Posted by omniscience on March 19, 2003, 1:22:34, in reply to "Re: How do I spoof my Ip address when sending mail using winject." with your 3 way handshake.. you can.. in some cases depending on the e-mail server software.. 1) send 1-3 (for reduncancy purposes) identical syn packets to e-mail server with the same ramdom sequence number.. with a spoofed source address.. preferably one that is active.. *see below 2) simulate how long it would take to recieve a responce from the e-mail server using tracetoure and ping and wait for that duration you figure.. math guys... com'mon 3) send 1-3 more spoofed ack packets with the the appropriatly incremented sequence number.. now depending on the perticular victim OS TCP Stack.. this will trick a machine to open a connection to the spoofed source.. hehehe then just send your e-mail message from the same spoofed address... and then let the e-mail server time out the connection... one thing to worry about... the spoofed address that you picked (an active machine).. check to see if it sends a responce and what it sends... i could assume anything from no responce to a storm of packets trying to close the spoofed session... anyhow.. considering i have not heard of this idea in writing... i'll coin the term.. Proxy Heisting (makes sence to me).. correct me please if you beg the differ.. learning is a prossess and lets not kill that.. want to e-mail me... leave your e-mail in a responce and maybe i'll get back to you... u never know.. p.s. i like taking literally impossable tasks and makeing them sound real easy
136.223.4.211
well... this is what i came to know..
Message Thread:
« Back to thread