Analisis Bukti  Serangan Address Resolution Protocol Spoofing menggunakan Metode National Institute of Standard Technology

Riadi, Imam; Fadlil, Abdul; Hafizh, Muhammad Nasir

doi:10.29408/edumatic.v4i1.2046

Cited by 5 publications

(5 citation statements)

References 6 publications

(6 reference statements)

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Selanjutnya adalah penelitian yang berjudul Analisis Bukti Serangan Address Resolution Protocol Spoofing menggunakan Metode National Institute of Standard Technology. Penelitian melakukan simulasi serangan sebanyak dua serangan terhadap satu perangkat laptop dan satu perangkat routerboard, investigasi forensik dilakukan menggunakan kerangka National Institute of Standards and Technology (NIST) [11].…”

Section: Tinjauan Literaturunclassified

Network Forensic: Analysis of Client Attack and Quality of Service Measurement by ARP Poisoning using Network Forensic Generic Process (NFGP) Model

Ramadhan,

Tira,

Fadhilah

2024

SISTEMASI

View full text Add to dashboard Cite

Pada jaringan komputer komunikasi dari satu komputer ke komputer lain sangat bisa dicegat, cara untuk mencegat komunikasi antara perangkat jaringan adalah dengan serangan address resolution protocol poisoning. Serangan ini dapat mencuri data seperti username dan password, memodifikasi traffic, dan menghentikan traffic itu sendiri. Penelitian ini mengimplementasikan model Network Forensic Generic Proses sebagai acuan dalam praktek network forensik, selain itu penelitian ini juga mengukur quality of service untuk membandingkan paramater saat sebelum serangan dan saat serangan terjadi. Tools yang digunakan pada penelitian ini adalah wireshark, XArp, dan snort. Penelitian ini berhasil memperoleh informasi yang autentik dari barang bukti yang diperoleh. Hasil pengukuran quality of service didapatkan bahwa parameter quality of service mengalami perubahan saat serangan terjadi. Hal ini diharapkan dapat menjadi acuan dalam meningkatkan keamanan jaringan dengan memahami lebih baik tentang ancaman yang mungkin akan dihadapi dan memberikan wawasan yang berharga untuk upaya pencegahan dan tanggapan keamanan di masa depan.

show abstract

Section: Tinjauan Literaturunclassified

Network Forensic: Analysis of Client Attack and Quality of Service Measurement by ARP Poisoning using Network Forensic Generic Process (NFGP) Model

Ramadhan,

Tira,

Fadhilah

2024

SISTEMASI

View full text Add to dashboard Cite

show abstract

“…Evidence of ARP spoofing attacks includes the MAC addresses of the attacker and victim, as well as the timing of the attack, obtained using Wireshark and Ettercap tools to analyze network traffic, particularly using the ARP protocol [14]. ARP spoofing attacks can lead to other attacks, such as denial of service and man-in-the-middle attacks, which prevent users from accessing the network and result in data theft [14].…”

Section: Theorymentioning

confidence: 99%

Security System Analysis Using the HTTP Protocol Against Packet Sniffing Attacks

Manguling,

Parenreng

2023

IOTA

View full text Add to dashboard Cite

The security level of the SIM MBKM website information system needs to be analyzed because it is accessed by many students who provide essential data. The security testing process for the SIM MBKM system uses the software Ettercap and Wireshark to test the system's security level and network data against cybercrime attacks. The results of these experiments showed the same essential data, but Wireshark displayed more personal information. The difference lies in the system architecture using different methods or stages, namely ARP Poisoning and Filtering HTTP. The third difference is the estimated time taken during the experiment. Ettercap and Wireshark applications enable eavesdropping on confidential and essential data and information. Through security testing using Ettercap and Wireshark, more critical data is displayed. solutions and preventive actions can be implemented by encrypting confidential data and improving website security using the HTTPS (Hypertext Transfer Protocol Secure) protocol.

show abstract

“…Mel mory acquisition is thel procel ss of acquiring volatilel mel mory (RAM) to non-volatilel storagel (filel s on disk) [8]. livel forel nsics is a way in a forel nsic procel ss whel rel thel systel m is still running, this is donel bel causel if thel systel m diel s thel n thel rel will bel lost data or information [9]. Thel livel forel nsic mel thod is usually usel d for casel s whel rel thel rel is volatilel data whel rel thel data will bel lost if thel powel r sourcel diel s, volatilel data is usually storel d in tel mporary mel dia, namel ly RAM.…”

Section: Introductionmentioning

confidence: 99%

Analysis of the Effect of VSM on the Memory Acquisition Process Using the Dynamic Analysis Method

Maulina,

Cahyani,

Jadied

2023

jipi. jurnal. ilmiah. penelitian. dan. pembelajaran. informatik

View full text Add to dashboard Cite

At first, forensics was restricted to studying data that was stored on a system's hard disk. However, as storage capacity and data encryption increased, applying conventional digital forensic procedures became more challenging. As a result, memory forensics techniques are developed, or are frequently referred to as live forensics, because the process is quicker and more sophisticated. Volatile memory forensics, often known as live forensics, are necessary for this condition. Live forensics has flaws, specifically that some programs can fail when the computer is in active VSM (virtual secure mode). This results in the retrievable evidence being lost. Therefore, determining the cause is essential. The software-based memory acquisition tools Autopsy, Isobuster, DumpIt, and Magnet RAM Capturer are just a few examples. According to the findings of the experiments, the tools that have crashed include DumpIt v1.3.2.20110401. A dynamic code analysis using WindBg as a tool was utilized to study the impact of VSM on the memory acquisition tool. This study's goal is to identify the instances of crashes in various forensic instruments, which will be highly useful for forensic experts performing investigations.

show abstract

Analisis Bukti Serangan Address Resolution Protocol Spoofing menggunakan Metode National Institute of Standard Technology

Cited by 5 publications

References 6 publications

Network Forensic: Analysis of Client Attack and Quality of Service Measurement by ARP Poisoning using Network Forensic Generic Process (NFGP) Model

Network Forensic: Analysis of Client Attack and Quality of Service Measurement by ARP Poisoning using Network Forensic Generic Process (NFGP) Model

Security System Analysis Using the HTTP Protocol Against Packet Sniffing Attacks

Analysis of the Effect of VSM on the Memory Acquisition Process Using the Dynamic Analysis Method

Contact Info

Product

Resources

About