[Full-disclosure] [Fwd: Re: 0trace - traceroute on established connections]
- From: Matthew Flaschen <matthew.flaschen@xxxxxxxxxx>
- Date: Tue, 09 Jan 2007 01:19:02 -0500
--- Begin Message ---Write a 5 second C program that is a wrapper for the usleep C library
- From: "Matt Wood" <matt.wood@xxxxxxxxxx>
- Date: Mon, 8 Jan 2007 19:33:08 -0500
function... none of this cruft is necessary.
-Matt
On 1/8/07, Matthew Flaschen <matthew.flaschen@xxxxxxxxxx> wrote:
Michal Zalewski wrote:
> I'd like to announce the availability of a free security reconnaissance
/
> firewall bypassing tool called 0trace.
Good work. Are you going to put it under a free license?
> Enough chatter - the tool is available here (Linux version):
>
> http://lcamtuf.coredump.cx/soft/0trace.tgz
>
> Note: this is a 30-minute hack that involves C code coupled with a
cheesy
> shellscript. It may not work on non-Linux systems, and may fail on some
> Linuxes, too. It could be improved in a number of ways - so if you like
> it, rewrite it.
I've been trying to get it to work on Ubuntu Edgy. That system doesn't
have usleep, so I made the following kludge:
-------------------------------------------------------------------------
if [[ ! -x /bin/usleep && ! -x /bin/sleep ]]; then
echo "[-] Neither /bin/sleep nor /bin/usleep are found on this system,
sorry." 1>&2
exit 1
fi
usleep()
{
if [ -x /bin/usleep ]; then
/bin/usleep $1
elif [ -x /bin/sleep ]; then
/bin/sleep $(echo ".000001 * $1" | bc)
fi
}
-------------------------------------------------------------------------
However, that leaves me with other problems:
[+] Waiting for traffic from target on eth0...
[+] Traffic acquired, waiting for a gap...
./0trace.sh: line 85: printf: 0x: invalid number
./0trace.sh: line 86: printf: 0x: invalid number
[+] Target acquired: : -> : (0/0).
[+] Setting up a sniffer...
[+] Sending probes...
Usage: ./sendprobe src_ip dst_ip sport dport seq ack
I'm using Kubuntu Edgy. The bash version is 3.1.17(1)-release
(i486-pc-linux-gnu). Anyone have tips?
Thanks,
Matthew Flaschen
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--- End Message ---
Attachment:
signature.asc
Description: OpenPGP digital signature
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Prev by Date: Re: [Full-disclosure] 0trace - traceroute on established connections
- Next by Date: [Full-disclosure] Sina UC ActiveX Multiple Remote Stack Overflow
- Previous by thread: [Full-disclosure] VMware ESX server security updates
- Next by thread: [Full-disclosure] Sina UC ActiveX Multiple Remote Stack Overflow
- Index(es):
Relevant Pages
|
