Results 1 to 8 of 8

Thread: IP spoofing tools...

  1. #1
    Senior Member
    Join Date
    Mar 2004
    Posts
    139

    IP spoofing tools...


    Hi again everybody,

    I need some advice on a class assignment. I've chosen to write about TCP/SYN flooding
    in the DOS category, and part of the assignment is to identify some of the tools used by
    attackers. I understand the SYN/ACK three-way handshake within the TCP/IP stack.
    After some extensive reading on the web, I'm a bit overloaded with information.
    Just researching the mechanisms of creating agents and zombies left me spinning.

    I just left www.insecure.org, after browsing over the appr. 75 networking tools posted.
    My question centers mainly around which tools allows for the altering of the source IP address,
    the technique (IP address spoofing), often associated with SYN/ACK flooding.

    So far I believe to have identified these tools:

    Netcat; Nemesis; Pakettu Keiretsu; Fragroute.

    My paper is due tommorrow evening. Are any of these tools applicable?
    If I had more time, I'm sure to figure it out, but still have to research part 2 "Network Access", of the assignment.
    You know, how you want to save the world, and then find out one has bitten off more than one can chew.

    I'll dish out lots of points for help,LOL

    Thankx in advance

    g8way2u

  2. #2
    Senior Member
    Join Date
    Mar 2004
    Posts
    139

    found...


    Oh well, I just did one more search on Google and seem to have used the correct syntax to my question this time. I'm good now.

    g8way2u

  3. #3

  4. #4
    Senior Member
    Join Date
    Feb 2004
    Posts
    105

    re: packet injection and IP spoofing

    On *nix, I personally prefer Hping. You can downlaod it here and read all about it's features:

    http://www.hping.org/

    Cheers,
    <0
    Ego is the great Logic killer

  5. #5
    Www.nmap.com
    It'll redirect you to it's correct site.
    Best port scanner made.
    \"If knowledge is power. Why doesn\'t everybody read?\"

  6. #6
    Senior Member
    Join Date
    Dec 2003
    Location
    Pacific Northwest
    Posts
    1,675
    bluthund,

    If the next part of you class will be actually building your own packets, here's a basic guide using libnet to get you started. And who knows you might want to continue on and build the next netcat.

    http://www.security-labs.org/full-page.php3?page=libnet

    cheers

  7. #7
    Senior Member
    Join Date
    Mar 2004
    Posts
    139
    Thanx so much. I have downloaded NMap and PacketCrafter(www.Komedia.com) so far and used screen shots of them in my paper. Hopefully I'll have some time to browse the others you have suggested later in the week. So for now its back to writing about 'root-kits'.
    I am so tired....

    g8way2u

  8. #8
    Junior Member
    Join Date
    Mar 2004
    Posts
    7
    I'd recommend hping. It's a pretty complete packet generator, allowing you to modify most portions of the packet from the IP protocol on down.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •