计算机安全超级工具(五)——自定义数据包生成
2009-12-02 10:42
656 查看
hping
http://www.hping.org/
hping is a command-line oriented TCP/IP packet assembler/analyzer. The
interface is inspired to the ping(8) unix command, but hping isn't only
able to send ICMP echo requests. It supports TCP, UDP, ICMP and RAW-IP
protocols, has a traceroute mode, the ability to send files between a
covered channel, and many other features.
scapy
http://www.secdev.org/projects/scapy/
Scapy is a powerful interactive packet manipulation program. It is able to forge
or decode packets of a wide number of protocols, send them on the wire, capture them, match requests and
replies, and much more. It can easily handle most classical tasks like
scanning, tracerouting, probing, unit tests, attacks or network discovery (it can replace
hping, 85% of nmap, arpspoof, arp-sk, arping, tcpdump, tethereal, p0f, etc.).
It also performs
very well at a lot of other specific tasks that most other tools can't handle,
like sending invalid frames, injecting your own 802.11 frames,
combining technics (VLAN hopping+ARP cache poisoning, VOIP decoding on
WEP encrypted channel, ...), etc. See the quick demo: an interactive session
.
Netfilter
Netfilter
is a framework
that provides hook
handling within the Linux kernel
for intercepting and manipulating network packets. Put more concretely,
Netfilter is invoked, for example, by the packet reception and send
routines from/to network interfaces. As the master Netfilter function
is called with a packet, Netfilter runs through the list of registered
hooks and calls the extensions in succession, which then handle packets
as they desire. The term Netfilter
is also used to refer to the Free Software
project[1]
that aims to provide firewalling tools for GNU/Linux
.
http://www.hping.org/
hping is a command-line oriented TCP/IP packet assembler/analyzer. The
interface is inspired to the ping(8) unix command, but hping isn't only
able to send ICMP echo requests. It supports TCP, UDP, ICMP and RAW-IP
protocols, has a traceroute mode, the ability to send files between a
covered channel, and many other features.
scapy
http://www.secdev.org/projects/scapy/
Scapy is a powerful interactive packet manipulation program. It is able to forge
or decode packets of a wide number of protocols, send them on the wire, capture them, match requests and
replies, and much more. It can easily handle most classical tasks like
scanning, tracerouting, probing, unit tests, attacks or network discovery (it can replace
hping, 85% of nmap, arpspoof, arp-sk, arping, tcpdump, tethereal, p0f, etc.).
It also performs
very well at a lot of other specific tasks that most other tools can't handle,
like sending invalid frames, injecting your own 802.11 frames,
combining technics (VLAN hopping+ARP cache poisoning, VOIP decoding on
WEP encrypted channel, ...), etc. See the quick demo: an interactive session
.
Netfilter
Netfilter
is a framework
that provides hook
handling within the Linux kernel
for intercepting and manipulating network packets. Put more concretely,
Netfilter is invoked, for example, by the packet reception and send
routines from/to network interfaces. As the master Netfilter function
is called with a packet, Netfilter runs through the list of registered
hooks and calls the extensions in succession, which then handle packets
as they desire. The term Netfilter
is also used to refer to the Free Software
project[1]
that aims to provide firewalling tools for GNU/Linux
.
相关文章推荐
- 计算机安全超级工具(九)-后门程序
- 计算机安全超级工具(十五)-设备安全测试
- 计算机安全超级工具(十八)-主机监控
- 计算机安全超级工具(七)——无线渗透
- 计算机安全超级工具(十)-Rootkit
- 计算机安全超级工具(十九)-Forensic工具
- 计算机安全超级工具(三)——局域网搜索
- 计算机安全超级工具(八)——探测框架应用程序
- 计算机安全超级工具(二十)-应用程序干扰
- 计算机安全超级工具(十一)-防火墙
- 计算机安全超级工具(二十一)-二进制逆向工程
- 计算机安全超级工具(四)——无线搜索
- 计算机安全超级工具(十二)-主机加固
- 计算机安全超级工具(十三)-通信安全保护
- 计算机安全超级工具(-)——网络扫描
- 计算机安全超级工具(六)——渗透工具
- 计算机安全超级工具(十四)-电子邮件安全和反垃圾邮件
- 计算机安全超级工具(十七)-网络监控
- 计算机安全超级工具(二)——漏洞扫描
- 近期微软发布的一些计算机安全方面有用的小工具