Network Exploitation Basics: Introductory Networking

-

 The OSI Model: An Overview.

 tryhackme room: introtonetworking

--------------------------------------------------------

Please, read everything there, even if it seemed like a revision. 

Q: Which layer would choose to send data over TCP or UDP?

A: 4

Q: Which layer checks received information to make sure that it hasn't been corrupted?

A: 2

Q: In which layer would data be formatted in preparation for transmission?

A: 2

Q: Which layer transmits and receives data?

A: 1

Q: Which layer encrypts, compresses, or otherwise transforms the initial data to give it a standardised format?

A: 6

Q: Which layer tracks communications between the host and receiving computers?

A: 5

Q: Which layer accepts communication requests from applications?

A: 7

Q: Which layer handles logical addressing?

A: 3

Q: When sending data over TCP, what would you call the "bite-sized" pieces of data?

A: Segments

(Which is the work of the TCP Protocol)

Q: Which layer would the FTP protocol communicate with? [Research]

A: 7

Q: Which transport layer protocol would be best suited to transmit a live video?

A: UDP

--------------------------------------------------------------------------

Encapsulation

-------------------

Again, Read Everything.

Q: How would you refer to data at layer 2 of the encapsulation process (with the OSI model)?

A: Frames

Q: How would you refer to data at layer 4 of the encapsulation process (with the OSI model), if the UDP protocol has been selected?

A: Datagrams

Q: What process would a computer perform on a received message?

A: De-encapsulation

Q: Which is the only layer of the OSI model to add a trailer during encapsulation?

A: Data Link

Q: Does encapsulation provide an extra layer of security (Aye/Nay)?

A: Aye

--------------------------------------------------------------------------

The TCP/IP Model.

-------------------------

SYN SYN-ACK ACK !

Q: Which model was introduced first, OSI or TCP/IP?

A: TCP/IP

Q: Which layer of the TCP/IP model covers the functionality of the Transport layer of the OSI model (Full Name)?

A: Transport

Q: Which layer of the TCP/IP model covers the functionality of the Session layer of the OSI model (Full Name)?

A: Application

Q: The Network Interface layer of the TCP/IP model covers the functionality of two layers in the OSI model. These layers are Data Link, and?.. (Full Name)?

A: Physical

Q: Which layer of the TCP/IP model handles the functionality of the OSI network layer?

A: Internet

Q: What kind of protocol is TCP?

A: Connection-based

Q: What is SYN short for?

A: Synchronise

Q: What is the second step of the three way handshake?

A: SYN/ACK

Q: What is the short name for the "Acknowledgement" segment in the three-way handshake?

A: ACK

--------------------------------------------------------------------------

Networking Tools: Ping, Traceroute, WHOIS, Dig.

Ping.

Q: What command would you use to ping the bbc.co.uk website?

A: ping bbc.co.uk

Q: Ping muirlandoracle.co.uk What is the IPv4 address?

A: the IP address might change, so go ahead and use command prompt if you are on windows and ping that web address.

Q: What switch lets you change the interval of sent ping requests?

A: -i

Q: What switch would allow you to restrict requests to IPv4?

A: -4

Q: What switch would give you a more verbose output?

A: -v

traceroute.

Q: What switch would you use to specify an interface when using Traceroute?

A: -i

Q:What switch would you use if you wanted to use TCP SYN requests when tracing the route?

A:-T

Q: Which layer of the TCP/IP model will traceroute run on by default (Windows)?

A: Internet

WHOIS

After performing a WHOIS on facebook.com 

Q: What is the registrant postal code for facebook.com?

A: 94025

Q:  When was the facebook.com domain first registered (Format: DD/MM/YYYY)?

A: 29/03/1997

WHOIS on microsoft.com 

Q: Which city is the registrant based in?

A: Redmond

Q: What is the name of the golf course that is near the registrant address for microsoft.com?

A: Bellevue Golf Course

Q: What is the registered Tech Email for microsoft.com?

A: msnhst@microsoft.com

Dig

Q:  What is DNS short for?

A:  Domain Name System

Q:  What is the first type of DNS server your computer would query when you search for a domain?

A: Recursive

Q:  What type of DNS server contains records specific to domain extensions (i.e. .com, .co.uk*, etc)*? Use the long version of the name.

A: Top-Level Domain

Q: Where is the very first place your computer would look to find the IP address of a domain?

A: Local Cache

Q: Google runs two public DNS servers. One of them can be queried with the IP 8.8.8.8, what is the IP address of the other one?

A: 8.8.4.4

Q: If a DNS query has a TTL of 24 hours, what number would the dig query show?

A: 86400

--------------------------------------------------------------------------

Thanks for reading!

Roger - Ozz961.

Comments

Post a Comment

Popular posts from this blog

Common Network Commands: Ping

-
Ping Command Overview The `ping` command is a fundamental utility used in network diagnostics. It checks the reachability of a host on an Internet Protocol (IP) network and measures the round-trip time for messages sent from the originating host to a destination computer. The command uses the Internet Control Message Protocol (ICMP) to send echo request packets and listens for echo replies. Origin and Development The `ping` command was developed in 1983 by Mike Muuss as a diagnostic tool for the ARPANET. Since then, it has become a standard utility available on most operating systems, including Linux, Windows, and macOS, making it an essential tool for network administrators and users. Basic Functionality The `ping` command serves several functions: - Tests connectivity to a specified host. - Measures the time taken for packets to travel to the destination and back. - Provides statistics about packet loss and round-trip time. Key Command Syntax 1. Basic Syntax:    ```    ping [options]
Read more

Common Network Commands: Route

-
Route Command Overview The route command is a part of the older net-tools package used in Linux systems for viewing and manipulating the IP routing table. It provides information about how packets are routed through the network and allows for the addition, deletion, and modification of routes. Origin and Development Historically, the route command has been a primary tool for managing network routing in Linux. However, it has largely been replaced by the ip command from the iproute2 package, which offers more advanced features and capabilities. Despite this, route is still commonly used in many Linux distributions for its simplicity and familiarity. Basic Functionality The route command serves several functions: - Displays the current routing table entries. - Shows destination networks, gateways, and associated interfaces. - Allows for the addition, deletion, and modification of routes. Key Command Syntax 1. Display Routing Table:    ```    route -n    ```    The -n option prevents DNS
Read more

John The Ripper

-
John the Ripper  Is one of the most well known, well-loved and versatile hash cracking tools out there. It combines a fast cracking speed, with an extraordinary range of compatible hash types. This room will assume no previous knowledge, so we must first cover some basic terms and concepts before we move into practical hash cracking. A hash is a way of taking a piece of data of any length and  representing it in another form that is a fixed length. This masks the original value of the data. This is done by running the original data through a hashing algorithm. There are many popular hashing algorithms, such as MD4,MD5, SHA1 and NTLM. Lets try and show this with an example: If we take "polo", a string of 4 characters- and run it through an MD5 hashing algorithm, we end up with an output of: b53759f3ce692de7aff1b5779d3964da a standard 32 character MD5 hash. Likewise, if we take "polomints", a string of 9 characters- and run it through the same MD5 hashing algorithm, w
Read more