2004-11-15 11:51:13 +01:00
|
|
|
{| border="1" cellpadding="2"
|
|
|
|
|
|-
|
|
|
|
|
! Caldrin
|
|
|
|
|
! Alien8
|
|
|
|
|
|-
|
|
|
|
|
| ICMP-Tunnel
|
2004-11-22 11:09:28 +01:00
|
|
|
| Firewall Intro (Ausarbeitung, Vortrag zusammen)
|
2004-11-15 11:51:13 +01:00
|
|
|
|-
|
2004-11-27 13:41:11 +01:00
|
|
|
| hiding stuff in ip headers (incl. stegtunnel)
|
2004-11-22 11:09:28 +01:00
|
|
|
| ip and ssh tunnel
|
|
|
|
|
|-
|
|
|
|
|
|-
|
2004-11-27 14:55:25 +01:00
|
|
|
| http-header
|
|
|
|
|
| http,https,
|
2004-11-22 11:09:28 +01:00
|
|
|
|-
|
2004-11-27 14:55:25 +01:00
|
|
|
| open connections from outside
|
2004-11-22 11:09:28 +01:00
|
|
|
| DNS-tunnel (mit Verweis auf DNS-Vortrag)
|
2004-11-15 11:51:13 +01:00
|
|
|
|-
|
2004-11-29 18:18:43 +01:00
|
|
|
|
|
|
|
|
|
| ACK tunnel
|
2004-11-15 11:51:13 +01:00
|
|
|
|}
|
2004-11-11 19:50:08 +01:00
|
|
|
|
2004-11-22 11:09:28 +01:00
|
|
|
= Contents =
|
|
|
|
|
|
2004-11-11 22:58:19 +01:00
|
|
|
* short Intro to Firewalls
|
2004-11-27 14:23:43 +01:00
|
|
|
** is a concept
|
2004-11-11 22:58:19 +01:00
|
|
|
** Packetfilter
|
|
|
|
|
*** stateless
|
|
|
|
|
*** stateful
|
|
|
|
|
*** NAT (IP header recalculation, CRC checks ...)
|
|
|
|
|
** Application Layer Gateway
|
|
|
|
|
|
|
|
|
|
* Basics
|
|
|
|
|
* nc / cryptcat
|
|
|
|
|
* the art of hiding (backpacking your data)
|
|
|
|
|
** Tunnel
|
2004-11-22 11:09:28 +01:00
|
|
|
*** ip tunnel (incl. Why TCP over TCP is a bad idea)
|
2004-11-11 22:58:19 +01:00
|
|
|
*** ssh tunnel
|
|
|
|
|
|
|
|
|
|
* Simple Examples of tunnel
|
|
|
|
|
|
|
|
|
|
** HTTPS-Tunnel (connect)
|
|
|
|
|
** Http-Tunnel (GET / POST)
|
|
|
|
|
** Web-Shell
|
|
|
|
|
|
|
|
|
|
* Advanced Examples
|
|
|
|
|
** HTTP header
|
|
|
|
|
** ICMP-Tunnel
|
|
|
|
|
** DNS-Tunnel
|
|
|
|
|
** hiding stuff in ip headers
|
2004-11-23 16:59:25 +01:00
|
|
|
** different networking protocols
|
2004-11-11 22:58:19 +01:00
|
|
|
** E-Mail tunnel
|
2004-11-27 13:41:49 +01:00
|
|
|
** ACK-Tunnel
|
2004-11-25 23:14:23 +01:00
|
|
|
** [[http://www.synacklabs.net/projects/stegtunnel/ Stegtunnel]]
|
2004-11-11 22:58:19 +01:00
|
|
|
|
2004-11-27 13:19:27 +01:00
|
|
|
* opening connections from outside
|
2004-11-27 13:20:47 +01:00
|
|
|
** send IP with IP/port into protected net (ping) => pinged host opens connection out
|
2004-11-27 13:19:27 +01:00
|
|
|
** guessing Syncookies
|
2004-11-11 22:58:19 +01:00
|
|
|
|
|
|
|
|
more to come ...
|
2004-11-22 11:09:28 +01:00
|
|
|
|
|
|
|
|
=Storyline=
|
|
|
|
|
== Introduction ==
|
|
|
|
|
* Welcome ... Thanx for comming ... In Aug we did TA for c3d2 about Firewalls, Got interested in that topic or some joke
|
|
|
|
|
* What is a firewall?
|
|
|
|
|
** Packetfilter
|
|
|
|
|
*** stateless
|
|
|
|
|
*** stateful
|
|
|
|
|
*** NAT (IP header recalculation, CRC checks ...)
|
|
|
|
|
** Application Layer Gateway
|
|
|
|
|
''' If you believe in those systems giving you the perfect protection: Don't waste your time! Good bye!'''
|
|
|
|
|
* What we are going to show:
|
2004-11-22 11:57:18 +01:00
|
|
|
** '' To circumvent firewalls one has to be creative ... find a hole in the set-up, exploit it! Enjoy!''
|
2004-11-22 11:09:28 +01:00
|
|
|
** We show you:
|
2004-11-25 23:20:30 +01:00
|
|
|
*** Don't expect a cook book!
|
|
|
|
|
*** We're going to show some basic techniques and tools
|
|
|
|
|
*** some examples will show how to use them
|
