Packet generation and network based attacks with Scapy - SecDev.org

More documents

Recommendations

Info

IntroductionScapyNetwork discovery and attacksOne shotsScanningTTL tricksNAT leaksWe’ve found a DNAT. How to find the real destination ?Some NAT programs have the following bug :they NAT the packetthey decrement the TTLif the TTL expired, send an ICMP message with the packet asa citation=⇒ ohoh, they forgot to unNAT the citation !Side effectsthe citation does not match the request=⇒ (real) stateful firewalls don’t recognize the ICMP message anddrop it=⇒ traceroute and programs that play with TTL don’t see it eitherPhilippe BIONDIPacket generation and network based attacks with Scapy
IntroductionScapyNetwork discovery and attacksOne shotsScanningTTL tricksNAT leaksWe’ve found a DNAT. How to find the real destination ?Some NAT programs have the following bug :they NAT the packetthey decrement the TTLif the TTL expired, send an ICMP message with the packet asa citation=⇒ ohoh, they forgot to unNAT the citation !Side effectsthe citation does not match the request=⇒ (real) stateful firewalls don’t recognize the ICMP message anddrop it=⇒ traceroute and programs that play with TTL don’t see it eitherPhilippe BIONDIPacket generation and network based attacks with Scapy
Page 2 and 3:
IntroductionScapyNetwork discovery
Page 5:
OutlineIntroductionScapyNetwork dis
Page 10 and 11:
Page 12 and 13:
OutlineIntroductionScapyNetwork dis
Page 14 and 15:
Page 16 and 17:
Page 18 and 19:
Page 20 and 21:
Page 22 and 23:
Page 24 and 25:
The GenesisThe spark that lit the p
Page 26 and 27:
Actual ArchitectureIntroductionScap
Page 28 and 29:
Page 30 and 31:
Page 32 and 33:
Page 34 and 35:
Page 36 and 37:
Page 38 and 39:
Page 40 and 41:
Page 42 and 43:
Page 44 and 45:
Page 46 and 47:
Page 48 and 49:
Page 50 and 51:
Page 52 and 53:
Page 54 and 55:
Page 56 and 57:
Page 58 and 59:
Page 60 and 61:
Pretty printingIntroductionScapyNet
Page 62 and 63:
Page 64 and 65:
Page 66 and 67:
Page 68 and 69:
Page 70 and 71:
SendingIntroductionScapyNetwork dis
Page 72 and 73:
Page 74 and 75:
Page 76 and 77:
Page 78 and 79:
Page 80 and 81:
Page 82 and 83:
Page 84 and 85:
Page 86 and 87:
Page 88 and 89:
Page 90 and 91:
Page 92 and 93:
Page 94 and 95:
Page 96 and 97: IntroductionScapyNetwork discovery
Page 108 and 109: Result ManipulationIntroductionScap
Page 130 and 131: Answering machinesIntroductionScapy
Page 132 and 133: OutlineIntroductionScapyNetwork dis
Page 136 and 137: TCP port scanIntroductionScapyNetwo
Page 138 and 139: IP protocol scanIntroductionScapyNe
Page 140 and 141: ARP pingIntroductionScapyNetwork di
Page 142 and 143: OutlineIntroductionScapyNetwork dis
Page 144 and 145: NAT findingIntroductionScapyNetwork
Page 166 and 167: ReferencesExternal scriptAppendices
Page 168 and 169: ReferencesExternal scriptReferences
show all

Packet generation and network based attacks with Scapy - SecDev.org

Create successful ePaper yourself

Delete template?

Save as template?