HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 107 guests online
EH-Net News Feeds
Latest Additions
 
Advertisement

You are here: Home arrow Forum arrow Ethical Hacking Discussions and Related Certificationsarrow Otherarrow Active Detection on SYN Flooding attacks
EH-Net
May 26, 2012, 11:25:24 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Advertise on EH-Net!! - Reasonable Rates, Highly Targeted Audience.
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Active Detection on SYN Flooding attacks  (Read 2818 times)
0 Members and 1 Guest are viewing this topic.
tsot
Newbie
*
Offline Offline

Posts: 3



View Profile
« on: November 28, 2011, 04:24:14 PM »
Hello,
This is my first post, so, hello everyone. I have a homework about the above subject and some help with ip spoofing and changing the tcp header would be very helpful. My homework is based on this paper http://www.utdallas.edu/~edsha/papers/bin/synflood.pdf.
Thanks in advance
Logged
aweSEC
Hero Member
*****
Offline Offline

Posts: 1100


View Profile
« Reply #1 on: November 28, 2011, 04:33:23 PM »
Can you show/explain what you have achieved so far by yourself?
Logged
tsot
Newbie
*
Offline Offline

Posts: 3



View Profile
« Reply #2 on: December 02, 2011, 06:08:12 AM »
I haven't started the development. I am reading some papers. So, far i have reached to the plan as follows:
I am going to install an HTTP server (Apache maybe) and i am going to make some Syn Flood attacks from "spoofed ips" (i am going to use a VM) to the Server. Also i'll add a TTL (time to live) value on the Header of the (three-way-handshake) tcp protocol, also i'll create an algorithm that will manage the ttl+i, the hops and the icmp replies. Anyway, i need some help, or better some recommendations on papers about the issues that i mentioned on my first post. Also, some advises on how to achieve a congested network.
Thanks
Logged
hurtl0cker
Jr. Member
**
Offline Offline

Posts: 58



View Profile
« Reply #3 on: December 05, 2011, 11:51:36 AM »
Scapy is a sophisticated packet crafting tool that will come handy for a SYN flooding attak part. Scapy is really flexible when it comes to packet manipulation,you can literally change any field of a packet.
Logged
“Knowing is not enough; we must apply. Willing is not enough: we must do.”
- Bruce Lee
tsot
Newbie
*
Offline Offline

Posts: 3



View Profile
« Reply #4 on: December 09, 2011, 07:16:26 PM »
Thanks hurtl0cker, i am thinking to use raw sockets.
Logged
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.16 | SMF © 2011, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.121 seconds with 22 queries.
 

gk_static-ad_feb2012.jpg
Global Knowledge: Build Security Skills to Protect & Defend

els_130x200fixed2.gif
eLearnSecurity Student Course Now Live!
5% Off with Code
ELS-EH-5

SANS Deals 4 EH-Netters
$150 OFF Any SANS Course in Any Format!
Coupon Code: EHN_Connect Including SANS Security West 2012 & SANSFIRE 2012
Recent Forum Topics

cbtnuggets_logo_125.jpg
Try CBT Nuggets Free!

Vote For EH-Net

Add to Technorati Favorites
technorati fave

 
         
Advertisement

© 2012 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.