Nat Probe v1.0

In: Connectivity , Enumeration , Nat Probe , Network Monitoring

12 October 2009

Little program to test which hosts allow NAT in your Local Area Network (LAN).

This little, but very usefull program, try to sends ICMP packet out the LAN, and detect all the host that allow it. Whit this you can find bugs in your (company?) network (or others), for example hosts tha allow p2p connections.

Explanation

When we use a Gateway, we send the packets with IP dest of the target, but the dest mac on the ethernet is the mac at the Gateway. If we send a packet to the diferents macs in the lan, we can know who is the gateway when we recive an response from this mac.

Some times we can discover more than one box configured to be an gateway, generally, this is an wrong configuration, and the box will response with an ICMP-Redirect. This is the same, becouse the script only verify if the mac response.

Use
`python natprobe.py -m 00:00:0d:ff:11 -d 2xx.x4.1x.xx`
We can send an packet to a singular mac,

`python natprobe.py -f /tmp/ethers.log -d 2xx.x4.1x.xx`

/tmp/ethers must be a list of macs separated by a newline.

More information: here.

Post scriptum

Download Nat Probe v1.0

Compliance Mandates

Network Monitoring :
PCI DSS Requirements 3, 4, SOX DS13.4, HIPAA 164.310(d)(1),
164.312(a)(2)(iv), FISMA SI-4, AU-2, ISO 27001/27002 12.5.4, 15.1.5

Connectivity	25 April 2010 : Testing the systems highload with StressLinux v0.5.111 30 March 2010 : pwnat tool v0.2-beta released 27 March 2010 : pwnat tool v0.1-beta bypassing NAT 13 March 2010 : Sniff-n-Spit v1.0 - intercepting communications 11 March 2010 : Vordel SOAPbox for analyzing Webservices Security
Enumeration	1 May 2010 : WhatWeb just updated to v0.4.2 29 April 2010 : WhatWeb v0.4.1 - released 26 April 2010 : (update) Foca v2.0.1: in the wild 25 April 2010 : Skipfish v1.33b released 25 April 2010 : Process Monitor v2.9 released
Nat Probe	12 October 2009 : Nat Probe v1.0
Network Monitoring	12 May 2010 : Xplico v0.5.7 released 1 May 2010 : Lansweeper v4.0 released 1 May 2010 : SAMHAIN v2.7.0 released 1 May 2010 : Spiceworks v4.7 build 50667 released 22 April 2010 : Xplico v0.5.6: VoIP (SIP & RTP) released

Nat Probe v1.0

Use
`python natprobe.py -m 00:00:0d:ff:11 -d 2xx.x4.1x.xx`
We can send an packet to a singular mac,

`python natprobe.py -f /tmp/ethers.log -d 2xx.x4.1x.xx`

/tmp/ethers must be a list of macs separated by a newline.

More information: here.

Post scriptum

Compliance Mandates

Related Articles

Follow us

Like us !

Most Read

Advertising

License

Categories

COMPANY

STANDARDS

RECENT POSTS

MENU

Nat Probe v1.0

Use python natprobe.py -m 00:00:0d:ff:11 -d 2xx.x4.1x.xx We can send an packet to a singular mac, python natprobe.py -f /tmp/ethers.log -d 2xx.x4.1x.xx /tmp/ethers must be a list of macs separated by a newline. More information: here.

Post scriptum

Compliance Mandates

Related Articles

Follow us

Like us !

Most Read

Advertising

License

Categories

COMPANY

STANDARDS

RECENT POSTS

MENU

Use
`python natprobe.py -m 00:00:0d:ff:11 -d 2xx.x4.1x.xx`
We can send an packet to a singular mac,

`python natprobe.py -f /tmp/ethers.log -d 2xx.x4.1x.xx`

/tmp/ethers must be a list of macs separated by a newline.

More information: here.