The latest version is faster and contains a lot of new features like APR (Arp Poison Routing) which enables sniffing on switched LANs and Man-in-the-Middle attacks. The sniffer in this version can also analyze encrypted protocols such as SSH-1 and HTTPS, and contains filters to capture credentials from a wide range of authentication mechanisms. The new version also ships routing protocols authentication monitors and routes extractors, dictionary and brute-force crackers for all common hashing algorithms and for several specific authentications, password/hash calculators, cryptanalysis attacks, password decoders and some not so common utilities related to network and system security.
The essential security principles of confidentiality, integrity, and availability are often referred to as the CIA Triad. All security controls must address these principles. These three security principles serve as common threads throughout the CISSP CBK. Each domain addresses these principles in unique ways, so it is important to understand them both in general terms and within each specific domain: Confidentiality is the principle that objects are not disclosed to unauthorized subjects. Integrity is the principle that objects retain their veracity and are intentionally modified by authorized subjects only. Availability is the principle that authorized subjects are granted timely access to objects with sufficient bandwidth to perform the desired interaction. Different security mechanisms address these three principles in different ways and offer varying degrees of support or application of these principl...
Comments
Post a Comment