public
/
dhcp_protect
Suivre 1
Ajouter aux favoris 0
Bifurcation 0
Code Tickets 0 Demandes d'ajout 0 Versions 2 Wiki Activité
A userspace application that filters DHCP floods to protect a DHCP server. It uses the Netfilter userspace packet queuing API.
Vous ne pouvez pas sélectionner plus de 25 sujets Les noms de sujets doivent commencer par une lettre ou un nombre, peuvent contenir des tirets ('-') et peuvent comporter jusqu'à 35 caractères.
9 Révisions
1 Branche
Aborescence: 8edd707ca6
Branches Tags
${ item.name }
Créer la branche ${ searchTerm }
de '8edd707ca6'
${ noResults }
dhcp_protect/perftest.pl

perftest.pl 2.2KB
Brut Annotations Historique

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475 
  1. #!/usr/bin/perl

  2. 

  3. use strict;

  4. use warnings;

  5. 

  6. 

  7. my($maccnt, $pps, $src, $dest) = @ARGV;

  8. 

  9. usage() if !defined $dest;

  10. 

  11. if ( $maccnt !~ /^\d+$/ || $maccnt < 1 ) {

  12. 	print STDERR "MAC count must be a positive integer\n";

  13. 	exit 1;

  14. }

  15. 

  16. if ( $pps !~ /^\d+$/ || $pps < 1 ) {

  17. 	print STDERR "packets/sec must be a positive integer\n";

  18. 	exit 1;

  19. }

  20. 

  21. if ( $src !~ /^(\d+\.\d+\.\d+\.\d+)$/ ) {

  22. 	print STDERR "source IP must be a valid IPv4 address\n";

  23. 	exit 1;

  24. }

  25. 

  26. if ( $dest !~ /^(\d+\.\d+\.\d+\.\d+)$/ ) {

  27. 	print STDERR "destination IP must be a valid IPv4 address\n";

  28. 	exit 1;

  29. }

  30. 

  31. main($maccnt, $pps, $src, $dest);

  32. 

  33. sub usage {

  34. 	print STDERR "DHCP Flood using option 82\n";

  35. 	print STDERR "This is only to test dhcp_protect, the DHCP packets aren't really valid\n";

  36. 	print STDERR "DO NOT SEND THIS TO YOUR DHCP SERVER !!!!\n";

  37. 	print STDERR "\n";

  38. 	print STDERR "Usage: $0 <MAC count> <packets/sec> <source IPv4> <destination IPv4>\n";

  39. 	print STDERR "Dependency: nemesis must be installed\n";

  40. 	print STDERR "https://ftp.troglobit.com/nemesis/\n";

  41. 	print STDERR "\n";

  42. 	exit 1;

  43. }

  44. 

  45. 

  46. sub main {

  47. 	my($maccnt, $pps, $src, $dest)=@_;

  48. 	my $hdr = "";

  49. 

  50. 	$hdr .= "010106010c02385600010000000000000000000000000000c16e5f43409c28db";

  51. 	$hdr .= "d56c000000000000000000000000000000000000000000000000000000000000";

  52. 	$hdr .= "0000000000000000000000000000000000000000000000000000000000000000";

  53. 	$hdr .= "0000000000000000000000000000000000000000000000000000000000000000";

  54. 	$hdr .= "0000000000000000000000000000000000000000000000000000000000000000";

  55. 	$hdr .= "0000000000000000000000000000000000000000000000000000000000000000";

  56. 	$hdr .= "0000000000000000000000000000000000000000000000000000000000000000";

  57. 	$hdr .= "000000000000000000000000638253633501013707017903060f77fc390205dc";

  58. 	$hdr .= "3d0701409c28dbd56c33040076a7000c097370616c6569666f6e000000000000";

  59. 	$hdr .= "0000000000000000000000520e0104000000000206XXXXXXXXXXXXff00000000";

  60. 

  61. 	my $int = 1/$pps;

  62. 

  63. 	while(1) {

  64. 		for(my $i=0; $i<$maccnt; $i++) {

  65. 			my $mac = sprintf("000000%06x", $i);

  66. 			my $pkt = $hdr;

  67. 			$pkt =~ s/XXXXXXXXXXXX/$mac/;

  68. 	

  69. 			open(N,"| nemesis udp -S $src -D $dest -x 67 -y 666 -i $int -P -") || die "install nemesis!";

  70. 			print N pack("H*",$pkt);

  71. 			print N "";

  72. 			close(N);

  73. 		}

  74. 	}

  75. }