Everyone knows that the target host type can be judged by ping and tracert programs. The main use of ping is whether the target host is connected. Tracert uses the value of the ICMP packet and the value of TTL in the IP packet, preventing the packet from constantly cycling on the IP interconnection layer.
Many intruders will first ping your machine. If you see the TTL value of 128, you can think that your system is Windownt / 2000. If the TTL value is 32, the target host operating system is Windows 95/98, if the TTL value is 255 / 64 is considered a UNIX / Liux operating system. Since the intruder then believes the results reflected by the TTL value, then we can modify the value of TTL, and invaders cannot invade the computer.
Steps:
First, open the notepad file, write a batch file command:
@echo regedit4 >> Changettl.reg
@ >> Changettl.reg
@echo [hkey_local_machine / system / current_controlset / service / tcpip / parameters] >>> Changettl.reg
@echo "defaultttl" = DWORD: "000000" >> Changettl.Reg
@Regedit / S / C Changettl.Reg
Second, save the prepared program as a batch file named .bat, click this file, your operating system will be modified to FF, ie 10 credited 255, that is, Your operating system is changed to UNIX system, at the same time, a registry file called ChangeTtl.reg is generated under the folder in this file. If you want to run this batch file, you will not generate ChangeTtl .reg file, you can join Deltree / Y ChangeTtl.reg for the last line of this processing file, you can automatically remove the ChangeTtl.reg file without confirmation.
