New reconnaissance tool: 0trace
I’d like to announce the availability of a free security reconnaissance/firewall bypassing tool called 0trace written by Michal Zalewski. This tool enables the user to perform hop enumeration (”traceroute”) within an established TCP connection, such as a HTTP or SMTP session. This is opposed to sending stray packets, as traceroute-type tools usually do.
The important benefit of using an established connection and matching TCP packets to send a TTL-based probe is that such traffic is happily allowed through by many stateful firewalls and other defenses without further inspection (since it is related to an entry in the connection table)
The tool is available here (Linux version):
http://lcamtuf.coredump.cx/soft/0trace.tgz
If you enjoyed this post, make sure you subscribe to my RSS feed!
Thank you for reading this post. You can now Read Comment (1) or Leave A Trackback.
Post Info
This entry was posted on Monday, January 8th, 2007 and is filed under Fingerprinting, Tools.You can follow any responses to this entry through the Comments Feed. You can Leave A Comment, or A Trackback.
Previous Post: Guidelines on Cell Phone Forensics »
Next Post: SecurityFocus Article - PHP apps: Security’s Low-Hanging Fruit »
Read More
Related Reading:- Privacy Dilemma: How to Protect Yourself Online
- Solera Networks Deep-Packet Capture Review
- WordPress Exploit Scanner
- Phishing Exposed, Brands Secured
- Scanners: New Nessus Release; New eEye Web Scanner
- Good News from ArcSight and Imperva
- CCTV Security Camera and Surveillance Equipment
- OpenDNS Offers Free Web Content Filtering
- Can I Evade ScanSafe Anywhere+ ?
- Googlehacks and Anti-Googlehacks
November 25th, 2007 14:04
You can also find that tool on other websites more convenient you know?