1fragrouter6(8) IPv6 fragrouter6(8)
2
3
4
6 fragrouter6
7
8
10 fragrouter6 [-dv -f len -e count -t count] INTERFACE EVASION-METHOD
11
12
14 -f len size of mini fragments (option 64, default 8)
15 -e count hop count to the IDS for evading (option 256 & 512)
16 -t count hop count to the target that reaches it
17 -v verbose mode, print all packets processed for evasion
18
20 0 no manipulation
21 1-31 the number of atomic fragmentation headers to insert
22 32 use destination headers for 1-31 instead of fragmentation head‐
23 ers
24 64 fragment each packet to 8 byte length pieces (or change with
25 -f)
26 128 a large destination header that fragments the packet
27 256 insert fake TCP data with a hop count just for the IDS (-e)
28 512 insert TCP connection reset packet with a hop count just to the
29 IDS (-e)
30 1024 insert fake fragmentation data with a hop count just for the
31 IDS (-e)
32 2048 insert faked seq/ack data TCP packet
33
34 Performs NIDS/NIPS evasion to all defined packets that originate from
35 your system or pass through it. All evasion methods can be combined
36 (add together) with the exception that only either one of 64 or 128 can
37 be used at once. Option 1024 can be used with 1..31 and 64. The eva‐
38 sion methods are processed in the following order: 256, 512, 2048,
39 1..31/33..63 then either 64 or 128 then 1024. Requires to set up
40 ip6table rules that jump to NFQUEUE, use fragrouter6.sh which is a
41 wrapper for ip6tables and fragrouter6!
42
44 thc-ipv6 was written by van Hauser <vh@thc.org> / THC
45
46 The homepage for this toolkit is: http://www.thc.org/thc-ipv6
47
48
50 fragrouter6 v3.4 (c) 2018 by van Hauser / THC <vh@thc.org> www.thc.org
51
52
53
54THC 2019-07-27 fragrouter6(8)