Flux rss

TCP session hijacking

TCP session hijacking

"TCP session hijacking" is a technique that involves intercepting a TCP session initiated between two machines in order to hijack it.

In that the authentication check is performed only when opening the session, a pirate who successfully launches this attack is able to take control of the connection throughout the duration of the session.

Source routing

The initial hijacking method used involved using the source routing option of the IP protocol. This option made it possible to specify the path IP packets were to follow, using a series of IP addresses showing the routers to be used.

By exploiting this option, the pirate could indicate a return path for packets to a router under his control.

Blind attack

When source routing is disabled, which is the case nowadays for most equipment, a second method involves sending packets as "blind attacks", without receiving a response, by trying to predict sequence numbers.

Man in the middle

Also, when the pirate is on the same network thread as his two contacts, he can monitor the network and "quiet" one of the participants by crashing his machine or by flooding the network to take his place.

More information



Last update on Thursday October 16, 2008 02:43:15 PM.
This document entitled « TCP session hijacking » from Kioskea (en.kioskea.net) is made available under the Creative Commons license. You can copy, modify copies of this page, under the conditions stipulated by the licence, as this note appears clearly.

Results for

Remote attacks - Session hijacking attack The "session hijacking" attack involves redirecting data intended for a target machine to the hijacker's machine, giving him access to information he is not supposed to en.kioskea.net/attaques/detournement-session.php3
Session hijacking Hello, Can any one tell me about the SESSION HIJACKING ? Advance Thanks. en.kioskea.net/forum/affich-3741-session-hijacking
Download Session Manager Session Manager is a tool allowing to save and to restore states of all windows under Firefox. This extension allows to safeguard common states of Firefox (review, data texts, the cookies) and to go back to it to the next session.Behind this manual... en.kioskea.net/telecharger/telecharger-515-session-manager

Results for

How to access System Information-Msinfo32.exeHow to access System Information-Msinfo32.exe System information is a tool which displays information on your computer mainly for windows XP. This application works by collecting devices that are installed or loaded on your computer. This... en.kioskea.net/faq/sujet-574-how-to-access-system-information-msinfo32-exe
Lock your Windows XP sessionLock your Windows XP session Method 1: Shortcut Method 2: Using DOS Method 3: Create a .bat file There are several ways available to be able to lock your Windows XP (including Home Edition and XP Pro) Method 1: Shortcut 1. With... en.kioskea.net/faq/sujet-520-lock-your-windows-xp-session
Differences between the UDP and TCP protocolsDifferences between the UDP and TCP protocols User Datagram Protocol (UDP) Transmission Control Protocol (TCP) User Datagram Protocol (UDP) It is part of the base protocols of the Internet Protocol Suite. Programs on networked computers... en.kioskea.net/faq/sujet-608-differences-between-the-udp-and-tcp-protocols
Voir les réponses

Results for

How do I install a TCP/IP protocol.Hello, I have a dell optiplex g260 and a gateway both running a windows xp pro operating system. Both computers says that we need a TCP/IP protocol installed. if we click install, it says that they can not find what is needed to install the protocol... en.kioskea.net/forum/affich-27000-how-do-i-install-a-tcp-ip-protocol
Rundll hijackthis log please analyzeHello,I have a Rundll.exe problem at start-up. I scanned my computer using HiJackThis. Can you please identify what's wrong ? and what i should do next? Thanks very much. Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 9:47:21 AM, on... en.kioskea.net/forum/affich-28076-rundll-hijackthis-log-please-analyze
One Telnet sessionHello, I want to have more than one Telnet session open at the same time, What keystroke combination to use ? en.kioskea.net/forum/affich-2305-one-telnet-session
Voir les réponses

Results for

Download SmitFraudFixThis utility corrects the infections of type Desktop Hijack (misappropriation of the office):this utility corrects the infections of type Desktop Hijack (misappropriation of the office): Advanced Antivirus, AdwarePunisher,... en.kioskea.net/telecharger/telecharger-158-smitfraudfix
Download Spyware BlasterSpywareBlaster can help keep your system spyware-free and secure. It does not have to remain running in the background. Prevent the installation of ActiveX-based spyware, adware, browser hijackers, dialers, and other potentially unwanted... en.kioskea.net/telecharger/telecharger-59-spyware-blaster
Download MIDI File SplitterMIDI File Splitter goes off a tool intended is to split files MIDI into numerous sections based on markers. His main purpose was to cut sessions of drum include in files midi to insert them easily of lanes SONAR. To split files MIDI is also simple as... en.kioskea.net/telecharger/telecharger-686-midi-file-splitter
Voir les réponses

Results for

Google looking at Malaysian base: reportMalaysian Prime Minister Abdullah Ahmad Badawi talks during a session at the World Economic Forum in Davos, on January 25. US search-engine giant Google is interested in setting up a base in Malaysia, according to Badawi. US search-engine giant... en.kioskea.net/actualites/google-looking-at-malaysian-base-report-10028-actualite.php3
Online Valentine cards may contain Internet worm, FBI warnsHeart illuminations for Valentine's Day. Valentine's Day e-greetings from a stranger could deliver more than the recipient bargained for in the shape of a destructive "Trojan horse" that hijacks computers, the FBI warned Tuesday.... en.kioskea.net/actualites/online-valentine-cards-may-contain-internet-worm-fbi-warns-10099-actualite.php3
Cuban youths pose tough questions in surprising videoTV images show the president of the Cuban National Assembly, Ricardo Alarcon (L), during a question and answer session with University of Information Technology student, Elieser Avila, on February 7 in Havana. A group of university students posed... en.kioskea.net/actualites/cuban-youths-pose-tough-questions-in-surprising-video-10074-actualite.php3
Voir les réponses

Results for

Internet - TCP TCP (which means Transmission Control Protocol) is one of the main protocols of the transport layer of the TCP/IP model. It makes it possible, at application level, to manage data coming from (or going to) the lower layer of the model (i.e. the IP... en.kioskea.net/internet/tcp.php3
Internet - The TCP/IP suite TCP/IP is a suite of protocols. The acronym TCP/IP means "Transmission Control Protocol/Internet Protocol" and is pronounced "T-C-P-I-P". It comes from the names of the two major protocols in the suite of protocols, i.e. the TCP and IP protocols). In... en.kioskea.net/internet/tcpip.php3
Internet - Notion of port Many TCP/IP programs can be executed simultaneously over the Internet (you can for example open several browsers simultaneously or browse HTML pages while downloading a file via FTP). Each of these programs works with a protocol, sometimes the... en.kioskea.net/internet/port.php3
Voir les réponses