Nmap Development: spoofing source address and ICMP pinging (Re: Nmap 3.84ALPHA1: Call For Testers)

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Nmap Development mailing list archives

spoofing source address and ICMP pinging (Re: Nmap 3.84ALPHA1: Call For Testers)

From: Martin Mačok <martin.macok () underground cz>
Date: Thu, 11 Aug 2005 11:15:49 +0200

When I use -S and -e to spoof IP address Nmap does it correctly for
TCP pinging and scanning but does not spoof the IP with ICMP pinging.
Packet-trace option prints 0.0.0.0 as a source address of ICMP packets
(echo, time or netmask) and sniffing shows the default IP of the
scanning machine (not the spoofed one).

(Looking at source for a while resulted in a headache ... I'm sorry ;-)

Martin Mačok
ICT Security Consultant


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev

By Date By Thread

Current thread:

Nmap 3.84ALPHA1: Call For Testers Fyodor (Aug 10)
- Re: Nmap 3.84ALPHA1: Call For Testers Fyodor (Aug 10)
- Re: Nmap 3.84ALPHA1: Call For Testers Martin Mačok (Aug 11)
  - Re: Nmap 3.84ALPHA1: Call For Testers Richard Moore (Aug 11)
- Re: Nmap 3.84ALPHA1: Call For Testers Luke Triantafyllidis (Aug 11)
- spoofing source address and ICMP pinging (Re: Nmap 3.84ALPHA1: Call For Testers) Martin Mačok (Aug 11)
- Re: Nmap 3.84ALPHA1: Call For Testers Max (Aug 11)
  - Re: Nmap 3.84ALPHA1: Call For Testers Fyodor (Aug 11)
    - Re: Nmap 3.84ALPHA1: Call For Testers Emmanuel Goldstein (Aug 11)
    - Re: Nmap 3.84ALPHA1: Call For Testers Greg Darke (Aug 11)
    - Re: Nmap 3.84ALPHA1: Call For Testers Simon Spencer (Aug 11)