PACKET CONSTRUCTION

AICMPSEND

http://packetstormsecurity.nl/UNIX/utilities/aicmpsend.tar.gz

AICMPSEND IS AN ICMP PACKET SENDER FEATURING IMPLEMENTATION OF ALL ICMP FLAGS AND CODES, SPOOFING, AND FLOODING.

COLASOFT PACKET BUILDER

http://www.colasoft.com/packet_builder/

COLASOFT PACKET BUILDER ENABLES CREATING CUSTOM NETWORK PACKETS; USERS CAN USE THIS TOOL TO CHECK THEIR NETWORK PROTECTION AGAINST ATTACKS AND INTRUDERS.

COLASOFT PACKET BUILDER INCLUDES A VERY POWERFUL EDITING FEATURE. BESIDES COMMON HEX EDITING RAW DATA, IT FEATURES A DECODING EDITOR ALLOWING USERS TO EDIT SPECIFIC PROTOCOL FIELD VALUES MUCH EASIER.

USERS ARE ALSO ABLE TO EDIT DECODING INFORMATION IN TWO EDITORS - DECODE EDITOR AND HEX EDITOR. USERS CAN SELECT ONE FROM THE PROVIDED TEMPLATES ETHERNET PACKET, ARP PACKET, IP PACKET, TCP PACKET AND UDP PACKET, AND CHANGE THE PARAMETERS IN THE DECODER EDITOR, HEXADECIMAL EDITOR OR ASCII EDITOR TO CREATE A PACKET. ANY CHANGES WILL BE IMMEDIATELY DISPLAYED IN THE OTHER TWO WINDOWS. IN ADDITION TO BUILDING PACKETS, COLASOFT PACKET BUILDER ALSO SUPPORTS SAVING PACKETS TO PACKET FILES AND SENDING PACKETS TO NETWORK.

BIT-TWIST

http://bittwist.sourceforge.net/index.html

BIT-TWIST IS A SIMPLE YET POWERFUL LIBPCAP-BASED ETHERNET PACKET GENERATOR. IT IS DESIGNED TO COMPLIMENT TCPDUMP, WHICH BY ITSELF HAS DONE A GREAT JOB IN CAPTURING NETWORK TRAFFIC. WITH BIT-TWIST, YOU CAN NOW REGENERATE THE CAPTURED TRAFFIC ONTO A LIVE NETWORK! PACKETS ARE GENERATED FROM TCPDUMP TRACE FILE .PCAP FILE). BIT-TWIST ALSO COMES WITH A COMPREHENSIVE TRACE FILE EDITOR TO ALLOW YOU TO CHANGE THE CONTENTS OF A TRACE FILE. GENERALLY, PACKET GENERATOR IS USEFUL IN SIMULATING NETWORKING TRAFFIC OR SCENARIO, TESTING FIREWALL, IDS, AND IPS, AND TROUBLESHOOTING VARIOUS NETWORK PROBLEMS.

FEATURES:

  • RUNS ON *BSD, LINUX, SOLARIS, AND WINDOWS 2000/XP
  • SEND MULTIPLE TRACE FILES AT A TIME
  • SEND PACKETS AT A SPECIFIC SPEED OR LINE RATE IN MBPS
  • COMPREHENSIVE TRACE FILE EDITOR WITH CONTROL OVER MOST FIELDS IN ETHERNET, ARP, IP, ICMP, TCP, AND UDP HEADERS WITH AUTOMATIC HEADER CHECKSUM CORRECTION
  • APPEND USER PAYLOAD TO EXISTING PACKETS AFTER A SPECIFIC HEADER
  • SELECT A SPECIFIC RANGE OF PACKETS AND SAVE THEM IN ANOTHER TRACE FILE
  • IF YOU ARE TEACHING COMPUTER NETWORKS CLASSES, YOU MAY FIND BIT-TWIST USEFUL AS A PRACTICAL TEACHING MATERIAL! IT GIVES YOUR STUDENTS A HANDS-ON EXPERIENCE TO LEARN VARIOUS NETWORKING PROTOCOLS, ETC.

