def __init__(self):
'''
Constructor
Initializes the bus and sets device, OUI variables
'''
self._bus = Bus()
try:
self._bus.enable_sbp2()
except IOError:
poll('FireWire modules do not seem to be loaded. Load them? ' +
'[Y/n]: ')
answer = input().lower()
if answer in ['y', '']:
status = call('modprobe firewire-ohci', shell=True)
if status == 0:
try:
self._bus.enable_sbp2()
except IOError:
time.sleep(2) # Give some more time
self._bus.enable_sbp2() # If this fails, fail hard
info('FireWire modules loaded successfully')
else:
fail('Could not load FireWire modules')
else:
fail('FireWire modules not loaded')
# Enable SBP-2 support to ensure we get DMA
self._devices = self._bus.devices()
self._oui = self.init_OUI()
self._vendors = []
self._max_request_size = cfg.PAGESIZE
def __init__(self, delay):
'''
Constructor
Initializes the bus and sets device, OUI variables
'''
# Warn OS X users
if cfg.os == cfg.OSX:
term.warn('Attacking from OS X may cause host and/or target '
'system crashes, and is not recommended')
self.delay = delay
self._bus = Bus()
try:
self._bus.enable_sbp2()
except IOError as e:
if os.geteuid() == 0: # Check if we are running as root
answer = term.poll(
'FireWire modules are not loaded. Try '
'loading them? [y/n]:',
default='y')
if answer in ['y', '']:
status_modprobe = call('modprobe firewire-ohci',
shell=True)
status_rescan = call('echo 1 > /sys/bus/pci/rescan',
shell=True)
if status_modprobe == 0 and status_rescan == 0:
try:
self._bus.enable_sbp2()
except IOError as e:
time.sleep(2) # Give some more time
try:
self._bus.enable_sbp2()
except IOError as e:
raise InceptionException(
'Unable to detect any local FireWire '
'ports.', e)
term.info('FireWire modules loaded successfully')
else:
raise InceptionException(
'Could not load FireWire '
'modules, try running '
'inception as root', e)
else:
raise InceptionException('FireWire modules not loaded per '
'user\'s request')
else:
raise InceptionException(
'FireWire modules are not loaded and '
'we have insufficient privileges to '
'load them. Try running inception as '
'root', e)
# Enable SBP-2 support to ensure we get DMA
self._devices = self._bus.devices()
self._oui = self.init_OUI()
self._vendors = []
self._max_request_size = cfg.PAGESIZE
def __init__(self):
'''
Constructor
Initializes the bus and sets device, OUI variables
'''
self._bus = Bus()
try:
self._bus.enable_sbp2()
except IOError:
if os.geteuid() == 0: # Check if we are running as root
term.poll(
'FireWire modules are not loaded. Try loading them? [Y/n]: '
)
answer = input().lower()
if answer in ['y', '']:
status_modprobe = call('modprobe firewire-ohci',
shell=True)
status_rescan = call('echo 1 > /sys/bus/pci/rescan',
shell=True)
if status_modprobe == 0 and status_rescan == 0:
try:
self._bus.enable_sbp2()
except IOError:
time.sleep(2) # Give some more time
try:
self._bus.enable_sbp2(
) # If this fails, fail hard
except IOError:
term.fail(
'Unable to detect any local FireWire ports. Please make '
+
'sure FireWire is enabled in BIOS, and connected '
+
'to this system. If you are using an adapter, please make '
+
'sure it is properly connected, and re-run inception'
)
term.info('FireWire modules loaded successfully')
else:
term.fail(
'Could not load FireWire modules, try running inception as root'
)
else:
term.fail('FireWire modules not loaded')
else:
term.fail(
'FireWire modules are not loaded and we have insufficient privileges '
+ 'to load them. Try running inception as root')
# Enable SBP-2 support to ensure we get DMA
self._devices = self._bus.devices()
self._oui = self.init_OUI()
self._vendors = []
self._max_request_size = cfg.PAGESIZE
def __init__(self):
'''
Constructor
Initializes the bus and sets device, OUI variables
'''
self._bus = Bus()
try:
self._bus.enable_sbp2()
except IOError:
poll('FireWire modules do not seem to be loaded. Load them? ' +
'[Y/n]: ')
answer = input().lower()
if answer in ['y', '']:
status = call('modprobe firewire-ohci', shell=True)
if status == 0:
try:
self._bus.enable_sbp2()
except IOError:
time.sleep(2) # Give some more time
self._bus.enable_sbp2() # If this fails, fail hard
info('FireWire modules loaded successfully')
else:
fail('Could not load FireWire modules')
else:
fail('FireWire modules not loaded')
