public
/
dhcp_protect
Beobachten 1
Favorisieren 0
Fork 0
Code Issues 0 Pull-Requests 0 Releases 2 Wiki Aktivität
A userspace application that filters DHCP floods to protect a DHCP server. It uses the Netfilter userspace packet queuing API.
Du kannst nicht mehr als 25 Themen auswählen Themen müssen mit entweder einem Buchstaben oder einer Ziffer beginnen. Sie können Bindestriche („-“) enthalten und bis zu 35 Zeichen lang sein.
8 Commits
1 Branch
Struktur: 6de1a8765a
Branches Tags
${ item.name }
Erstelle Branch ${ searchTerm }
von „6de1a8765a“
${ noResults }
dhcp_protect/perftest.pl

perftest.pl 2.2KB
Originalformat Blame Verlauf

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475 
  1. #!/usr/bin/perl

  2. 

  3. use strict;

  4. use warnings;

  5. 

  6. 

  7. my($maccnt, $pps, $src, $dest) = @ARGV;

  8. 

  9. usage() if !defined $dest;

  10. 

  11. if ( $maccnt !~ /^\d+$/ || $maccnt < 1 ) {

  12. 	print STDERR "MAC count must be a positive integer\n";

  13. 	exit 1;

  14. }

  15. 

  16. if ( $pps !~ /^\d+$/ || $pps < 1 ) {

  17. 	print STDERR "packets/sec must be a positive integer\n";

  18. 	exit 1;

  19. }

  20. 

  21. if ( $src !~ /^(\d+\.\d+\.\d+\.\d+)$/ ) {

  22. 	print STDERR "source IP must be a valid IPv4 address\n";

  23. 	exit 1;

  24. }

  25. 

  26. if ( $dest !~ /^(\d+\.\d+\.\d+\.\d+)$/ ) {

  27. 	print STDERR "destination IP must be a valid IPv4 address\n";

  28. 	exit 1;

  29. }

  30. 

  31. main($maccnt, $pps, $src, $dest);

  32. 

  33. sub usage {

  34. 	print STDERR "DHCP Flood using option 82\n";

  35. 	print STDERR "This is only to test dhcp_protect, the DHCP packets aren't really valid\n";

  36. 	print STDERR "DO NOT SEND THIS TO YOUR DHCP SERVER !!!!\n";

  37. 	print STDERR "\n";

  38. 	print STDERR "Usage: $0 <MAC count> <packets/sec> <source IPv4> <destination IPv4>\n";

  39. 	print STDERR "Dependency: nemesis must be installed\n";

  40. 	print STDERR "https://ftp.troglobit.com/nemesis/\n";

  41. 	print STDERR "\n";

  42. 	exit 1;

  43. }

  44. 

  45. 

  46. sub main {

  47. 	my($maccnt, $pps, $src, $dest)=@_;

  48. 	my $hdr = "";

  49. 

  50. 	$hdr .= "010106010c02385600010000000000000000000000000000c16e5f43409c28db";

  51. 	$hdr .= "d56c000000000000000000000000000000000000000000000000000000000000";

  52. 	$hdr .= "0000000000000000000000000000000000000000000000000000000000000000";

  53. 	$hdr .= "0000000000000000000000000000000000000000000000000000000000000000";

  54. 	$hdr .= "0000000000000000000000000000000000000000000000000000000000000000";

  55. 	$hdr .= "0000000000000000000000000000000000000000000000000000000000000000";

  56. 	$hdr .= "0000000000000000000000000000000000000000000000000000000000000000";

  57. 	$hdr .= "000000000000000000000000638253633501013707017903060f77fc390205dc";

  58. 	$hdr .= "3d0701409c28dbd56c33040076a7000c097370616c6569666f6e000000000000";

  59. 	$hdr .= "0000000000000000000000520e0104000000000206XXXXXXXXXXXXff00000000";

  60. 

  61. 	my $int = 1/$pps;

  62. 

  63. 	while(1) {

  64. 		for(my $i=0; $i<$maccnt; $i++) {

  65. 			my $mac = sprintf("000000%06x", $i);

  66. 			my $pkt = $hdr;

  67. 			$pkt =~ s/XXXXXXXXXXXX/$mac/;

  68. 	

  69. 			open(N,"| nemesis udp -S $src -D $dest -x 67 -y 666 -i $int -P -") || die "install nemesis!";

  70. 			print N pack("H*",$pkt);

  71. 			print N "";

  72. 			close(N);

  73. 		}

  74. 	}

  75. }