TRAP AND TRACE SYSTEMS
Trap and Trace Systems use techniques to detect an intrusion and trace it back to its source. Trap comprises of honey pot or padded cell and alarm. The drawbacks to trap and trace
- Enticement: procedure of attracting attention to system by placing the tantalizing bits of information in key locations
-Entrapment: luring an individual into committing a crime to get a conviction.
-Enticement is legal and ethical, whereas entrapment is not.
SCANNING AND ANALYSIS TOOLS
It is used to collect information that attacker would require to launch successful attack. Attack protocol is series of steps or processes used by an attacker, in a logical sequence, to launch attack against the target system or network.
-Footprinting: organized research of Internet addresses controlled by a target organization
-Fingerprinting is a systematic survey of all of target organization’s Internet addresses collected during foot printing phase. Fingerprinting reveals helpful information about the internal structure and operational nature of target system or network for the anticipated attack. These tools are valuable to network defender as they can quickly pinpoint parts of systems or network that require a prompt repair to close the vulnerability.
Port Scanners
Port scanners are tools which are used by both attackers and defenders to identify the computers active on a network, and other useful information. They can scan for specific types of computers, protocols, or resources or their scans can be generic. The more specific the scanner is, the better it can provides attackers and defenders useful information.