# Enable SBP-2 support to ensure we get DMA
self._devices = self._bus.devices()
self._oui = self.init_OUI()
self._vendors = []
self._max_request_size = cfg.PAGESIZE
def __init__(self):
'''
Constructor
Initializes the bus and sets device, OUI variables
'''
self._bus = Bus()
try:
self._bus.enable_sbp2()
except IOError:
term.poll('FireWire modules are not loaded (or insufficient privileges). Try loading them? [Y/n]: ')
answer = input().lower()
if answer in ['y', '']:
status = call('modprobe firewire-ohci', shell=True)
if status == 0:
try:
self._bus.enable_sbp2()
except IOError:
time.sleep(2) # Give some more time
self._bus.enable_sbp2() # If this fails, fail hard
term.info('FireWire modules loaded successfully')
else:
term.fail('Could not load FireWire modules, try running inception as root')
else:
term.fail('FireWire modules not loaded')
# Enable SBP-2 support to ensure we get DMA
self._devices = self._bus.devices()
self._oui = self.init_OUI()
self._vendors = []
self._max_request_size = cfg.PAGESIZE
def __init__(self, delay):
'''
Constructor
Initializes the bus and sets device, OUI variables
'''
# Warn OS X users
if cfg.os == cfg.OSX:
term.warn('Attacking from OS X may cause host and/or target '
'system crashes, and is not recommended')
self.delay = delay
self._bus = Bus()
try:
self._bus.enable_sbp2()
except IOError as e:
if os.geteuid() == 0: # Check if we are running as root
answer = term.poll('FireWire modules are not loaded. Try '
'loading them? [y/n]:',
default='y')
if answer in ['y', '']:
status_modprobe = call('modprobe firewire-ohci',
shell=True)
status_rescan = call('echo 1 > /sys/bus/pci/rescan',
shell=True)
if status_modprobe == 0 and status_rescan == 0:
try:
self._bus.enable_sbp2()
except IOError as e:
time.sleep(2) # Give some more time
try:
self._bus.enable_sbp2()
except IOError as e:
raise InceptionException(
'Unable to detect any local FireWire '
'ports.', e)
term.info('FireWire modules loaded successfully')
else:
raise InceptionException('Could not load FireWire '
'modules, try running '
'inception as root', e)
else:
raise InceptionException('FireWire modules not loaded per '
'user\'s request')
else:
raise InceptionException('FireWire modules are not loaded and '
'we have insufficient privileges to '
'load them. Try running inception as '
'root', e)
# Enable SBP-2 support to ensure we get DMA
self._devices = self._bus.devices()
self._oui = self.init_OUI()
self._vendors = []
self._max_request_size = cfg.PAGESIZE
def __init__(self):
'''
Constructor
Initializes the bus and sets device, OUI variables
'''
self._bus = Bus()
try:
self._bus.enable_sbp2()
except IOError:
if os.geteuid() == 0: # Check if we are running as root
term.poll('FireWire modules are not loaded. Try loading them? [Y/n]: ')
answer = input().lower()
if answer in ['y', '']:
status_modprobe = call('modprobe firewire-ohci', shell=True)
status_rescan = call('echo 1 > /sys/bus/pci/rescan', shell=True)
if status_modprobe == 0 and status_rescan == 0:
try:
self._bus.enable_sbp2()
except IOError:
time.sleep(2) # Give some more time
try:
self._bus.enable_sbp2() # If this fails, fail hard
except IOError:
term.fail('Unable to detect any local FireWire ports. Please make ' +
'sure FireWire is enabled in BIOS, and connected ' +
'to this system. If you are using an adapter, please make ' +
'sure it is properly connected, and re-run inception')
term.info('FireWire modules loaded successfully')
else:
term.fail('Could not load FireWire modules, try running inception as root')
else:
term.fail('FireWire modules not loaded')
else:
term.fail('FireWire modules are not loaded and we have insufficient privileges ' +
'to load them. Try running inception as root')
# Enable SBP-2 support to ensure we get DMA
self._devices = self._bus.devices()
self._oui = self.init_OUI()
self._vendors = []
self._max_request_size = cfg.PAGESIZE
class FireWire:
'''
FireWire wrapper class to handle some attack-specific functions
TODO: Rename FireWireInterface
'''
def __init__(self, delay):
'''
Constructor
Initializes the bus and sets device, OUI variables
'''
# Warn OS X users
if cfg.os == cfg.OSX:
term.warn('Attacking from OS X may cause host and/or target '
'system crashes, and is not recommended')
self.delay = delay
self._bus = Bus()
try:
self._bus.enable_sbp2()
except IOError as e:
