Packet Excalibur v1.0 (Vivienne release) A multi-platform graphical and scriptable network packet engine with extensible text based protocol descriptions C o d i n g : Jitsu I d e a s : Jitsu & Irib S u p p o r t : Nono R E A D M E 1) What is Packet Excalibur 2) What is it usefull for 3) How to install under windows 4) How to install under linux 5) No packet seems to be sent / I never see any packet coming in 6) The "ISO decode" screen doesn't load / How do I build packets 7) How do I re-build the software 1) What is Packet Excalibur It is a multi-platform graphical and scriptable network packet engine with extensible text based protocol descriptions. In short this is a network tool to built and receive custom packets. With Packet Excalibur you will be able : to decide packet attributes from physical layer to the top, to sniff and spoof packets (packet generator) in a single interface, to build scripts in the gui, to define additional protocols in simple text files. 2) What is it usefull for Pen testing firewalls, routers, or any network enable equipment. Validating your custom built protocols without the burden of writting lines of code. Teaching yourself how protocols works and articulates around each other. ... 3) How to install under windows Either download the installer (PacketExcalibur_*.*_win32.exe) and follow instructions. Or download the zip archive (PacketExcalibur_*.*_win32.zip), unzip to some directory, install the pcap driver found in the unzipped directory if not already installed (WinPcap_2_3.exe). Run excalibur.exe 4) How to install under linux Open a shell in the directory where you downloaded the program Unzip the archive : gzip -d PacketExcalibur_*.*_linux.tgz Untar the archive : tar -xvf PacketExcalibur_*.*_linux.tar Move to the "Packet_Excalibur" directory : mv Packet_Excalibur Make shure you have root rights, then run the program : ./excalibur 5) No packet seems to be sent / I never see any packet coming in Packet Excalibur won't work on anything else that a plain network interface for now (sorry no modems). Make shure your network card is properly selected in the "Preference"-"Network Adapter" menu of the main screen. Windows user : "NDIS" or "Virtual" is your VPN/modem adapter, select the proper link. Linux user : you need to be root when you run Packet Excalibur. 6) The "ISO decode" screen doesn't load / How do I build packets If you have added/modified some .def files in the \iso directory see the error message when excalibur loads, it should help you in debugging the problem. If you're running the program under Linux, make shure you have set the current working directory to where Packet Excalibur binaries are installed. In all cases if the iso files that describes protocols canno't be loaded, a popup will alert you. Check in "Preference"-"Directories" that you are pointing to the right place for the iso files, that should be "/iso". If you had copied the program from another computer instead of a fresh copy, delete the "excalibur.preference" file, this is were the directories and network adapter preference are saved the first time you run the program. 7) How do I re-build the software Under windows : Get a copy of PacketBuild*.zip from www.securitybugware.org/libnetnt, unzip, run : compiler.bat Get a copy of source code PacketExcalibur_*.*_win_lin_src.zip, unzip, move to the "\main" directory, run : make -f makefile.win clean make -f makefile.win the fresh built is now in the "\binaries" directory Under linux : Get a copy of source code PacketExcalibur_*.*_win_lin_src.zip, unzip, move to the "\main" directory, run : make -f makefile.lin clean make -f makefile.lin the fresh built is now in the "\binaries" directory Note that the dll's found in the "\binaries" directory is of course not needed for the linux build. Also note that statically linked GTK and libpcap libraries are provided see the "makefile.lin" file for details. Note for linux and windows : Both release use a modified version of libnet, available at www.securitybugware.org\libnetnt