Location:
Search - TCP Fake ip
Search list
Description: windows平台vc6项目,在win2000上运行。
不能在winxp sp2及以上版本的windows系统中运行该程序,因为:XP SP2对raw socket做了一些限制,XP SP2仍支持raw socket的接收,但raw socket的发送被限制了:
1) 不能通过raw socket发送TCP报文。做此尝试时会得到10004号错误。
2) 不能通过raw socket发送伪造源IP的UDP报文。
3) 不能通过raw socket发送IP碎片。做此尝试时会得到10004号错误。
微软在tcpip.sys中固化了这些限制,没有注册表项对之调整。惟一已知解决方案是修理tcpip.sys.微软做了这些限制,目的是防止限制恶意代码将主机作为DDoS的工具,而且限制发送伪造IP包的能力。
-windows platform vc6 project, run in win2000. Winxp sp2 and can not be above the windows system to run the program, because: XP SP2 on the raw socket done some restrictions, XP SP2 is still raw socket support the reception, but the raw socket sent by limiting: 1) can not be raw Send TCP packet socket. Attempt to do this would be an error No. 10004. 2) can not send raw socket forged source IP of the UDP packet. 3) can not be raw socket to send IP fragments. Attempt to do this would be an error No. 10004. Microsoft tcpip.sys in curing these restrictions, there is no registry entries for the adjustment. The only known solution is to repair tcpip.sys. Microsoft has done these constraints, the purpose is to prevent malicious code restrictions on the host as a DDoS tools, and a restriction of sending fake IP packet capabilities.
Platform: |
Size: 19456 |
Author: 莫松成 |
Hits:
Description: TCP/IP通信编程的简单实现,能进行文件发送,对话,图形界面。对connect,accept等阻塞函数采用了单独的thread进行处理,使得界面不至于出现假死。发送文件等也都采用了单独的thread。软件总体上算是常规Tcp/Ip通信小程序的多线程版。-A tcp/ip communication software.For the function lick accept and connect,I used the multithread to deal with them,so does the file transfer.Thus we can avoid the fake shut of the interface.As a whole,this can be a simple Tcp./Ip software with multithread technolodgy.
Platform: |
Size: 63488 |
Author: hhjack |
Hits:
Description: 自己写的C# DOSS攻击实例 通过tcp 协议是3次握手的方式连接的,第一次客户机向服务器发送一个标志为syn的数据包,这个数据包的tcp部分有个16位随即序列号,而且ip部分和tcp部 分各有一个校验码,发送出去只有校验码正确才会视为合法的数据包,然后如果那个机器那个端口有服务器,比如http服务,就会把序列号+1,然后再生成一 个16位随机序列号,标志syn+ack的数据包返回,服务器就会占着一个信道等待第三次握手了,如果超过预定时间等不到就超时去掉了,这时如果开始那个 syn的源ip地址和源端口是伪造的并大量发送,服务器就会大量的向假ip端口返回syn+ack并等待,这样就大量占着信道了,如果超过了连接限制,别 的机器就连不上了,就拒绝服务了。原理大体就是这个样子了。-Write your own C# DOSS attack instance handshake connection through tcp protocol, the first time the client sends to the server a flag for the syn packet, this packet tcp part of a 16 then the serial number, and ip part and tcp part one on each check code sent only correct checksum will be regarded as the legitimate packets, and then if that machine that port server, such as http service serial number will+1, then regenerated into a 16-bit random serial number, logo syn+ack packet returns, the server will occupy a channel exceeds a predetermined time less than a timeout to remove the wait for the third handshake, then if you start the syn source ip address and the source port and send a large number of forged server will be a lot of to fake ip port to return syn+ack and waiting for, so that a large number of occupied channel, if the connection limit is exceeded, the other machines on the crawl denial of service. Principle roughly like this.
Platform: |
Size: 7168 |
Author: mjr |
Hits: