wisemonkeys logo
FeedNotificationProfileManage Forms
FeedNotificationSearchSign in
wisemonkeys logo

Blogs

Firewall / IDS Evasion Techniques

profile
44_Vikash Yadav
Sep 15, 2023
0 Likes
0 Discussions
239 Reads

Introduction

An Intrusion Detection System is a set of tools or systems that monitors and analyzes the Network Traffic for any suspicious activities and issues alerts when any such activity is observed.

Similarly, a Firewall is a network security framework, that manages the outbound and inbound network traffic by permitting or blocking the packets based on the set of security rules.

Although the Firewalls and IDS can prevent the Malicious Packets from entering a network, an Attacker can send manipulated packets to the target such that it can evade the IDS / Firewall. There are several such evasion techniques.

 

Following are the Top few Techniques to evade the Firewall or an Intrusion Detection System:

 

 Packet Fragmentation

Generally, as the name itself tells — A Packet Fragmentation is the method, where an attacker splits the probe packets into several smaller fragments, before sending them to the target network. As soon as the packets reach the target system, the IDS or Firewall enqueue them and process each of them one by one. However, being too many packets because of the fragmentation requires greater CPU and network resource consumption. Let me tell you, that most of the Intrusion Detection Systems are configured to skip the fragmented packets during the scanning.

 

Source Routing

An IP datagram contains several fields which also include the source routing information and a list of IP addresses through which the packet will travel to reach its destination. If you don’t know this already, let me tell you when the packets travel through the different nodes in the network, each router examines the destination IP Address associated with it and chooses the next hop to direct the packet to its destination.

 

Spoofing the IP Address

Spoofing the IP Address is one of the hijacking techniques, where an attacker obtains a computer’s IP Address alters the packet headers, and then sends the request packets to the target machine, pretending it to be a legitimate host. The packets also appear to be coming from a legitimate source but actually are sent from the attacker’s machine.

 

Randomizing the order of Host

The attacker scans the number of hosts in the target network in a random order to scan the intended target that is secured behind the firewall. Our favorite tool NMAP provides us an option of randomizing hosts as well.

Comments ()

Sign in

Read Next

Impacts of Data Breach On Companies Challenges and Prevention

Blog banner

Buffer Overflow

Blog banner

Disk Management

Blog banner

Hubspot

Blog banner

Importance Of Yoga.

Blog banner

How to Run your First android App

Blog banner

Access management

Blog banner

Beyond the Track: Why the Best Hotel in Arcadia, Florida, Completes Your IMSA Sebring Getaway

Blog banner

Emerging threats in cyber Forensics

Blog banner

Why Inconel 625 and Monel 400 Remain Unbeatable in Refinery Applications?

Blog banner

Memory Management

Blog banner

Decoding Confusion Matrix

Blog banner

Electronic Funds Transfer

Blog banner

Security and E-mail

Blog banner

The Power of Teamwork: Learning Collaboration Through Everyday Activities

Blog banner

ahh wait a min

Blog banner

Social Engineering Deceptions and Defenses

Blog banner

Risk factors in service transistion

Blog banner

Search Marketing In 2026: From Keywords To Credibility And User Intent

Blog banner

LINUX VSERVER VIRTUAL MACHINE ARCHITECTURE

Blog banner

Earth with no trees

Blog banner

File and File System Structure

Blog banner

Man is free by the birth .

Blog banner

Security issues

Blog banner

Cache Memory in Operating Systems

Blog banner

1.1 basic elements

Blog banner

Safe Learning Spaces: Why Preschool Environment Matters More Than Ever Today

Blog banner

Microsoft Windows Overview

Blog banner

SECURITY TOOLS

Blog banner

Virtual Memory

Blog banner

Hypothesis Testing in Data Science

Blog banner

WHAT IS SNAPCHAT AND HOW DOES IT WORK?

Blog banner

Study of Sniffing Tools

Blog banner

Top 3 Places To Stay In Vienna

Blog banner

Evolution of Operating System

Blog banner

WINDOWS I/ O

Blog banner

The Procedural Framework for Corporate High-Tech Investigations

Blog banner

PERT Overview

Blog banner

Trello ( management software)

Blog banner

A Brief Review on Cyber Forensics and its Analysis Tool

Blog banner

Functions Of Operating Systems

Blog banner

File system implementation

Blog banner