Re: A tool for crafting ESP packets

From: Vitaly Osipov (vosipov@wolfegroup.ie)
Date: 11/26/01 

Message-ID: <3C02A975.C9EA1B57@wolfegroup.ie>
Date: Mon, 26 Nov 2001 20:43:33 +0000
From: Vitaly Osipov <vosipov@wolfegroup.ie>
To: Loki <loki@fatelabs.com>
Subject: Re: A tool for crafting ESP packets

I wonder what kind of "customized" IPSEC (ESP specifically) packets you
will be able to create other than just a packet with ESP header and
protocol number 50 - but this can be done with any general
packet-mangling tool. I guess there is nothing else to do in this case,
because you won't go inside the packet further - it is encrypted and you
(supposedly) dont know the key (otherwise all you need is a working
implementation of IPSEC protocol).

regards,
Vitaly.

Loki wrote:
>
> Fate Research Labs has started immediate development of an auditing tool for
> VPNs that allows a researcher to craft customized ESP packets to throw on the
> wire. I raised a question here previously looking for anyone who was
> interested in the project and received an email from someone on this list who
> already had a project writeup for such a venture. That email was lost and am
> trying to reestablish contact with that individual. Would that person as well
> as anyone else on this list directly interested in joining in this research
> project, please email me at loki@fatelabs.com
>
> Loki
> Founder, Chief Research Scientist
> Fate Research Labs
> http://www.fatelabs.com
>
> ----------------------------------------------------------------------------
> This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
> Service. For more information on SecurityFocus' SIA service which
> automatically alerts you to the latest security vulnerabilities please see:
> https://alerts.securityfocus.com/

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

Relevant Pages

  • Re: A tool for crafting ESP packets
    ... A tool for crafting ESP packets ... If this is in fact not the case and nmap does generate fully compliant IPSec ... >>Can you give me a URL to where it says NMAP crafts ESP packets, ... This list is provided by the SecurityFocus Security Intelligence Alert ...
    (Pen-Test)
  • Re: A tool for crafting ESP packets
    ... Can you give me a URL to where it says NMAP crafts ESP packets, ... This list is provided by the SecurityFocus Security Intelligence Alert ...
    (Pen-Test)
  • A tool for crafting ESP packets
    ... Fate Research Labs has started immediate development of an auditing tool for ... VPNs that allows a researcher to craft customized ESP packets to throw on the ... This list is provided by the SecurityFocus Security Intelligence Alert ...
    (Pen-Test)
  • Re: A tool for crafting ESP packets
    ... Actually nmap does send malformd AH/ESP datagrams (or packets, ... IP Protocol scan and you will see zero length AH/ESP ... >This list is provided by the SecurityFocus Security Intelligence Alert ...
    (Pen-Test)
  • RE: faster scans? (nmap)
    ... > on atleast one well-known port. ... >> infront intercepting these packets, ... >> This list is provided by the SecurityFocus Security Intelligence Alert ...
    (Pen-Test)