PACKET DEBUGGER

http://pktdbg.sourceforge.net/

THE PACKET DEBUGGER (PDB) IS A PROGRAM WHICH ALLOWS PEOPLE TO WORK WITH PACKET STREAMS AS IF THEY WERE WORKING WITH A SOURCE CODE DEBUGGER. USERS CAN LIST, INSPECT, MODIFY, AND RETRANSMIT ANY PACKET FROM CAPTURED FILES AS WELL AS WORK WITH LIVE PACKET CAPTURE.

NETWORK PACKET GENERATOR (NPG)

http://www.wikistc.org/wiki/Network_packet_generator

NETWORK PACKET GENERATOR (NPG) IS A FREE GNU GPL WINDOWS PACKET INJECTOR (GENERATOR) THAT UTILIZES WINPCAP TO SEND SPECIFIC PACKETS OUT A SINGLE OR MULTIPLE NETWORK INTERFACES. THESE PACKETS AND OTHER EXTENDED OPTIONS CAN BE DEFINED ON THE COMMAND LINE, IN A PACKET FILE, OR COMBINATION OF THE TWO. A PACKET FILE CAN BE EITHER A LIBPCAP COMPATIBLE CAPTURE DUMP OR AN NPG FORMATTED FILE THAT GENERATES PACKETS FROM RAW BYTE STREAMS PROVIDING THE ABILITY TO CREATE ANY PACKET TYPE REGARDLESS OF HEADER, PAYLOAD, OR DATA LINK.

SENDIP

http://www.earth.li/projectpurple/progs/sendip.html

SENDIP MAKES IT POSSIBLE TO PREPARE AND SEND NETWORK PACKETS USING THE NTP, BGP, RIP, RIPNG, TCP, UDP AND ICMP PROTOCOLS, AS WELL AS RAW IPV4 AND IPV6 PACKETS WITH USER-SUPPLIED PARAMETERS AND ARBITRARY DATA.

GASP –V1.0

http://laurent.riesterer.free.fr/gasp/

GASP STANDS FOR ‘GENERATOR AND ANALYZER SYSTEM FOR PROTOCOLS’. IT ALLOWS YOU TO DECODE AND ENCODE ANY PROTOCOLS YOU SPECIFY. THE MAIN USE IS PROBABLY TO TEST NETWORKS APPLICATIONS: YOU CAN CONSTRUCT PACKETS BY HAND AND TEST THE BEHAVIOR OF YOUR PROGRAM WHEN FACING SOME STRANGE PACKETS. BUT YOU CAN IMAGE A LOT OF OTHER APPLICATION: E.G. MANIPULATING GRAPHICAL FILE OR EXECUTABLE HEADERS. JUST DESCRIBE THE SPECIFICATION OF THE STRUCTURED DATA.

GSPOOF –V3.2

http://gspoof.sourceforge.net/

GSPOOF IS A TOOL WHICH MAKES EASIER AND ACCURATE THE BUILDING AND SENDING OF TCP-IP PACKETS.

HPING –V3 ALPHA 2

http://www.hping.org/

HPING IS A COMMAND-LINE ORIENTED TCP/IP PACKET ASSEMBLER/ANALYZER. THE INTERFACE IS INSPIRED TO THE PING UNIX COMMAND, BUT HPING ISN'T ONLY ABLE TO SEND ICMP ECHO REQUESTS. IT SUPPORTS TCP, UDP, ICMP AND RAW-IP PROTOCOLS, HAS A TRACEROUTE MODE, THE ABILITY TO SEND FILES BETWEEN A COVERED CHANNEL, AND MANY OTHER

ICMPUSH

http://packetstormsecurity.org/UNIX/scanners/icmpush22.tgz

ICMPUSH IS A TOOL THAT BUILDS ICMP PACKETS FULLY CUSTOMIZED FROM COMMAND LINE.
IT SUPPORTS THE FOLLOWING ICMP ERROR TYPES: REDIRECT, SOURCE QUENCH,TIME EXCEEDED, DESTINATION UNREACH AND PARAMETER PROBLEM, AND THE FOLLOWING ICMP INFORMATION TYPES: ADDRESS MASK REQUEST, TIMESTAMP, INFORMATION REQUEST, ECHO REQUEST, ROUTER SOLICITATION AND ROUTERADVERTISEMENT.

