Stack Overflow
Stack Overflow

Questions tagged [packet-injection]

53 questions
1
vote
1 answer

tcp packet injection -?

i have TCP client on host 192.168.1.13 reading data from static ip 176.132.74.74 ... i need to inject crafted packets into this connection to test if my firewall can filter out spoofed traffic. I've tried "nemesis" 1.4beta3 from the host…
user270398
  • 451
  • 7
  • 22
0
votes
0 answers

How to scale Cisco Joy capturing speed over 5 GBPS or even more

Currently I am capturing network packets using tcpreplay at a speed of 800 MBPS but I want to scale it over 5 GBPS. I am running Joy on a server with 16GB Ram and 8 Cores Tcpreplay Output: `Actual: 2427978 packets (2098973496 bytes) sent in 20.98…
Tushar Pasi
  • 1
  • 2
0
votes
1 answer

citrix GUI automation or packet injection?

most of my job is on a citrix ICA app. i work in a winsows enviroment. among other things, i have to print 300 reports from my app weekly. i am trying to automate this task. i was using a screenshot automation tool called sikuli, but it is not…
user850498
  • 717
  • 1
  • 9
  • 22
0
votes
1 answer

How to capture and send packets via Macbook

I want to capture and send some packets to the access point for testing purposes. I have the packet captures made via wireshark but I do not know how to proceed to be able to send these packets from my macbook. I tried things like scapy, colasoft…
Rekha R
  • 131
  • 1
  • 1
  • 12
0
votes
0 answers

Ephemeral port detection

I'm currently studing how OS assign ephemeral ports. I know that years ago on application's requests, the OS used to open ephemeral ports progressively, but now due to a too easy detection for packet injection it has changed. My question is, how…
Davide Ambrosi
  • 37
  • 8
0
votes
1 answer

Spoofed Ping Packet Injection Failure

TLDR: Why would a layer 2 packet injection of a PING request not work on a computer, when the packet is an identically structured packet from a successful packet injection PING request from the "pinging" computer? (essentially why would a spoofed…
Micah Rogue
  • 1
  • 1
0
votes
0 answers

Nginx js_filter script memory leak

I am using NGINX as a reverse proxy for TCP streams. The server listens to 6680 TCP ports (not a typo) and pushes them on to upstream server(s) on port 5000. In the filter phase there is a njs script involved that injects the original destination…
mantzouric
  • 1
  • 3
0
votes
0 answers

send packet to an ip using pcap_inject

I am able to send a packet to a specific IP address using scapy like this. Now, I am new to libcap and I would like to do the same with pcap_inject(). I am unable to find any code snippet online that uses pcap_inject() to send to specific ip…
Ahmed Hussein
  • 715
  • 1
  • 15
  • 38
0
votes
2 answers

Is it possible to re-transmit a packet after capturing it using XDP and processing it in userspace?

I need to write an application that sits between two servers and modifies HTTP packets sent from one server to another by adding a specific HTTP header to each packet. Apparently it has to be done as fast as possible, I have found that by using eBFP…
Sam
  • 489
  • 5
  • 22
0
votes
1 answer

Libpcap ICMP Packet never responded to

I'm playing around with Libpcap trying to send a ping but whenever I send the requests they are never responded to, no errors given and it looks identical to a regular ping sent through the ping utility. The left packet is sent through ping on the…
Crizly
  • 971
  • 1
  • 12
  • 33
0
votes
1 answer

Inject raw fragmented packets

I'm trying to inject a fragment packet and i can't. I see that if i have one udp packet witch has been split to two Ip packets i can't inject only the second part, my operation system (windows Xp) seems to wait for the first part before it injects…
korpila
  • 1
0
votes
0 answers

How to filter packets seen on unnumbered eth then dump raw filtered stream out another eth without using iptables

I can capture packets using tcpdump OK as the source eth1 port is connected to a cisco switch span port, and filter using tcpdump options (at this stage interested in DNS packets to and from a particualar IP only). Rather than writing to a file, I…
NZDave
  • 1
  • 2
0
votes
1 answer

Memory reference traces with Intel Pin of packet processing applications

I'm learning how to use Intel Pin and I have a couple of questions regarding the instrumentation process for a particular usecase. I would like to create a memory reference trace of a simple packet processing application. I have developed the…
Antonis
  • 35
  • 5
0
votes
2 answers

to monitor local pc network and block ip's is winpcap is the tool?

i need to build network monitor that sniff the network and to hold ip policy that will enable me to block the network based on this policy for example: if im getting incoming http protocol from ip that is in my ip policy black list and now i like to…
user63898
  • 29,839
  • 85
  • 272
  • 514
0
votes
1 answer

T50 does not work with docker container

I'm doing some experiments on Snort IDS using Docker container technology. My objective is to test wether snort with the defaults settings can detect DoS and DDoS attacks. I downloaded T50 multi-protocol packet injector and exectuted it on a…
user2567806
  • 460
  • 3
  • 7
  • 17
1 2
3
4