khi k tn cng s dng ht ti nguyn ca h thng
v h thng khng th p ng cho ngi dng bnh thng c vy cc ti nguyn chng thng s
dng tn cng l g:
To ra s khan him, nhng gii hn v khng i mi ti nguyn
Bng thng ca h thng mng (Network Bandwidth), b nh, a, v CPU Time hay cu trc d
liu u l mc tiu ca tn cng DoS.
Hiepnt@
p 2 of 17
Tn cng vo h thng khc phc v cho mng my tnh nh: h thng iu ho, h thng in, ht
hng lm mt v nhiu ti nguyn khc ca doanh nghip. Bn th tng tng khi ngun in vo
my ch web b ngt th ngi dng c th truy cp vo my ch khng.
Ph hoi hoc thay i cc thng tin cu hnh.
Ph hoi tng vt l hoc cc thit b mng nh ngun in, iu ho
III. Cc dng tn cng
Tn cng Denial of Service chia ra lm hai loi tn cng
Tn cng DoS: Tn cng t mt c th, hay tp hp cc c th.
Tn cng DDoS: y l s tn cng t mt mng my tnh c thit k tn cng ti mt ch c
th no .
1. Cc dng tn cng DoS
Smurf
Buffer Overflow Attack
Ping of Death
Teardrop
SYN Attack
a. Tn cng Smurf
L th phm sinh ra cc nhiu giao tip ICMP (ping) ti a ch Broadcast ca nhiu mng vi a
ch ngun l mc tiu cn tn cng.
* Chng ta cn lu l: Khi ping ti mt a ch l qu trnh hai chiu Khi my A ping ti my B
my B reply li hon tt qu trnh. Khi ti ping ti a ch Broadcast ca mng no th ton b cc
my tnh trong mng s Reply li ti. Nhng gi ti thay i a ch ngun, thay a ch ngun l
my C v ti ping ti a ch Broadcast ca mt mng no , th ton b cc my tnh trong mng
s reply li vo my C ch khng phi ti v l tn cng Smurf.
Kt qu ch tn cng s phi chu nhn mt t Reply gi ICMP cc ln v lm cho mng b dt
hoc b chm li khng c kh nng p ng cc dch v khc.
Qu trnh ny c khuych i khi c lung ping reply t mt mng c kt ni vi nhau (mng
BOT).
tn cng Fraggle, chng s dng UDP echo v tng t nh tn cng Smurf. dng tn cng Smurf
s dng gi ICMP lm ngp cc giao tip khc.
b. Tn cng Buffer overflow.
Buffer Overflow xy ra ti bt k thi im no c chng trnh ghi lng thng tin ln hn dung
lng ca b nh m trong b nh.
K tn cng c th ghi ln d liu v iu khin chy cc chng trnh v nh cp quyn iu
khin ca mt s chng trnh nhm thc thi cc on m nguy him.
Qu trnh gi mt bc th in t m file nh km di qu 256 k t c th s xy ra qu trnh trn b
nh m.
c. Tn cng Ping of Death
- K tn cng gi nhng gi tin IP ln hn s lng bytes cho php ca tin IP l 65.536 bytes.
Qu trnh chia nh gi tin IP thnh nhng phn nh c thc hin layer II.
Qu trnh chia nh c th thc hin vi gi IP ln hn 65.536 bytes. Nhng h iu hnh khng th
nhn bit c ln ca gi tin ny v s b khi ng li, hay n gin l s b gin on giao tip.
nhn bit k tn cng gi gi tin ln hn gi tin cho php th tng i d dng.
d. Tn cng Teardrop
Gi tin IP rt ln khi n Router s b chia nh lm nhiu phn nh.
K tn cng s dng s dng gi IP vi cc thng s rt kh hiu chia ra cc phn nh
(fragment).
