hak_around_the_bush Posted February 26, 2014 Posted February 26, 2014 (edited) The deal is that I need to reproduce an issue with an internal application that had been triggered off a particular HTTP response given by a web server. I captured the TCP stream with wireshark and the stream goes like this: >SYN <SYN ACK >ACK >HTTP REQUEST <HTTP RESPONSE >FIN ACK <FIN ACK What I plan to do is set up my own web server, modify the hosts file, and be able to have any http request aimed at the web server trigger this http response. Do you know of a way I can do this? Someone has suggested tcpreplay may be able to do it, but I'm still researching if it will be able to do what I need. I can easily trigger the request from the client at any time. Edited February 26, 2014 by hak_around_the_bush Quote
GuardMoony Posted February 28, 2014 Posted February 28, 2014 So you want to reproduce the response of the http server towards the client ? if so capture a few of these issues and check if you can decipher the response. if its a decent program it will have validation checks/encryption. And then it will pretty time consuming to recreate this. Then your better off getting a copy of the server. ( vmware clone for example ) Quote
digitalnull Posted March 6, 2014 Posted March 6, 2014 (edited) I found an article that may help you understand the process better. http://www.google.com/url?sa=t&rct=j&q=&esrc=s&frm=1&source=web&cd=5&cad=rja&uact=8&ved=0CFsQygQwBA&url=http%3A%2F%2Fmathcs.slu.edu%2F~chambers%2Fspring11%2Fsecurity%2Fassignments%2Flab04.html%23dreplay&ei=-fgYU-r7KoOGyQHJ9oF4&usg=AFQjCNGmpbcV6AO6qtea7KWQPmXsdsg5Ng&sig2=OnZGpuZa_yklWuhPUDkvOw If you are using Distros such as BT or Kali there are tools/servers preinstalled that could do what you're saying. Edited March 6, 2014 by digitalnull Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.