readme

一个rst守护程序

 ____     ________   __________   __    __
|  __ \  |   __   | |___    ___| |  |  |  |
| |__| | |  |__|  |     |  |     |  |__|  |
|   __/  |   __   |     |  |     |   __   |
|  |     |  |  |  |     |  |     |  |  |  |
|__| o   |__|  |__| o   |__| o   |__|  |__| o

Perl     Advanced       TCP      Hijacking

    The hijackers P.A.T.H. to galaxy
    [http://p-a-t-h.sourceforge.net]

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

Feed SN0RT

Programmed by Bastian Ballmann
Last Update: 28.11.2002
Licensed under the GPL

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-


---:[ Requires

Perl
Net::RawIP
Snort Rulefiles


---:[ Disclaimer

THIS PROJECT WAS DEVELOPED FOR TESTING AND DEMONSTRATION PURPOSE ONLY! 
THE AUTHORS DONT FEEL RESPONSIBLE FOR ILLEGAL ABUSE OF THIS PIECE OF 
SOFTWARE AND WE ADVICE YOU TO USE IT LEGALLY AND DO NOT BREAK THE LAW!


---:[ Description

Feed_snort floods a SN0RT (and other) IDS System with attack packets created 
from SN0RT rule files.
So this script can be very useful to check your current SN0RT configuration 
and demonstrates why you should keep the timeout of guardian.pl at a low limit,
because this script can also be abused to start a DOS attack onto your IDS!
NOTE: Currently port ranges specified in the rule file were treated as one 
single port.


---:[ Installation

If your system supports Perl just install the required Perl modules. 
You get them at CPAN [http://www.cpan.org].


---:[ Usage

Run ./feed_snort.pl --help to get help.


---:[ Greets

DocX
Pylon
Stefan Krecher
Stefan Maehler
Roland Schuppin
Saluto
Dj Ecki