IP spoofing ??
Page 1 of 2 12 LastLast
Results 1 to 10 of 14

Thread: IP spoofing ??

  1. #1
    Banned
    Join Date
    Jan 2004
    Posts
    17

    Question IP spoofing ??

    Folks.... what exactly is Ip spoofing ???... I hear that it can be done only through Unix... Why is that ???

  2. #2
    Senior Member
    Join Date
    Jan 2002
    Posts
    1,207
    IP spoofing is sending IP packets with a different "source" IP address than your own.

    No, it cannot only be done through Unix.

    IP spoofing is used by some crackers - mostly for denial of service attacks.

    Obviously when your machine sends spoofed packets, it cannot get the responses to them because those go somewhere else.

    Spoofing DoS (particularly DDoS) attacks are pretty difficult to stop because you can't block the packets by IP because they can have random spoofed IPs.

    Some tools also use spoofed IPs, for example nmap's "Idle scan" uses spoofed IPs to bounce scans off another machine. This is clever.

    Slarty

  3. #3
    Banned
    Join Date
    Jan 2004
    Posts
    17
    Thanks ! ... But i heard that OSs like windows dont allow such low level stuffs.. is it true ??

  4. #4
    Senior Member
    Join Date
    Jan 2002
    Posts
    1,207
    Originally posted here by Waveshifter
    Thanks ! ... But i heard that OSs like windows dont allow such low level stuffs.. is it true ??
    Not really.

    There are a few features of nmap which don't work in the Windows version AFAIK - I don't know if the ones which require spoofing are involved.

    However, I'm sure it is possible under Windows for apps to spoof packets, just not necessarily so easy as (for example) Linux.

    It is true that a script kiddie with a copy of Visual Basic probably couldn't achieve this - but it's hardly suprising.

    Slarty

  5. #5
    Antionline Herpetologist
    Join Date
    Aug 2001
    Posts
    1,165
    IP spoofing is very much possible under windows. There are quite a few l33t h4x0r applications that do this or something like it.
    Cheers,
    cgkanchi
    Buy the Snakes of India book, support research and education (sorry the website has been discontinued)
    My blog: http://biology000.blogspot.com

  6. #6
    Senior Member
    Join Date
    Dec 2003
    Posts
    121

    ip sppofing al ittle bit on this thing...

    Correct me if i am wrong but ithink that ip spoofing is not only for dos attacks...by Ip spoofing you can do a lot of thinks... kevin mitnick had once attacked a network by using ip spoofing...see the attached file...the meaning of it is that you change an ip into a fake one...

  7. #7
    Senior Member
    Join Date
    Dec 2003
    Location
    Pacific Northwest
    Posts
    1,675
    Generally, IP/DNS spoofing is used to assume the identity of someone (host) to attempt to avoid detection and have interaction with the another host. You must have an indepth knowledge of TCP/IP, sequence numbers, etc. But inorder for the villian to accomplish his deed, he must first disable the other host (IP) and masquerade as that host. There's a whole bunch of folks in jail just waiting for new cellmates! You might want to steer clear of this.

  8. #8
    Some Assembly Required ShagDevil's Avatar
    Join Date
    Nov 2002
    Location
    New Jersey
    Posts
    718
    Wave, check out this link, it's a brief explanation of IP Spoofing and the type of attacks that can be generated using IP Spoofing. This will maybe help you better understand what exactly is going on when someone spoofs IP's.
    IP Spoofing
    The object of war is not to die for your country but to make the other bastard die for his - George Patton

  9. #9
    IP spoffing has many applications:
    1) DDoS
    2) DoS
    3) Man-In-The-Middle Attacks
    4) Session Hijacking
    5) Exploiting Trusted IP's (ie. firewalls...linux's rshell)

    If you would like some info on any of those topics, i can point you to a vast amount of information.

    TheTempest

  10. #10
    Senior Member
    Join Date
    Aug 2003
    Posts
    1,019
    If you would like some info on any of those topics, i can point you to a vast amount of information.
    Why not just post them?

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •