44 lines
1.8 KiB
Plaintext
44 lines
1.8 KiB
Plaintext
ISIC -- IP Stack Integrity Checker
|
|
|
|
Description:
|
|
ISIC is a suite of utilities to exercise the stability of an IP Stack and its
|
|
component stacks (TCP, UDP, ICMP et. al.) It generates piles of pseudo random
|
|
packets of the target protocol. The packets be given tendancies to conform to.
|
|
Ie 50% of the packets generated can have IP Options. 25% of the packets can
|
|
be IP fragments... But the percentages are arbitrary and most of the packet
|
|
fields have a configurable tendancy.
|
|
|
|
The packets are then sent against the target machine to either penetrate its
|
|
firewall rules or find bugs in the IP stack.
|
|
|
|
ISIC also contains a utility generate raw ether frames to examine hardware
|
|
implementations.
|
|
|
|
Other Uses:
|
|
Other novel uses people have found for ISIC include IDS testing, stack
|
|
fingerprinting, breaking sniffers and barraging the IRC kiddie.
|
|
|
|
|
|
Warning:
|
|
ISIC may break shit, melt your network, knock out your
|
|
firewall, or singe the fur off your cat
|
|
|
|
|
|
usage: isic [-v] [-D] -s <source ip> -d <destination ip>
|
|
[-p <pkts to generate>] [-k <skip packets>] [-x <send packet X times>]
|
|
[-r <random seed>] [-m <max kB/s to generate>]
|
|
Percentage Opts: [-F frags] [-V <Bad IP Version>]
|
|
[-I <Random IP Header length>]
|
|
notes:
|
|
[-D] causes packet info to be printed out -- DEBUGGING
|
|
|
|
ex: -s a.b.c.d -d a.b.c.d -F100
|
|
100% of the packets will be ^^^^ fragments
|
|
ex: -s a.b.c.d -d a.b.c.d -p 100 -r 103334
|
|
ex: -s rand -d rand -r 23342
|
|
^^^^ causes random source addr
|
|
ex: -s rand -d rand -k 10000 -p 10001 -r 666
|
|
Will only send the 10001 packet with random seed 666
|
|
this is especially useful if you suspect that packet is
|
|
causing a problem with the target stack.
|