IP SORCERY - V2.0.1

http://packetstormsecurity.nl/UNIX/misc/ipsorc-1.7.0.tar.gz

IP SORCERY IS A TCP/IP PACKET GENERATOR. IT HAS THE ABILITY TO SEND TCP, UDP, AND ICMP PACKETS WITH A GTK+ INTERFACE.

NEMESIS –V1.4BETA3

http://sourceforge.net/project/showfiles.php?group_id=93681&release_id=273337

NEMESIS IS A COMMAND-LINE NETWORK PACKET INJECTION UTILITY FOR UNIX-LIKE AND WINDOWS SYSTEMS. YOU MIGHT THINK OF IT AS AN EZ-BAKE PACKET OVEN OR A MANUALLY CONTROLLED IP STACK. WITH NEMESIS, IT IS POSSIBLE TO GENERATE AND TRANSMIT PACKETS FROM THE COMMAND LINE OR FROM WITHIN A SHELL SCRIPT. NEMESIS IS DEVELOPED AND MAINTAINED BY JEFF NATHAN. NOTE: A GREAT FRONT END GUI CALLED JNEMESIS IS AVAILABLE FROM THE WEB URL BELOW.

http://jnemesis.blackopscode.com/

PACKETCRAFTER

http://www.komodia.com/tools.htm

  • BUILD CUSTOM TCP/IP/UDP PACKETS.
  • CONTROL THE SOURCE ADDRESS (IP SPOOFING)
  • CONTROL IP FLAGS (CHECKSUMS, IDS AND MORE)
  • CONTROL TCP FLAGS (STATE FLAGS, SEQUENCE NUMBERS, ACK NUMBER AND MORE)

PACKET EXCALIBUR –V1.0.2

http://www.securitybugware.org/excalibur/

A MULTI-PLATFORM GRAPHICAL AND SCRIPTABLE NETWORK PACKET ENGINE WITH EXTENSIBLE TEXT BASED PROTOCOL DESCRIPTIONS

PACKETH –V1.1

http://packeth.sourceforge.net/

PACKETH IS A LINUX GUI PACKET GENERATOR TOOL FOR ETHERNET. IT ALLOWS YOU TO CREATE AND SEND ANY POSSIBLE PACKET OR SEQUENCE OF PACKETS ON THE ETHERNET.

PACKIT –V1.0

http://www.intrusense.com/software/packit

PACKIT IS A NETWORK AUDITING TOOL. ITS VALUE IS DERIVED FROM ITS ABILITY TO CUSTOMIZE, INJECT, MONITOR, AND MANIPULATE IP TRAFFIC. BY ALLOWING YOU TO DEFINE (SPOOF) NEARLY ALL TCP, UDP, ICMP, IP, ARP, RARP, AND ETHERNET HEADER OPTIONS, PACKIT CAN BE USEFUL IN TESTING FIREWALLS, INTRUSION DETECTION SYSTEMS, PORT SCANNING, SIMULATING NETWORK TRAFFIC, AND GENERAL TCP/IP AUDITING. PACKIT IS ALSO AN EXCELLENT TOOL FOR LEARNING TCP/IP.

PAKETTO KEIRETSU –V1.10

http://www.doxpara.com/read.php/code/paketto.html

THE PAKETTO KEIRETSU IS A COLLECTION OF TOOLS THAT USE NEW AND UNUSUAL STRATEGIES FOR MANIPULATING TCP/IP NETWORKS. THEY TAP FUNCTIONALITY WITHIN EXISTING INFRASTRUCTURE AND STRETCH PROTOCOLS BEYOND WHAT THEY WERE ORIGINALLY INTENDED FOR. IT INCLUDES SCANRAND, AN UNUSUALLY FAST NETWORK SERVICE AND TOPOLOGY DISCOVERY SYSTEM, MINEWT, A USER SPACE NAT/MAT ROUTER, LINKCAT, WHICH PRESENTS A ETHERNET LINK TO STDIO, PARATRACE, WHICH TRACES NETWORK PATHS WITHOUT SPAWNING NEW CONNECTIONS, AND PHENTROPY, WHICH USES OPENQVIS TO RENDER ARBITRARY AMOUNTS OF ENTROPY FROM DATA SOURCES IN THREE DIMENSIONAL PHASE SPACE.

