Re: Inquiry: packet crafting tools for encapsulated protocols?

From: dreamwvr@dreamwvr.com
Date: Tue Sep 16 2003 - 08:38:21 EDT

• Next message: Joakim Aronius: "Re: Port 58000"
• Previous message: Tony Kava: "FW: WFS-1"
• In reply to: Cedric Blancher: "Re: Inquiry: packet crafting tools for encapsulated protocols?"
• Next in thread: Ben Nagy: "RE: Cracking a Netscreen password"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

On Tue, Sep 16, 2003 at 12:53:34AM +0200, Cedric Blancher wrote:
> Le lun 15/09/2003 à 02:54, Pera Mis a écrit :
> > My question is: I need a packet crafting tool that allows generation
> > (and, if possible, detection/dissection ) of the network packets for
> > the non-common protocols encapsulated in (TCP|UDP)/IP stack. I.e. the
> > packets that I need to analyze and be able to tinker with them (i.e.
> > to be able to generate packets of the various malformations in their
> > header and body/payload parts) have following structure:
> >
> > [IP header | TCP or UDP header | YYY protocol header | YYY protocol
> > payload]
> >
> > I read somewhere some time ago (maybe 6 months ago) that there exist
> > such a tool that is "intelligent" enough to recalculate the header of
> > all lower layer protocols' header-fields upon changes in the length
> > of the inner-most encapsulated protocol. However, not I can not
> > find/reconstruct a reference to that tool.
> >
> > I looked through the various tools (hping2, etherpeek, nmap), they
> > look like pars of what I need are there, but not all of them. I also
> > searched through Google and Usenet, but there is nothing similar to
> > what I need.
>
> Maybe you should have a look at Scapy, which is a very versatile
> interactive packet manipulation (injection/capture) tool written in
> Python :
>
> http://www.cartel-securite.fr/pbiondi/projects/scapy.html
helo;
Have you tried:
nemesis

HIH
Best Regards,
dreamwvr@dreamwvr.com

-- 
/*  Security is a work in progress - dreamwvr                 */
#                               48 69 65 72 6F 70 68 61 6E 74 32
# Note: To begin Journey type man afterboot,man help,man hier[.]      
# 66 6F 72 20 48 69 72 65                              0000 0001
// "Who's Afraid of Schrodinger's Cat?" /var/(.)?mail/me \?  ;-]
---------------------------------------------------------------------------
FREE Trial!
New for security consultants and in-house pros: FOUNDSTONE PROFESSIONAL 
and PROFESSIONAL TL software. Fast, reliable vulnerability assessment 
technology powered by the award-winning FoundScan engine. Try it free for  21 days at: http://www.securityfocus.com/sponsor/Foundstone_pen-test_030825
----------------------------------------------------------------------------

• Next message: Joakim Aronius: "Re: Port 58000"
• Previous message: Tony Kava: "FW: WFS-1"
• In reply to: Cedric Blancher: "Re: Inquiry: packet crafting tools for encapsulated protocols?"
• Next in thread: Ben Nagy: "RE: Cracking a Netscreen password"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:40 EDT