if os.geteuid() == 0: # Check if we are running as root
answer = term.poll('FireWire modules are not loaded. Try '
'loading them? [y/n]:',
default='y')
if answer in ['y', '']:
status_modprobe = call('modprobe firewire-ohci',
shell=True)
status_rescan = call('echo 1 > /sys/bus/pci/rescan',
shell=True)
if status_modprobe == 0 and status_rescan == 0:
try:
self._bus.enable_sbp2()
except IOError as e:
time.sleep(2) # Give some more time
try:
self._bus.enable_sbp2()
except IOError as e:
raise InceptionException(
'Unable to detect any local FireWire '
'ports.', e)
term.info('FireWire modules loaded successfully')
else:
raise InceptionException('Could not load FireWire '
'modules, try running '
'inception as root', e)
else:
raise InceptionException('FireWire modules not loaded per '
'user\'s request')
else:
raise InceptionException('FireWire modules are not loaded and '
'we have insufficient privileges to '
'load them. Try running inception as '
'root', e)
# Enable SBP-2 support to ensure we get DMA
self._devices = self._bus.devices()
self._oui = self.init_OUI()
self._vendors = []
self._max_request_size = cfg.PAGESIZE
def init_OUI(self, filename=cfg.OUICONF):
'''Populates the global OUI dictionary with mappings between 24 bit
vendor identifier and a text string. Called during initialization.
Defaults to reading the value of module variable OUICONF.
The file should have records like
08-00-8D (hex) XYVISION INC.
Feed it the standard IEEE public OUI file from
http://standards.ieee.org/regauth/oui/oui.txt for a more up to date
listing.
'''
OUI = {}
try:
f = util.open_file(filename, 'r')
lines = f.readlines()
f.close()
regex = re.compile('(?P<id>([0-9a-fA-F]{2}-){2}[0-9a-fA-F]{2})'
'\s+\(hex\)\s+(?P<name>.*)')
for l in lines:
rm = regex.match(l)
if rm is not None:
textid = rm.groupdict()['id']
ouiid = int('0x%s%s%s' % (textid[0:2], textid[3:5],
textid[6:8]), 16)
OUI[ouiid] = rm.groupdict()['name']
except IOError:
term.warn('Vendor OUI lookups will not be performed: {0}'
.format(filename))
return OUI
def resolve_oui(self, vendor):
try:
return self._oui[vendor]
except KeyError:
return ''
def businfo(self):
'''
Prints all available information of the devices connected to the FW
bus, looks up missing vendor names & populates the internal vendor
list
'''
if not self._devices:
raise InceptionException('Could not detect any FireWire devices '
'connected to this system')
term.info('FireWire devices on the bus (names may appear blank):')
term.separator()
for n, device in enumerate(self._devices, 1):
vid = device.vendor_id
# In the current version of libforensic1394, the
# device.vendor_name.decode() method cannot be trusted (it often
# returns erroneous data. We'll rely on OUI lookups instead
# vendorname = device.vendor_name.decode(cfg.encoding)
vendorname = self.resolve_oui(vid)
self._vendors.append(vendorname)
pid = device.product_id
productname = device.product_name.decode(cfg.encoding)
term.info('Vendor (ID): {0} ({1:#x}) | Product (ID): {2} ({3:#x})'
.format(vendorname, vid, productname, pid), sign=n)
term.separator()
def select_device(self):
selected = self.select()
vendor = self._vendors[selected]
# Print selection
term.info('Selected device: {0}'.format(vendor))
return selected
def select(self):
'''
Present the user of the option to select what device (connected to the
bus) to attack
'''
if not self._vendors:
self.businfo()
nof_devices = len(self._vendors)
if nof_devices == 1:
term.info('Only one device present, device auto-selected as '
'target')
return 0
else:
selected = term.poll('Select a device to attack (or type \'q\' to '
'quit): ')
try:
selected = int(selected)
except:
if selected == 'q':
sys.exit()
else:
term.warn('Invalid selection. Type \'q\' to quit')
return self.select()
if 0 < selected <= nof_devices:
return selected - 1
else:
term.warn('Enter a selection between 1 and ' + str(nof_devices) +
'. Type \'q\' to quit')
return self.select()
def getdevice(self, num, elapsed):
didwait = False
try:
term.wait('Initializing bus and enabling SBP-2, please wait '
'or press Ctrl+C', seconds=self.delay - elapsed)
except KeyboardInterrupt:
pass
d = self._bus.devices()[num]
d.open()
if didwait:
print() # Create a LF so that next print() will start fresh
return d
@property
def bus(self):
'''
The firewire bus; Bus.
