A Method for attacking a Protected Site by a Clean Intruder

Abstract

The appearance of the Internet is considered to be one of the major events of the last years; information become available on-line, all users who have a computer can easily connect to the Internet and search for information they want to find. The result is that everybody can read the latest news on-line and also consult digital libraries, read about firms, universities, cultural events, exhibitions, etc. So, sensitive Internet sites must be protected against the intentional hostile intrusion by strong protection systems. Althogh the strongness of these protection systems, there are alwayes vulnerabilites in them and give the intruders a big chance to penetrate the protected sites.This research proposd a method to attack the protected site by taking the advantage of the NTFS (New Tecnology File System) and ADS (Alternete Data Stream) properties as a security holes. This method has two steps: The first, the attacker (clean intruder) using the IP Address Spoofing Attack to make authorized access to the protected site. The secod, the clean intruder could insert any malicious programs in any others of NTFS, without any changes to these files especially their size. The result is, the clean intruder (by inserted malicious programs) will determine the holes and vulnerabilities of the protection system to penetrate the security in simple and efficient way