Network monitoring software such as IDS typically examines only complete IP datagrams.
Thus, attackers are able to fragment their IP traffic to pass through corporate networks undetected and bypass perimeter security devices. While most network monitoring software like IDS is now capable of handling fragmented traffic, intruders still often attempt this type of attack that can bypass IDS and take systems out of commission, or result in information being stolen or corrupted.
As part of its new charter, Foundstone Labs created IPv4Trace, a Win32 C++ programming library. Because IPv4Trace is a Win32 object-oriented port of the OpenBSD 2.8 kernel-land IPv4 fragment reassembly implementation, Win32 programmers can now use the tool to reassemble fragmented IPv4 traffic in programs that process captured network traffic, allowing them to proactively circumvent an attack that can take systems out of commission or result in information being stolen or corrupted.
Rating: None (0 votes) Comments:
write comment all comments
Categories
Virus Definitions
- McAfee SuperDAT
- Norton Definitions
- Ad-Aware Definition File
- Trend Micro Pattern File
- Kaspersky Update
- AVG Anti-Virus Updates
- F-Secure Definitions
- Trojan Remover Update
Top Downloads
- McAfee SuperDAT
- NOD32 4.0
- Kaspersky Anti-Virus
- Kaspersky Update
- AVG Free Ed. 9.0
- Norton AntiVirus 2010
- AVG Anti-Virus Updates
- Norton Definitions
- Trojan Remover 6.8.1
- CCleaner 2.25
Hot Free Stuff
- Pocket KillBox
- xp-AntiSpy
- IP Sniffer
- CloneSpy
- FreeUndelete
- Windows Defender
- Recuva
- SPAMfighter
- Unlocker
- Spybot-S&D
- Buddy Spy
- ZoneAlarm Free
- Cookie Monster
- CWShredder
- McAfee Avert Stinger
Friends
Copyright © 2005-2009 ScanWith.com