'''
return self._bus
@property
def devices(self):
'''
The firewire devices connected to the bus; list of Device.
'''
self._devices = self._bus.devices()
return self._devices
@property
def oui(self):
'''
The OUI dict
'''
return self._oui
@property
def vendors(self):
'''
The list of vendors
'''
return self._vendors
class FireWire:
'''
FireWire wrapper class to handle some attack-specific functions
'''
def __init__(self):
'''
Constructor
Initializes the bus and sets device, OUI variables
'''
self._bus = Bus()
try:
self._bus.enable_sbp2()
except IOError:
poll('FireWire modules do not seem to be loaded. Load them? ' +
'[Y/n]: ')
answer = input().lower()
if answer in ['y', '']:
status = call('modprobe firewire-ohci', shell=True)
if status == 0:
try:
self._bus.enable_sbp2()
except IOError:
time.sleep(2) # Give some more time
self._bus.enable_sbp2() # If this fails, fail hard
info('FireWire modules loaded successfully')
else:
fail('Could not load FireWire modules')
else:
fail('FireWire modules not loaded')
# Enable SBP-2 support to ensure we get DMA
self._devices = self._bus.devices()
self._oui = self.init_OUI()
self._vendors = []
self._max_request_size = cfg.PAGESIZE
def init_OUI(self, filename=cfg.OUICONF):
'''Populates the global OUI dictionary with mappings between 24 bit
vendor identifier and a text string. Called during initialization.
Defaults to reading the value of module variable OUICONF.
The file should have records like
08-00-8D (hex) XYVISION INC.
Feed it the standard IEEE public OUI file from
http://standards.ieee.org/regauth/oui/oui.txt for a more up to date
listing.
'''
OUI = {}
try:
f = open_file(filename, 'r')
lines = f.readlines()
f.close()
regex = re.compile('(?P<id>([0-9a-fA-F]{2}-){2}[0-9a-fA-F]{2})' +
'\s+\(hex\)\s+(?P<name>.*)')
for l in lines:
rm = regex.match(l)
if rm != None:
textid = rm.groupdict()['id']
ouiid = int(
'0x%s%s%s' % (textid[0:2], textid[3:5], textid[6:8]),
16)
OUI[ouiid] = rm.groupdict()['name']
except IOError:
warn('Vendor OUI lookups will not be performed: {0}'.format(
filename))
return OUI
def resolve_oui(self, vendor):
try:
return self._oui[vendor]
except KeyError:
return ''
def businfo(self):
'''
Prints all available information of the devices connected to the FW
bus, looks up missing vendor names & populates the internal vendor
list
'''
if not self._devices:
fail('No FireWire devices detected on the bus')
info('FireWire devices on the bus (names may appear blank):')
separator()
for n, device in enumerate(self._devices, 1):
vid = device.vendor_id
vendorname = device.vendor_name.decode(cfg.encoding)
# Resolve if name not given by device vendor ID
if not vendorname:
vendorname = self.resolve_oui(vid)
self._vendors.append(vendorname)
pid = device.product_id
productname = device.product_name.decode(cfg.encoding)
info('Vendor (ID): {0} ({1:#x}) | Product (ID): {2} ({3:#x})'.
