Idle Scanning with hping2

hping is a TCP/IP packet assembler/analyzer. It supports TCP, UDP, ICMP and RAW-IP protocols, has a traceroute mode, the ability to send files between a covered channel, and many other features.

A subset of the stuff you can do using hping:

  • Firewall testing
  • Advanced port scanning
  • Network testing, using different protocols, TOS, fragmentation
  • Manual path MTU discovery
  • Advanced traceroute, under all the supported protocols
  • Remote OS fingerprinting
  • Remote uptime guessing
  • TCP/IP stacks auditing
  • hping can also be useful to students that are learning TCP/IP.

Hping works on the following unix-like systems: Linux, FreeBSD, NetBSD, OpenBSD, Solaris, MacOs X and Windows.

 

Idle scanning

hping2 -c 10 -S --spoof 192.168.1.11 -p 80 192.168.1.15

 

-c 10 – send 10 packets
-S – Syn scan
–spoof 192.168.1.11 – spoof from ip address 192.168.1.11
-p 80 – target port
192.168.1.15 – target ip address

Tags: , ,