| Computer offensive technology maturing has both attack and defense into a system of technology systems. Trojan horse technology has also been accompanied by the development of tight defense against the firewall, based on ICMP protocol tunneling Trojan was born. In this paper, based on theory, design, implementation, etc, we introduces the tunnel based on the ICMP protocol for remote computer control system to introduce the system, experimental results, analysis of the technology development. In-depth analysis based on the ICMP protocol tunneling control system characteristics, as well as keeps the core technology.The paper's difficulty lies in identifying ICMP protocol, data, ICMP packets, as well as keeping control systems functional integration. Innovations based on the ICMP protocol for the presentation of a set of control keep the tunnel system, which can be based on three-tier model, which can be based on two models, able to break through a firewall to block, to achieve internal and external network data transmission between the network. Can be hidden, and stability, safe, convenient control over internal networks or external network computer.This paper analyzes the ICMP protocol to study the ICMP protocol to carry data can be achieved by following the standard protocol ICMP packets encapsulated reconciliation package, to establish ICMP tunnel in order to achieve data transfer communication Trojan. Windows system functions by studying the theory and implementation to realize this system Trojan remote file system directory browsing, file uploading and downloading, remote terminal control, keyboard, record, screen, screen shots, TCP data port forwarding, Socks 5 proxy function. By studying the encryption and decryption algorithms, taken RC4 algorithm and strategy for one-time pad decryption of communications and decrypt the data.The system through the practical, and the benefit is obvious. |
PDF Full Text Request