HPING2 --- Network Detection Tools
Tool Name: HPING2 Application Environment: Linux
Tool introduction: HPING is a command-based TCP / IP tool, which is well applying on UNIX, but it is not only one ICMP request / response tool, it also supports TCP, UDP, ICMP; RAW-IP protocol, And a routing model HPING has been used as a security tool, which can be used to test the security of the network and host, which has the following functions:
1. Firewall detection (judgment by the return code of the PIN, such as the firewall to return status 13 when the ICMP package and the firewall, etc., which can be judged by Cisco firewall protection)
2. Advanced port scan (2-7 function is mainly based on the understanding of TCP / IP, analyzing and testing the return of the issued package)
3. Network testing; (can be implemented with different protocols, TOS, data package fragmentation)
4. Handmade MTU Discover
5. Advanced routing (can be implemented under any agreement)
6.OS fingerprint judgment
7. Subtle uPtime guess
Example:
The returned value of the ICMP that penetrates the scan of the firewall is determined, and the return value of different firewalls is different, such as the status value of Cisco is 13; other tests need to understand TCP / IP cladding structure
Simple class ping operation (-C count) HPING2 192.168.0.1 -C 2
Set the time interval, the frequency (-i ux x is microseconds) HPING2 192.168.0.1 -c 2 -i u1000
A type of ping attack test (the size of the -D packet) hping2 192.168.0.1 -d 20000 -i U1
Exploring the external network HPING2 -A / F / S -P 80 www.my.com; specific operation See Figure 1 (first use ping test, no return, then use HPING2 to test):
figure 1
