Skip to content

0x00nier/noircast

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

16 Commits
.cargo
.cargo
 
 
benches
benches
 
 
src
src
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
Cargo.lock
Cargo.lock
 
 
Cargo.toml
Cargo.toml
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

NoirCast

Overview

NoirCast is a powerful TUI for network security professionals, penetration testers, and security researchers. It provides an intuitive vim-like interface for crafting and sending custom network packets with real-time response tracking.

Features

Protocol Support

  • TCP: SYN, Connect, FIN, NULL, XMAS, ACK scans with customizable flags
  • UDP: Standard UDP scanning with service detection
  • ICMP: Echo requests with proper raw socket support when available
  • HTTP/HTTPS: Full HTTP request crafting with method, path, and header control
  • DNS: Query building with support for A, AAAA, MX, TXT, NS, CNAME record types
  • NTP: Network Time Protocol packet construction
  • SNMP: Simple Network Management Protocol queries
  • SSDP: Simple Service Discovery Protocol
  • SMB: Server Message Block negotiation
  • LDAP: Lightweight Directory Access Protocol searches
  • NetBIOS: NetBIOS Name Service queries
  • DHCP: DHCP Discover packets
  • Kerberos: Kerberos AS-REQ packets
  • ARP: Address Resolution Protocol packets

User Interface

  • Vim-style navigation and keybindings
  • Which-key style help popup (press ?)
  • Multiple panes for configuration, responses, and packet capture
  • Real-time statistics with success rate visualization
  • Multi-session support (Space+n to create new sessions)

Performance

  • Async/await with Tokio for high throughput
  • Configurable worker threads and batch sizes
  • Socket reuse and buffer pooling for optimized sending
  • Connection timeout controls

Advanced Features

  • Raw socket support with automatic capability detection
  • Flood mode for stress testing (:flood command)
  • Packet templates for common protocols
  • TCP flag visualization and custom flag combinations
  • Service name lookup for common ports

Installation

Prerequisites

  • Rust 1.70 or later
  • For raw socket features (SYN scan, ICMP): root/sudo privileges or CAP_NET_RAW capability

Building from Source

git clone https://github.com/0x00nier/NoirCast.git
cd NoirCast
cargo build --release

Running

# Standard mode (connect scans, UDP)
./target/release/noircast

# With raw socket support (Linux)
sudo ./target/release/noircast

# Or set capabilities once
sudo setcap cap_net_raw+ep ./target/release/noircast
./target/release/noircast

Quick Start

  1. Launch NoirCast: ./target/release/noircast
  2. Press i to enter insert mode and type target: 192.168.1.1:80
  3. Press Esc to return to normal mode
  4. Press 1 for TCP or P to open protocol picker
  5. Press s to send packets
  6. View results in the Response Log pane

For raw socket scans (SYN, ICMP), run with sudo or set capabilities.

Usage

Command Line Options

noircast [OPTIONS]

Options:
  -d, --debug              Enable debug logging
  -l, --log-file <PATH>    Log file path [default: noircast.log]
  -w, --workers <N>        Number of worker threads [default: CPU count]
  -b, --batch-size <N>     Batch size for concurrent sending [default: 1000]
  -t, --timeout <MS>       Connection timeout in milliseconds [default: 3000]
  -H, --host <HOST>        Target host (optional, can be set in TUI)
  -p, --port <PORT>        Target port (optional, can be set in TUI)
  -h, --help               Print help
  -V, --version            Print version

Keybindings

Normal Mode

Key Action
j / k Scroll down/up in current pane
h / l Switch to previous/next pane
Ctrl+h/j/k/l Directional pane navigation
Tab / Shift+Tab Cycle through panes
Enter Select/toggle current item
s Send packet(s)
r Retry last failed
c Clear logs
e Open packet editor popup
P Open protocol picker popup
i Enter Insert mode (edit target)
: Enter Command mode
/ Enter Search mode
? Toggle help popup
q Quit

Protocol Selection

Key Protocol
1 TCP
2 UDP
3 ICMP
4 HTTP
5 HTTPS
6 DNS
7 NTP
P Open protocol picker (for SNMP, SSDP, SMB, LDAP, NetBIOS, DHCP, Kerberos, ARP)

The protocol picker supports fuzzy search - just type to filter protocols.

Scan Type Selection

Key Scan Type
F1 SYN Scan
F2 Connect Scan
F3 FIN Scan
F4 NULL Scan
F5 XMAS Scan
F6 ACK Scan
F7 UDP Scan

Session Management

Key Sequence Action
Space n Create new session
Space ] Next session
Space [ Previous session
Space x Close current session

Commands

Enter command mode with : and type:

Target & Scanning

Command Description
:target <host> Set target host
:port <port> Set target port(s) (e.g., 80, 80-443, 80,443,8080)
:count <n> Set packet count
:scan <type> Set scan type (syn, connect, fin, null, xmas, ack, udp)
:send Send packets
:ports top20 Set top 20 common ports
:ports top100 Set top 100 common ports

Packet Metadata

Command Description
:packet / :edit Open packet editor popup
:srcport <n> Set source port
:dstport <n> Set destination port
:ttl <n> Set TTL (0-255)
:seq <n> Set TCP sequence number
:ack <n> Set TCP acknowledgment number
:window <n> Set TCP window size
:payload <hex> Set payload (hex bytes, e.g., 48656C6C6F)
:randseq Randomize sequence number
:randport Randomize source port

Protocol Commands

Command Description
:dns Build DNS query packet
:http Build HTTP request packet
:snmp Send SNMP request
:ntp Send NTP request
:ssdp Send SSDP discovery

Flood Mode

Command Description
:flood [rate] Start flood mode (optionally limit rate)
:stop Stop flood mode

Utility

Command Description
:stats Show statistics
:clear Clear logs and captures
:debug Toggle debug mode
:help Show help
:quit Exit

Dependencies

Key external dependencies:

  • tokio - Async runtime for high-performance I/O
  • ratatui - Terminal UI framework
  • crossterm - Cross-platform terminal manipulation
  • pnet - Raw socket and packet construction
  • clap - Command-line argument parsing
  • tracing - Structured logging
  • anyhow - Error handling
  • chrono - Timestamp handling
  • parking_lot - Faster synchronization primitives

Security Considerations

This tool is designed for authorized security testing and educational purposes:

  • Only use against systems you own or have explicit authorization to test
  • Raw socket operations require elevated privileges
  • Flood mode can generate significant network traffic
  • Some scans (SYN, FIN, etc.) may be detected by firewalls/IDS

Contributing

Contributions are welcome. Please ensure:

  1. Code compiles with no warnings (cargo build should be clean) unless there are special exceptions.
  2. All tests pass (cargo test)
  3. Format code with cargo fmt
  4. Run clippy checks (cargo clippy)

License

GPL v3 License - See LICENSE file for details.

Author

0x00nier

For bug reports and feature requests, please open an issue on the GitHub repository.

About

A high-performance TUI-based packet crafting tool written in Rust.

Resources

Readme

License

GPL-3.0 license
Activity

Stars

35 stars

Watchers

0 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages