Hacking Knowledge
  • 🏠​ Homepage
    • Welcome
    • About Me
    • Disclaimer
    • Conventions
  • 🔑Cybersecurity Basics
    • Introduction
    • Vulnerabilities
    • Cyberattacks
      • Cyber Kill Chain
      • Malware
    • Security Models
      • Methodologies
    • Legal Support
    • Career Paths
    • Certifications
    • Related Concepts
  • 🐧Linux
    • Introduction
    • Functional Structure
      • File Permissions
      • Environment Variables
      • Crontabs
    • Commands
      • Operators
    • Useful Shell Resources
    • Related Concepts
  • ⊞ Windows
    • Introduction
    • Functional Structure
      • File Permissions
      • Environment Variables and System Tools
      • System Events
    • Commands
    • Related Concepts
  • 🌐Networks
    • Introduction
    • Networking Frameworks
      • OSI Model
      • TCP/IP Model
    • Protocols
      • ARP
      • TCP
      • NetBIOS
      • SNMP
      • DNS
      • HTTP
      • Telnet
      • FTP
      • TFTP
      • SMB
      • RDP
      • SSH
      • SMTP
      • POP 3
      • IMAP
      • Oracle TNS
      • IPMI
    • Hypervisors
    • Related Concepts
    • Tools and Utilities
  • 🔐Cryptography
    • Introduction
    • Encoding (WIP)
    • Encryption (WIP)
      • Types of encryption (WIP)
      • Methods of Encryption (WIP)
    • Hashing
      • Well-known Hashes (WIP)
    • Related Concepts
    • Tools and Utilities
    • Useful Tips
  • 👣Digital Forensics
    • Introduction
    • Basic Plan
    • Related Concepts
    • Tools and Utilities
    • Useful Tips
  • 🎯Penetration Testing
    • Introduction
    • Categorization
    • Process Stages
      • Pre-engagement
      • Information Gathering
        • OSINT
          • Dorking
          • Searching breach data dumps
        • Enumeration
          • Get information from SSL certificates
          • Retrieve information from IMAP/POP3 servers
          • Redirect HTTP traffic using Feroxbuster and ZAP
          • Mount accesible NFS Shares
          • Bruteforce subdomains
        • Tools and Utilities
        • Useful Tips
      • Vulnerability Assessment
      • Exploitation
        • Tools and Utilities
        • Useful Tips
      • Post-Exploitation
        • Techniques (WIP)
        • Privilege Escalation
          • Linux Privilege Escalation
          • Windows Privilege Escalation
        • Tools and Utilities
        • Useful Tips
      • Lateral Movement
      • Proof-of-Concept
      • Post-engagement
        • Sample Report (WIP)
    • Related Concepts
  • 📡Web Exploitation
    • Introduction
    • OWASP Top 10
      • Broken Access Control
      • Cryptographic Failures
      • Injection
      • Insecure Design
      • Security Misconfiguration
      • Vulnerable and Outdated Components
      • Identification and Authentication Failures
      • Software and Data Integrity Failures
      • Security Logging and Monitoring Failures
      • Server-side Request Forgery
    • Attack Techniques
      • Local File Inclusion
      • Remote File Inclusion
      • Cross-Site Scripting
      • Command injection
      • XXE Injection
      • Abuse File Upload
      • Cross-Site Request Forgery
      • Header Poisoning
      • HTTP Parameter Pollution
      • Content Security Policy Bypass
      • Exposed .htaccess and .htpasswd files
      • Server-Side Request Forgery
      • Server-Side Template Injection
      • Cookie Hijacking
      • Null Byte Poisoning
      • PHP - Abuse PHP Type Juggling
      • PHP - Bypass using filters
      • WordPress - Abuse Theme Configuration on templates
      • WordPress - Getting credentials from configuration files
      • CVE - Log4Shell
    • Related Concepts
    • Tools and Utilities
    • Useful Tips
  • 🗄️Database Attacks
    • Introduction
    • SQL
      • MySQL
      • MSSQL
      • SQLite3
    • Attack Techniques
      • SQL Injection
        • Authentication Bypass
      • NoSQL Injection
      • MS SQL - xp_cmdshell Abuse
      • MongoDB - Impersonation via credentials change
    • Related Concepts
    • Tools and Utilities
    • Useful Tips
  • 👥Active Directory
    • Introduction
    • Related Concepts (WIP)
    • Tools and Utilities (WIP)
    • Useful Tips (WIP)
  • ☁️CLOUD HACKING
    • Introduction
    • Related Concepts
    • Tools and Utilities (WIP)
    • Useful Tips (WIP)
  • 📜Scripting
    • Introduction
    • Reverse Shell
    • Bind shell
    • Web Shell
  • 🚩Practical Skill Development
    • Learning Platforms
      • Hack The Box
      • TryHackMe
      • picoCTF
    • Featured Labs
    • CTF Competitions
  • 📝Write-Ups
    • Introduction
    • HTB Starting Point
      • Meow (Tier 0)
      • Fawn (Tier 0)
      • Dancing (Tier 0)
      • Redeemer (Tier 0)
      • Explosion (Tier 0)
      • Preignition (Tier 0)
      • Mongod (Tier 0)
      • Synced (Tier 0)
      • Appointment (Tier 1)
      • Sequel (Tier 1)
      • Crocodile (Tier 1)
      • Responder (Tier 1)
      • Three (Tier 1)
      • Ignition (Tier 1)
      • Bike (Tier 1)
      • Funnel (Tier 1)
      • Pennyworth (Tier 1)
      • Tactics (Tier 1)
      • Archetype (Tier 2)
      • Oopsie (Tier 2)
      • Vaccine (Tier 2)
      • Unified (Tier 2)
      • Included (Tier 2)
      • Markup (Tier 2)
      • Base (Tier 2)
    • HTB Machines
      • Nibbles (Easy)
      • BountyHunter (Easy)
      • Crafty (Easy)
      • Chemistry (Easy)
    • HTB Challenges
    • HTB Advanced labs
  • Group 1
Powered by GitBook
On this page

