Network monitoring software such as IDS typically examines only complete IP datagrams.
Thus, attackers are able to fragment their IP traffic to pass through corporate networks undetected and bypass perimeter security devices. While most network monitoring software like IDS is now capable of handling fragmented traffic, intruders still often attempt this type of attack that can bypass IDS and take systems out of commission, or result in information being stolen or corrupted.
As part of its new charter, Foundstone Labs created IPv4Trace, a Win32 C++ programming library. Because IPv4Trace is a Win32 object-oriented port of the OpenBSD 2.8 kernel-land IPv4 fragment reassembly implementation, Win32 programmers can now use the tool to reassemble fragmented IPv4 traffic in programs that process captured network traffic, allowing them to proactively circumvent an attack that can take systems out of commission or result in information being stolen or corrupted.
Rating: None (0 votes) Comments:
write comment all comments
Categories
Virus Definitions
- Kaspersky Update
- Norton Definitions
- Trend Micro Pattern File
- AVG Anti-Virus Updates
- McAfee SuperDAT
- Ad-aware Reference File
- F-Secure Definitions
- Trojan Remover Update
Top Downloads
- McAfee SuperDAT
- NOD32 3.0
- Kaspersky Anti-Virus
- Kaspersky Update
- Norton AntiVirus 2008
- Norton Definitions
- AVG Free Ed. 8.0
- Trojan Remover 6.7.0
- McAfee AVERT Stinger
- Buddy Spy 2.2.18
Hot Free Stuff
- Pocket KillBox
- xp-AntiSpy
- AntiVir Personal Edition
- SpywareBlaster
- FreeUndelete
- Windows Defender
- CCleaner
- SPAMfighter
- Unlocker
- Spybot-S&D
- Buddy Spy
- ZoneAlarm Free
- nCleaner
- CWShredder
- McAfee Avert Stinger
Friends
Copyright © 2008 ScanWith.com