Instantly share code, notes, and snippets.

Embed
What would you like to do?
TCP TraceRoute of MITM attack on www.icloud.com
# captured packets ->https://www.cloudshark.org/captures/03a6b0593436
bearice@Bearice-Mac-Air-Haswell ~
%tcptraceroute 23.59.94.46 443 !26471 [9:23:19]
Selected device en0, address 192.168.100.16, port 52406 for outgoing packets
Tracing the path to 23.59.94.46 on TCP port 443 (https), 30 hops max
1 192.168.100.254 1.737 ms 0.793 ms 0.798 ms
2 111.192.144.1 2.893 ms 2.967 ms 2.422 ms
3 61.51.246.25 2.913 ms 2.893 ms 3.968 ms
4 124.65.61.157 4.824 ms 2.658 ms 3.902 ms
5 202.96.12.9 3.626 ms 6.532 ms 3.794 ms
6 219.158.96.54 27.539 ms 26.821 ms 27.661 ms
7 a23-59-94-46.deploy.static.akamaitechnologies.com (23.59.94.46) [open] 30.064 ms 29.899 ms 30.126 ms
bearice@Bearice-Mac-Air-Haswell ~
%tcptraceroute 23.59.94.46 80 !26472 [9:23:22]
Selected device en0, address 192.168.100.16, port 52407 for outgoing packets
Tracing the path to 23.59.94.46 on TCP port 80 (http), 30 hops max
1 192.168.100.254 1.007 ms 0.782 ms 0.792 ms
2 111.192.144.1 11.684 ms 2.335 ms 2.206 ms
3 61.51.246.25 2.108 ms 2.753 ms 3.909 ms
4 124.65.61.157 3.232 ms 2.760 ms 3.907 ms
5 202.96.12.9 6.555 ms 6.157 ms 3.894 ms
6 219.158.96.54 27.708 ms 26.837 ms 27.930 ms
7 219.158.23.114 30.912 ms 30.619 ms 31.829 ms
8 219.158.14.38 28.560 ms 26.441 ms 28.044 ms
9 219.158.39.198 90.911 ms 111.305 ms 66.018 ms
10 ae-1.r00.osakjp02.jp.bb.gin.ntt.net (129.250.2.253) 65.757 ms 66.048 ms 65.759 ms
11 a23-59-94-46.deploy.static.akamaitechnologies.com (23.59.94.46) [open] 65.404 ms 65.355 ms 65.323 ms
@bearice

This comment has been minimized.

Show comment
Hide comment
Owner

bearice commented Oct 18, 2014

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment