Network Security Labs

• 

  Packet Sniffing and Spoofing Lab

  Sniffing packets sent over the local network and spoofing various types of packets.

• 

  ARP Cache Poisoning Attack Lab

  Lanuch ARP cache posining attacks; use this attack to conduct man-in-the-middle attacks.

• 

  IP/ICMP Attacks Lab

  Attacks at the IP layer, including IP fragmentation attacks and ICMP redirect attacks. Routing and reverse path filtering.

• 

  TCP Attacks Lab

  Launching attacks to exploit the vulnerabilities of the TCP protocol, including session hijacking, SYN flooding, TCP reset attacks, etc.

• 

  The Mitnick Attack Lab

  Launching the classic Mitnick attack to gain the unauthorized access to the target machine. This is a special case of TCP session hijacking.

• 

  Heartbleed Attack Lab (Ubuntu 12.04 VM only)

  Using the heartbleed attack to steal secrets from a remote server.

• 

  Local DNS Attack Lab

  Using several methods to conduct DNS pharming attacks on computers in a LAN environment.

• 

  Remote DNS Attack Lab

  Using the Kaminsky method to launch DNS cache poisoning attacks on remote DNS servers.

• 

  DNS Rebinding Attack Lab

  Using the DNS rebinding technique to launch attacks on IoT devices behind the firewall.

• 

  Firewall Exploration Lab

  Writing a simple packet-filter firewall; playing with Linux's built-in firewall software and web-proxy firewall; experimenting with ways to evade firewalls.

• 

  Firewall Evasion Lab

  Implement a simple vpn program (client/server), and use it to bypass firewalls.

• 

  VPN Tunneling Lab

  Incrementally build a simple VPN program, using the TUN/TAP interface, to learn how the VPN tunneling works.

• 

  Virtual Private Network (VPN) Lab

  Design and implement a mini-VPN program, using TUN/TAP and TLS. This project requires at least a month of time to finish, so it is good for final project.