Software :: Nemesis - Inject Packets With Specific TCP Options?
Jan 20, 2010
I want to inject a packet with specified TCP options: Maximum Segment Size, Window Scale Option, Timestamp Option... The man page mention very little about that:Quote:-o TCP-options-fileThis will cause nemesis-dns to use the specified TCP-options-file as the options when building the TCP header for the injected packet. TCP options can be up to 40 bytes in length. The TCP options file must be created manually based upon the desired options. TCP options can also be read from stdin by specifying '-o -' instead of a TCP-options-file.I don't understand what TCP options file structure is? ASCII, hex or raw? One way to try: in Wireshark, select the Follow TCP stream option of a packet, save as with some types: ASCII, hex... and use it for input:
Just wanted input for this script i have cobbeled together. Its not done yet. I am trying to think of ways to close up my outgoing while maintaining full functionality of my laptop ( irc, web stuff, a torrent or two, etc.) . Anyways, I have done some myself; as well as, pulling bits and pieces from other stuff out on the web. I am starting to wonder why i have to write a specific rule to check for spoofed packets if my default input is set top drop. wouldnt it be caught?
I know that 'man gfortran' will get me the manual page for gfortran, but how do I lookup only the bit I want, which is '-Wall'? I can't find anything in the manual page for man.I could use 'man gfortran | grep -Wall' but that would return just a single line and not the whole paragraph.
- replace my hard drive with a 32GB SSD (solid state drive) SATA-II - copy my entire old drive to the new one - Both my drives will be Ext3 and have no swap (I have lots of RAM)
1. Can a Debian lenny desktop boot from an SSD ? 2. Do I have to modify /etc/fstab with SSD-specific options ? 3. How about grub, any modifications ?
I have a specific NTFS partition on a USB drive that I wish to enable execute support for. The only way I've found to do this is to add the partition in /etc/fstab with a umask. This poses some problems:
1. Only root can mount it, making it a pain to mount (open terminal, `sudo mount (path from /etc/fstab)`, enter password, close terminal). 2. The system will hang at start if the UUID is unavailable (or, the external disk is unplugged). I run several servers from my machine, so if I do a remote restart it will not come back up because of the hang.
Is there a way to specify to FUSE (which I believe is the handler for auto-mounting in Nautilus) that this partition should have execute access to files?
I'm trying to find the nemesis package for squeeze. $ uname -a Linux mybox 2.6.32-5-686 #1 SMP Wed Jan 12 04:01:41 UTC 2011 i686 GNU/Linux
$ lsb_release -a No LSB modules are available. Distributor ID: Debian Description: Debian GNU/Linux 6.0 (squeeze) Release: 6.0 Codename: squeeze
I was able to find it in lenny (http://packages.debian.org/en/lenny/nemesis) but I could not find it in the squeeze repositories. So if I want to install this how do I do it. Are there any other alternate programs that can be used instead of nemesis.
I have been trying to install nemesis for the last 6 hours. Every time I run the ./configure it indicates that it can not locate the libnet libraries. I have libnet installed along with libnet1-dev. The findings are below:
Code: justin@justin-desktop:~$ sudo -s -H [sudo] password for justin: root@justin-desktop:/home/justin# cd Downloads/nemesis-1.4 root@justin-desktop:/home/justin/Downloads/nemesis-1.4# ./configure checking for a BSD-compatible install... /usr/bin/install -c checking whether build environment is sane... yes checking for gawk... gawk checking whether make sets $(MAKE)... yes checking build system type... i686-pc-linux-gnu checking host system type... i686-pc-linux-gnu checking for style of include used by make... GNU checking for gcc .....
i have a linux server runnig oracle applications. i need to access this server from putty using ssh through internet. i did by registering my static ip with the dnydns.org and i am able to connect to the server. but now there is no security to authenticate any user as any one knowing the password can login to it.
i thought of configuring the firewall of linux server but the client ip`s are not static and they change continiously. so thought of keeping one more pc between the server and the router which will do the work of authenticating. but i am confuse as how to configure it to allow the packets coming from the internet after authenticating and to by pass the packets generated from internal LAN?
