# Networking
- computer networks are so ubiquitous that they're taken for granted
- we're constantly connected to Internet and use applications that rely on networking
    - email, social media, the Web
- these applications rely on a particular network protocol, but each protocol uses the same general network transport methods
- there are vulnerabilities in the networking protocols themselves and on systems and applications running on the network

## OSI Model
- Open Systems Interconnection model
- governs the language used by systems in the network to talk to each other
- the structure of the language is described in 7 layers by the OSI model
- the conceptual layers make it easier for different network devices (routers, switches, firewalls) and applications (Web, email) to focus on their respective layers and ignore the others

### OSI layers
<img src="./resources/OSIModel.png">

1. **Physical layer** 
    - lowest layer that deals with the physical connection between two points
    - responsible for activating, maintaining, and deactivating these bit-stream communications
    - Ethernet card and cable, WiFi Card belong to this layer
- **Data-link layer**
    - deals with transferring data providing high-level functions (error correction and flow control)
    - provides procedures for activating, maintaining, and deactivating data-link connections
    - ARP (Address Resoultion Protocol) is a common protocol that uses this layer
    - Ehternet switches are network devices that use Layer 2 protocol
- **Network layer**
    - works as the middle ground
    - primarily role is to pass information between the lower and the higher layers
    - provides addressing (IP) and routing between two different networks
    - most routers and layer-3 switches are primarily use this layer
- **Transport layer**
    - provides transparent transfer of data between systems
    - provides reliable data communication, so the higher layers do not have to worry about reliability or cost-effectiveness of data transmission
    - TCP, UDP and ICMP are commonly used protocols of this layer
- **Session layer**
    - responsible for establishing and maintaining connections between network applications
- **Presentation layer**
    - responsible for presenting the data to applications in a syntax or language they understand
    - supports things like encryptiong, data compressions, image file (GIF, JPG) etc.
- **Application layer**
    - the layer users interact with
    - concerned with keeping track of the requirements of the application
    - HTTP, FTP, SMTP, SSH, Telnet are some protocols used in this layer
    
### Packet Encapsulation
- starting from the application layer, the packet wraps the presentation layer around the data, which wraps the session layer, which wraps the transport layer, and so forth
<img src="./resources/PacketEncapsulation.png">

## Sockets
 - standard way to perform network communications through the OS
 - socket API takes care of OSI details
 - in C, sockets behave a lot like files where you use read() and write() to receive and send data
 - /usr/includesys/sockets.h provide a bunch of functions to work with sockets
 - socket(), connect(), bind(), listen(), accept(), send(), recv()
 - we'll use Scapy python library to create packets with various protocol types and send across networks
     - we'll use these notebooks to learn scapy: https://github.com/rambasnet/ScapyNotebooks
     

## A Simple Server Example
- a server that listens for TCP connection on port 7890
- when a client connects it sends a message *Hello World!* and receives data until connection is closed
- booksrc/simple_server.c and booksrc/hacking.h are the two files required to build the simple server
- $ g++ simple_server.c -o simple_server.exe
- $ ./simple_server.exe
- $ telnet 127.0.0.1 7890

! telnet 127.0.0.1 7890

## A Tinyweb Server
- similar to simple server but uses HTTP protocol to communicate
- source to compile - booksrc/tinyweb.c
- handles HTTP GET and HEAD requests
- looks for the requested resource in the local directory callled webroot and send it to the browser
- if the file can't be found, the server will respond with 404 HTTP (`File Not Found`) response
- compile tinyweb.c, setuid as root and run the server
- 
- **Note** Change PORT # to 8080 or something higher if port 80 is being used
````bash
$ compile.sh tinyweb.c tinyweb.exe
$ sudo chown root ./tinyweb.exe
$ sudo chmod u+s ./tinyweb.exe
$ ./tinyweb.exe
```

### References
1. Understanding Layer 2, 3, and 4 Protocols - http://ptgmedia.pearsoncmg.com/images/0131014684/samplechapter/0131014684_ch02.pdf