Trafscrambler is an anti-sniffer/IDS LKM(Network Kernel Extension) for OSX, licensed under BSD.
Version 0.2 implements following:
-all from version 0.1
-injection of packets with bogus data and with randomly selected bad TCP cksum or bad TCP sequences
-userland binary(tsctrl) for controlling trafscrambler NKE
Version 0.1 implements following:
• SYN decoy – sends out number of SYN pkts before the original SYN pkt
• TCP reset attack – sends out RST/FIN pkt with bad sequence
• Pre-connection SYN – sends out SYN with wrong TCP-checksum
• Post-connection SYN – sends out fake SYN after connection establishment
• Zero Window – send out pkt with “0” window set.
You can download Trafscrambler 0.2 here:
(sha256: fa6467defc5898d3d8beae8d23338a8978e1e90bd33e00f07621ebd82993a881)
Hi, Thanks for article. Everytime like to read you.