format(vendorname, vid, productname, pid),
sign=n)
separator()
def select_device(self):
'''
Present the user of the option to select what device (connected to the
bus) to attack
'''
if not self._vendors:
self.businfo()
nof_devices = len(self._vendors)
if nof_devices == 1:
info('Only one device present, device auto-selected as target')
return 0
else:
poll('Please select a device to attack (or type \'q\' to quit): ')
selected = input()
try:
selected = int(selected)
except:
if selected == 'q': sys.exit()
else:
warn('Invalid selection, please try again. Type \'q\' ' +
'to quit')
return self.select_device()
if 0 < selected <= nof_devices:
i = selected - 1
vendor = self._vendors[i]
# If the target is a Mac, and we are in memdump mode with the
# --override switch set, make sure we don't touch OS X's g-spot
if 'apple' in vendor.lower() and cfg.memdump and cfg.override:
cfg.apple_target = True
info('The target seems to be a Mac, forcing avoidance ' +
'(not dumping {0:#x}-{1:#x})'.format(
cfg.apple_avoid[0], cfg.apple_avoid[1]))
return i
else:
warn('Please enter a selection between 1 and ' + str(nof_devices) +
'. Type \'q\' to quit')
return self.select_device()
def getdevice(self, num, elapsed):
didwait = False
bb = BeachBall()
try:
for i in range(cfg.fw_delay - elapsed, 0, -1):
print('[*] Initializing bus and enabling SBP-2, ' +
'please wait %2d seconds or press Ctrl+C\r' % i,
end='') # TODO: Use .format()
sys.stdout.flush()
bb.draw()
didwait = True
time.sleep(1)
except KeyboardInterrupt:
pass
d = self._bus.devices()[num]
d.open()
if didwait:
print(
) # Create a LF so that next print() will start on a new line
return d
@property
def bus(self):
"""
The firewire bus; Bus.
"""
return self._bus
@property
def devices(self):
"""
The firewire devices connected to the bus; list of Device.
"""
self._devices = self._bus.devices()
return self._devices
@property
def oui(self):
"""
The OUI dict
"""
return self._oui
@property
def vendors(self):
"""
The list of vendors
"""
return self._vendors
class FireWire:
'''
FireWire wrapper class to handle some attack-specific functions
'''
def __init__(self):
'''
Constructor
Initializes the bus and sets device, OUI variables
'''
self._bus = Bus()
try:
self._bus.enable_sbp2()
except IOError:
poll('FireWire modules do not seem to be loaded. Load them? ' +
'[Y/n]: ')
answer = input().lower()
if answer in ['y', '']:
status = call('modprobe firewire-ohci', shell=True)
if status == 0:
try:
self._bus.enable_sbp2()
except IOError:
time.sleep(2) # Give some more time
self._bus.enable_sbp2() # If this fails, fail hard
info('FireWire modules loaded successfully')
else:
fail('Could not load FireWire modules')
else:
fail('FireWire modules not loaded')
# Enable SBP-2 support to ensure we get DMA
self._devices = self._bus.devices()
self._oui = self.init_OUI()
self._vendors = []
self._max_request_size = cfg.PAGESIZE
def init_OUI(self, filename = cfg.OUICONF):
'''Populates the global OUI dictionary with mappings between 24 bit
vendor identifier and a text string. Called during initialization.
Defaults to reading the value of module variable OUICONF.
The file should have records like
08-00-8D (hex) XYVISION INC.
Feed it the standard IEEE public OUI file from
http://standards.ieee.org/regauth/oui/oui.txt for a more up to date
listing.
