- Information Security
- VAPT
- SIEM
- McAfee Nitro
- Splunk
- UF-Installation on Linux
- UF-Installation on Windows
- Splunk Instance Installation
- UF & Receiver Configuration
- HF & Receiver Configuration
- Deployment Server & Client Configuration
- Distributed Search Setup
- Indexer Clustering
- Search Head Clustering
- SH Clustering with Non-clustered Indexer
- SH Clustering with Clustered Indexer
- Splunk Fundamental 1
- Splunk Fundamental 2
- Regular Expression
- Computer Networking
- TCP/IP Vs OSI
- Networking Fundamentals
- Subnetting
- About CISCO Router
- Layer-2 Switching
- Virtual LAN
- Trunking
- Inter VLAN
- Extended & Voice VLAN
- VLAN Trunking Protocol
- Spanning Tree Protocol
- Ether Channel
- Layer-3 Routing
- Static Routing
- Default Routing
- Routing Information Protocol
- Enhanced Interior Gateway Routing Protocol
- Open Shortest Path First
- Access Control List
- Network/Port Address Translation
- WAN Technologies
- Leased Lines
- Frame Relay
- Metro-Ethernet
- Multi Protocol Label Switching
- Virtual Private Network
- Cyber Security Attacks
- WAPT
- Information Gathering(WEB)
- Cookies & Session Management
- SQL Injection
- Cross Site Scripting
- Cross Site Request Forgery
- Insecure Direct Object Request
- Command Injection
- HTML Injection
- File Upload
- URL Redirection
- Local & Remote File Inclusion
- HTTP Authentication
- Web Shells
- Encoding Methods
- Firefox Addons
- Python
- CTF Challenge
TCP HEADER
Source Port: It is 16 bit field. The port is used in source host
Destination Port: It is 16 bit field. The port is used in destination host
Sequence Number:
To make TCP reliable, the bytes are numbered. The receiver looks at the seq number so it can see if all packets arrived and put them in the correct order, even if they arrive out of order. The sender increments the seq number in each packet by the number data bytes in the previous packet. The seq number specifically is the number of the first byte of data in the packet. ISN (Initial Sequence Number)
Acknowledge Number:
The receiver acknowledges the receipt of all data bytes that it has received. Specifically it is the byte number (i.e seq number) that the receiver is expecting to see next from the sender.
Data Offset: It indicates the length of the TCP header.
Minimum length of TCP header is 20 bytes
Maximum length of TCP header is 60 bytes
Reserved: For future use
Flags:
URG - Urgent pointer field significant
ACK - Acknowledgment field significant
PSH - Push function
RST - Reset the connection
SYN - Synchronize sequence number
FIN - Finish, no more data from sender
Window: It tells how much data, sender can send before the ACK's from the receiver for the previous data.
Checksum:
Before a packet is sent, TCP runs both its header and data through a specific algorithm to arrive a checksum value, which is placed in the checksum field. When the receiver gets, it runs through the same algorithm. If the value matches, it accepts. If not it drops the packet.
Urgent pointer:
Options:
Padding: It is used to ensure the TCP header ends and data begins on a 32 bit boundary. The padding is composed of zeros