Junos OS Attack Detection and Prevention Library for Security Devices
The Juniper Networks Intrusion Detection and Prevention (IDP) feature, also known as a stateful firewall, detects and prevents attacks in network traffic. An exploit can be either an information-gathering probe or an attack that attempts to compromise, disable, or harm a network or network resource. In some cases, the distinction between the two objectives of an exploit can be unclear. For example, a barrage of TCP SYN segments might be an IP address sweep with the intent of triggering responses from active hosts, or it might be a SYN flood attack with the intent of overwhelming a network so that it can no longer function properly. Furthermore, because an attacker usually precedes an attack by performing reconnaissance on the target, you can consider information-gathering efforts as a precursor to an impending attack—that is, such efforts constitute the first stage of an attack. Thus, the term exploit encompasses both reconnaissance and attack activities, and the distinction between the two is not always clear.
