how to modify packet header(IP header, TCP Header) before the host send them into the network

Question

I want to modify packet header(IP header, TCP Header) before the host send them into the network.

For example, if I\'m using firefox for browsing, then I want to int

Answer 1

Razorback is an open source API for deep packet injection. You can find the source at:

http://sourceforge.net/projects/razorbacktm/files/Razorback/

You can also request them for the source code for their proposed system.

http://www.icir.org/vern/papers/pktd-pam03.pdf

Answer 2

it should be for you Network packet capturing for Linux.

But it seems to intercept all process in the system.

---

maybe you can use

#include <sys/ptrace.h>
long ptrace (enum __ptrace_request request,
             pid_t pid,
             void *addr,
             void *data);

and hook send(2) or recv(2) to modify the tcp header.

Answer 3

To modify the packets, it is better as simple as injecting the packet which is modified into your network. C has a library libnet which does every thing related to packet injection. Python has scapy to inject the packets .

Now you can do quite interesting things , with libent and scapy , instead of modifying your packet ip/tcp headers , perform arp spoofing and then inject falsify packets and redirect them to the victim.

Libpcap is used for capturing packets but not for modifying packets . So you can build your own sniffer using libpcap , but to inject/modify packets you need to use libnet .

To make life simpler , there are tools like burp suite etc..where you can modify the http headers only before forwarding it .