'''
OUI = {}
try:
f = open_file(filename, 'r')
lines = f.readlines()
f.close()
regex = re.compile('(?P<id>([0-9a-fA-F]{2}-){2}[0-9a-fA-F]{2})' +
'\s+\(hex\)\s+(?P<name>.*)')
for l in lines:
rm = regex.match(l)
if rm != None:
textid = rm.groupdict()['id']
ouiid = int('0x%s%s%s' % (textid[0:2], textid[3:5],
textid[6:8]), 16)
OUI[ouiid] = rm.groupdict()['name']
except IOError:
warn('Vendor OUI lookups will not be performed: {0}'
.format(filename))
return OUI
def resolve_oui(self, vendor):
try:
return self._oui[vendor]
except KeyError:
return ''
def businfo(self):
'''
Prints all available information of the devices connected to the FW
bus, looks up missing vendor names & populates the internal vendor
list
'''
if not self._devices:
fail('No FireWire devices detected on the bus')
info('FireWire devices on the bus (names may appear blank):')
separator()
for n, device in enumerate(self._devices, 1):
vid = device.vendor_id
vendorname = device.vendor_name.decode(cfg.encoding)
# Resolve if name not given by device vendor ID
if not vendorname:
vendorname = self.resolve_oui(vid)
self._vendors.append(vendorname)
pid = device.product_id
productname = device.product_name.decode(cfg.encoding)
info('Vendor (ID): {0} ({1:#x}) | Product (ID): {2} ({3:#x})'
.format(vendorname, vid, productname, pid), sign = n)
separator()
def select_device(self):
'''
Present the user of the option to select what device (connected to the
bus) to attack
'''
if not self._vendors:
self.businfo()
nof_devices = len(self._vendors)
if nof_devices == 1:
info('Only one device present, device auto-selected as target')
return 0
else:
poll('Please select a device to attack (or type \'q\' to quit): ')
selected = input()
try:
selected = int(selected)
except:
if selected == 'q': sys.exit()
else:
warn('Invalid selection, please try again. Type \'q\' ' +
'to quit')
return self.select_device()
if 0 < selected <= nof_devices:
i = selected - 1
vendor = self._vendors[i]
# If the target is a Mac, and we are in memdump mode with the
# --override switch set, make sure we don't touch OS X's g-spot
if 'apple' in vendor.lower() and cfg.memdump and cfg.override:
cfg.apple_target = True
info('The target seems to be a Mac, forcing avoidance ' +
'(not dumping {0:#x}-{1:#x})'
.format(cfg.apple_avoid[0], cfg.apple_avoid[1]))
return i
else:
warn('Please enter a selection between 1 and ' + str(nof_devices) +
'. Type \'q\' to quit')
return self.select_device()
def getdevice(self, num, elapsed):
didwait = False
bb = BeachBall()
try:
for i in range(cfg.fw_delay - elapsed, 0, -1):
print('[*] Initializing bus and enabling SBP-2, ' +
'please wait %2d seconds or press Ctrl+C\r'
% i, end = '') # TODO: Use .format()
sys.stdout.flush()
bb.draw()
didwait = True
time.sleep(1)
except KeyboardInterrupt:
pass
d = self._bus.devices()[num]
d.open()
if didwait:
print() # Create a LF so that next print() will start on a new line
return d
@property
def bus(self):
"""
The firewire bus; Bus.
"""
return self._bus
@property
def devices(self):
"""
The firewire devices connected to the bus; list of Device.
"""
self._devices = self._bus.devices()
return self._devices
@property
def oui(self):
"""
The OUI dict
"""
return self._oui
@property
def vendors(self):
"""
The list of vendors
"""
return self._vendors
class FireWire:
'''
FireWire wrapper class to handle some attack-specific functions
'''
def __init__(self):
'''
Constructor
Initializes the bus and sets device, OUI variables
'''
self._bus = Bus()
try:
self._bus.enable_sbp2()
except IOError:
if os.geteuid() == 0: # Check if we are running as root
term.poll(
'FireWire modules are not loaded. Try loading them? [Y/n]: '
)
answer = input().lower()
if answer in ['y', '']:
status_modprobe = call('modprobe firewire-ohci',
shell=True)
status_rescan = call('echo 1 > /sys/bus/pci/rescan',
shell=True)
if status_modprobe == 0 and status_rescan == 0:
try:
self._bus.enable_sbp2()
except IOError:
time.sleep(2) # Give some more time
try:
self._bus.enable_sbp2(
) # If this fails, fail hard
except IOError:
term.fail(
'Unable to detect any local FireWire ports. Please make '
+
'sure FireWire is enabled in BIOS, and connected '
+
'to this system. If you are using an adapter, please make '
+
'sure it is properly connected, and re-run inception'
)
term.info('FireWire modules loaded successfully')
else:
term.fail(
'Could not load FireWire modules, try running inception as root'
)
else:
term.fail('FireWire modules not loaded')
else:
term.fail(
'FireWire modules are not loaded and we have insufficient privileges '
+ 'to load them. Try running inception as root')
# Enable SBP-2 support to ensure we get DMA
self._devices = self._bus.devices()
self._oui = self.init_OUI()
self._vendors = []
self._max_request_size = cfg.PAGESIZE
def init_OUI(self, filename=cfg.OUICONF):
'''Populates the global OUI dictionary with mappings between 24 bit
vendor identifier and a text string. Called during initialization.
