Summary  
The chapter explains a range of techniques for exploiting communication protocols and application vulnerabilities across OSI layers—showing how attackers spoof addresses, intercept or hijack sessions, and inject malicious payloads to compromise data flow and system behavior.

General domain of usage  
Cybersecurity (network and application security)

Now we will consider some examples of cyber attacks that can be performed on different OSI model layers.

### Layer 1 (Physical Layer)
**Evil Twin Attacks**: Attackers set up a rogue Wi-Fi hotspot with a similar name to a legitimate network to trick users into connecting.
### Layer 2 (Data Link Layer):

**ARP Spoofing/Poisoning**: Attackers send false Address Resolution Protocol (ARP) messages to associate their MAC address with the IP address of a legitimate device.



### Layer 3 (Network Layer):

**IP Spoofing**: Attackers send IP packets from a false (or "spoofed") source address to deceive the recipient about the origin of the message.

### Layer 4 (Transport Layer):

- **Man-in-the-Middle (MitM) Attacks**: Attackers intercept and manipulate communication between two parties, often by eavesdropping or altering data in transit;
- **Session Hijacking**: Attackers steal session cookies or tokens to impersonate a user. 

### Layer 7 (Application Layer):

- **SQL Injection**: Attackers inject malicious SQL code into input fields, exploiting vulnerabilities in the application's database layer;
- **Cross-Site Scripting (XSS)**: Malicious scripts are injected into web pages viewed by other users, typically through user inputs or unvalidated data;
- **Cross-Site Request Forgery (CSRF)**: Unauthorized commands are transmitted from a user the web application trusts.

What is the primary focus of ARP Spoofing/Poisoning attacks, and at which OSI layer do they occur?

This course is designed to provide participants with a comprehensive introduction to the essential principles and practices of cybersecurity. In today's digital age, where technology is pivotal in every aspect of our lives, understanding and implementing robust cybersecurity measures is paramount.

Discover the essentials of cybersecurity in this section, where we unravel the core concepts. Gain insights into digital threats and learn how to safeguard your online presence. Get ready for a straightforward exploration of the cyber world!

Dive into the dynamic realm of Web Cyber Security, where we demystify the intricate layers of the OSI (Open Systems Interconnection) model. Uncover the vulnerabilities within each OSI block, gaining a profound understanding of the threats that lurk in the digital space. Explore the vital aspects of physical and software protection, arming yourself with the knowledge needed to safeguard web environments against potential risks and ensure robust cyber resilience.

In the digital world, security is crucial to protect sensitive information. Encryption is key in this defense, ensuring data remains private and safe from unauthorized access. Now, we will explore the basics of information encryption, its methods, and its vital role in maintaining the integrity and privacy of digital communication. 

Examples of Cyber Attacks

Layer 1 (Physical Layer)

Layer 2 (Data Link Layer):

Layer 3 (Network Layer):

Layer 4 (Transport Layer):

Layer 7 (Application Layer):