Firewall, Host discovery, Network, Port Scanning

Idle Scanning with hping2

hping is a TCP/IP packet assembler/analyzer. It supports TCP, UDP, ICMP and RAW-IP protocols, has a traceroute mode, the ability to send files between a covered channel, and many other features.

A subset of the stuff you can do using hping:

  • Firewall testing
  • Advanced port scanning
  • Network testing, using different protocols, TOS, fragmentation
  • Manual path MTU discovery
  • Advanced traceroute, under all the supported protocols
  • Remote OS fingerprinting
  • Remote uptime guessing
  • TCP/IP stacks auditing
  • hping can also be useful to students that are learning TCP/IP.

Hping works on the following unix-like systems: Linux, FreeBSD, NetBSD, OpenBSD, Solaris, MacOs X and Windows.


Idle scanning

hping2 -c 10 -S --spoof -p 80


-c 10 – send 10 packets
-S – Syn scan
–spoof – spoof from ip address
-p 80 – target port – target ip address