How to get deliberately attacked?
Hi guys, I am testing a firewall here at work with a DHCP spoofing ADSL router and I wanted to check the integrity of the reporting with the attacks it can recognise... I don't really want to spend too much work time jumping into hacky IRC channels and annoying people to generate some attack traffic (plus I don't want to be attacked for too long :-) so I thought I'd ask here to see if anyone knows of any web based attack generators or could indulge me and hit me with a few things (short of classic DOS - I'm testing the firewall, not my ADSL line :-) Anyway - answers on the back of a postcard please, or email me direct. Oh, it's not this IP, so please don't just start attacking - please contact me and we'll work something out :-) -- Cheers - Neil Gardner Networking and Security Support Engineer Renaissance Brands Ltd (09) 968-3681 / (021) 746-345
Neil Gardner wrote:
Hi guys, I am testing a firewall here at work with a DHCP spoofing ADSL router and I wanted to check the integrity of the reporting with the attacks it can recognise... I don't really want to spend too much work time jumping into hacky IRC channels and annoying people to generate some attack traffic (plus I don't want to be attacked for too long :-) so I thought I'd ask here to see if anyone knows of any web based attack generators or could indulge me and hit me with a few things (short of classic DOS - I'm testing the firewall, not my ADSL line :-)
Not recommended, Neil... you might get far more than you bargained for. Check out Tikiri Wicks and Richard Cox's posts. Some idiot might fire up a few thousand Trojaned Windows boxes and point them in your general direction and keep the running for several days. Otherwise, IRC seems the best, but you could also try to complain to the more aggressive spammers' hosting services. -- Juha
On Wed, Oct 29, 2003 at 08:52:48AM +1300, Neil Gardner wrote:
Hi guys, I am testing a firewall here at work with a DHCP spoofing ADSL router and I wanted to check the integrity of the reporting with the attacks it can recognise... I don't really want to spend too much work time jumping into hacky IRC channels and annoying people to generate some attack traffic (plus I don't want to be attacked for too long :-) so I thought I'd ask here to see if anyone knows of any web based attack generators or could indulge me and hit me with a few things (short of classic DOS - I'm testing the firewall, not my ADSL line :-)
Anyway - answers on the back of a postcard please, or email me direct.
Oh, it's not this IP, so please don't just start attacking - please contact me and we'll work something out :-)
Install 'nessus' and other such tools on another internet host, and it will try hundreds of attacks against you. Nathan Ward
How to get deliberately attacked?Neil is right you may get way more than you bargained for. In terms of ways to generate attacks it's been a while since I looked at them but I know there are a few security scanning tools that may be of use Do it yourself guide to hacking your own box Setup one of the 5 listed below on a linux (or other unix) box outside your network and have it scan your firewall. If you scan with any of the first 4 you should get loads and loads of logs from your firewall. If I remember right SATAN also had a stealth mode of operation. IF you use SATAN then try it in that mode and see how much your firewall detects. Put it this way if your firewall can detect and keep out both SATAN and NESSUS I'd say your pretty safe. That is unless you have very powerfull (and skilled) enemies on the Internet. 1) SATAN (free) is the original but is now a bit outdated http://www.porcupine.org/satan 2) NESSUS (Free) Probably better than SATAN http://www.nessus.org/intro.html 3) SAINT (commercial) is an enhancement of SATAN http://www.saintcorporation.com/products/saint_engine.html 4) SARA (commercial) is probbaly one of the best http://www.www-arc.com/sara/ 5) Scanlogd (Free) is a simple port scanner http://www.openwall.com/scanlogd/ Cheers Tikiri Developer http://www.swons.com ----- Original Message ----- From: Neil Gardner To: 'nznog(a)list.waikato.ac.nz' Sent: Wednesday, October 29, 2003 8:52 AM Subject: [nznog] How to get deliberately attacked? Hi guys, I am testing a firewall here at work with a DHCP spoofing ADSL router and I wanted to check the integrity of the reporting with the attacks it can recognise... I don't really want to spend too much work time jumping into hacky IRC channels and annoying people to generate some attack traffic (plus I don't want to be attacked for too long :-) so I thought I'd ask here to see if anyone knows of any web based attack generators or could indulge me and hit me with a few things (short of classic DOS - I'm testing the firewall, not my ADSL line :-) Anyway - answers on the back of a postcard please, or email me direct. Oh, it's not this IP, so please don't just start attacking - please contact me and we'll work something out :-) -- Cheers - Neil Gardner Networking and Security Support Engineer Renaissance Brands Ltd (09) 968-3681 / (021) 746-345 ------------------------------------------------------------------------------ _______________________________________________ NZNOG mailing list NZNOG(a)list.waikato.ac.nz http://list.waikato.ac.nz/mailman/listinfo/nznog
participants (4)
-
Juha Saarinen -
Nathan Ward -
Neil Gardner -
Tikiri Wicks