Nu h iu hnh nhn c cc gi tin c chia nh v khng hiu c, h thng c gng
build li gi tin v iu chim mt phn ti nguyn h thng, nu qu trnh lin tc xy ra h
thng khng cn ti nguyn cho cc ng dng khc, phc v cc user khc.
e. Tn cng SYN
Hiepnt@
p 3 of 17
Hiepnt@
p 4 of 17
- y l mt chng trnh sinh ra nhng gi tin ngu nhin nh (protocol, port, etc. size, )
Da vo chng trnh ny k tn cng c th chy cc on m nguy him vo my tnh khng c
bo mt.
7. Tool DoS Panther2.
- Tn cng t chi dch v da trn nn tng UDP Attack c thit k dnh ring cho kt ni 28.8
56 Kbps.
N c kh nng chim ton b bng thng ca kt ni ny.
N c kh nng chim bng thng mng bng nhiu phng php v nh thc hin qu trnh Ping
cc nhanh v c th gy ra tn cng DoS
8. Tool DoS Crazy Pinger
Cng c ny c kh nng gi nhng gi ICPM ln ti mt h thng mng t xa.
Hiepnt@
p 5 of 17
Hiepnt@
p 6 of 17
Hiepnt@
p 7 of 17
Hiepnt@
p 8 of 17
Trn Internet tn cng Distributed Denial of Service l mt dng tn cng t nhiu my tnh ti mt
ch, n gy ra t chi cc yu cu hp l ca cc user bnh thng. Bng cch to ra nhng gi tin
cc nhiu n mt ch c th, n c th gy tnh trng tng t nh h thng b shutdown.
2. Cc c tnh ca tn cng DDoS.
N c tn cng t mt h thng cc my tnh cc ln trn Internet, v thng da vo cc dch v
c sn trn cc my tnh trong mng botnet
Cc dch v tn cng c iu khin t nhng primary victim trong khi cc my tnh b chim
quyn s dng trong mng Bot c s dng tn cng thng c gi l secondary victims.
L dng tn cng rt kh c th pht hin bi tn cng ny c sinh ra t nhiu a ch IP trn
Internet.
Nu mt a ch IP tn cng mt cng ty, n c th c chn bi Firewall. Nu n t 30.000 a ch
IP khc, th iu ny l v cng kh khn.
Th phm c th gy nhiu nh hng bi tn cng t chi dch v DoS, v iu ny cng nguy
him hn khi chng s dng mt h thng mng Bot trn internet thc hin tn cng DoS v c
gi l tn cng DDoS.
3. Tn cng DDoS khng th ngn chn hon ton.
Cc dng tn cng DDoS thc hin tm kim cc l hng bo mt trn cc my tnh kt ni ti
Internet v khai thc cc l hng bo mt xy dng mng Botnet gm nhiu my tnh kt ni ti
Internet.
Mt tn cng DDoS c thc hin s rt kh ngn chn hon ton.
Nhng gi tin n Firewall c th chn li, nhng hu ht chng u n t nhng a ch IP cha c
trong cc Access Rule ca Firewall v l nhng gi tin hon ton hp l.
Nu a ch ngun ca gi tin c th b gi mo, sau khi bn khng nhn c s phn hi t nhng
a ch ngun tht th bn cn phi thc hin cm giao tip vi a ch ngun .
Tuy nhin mt mng Botnet bao gm t hng nghn ti vi trm nghn a ch IP trn Internet v
iu l v cng kh khn ngn chn tn cng.
4. K tn cng khn ngoan.
Gi y khng mt k tn cng no s dng lun a ch IP iu khin mng Botnet tn cng ti
ch, m chng thng s dng mt i tng trung gian di y l nhng m hnh tn cng DDoS
a. Agent Handler Model
K tn cng s dng cc handler iu khin tn cng
b. Tn cng DDoS da trn nn tng IRC
K tn cng s dng cc mng IRC iu khin, khuych i v qun l kt ni vi cc my tnh
trong mng Botnet.
IX. Phn loi tn cng DDoS
Tn cng gy ht bng thng truy cp ti my ch.
