Traceroute over TCP

[maboroshi]

I came across this the other day thought it was kind of neat.

Tcproute is a tcp based traceroute console program for Windows
...
Tcproute functions by trying to connect to a specified TCP port, starting with a packet TTL of 1 and incrementing upward until it successfully reaches the target.

Code: Select all

http://www.elifulkerson.com/projects/tcproute.php

Enjoy

[bad_brain]

it's a installed as default on Debian btw, just named tcptraceroute there...

serv8:~# tcptraceroute
Usage: /usr/sbin/tcptraceroute [-hvnFSAE] [-i dev] [-f furst_ttl] [-l length]
[-q nqueries] [-t tos] [-m max_ttl] [-p src_port] [-s src_addr]
[-w wait_time] host [dest_port] [length]

[maboroshi]

Ahh ok didn't realize it was pretty common. Thats cool though

[l0ngb1t]

i use "tracetcp", very useful...

[ayu]

[youtube][/youtube]

[maboroshi]

@Cats OMG Look at how many people are viewing google this very moment ... This has me excited about the world of being a h4x0r.



However just to clarify for the sake of the post, traceroute uses the UDP or ICMP protocol. So I thought a TCP based traceroute was kind of interesting.

*cheers

Mabo

Edit *

Here is some info in regards to Traceroute over TCP:

Code: Select all

http://security.stackexchange.com/questions/39178/how-does-traceroute-over-tcp-work-what-are-the-risks-and-how-can-it-be-mitig

[l0ngb1t]

@Cats... i feel stupid, and i wasted 4 minutes of my life

[lilrofl]

That kid is so 1337, I'm subscribing!

[floodhound2]

I am sorry but that kid in the video is incorrect!

Without getting technical about TPCIP etc I will word this in street lingo.

The supposed IP numbers shown in the video are servers and switches that your computers data must pass through before hitting a Google server, complete with the time it takes. Great troubleshooting tool.

Note the "*" s these are typically government servers / university hubs and switches that wont reveal there ip address or information by "timing out" or displaying the "*".

So to expand on his example try more commands to get more data. Remember this is your computers data going on a path through the world web computers, some wont return your request on the application layer of the TCPIP protocol.

note that the "*" and "timed out" are not always government computers or spy's etc but hey find out by opening one of these baby's and letting me know.

Code: Select all

tracert -d www.suck-o.com
tracert -h www.suck-o.com
tracert -R www.suck-o.com  

http://en.wikipedia.org/wiki/Application_layer

tracert.png (42.92 KiB) Viewed 1472 times

look how many computers I had to get through to get to suck-o
20 total with times and ipaddreses of each server or switch.