Penetration Testing mailing list archives
Re: Forwarding sniffed packets
From: Gigi Sullivan <sullivan () sikurezza org>
Date: Mon, 12 Nov 2001 21:26:24 +0100
Aiee :) Hello! On Sun, Nov 11, 2001 at 09:50:14PM -0500, Loki wrote:
Anyone out there familiar with a tool that would allow one to sniff packets off the wire and forward them to a remote host after modification? Please no mentions of hping2, sing, and NEMESIS. I am not looking for a packet crafting tool, rather, one that lets me forward captured packets. Last I recall, I think the newer versions of IRIS support this functionality but am looking for something else.
I think that you should/could check out ettercap; it's a powerful customizable sniffer; it can perform ARP poisoning, plug in [1] and so on (which allow you packet mangling if you want, as well as blind forwarding). http://ettercap.sf.net to get more info.
Loki
www.fatelabs.com
=====================================================
Loki
Founder/Chief Research Scientist
Fate Research Labs
United States VPN Division
[e] loki () fatelabs com
[w] www.fatelabs.com
-----------------------------------------------------
"You know how you have that dent above your upper
lip? Well at the beginning of time I told you a
secret and put my finger there and said, shhh"
- Fate Research Labs
Long Live Our Reign
=====================================================
bye bye
-- gg sullivan
[1]: the new 0.6.2 version supports a new plug in engine which defines
hook point so you can do whatever (almost) you want on the packet just
sniffed.
--
Lorenzo Cavallaro `Gigi Sullivan' <sullivan () sikurezza org>
Until I loved, life had no beauty;
I did not know I lived until I had loved. (Theodor Korner)
----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/
Current thread:
- Forwarding sniffed packets Loki (Nov 12)
- Re: Forwarding sniffed packets Jose Nazario (Nov 12)
- Re: Forwarding sniffed packets Loki (Nov 12)
- Re: Forwarding sniffed packets Jose Nazario (Nov 12)
- Re: Forwarding sniffed packets Loki (Nov 12)
- Re: Forwarding sniffed packets Chris Wage (Nov 12)
- RE: Forwarding sniffed packets Fernando Cardoso (Nov 12)
- Re: Forwarding sniffed packets Gigi Sullivan (Nov 12)
- Re: Forwarding sniffed packets Jose Nazario (Nov 12)