http://billiejoex.altervista.org/Prj_Py_soicmp.shtmlWhat is Shell over ICMP project (soicmp)?
Soicmp consists of two free and open source applications: one server and one client. It allows a user to connect to a remote shell daemon, by using ICMP protocol instead of classical TCP.
Entirely written in Python, soicmp is a working proof-of-concept to demonstrate that data can be transmitted across a network by hiding it in traffic that normally does not contain payloads.
Shell Over ICMP
Shell Over ICMP
Found this the other day
Sounds like a variation on Loki (tunneling data over ICMP Type 7 and 0).....nice to see the concept getting more mileage.
Main problem that I've run into with these types of things is getting the response (tends to run afoul of firewall rules, since there's no two-way connection taking place). Great for tunneling data out....not so great for getting responses when stateful firewalls are in play. That's one of the things that I tend to like about Loki -- the use of ICMP echo request/reply packets tends to get through firewalls....firewalls that allow outbound pings will tend forward on ICMP echo replies to the internal system.
Main problem that I've run into with these types of things is getting the response (tends to run afoul of firewall rules, since there's no two-way connection taking place). Great for tunneling data out....not so great for getting responses when stateful firewalls are in play. That's one of the things that I tend to like about Loki -- the use of ICMP echo request/reply packets tends to get through firewalls....firewalls that allow outbound pings will tend forward on ICMP echo replies to the internal system.
C|EH, ECSA, C|EI
Halock Security Labs
http://www.halock.com
Halock Security Labs
http://www.halock.com