RE: A tool for crafting ESP packets

From: Jose Nazario (joseat_private)
Date: Wed Nov 28 2001 - 19:47:23 PST

Next message: Zen: "Re: opinions on Vigliante's SecureScanNX for attack/pen work?"

Previous message: Thorat_private: "Re: W2K Terminal Services pwd cracker"
In reply to: amok: "RE: A tool for crafting ESP packets"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, 27 Nov 2001, amok wrote:

> Very rudimentary example:
>
> <IP Header>
> <ESP Start>
> Security Parameters Index (SPI) (32 bit)
> Sequence Number (32 bit)
> Encrypted Payload (Variable length)
> <ESP End>

you forgot the trailer for ESP. though forgetting it and seeing if you can
disrupt/DoS a VPN with broken ESP frames would be interesting.

____________________________
jose nazario						     joseat_private
	      	     PGP: 89 B0 81 DA 5B FD 7E 00  99 C3 B2 CD 48 A0 07 80
				       PGP key ID 0xFD37F4E5 (pgp.mit.edu)


----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

Next message: Zen: "Re: opinions on Vigliante's SecureScanNX for attack/pen work?"
Previous message: Thorat_private: "Re: W2K Terminal Services pwd cracker"
In reply to: amok: "RE: A tool for crafting ESP packets"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Nov 29 2001 - 16:19:26 PST