基于scapy的tcp reset阻断

Posted 2022-11-04

项目地址

​​https://github.com/jin-long/how-does-a-tcp-reset-attack-work​​

其他

​​https://robertheaton.com/2020/04/27/how-does-a-tcp-reset-attack-work/​​

参考readme

1. Install dependencies: ​​virtualenv venv && source venv/bin/activate && pip install -r requirements.txt​​
2. Setup TCP connection. In one terminal window run ​​nc -nvl 8000​​ to set up a server
3. In another terminal window run ​​nc 127.0.0.1 8000​​ to connect to the server
4. In a third window run ​​python3 main.py​​ to run our sniffing program
5. Type into one of the TCP connection windows. You should see the sniffing program log some output, send a ​​RST​​​ packet, and the ​​nc​​ connection should be broken

遇到的问题

在同一台linux机器上分别在开三个终端执行2, 3，４步骤之后，在用3所在的客户端发送消息，然后并２，３之间的链接并没有阻断。但是貌似在同一台mac机器上链接是可以被阻断的。之后将２，３分别在两台linux机器上同样的操作２，３之间的链接被阻断了，待分析。