Re: Any way to automatically change arbitrary headers of IP packets on-the-fly?
From: Lynx (lynx_at_enemy.org)
Date: 04/13/05
- Previous message: Fatih OZAVCI: "Re: Fingerprinting Firewall"
- In reply to: Joćo Paulo Caldas Campello: "Any way to automatically change arbitrary headers of IP packets on-the-fly?"
- Next in thread: Vladimir Parkhaev: "Re: Any way to automatically change arbitrary headers of IP packets on-the-fly?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 13 Apr 2005 10:15:29 +0200 To: pen-test@securityfocus.com
On Apr 12, 2005 at 1517 -0300, JoĆ£o Paulo Caldas Campello appeared and said:
> [...]
> Does anybody know any userland tool, Linux kernel module,
> iptables/netfilter module, or whatever mechanism to change arbitrary
> headers of IP packets on-the-fly as long as they traverse the IP
> stack? Is there any known paper regarding this subject?
> [...]
> I thought it could be done in the "MANGLE" table
> of netfilter, but I found no TARGET that achieves that nor any
> documentation about altering arbitrary IP headers.
Did you check out the QUEUE option and the libipq API? With libipq you
can inspect packets traversing the filter and change metadata or packet
information.
Cheers,
Lynx.
- Previous message: Fatih OZAVCI: "Re: Fingerprinting Firewall"
- In reply to: Joćo Paulo Caldas Campello: "Any way to automatically change arbitrary headers of IP packets on-the-fly?"
- Next in thread: Vladimir Parkhaev: "Re: Any way to automatically change arbitrary headers of IP packets on-the-fly?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
