{"id":27,"date":"2011-05-22T13:35:06","date_gmt":"2011-05-22T17:35:06","guid":{"rendered":"http:\/\/www.braindeadprojects.com\/blog\/?p=27"},"modified":"2011-05-22T13:49:16","modified_gmt":"2011-05-22T17:49:16","slug":"packet-creation-for-ipv6","status":"publish","type":"post","link":"http:\/\/www.braindeadprojects.com\/blog\/what\/packet-creation-for-ipv6\/","title":{"rendered":"Packet Creation for IPv6"},"content":{"rendered":"

With most of my projects, I’ve noticed that before I can really<\/em> begin to delve into them, I first have to learn something completely new.<\/p>\n

I don’t do most of my work in Perl<\/a>, but I can definitely make ends meet. My more recent work in Perl has dealt w\/ RIP<\/a> scanning and route-updating (a lot of DSL CPE tends to have RIP enabled). Packet creation isn’t that difficult, and using Perl I could bang out a script in a short period of time.<\/p>\n

Usually for packet manipulation, I stay away from Perl – instead I’m a huge fan of Hping[23]<\/a>. If you’re wanting to watch and play w\/ the transport layer – an old laptop with hping and wireshark running is definitely the way to go. If you want to test MTU problems, or ACLs\u00a0 –\u00a0 Hping is fast and easy.<\/p>\n

Hping is an amazing tool – one of my favorites. Hand crafted TCP and UDP traceroutes are easy as hell, and hand crafting TCP timestamp requests is easy too. Just read the manpages and you’ll find all sorts of interesting features of TCP\/IP.<\/p>\n

\"hping:<\/a>
hping: Like a screwdriver set with most of the bits.<\/figcaption><\/figure>\n

The downside to Hping is that it doesn’t seem to be under regular development (last release 2005?), and IPv6 isn’t supported yet (Aside from some basic third-party patches<\/a>). Application layer creation is also left for other utilities to handle (But in all fairness – that’s not it’s job)<\/p>\n

I was a late adopter, but about a year ago I made a new friend (and picked up some python<\/a> along the way). My new best friend is Scapy<\/a>. “Scapy is a powerful interactive packet manipulation program. It is able to forge or decode packets of a wide number of protocols, send them on the wire, capture them, match requests and replies, and much more.” It runs in interactive and script-able mode, and thus far it’s proven to be quite powerful. It also supports IPv6.<\/p>\n

Scapy understands a large number of Application level protocols (SNMP, TFTP, SMB, etc, etc), and makes it easy for one to craft such packets.\u00a0 When I recently realized early versions of Cisco IP Router Export have corrupt headers – Scapy came to the rescue (albeit, only to rip the headers off, as fixing them wasn’t possible).\u00a0 When I wanted to craft a quick and easy FreeRadius Packet of Death<\/a> – Scapy came to the rescue.<\/p>\n

\"Exploits<\/a>
FreeRadius PoD on www.exploit-db.com<\/figcaption><\/figure>\n

Another great thing about Scapy is that it’s easy to add “layers” (protocols). Recently I sat down with the RFC’s for OSPF<\/a> and in about 2 days time had fully implemented OSPF in Scapy – learning a lot<\/strong> about the protocol along the way. (Dirk Loss had beat me and submitted<\/a> it first, but that was besides the point).<\/p>\n

Looking for a fun new world to poke, and tired of IPv4? Sign up for a 6-in-4 tunnel<\/a> and go exploring. Just make sure you pack Scapy and a handy guide<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"

With most of my projects, I’ve noticed that before I can really begin to delve into them, I first have to learn something completely new. I don’t do most of my work in Perl, but I can definitely make ends meet. My more recent work in Perl has dealt w\/ RIP scanning and route-updating (a … Continue reading Packet Creation for IPv6<\/span> →<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[34,33,32,1],"tags":[],"class_list":["post-27","post","type-post","status-publish","format-standard","hentry","category-ipv6","category-perl","category-python","category-what"],"_links":{"self":[{"href":"http:\/\/www.braindeadprojects.com\/blog\/wp-json\/wp\/v2\/posts\/27"}],"collection":[{"href":"http:\/\/www.braindeadprojects.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.braindeadprojects.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.braindeadprojects.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/www.braindeadprojects.com\/blog\/wp-json\/wp\/v2\/comments?post=27"}],"version-history":[{"count":33,"href":"http:\/\/www.braindeadprojects.com\/blog\/wp-json\/wp\/v2\/posts\/27\/revisions"}],"predecessor-version":[{"id":1260,"href":"http:\/\/www.braindeadprojects.com\/blog\/wp-json\/wp\/v2\/posts\/27\/revisions\/1260"}],"wp:attachment":[{"href":"http:\/\/www.braindeadprojects.com\/blog\/wp-json\/wp\/v2\/media?parent=27"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.braindeadprojects.com\/blog\/wp-json\/wp\/v2\/categories?post=27"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.braindeadprojects.com\/blog\/wp-json\/wp\/v2\/tags?post=27"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}