본문 바로가기

tcp11

TCP Fuzzing with Scapy Greetings ISC Readers! Today I wanted to share a technique that I find quite useful when I fuzz TCP applications with scapy. Scapy is a Python module used for packet parsing and packet crafting. With scapy you can create just about any packet your heart desires, transmit it to a target, capture the response and respond again accordingly. It is an excellent tool to use for fuzzing network protoco.. 2012. 9. 13.

Wireshark 1.4.8 & Wireshark 1.6.1 The Wireshark v1.4.8 update fixes a lot of bugs and known vulnerabilities such as CVE-2011-2597. Protocol support for the following protocols has been improved – ANSI MAP, GIOP, H.323, IEEE 802.11, MSRP, RPCAP, sFlow, TCP. Capture file support for Lucent/Ascend has been updated too! Download Wireshark v1.4.8 & Wireshark v1.6.1 (wireshark-win32-1.4.8.exe/wireshark-1.6.1.tar.bz2) here. If you enjo.. 2011. 7. 19.

DDoS 공격 방식과 공격툴 1. Agent 유포방식 - P2P: 정상 S/W에 악성코드(DDoS Agent) 삽입. - 웜/바이러스: 웜/바이러스에 악성코드(DDoS Agent) 삽입 - 사회공학: 이메일 등을 통한 악성코드(DDoS Agent) 전파 - 홈페이지: 취약한 사이트 해킹을 통한 악성코드(DDoS Agent) 유포 2. DDoS 공격의 진화 - 계측기 공격: 스마트비트: 초당 148만 PPS 이상 발생 - Slow TCP Connection Flooding 공격: 다수의 PC에서 초당 10 Connection 이하 공격 - http를 이용한 공격: 공격 대상 사이트 분석을 통한 URL, 파라미터 변조 - 기본 DDoS 공격 기술의 응용: 잘 알려진 IP로 Source IP 변조 3. IP Spoofed Syn Floo.. 2010. 8. 15.

Dstat: Versatile resource statistics tool Screenshot 1 [dag@moria ~]$ dstat --help Usage: dstat [-afv] [options..] [delay [count]] Versatile tool for generating system resource statistics Dstat options: -c, --cpu enable cpu stats -C 0,3,total include cpu0, cpu3 and total -d, --disk enable disk stats -D total,hda include hda and total -g, --page enable page stats -i, --int enable interrupt stats -I 5,eth2 include int5 and interrupt used .. 2009. 10. 20.

Nemesis - 패킷 생성 (arp,dns,ethernet,icmp,igmp,ip,ospf,rip,tcp,udp) Nemesis packet injection utility "Nemesis attacks directed through fragrouter could be a most powerful combination for the system auditor to find security problems that could then be reported to the vendor(s), etc." - Curt Wilson in Global Incident Analysis Center Detects Report (SANS Institute - Nov 2000) What is Nemesis? Nemesis is a command-line network packet injection utility for UNIX-like .. 2009. 7. 21.

이전 1 2 3 다음

728x90

티스토리툴바