Unit 4 Assignment 1 Hacking Research Paper

478 Words2 Pages
IS4560 Hacking and Countermeasures Unit 4 Assignment 1 January 21, 2013 1. The top three ports are: * Port 22 * Port 8080 * Port 5900 2. The top three rising protocols are: * Port 903 * Port 102 * Port 502 3. Service commonly running on these ports: * Port 22:Secure Shell (SSH)—used for secure logins, file transfers (scp, sftp) and port forwarding. Secure Shell - most common use is command line access, secure replacement of Telnet. Could also be used as an encrypted tunnel for secure communication of virtually any service. Some Trojans also use this port: InCommand, Shaft, Skun * Port 8080: (TCP). HTTP alternate (http_alt)—commonly used for Web proxy and caching server, or for running a Web server as a non-root user. Some broadband routers run a…show more content…
VNC (Virtual Network Computing) - remote control program. It also uses ports 5800+ and 5900+ for additional machines. Backdoor.Evivinc also uses this port. Some Apple applications use this port as well: Apple Remote Desktop 2.0 or later (Observe/Control feature), Screen Sharing (Mac OS X 10.5 or later) RealVNC 4.0 and earlier allows remote attackers to cause a denial of service (crash) via a large number of connections to port 5900. W32.Gangbot (2007.01.22) - a worm that opens a back door and connects to an IRC server. It spreads by searching for vulnerable SQL servers and by sending an HTML link to available contacts on instant messenger programs. It also spreads by exploiting the Microsoft Internet Explorer Vector Markup Language Buffer Overflow Vulnerability ([BID-20096]) and RealVNC Remote Authentication Bypass Vulnerability ([BID-17978]).Port 5952 is used by VNC * Port 903: (TCP). NetDevil- remote access Trojan 02.2002. Affects Windows 9x/Me/NT/2K/XP. Port IANA registered for self-documenting Telnet Door, also used by Ideafarm-catch, ISS Console Manager, VMware Console. |

More about Unit 4 Assignment 1 Hacking Research Paper

Open Document