Can anyone tell me more about ip spoofing?How can i spoof my ip address?Does it have any legal issues?Anyone having experience in this stuff please reply back. Thanks
IP spoofing is most frequently used in denial-of-service attacks.
In such attacks, the goal is to flood the victim with overwhelming
amounts of traffic, and the attacker does not care about receiving
responses to his attack packets. Packets with spoofed addresses are
thus suitable for such attacks. They have additional advantages for
this purpose - they are more difficult to filter since each spoofed
packet appears to come from a different address, and they hide the true
source of the attack. Denial of service attacks that use spoofing
typically randomly choose addresses from the entire IP address space,
though more sophisticated spoofing mechanisms might avoid unroutable
addresses or unused portions of the IP address space. The proliferation
of large botnets
makes spoofing less important in denial of service attacks, but
attackers typically have spoofing available as a tool, if they want to
use it, so defenses against denial-of-service attacks that rely on the
validity of the source IP address in attack packets might have trouble
with spoofed packets. Backscatter,
a technique used to observe denial-of-service attack activity in the
Internet, relies on attackers' use of IP spoofing for its effectiveness.
IP spoofing can also be a method of attack used by network intruders to defeat network security measures, such as authentication
based on IP addresses. This method of attack on a remote system can be
extremely difficult, as it involves modifying thousands of packets at a
time. This type of attack is most effective where trust relationships
exist between machines. For example, it is common on some corporate
networks to have internal systems trust each other, so that a user can
log in without a username or password provided they are connecting from
another machine on the internal network (and so must already be logged
in). By spoofing a connection from a trusted machine, an attacker may
be able to access the target machine without authenticating.
Hi....Thanks about the theory that you gave on this stuff.But i want to know,how actually does it work?I mean spoofing?Any sites offering support on that?You haven't explained about that.
ok here it goes.. you must have understood the theory by now. let me explain with a scenario. you are connected to the internet. and for that you require to have an ip with your isp. now an attacker can find out your ip and it requires not much expertise. and now what he can do for a spoof is inject your ip into the packets and send to a server or some location for denial of service. and he keeps on sending it and sending it. and he can have the sender as your address. now the response from the server comes to you and thus he is safe from too many packets running to him. thus the server gets overwhelmed and so does you. This is an overall idea about what I guess the technique is. Correct me if I got it wrong.
Note: Above information only for educational purposes.It may or may not be authentic.
Hey ..i also want to know how to do dat.Are u having some experience doing dat?i mean, how can i spoof an ip and also please put some light on how we edit the headers(in packets)..
IP spoofing
Asked by - unnikrishnanr21 UnderIP spoofing is most frequently used in denial-of-service attacks.
In such attacks, the goal is to flood the victim with overwhelming
amounts of traffic, and the attacker does not care about receiving
responses to his attack packets. Packets with spoofed addresses are
thus suitable for such attacks. They have additional advantages for
this purpose - they are more difficult to filter since each spoofed
packet appears to come from a different address, and they hide the true
source of the attack. Denial of service attacks that use spoofing
typically randomly choose addresses from the entire IP address space,
though more sophisticated spoofing mechanisms might avoid unroutable
addresses or unused portions of the IP address space. The proliferation
of large botnets
makes spoofing less important in denial of service attacks, but
attackers typically have spoofing available as a tool, if they want to
use it, so defenses against denial-of-service attacks that rely on the
validity of the source IP address in attack packets might have trouble
with spoofed packets. Backscatter,
a technique used to observe denial-of-service attack activity in the
Internet, relies on attackers' use of IP spoofing for its effectiveness.
IP spoofing can also be a method of attack used by network intruders to defeat network security measures, such as authentication
based on IP addresses. This method of attack on a remote system can be
extremely difficult, as it involves modifying thousands of packets at a
time. This type of attack is most effective where trust relationships
exist between machines. For example, it is common on some corporate
networks to have internal systems trust each other, so that a user can
log in without a username or password provided they are connecting from
another machine on the internal network (and so must already be logged
in). By spoofing a connection from a trusted machine, an attacker may
be able to access the target machine without authenticating.
@unnikrishnanr21
Asked by - harishnair86 UnderHi....Thanks about the theory that you gave on this stuff.But i want to know,how actually does it work?I mean spoofing?Any sites offering support on that?You haven't explained about that.
@harishnair86
Asked by - superkents Underok here it goes.. you must have understood the theory by now. let me explain with a scenario. you are connected to the internet. and for that you require to have an ip with your isp. now an attacker can find out your ip and it requires not much expertise. and now what he can do for a spoof is inject your ip into the packets and send to a server or some location for denial of service. and he keeps on sending it and sending it. and he can have the sender as your address. now the response from the server comes to you and thus he is safe from too many packets running to him. thus the server gets overwhelmed and so does you. This is an overall idea about what I guess the technique is. Correct me if I got it wrong.
Note: Above information only for educational purposes.It may or may not be authentic.
@superkents
Asked by - harishnair86 UnderHey ..i also want to know how to do dat.Are u having some experience doing dat?i mean, how can i spoof an ip and also please put some light on how we edit the headers(in packets)..
@harishnair86
Asked by - superkents UnderHi. In fact these are only what I know. You might want to check more forums in case you are so curious about these techniques.
Post new Views