I want to inject my card (Intel pro 3945 ABG) by using ipwraw-ng-2.3.4-04022008.tar.But I got a problem during the installation that driver.I want to use the driver in BackTrack4. But I can't connect to internet with BackTrack4, so I download it from Window 7 and copy to my thumb drive, and past to the desktop of BackTrack4.
Then I open terminal, decompress the tar file. Another folder(ipwraw-ng) is appear on the desktop. Then I change to the "ipwraw-ng" directory (cd /ipwraw-ng) Then I compile with command (make) and the error start. It shows error like below
In Fedora 12, I am trying to use a program that uses uinput to inject mouse events to control X applications. This worked with Fedora 9, but doesn't with Fedora 12. I see the following in my Xorg.0.log:
(II) config/hal: Adding input device Prototype IRPointer Device (II) LoadModule: "synaptics" (II) Loading /usr/lib/xorg/modules/input/synaptics_drv.so (II) Module synaptics: vendor="X.Org Foundation" compiled for 1.7.1, module version = 1.2.1 Module class: X.Org XInput Driver ABI class: X.Org XInput driver, version 7.0
[Code]...
The device is not a synaptics touchpad, and so the X load of the driver is incorrect. But I don't know how to get X to ignore it's own driver and use evdev. (Or even if that's the right thing.) A general explanation of how hal and evdev are related, for the current X server,
i am using fedora 14 in my lenovo z560 laptop. It contains broadcom wifi card. The configuration is.Network controller [0280]: Broadcom Corporation BCM4313 802.11b/g LP-PHY [14e4:4727] (rev 01) Subsystem: Broadcom Corporation Device [14e4:0510] I want to inject monitor mode in my laptop to run kismet . But i can't. I installed broadcom-wl driver in my laptop but i think its not compatible to run monitor mode.. when i run kismet it show me error that :------ try some other open source kernel driver And the other is :- kismet find only binary value eth1 port. It isn't detecting wlan0 port
I have a hardware device with two ethernet ports, eth0 and eth1 running Centos 5. Basically my goal is to forward packets from eth0->eth1 and eth1->eth0 as well as get a copy of these packets for analysis. If I set IP routing to do the forwarding then I won't get a copy of the packets for analysis.
while sending mail form squirrer mail it gives erorqmail-inject: fatal:unalbe to exec qq(#4.3.0)iam not able to send mail.i googled but not got solution.
So I have the burned ubuntu CD, and I'm attempting to install it on a system that has one HDD with XP/Vista on it, and another that is completely formatted and unpartitioned. However, when I boot to the ubuntu CD, I can use the menus from the bottom, and select the language when initially prompted, but I can't select any of the menu options except for boot from first hard drive.
How do I give permission to a logged in user to stop/start a specific service without entering a root/sudo password? So they can do a simple "service SomeService stop|start" It is for a headless Ubuntu server.
I need to search a bunch of files in a specific folder for a specific number and add all the numbers together to a total sum. I use Rsync everyday, everytime I run rsync i get a logfile (rsync output) witch contains the textstring "Total bytes sent: xxxxxx".
The "xxxxx" can vary in lenght. I need to extract the "xxxxxx" from each file and add the numbers together to a total size over a week or a month. Is this possible? And I wish to only use bash. One way of doing stuff at a time my friends .
my system I want user1 and only user1 to be able to mount and unmount a specific partition, this partition contains backups and is usually mounted read only, needs to be temporarily mounted read/write by user1 while doing the backup.user1 is an unprivileged user. I've read that the user option will let any user mount the file-system (and only that user can then subsequently unmount it) and that the users option allows any user to mount or unmount the file-system.I also found this in mount's man pageQuote:The owner option is similar to the user option, with the restriction that the user must be the owner of the special file. This may be useful e.g. for /dev/fd if a login script makes the console user owner of this device. The group option is similar, with the restriction that the user must be member of the group of the special file.So it looks like I'd need a login script for that user to make the user owner of the device file (/dev/voiceserv/backup in this case)
I'm trying to configure our mail server to block email from a specific sender reaching a specific recipient. In other words, if one of our employees is getting harassed by a 'stalker', how would one go about blocking, at the MTA (Sendmail) level, a specific sender email address from reaching a particular users inbox? We do not want to capture the email - simply block it before it consumes server resources.The Sendmail server (MTA) is a front end to our Exchange server so no user accounts exist on the Linux server. We simply use it as a SPAM and Virus scanner then forward clean email to the Exchange server.
I configure squid to work with squidGuard , and all thing work properly , but there is problemfirst look to this squidGuard.confdhhome /usr/local/squidGuard/dblogdir /usr/local/squidGuard/log
I want to record an internet radio station starting at 2:00am tomorrow morning. The specific program on the radio station lasts until 6:00am. The command I need to run to record the station is: Code:mplayer http://wjcu.jcu.edu:8001/listen.pls -ao pcm:file=indie_heat_of_the_night.wav -vc dummy -vo nullI'd use cron, but 1. I'm not sure how to and 2. it seems unnecessarily complicated for something that I only want to run once. If cron is the only/easiest solution, I guess I'll just have to resort to that, but I'd rather not.
My setup is...I have a wireless access point using laptop as a gateway. The AP is also connected to a switch as is the laptop. So the laptop has two interfaces one wireless and one wired. A third device is using the AP to connect to a server on the internet. The AP sends the packets to my laptop where they are dropped. I've been looking for a solution to this problem without success. Basically is there a way for my laptop to forward all packets it sees from a certain IP address to whatever destination address they have?To clarify, my laptop is just the gateway of the AP and none of the packets are addressed to it at all, it just picks them up using a sniffer or similar tool.
1) i have to find the source and destination address in the ip and ethernet headers of a packet that go from my machine to the router.2) Then i have to do the same for the packet that goes from the router to my partner's machine.Then I have to answer the above questions but now for the echo replay.How could i see these address?The result could be found in the output of a tcpdump?
[guest@shakti guest]$ sudo tcpdump -en host 128.238.62.101 and 128.238.61.101 tcpdump: listening on eth0 20:27:36.662737 0:4:75:b5:20:bc 0:3:e3:2a:4a:60 ip 42: 128.238.61.101 > 128.238.62.101: icmp: echo request
I've a ssh server on FEDORA 12. It was going well but now it's overloaded with ARP traffic and is unable to run ssh. normally i'm getting about 150 packets in just 3 second
I'm looking for a way how to send an arp request / reply packet using C or C++. I've written an application that can send different crafted packages using jpcap (java), but I'm not a C expert (trying to learn). The reason for this is that I would like to port my java program to C to use it on a less powerful system that can't fully cope with the resource hungry VM
I am trying to build a socket to retrieve the ethernet packets from ECU(I do not know much about the ECU). When i run my code on windows there is no problem and the code runs correctly. But when i run my code on Debian it gets stuck at s.recv(1024).
I have already set static ip in /etc/network/interfaces as follows:
Code: Select all import socket   import sys   HOST = "160.48.199.91"   port = 30490   s = socket.socket(socket.AF_INET, socket.SOCK_RAW, socket.IPPROTO_UDP)   s.bind((HOST, 30490))   while True:      data = s.recvfrom(1024)      print(data)
There is no LAN or Router. When i check netstat -s i see that there are 0 UDP and 0 TCP messages received. But when i check in Wireshark on Debian i could see the displayed UDP packets. Does it mean that the UDP packets are reaching the Raspberry Pi but not received by Debian ? Or are these packets being dropped?
