Penetration Testing mailing list archives
Re: Blind IP spoofing portscan tool?
From: "Enrique A. Sanchez Montellano" <enrique.sanchez () defcom com>
Date: Thu, 14 Jun 2001 08:34:34 +0200
Curt Wilson wrote:
In the mailing for the Black Hat briefings, there is mention of a "blind IP spoofing portscan tool" or something along those lines. I'm curious about this tool, what is it's name and what is the mechanism by which it works? I'd guess that it's something involving other elements of the IP stack or some tool that uses a 3rd party system to check IP ID's, sequence numbers, ICMP responses or something along thoselines.
Yes involves reading the reset ID of an static machine while spoofing that one ... can be done with hping2 .. hehe =) Altho Thomas Ollaffsson has made a extremly eficient and good version for windows wich is automatic (wich he is realeasing on Black Hat).
Be aware that you can pull this out on linux, Solaris and windows so no static windows machine is needed just a static machine. The slides will be online I assume if you want more technical explanation please let me know outside the list =)
I'd be interested to know more information, pleaseshare if you have this knowledge.
Enrique A. Sanchez Montellano Chief Technical Officer Defcom Spain
Current thread:
- Blind IP spoofing portscan tool? Curt Wilson (Jun 13)
- Re: Blind IP spoofing portscan tool? matheny (Jun 14)
- Re: Blind IP spoofing portscan tool? Jose Nazario (Jun 14)
- Re: Blind IP spoofing portscan tool? Enrique A. Sanchez Montellano (Jun 15)
- Re: Blind IP spoofing portscan tool? Jose Nazario (Jun 14)
- Re: Blind IP spoofing portscan tool? Enrique A. Sanchez Montellano (Jun 14)
- Re: Blind IP spoofing portscan tool? Chris Winter (Jun 14)
- RE: Blind IP spoofing portscan tool? Filipe Almeida (Jun 15)
- <Possible follow-ups>
- Re: Blind IP spoofing portscan tool? Alberto_Revelli (Jun 14)
- RE: Blind IP spoofing portscan tool? Yonatan Bokovza (Jun 14)
- RE: Blind IP spoofing portscan tool? thomas olofsson (Jun 18)
- What is your policy on customers particapating in a pen test? Joe Klein (Jun 19)
- Re: What is your policy on customers particapating in a pen test? Meritt James (Jun 19)
- RE: What is your policy on customers particapating in a pen test? Ken Pfeil (Jun 21)
- Re: What is your policy on customers particapating in a pen test? GBH (Jun 19)
- Re: What is your policy on customers particapating in a pen test? Jonathan Rickman (Jun 19)
- What is your policy on customers particapating in a pen test? Joe Klein (Jun 19)
- Re: Blind IP spoofing portscan tool? matheny (Jun 14)