SCAPY

http://www.secdev.org/projects/scapy/

SCAPY IS A POWERFUL INTERACTIVE PACKET MANIPULATION TOOL, PACKET GENERATOR, NETWORK SCANNER, NETWORK DISCOVERY, PACKET SNIFFER, ETC. IT CAN FOR THE MOMENT REPLACE HPING, 85% OF NMAP, ARPSPOOF, ARP-SK, ARPING, TCPDUMP, TETHEREAL, P0F, AND ETC

SING

http://sourceforge.net/projects/sing/

SING STANDS FOR ‘SEND ICMP NASTY GARBAGE’. IT IS A TOOL THAT SENDS ICMP PACKETS FULLY CUSTOMIZED FROM COMMAND LINE. ITS MAIN PURPOSE IS TO REPLACE THE PING COMMAND BUT ADDING CERTAIN ENHANCEMENTS (FRAGMENTATION, SPOOFING…)

TTPU

http://www.poetidistrada.com/ttpu/

TTPU STANDS FOR THE DARK FREE SOUL'S TCP/IP PACKETS UNLIMITED (GENERATOR). TTPU GENERATES TCP PACKETS ON IPV4 PROTOCOL AND LETS USER SPECIFY:

  • NETWORK INTERFACE
  • SOURCE AND DESTINATION IP
  • SOURCE AND DESTINATION PORT
  • SEQUENCE NUMBER
  • ACKNOWLEDGEMENT NUMBER
  • TCP FLAGS (URG, ACK, PSH, RST, SYN, FIN)
  • WINDOW SIZE
  • DATA TO BE SENT

UDP PACKET REFLECTOR / FORWARDER

http://www.cs.ucl.ac.uk/staff/s.bhatti/teaching/z02/reflector.html

THIS APPLICATION OPERATES IN TWO MODES:

  • PACKET REFLECTOR THAT SENDS UDP PACKETS BACK TO THE HOST THAT SENT THEM.
  • PACKET FORWARDER THAT FORWARDS PACKETS BETWEEN A NUMBER OF UNICAST UDP SOURCES ACTING AS BRIDGE WHEN MULTICAST IS NOT AVAILABLE. THE REFLECTOR WILL ALSO DROP PACKETS, DUPLICATE PACKETS, AND ADD JITTER ON A PER PORT BASIS. THE DEFAULT METHOD OF SETTING PARAMETERS IS THROUGH A TCL/TK USER INTERFACE, BUT THEY CAN ALSO BE SENT TO THE APPLICATION VIA TCP SO THEY CAN BE SET BY TELNET OR ALTERNATE INTERFACES. THIS LATTER CONTROL METHOD HAS BEEN USED IN AUDIO AND VIDEO PERCEPTION EXPERIMENTS. THIS CODE CAME INTO EXISTENCE TO HELP FOR DEBUGGING OF MBONE TOOLS WHEN MULTICAST IS NOT AVAILABLE AND FOR RUNNING LOOPBACK TESTS WITH TUNABLE JITTER, DELAY, AND DUPLICATION. THE PROGRAM DOES NOT SUPPORT PACKET FORWARDING OR RECEPTION FROM MULTICAST GROUPS.

RAIN

http://www.stearns.org/rain/

RAIN IS A POWERFUL TOOL FOR TESTING STABILITY OF HARDWARE AND SOFTWARE UTILIZING IP PROTOCOLS. IT OFFERS ITS USERS THE CAPABILITY OF CREATING THEIR OWN PACKETS WITH A WIDE VARIETY OF COMMAND LINE OPTIONS.

TTT

http://packetstormsecurity.org/cisco/ttt-1.3r.tar.gz

MODIFIED VERSION OF CISCO CIAG'S TCP TEST TOOL TTT. THIS TOOL CAN GENERATE TCP SEGMENTS WITH ARBITRARY VALUES FOR ANY FIELD IN THE IP OR TCP HEADERS. A TCP PAYLOAD CAN BE ADDED TO THE SEGMENT BY SPECIFYING THE FILE WITH THE PAYLOAD IN THE COMMAND LINE OR BY PASSING THE PAYLOAD VIA STANDARD INPUT.

Unless otherwise stated, the content of this page is licensed under Creative Commons Attribution-ShareAlike 3.0 License