Ian Vitek did a pretty good presentation on IP spoofing and source routing last year at defcon. His slides can be found at http://www.wittys.com/files/defcon_vitek.ppt . His examples are based on using netcat and simple ifconfig tricks, to fully source route the packets. Hope this helps. Jason At 01:30 AM 6/3/01 -0400, Franklin DeMatto wrote: >Can anyone suggest a good tool to perform ip addr spoofing via source routing? > >That is, it should replace the source addr with a spoofed one, and add the >real one as a source route. It must also forward the recieved packets, >since their dest addr will be the spoofed one. > >It should ideally be able to sit in between other apps, both ones that use >connect() and ones that use raw sockets, and modify the IP packets to >source route. This would allow use of preexisting tools without >rewrite/recompilation. > >BTW, I'm mainly interested in using it on Linux 2.2 systems. If this can >be done with ipchains, could someone suggest how? > >Franklin DeMatto >franklinat_private >qDefense - DEFENDING THE ELECTRONIC FRONTIER > > >
This archive was generated by hypermail 2b30 : Fri Jun 08 2001 - 10:51:21 PDT