Thursday, 26 June 2014

NETWORK SECURITY TIPS

HOW TO PROTECT YOUR NETWORK SECURE

First of all you must Scan you network and check there should be no outdated software , antivirus or firewall etc your network should be fully patched and every thing should be updated. You must know you risk.

You must know your vulnerability (weakness) in your network. You should check your network and check if any vulnerably in the network you must solve it. You must guide to your domain users never download suspicious file or files from social networking websites. Although you have implement firewall or IPS but attacker can compromise your firewall.
You should try to crack your active directory users password using brute force attack or etc, you must guide or users to put strong and combination password and it should be changed every two or three weeks. You should perform penetration testing.
Social engineering are the most conman and easy attack to know your active directory passwords or access your network get together with users  and guide them about social engineering attacks.

IP ADDRESSING

WHAT IS AN IP ADDRESS


Every Computer connected on the Internet has a unique no. called Ip address. There are two IPv4 or IPV6 but still IPV4 is using mostly all over the India , which is a 32 bit numerical number in decimal format like:-



                                                         192.168.1.1(Private IP address)

The above ip address have 4 octets and one octet is 8 bit so 8x4=32 bit that's why ipv4 is a 32 bit number. IPv4 are three types 

Class A :- Starting from 1.0.0.0 to 126.0.0.0

Class B    Starting from 128.0.0.0 to 19.255.0.0

Class C    Starting from 192.0.0.0 to 223.255.255.25

Class D Multicast 224-239

IPv6 are 128 bits numerical number which represent in hexadecimal it has 16 periods 0 to 9 or A to F

MIMT Man in the middle Attack

Man in the Middle attack (Session Hijacking)

Man in the middle attack is a session hijacking technique . Whenever we lo-gin in our account or open any website it creates a session with that websites and a unique number which is session id is stored in our computer and it is only valid up that session is running until we lo-gout or close the website. 

Hacker gain access to session id to eavesdrop your information access to you information 
Note:-
ALWAYS USE HTTPS PROTOCOL INSTEAD OF HTTP BEFORE ENTERING YOUR INFORMATION TO ANY WEBSITE  ALWAYS CHECK IT URL MUST BE START FROM HTTPS (HYPERTEXT TRANSFER PROTOCOL SECURE) IT ENCRYPT YOUR MESSAGE SO NO MIDDLE MAN CAN READ IT.