CISSP Fix

E-Commerce is the conducting of commercial transactions on the Internet where goods, information or services are bought and then paid for. Quite simply it means conducting business electronically i.e. online. Now you don’t need to go to the bank for transactions neither you should go to the queue of ticket counter e-commerce is there for you, just have an internet connection and be free to execute all your money over it. Really ,it works!. Discover it at your computer and have the advantage of the latest and most powerful technology today.

This Halloween jack-o’-lantern spreads light of knowledge and learning. I was wandering on the net for some offers and discounts came up on this Halloween. I am really bored with ugly ghost of recession and economic slow down all the year. My way to get this ghost out is to get certified, and guess what, I got one great deal of discount on uCertify.com. I already am fan of this company as they get me CISSP certified. When I came across their blog I found real great discount, They are proclaiming, “Buy one or more test Prepkits and save 15% in addition to existing sale prices! Simply use promotion code BOO at checkout”. Isn’t that great opportunity? My answer will be YES. What next, go and see for yourself what uCertify team is presenting on this Halloween (Don’t think they are throwing costume party at my house). Visit uCertify blog to find out more. Have a great and scary Halloween.

Wireless networks today are the real needs of the business and technology world as it provides the interconnection between computers without any wires. The bottleneck of location and wires ,costs are all eliminated by the wireless technology. The wireless network setup concept is very much similar to that of a wired network where instead of the wires only wirelessly connections are made through wave spectrum.

It is a fairly simple setup. The Internet connection comes in from your provider and is connected to a wireless access point or router which broadcasts the signal. You connect wireless antenna network cards to your computers to receive that signal and talk back to the wireless access point and you are in business.

“Necessity is the Mother of all Inventions”, sophistication of digital environment lead to the discovery of Computer Forensics. Computer Forensics is an investigative process of collecting and examining electronic evidence to form a structured report, which can be produced in a court as evidence. Computer Forensic is introduced when crime is facilitated either by using computer or on Computer or Network itself. Computer Forensic also deals with the issue, such as Privacy, Copy Infringement, and Software ownership. For the collection of Electronic Evidence, it is required to follow certain pre-established procedure and steps, which ensure the identity of culprit. By following such methodologies, computer crime investigation can be done effectively and efficiently.

WHOIS is a famous protocol chiefly used for database query to determine the information of Internet resources like domain name, IP address, or any autonomous address. WHOIS lookup is basically performed with command user interface. Many web-based tools are available to perform WHOIS query. This service is usually communicated using the Transmission Control Protocol (TCP). Server listens to the request on the port number 43. The WHOIS system is originally developed for the system administrator to acquire contact information for different IP address or domain name administrators. Now a days WHOIS lookup query evolved into various different important aspects, including:

Footprinting in computer is actually the process of collecting data with regard to a specific network environment, usually for the purpose of finding ways to intrude into the environment. Footprinting can reveal system vulnerabilities and improve the ease with which they can be exploited. Footprinting begins by determining the location and objective of an intrusion. Once this is known, specific information about the organization is gathered using non-intrusive methods. For example, the organization’s own Web page may provide a personnel directory or employee bios, which may prove useful if the hacker needs to use social engineering to reach the objective. Conducting a whois query on the Web provides the domain names and associated networks related to a specific organization. Other information obtained may include learning the Internet technologies being used; the operating system and hardware being used; IP addresses; e-mail addresses and phone numbers; and policies and procedures.

An Intrusion Detection System (IDS) is used to detect unauthorized attempts at accessing and manipulating computer systems locally, through the Internet or through an intranet. It can detect several types of attacks and malicious behaviors that can compromise the security of a network and its computers. This includes network attacks against vulnerable services, unauthorized logins and access to sensitive data, and malware (e.g. viruses, worms, etc.). An IDS also detects attacks that originate from within a system. In most cases, an IDS has three main components: Sensors, Console, and Engine. Sensors generate security events. A console is used to alert and control sensors and to monitor events. An engine is used to record events and to generate security alerts based on received security events. In many IDS implementations, these three components are combined into a single device. Basically, the two following types of IDS are used :

What is MD5?

E-mail spam new name of irritation and congestion in IT centaury. It is also known as junk e-mail, which kind of spam that includes nearly identical messages commercial in nature and is sent to various recipients by e-mail. Spam is commonly as unsolicited bulk e-mail (UBE). Description of spam usually includes the aspects that email is unsolicited and sent in bulk “UCE” refers specifically to unsolicited commercial e-mail. E-mail spam has exponential growth in last two decades to several billion messages a day. Spam has frustrated, confused, and annoyed e-mail users. The total quantity of spam has leveled off slightly in recent years, and is no longer growing exponentially. Receiving spam is a common complaint of many Internet users. In fact, spam email has become a troublesome problem as individuals spreading spam email find easier ways to invade users’ email accounts, leading to the necessity of such tools as spam filters and spam blocker features. Spam is a term that refers to the unsolicited e-mails sent to a large number of e-mail users. The number of such e-mails is increasing day by day, as most companies now prefer to use e-mails for promoting their products. Because of these unsolicited e-mails, legitimate e-mails take a much longer time to deliver to their destination. The attachments sent through spam may also contain viruses. However, spam can be stopped by implementing spam filters on servers and e-mail clients.

Password cracking is the procedure of finding passwords from the data, which has been stored in or transferred by a system. Most common method of password cracking is to guess the password repeatedly until the correct password is not found. The ethical objective of password cracking is to help a user to recover a forgotten password. Password cracking is mainly employed to gain unauthorized access to a system, or used as a protective measure by system administrators to check whether the password is easily crackable or not. On the basis of file, password cracking is used to gain full access to the digital evidence for which a judiciary allowed access but the access to particular file is restricted. There are numerous ways for password cracking. Some of the methods are as follows: