does anybody know how to spoof an IP address while performing a port scan on the internet?......as I've notice that the remote host logs your routers ip address.
thanks
Printable View
does anybody know how to spoof an IP address while performing a port scan on the internet?......as I've notice that the remote host logs your routers ip address.
thanks
Do a search on thehorse13 in the Tutorials Index.
Well, basicly, you can't.. Suppose I spoofed my address and scanned someone, how would I know any ports are open? The replies get send to the spoofed address, not me. Hence, it won't work.
That said, you can send some fake spoofed scans along with the real scan. Your address would still be logged but so do all the fake ones. If you're clever enough you can hide in the 'noise'. There are also some 'indirect' scanning methods..
Why?Quote:
Originally Posted by k_tech
I thought this website was security based and in the interest of protecting computer systems, and not providing script kiddies the means to hide their identity!!!
So may I ask why two senior members are providing this information. As it pretty obvious this guy is doing some he shouldn't be!!!!
The question in and of itself is ridiculous as you should know. He'll find out when he reads the tutorials.
Feck, he may even learn something. Didn't we all fit his category/profile at a time long forgotten?
Old Chinese proverb:
A wise man learns more from asking stupid questions then a stupid man learns from wise answers.
Sort of, I didn't enquire about spoofing IP's though. I am sure you receive a warning when you first sign up on not to ask questions about hacking i.e. How to I hack a MSN account and other relate topics.
Knowing TCP/IP and knowing what spoofing is and how it works is valuable knowledge for any security professional.
He can read the logs on the remote host.. Maybe it's his own? Maybe he's just looking to see what can and cannot be done and/or detected?
I cannot say that I see anything particularly wrong with the original question, other than that it is slightly lacking in detail of the particular circumstances.
Right now, I am sure that I would have a problem because I am using an ADSL link that is recognised by my unique account and telephone number. It is a land line, so I can only use it from my physical address.
I think that SirDice is getting close to the target. If you are port scanning you need to give an address to reply to, but this may not be identifiable as you?
"Spoofing" and "anonymous" are not the same thing?
Well, I agree that the site is meant for dicussing security but then, I think that the question is alright in its place. I am not an expert when it comes to networking. But whatever I know, no matter how small it is, have learnt from those stupid questions on chat rooms (well, I did not know anything like 'forums' at that time).
SirDice is right, but I have a question in my mind: Say I use a Fake IP address and that IP address does exist in the real world. Now is it possible that if some trojan be installed on the computer whose IP has been spoofed, would I come to know the rsponse from the server.... and then delete the logs from the spoofed computer?
No, that was SirDice's point. You send out a false address and the response comes back to the false address, so you never get to see it.;)Quote:
Say I use a Fake IP address and that IP address does exist in the real world. Now is it possible that if some trojan be installed on the computer whose IP has been spoofed, would I come to know the rsponse from the server.... and then delete the logs from the spoofed computer
EDIT: There are two concepts here which I will crudely explain:
1. "Spoofing" = appearing to be something that it is not.
2. "Anonymous" = not being traceable to the true originating individual.
#1 is about addresses whilst #2 is about people.
So, if I go and connect to one of the free wirless hotspots in my town, I am to all intents and purposes anonymous and legally connected. If I leech someone's unsecured wireless connection I am still anonymous unless I am "caught in the act" (physically), but what I am doing may well be illegal, depending on local legislation.
I am using a perfectly normal and valid address that is not spoofed, in both of those cases. The identity will trace back to the owner of the facility, and not the user.
A trojan using a compromised computer is doing the same. It is using perfectly valid and legitimate resources but without permission.
A "legal" form of the trojan scenario would be an anonymous proxy. In that situation, the identity would trace back to the proxy in the first instance.
If I send a spoofed address, anything trying to respond will use that address. If the address does not exist the response will fail. If the address is genuine but is offline, that will fail.............if it is online it should be blocked/dropped because it did not send a request to which the response relates.
If you want to get technical, the real concept of "spoofing" in the orignal sense has to do with tcp/ip sequence number predictability and being able to hijack/inject into an established tcp/ip session.
nmap has the ftp bounce relay option.
Script kiddies make the logs look good, so we can keep our jobs.
Exactly. I was just going to point this one out.Quote:
Originally Posted by caveman8fb
Don't forget about the idle scan too.
http://en.wikipedia.org/wiki/Idle_scan
Anyway, as others have pointed out, computer security is a double edge sword. What good is trying to protect your systems if you don't know the methods that the attackers might be using? How do you setup your defenses?
Thats why we have something called ethics. Learn all you want about whatever you want... but use your knowledge wisely. If you want to be dumb and have your ISP canceling your account or dragging you or your parents into court... then go for it!
You'll find that a lot of the very serious security professionals monitor/participate in the "underground" scene to keep up to date. They gain their trust, offer advise, etc. all to stay ahead of them.
Why do we have books like the Hacking Exposed series, or Hack Attacks Revealed series? Not only script kiddies buy those books.