Tool 52: Ping TCP (EthIp spoof)
Description:
This tool checks if a host is up. It's done sending a probe packet and
expecting a reply.
This tool sends a TCP SYN to a computer. If host permits TCP, it will
send back a TCP SYN-ACK (if port is open), or a TCP RST (if port is
closed).
This tool also permits to use fake Ethernet and IP addresses.
This tool may need to be run with admin privilege in order to sniff
and spoof.
Usage:
netwox 52 -i ip [-d device] [-E eth] [-e eth] [-I ip] [-p port] [-c uint32] [-m uint32] [-b|+b] [-1|+1]
Parameters:
| parameter |
description |
example |
| -i|--dst-ip ip |
destination IP address |
5.6.7.8 |
| -d|--device device |
spoof device |
Eth0 |
| -E|--src-eth eth |
source ethernet address |
0:a:a:a:a:a |
| -e|--dst-eth eth |
destination ethernet address |
0:b:b:b:b:b |
| -I|--src-ip ip |
source IP address |
1.2.3.4 |
| -p|--dst-port port |
destination port number |
80 |
| -c|--max-count uint32 |
max requests |
4294967295 |
| -m|--max-ms uint32 |
max millisecond wait |
1000 |
| -b|--beep|+b|--no-beep |
beep if reached |
|
| -1|--display01|+1|--no-display01 |
display only 0 or 1 |
|
Examples:
netwox 52 -i "5.6.7.8"
netwox 52 --dst-ip "5.6.7.8"