Skip to content

chrismarget/ios-icmp-channel

master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
1 branch 0 tags
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
LICENSE
 
 
README.md
 
 
listener.py
 
 
sender.tcl
 
 

README.md

ios-icmp-channel

Send messages from IOS routers via ICMP payloads

Usage:

Router#tclsh flash:sender.tcl
Usage: flash:sender.tcl [-v <vrf> | -i <interface>] <target> some message goes here

The message is delivered one byte at a time in the payload of ICMP echo request packets. Each byte is preceeded by a sequence number. After the final byte, send 0x04 (EOM).

Running it like this:

Router#tclsh flash:sender.tcl target TEST

Produces echo requests that look like this:

# tcpdump -Xn icmp and src host router
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth0, link-type EN10MB (Ethernet), capture size 65535 bytes
15:54:00.266732 IP router > target: ICMP echo request, id 305, seq 0, length 18
	0x0000:  4500 0026 01a7 0000 f201 1e2e xxxx xxxx  E..&............
	0x0010:  xxxx xxxx 0800 4ef4 0131 0000 0000 0000  ......N..1......
	0x0020:  b7d9 efac 0054 0000 0000 0000 0000       .....T........        <-- seq 0: T
15:54:00.514075 IP router > target: ICMP echo request, id 306, seq 0, length 18
	0x0000:  4500 0026 01a8 0000 f201 1e2d xxxx xxxx  E..&.......-....
	0x0010:  xxxx xxxx 0800 4d0a 0132 0000 0000 0000  ......M..2......
	0x0020:  b7d9 f0a4 0145 0000 0000 0000 0000       .....E........        <-- seq 1: E
15:54:00.762870 IP router > target: ICMP echo request, id 307, seq 0, length 18
	0x0000:  4500 0026 01a9 0000 f201 1e2c xxxx xxxx  E..&.......,....
	0x0010:  xxxx xxxx 0800 4b03 0133 0000 0000 0000  ......K..3......
	0x0020:  b7d9 f19c 0253 0000 0000 0000 0000       .....S........        <-- seq 2: S
15:54:01.010000 IP router > target: ICMP echo request, id 308, seq 0, length 18
	0x0000:  4500 0026 01aa 0000 f201 1e2b xxxx xxxx  E..&.......+....
	0x0010:  xxxx xxxx 0800 4909 0134 0000 0000 0000  ......I..4......
	0x0020:  b7d9 f294 0354 0000 0000 0000 0000       .....T........        <-- seq 3: T
15:54:01.262253 IP router > target: ICMP echo request, id 309, seq 0, length 18
	0x0000:  4500 0026 01ab 0000 f201 1e2a xxxx xxxx  E..&.......*....
	0x0010:  xxxx xxxx 0800 475c 0135 0000 0000 0000  ......G\.5......
	0x0020:  b7d9 f390 0404 0000 0000 0000 0000       ..............        <-- seq 4: <EOM>

About

Send messages from IOS routers via ICMP payloads

Resources

Readme

License

Apache-2.0 license
Activity

Stars

1 star

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages