Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

A Stateless Scanning Method to Avoid Firewall Detection

A scanning method and stateless technology, applied in the field of computer information, can solve problems such as SYN packet discarding, and achieve the effect of increasing the proportion of port discovery

Active Publication Date: 2019-08-27
北京知道未来信息技术有限公司
View PDF2 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, due to the special structure of this simplified SYN packet, it may trigger some firewall bugs, causing such SYN packets to be directly discarded by the firewall.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A Stateless Scanning Method to Avoid Firewall Detection
  • A Stateless Scanning Method to Avoid Firewall Detection
  • A Stateless Scanning Method to Avoid Firewall Detection

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0032] In order to make the above-mentioned features and advantages of the present invention more comprehensible, the following specific embodiments are described in detail in conjunction with the accompanying drawings.

[0033] This embodiment provides a stateless scanning method for avoiding firewall detection, the specific steps are as follows figure 2 As shown, the specific steps are as follows:

[0034] (1) Assemble a SYN packet that does not carry the Options segment.

[0035] (2) Use a random number generating function to generate a random number, and replace the Identification field in the SYN header generated in step (1) with the random number.

[0036] (3) Add the Options segment after the SYN packet generated in step (2).

[0037] (4) Send the modified SYN packet to a certain port of the server.

[0038] (5) The scanner enters the waiting state after sending the SYN packet, and waits for the scanned server to return the SYN+ACK packet.

[0039] (6) When the SYN...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a stateless scanning method for avoiding firewall detection. The method comprises the steps: 1) a scanner generates an SYN packet without an Options field and randomizes the Identification field in the data packet; 2) the scanner adds the Options field in a TCP / IP into the SYN packet processed in the step 1); and 3) the scanner sends the SYN packet processed in the step 2) for stateless scanning. By adoption of the stateless scanning method, a characteristic cannot be found in the packet any longer by a firewall, and the scanned packet is accordingly filtered. The stateless scanning method for avoiding firewall detection improves a port finding proportion.

Description

technical field [0001] The invention relates to the field of computer information technology, in particular to a stateless scanning method for avoiding firewall detection. Background technique [0002] TCP is a reliable connection-oriented protocol, and each process of a complete TCP session has different states. It is the operating system that has saved these states at the bottom layer so that we can use it more conveniently and reliably at the application layer, but reliability also brings resource occupation. [0003] Stateless scanning means that there is no need to care about the TCP state, does not occupy system TCP / IP protocol stack resources, forgets about SYN, ACK, FIN, TIMEWAIT and other states, does not perform session grouping, and may also need to store necessary information in data in the package itself. For example, ZMAP, which scanned the entire Internet in 44 minutes in 2013, and MASSCAN, which appeared later, all used this stateless scanning technology, a...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06
Inventor 孙耀辉
Owner 北京知道未来信息技术有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com