Hping3 is a powerful network tool that allows users to generate customized TCP/IP packets and perform various network-related tasks. This guide will take you from the basics of hping3 to advanced options, demonstrating how to use this tool effectively for tasks such as packet sending, port scanning, and network testing.
Key Functions of Hping3:
- Firewall testing
- Advanced port scanning
- Network testing
- MTU discovery (Manual path discovery)
- Advanced traceroute (supports all protocols)
- Remote OS fingerprinting
- Remote uptime guessing
- TCP/IP stack auditing
Useful Commands in Hping3:
-cor--count: Specify the packet count--faster: Alias for-i u1000(send 100 packets per second)--flood: Send packets as fast as possible without displaying replies-Vor--verbose: Enable verbose mode-0or--rawip: RAW IP mode-1or--icmp: ICMP mode-2or--udp: UDP mode-8or--scan: SCAN mode-9or--listen: Listen mode-aor--spoof: Spoof source address-Cor--icmptype: ICMP type-Kor--icmpcode: ICMP code-Lor--setack: Set TCP ACK-For--fin: Set FIN flag-Sor--syn: Set SYN flag-Ror--rst: Set RST flag-Aor--ack: Set ACK flag-Xor--xmas: Set X unused flag (0x40)-Yor--ymas: Set Y unused flag (0x80)- Installation
Before diving into hping3, ensure it is installed on your system. You can install it on Debian-based systems using the following command:
bashsudo apt-get install hping3
Basic Usage
1. Sending a SYN Packet
To send a SYN packet to a target IP address, use the following command:
bashhping3 -S <target-IP>
Replace <target-IP> with the IP address of the target.
2. Port Scanning
Conduct a port scan on a specific port:
bashhping3 -S -p <port> <target-IP>
Replace <port> with the desired port number.
3. Specify Number of Packets
bashhping3 -S -p 80 -c 5 <target-IP>
This example sends 5 SYN packets to port 80 of the target.
4. UDP Packets
Use hping3 to send UDP packets:
bashhping3 -2 -p 53 -c 5 <target-IP>
This example sends 5 UDP packets to port 53 of the target.
5. ICMP Packets
Send ICMP packets to the target:
bashhping3 -1 <target-IP>
6. Raw IP Mode
Send raw IP packets:
bashhping3 -0 <target-IP>
7. TCP Flags
Set specific TCP flags (e.g., SYN, ACK, RST) using options like -S, -A, -R
bashhping3 -S -p 80 <target-IP>
Advanced Options
8. Verbose Mode
Use verbose mode to see detailed information about packets:
bashhping3 -2 -V <target-IP>
9. Spoof Source Address
Spoof the source address of the packets:
bashhping3 -S -p 80 -a <spoofed-IP> <target-IP>
10. TCP Flags Combination
Set various TCP flags for different purposes:
bashhping3 -S -p 80 -F -A -U <target-IP>
Conclusion
Hping3 is a versatile tool that provides a wide range of capabilities for network testing. By mastering both basic and advanced options, you can tailor your network assessments to meet specific requirements. Always use hping3 responsibly and ensure you have the necessary permissions before conducting any network-related activities. Whether you are a beginner or an experienced user, hping3 offers a valuable toolkit for understanding and testing network protocols.
0 Comments