GroundReport | India | A Research made on Web Vulnerabilities by Sedulity Team

A Research made on Web Vulnerabilities by Sedulity Team

Anup Girdhar December 03, 2008

The first ever state of Research has been developed by Anup Girdhar, C.E.O-Founder Sedulity Solutions & Technologies and his team of 8 Trainee members from different Engineering College Students. It was a great effort that has been made by all these upcoming Technologists; (from left to right) Piyush Atal, Vaibhav Sharma, Kunal Kumar, Parvinder Singh, Anup Girdhar C.E.O Sedulity Groups in the center, Prateek Kathuria, Nikhil Mittal, Akanksha Saxena, and Raman Pal on the Vulnerabilities of Websites. The purpose of this research paper is to provide information and defense mechanism against the denial of service (DOS ) attacks & distributed denial of service attacks(DDOS), using internet control message protocol(ICMP). The entire team has done a detailed analysis & research on how 'hitherto, 80% of the website could easily be attacked or hacked'. In this analysis, using ICMP & ping command, they have extracted the IP Address & TTL (Time to leave) of the website to be attacked; TTL tells the type of operating system residing at server end. Then the team went for DOS/DDOS attacks, by sending a flood of requests for the same website, which may lead to slow down, blocking of the bandwidth or rebooting of the server. In the worst scenario when a website receives innumerable request from countless terminals, it may also lead to crashing of the system. 'Ping of death' is another type of attack which could be used before windows 2000 got invented. The team has come up with three ways to minimize the vulnerabilities of the network, those are as follows:-
1. By blocking the ICMP, thereby, blocking the arrival of ICMP packets on the website server, by which more than 60% of the attacks can be neutralized.
2. By turning on the firewall, we can scrutinize all incoming request packets.
3. By using the technique of Demilitarize Zone(DMZ).
Our country requires thousands of Cyber Security experts to stop the cyber criminals. Now a days where Cyber crime is growing with the increased use of computers and Internet in the country, the manpower of Cyber Crime investigation Experts are in short supply. Hackers who have broken thousands of Websites by the end of year 2007 and make a record in Cyber Crime history, where in few of them are still unidentified because of less number of Security experts in our country.investigation Experts are in short supply. Hackers who have broken thousands of Websites by the end of year 2007 and make a record in Cyber Crime history, where in few of them are still unidentified because of less number of Security experts in our country.
Today in the Modern Computerization, where every transaction is getting depend on internet, there has been many cases of cyber crimes rising up day-by-day which includes Credit card scams, Money Laundering, E-mail spoofing, bombing, Cyber Stalking, Phishing attacks, SMS Hacking, cloning of mobiles phone, etc.
Presently, SST & TMU is offering various courses on “Cyber Security & Ethical Hacking” at very affordable fees. Sedulity has few helpline numbers (+91-9312903095, 9811572430, +91-9860201117) to offer free consultation and guidance regarding the courses and also to help those victims who are suffered from such cases.