*Note: Keep in mind that even though a good security Administrator can locate the actual
IP address of the sender, other labs have instructed you how to spoof not only the
IP address but the Media Access Control (MAC) address of the computer performing
the DoS attack. An attacker will always want to make the logs so full of bad data that
any security personnel will have to commit an enormous amount of time to reviewing
the logs, and still end up with bogus data of the source.
671
Appendix A
References
Although the tools used throughout this book are included on the CD, the
following is a list of Web sites where the tools can be found (at the time of this
writing). Some tools, such as RafaleX, have been renamed to Engage Packet
Builder, but the tools are the same. If I could not find a tool on the Internet,
I included it on the CD and made note of it below. If a tool is used in a chapter
and not listed in this appendix, this indicates that the tool is part of the standard
operating system within that lab.
I would like to thank all of the programmers involved for the hours of
work they put into the development of these tools.
Chapter 1
VMware Workstation: http://www.vmware.com
Chapter 2
Netcat: http://www.netcat.sourceforge.net
Scanline: http://www.foundstone.com/resources/proddesc/scanline.htm
Xprobe2: xprobe.sourceforge.net
Amap: http://www.thc.org/releases.php
Banner.c: http://www.packetstormsecurity.org/UNIX/scanners/banner.
Pages:
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228