Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

RE: IPS Testing

From: "Maxime Ducharme" <mducharme () cybergeneration com>
Date: Tue, 8 Jan 2008 09:36:01 -0500
 
Hi

i suggest iptables SNAT

spoof every packets destined to their address

something like
iptables -t nat -A POSTROUTING -o ethX --dst 4.3.2.1 -j SNAT --to-source
1.2.3.4

where 4.3.2.1 is their IP and 1.2.3.4 is the spoofed IP

some info :
http://iptables-tutorial.frozentux.net/iptables-tutorial.html#SNATTARGET

hth

Max
 

-----Message d'origine-----
De : listbounce () securityfocus com [mailto:listbounce () securityfocus com] De
la part de pentestr
Envoyé : 3 janvier 2008 03:56
À : Pentest Mailinglist
Objet : IPS Testing

Hi,

I am doing a PT for a customer and found that after running nessus 
against the target our IP is getting blocked permanently. I want to show 
this issue to the customer.
1. Is there any specific tool that can generate nessus traffic by 
spoofing IPs?
2. Is there any tool that can change IP on the fly? While running nessus 
that should change source IP?

The server have only port 80 Open.

Thank you.
Regards.
PenTestr.

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------




------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: