Return Styles: Pseud0ch, Terminal, Valhalla, NES, Geocities, Blue Moon. Entire thread

Question regarding spoofing

Name: Anonymous 2008-05-26 11:27

There exists programs such as synner.pl or Xxpoof where one can send spoofed source packets to a target IP address. However, this is only limited to IP addresses. Is there any such way to do the same thing, but to a certain URL, rather than IP?

Say, for example, that example1.com and example2.com share the same IP address, but you only want to spoof an IP packet for example1.com, not example2.com. Would this be at all feasible?

Name: Anonymous 2008-05-27 13:20

>>40
With that in mind, could I put the HTTP headers into the "data" string of the TCP packet in the script?

Name: 27 2008-05-27 13:27

>>28
facepalm

Name: Anonymous 2008-05-27 13:30

>>41
I guess so.
http://en.wikipedia.org/wiki/Hypertext_Transfer_Protocol#Sample
http://en.wikipedia.org/wiki/Virtual_hosting#Name-based

Name: Anonymous 2008-05-27 14:23

>>37
Forcing memes would be the cancer killing /prog/ if it wasn't already dead, like Lisp

Name: Anonymous 2008-05-27 15:27

>>44
hax my anus!

Name: @FULLFORCE 2008-05-27 17:33

>>33
AND WE HAVE BEEN TROLLED CONSTANTLY

EXAMPLE1.COM AND EXAMPLE2.COM ARE SHARING THE SAME IP. IT DOESN'T MATTER IF YOU SEND IT TO THE FIRST URI OR THE SECOND. UNLESS YOU'R A NIGGER AND SPEAK OF SUBDOMAINS.

ANYWAYS, RAGE SAGE

Name: Anonymous 2008-05-27 17:50

>>46
That's not the point. The point is to direct the packet to the specific host.

Name: Anonymous 2008-05-27 17:54

>>46
Are you that dumb?

Name: Anonymous 2008-05-27 21:01

OP fails at understanding how the INTERNETS work, but succeeds at trolling us constantly.

Name: Anonymous 2008-05-27 21:18

How have you all not noticed that this is an utter trollage?

Name: Anonymous 2008-05-27 21:47

How is this trollage? It's a fucking question.

Name: Anonymous 2008-05-27 22:08

>>40

what he said. you need to create application layer data for your spoofed packets and that means http. i know nothing of the perl modules in >>39 but maybe you could use them and extract the http stuff then inject that into your spoofed packets where the scalar $data is? again, i know nothing.

Name: Anonymous 2008-05-27 22:11

>>8
What's the joke behind ``Ben Bitdiddle''?

Name: Anonymous 2008-05-27 22:12

>>38

Stop. There is no such thing as an "HTTP packet"

HTTP is at layer 6 in the OSI model.

HTTP is on top of tcp, tcp sits on top of ip, ip sits on top of ethernet.

You need to understand the underlying protocols and networking if you want to "spoof" something. If you want to send a different header with you HTTP request that is different, just set <Header:>
to what you want and follow it with a \n\n or \r\n and you are ready to go.

Also, read rfc 2616, rfc 1945 and read some sections from TCP illustrated. You obviously lack networking knowledge.

Not that you need to be any type of network engineer to craft HTTP headers or anything. You do need to know what they do and the proper format.

Just do a little research.

Name: Anonymous 2008-05-27 22:27

>>21

scapy is the worst libpcap wrapper i've ever seen in my life and deserves to die in a fiery pit of hell. libpcap has nothing on libnet and everyone in the world knows it.

Name: Anonymous 2008-05-27 23:17

Spoofing stateful connections on the internet doesn't work these days due to randomized seq numbers for the connection.  It was fun to blind spoof tcp connections when most servers would inc 64k for a new connection, but no servers will be running with such an outdated stack.

tl;dr - you cannot blind spoof if you need more than one packet.

Name: Anonymous 2008-05-28 0:28

>>55

They are meant to solve two similar, but different problems and it's unfair to compare the two. Libnet is great for packet manipulation and libpcap is awesome for packet capturing. Scapy makes working with libpcap fun and easy, but if you know of something better feel free to share.

Name: Anonymous 2008-05-28 4:49

>>53
Read SICP.

No, seriously.

Name: Anonymous 2008-05-28 4:55

Name: Anonymous 2008-05-28 7:40

Just a yes or no question

Can HTTP headers be put into TCP packets?

Name: Anonymous 2008-05-28 7:42

>>60
Why yes, Tony!  GeoBytes HTTP headers can even be inserted into your existing TCP packets!

Name: Anonymous 2008-05-28 8:31

>>61
So regarding >>18 can "data" be something like...

require HTTP::Headers;
$h = HTTP::Headers->new;
$h->header('Host' => 'www.example1.com');
$ct = $h->header('Host');

data => $ct

Name: Anonymous 2008-05-28 8:36

>>62
Please stop it.
You lack understanding of subject.
No fancy $ct magic will help you.
Actually this data => $ct is so irrelevant that it makes me want to weep.
Why did you not listen to my suggestion in >>39?
If you think you a successive troll, you are not.

Name: Anonymous 2008-05-28 8:55

>>63

Chill the fuck out

Name: Anonymous 2008-05-28 9:44

>>62
YOU CANNOT SPOOF A TCP CONNECTION >:(
YOU CANNOT SPOOF A TCP CONNECTION >:(
YOU CANNOT SPOOF A TCP CONNECTION >:(
YOU CANNOT SPOOF A TCP CONNECTION >:(
YOU CANNOT SPOOF A TCP CONNECTION >:(
YOU CANNOT SPOOF A TCP CONNECTION >:(
YOU CANNOT SPOOF A TCP CONNECTION >:(
YOU CANNOT SPOOF A TCP CONNECTION >:(
YOU CANNOT SPOOF A TCP CONNECTION >:(
YOU CANNOT SPOOF A TCP CONNECTION >:(
YOU CANNOT SPOOF A TCP CONNECTION >:(
YOU CANNOT SPOOF A TCP CONNECTION >:(
YOU CANNOT SPOOF A TCP CONNECTION >:(
YOU CANNOT SPOOF A TCP CONNECTION >:(

Name: Anonymous 2008-05-28 9:53

>>65
I could spoof your mom.

Name: Anonymous 2008-05-28 12:17

>>63
Those modules handle HTTP connections, yes, but what part of those modules make it so that the IP address is spoofed? I'm not talking about an X-FORWARDED-FOR or Via header through some proxy. Just a random number. Those modules deal with user agents.

Name: Anonymous 2008-05-28 13:06

Oh I misread OP.
You want spoofed packets.
Now this is plain stupid.

ask Haskell dog, he knows
bye

Name: Anonymous 2008-05-28 13:13

69GET

Name: Anonymous 2008-05-29 1:17

>>65
WHY DO YOU SO FEEL KIND OF BAD ABOUT IT?

Name: Anonymous 2008-05-29 6:18

>>70
Why do you so feel kind of
you so feel kind
so

Name: Anonymous 2008-05-29 7:48

SHOULD BE

WHY DO YOU FEEL SO KIND OF BAD ABOUT IT?

Name: @FULLFORCE 2008-05-29 16:41

:3 this board is shit, lets make it shittier

Name: Anonymous 2008-05-29 16:55

WELL, THAT’S JUST, LIKE, YOUR OPINION, MAN.

Name: Anonymous 2008-05-29 23:14

SUDDENLY, NIGGERS!

Name: Anonymous 2008-05-30 21:42

>>75
THOUSANDS OF THEM!

Name: Anonymous 2008-05-31 23:06

>>67
YOU CANNOT ESTABLISH TCP CONNECTIONS WITH A SPOOFED IP ADDRESS YOU FUCKTARD

IF YOU WRITE SOMEONE A LETTER AND GIVE THEM A FAKE ADDRESS, DO YOU REALLY THINK YOU'LL EVER GET A REPLY?

THE "FUNCTIONS" THAT LET YOU "SET YOUR IP" ARE THERE SO YOU CAN CHOOSE WHICH ADDRESS YOU WANT TO BIND TO WHEN YOUR MACHINE HAS MORE THAN ONE NETWORK INTERFACE

GOD

Name: Anonymous 2008-06-01 0:42

>>77
High levels of fail have been detected in this post

Name: Anonymous 2008-06-02 13:30

>>78
bump ;)

Name: Anonymous 2008-06-02 14:02

>>77
JUST WATCH THE MAILBOX WHERE THAT PERSON DROPS HIS REPLY THEN SEARCH FOR THE LETTER WITH THE FAKE ADDRESS.
Newer Posts
Don't change these.
Name: Email:
Entire Thread Thread List
All trademarks and copyrights on this site are owned by their respective parties. All comments and posts are the responsibility of their own posters.
- Tinychan + 2ch Mode -