changes:
- New and improved nemesis
- New in nemesis 1.4: nemesis-ethernet and nemesis-ip
- Windows support (link-layer injection only)
- Useful man pages
- Single binary
- Improved cross-platform support via GNU autotools
- Easier to use
- Nemesis will attempt to fill in as many details as possible
in a packet, thus requiring fewer or even no command line switches.
- Each protocol builder attempts to build a proper packet by default.
- Organized code base
- The network header structures in libnet proved useful so nemesis
now uses them where appropriate.
- Code is re-used wherever possible resulting in a much more concise
code base.
- Full payload functionality
- Payloads can now contain NULLs within them and full-size packets
are available on all supported platforms except Windows.
- IP and TCP options support
- All nemesis injectors (excluding ARP and Ethernet) now support IP
options via -O <IP options file>.
- All nemesis injectors using TCP as a transport protocol now
support TCP options via -o <TCP options file>.
- Improved IP and TCP functionality
- Full IP fragmentation support via new -F command line semantics.
- ECN support in TCP with the addition of -fE (ECE) and -fC (CWR).
nemesis is a command-line UNIX network packet injection suite.
supported protocols: TCP, UDP, ICMP, ARP/RARP, IGMP, DNS,
RIP, and OSPF
"Nemesis attacks directed through fragrouter could be a most
powerful combination for the system auditor to find security
problems that could then be reported to the vendor(s), etc."
- Curt Wilson in Global Incident Analysis Center Detects Report
(SANS Institute - Nov 2000)
Provided in PR 14021 by xs@nitric.net.
Munged slightly by me to use buildlink functionality, and to use the
correct link time invocations for ELF binaries.
