TraceRoute (Level 1 Hacking)
Traceroute is an information gathering tool, allows u to trace / know the path between two systems. It was designed for network troubleshooting purposes. But
Now, it is commonly used for:
1) OS Detection
2) Firewall Detection
3) Network topography information
4) Geographical location of target system
Traceroute is installed by default in all operating system
Now, it is commonly used for:
1) OS Detection
2) Firewall Detection
3) Network topography information
4) Geographical location of target system
Traceroute is installed by default in all operating system
To use it, go to bash shell (linux) OR cmd (windows)
C:\> tracert hostname / IP address
Now, computer will start sending packets & all information of target system will be revealed.
3rd Party Tools used for TraceRoute:
1) Visual Route: An online (not required to download). It traces the path on world map (very good for tracing criminals) http://visualroute.visualware.com/
2) NeoTrace: An excellent tool. (Search on Download.com)
3) 3D Traceroute: Traces the path between two systems on a 3D map. http://www.d3tr.de/
Countermeasures
System Adminsitrator should:
1) Disable scans on high UDP ports.
2) Disable high no. of outgoingICMP time exceeded error message & monitor it.
3) Outgoing ICMP port unreachable message is another sign of traceroute probe.
0 comments:
Post a Comment
Note: Only a member of this blog may post a comment.