Welcome to 9-Zone Security, Secure yourself.

KEYLOGGERS
PHISHING
SPOOFING
SNIFFING
VIRUS & WORMS
TROJANS
SPY/AD/MALWARE
SPAMMING, FLAMING ETC
XSS-CROSS SITE SCRIPTING
OTHER
Rootkits		 Fake e-Mail scams
MEET THE HACKERS
HACKING MAY DONE OFFLINE
BE CAREFUL WITH CTRL+C
SECURE YOURSELF:-
AT PUBLIC NET CENTERS.
IN SOCIAL NETWORKING & IM
BY USING SYSTEM SETTINGS
TIPS FOR SECURE COMPUTING
TOOLS AND SOFTWARES FOR SECURITY

SPOOFING

spoofing attack is a situation in which one person or program successfully disguises as another by falsifying data/identity and thereby gaining an illegitimate advantage.

Man-in-the-middle attack and internet protocol spoofing :-

Just see the above image for better understanding. Here in this case the attacker spoofs the victim that he is the server and also spoofs the server that he the victim Thus gaining access to all information which is flowing in both the directions. the attacker may use sniffer to do this .

 





IP spoofing:-A technique to access a computer by using a false identity. This makes the host computer assume the hacker’s computer has a trusted address.

ARP spoofing:- A procedure through which the hacker modifies the address resolution protocol (ARP) table for hacking purpose. An ARP table stores IP address and the corresponding MAC address of the computer that would be contacted to transfer data when a packet arrives on the network, the destination computer MAC address is searched. This ARP spoofing can be prevented by either using methods to deny changes in MAC address without proper authorization.

DNS spoofing:- DNS spoofing is an attack in which the hacker modifies the IP address assigned to a web site to the IP address of the hacker’s computer.

E-mail address spoofing:- The sender information shown in e-mails (the "From" field) can be spoofed easily. This technique is commonly used by Spammers to hide the origin of their e-mails and leads to problems such as misdirected bounces (i.e. e-mail spam backscatter).
E-mail address spoofing is done in quite the same way as a writing a forged return address using snail mail. As long as the letter fits the protocol, (ie. stamp, postal code) the SMTP protocol will send the message. It can be done using to a mail server with telnet.
(Refer to our phishing page section where we have spoofed the e-mail of yahoo).

                                        

Custom Search