Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Building a Blind IP Spoofed Portscanning Tool

Black Hat via YouTube

Overview

Explore the intricacies of building a blind IP spoofed portscanning tool in this 44-minute Black Hat USA 2001 conference talk by Thomas Olofsson. Delve into the fundamentals of TCP/IP handshakes and definitions before examining traditional port scanning techniques with practical examples and analysis. Learn about noise reduction, timing calculations, and the tool's adaptation to Windows 2000 raw sockets. Discover the functionalities of the spoofer, including host scanning, verbosity options, and result interpretation. Investigate packet behavior, open port detection, and ID counter mechanisms. Address challenges posed by stateful firewalls and explore the tool's accuracy when scanning multiple hosts. Gain insights into the development process, potential applications, and ethical considerations surrounding this advanced network security tool.

Syllabus

Introduction
Basic TCPIP handshake
TCPIP definitions
TCPIP handshake
Operating system dip
Traditional port scanning
Example
Analysis
Noise
Timing Calculation
When Did This Tool
Ported To Windows 2000
Raw Sockets
Spoofer
Host Scan
Verbosity
Results
Packets
Positive increments
Open ports
ID counters
Stateful Firewall
Download Site
The Problem
The Question
The Answer
Multiple Hosts
Is it Accurate
Todays Question
Thank You

Taught by

Black Hat

Reviews

Start your review of Building a Blind IP Spoofed Portscanning Tool

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.