Defaults to reading the value of module variable OUICONF.
The file should have records like
08-00-8D (hex) XYVISION INC.
Feed it the standard IEEE public OUI file from
http://standards.ieee.org/regauth/oui/oui.txt for a more up to date
listing.
'''
OUI = {}
try:
f = util.open_file(filename, 'r')
lines = f.readlines()
f.close()
regex = re.compile('(?P<id>([0-9a-fA-F]{2}-){2}[0-9a-fA-F]{2})' +
'\s+\(hex\)\s+(?P<name>.*)')
for l in lines:
rm = regex.match(l)
if rm != None:
textid = rm.groupdict()['id']
ouiid = int(
'0x%s%s%s' % (textid[0:2], textid[3:5], textid[6:8]),
16)
OUI[ouiid] = rm.groupdict()['name']
except IOError:
term.warn('Vendor OUI lookups will not be performed: {0}'.format(
filename))
return OUI
def resolve_oui(self, vendor):
try:
return self._oui[vendor]
except KeyError:
return ''
def businfo(self):
'''
Prints all available information of the devices connected to the FW
bus, looks up missing vendor names & populates the internal vendor
list
'''
if not self._devices:
term.fail(
'Could not detect any FireWire devices connected to this system'
)
term.info('FireWire devices on the bus (names may appear blank):')
term.separator()
for n, device in enumerate(self._devices, 1):
vid = device.vendor_id
# In the current version of libforensic1394, the
# device.vendor_name.decode() method cannot be trusted (it often
# returns erroneous data. We'll rely on OUI lookups instead
# vendorname = device.vendor_name.decode(cfg.encoding)
vendorname = self.resolve_oui(vid)
self._vendors.append(vendorname)
pid = device.product_id
productname = device.product_name.decode(cfg.encoding)
term.info('Vendor (ID): {0} ({1:#x}) | Product (ID): {2} ({3:#x})'.
format(vendorname, vid, productname, pid),
sign=n)
term.separator()
def select_device(self):
selected = self.select()
vendor = self._vendors[selected]
# Print selection
term.info('Selected device: {0}'.format(vendor))
return selected
def select(self):
'''
Present the user of the option to select what device (connected to the
bus) to attack
'''
if not self._vendors:
self.businfo()
nof_devices = len(self._vendors)
if nof_devices == 1:
if cfg.verbose:
term.info('Only one device present, device auto-selected as ' +
'target')
return 0
else:
term.poll('Select a device to attack (or type \'q\' to quit): ')
selected = input().lower()
try:
selected = int(selected)
except:
if selected == 'q': sys.exit()
else:
term.warn('Invalid selection. Type \'q\' to quit')
return self.select()
if 0 < selected <= nof_devices:
return selected - 1
else:
term.warn('Enter a selection between 1 and ' + str(nof_devices) +
'. Type \'q\' to quit')
return self.select()
def getdevice(self, num, elapsed):
didwait = False
bb = term.BeachBall()
try:
for i in range(cfg.fw_delay - elapsed, 0, -1):
print('[*] Initializing bus and enabling SBP-2, ' +
'please wait %2d seconds or press Ctrl+C\r' % i,
end='')
sys.stdout.flush()
bb.draw()
didwait = True
time.sleep(1)
except KeyboardInterrupt:
pass
d = self._bus.devices()[num]
d.open()
if didwait:
print(
) # Create a LF so that next print() will start on a new line
return d
@property
def bus(self):
'''
The firewire bus; Bus.
'''
return self._bus
@property
def devices(self):
'''
The firewire devices connected to the bus; list of Device.
'''
self._devices = self._bus.devices()
return self._devices
@property
def oui(self):
'''
The OUI dict
'''
return self._oui
@property
def vendors(self):
'''
The list of vendors
'''
return self._vendors