Shulou(Shulou.com)06/01 Report--

This article introduces the relevant knowledge of "how to use the advanced host scanning tool hping of Linux common network tools". In the operation of actual cases, many people will encounter such a dilemma, so let the editor lead you to learn how to deal with these situations. I hope you can read it carefully and be able to achieve something!

Previously introduced the host scanning tool fping, you can refer to my "Linux common network tools: fping host scanning".

Hping is a more advanced host scanning tool that supports TCP/IP packet construction, analysis, and can be used to scan viable hosts when some firewall configurations or operators intercept ICMP packets.

Hping can also spoof the source IP to launch DDos attacks.

Hping official website: http://www.hping.org/

Source code compilation and installation of hping

The source code for hping is hosted on GitHub at https://github.com/antirez/hping.

Compile and install commands:

The code is as follows:

Wget https://github.com/antirez/hping/archive/master.zip

Unzip master

Cd hping-master

Yum install libpcap-devel

. / configure

Make

Make install

Hping depends on libpcap-devel, so you need to install it first, and the following two problems may occur during the make process:

Problem: libpcap_stuff.c:20:21: error: net/bpf.h: there is no such file or directory

Solution: ln-sf / usr/include/pcap-bpf.h / usr/include/net/bpf.h

Problem: / usr/bin/ld: cannot find-ltcl

Solution: yum-y install tcl yum-y install tcl-devel

Then enter:

The code is as follows:

Make strip

Make install

Introduction of common parameters of hping

If the firewall or operator blocks ICMP, hping can initiate TCP probe on the specified destination port. Common parameters:

-p port number

-S sends the SYN packet of TCP

-A sends the ACK packet of TCP

-a counterfeit source IP

-- flood should be sent as soon as possible, so use it carefully.

Enter an example:

The code is as follows:

Hping 192.168.2.224-p 80-S

Hping 192.168.2.224-p 80-A

Hping 192.168.2.224-p 80-S-a 192.168.0.91

This is the end of the introduction of "how to use the advanced host scanning tool hping for Linux's common network tools". Thank you for reading. If you want to know more about the industry, you can follow the website, the editor will output more high-quality practical articles for you!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.