|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: idlescan (ip.id portscanner)
Subject: Re: idlescan (ip.id portscanner)
From: marvin
NSS.NU
Date: Sat Dec 04 1999 - 12:38:32 CST
- Next message: Brock Tellier: "UnixWare pkg* command exploits"
- Previous message: Ussr Labs: "Remote DoS Attack in GoodTech Telnet Server NT v2.2.1 Vulnerability"
- In reply to: LiquidK: "idlescan (ip.id portscanner)"
- Next in thread: Mullen, Patrick: "Re: idlescan (ip.id portscanner)"
- Reply: marvinNSS.NU: "Re: idlescan (ip.id portscanner)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Fri, 3 Dec 1999, LiquidK wrote:
> I haven't seen any pratical implementation of the scan, so I decided
>to write one to see how usable the method is in the real world. I reached
>the conclusion that this method is indeed quite usable (althought a little slow
>to account for packet propagation time).
And here's mine. :-)
This one compiles on my system, yours didn't (yes, it was linux with
libnet and glibc).
A few notes:
0) Default is to send null packets for echo:ing, some firewalls block
them. Override with -F<flags>.
1) Lot's of options. All nice.
2) Use -e instead of -o 256 if silent host is windows.
3) It's script-puppy safe. Fix the (one-line) "bug" and get a free
portscanner!
ftp://ftp.nss.nu/pub/thompa/evil_stuff/ipidscan-0.1beta1.tar.gz
(requires libnet and libpcap)
- Next message: Brock Tellier: "UnixWare pkg* command exploits"
- Previous message: Ussr Labs: "Remote DoS Attack in GoodTech Telnet Server NT v2.2.1 Vulnerability"
- In reply to: LiquidK: "idlescan (ip.id portscanner)"
- Next in thread: Mullen, Patrick: "Re: idlescan (ip.id portscanner)"
- Reply: marvinNSS.NU: "Re: idlescan (ip.id portscanner)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
This archive was generated by hypermail 2b27 : Mon Dec 06 1999 - 13:29:13 CST