Network-Based Attacks

🛡️ Network Defense: Fighting the Invisible Bullies

Imagine your computer is a cozy house on the internet street. Bad guys sometimes try to break in or play tricks. Let’s learn how to protect your house!

🌊 What is a DDoS Attack?

The Story of Too Many Visitors

Imagine you have a lemonade stand. You can serve 10 kids per minute. That’s your limit.

Now imagine a bully sends 1,000 kids to your stand all at once. They don’t even want lemonade—they just crowd around your stand!

What happens?

• 😰 Real customers can’t get through
• 🚫 Your stand is blocked
• 💔 Your business stops working

That’s exactly what a DDoS attack does to websites!

DDoS = Distributed Denial of Service

Real Life Example 🎮

A gaming company’s servers get hit by a DDoS attack:

• Millions of fake requests flood in
• Real players can’t log in
• The game goes “offline” for everyone

How Attackers Do It

graph TD
    A["😈 Attacker"] --> B["🤖 Zombie Computer 1"]
    A --> C["🤖 Zombie Computer 2"]
    A --> D["🤖 Zombie Computer 3"]
    A --> E["🤖 Zombie Computer 4"]
    B --> F["🎯 Target Website"]
    C --> F
    D --> F
    E --> F
    F --> G["💥 Website Crashes!"]

Botnet = Robot Network

• Attackers infect thousands of computers with malware
• These “zombie” computers obey the attacker
• All zombies attack at once = BOOM! 💥

🛡️ DDoS Mitigation: How to Fight Back

The Superhero Tools

Think of DDoS mitigation like having bouncers at your lemonade stand. They check who’s real and who’s fake!

5 Ways to Stop DDoS Attacks

1. 🚦 Rate Limiting

“Only 100 requests per minute allowed!”

Like a traffic light that slows down cars. If someone sends too many requests, they get blocked.

2. ☁️ Content Delivery Networks (CDNs)

“Many stands, not just one!”

Instead of one lemonade stand, you have stands all over the city. If one gets crowded, others still work!

graph TD
    A["👤 User"] --> B{CDN Shield}
    B --> C["Server 1 - USA"]
    B --> D["Server 2 - Europe"]
    B --> E["Server 3 - Asia"]

3. 🧹 Traffic Scrubbing

“Filter out the bad guys!”

Special machines check every visitor:

• ✅ Real human? Come in!
• ❌ Fake robot? Go away!

4. 🕳️ Black Hole Routing

“Send bad traffic to nowhere!”

Like a trap door that sends all suspicious traffic into a black hole where it disappears.

5. 🔍 Anycast Network Diffusion

“Spread the load everywhere!”

If 1 million attacks come, split them across 100 servers. Each server only handles 10,000 - easy!

Quick Summary Table

🎭 Man-in-the-Middle Attacks (MITM)

The Sneaky Spy Story

Imagine you’re passing notes to your friend in class:

• You write: “Meet me at the park!”
• You give it to someone to pass along
• But that person reads your note secretly! 👀
• They might even change it to say: “Meet me at the mall!”

That’s a Man-in-the-Middle attack!

How MITM Works

graph LR
    A["👤 You"] --> B["😈 Attacker"]
    B --> C["🏦 Bank Website"]
    C --> B
    B --> A

You think: “I’m talking directly to my bank!”

Reality: “A spy is reading and changing everything!”

Real Examples

🏪 Fake WiFi Attack

• You’re at a coffee shop
• You connect to “Free_Coffee_WiFi”
• Surprise! It’s an attacker’s fake network
• They see everything you do online!

📧 Email Interception

• You email your password to yourself
• Attacker catches it in the middle
• Now they have your password!

How to Stay Safe 🔐

Encryption = Secret Code

Without encryption:

“My password is cat123”

With encryption:

“Xk#9@mL!pQ2$zN”

The attacker sees scrambled letters. Useless! 🎉

🔄 Replay Attacks

The Copy-Paste Thief

Imagine you have a magic key card to enter your house:

• You tap the card: “BEEP!” Door opens! ✅
• But someone secretly recorded that beep sound
• Later, they play the recording
• Door opens for them too! 😱

That’s a replay attack!

How Replay Attacks Work

graph TD
    A["👤 You Login"] --> B["📡 Send Password"]
    B --> C["🖥️ Server"]
    D["😈 Attacker Records"] --> B
    E["⏰ Later..."] --> F["😈 Replays Recording"]
    F --> C
    C --> G["✅ Server Accepts!"]

The attacker doesn’t know your password—they just copy it!

Real Examples

🚗 Car Key Fob Attack

• You press your car key to unlock
• Attacker records the signal
• Later, they replay it
• Your car unlocks for them!

💳 Payment Capture

• You tap your card at a store
• Attacker records the transaction
• They replay it to steal money!

How to Stop Replay Attacks 🛡️

1. ⏰ Timestamps

Add the current time to every message:

• “Open door + 3:42:15 PM”
• If someone replays at 3:50 PM, server says “TOO OLD! Rejected!”

2. 🔢 Nonce (Number Used Once)

Each message gets a unique random number:

• Message 1: “Login + ABC123”
• Message 2: “Login + XYZ789”
• If ABC123 is used twice, server says “Already used! Rejected!”

3. 🎫 Session Tokens

Like getting a new ticket for each ride:

• Login → Get ticket #5501
• Use ticket once → Ticket expires
• Old tickets don’t work!

Defense Summary

🎯 Quick Comparison: All 4 Attack Types

🌟 Remember This!

The Castle Analogy 🏰

Your network is like a castle:

1. DDoS = Army rushing your gates

   • Solution: Strong walls, many gates

2. MITM = Spy in your messenger corps

   • Solution: Secret codes (encryption)

3. Replay = Enemy copying your battle plans

   • Solution: Date-stamp everything

💪 You’re Now a Network Defender!

You learned how bad guys attack networks:

• 🌊 DDoS floods websites with fake traffic
• 🛡️ Mitigation uses smart filters to block attacks
• 🎭 MITM spies on conversations
• 🔄 Replay copies and reuses captured data

And you know how to defend against them all!

Next time you see that little 🔒 lock icon in your browser, you’ll know it’s protecting you from MITM attacks. You’re now part of the cyber defense team! 🎉

💡 Pro Tip: Always use websites with HTTPS (not just HTTP). That ‘S’ stands for ‘Secure’ and means your data is encrypted!