{"id":177,"date":"2019-08-12T13:15:53","date_gmt":"2019-08-12T11:15:53","guid":{"rendered":"https:\/\/privat.andreas-klingler.de\/itsec\/?p=177"},"modified":"2023-12-20T19:20:08","modified_gmt":"2023-12-20T18:20:08","slug":"knockd","status":"publish","type":"post","link":"https:\/\/infosec.andreas-klingler.de\/?p=177","title":{"rendered":"knockd"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\">With knockd a serv\u00ader can be con\u00adfig\u00adured to respond only after some ports were checked before. Its often used for&nbsp;<span class=\"caps\">SSH<\/span>.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Couter\u00admea\u00adsure: Sniff traf\u00adfic and wait for an user to login and recon\u00adstruct the knock\u00ading pat\u00adtern out of the&nbsp;pcaps.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>With knockd a serv\u00ader can be con\u00adfig\u00adured to respond only after some ports were checked before. Its often used for&nbsp;<span class=\"caps\">SSH<\/span>. Couter\u00admea\u00adsure: Sniff traf\u00adfic and wait for an user to login and recon\u00adstruct the knock\u00ading pat\u00adtern out of the&nbsp;pcaps.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"wp_typography_post_enhancements_disabled":false,"footnotes":""},"categories":[476],"tags":[47,46,4],"class_list":["post-177","post","type-post","status-publish","format-standard","hentry","category-defence-tool","tag-knockd","tag-ssh","tag-tool"],"_links":{"self":[{"href":"https:\/\/infosec.andreas-klingler.de\/index.php?rest_route=\/wp\/v2\/posts\/177","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/infosec.andreas-klingler.de\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/infosec.andreas-klingler.de\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/infosec.andreas-klingler.de\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/infosec.andreas-klingler.de\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=177"}],"version-history":[{"count":1,"href":"https:\/\/infosec.andreas-klingler.de\/index.php?rest_route=\/wp\/v2\/posts\/177\/revisions"}],"predecessor-version":[{"id":178,"href":"https:\/\/infosec.andreas-klingler.de\/index.php?rest_route=\/wp\/v2\/posts\/177\/revisions\/178"}],"wp:attachment":[{"href":"https:\/\/infosec.andreas-klingler.de\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=177"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/infosec.andreas-klingler.de\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=177"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/infosec.andreas-klingler.de\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=177"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}