+ Flood attack
+ UDP v ICMP Flood (flood gy ngp lt)
Tn cng khuch i cc giao tip
+ Smurf and Fraggle attack
Tn cng DDoS vo Yahoo.com nm 2000
S phn loi tn cng DDoS
S tn cng DDoS dng Khuch i giao tip.
Nh cc bn bit tn cng Smurf khi s dng s Ping n a ch Broadcast ca mt mng no m
a ch ngun chnh l a ch ca my cn tn cng, khi ton b cc gi Reply s c chuyn ti
a ch IP ca my tnh b tn cng.
X. Tn cng Reflective DNS (reflective phn chiu).
Hiepnt@
p 9 of 17
Hiepnt@
http://rapidshare.com/files/181177873/prosql0.5.rar
3.Tool SQL Injection Helper
http://rapidshare.de/files/40875064/Video.rar.html
4.XSS Scanner v1.0
http://www.4shared.com/file/81088771ghiit_com.html
5. Tool hack li SQL Injection a nng cho hacker
Video: http://www.vimeo.com/1536040?pg=embed&sec=1536040
p 10 of 17
Hiepnt@
Download: https://labs.portcullis.co.uk/downloSetup-0909.exe
Update: Pass Unrar www.vnghiit.com
===Admin===
1. CNG C I PH:
+Black Ice by Network ice
http://www.networkice.com
+CyberCop Monitor by Network Associates
http://www.nai.com
+Hidden Object Locator
http://www.netwarefiils/hobjloc.zip
+Ippl
http://www.via.ecp.fr/~hugo/ippl/
+ITA from AXENT
http://www.axent.com
+Kane Security Monitor
http://www.intrusion.com
+Netguard
http://www.Genocide2com/~tattooman/
+Network Flight Recorder Protolog
http://www.nfr.net
http://www.grigna.coolog/index.html
+Psionic Portsentry from the Abacus project
http://www.psionic.com/abacus/
+RealSecure by Internet Security System(ISS)
http://www.iss.net
+Scanlogd
http://www.Genocide2com/~tattooman/
+Secure by Memco
http://www.memco.com
+Secure Shell(SSH)
http://www.ssh.fi
http://www.datafellows.com
+Abirnet/Platinum Technology
http://www.abirnet.com
2. TN CNG T CHI DCH V
+Land and Latierra
http://www.rootshell.com/
+Netcat
http://www.10pht.com/~weld/netcat/
+Portfuck
http://www.stargazerez/portfuck.zip
+Smurft&Fraggle:
http://www.rootshell.com/
+Synk4
http://www.jabukie.cSourcez/synk4.c
+Teardrop, newtear, bonk, syndrop
http://www.rootshell.com/
http://www.rootshell.com/
p 11 of 17
Hiepnt@
3. CNG C LIT K
+Bindery
http://www.nmrc.org/are/bindery.zip
+LEGION
http://www.rhino9.com
+NetBIOS Auditing Tool (NAT)
ftp://ftp.technotronft/nat10bin.zip
+Netviewx
http://www.ibt.ku.dk/jesper/NTtools/
+Nslist
http://www.nmrc.org/tware/nut18.zip
4. CNG C IN DU CHN
+ARIN database
http://www.arin.net/whois/
+Cyberarmy
http://www.cyberarmy.com
+Dogpile
http://www.dogpile.com
+USENET Searching
http://www.deja.com
+WS_Ping Propack
http://www.ipswitch.com
5. CNG C XM NHP CA SAU
+Elitewrap
http://www.multimaniuster/elite.zip
+Getadmin
http://www.ntsecuritty/getadmin.htm
+Hunt
http://www.Genocide2er/hunt-1.3.tgz
