An effective way to deceive hackers

As you know, ping and tracert programs can determine the target host type, the main use of ping is to detect whether the target host is connected. Tracert leverages the TTL value in the header of ICMP packets and IP packets to prevent packets from constantly cycling over the IP Internet.

Many intruders will first ping your machine, and if you see a TTL value of 128, think your system is Windows nt/2000; if the TTL value is 32, the target host operating system is considered Windows 95/98; if the TTL value is 255/64 it is considered unix/ Linux operating system. Since the intruder believes that the TTL value reflects the result, then we simply modify the TTL value, the intruder will not be able to invade the computer.

Operation Steps:

1. Open Notepad program, write batch command:

@echo Regedit4>>changettl.reg

@echo. >>changettl.reg

@echo [Hkey_local_machlne\system\currentcontrolset\services\t Cpip\parameters]>>changettl.reg

@echo "DefaultTTL" =dword:000000 ">>changettl.reg

@REGEDIT/s/c Changettl.reg

2. Save the prepared program as a batch file with a. bat extension, click the file, and the default TTL value for your operating system will be modified to FF, or 10 to 255, which means that your operating system is artificially converted to UNIX. Also, a registry file named Changettl.reg is generated under the folder where the file is located. If you want to run through this batch file without producing a Changettl.reg file, you can add deltree/y Changettl.reg to the last line of this batch file without having to confirm that the Changettl.reg file is automatically deleted.

Description: In the above command, ECHO is a dos echo command, if you want to see the program execution process, please remove "@". The content produced by > > is appended to the file that is behind it, that is, the Changettl.reg. and "DefaultTTL" =dword 000000ff is used to set the system default TTL value, if you want to change the TTL value of your operating system to another operating system's ICMP echo answer value, change the "DefaultTTL" key value, Be careful to change the TTL value of the corresponding operating system to hexadecimal.

So, when the intruder ping your machine, what he gets is a false TTL value, this false TTL value will mislead the other, so that the intruder's judgment is wrong, because the different operating system intrusion method is not the same, so use this method to deceive each other, can let him not touch the mind! Is it wonderful to cheat intruders with this method? Just try it!