Spoofing IP in scanning?

Networking/Security Forums -> Connectivity // Telecommunications // Internet News

Author: HughJardon PostPosted: Tue Nov 19, 2002 3:05 am    Post subject: Spoofing IP in scanning?
    ----
I've recently had to put my SNMP scanning project, Global Traveler on hold. Using a freely available SNMP scanner, I can scan fast enough to sweep-scan the entire range of valid global ip addresses using only a handful of comps each running about 5 concurrent sessions of nsh. Upload bandwidth is only about 20k/sec per comp. All responses were loaded into a SQL Server (for what? I don't know yet).

To date, the db is over 100,000 public snmp devices, about 1% of the net range has been scanned.

The problem: my ISP is getting complaints about my IP address doing snmp probes. My research tells me that my scanning is not illegal, however it violates my isp's acceptable use policy.

Are there bnc-type techniques that could be used here, or some kind of ip spoofing (that lets me get responses back)???

Help much appreciated!

Author: ShaolinTigerLocation: Kuala Lumpur, Malaysia PostPosted: Tue Nov 19, 2002 11:11 am    Post subject: Re: Spoofing IP in scanning?
    ----
HughJardon wrote:

Are there bnc-type techniques that could be used here, or some kind of ip spoofing (that lets me get responses back)???

Help much appreciated!


Only if the program you are using supports proxies..

Other than that if it's a Windows program you can try SockCap.

Or do decoy scans simultaneously to create some white noise whilst you are scanning.



Networking/Security Forums -> Connectivity // Telecommunications // Internet News


output generated using printer-friendly topic mod, All times are GMT + 2 Hours

Page 1 of 1

Powered by phpBB 2.0.x © 2001 phpBB Group