ARP Poisoning - Intercepts data on a network by linking an attacker's MAC to a legitimate IP address., Password Spraying - Attempts to access a large number of accounts with commonly used passwords., Brute Force - Systematically tries every possible password combination., Dictionary Attack - Uses a pre-arranged list of likely passwords., On-path Attack - Intercepts data between two parties to steal or modify it., Kerberoasting - Exploits Kerberos authentication to crack passwords of service accounts., DNS Cache Poisoning - Inserts false information into DNS cache to redirect users to malicious sites., VLAN Hopping - Bypasses network segmentation by sending packets to a switch that forwards them to other VLANs., LLMNR/NBT-NS Poisoning - Exploits Windows network protocols to intercept traffic and gain credentials., NTLM Relay Attacks - Captures authentication session to access a network resource without credentials., Relay Attacks - Captures and retransmits signals, such as from a key fob, to gain unauthorized access., Spoofing - Masquerades as a legitimate entity by falsifying data to gain an advantage., Deauthentication - Forcibly disconnects devices from a network., Handshake Capture - Intercepts network handshakes to crack wireless encryption keys., Evil Twin - Sets up a rogue Wi-Fi access point to intercept wireless communications., Captive Portal - Fakes a login or splash page to capture user credentials., Bluejacking - Sends unsolicited messages over Bluetooth to nearby devices., Bluesnarfing - Steals data from Bluetooth-enabled devices., RFID Cloning - Copies RFID tags for unauthorized access to secure areas., Amplification Attack - Increases the volume of an attack by using network resources to magnify traffic., MAC Spoofing - Impersonates devices by mimicking their MAC addresses., XSS - Persistent - Stores malicious script in server databases to execute whenever the stored data is viewed., XSS - Reflected - Reflects a malicious script off of a web application to the user's browser., CSRF - Deceives a user into submitting a malicious request via image tags, hidden forms, etc., SSRF - Exploits vulnerable web applications to force them to make requests to unintended locations., Session Replay - Reuses valid data transmission to fraudulently or maliciously repeat or delay operations., Session Hijack - Takes over a user's session by obtaining or predicting a valid session token., XSRF - Triggers malicious actions on a web application where a user is authenticated., Stacked Queries - Chains multiple SQL commands with a delimiter to execute them sequentially., DOS - Denies service to valid users by overwhelming a system with requests.,

Attack Types

بواسطة
تضمين

لوحة الصدارة

النمط البصري

الخيارات

تبديل القالب

استعادة الحفظ التلقائي: ؟