Overview
Explore the intricacies of building a blind IP spoofed portscanning tool in this 44-minute Black Hat USA 2001 conference talk by Thomas Olofsson. Delve into the fundamentals of TCP/IP handshakes and definitions before examining traditional port scanning techniques with practical examples and analysis. Learn about noise reduction, timing calculations, and the tool's adaptation to Windows 2000 raw sockets. Discover the functionalities of the spoofer, including host scanning, verbosity options, and result interpretation. Investigate packet behavior, open port detection, and ID counter mechanisms. Address challenges posed by stateful firewalls and explore the tool's accuracy when scanning multiple hosts. Gain insights into the development process, potential applications, and ethical considerations surrounding this advanced network security tool.
Syllabus
Introduction
Basic TCPIP handshake
TCPIP definitions
TCPIP handshake
Operating system dip
Traditional port scanning
Example
Analysis
Noise
Timing Calculation
When Did This Tool
Ported To Windows 2000
Raw Sockets
Spoofer
Host Scan
Verbosity
Results
Packets
Positive increments
Open ports
ID counters
Stateful Firewall
Download Site
The Problem
The Question
The Answer
Multiple Hosts
Is it Accurate
Todays Question
Thank You
Taught by
Black Hat