This capstone post analyzes an end-to-end privacy attack pipeline: passive TLS metadata collection, behavioral modeling, live prediction, and mitigation impact using ECH. . Threat Model and Objective The attacker is passive on the victim network path and cannot decrypt TLS payloads. Objective: infer user intent and likely next destinations from observable handshake metadata. . […]
TLS and VPN Tunneling: Strong Encryption, Real-World Gaps, and Metadata Exposure
TLS and VPNs are foundational, but confidentiality of payloads does not eliminate all signal leakage. This post links handshake security, tunnel construction, and operational metadata exposure. TLS Security Objective TLS provides confidentiality, integrity, and endpoint authentication for data in transit. Modern deployments rely on authenticated key exchange, certificate validation, and AEAD ciphers. Handshake […]
DNS Security – Cache Poisoning, Resolver Weaknesses, and Hardening
DNS is a trust amplifier: one successful forged answer can redirect large volumes of traffic. This post connects DNS protocol behavior, cache poisoning mechanics, and practical defense controls. Why DNS Is a High-Value Target Applications usually trust DNS results implicitly. If an attacker can poison recursive cache state, downstream clients inherit malicious answers without […]
Cryptography, Symmetric Ciphers and PKI
This post connects cryptographic primitives to system-level trust. The core idea is simple: secure primitives are necessary but not sufficient; operational details determine whether those primitives actually deliver confidentiality, integrity, authentication, and non-repudiation. Why This Layer Matters Packet-level attacks show that identity can be forged at lower layers. Cryptography is the mechanism that upgrades […]
Packet-Level Foundations and Active Network Attacks
A technical deep dive into packet sniffing and spoofing from CS528, including ICMP attack mechanics, lab implementation details, and layered defenses.
Network Security Public Key Cryptography
Table of Contents 1. Introduction & Motivation 2. Why We Need PKC 3. Public Key Encryption 4. RSA Cryptosystem 5. RSA Security Analysis 6. CPA/CCA Security 7. Digital Signatures 8. Complete Comparison 1. Introduction: The Security Landscape 🎯 Course Context This lecture focuses on securing communication at different layers of the IP/TCP stack. We can […]
Network Security – TCP IP Attacks
🔒 TCP/IP Attacks & Security 📑 Table of Contents Overview TCP/IP Protocols IP Security ICMP Attacks TCP Scanning & Spoofing DoS Attacks Countermeasures 📖 1. Overview and Context Learning Objectives Understand the fundamental architecture and vulnerabilities of the TCP/IP protocol stack Identify and analyze common network-layer attacks including spoofing, sniffing, and scanning Comprehend DoS […]
Link Layer Security
Network Security: Link Layer Security 3.1 ARP Cache Poisoning Link Layer Addressing Fundamentals Two Types of Addresses: IP Address (32-bit): Network-layer address used for routing packets to destination networks across the internet MAC Address (48-bit): Link-layer (physical/Ethernet) address used to identify source and destination on the same local network Most LANs use globally unique 48-bit […]
Network Security
Syn Flood Attacks https://www.cloudflare.com/learning/ddos/syn-flood-ddos-attack/ A SYN flood (half-open attack) is a type of denial-of-service (DDoS) attack which aims to make a server unavailable to legitimate traffic by consuming all available server resources. By repeatedly sending initial connection request (SYN) packets, the attacker is able to overwhelm all available ports on a targeted server machine, causing […]
Web APIs and Streaming Data
Traditional WebAPI is inefficient during transactions that take long durations. Below are some popular alternatives to RESTFul API. Webhooks There is a client that registers with interested events and callback URL with the server. The client tells the server the client’s URL that the server POST updates to. When an event happens, […]
Azure Network Traffic Management
The following is from Azure Administrator Training lab for AZ-103 System Routes Azure uses system routes to direct network traffic between virtual machines,on-premises networks, and the Internet. The following situations are managedby these system routes: Traffic between VMs in the same subnet. Between VMs in different subnets in the same virtual network. Data flow from […]
Azure Intersite Networking
The following is from Azure Administrator Training lab for AZ-103 VNet Peering VNet Peering Perhaps the simplest and quickest way to connect your VNets is to use VNetpeering. Virtual network peering enables you to seamlessly connect two Azurevirtual networks. Once peered, the virtual networks appear as one, forconnectivity purposes. There are two types of VNet […]
Azure Virtual Networking
The following is from Azure Administrator Training lab for AZ-103 Azure Networking Components A major incentive for adopting cloud solutions such as Azure is to enableinformation technology (IT) departments to move server resources to thecloud. This can save money and simplify operations by removing the need tomaintain expensive datacenters with uninterruptible power supplies,generators, multiple fail-safes, […]
Networking Concepts
Revisiting some Networking concepts OSI Overview The Open Systems Interconnection model (OSI model) is a conceptual model that characterises and standardises the communication functions of a telecommunication or computing system without regard to its underlying internal structure and technology. Its goal is the interoperability of diverse communication systems with standard communication protocols. https://www.cloudflare.com/img/learning/ddos/what-is-a-ddos-attack/osi-model-7-layers.svg Physical Layer The physical layer is responsible for the transmission […]
DNS, Route53, CloudFront, WAF
DNS All computers on the internet, from your smart phone or laptop to the servers that serve content for massive retail websites, communicate with one another by using numbers. These numbers, known as IP addresses, are in one of the following formats: Internet Protocol version 4 (IPv4) format, such as 192.0.2.44 32 bits (8 […]
AWS VPC
Amazon Virtual Private Cloud (Amazon VPC) enables you to launch AWS resources into a virtual network that you’ve defined. This virtual network closely resembles a traditional network that you’d operate in your own data center, with the benefits of using the scalable infrastructure of AWS. The following are the key concepts for VPCs: A virtual […]