Wifi Password Recovery - UTM - Vulnerability Scanning


VIP LOUNGE
CLOUD LOGIN
Sun Sun Sun

You are here: Encyclopedia > What is Port Knocking?

What is Port Knocking?

 

Port Knocking is a form of host-to-host communication in which information flows across closed ports.  In this method, ports are opened externally on a firewall by generating a connection attempt on a set of prespecified closed ports.  In general, data is transmitted to closed ports and received by a monitoring daemon which intercepts the information without sending a receipt to the sender.

 

In one instance, port knocking refers to a method of communication between two computers (For example named here General and  Main ) in which information is encoded, into a sequence of port numbers. This sequence is termed the knock. Initially, the main presents no open ports to the public and is monitoring all connection attempts. The General initiates connection attempts to the server by sending SYN packets to the ports specified in the knock. This process of knocking is what gives port knocking its name. The server offers no response to the client during the knocking phase, as it "silently" processes the port sequence. When the server decodes a valid knock it triggers a server-side process.


The definition of a valid knock varies and according to the implementation. The main-side process also varies and according to the implementation. The trigger may result in dynamic modification of firewall rules or other administrative system events. Encoding and encrypting information into a series of ports and sending information using SYN packets is one of the simplest forms of port knocking.

 

Most PortKnocks are stateful systems in that if the first part of the "knock" has been received successfully, an incorrect second part would not allow the remote user to continue and, indeed, would give the remote user no clue as to how far through the sequence they failed. Usually the only indication of failure is that, at the end of the knock sequence, the port expected to be open is not opened. No packets are sent to the remote user at any time.
 

 

It can also be performed by a process examining packets at a higher level (e.g. using PCAP), allowing the use of already "open" TCP ports to be used within the knock sequence.

 

The basic purpose of port knocking is to prevent an attacker from scanning a system for potentially exploitable services by doing a port scan, because unless the attacker sends the correct knock sequence, the protected ports will appear closed

 

This technique for a secured access to remote network daemons has not been widely adopted by the security community, In the meanwhile. it has been integrated in newer Rootkits.

 

If for some reason or other the port knocking daemon dies, you are left with a system you cannot connect with. This is also known as a single point of failure. However, to help mitigate this problem, modern port knocking implementations include a process monitoring daemon that will restart the port knocking daemon if it dies.

 

 You may also be interested in our About SecPoint, IT Security Products and IT Security Jobs

WPA Password Recovery                                   Web Vulnerability Scanner                                 Protector UTM Firewall

 


Reviews of SecPoint.com
 
 
 
 
 

Awards & Reviews
  

  

Related pages
Aircrack
All Modules Included at 1 Price
Anti-Spam Firewall
Anti-Spam Software
Anti-Virus
Appliance VS Software
Application Security
BackTrack
Black box
Blind SQL Injection
Blue box
CIDR Network Information
Cloud Security
Control both Incoming and Outgoing Scanning
Crack Wifi Passwords
Cross-site Request Forgery
Full Mail Archiver
Global System for Mobile GSM communication
Hacker
Hacking wifi password
Hacking Wifi Passwords
Hyper V Virtual UTM Appliance
Internet Filter
Logic Attack
Logic Bomb
Malware
Man-in-the-middle Attack
PCI-DSS Compliance
RC Release Candidate Software Firmware
Red box
Server Spam Filter
Shoulder Surfing
Time Based Web Filter
UTM Appliance Anti-Virus
UTM Appliance WiFi Security
VPN Firewall
Wardriving
WEP Crack
WEP Key
WEP WPA2 Crack
What are the attacks on the Macros and ActiveX?
What is 2600?
What is a 2.4 GHz Wi-Fi?
What is a Black Hat?
What is a Botnet?
What is a Cookie?
What is a Cracker?
What is a Grey Hat?
What is a Man in the Middle Attack?
What is a Null Session?
What is a Password Replay Attack?
What is a password?
What is a Routing Table?
What is a Script Kiddie?
What is a Spanning Tree Protocol Attack?
What is a vulnerability scanning appliance?
What is a web application firewall?
What is a White Hat?
What is an Elite Hacker?
What is an open mail relay
What is Blacklisting?
What is CISSP?
What is ComboFix?
What is Cross Site Scripting(XSS)?
What is Cyberwarfare?
What is Data Leak Prevention?
What is Denial-of Service Attack?
What is Diffie-Hellman Encryption?
What is Dumpster Diving?
What is Encryption?
What is FTP?
What is Grey Listing?
What is Greylisting?
What is GSM Encryption?
What is High Availability?
What is Instant Messaging?
What is ISSAP?
What is ISSMP?
What is Linux?
What is MD5 Encryption?
What is Novell NetWare?
What is P2P?
What is Penetration Test?
What is Phrack?
What is Port Knocking?
What is RC4 Encryption?
What is SANS Top 20?
What is search engine hacking?
What is SFTP?
What is SHA Encryption?
What is Social Engineering?
What is SOCKS5?
What is SOCKS?
What is Spyware?
What is SQL Injection?
What is SSL?
What is TCP?
What is Telnet?
What is the 5.8 GHz Wi-Fi?
What is the mail service attack on Microsoft Exchange Server?
What is Tunneling Protocol?
What is UDP?
What is UTM?
What is Virus?
What is vlan tagging?
What is VoIP?
What is War Dialing?
What is Whitelisting?
What is Wi-fi?
What is Wimax?
What is Zero Day?
wi-fi password cracker
WiFi Audit
Wifi auditor the Portable Penetrator
WiFi Client Cracking
WiFi Client Hacking
WiFi Crack
WiFi Cracking
Wifi Decoder
Wifi Defender
WiFi Hack
WiFi Pen Test
WiFi Pen Test Appliance
Windows Operating System - Password Attacks
Wireless Encryption Standards
WPA hacking software
WPA Key
WPA2 Encryption

Subscribe to our Mailing List

Customer References


About
About
SecPoint
History
Mission Statement
Vision
Management
Investment
Bank
Sponsorship
Certificates
Environment
Environment
What is RoHS Weee?
Accounting
Values
Member of Organisations
Merchandise
SecPoint Certification
Design
Status Information
Hardware Vendors
Jobs
Environment
SecPoint on social media
Twitter Facebook Youtube
Products
Products
Protector
Cloud Protector
Penetrator
Portable Penetrator
Cloud Penetrator
Free IT Security Tools
Pricing
SecPoint Brochures
SecPoint Questions FAQ
SecPoint Datasheets
SecPoint SPID Library


Partners
Partners
Become a SecPoint Affiliate
Become a SecPoint Partner
SecPoint Franchising
SecPoint Partner Lounge
News
News
Press
Product Awards
SecPoint RSS Feeds


Contact
Contact
General Contact
IT Security Products Webshop
Latest SecPoint Software Images Change Log
SecPoint FAQ Frequently Asked Questions
SecPoint on Twitter
SecPoint Sales Training Videos
SecPoint Shipping Cost
SecPoint World Wide Shipping
Support
Solutions
Anti-Spam Appliance
UTM Appliance
Penetration Testing
Proxy Appliance
SAAS
Spam Filters
Vulnerability Assessment
Vulnerability Scanner
Vulnerability Scanning
Vulnerability Scanning Appliance
Web Content Filter
Web Filter Appliance
WiFi Hacking
How essential is vulnerability
management?
What is ...?

Encyclopedia | Free Scan Statement | Link Policy | Privacy Statement | Resources | Sitemap | User Policy
© Copyright 1999-2012: SecPoint®
SecPoint ApS Noerregade 7B - 1165 Copenhagen K - Denmark
US Toll free: +1-888-704-7297 - EU: +45-70-235-245