1.構造、發送資料包(Forging)
Packet forging tools-->
packeth, packit, packet excalibur, nemesis, tcpinject, libnet, IP
sorcery, pacgen, arp-sk, arpspoof, dnet, dpkt, pixiliate, irpas,
sendIP, IP-packetgenerator, sing, aicmpsend, libpal, . . .
Philippe
2.捕獲、分析資料包(Sniffer)
Sniffing tools-->
ethereal, tcpdump, net2pcap, cdpsniffer, aimsniffer, vomit,
tcptrace, tcptrack, nstreams, argus, karpski, ipgrab, nast, cdpr,
aldebaran, dsniff, irpas, iptraf, . . .
3.試探工具:嘗試回答 類似yes/no的問題(eg:ping)(Testing)
Testing tools-->
ping, hping2, hping3, traceroute, tctrace, tcptraceroute,
traceproto, fping, arping, . . .
4.掃描工具:大規模掃描(Scanning)
Scanning tools-->
nmap, amap, vmap, hping3, unicornscan, ttlscan, ikescan, paketto,
firewalk, . . .
5.身份識别驗證(fingerprinting):通過試探辨識對端(Fingerprint)
Fingerprinting tools-->
nmap, xprobe, p0f, cron-OS, queso, ikescan, amap, synscan, . . .
6.攻擊工具:用一些針對協定的特殊的包(Attacking)
Attacking tools-->
dnsspoof, poison ivy, ikeprobe, ettercap, dsniff suite, cain, hunt,
airpwn, irpas, nast, yersinia, . . .
