I was going over the internet reading about types of attacks on a computer system and I can not differentiate between MITM, Replay and TCP Session Hijacking.
They appear to be the same.
Sniff the data , change it , retransmit.
Please let me know if they are the same or different.
Asked
Active
Viewed 1,431 times
1
A User
- 694
- 3
- 11
- 25
-
You might want to know about http://security.stackexchange.com/ – Chris W. Rea Jul 24 '12 at 14:37
1 Answers
2
Replay attacks and Session hijacking are two types of Man In The Middle attack. MITM is the set, the other two are subsets.
You can be a man in the middle doing an attack on VoIP, some kinds of cryptography, etc.
Everett
- 5,912
- 1
- 22
- 33
-
`Replay attack`: capture , change , send `TCP Hijacking`: capture , change , send. Where do they differ then?? – A User Jul 24 '12 at 13:10
-
1Fasih, they differ in what you are attacking. TCP Session hijacking will ONLY hijack a TCP session. A replay attack can be used against TCP, cryptography, etc... A replay attack falls under the classification "Man In The Middle," just like a session hijack does. – Everett Jul 24 '12 at 13:14
-
OK so Replay can be retransmitting anything while TCP hijacking is ONLY retransmitting the TCP packets? – A User Jul 24 '12 at 13:16
-