Snot
Platforms:
OpenBSD,
UNIX,
Windows NT
Categories:
Evasion,
Intrusion Detection
Version: v0.91
URL: http://www.geocities.com/sniph00/
Snot is an arbitrary packet generator, that uses snort rules files as its source of packet information. It attempts at all times to randomise information that is not contained in the rule, to hamper the generation of 'snot detection' snort rules. It can be used as an IDS evasion tool, by using specific decoy hosts, or just something to keep your friendly IDS monitoring staff busy.