|File Search||Catalog||Content Search|
This program was written in the hopes that a more precise testing methodology might be applied to the area of network intrusion detection, which is still a black art at best.
Conceptually, fragrouter is just a one-way fragmenting router - IP packets get sent from the attacker to the fragrouter, which transforms them into a fragmented data stream to forward to the victim.
========== fragrouter ========== What is fragrouter? ------------------- Fragrouter is a network intrusion detection evasion toolkit. It implements most of the attacks described in the Secure Networks "Insertion, Evasion, and Denial of Service: Eluding Network Intrusion Detection" paper of January 1998. This program was written in the hopes that a more precise test more»
FRAGROUTER(8) FRAGROUTER(8) NAME fragrouter - network intrusion detection evasion toolkit SYNOPSIS fragrouter [ -i interface ] [ -p ] [ -g hop ] [ -G hopcount ] ATTACK DESCRIPTION Fragrouter is a program for routing network traffic in such a way as to elude most network intrusion detection systems. Most attac more»
$Id: CHANGES,v 1.18 1999/09/21 15:47:32 dugsong Exp $ v1.6 Tue Sep 21 11:06:19 EDT 1999 - Added -g and -G IP LSRR options, to implement Windows IP source routing attack from Anthony Osborne <Anthony_Osborne@nai.com>. - Fixed libnet-0.99b's insert_ipo(). v1.5 Thu Jul 29 11:48:08 EDT 1999 - Fix handling of padded ethernet frames (such as for TCP SYNs), as reported by Nergal <firstname.lastname@example.org. more»
Errata ------ Given our simple one-way proxy architecture, we cannot implement a few of the attack more»
Copyright (c) 1999 Anzen Computing. All rights reserved. Redistribution and use in source and binar more»