blob: b573128ceb81cc249db678278dfff42abbe8778a [file] [log] [blame] [edit]
ISIC -- IP Stack Integrity Checker
Description:
ISIC is a suite of utilities to exercise the stability of an IP Stack and its
component stacks (TCP, UDP, ICMP et. al.) It generates piles of pseudo random
packets of the target protocol. The packets be given tendancies to conform to.
Ie 50% of the packets generated can have IP Options. 25% of the packets can
be IP fragments... But the percentages are arbitrary and most of the packet
fields have a configurable tendancy.
The packets are then sent against the target machine to either penetrate its
firewall rules or find bugs in the IP stack.
ISIC also contains a utility generate raw ether frames to examine hardware
implementations.
Other Uses:
Other novel uses people have found for ISIC include IDS testing, stack
fingerprinting, breaking sniffers and barraging the IRC kiddie.
Warning:
ISIC may break shit, melt your network, knock out your
firewall, or singe the fur off your cat
usage: isic [-v] [-D] -s <source ip> -d <destination ip>
[-p <pkts to generate>] [-k <skip packets>] [-x <send packet X times>]
[-r <random seed>] [-m <max kB/s to generate>]
Percentage Opts: [-F frags] [-V <Bad IP Version>]
[-I <Random IP Header length>]
notes:
[-D] causes packet info to be printed out -- DEBUGGING
ex: -s a.b.c.d -d a.b.c.d -F100
100% of the packets will be ^^^^ fragments
ex: -s a.b.c.d -d a.b.c.d -p 100 -r 103334
ex: -s rand -d rand -r 23342
^^^^ causes random source addr
ex: -s rand -d rand -k 10000 -p 10001 -r 666
Will only send the 10001 packet with random seed 666
this is especially useful if you suspect that packet is
causing a problem with the target stack.