Firewalk (computing): Difference between revisions

Browse history interactively

← Previous edit

Content deleted Content added

VisualWikitext

Revision as of 11:49, 11 July 2012 edit Terillius (talk \| contribs) 32 edits mNo edit summary ← Previous edit		Latest revision as of 19:45, 9 August 2025 edit undo Bender the Bot (talk \| contribs) Bots 1,064,377 edits m →External links: HTTP to HTTPS for SourceForge Tag: AWB
(25 intermediate revisions by 16 users not shown)
Line 1: {{~~notability~~primary sources\|date=January 2011}} ~~{{primarysources\|date=January 2011}}~~ '''Firewalking''' is a technique developed by Mike Schiffman and David Goldsmith that utilizes [[traceroute]] techniques and [[Time to live\|TTL]] values to analyze [[Internet Protocol\|IP packet]] responses in order to map networks and determine gateway ~~ACL (~~[[Access Control List)\|ACL]] filters ~~and map networks~~. It is an active reconnaissance [[network security]] analysis technique that attempts to determine which layer 4 protocols a specific firewall will allow.~~<br />~~ ~~<br />~~ Firewalk is a software tool that performs Firewalking. Firewalk is a tool to perform Firewalking. To protect a firewall / gateway against firewalking one can block [[Internet Control Message Protocol\|ICMP]] [[ICMP Time Exceeded\|Time Exceeded]] messages<ref>Rahul Kokcha</ref>. To protect a firewall or gateway against firewalking one can block outgoing TTL messages to avoid exposing information about your network. Additionally, using [[Network address translation]] is useful to hide internal network addresses. <ref> {{cite web \| title=Firewalk : Can Attackers See Through Your Firewall? \| url=https://www.giac.org/paper/gsec/312/firewalk-attackers-firewall/100588 \| access-date=2024-05-09 \| archive-url=https://web.archive.org/web/20220320023059/https://www.giac.org/paper/gsec/312/firewalk-attackers-firewall/100588 \| archive-date=2022-03-20 \| url-status=live \| last=Irby \| first=David \| year=c. 2000 \| work=GIAC Certifications }}</ref> == See also == * [[Access ~~control~~Control ~~list~~List]] * [[Firewall (computing)]] * [[Traceroute]] Line 15 ⟶ 27: == External links == * [http://packetstormsecurity.org/UNIX/audit/firewalk/ Firewalk tool], an Open Source tool that determines gateway ACL filters and maps networks by analyzing IP packets responses. * [~~http~~https://sourceforge.net/projects/wooterwoot/ WooterWoot], an Open Source set of tools that builds [[Check Point]], [[Cisco ASA]], or [[Netscreen]] policies from logfiles. * [http://www.webopedia.com/TERM/F/firewalking.html Use Firewalk in Linux/UNIX to verify ACLs and check firewall rule sets], article on using Firewalk, by Lori Hyde [[CCNA]]. * [http://linux.die.net/man/8/firewalk firewalk(8) - Linux man page] * [http://www.giac.org/paper/gsec/312/firewalk-attackers-firewall/100588 GIAC / SANS Institute Description of Firewalking] [[Category:Computer network security]] {{computer-security-stub}}