Question

Sam is working as a pen-tester in an organization in houston. He performs penetration testing on ids in order to find the different ways an attacker uses to evade the ids. Sam sends a large amount of packets to the target ids that generates alerts, which enable sam to hide the real traffic. What type of method is sam using to evade ids?

Answer 1

Sam is using a method popularly known as Intrusion Detection System Evasion technique.  

The primary purpose of this technique is to confuse the Intrusion Detection System present about the real content of traffic passing through it. This is a method used commonly by either pen-testers or crackers when trying to or bypass an IDS.

The primary goal is to pass encrypted data in a way that only the target computer can decrypt or identify. They IDS should be unaware of the true intent of the packet.

Answer 2

Sam is using the method of social engineering to evade IDs.

It can be human based or computer based, but in both cases, software or hardware alone are not enough to defend against the intrusion.

The alerts that he is sending can be in the form of threats, flattering or praising.

But the ultimate goal is to evade the IDs and use them for benefit.