Hi, maybe you are looking for this: soc = open_sock_tcp(port); srcport = get_source_port(soc); works fine for me regards Martin Hello, I'm new to this list so forgive me if I fall out of protocol, I'll learn. Has this problem I found on the list ever been solved? I am in need of the same thing. I also get the RST from the OS (XP) trying to establish the 3-way and am trying for configure the OS firewall to prevent this. The script not being portable (due to the requirement of a firewall) is an issue as well but may not be a showstopper. So, has the OS-unwanted-RST "issue" been worked around in any way apart from a firewall? And has anyone successfully written a TCP out of sequence test script already? Thanks guys, -Brad ======================================= I've read through several of the scripts and the list archive but I still can't see if there is a way to send arbitrary TCP data packets in the middle of a TCP connection. The sequence I want to achieve is: <em class="">-> SYN <- SYN ACK <em class="">-> ACK -> DATA -> DATA with incorrect sequence number As far as I can see from previous discussions, forge_tcp_packet cannot be used to establish the 3-way handshake as the <- SYN ACK triggers a -> RST ACK from the local IP stack. Alternatively, trying to use open_sock_tcp, when I come to the forge_tcp_packet I don't know what value to use for th_sport. There doesn't seem to be a way to find out what source port has been allocated by open_sock_tcp. If I leave th_sport blank, then forge_tcp_pack inserts zero rather than the current value. Does anyone know a way to send TCP data packets with arbitrary options set? Dennis Jackson
_______________________________________________ Plugins-writers mailing list Plugins-writers@private http://mail.nessus.org/mailman/listinfo/plugins-writers
This archive was generated by hypermail 2.1.3 : Mon Apr 10 2006 - 13:30:35 PDT