Was this helpful?

  1. Networks

Protocols

PreviousTCP/IP ModelNextARP

Last updated 2 months ago

Was this helpful?

Network protocols are the set of rules and conventions that govern how data is transmitted, received, and interpreted across a network. These protocols ensure that devices, systems, and applications can communicate efficiently and securely, regardless of their underlying infrastructure.

They play a crucial role in maintaining the integrity and reliability of communications over the Internet, local networks, and private systems, by defining standards from data formatting to error checking and packet routing.

Here is a list of some well-known network protocols:

  • ARP: Address Resolution Protocol, operates in the Data Link layer, and is responsible for finding the MAC address related to a specific IP address

  • PPP: Point-to-Point Protocol, operates in the Data Link layer, used to establish a direct connection between to nodes of a network

  • DHCP: Dynamic Host Configuration Protocol, operates in the Data Link layer, and is used to automatically assign IP addresses and other network configuration parameters to devices on a network. Usually operates on UDP ports 67/68 and communicates by sending the following messages:

    • DHCP Discover: See if any DHCP servers are on the network

    • DHCP Offer: The DHCP server then replies with an IP address that could be used

    • DHCP Request: The device replies confirming it wants the offered IP Address

    • DHCP ACK: The DHCP server sends a reply acknowledging this has been completed, and the device can start using the IP Address

  • ICMP: Internet Control Message Protocol, operates in the Network layer, and diagnoses route state through error messages

  • TCP: Transmission Control Protocol, is a connection-based protocol that operates in the Transport layer, and is used when accuracy is more important than speed, dividing the transmission into segments

  • UDP: User Datagram Protocol, a protocol that operates in the Transport layer, is used when speed is more important than accuracy, dividing the transmission into datagrams

  • FTP: File Transfer Protocol, operates in the Application layer, sending and receiving files between systems connected through TCP. Usually operates on port 21

  • TFTP: Trivial File Transfer Protocol, operates in the Application layer, using it is only possible to upload and download files under a server. Usually operates on UDP port 69

  • DNS: Domain Name System, operates in the Application layer, transforms domain URLs into IP addresses and vice versa. Usually operates on UDP port 53

  • HTTP: HyperText Transfer Protocol, operates in the Application layer, a set of rules used for communicating with web servers for the transmission of data. Usually operates on port 80

  • HTTPS: HyperText Transfer Protocol Secure, operates in the Application layer, is the secure version of HTTP where data is encrypted, and stops people from seeing the sent or received data. Usually operates on port 443

  • WHOIS: Operates in the Application layer, query databases that store information about domain names, IP addresses, and related entities. Usually operates on port 43

  • SSH: Secure Shell Protocol, operates in the Application layer, and manages remote access to a server via a secure channel. Allows to remotely execute commands on another device. Any data between devices is encrypted when traveling through the network. Usually operates on port 22

  • Telnet: Operates in the Application layer, and is used for terminal-to-terminal connections, and by other protocols to establish a remote control channel. Usually operates on port 23

  • SMB: Server Message Block, operates in the Application layer, a client-server protocol that controls file and directory access and other network resources, it is used a lot in Windows for file transfer or sending files to printers. Usually operates on port 445

  • NTP: Network Time Protocol, operates in the Application layer, an internet protocol that synchronizes system clocks via packet routing in a variable latency. Usually operates on UDP port 123

  • IRC: Internet Relay Chat, operates in the Application layer, and is based on real-time communication for chat channels where no previous communication has to be established between users. Usually operates on port 194

  • RIP: Routing Information Protocol, operates in the Application layer, and is used by routers for exchanging information about IP networks. Usually operates on UDP port 520

  • SNMP: Simple Network Management Protocol, operates in the Application layer, facilitates the exchange of management information between network devices, and allows administrators to monitor the operation of the network. Usually operates on UDP ports 161/162

  • SMTP: Simple Mail Transfer Protocol, operates in the Application layer, used for sending and reception of e-mail. Usually operates on port 25

  • SMTPS: Simple Mail Transfer Protocol Secure, operates in the Application layer, a variant of SMTP that uses SSL/TLS encryption to securely send emails. Usually operates on port 465

  • POP: Post Office Protocol, usually POP3, operates in the Application layer, and is used by local clients to get and manage mail messages from a remote POP server. Usually operates on port 110

  • UPnP: Universal Plug and Play, operates in the Application layer, allows devices to discover each other in a network and establish network services. Usually operates on UDP port 1900

🌐