[GET] Powerful anti-domain weapon ;) - I am *NOT* responsible for how you use this

Insomniac said:
Technically, you are wrong. It is however extremely unlikely that you'd get all the sequence numbers right, and you'd have to know what the expected response is going to be. Though, depending on the stack, you could ack a packet sequence anyway.

Spoofing an encrypted handshake connection on the other hand, now that is statistically impossible.

Though, if you controlled an upstream router of your victim, you could man in the middle a spoofed TCP connection rather easily, even an encrypted handshake.
Click to expand...

Yeah, I stand corrected. However, in the case of a tool like this, not happening. If I had a router on the upstream of some website i wanted to negative seo, I could do a lot more than spoof connections to their boxes.
 


ILOVENICKICAKES said:
Rofl, crackpot i realize you're kind of pissed off that I'm way more aggressive, intelligent and knowledgeable than you are concerning computer networks, but it's no reason to keep spouting bullshit from your stupid mouth. It just makes you look dumber.

If you had half a brain, you'd realize I was implying that transparent proxies use a SIMILAR concept to silently pass along the real ip address, whereas anonymous and elite proxies strip this from the user agent information. I know exactly what proxy servers do, I didn't say they SPOOF ips. Learn to read, or better yet just kill yourself.
Click to expand...

It's not a transparent proxy if it's providing fake x-forwarded-for headers, it's just a regular old proxy. Not to mention most software ignores such headers anyway, since they can't be trusted.

And yes, you're a fucking moron. Spoof is not even remotely similar to proxy.

ILOVENICKICAKES said:
Hahah, oh my goodness. You really don't know your asshole from a keyboard, do you? Spoofing is a very general term used when you intentionally attempt to mislead a server by passing along incorrect IP information. This covers proxies and a wide range of other things.

Nowhere will you see any security expert say it's limited to exclusively UDP/TCP packets. Ever. And for the record, you can "spoof" those too, and not in the way you're thinking about (you actually don't even know what I'm referring to, and kids shouldn't play with dangerous toys, so back the fuck up).
Click to expand...

What is IP spoofing? - A Word Definition From the Webopedia Computer Dictionary

(ī-pē spoof´ing) (n.) A technique used to gain unauthorized access to computers, whereby the intruder sends messages to a computer with an IP address indicating that the message is coming from a trusted host. To engage in IP spoofing, a hacker must first use a variety of techniques to find an IP address of a trusted host and then modify the packet headers so that it appears that the packets are coming from that host.

IP address spoofing - Wikipedia, the free encyclopedia

In computer networking, the term IP address spoofing or IP spoofing refers to the creation of Internet Protocol (IP) packets with a forged source IP address, called spoofing, with the purpose of concealing the identity of the sender or impersonating another computing system.[1]

What is IP spoofing (IP address forgery or a host file hijack)? - Definition from Whatis.com

IP spoofing, also known as IP address forgery or a host file hijack, is a hijacking technique in which a cracker masquerades as a trusted host to conceal his identity, spoof a Web site, hijack browsers, or gain access to a network. Here's how it works: The hijacker obtains the IP address of a legitimate host and alters packet headers so that the legitimate host appears to be the source.
 
nickycakes said:
Yeah, I stand corrected. However, in the case of a tool like this, not happening. If I had a router on the upstream of some website i wanted to negative seo, I could do a lot more than spoof connections to their boxes.
Click to expand...

Yup, you have more chance of DNS spoofing these days (and it's significantly easier to poison DNS cache with spoofing than it is to spoof a TCP connection).
 
ILOVENICKICAKES said:
God you're fucking retarded. This isn't ddosing dumbass, it's spoofing ips on blog comments so that you don't completely rape your own ips and make it look like the website is spamming. It's as old as the hills and this is literally what transparent proxies do.
Click to expand...


ILOVENICKICAKES said:
Rofl, crackpot i realize you're kind of pissed off that I'm way more aggressive, intelligent and knowledgeable than you are concerning computer networks, but it's no reason to keep spouting bullshit from your stupid mouth. It just makes you look dumber.

If you had half a brain, you'd realize I was implying that transparent proxies use a SIMILAR concept to silently pass along the real ip address, whereas anonymous and elite proxies strip this from the user agent information. I know exactly what proxy servers do, I didn't say they SPOOF ips. Learn to read, or better yet just kill yourself.
Click to expand...

You did say that's what transparent proxies to. Unless you don't know what the meaning of the word literally is.

Spoofing an IP is in no way a similar concept to a proxy server either. How exactly does one come to the conclusion that they're similar? One is setting a forged source address in the IP header and the other is acting as a relay between 2 points. No modern browser puts your IP address in the User Agent by default either. You clearly have no clue how a proxy server works or even how a web browser works.

We'll pretend for a second that a transparent proxy is similar to spoofing an IP address. How do you post a blog comment and make it look like a completely different website (the one you're trying to fuck over) posted them? From a techincal standpoint explain how you manage to make a full TCP connection from their IP. Yes, herpy derpy "transparent proxy", but explain how you'd set it up to do that. If you can explain that you'd just broke the Internet.

Bad troll is bad.
 
nickycakes said:
That may kinda work for individual packets, but for something like comment spam, you're not going to get any kind of tcp connection. That kinda stuff hasn't been possible since they patched a bunch of bind bugs long long ago.
Click to expand...

