We blogged about ipt_pkd in our previous posts here.
So, “ipt_pkd is an iptables extension implementing port knock detection. This project provides 3 parts: the kernel module ipt_pkd, the iptables user space module libipt_pkd.so, and a user space client knock program. For the knock packet, it uses a UDP packet sent to a random port that contains a SHA-256 of a time-stamp, small header, random bytes, and a shared key. ipt_pkd checks the time window of the packet and does the SHA-256 to verify the packet. The shared key is never sent.”
Now, ipt_pkd has been updated to version 1.6!
These are the changes made:
This version was updated for Linux 2.6.32 and iptables 1.4.6.
A new knock client was added, written in C# and works on both Linux and Windows and encrypts configuration data.
A pre-built kernel module, an iptables library for vyatta community edition 5, and a small install script for vyatta were added.
Download ipt_pkd version 1.6 here.
Searches leading to this post:
cache:afVIY6kmc-YJ:pentestit com/2010/02/07/openssh-53p1-remote-root-c/ openssh-53p1-remote-root c
If you enjoyed this article, you might also like:
- December 6, 2009 -- ipt_pkd: The port knock detector!
If you have read our last few posts, you already what a port knock is. We had mentioned about it her... - April 4, 2010 -- SOURCE: Linux Keylogger!
Thought that we should share a basic Linux keylogger source code, since there are many ope source Wi... - December 3, 2009 -- winKnocks: An encrypted port knocking tool!
Port knocking is a method of externally opening ports on a firewall by generating a connection attem... - April 23, 2009 -- Tutorial: Basic IPTABLES Firewall rules
Guys, I was at a friends home and he wanted to know about a few basic rules that will help him secur... - August 20, 2010 -- UPDATE: XSSer v0.7a!
All of you web application penetration testers, check out this release of XSSer version 0.7a, for i... - August 16, 2010 -- UPDATE: Websecurify 0.7!
Good news for Websecurify lovers, as we have an updated Websecurify version 0.7 amongst us finally! ... - August 14, 2010 -- ROPEME – ROP Exploit Made Easy
ROPEME is a PoC tool for ROP exploit automation on Linux x86. It contains a set of simple Python scr... - August 10, 2010 -- UPDATE: PacketFence 1.9.0!
PacketFence is a free and open source network access control (NAC) system and the reason for us wri... - August 9, 2010 -- UPDATE: Websecurify 0.7RC2!
Right on time this time! We have an updated Websecurify version 0.7RC2 amongst us now!“Websecu...
Tagged as: IPTABLES Firewall rules, IPTABLES Firewall rules for blocking DOS attacks, ipt_pkd, linux, Open Source, winKnocks
{ 1 comment… read it below or add one }
There’s also xt_pknock which seems to capable of much more.
You must log in to post a comment.