Tcp/ip Vulnerabilities And Weaknesses its good article, but who has access to public raw scokets now these days, im sure they are there some where

anyhow , anyone have any luck in the lab for burte forcing sequence numbers or udp sockets to manipulate daemons and streams.

Thanks

Umm any unix based machine has the capability of forging packets. Look at Nmap or Paketto's ScanRand. These programs forge SYN's, makes scanning much faster. I remember reading a paper saying that XP has the capability for raw sockets. I know nmap on the windows platform requires Pcap. I have seen papers on how to forge packets for windows in C.

If you are interested in vulnerability in pseudo-randomizing code, i suggest reading this paper:
http://www.lurhq.com/dnscache.pdf

peace out

use nemesis with winpcap driver it has an option for sequence numbers

you can use CyberCop SCanner for packet Injection and IDS testing.
Its the best as far as ive come across..

stupid Gibson i hope another 13yr old takes down his site and buries the raw sockets paranoia

www.grcsucks.com

OMG please

Read a good book on rawsockets or a good paper.

cause there has been raw socket support on windows sinds 9x even though it was with some tricks etc. so there is nothing bad about having xp support it open and wide. Besides that raw sockets and ip spoofing etc is pretty useless on the net since most isp check if the packets has the original ip else it get's dropped or corrected. So only good for internal use on lan's etc. and Besides XP sp2 disabling it it's a in my opninion dumb error :s sinds most peeps are advertising linux and unix since it beats windows and those OS'es still use raw sockets... So it ain't of that big difference I find it kinda stupid to stop raw sockets again with sp2

But these are just my 2 cents

http://mixter.void.ru/rawip.html
very nice text about raw sockets