[TOOL] TRIPP - Traffic Rewriter or IPv4 Packets

From: SecuriTeam (support_at_securiteam.com)
Date: 04/26/05

  • Next message: SecuriTeam: "[EXPL] E-Cart index.cgi Command Execution (Exploit)"
    To: list@securiteam.com
    Date: 26 Apr 2005 10:58:49 +0200
    
    

    The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
    - - promotion

    The SecuriTeam alerts list - Free, Accurate, Independent.

    Get your security news from a reliable source.
    http://www.securiteam.com/mailinglist.html

    - - - - - - - - -

      TRIPP - Traffic Rewriter or IPv4 Packets
    ------------------------------------------------------------------------

    SUMMARY

    DETAILS

    TRIPP is a utility to rewrite outgoing IP packets. It can be used to
    perform various tasks, such as passive OS fingerprint spoofing and
    application fingerprinting spoofing.

    It is configured via a small rule-based language, which allows the user to
    intercept packets, set arbitrary header values, increment or decrement
    numeric header fields,
    set an arbitrary payload, rewrite parts of the payload, or fragment,
    multiply, or drop packets.

    It is user-level and does not require any kernel module.

    ADDITIONAL INFORMATION

    The information has been provided by <mailto:poplix@papuasia.org> poplix.
    To keep updated with the tool visit the project's homepage at:
    <http://tripp.dynalias.org/> http://tripp.dynalias.org/

    ========================================

    This bulletin is sent to members of the SecuriTeam mailing list.
    To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
    In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com

    ====================
    ====================

    DISCLAIMER:
    The information in this bulletin is provided "AS IS" without warranty of any kind.
    In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.


  • Next message: SecuriTeam: "[EXPL] E-Cart index.cgi Command Execution (Exploit)"

    Relevant Pages

    • [NT] SpeakFreely Spoofed DoS
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Under Windows 98SE less than 200 spoofed packets crash the program ... u_short sport, ... dport = big endian destination port ...
      (Securiteam)
    • [EXPL] Linksys BOOTP Memory Leak
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... flaws in the way they return BOOTP packets. ... BOOTP fields are filled in with portions of memory from the device, ...
      (Securiteam)
    • [NT] Yahoo! Messenger URL Handler Remote DoS
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... A denial of service vulnerability exists in the way Yahoo! ... When these packets are sent Yahoo! ... Messenger version 6.0 ...
      (Securiteam)
    • [TOOL] BSS (Bluetooth Stack Smasher) Fuzzer
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... BSS is a L2CAP layer Fuzzer for Linux, ... Performs several L2CAP checks sending malicious packets (L2CAP) ...
      (Securiteam)
    • [NT] Agnitum Outpost Firewall Pro DoS
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Outpost Firewall Pro, you get award-winning ... By flooding Outpost Pro with a sustained rate of packets it is possible to ... Outpost Pro maintains a list of all new incoming packets. ...
      (Securiteam)