基于C/S结构的无端口后门的研究与实现

Based on C/S structure of the back door of free ports and Implementation

无端口后门是不打开目标主机任何端口即可达到攻击的一种方法。论文分客户端程序和服务器端程序两部分,客户端程序利用ICMP协议的回送请求和应答报文传送数据和控制命令,实现对服务器端的控制,服务器端程序能够执行客户端程序发来的命令。针对无端口后门攻击,在服务端程序中实现利用WINSOCK技术捕获并解析报文,提取源主机的有关信息并记录日志中。

Non-Port backdoor is an attack method without any ports.The system consists of two subsystems： client-subsystem and server-subsystem.Client-subsystem connect to service-subsystem through the use of ICMP Echo protocol packet to transfer request and response data and control commands to control the target computer and receives the response packet.In the prevention area,the Service-subsystem using technology of WINSOCK,extracted host IP address and other relevant information from attacker and record the system time,then this information will be recorded in a log.