+Invisible Keystroke
http://www.amecisco.com/iksnt.htm
+NetBus
http://www.netbus.org
+NTFSDOS
http://www.sysinternals.com
+SNMPsniff
http://packetstorm.hniff-1.0.tar.gz
6. XA DU VT
+Cygwin Win32 cp and touch
http://www.cygnus.com
+Wipe
ftp://ftp.technotrons/wipe-1.00.tz/
7. CNG C QUT
+Bindview
http://www.bindview.com
+Hping
htpp://www.kyuzz.org/antirez/
p 12 of 17
Hiepnt@
p 13 of 17
Hiepnt@
+HTTP FLOODER
http://217.125.24.22ketStorm1.3.zip
+RPC SCAN
http://217.125.24.22/h/RpcScan101.zip
+MD5 BRUTE FORCE CRACKER
http://dev.code-mx.nf/md5_bf.tar.gz
+MDCRACK
http://mdcrack.df.rurack-1.2.tar.gz
+GENXE
http://genxe.sourcef-beta-0.9.0.zip
2. HACKING NT/2000
+NT-rookit 0.40
http://www.megasecur/Nt_rootkit0.40
+Hacker Defender v1.0
http://hxdef.czweb.ose/hxdef100.zip
+RK DETECTOR 0.62
http://www.haxorcitotectorv0.62.zip
+NETBIOS AUDITING TOOL
http://217.125.24.22/h/nat.zip
+GET ADMIN
http://217.125.24.22/h/getadmin.zip
+PWD-DUMP2(extract info del SAM file)
http://packetstormse/NT/pwdump2.zip
+PWD-DUMP3
http://packetstormse/NT/pwdump3.zip
+LOPTH: CRACKEADOR PASSWORD
http://217.125.24.22/h/lopth.zip
+NTFS DOS
http://217.125.24.22/h/ntfsdos.zip
+UNICODE Scanner del Unicode
http://217.125.24.22/h/URLScanner.zip
+IIS-CRASH
http://217.125.24.22/h/Iiscrash.zip
+SQLPOKE: MSSQL SERVERS
http://packetstormseers/Sqlpoke.zip
3. KEYLOGGERS-SNIFF
+WINDOWS KEY LOGGER 5.04
http://www.littlesister.de/keylog5.exe
+PERFECTKEY v.1.4
http://217.125.24.22/h/i_bpk2003.zip
+NUCLEAR keys v.1.0
http://www.nuclearwilear%20Keys.zip
+SNORT 2.1.1(Sniffer)
http://www.snort.orgrt-2.1.1.tar.gz
+RP-KEYLOG
http://217.125.24.22ylogger-0.1.zip
+XLOG
http://217.125.24.22/h/xlog2.21.zip
+TECLAS:KEYLOGGER
http://217.125.24.22/h/teclas.zip
+SCKEYLOG
http://www.astalavista.com/tools/
+TINY KEYLOGGER
p 14 of 17
Hiepnt@
http://217.125.24.22/h/TinyKL.zip
+INVISIBLE KEY LOGGER
http://www.amecisco.com/iksv12d.exe
+SPYNET
http://packetstormset/spynet312.exe
+SNIFFER
http://217.125.24.22/h/Sniffer.zip
+WINSNIFFER v.1.22
http://www.securityftools/ws122.exe
3. CRACKEADORES
+ADVANCED ACT PASS
http://www.elcomsoftACTPR/actpr.zip
+ADVANCE OUTLOOK EXPRESS PASS
http://www.elcomsoftAOEPR/aoepr.zip
+ADVANCE PDF PASS
http://217.125.24.22/h/apdfpr.zip
+ADVANCE OFFICE XP PASS
http://www.crackpassdl/aoxppr_s.zip
+ADVANCE RAR PASS
http://www.elcomsoft.com/ARPR/arpr.zip
+ADVANCE INSTANT MESSENGERS
http://www.elcomsoftAIMPR/aimpr.zip
+PASS CACHE
http://217.125.24.22/h/E-pwdcache.zip
+IM PASS RECOVERY
http://www.elcomsoftAIMPR/aimpr.zip
+MS-OFFICE CRACKING
http://217.125.24.22/h/Msofpas.zip
+ADVANCE ZIP PASS
http://www.elcomsoft.com/AZPR/azpr.zip
4. BIOS
+BIOS
http://217.125.24.22/h/BIOS320.zip
+OS-CRACK
http://217.125.24.22/h/cmospwd.zip
+AWARD MODULE BIOS 4.50
http://217.125.24.22/h/awardm.zip
+WIN-BIOS
http://217.125.24.22/h/winbios.zip
+KILL CMOS32 v.1.0
http://217.125.24.22/h/k-cmos32.zip
5. SCANNERS
+APPACHE
http://datafull.com/acheChunked.exe
+RANGE SCANNER
http://217.125.24.22angeScanner.zip
+HTTP:
http://217.125.24.22PCracker1_0.zip
+MULTI SCANNER EXPLOIT
http://217.125.24.22ultiExploit.zip
+UNPERSCAN
p 15 of 17
Hiepnt@
http://www.foundstons/superscan.exe
+SAINT
http://www.saintcorp.com/downloads/
+NMAP
http://download.inseapwin_1.3.1.exe
+NET-SCAN
ftp://ftp.netscantoo/pub/nst420.zip
+LANGUARD:
ftp://ftp.languard.com/lannetscan.exe
+SHADOW
http://www.safety-lab.com/SSS.exe
+SHADOW
http://www.rsh.kiev.ua/ShadowScan.exe
+NECROSOFT SCAN
http://217.125.24.22can0666b14f.zip
+PORTSCAN
http://217.125.24.22/h/portscan12.zip
+PORTMON (TCP/IP)
http://217.125.24.22/h/portmon301.zip
+EXPLOIT SCAN
http://www.megasecurloitscan2.0.zip
+PORT TEST
http://217.125.24.22/h/porttest.zip
+SCAN-DMN
http://217.125.24.22/h/domainscan.zip
+IP-SEARCH
http://www.panix.comh/iptoolb2i.exe
+AMAP
http://packetstorm.security-guide.de/
6. TROJAN
+INSUREC:
http://www.evileyesonsurrection.zip
+OPTIX
http://www.evileyesoes/OptixPro.zip
+TROJAN HACK TOOL
http://217.125.24.22/h/Skanner.zip
+URKTROJAN
http://www.turkojan.com/turkojan.zip
+CS-TROJAN
http://home.arcor.depter/trojan.zip
+ASSSIN
http://www.evileyesoes/assasin2.zip
+CYN v.2.1
http://217.125.24.22/h/CynV2.1.zip
+NEXUS
http://217.125.24.22rtalInstall.zip
+NETDEVIL
http://217.125.24.22/h/netdevil_15.zip
+NETBUS
http://home.t-onlinege/nbpro201.exe
+SUB7
http://www.sub7filesv2.1.2_Muie.zip
http://www.sub7filesv2.1.1_Gold.zip
http://www.sub7filesv2.1.2_Muie.zip
p 16 of 17
Hiepnt@
http://www.sub7files2.1.3_Bonus.zip
http://www.sub7files1.4_Defcon8.zip
http://www.sub7filess/Sub7_v2.2.zip
+BIONET
http://217.125.24.22ioNet_4-0-5.zip
7. FLOOD
+SMURF
http://217.125.24.22/h/Winsmurf.zip
+X-FLOOD
http://217.125.24.22/h/X-flood.zip
+ICMP BOMB
http://217.125.24.22/h/Icmp.zip
+WIN-BNC
http://217.125.24.22/h/winbnc.zip
+NSBNC
http://217.125.24.22/h/nsbnc.tar.gz
8. BOMB MAIL
+MINOZA
http://www.sunmatrix.net/do/minoza.zip
+DEMAIL
http://www.zstools.cad/edeb_set.zip
+MBBOMBER
http://www.softheap.load/bomber.zip
+UBI
http://217.125.24.22i_anonymous.zip
+KABOOM
http://217.125.24.22/h/kaboomv3.0.zip
+FMBOMB
http://217.125.24.22/h/fmbomb.zip
+X-MAS2000
http://217.125.24.22/h/xmas2000.zip
+BOMBITA
http://217.125.24.22/h/bombita.zip
+BTOPMAIL
http://217.125.24.22/h/topmail.zip
p 17 of 17