That was my whole point. It's never been possible though. If it was possible it would break the Internet. True spoofing is different than poisoning a DNS cache.
 
Here's why you're retarded:

1. Proxy server - Wikipedia, the free encyclopedia

Learn what an actual transparent proxy is before arguing with me dumbass.

Not to mention most software ignores such headers anyway, since they can't be trusted.
Click to expand...
2. LOL, if you bothered to read what I posted, I said that it will most likely work if you're dealing with webmasters who simply throw up and modify templates. *I specifically said it will not work with admins that have root access to their servers*. It isn't 100% bulletproof and of course I already stated this earlier. Idiot. And the "most" part is simply your opinion. I know for a fact that the vast majority of websites do not go into in depth traffic analysis.

3. Again, you don't really know shit about techincal definitions and simply use your own OPINION, whereas I'm using a language 99% of sys admins would accept:

"In computer networking, the term IP address spoofing or IP spoofing refers to the creation of Internet Protocol (IP) packets with a forged source IP address, called spoofing, with the purpose of concealing the identity of the sender or impersonating another computing system."

IP address spoofing - Wikipedia, the free encyclopedia

4. Suck my dick :)
Insomniac said:
It's not a transparent proxy if it's providing fake x-forwarded-for headers, it's just a regular old proxy.

And yes, you're a fucking moron. Spoof is not even remotely similar to proxy.



What is IP spoofing? - A Word Definition From the Webopedia Computer Dictionary

(ī-pē spoof´ing) (n.) A technique used to gain unauthorized access to computers, whereby the intruder sends messages to a computer with an IP address indicating that the message is coming from a trusted host. To engage in IP spoofing, a hacker must first use a variety of techniques to find an IP address of a trusted host and then modify the packet headers so that it appears that the packets are coming from that host.

IP address spoofing - Wikipedia, the free encyclopedia

In computer networking, the term IP address spoofing or IP spoofing refers to the creation of Internet Protocol (IP) packets with a forged source IP address, called spoofing, with the purpose of concealing the identity of the sender or impersonating another computing system.[1]

What is IP spoofing (IP address forgery or a host file hijack)? - Definition from Whatis.com

IP spoofing, also known as IP address forgery or a host file hijack, is a hijacking technique in which a cracker masquerades as a trusted host to conceal his identity, spoof a Web site, hijack browsers, or gain access to a network. Here's how it works: The hijacker obtains the IP address of a legitimate host and alters packet headers so that the legitimate host appears to be the source.
Click to expand...
 
crackp0t said:
That was my whole point. It's never been possible though. If it was possible it would break the Internet. True spoofing is different than poisoning a DNS cache.
Click to expand...

Read above, tcp sequences and ack packets. Viable is a different matter.
 
I'm getting tired of arguing with you for real. I've already gone over this shit. *READ* exactly what I posted because I chose my words *VERY* carefully.
crackp0t said:
You did say that's what transparent proxies to. Unless you don't know what the meaning of the word literally is.

Spoofing an IP is in no way a similar concept to a proxy server either. How exactly does one come to the conclusion that they're similar? One is setting a forged source address in the IP header and the other is acting as a relay between 2 points. No modern browser puts your IP address in the User Agent by default either. You clearly have no clue how a proxy server works or even how a web browser works.

We'll pretend for a second that a transparent proxy is similar to spoofing an IP address. How do you post a blog comment and make it look like a completely different website (the one you're trying to fuck over) posted them? From a techincal standpoint explain how you manage to make a full TCP connection from their IP. Yes, herpy derpy "transparent proxy", but explain how you'd set it up to do that. If you can explain that you'd just broke the Internet.

Bad troll is bad.
Click to expand...
 
Not going to go into this any more because I'd risk legal problems. Period. I have the iframe and firewall versions of the spoofer right here on my server. If you need one, simply find someone here:
Code: 
freelancer.com
 
Lol, I know you're trying to get a rise out of me, but if you want my tools you've gotta be nicer than that. Funny thing is you could have just asked for the script instead of flaming me without even knowing what the hell was going on and I'd have given it happily. Bitch made :/
 
  • Like
Reactions: faceblogger
Insomniac said:
Read above, tcp sequences and ack packets. Viable is a different matter.
Click to expand...

herp derp I forgot about tcp sequence prediction. It's not impossible, but it's so freaking hard now that it might as well be unless you happen to be on the same switch. I'm gonna go play with session hijacking now. I'd like to see if it's any more difficult than it use to be (on the same switch). It's been 12+ years since I've tried anything like that.
 
ILOVENICKICAKES said:
Lol, I know you're trying to get a rise out of me, but if you want my tools you've gotta be nicer than that. Funny thing is you could have just asked for the script instead of flaming me without even knowing what the hell was going on and I'd have given it happily. Bitch made :/
Click to expand...

I want your "tools"? Are you mentally handicapped? Did momsy drop you on your head too many times when you were a baby, or was it the meth abuse that did it?

GTFO.
 
Funny how mad this kid's getting that I'm not stooping down to his level. That's right. Stooping DOWN to become a fucking imbecile. Not everyone can really dissect the nuances in my language, but then again, aggressive marketing isn't for everyone. You're a bitch. I'm a dick. This thread was about fucking a site's rankings up, with or without ip spoofing. Grow the fuck up and either use it or get out of the thread.

Serious questions will be answered. Trolls will be flamed/ignored.
 
You must log in or register to reply here.
Top Bottom