Not exactly an issue, but how to do what you have mentioned in the 1st line of README?
If you want to get this to work, you need to configure the Ethernet dst and src to point to your interface's MAC address and the target interface MAC address.

First of all, thank for your sharing, it's very helpful!
When I run the program, it's panicked, because my 'enp3s0' is not use, so ips is empty array.
here is my print:

NetworkInterface { name: "enp3s0", index: 2, mac: Some(MAC_ADDRESS), ips: [], flags: 4098 }

and panic message:

thread 'main' panicked at 'index out of bounds: the len is 0 but the index is 0', /checkout/src/libcore/slice/mod.rs:2085:10
note: Run with RUST_BACKTRACE=1 for a backtrace.

I added a branch to solve it, but I'm a noob to rust, look forward to your solution.

I've done my project and I've discovered some way to improve the Synner maybe:

1. The random<T>() costs a lot of time. So, I think you can choose Xorshift instead of regular random algorithm. The rand library has impled the Xorshift algorithm and I wrote a fast_random<T>():

pub fn fast_random<T>() -> Result<T, rand::Error>
where
    T: PartialOrd + SampleUniform,
    Standard: Distribution<T>,
{
    let mut rng = XorShiftRng::from_rng(EntropyRng::new())?;
    Ok(rng.gen())
}

2. You can modify the Packet's source IP and source Port fields instead of creating whole new packet.
   I did this in build.rs. I created a struct and impled some methods for it.
3. In Synner, for every single sending, you will create a new (mut tx,_) pair, which is needless. I think you can just use one tx, so you can save the time of creating tx.
   I did this in sender.rs.

And I think your demo is not right maybe? I think you couldn't SSH the server because your bandwidth has been blocked. If you run the synner, can you open Google or other website normally? If not, the demo cannot prove the Synner attacked the server.