Revision as of 10:53, 14 February 2018 edit 194.100.120.5 (talk) Added a link to a blog post presenting some research done regarding evasions. ← Previous edit		Revision as of 18:28, 6 March 2018 edit undo Kvng (talk \| contribs) Extended confirmed users, New page reviewers 115,943 edits rm repeated link Next edit →
Line 30: === Protocol ambiguities === Some IDS evasion techniques involve deliberately manipulating [[Transmission Control Protocol\|TCP]] or [[Internet Protocol\|IP]] protocols in a way the target computer will handle differently from the IDS. For example, the ~~[[Transmission Control Protocol\|~~TCP ~~Urgent~~urgent ~~Pointer]]~~pointer is handled differently on different operating systems. If the IDS doesn't handle these protocol violations in a manner consistent with its end hosts, it is vulnerable to insertion and evasion techniques similar to those mentioned earlier.<ref name=":04" /> === Low-bandwidth attacks ===

Intrusion detection system evasion techniques: Difference between revisions