pen-test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Full-disclosure] TCP/IP vulnerability

from [Ivan .] [Permanent Link][Original]
To: "Mohit Kohli" <mkohli@techmahindra.com>
Subject: Re: [Full-disclosure] TCP/IP vulnerability
From: "Ivan ." <ivanhec@gmail.com>
Date: Wed, 23 May 2007 10:04:50 +1000
Cc: seclists@syneticon.de, full-disclosure@lists.grok.org.uk, pen-test@securityfocus.com, vuln-dev@securityfocus.com
Delivered-to: sp-com-lists@consult.net
Delivered-to: pentest-list2@consult.net
Delivered-to: mailing list pen-test@securityfocus.com
Delivered-to: moderator for pen-test@securityfocus.com
Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=TwdBEDbolkJv8k90KUuORBfLP9L9SqkLJQV6rq5+q+xrmfyTkWukxXWP9csJxY6JJ7NBPxTN7FLDOb+fGAsr5lB3L2Xv8zpyTzAP2Ze1b6BAhkZhAcl/vd0D8tZKOGFZv59OSYHW3EQpvT6A9H6xKNdDa1UYT8f0hoXzDAWq1j0=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=XWqgm5C5YAlDE0MQInWq7a6afyu1fm0FWd3HJm+J7lNt49xoPBgpXoDj5DjtS3yjPJKcMUDViq/8hhN+9v7zfI0xs4u7aux4vokRBAwZObookEYrvCsmuRdnArZ3YCM1Mzpu49YYh7BaOBk6a2cij5371s6sGQ6bxbYB2OhVSWk=
In-reply-to: <B55BFB7ED1ADA449B1FC6241C36DA7A880C41E@SINMUMEX001.TechMahindra.com>
List-help: <mailto:pen-test-help@securityfocus.com>
List-id: <pen-test.list-id.securityfocus.com>
List-post: <mailto:pen-test@securityfocus.com>
List-subscribe: <mailto:pen-test-subscribe@securityfocus.com>
List-unsubscribe: <mailto:pen-test-unsubscribe@securityfocus.com>
Mailing-list: contact pen-test-help@securityfocus.com; run by ezmlm
References: <B55BFB7ED1ADA449B1FC6241C36DA7A880C41E@SINMUMEX001.TechMahindra.com>
Resent-date: Tue, 22 May 2007 19:20:20 -0600 (MDT)
Resent-from: pen-test-return-1078484229@securityfocus.com
Resent-message-id: <20070523012020.6C2A81438F7@outgoing2.securityfocus.com>
Resent-sender: listbounce@securityfocus.com
Sender: listbounce@securityfocus.com 
dude, check out Fernando Gont site

http://www.gont.com.ar/tools/icmp-attacks/index.html

cheers
Ivan

On 5/22/07, Mohit Kohli <mkohli@techmahindra.com> wrote:





Hi Guys,



I got an assignment to write a white paper on TCP/IP and to show demo on how to 
exploits the same.



I have listed some of the vulnerability, but need some good tools (preferably 
windows based) to exploit the vulnerability and to perform further analysis.



overlapping IP fragments
Tear Drop
Land
SYN Attack
Ping Flooding
IP Spoofing

SYN Guessing

Smurf Attack

Source Routing
TCP Hijacking

Man-in-the-Middle Attack



I will appreciate; if you could provide me some inputs with regards to tools to 
exploits the vulnerability.



Cheers



Mohit






============================================================================================================================

 Disclaimer:

 This message and the information contained herein is proprietary and 
confidential and subject to the Tech Mahindra policy statement, you may review 
at http://www.techmahindra.com/Disclaimer.html externally and 
http://tim.techmahindra.com/Disclaimer.html internally within Tech Mahindra.

 
============================================================================================================================

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/



------------------------------------------------------------------------
This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!

http://www.cenzic.com/c/2020
------------------------------------------------------------------------
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
  • Re: [Full-disclosure] TCP/IP vulnerability, Ivan . <=
Previous by Date:  Re: Unix Application,, Claudio Broglia
Next by Date:  Security Videos, thejus_mb
Previous by Thread:  Wireless penetration testing, spencerforhire
Next by Thread:  Security Videos, thejus_mb
Indexes:  [Date] [Thread] [Top] [All Lists]