github/bettercap
1
0
Fork 0
mirror of https://github.com/bettercap/bettercap synced 2025-08-19 13:09:49 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions

new: allow to change spoofing interval

Browse source
This commit is contained in:
pviossat 2024-01-05 16:31:19 +01:00
commit 19f23a9e4c
1 changed files with 30 additions and 35 deletions
Download patch file Download diff file Expand all files Collapse all files

65
modules/arp_spoof/arp_spoof.go
View file

@ -14,30 +14,30 @@ import (
type ArpSpoofer struct { type ArpSpoofer struct {
session.SessionModule session.SessionModule
addresses []net.IP tAddresses []net.IP
macs []net.HardwareAddr tMacs []net.HardwareAddr
wAddresses []net.IP wAddresses []net.IP
wMacs []net.HardwareAddr wMacs []net.HardwareAddr
uAdresses []net.IP sAdresses []net.IP
fullDuplex bool fullDuplex bool
ban bool
skipRestore bool skipRestore bool
forward bool forward bool
intervalMs int
waitGroup *sync.WaitGroup waitGroup *sync.WaitGroup
} }
func NewArpSpoofer(s *session.Session) *ArpSpoofer { func NewArpSpoofer(s *session.Session) *ArpSpoofer {
mod := &ArpSpoofer{ mod := &ArpSpoofer{
SessionModule: session.NewSessionModule("arp.spoof", s), SessionModule: session.NewSessionModule("arp.spoof", s),
addresses: make([]net.IP, 0), tAddresses: make([]net.IP, 0),
macs: make([]net.HardwareAddr, 0), tMacs: make([]net.HardwareAddr, 0),
wAddresses: make([]net.IP, 0), wAddresses: make([]net.IP, 0),
wMacs: make([]net.HardwareAddr, 0), wMacs: make([]net.HardwareAddr, 0),
uAdresses: make([]net.IP, 0), sAdresses: make([]net.IP, 0),
ban: false,
fullDuplex: false, fullDuplex: false,
skipRestore: false, skipRestore: false,
forward: true, forward: true,
intervalMs: 1000,
waitGroup: &sync.WaitGroup{}, waitGroup: &sync.WaitGroup{},
} }
@ -47,7 +47,7 @@ func NewArpSpoofer(s *session.Session) *ArpSpoofer {
mod.AddParam(session.NewStringParameter("arp.spoof.whitelist", "", "", "Comma separated list of IP addresses, MAC addresses or aliases to skip while spoofing.")) mod.AddParam(session.NewStringParameter("arp.spoof.whitelist", "", "", "Comma separated list of IP addresses, MAC addresses or aliases to skip while spoofing."))
mod.AddParam((session.NewStringParameter("arp.spoof.usurpate", session.ParamGatewayAddress, "", "IP addresses to usurpate, also supports nmap style IP ranges."))) mod.AddParam((session.NewStringParameter("arp.spoof.spoofed", session.ParamGatewayAddress, "", "IP addresses to spoof, also supports nmap style IP ranges.")))
mod.AddParam(session.NewBoolParameter("arp.spoof.fullduplex", mod.AddParam(session.NewBoolParameter("arp.spoof.fullduplex",
"false", "false",
@ -71,19 +71,16 @@ func NewArpSpoofer(s *session.Session) *ArpSpoofer {
"true", "true",
"If set to true, IP forwarding will be enabled.")) "If set to true, IP forwarding will be enabled."))
mod.AddParam(session.NewIntParameter("arp.spoof.interval",
"1000",
"Spoofing time interval."))
mod.AddHandler(session.NewModuleHandler("arp.spoof on", "", mod.AddHandler(session.NewModuleHandler("arp.spoof on", "",
"Start ARP spoofer.", "Start ARP spoofer.",
func(args []string) error { func(args []string) error {
return mod.Start() return mod.Start()
})) }))
mod.AddHandler(session.NewModuleHandler("arp.ban on", "",
"Start ARP spoofer in ban mode, meaning the target(s) connectivity will not work.",
func(args []string) error {
mod.ban = true
return mod.Start()
}))
mod.AddHandler(session.NewModuleHandler("arp.spoof off", "", mod.AddHandler(session.NewModuleHandler("arp.spoof off", "",
"Stop ARP spoofer.", "Stop ARP spoofer.",
func(args []string) error { func(args []string) error {
@ -115,32 +112,31 @@ func (mod *ArpSpoofer) Configure() error {
var err error var err error
var targets string var targets string
var whitelist string var whitelist string
var uTargets string var sTargets string
if err, mod.fullDuplex = mod.BoolParam("arp.spoof.fullduplex"); err != nil { if err, mod.fullDuplex = mod.BoolParam("arp.spoof.fullduplex"); err != nil {
return err return err
} else if err, mod.forward = mod.BoolParam("arp.spoof.forwarding"); err != nil { } else if err, mod.forward = mod.BoolParam("arp.spoof.forwarding"); err != nil {
return err return err
} else if err, mod.intervalMs = mod.IntParam("arp.spoof.interval"); err != nil {
return err
} else if err, targets = mod.StringParam("arp.spoof.targets"); err != nil { } else if err, targets = mod.StringParam("arp.spoof.targets"); err != nil {
return err return err
} else if err, whitelist = mod.StringParam("arp.spoof.whitelist"); err != nil { } else if err, whitelist = mod.StringParam("arp.spoof.whitelist"); err != nil {
return err return err
} else if err, uTargets = mod.StringParam("arp.spoof.usurpate"); err != nil { } else if err, sTargets = mod.StringParam("arp.spoof.spoofed"); err != nil {
return err return err
} else if mod.addresses, mod.macs, err = network.ParseTargets(targets, mod.Session.Lan.Aliases()); err != nil { } else if mod.tAddresses, mod.tMacs, err = network.ParseTargets(targets, mod.Session.Lan.Aliases()); err != nil {
return err return err
} else if mod.wAddresses, mod.wMacs, err = network.ParseTargets(whitelist, mod.Session.Lan.Aliases()); err != nil { } else if mod.wAddresses, mod.wMacs, err = network.ParseTargets(whitelist, mod.Session.Lan.Aliases()); err != nil {
return err return err
} else if mod.uAdresses, _, err = network.ParseTargets(uTargets, nil); err != nil { } else if mod.sAdresses, _, err = network.ParseTargets(sTargets, mod.Session.Lan.Aliases()); err != nil {
return err return err
} }
mod.Debug(" addresses=%v macs=%v whitelisted-addresses=%v whitelisted-macs=%v usurpate-addresses=%v", mod.addresses, mod.macs, mod.wAddresses, mod.wMacs, mod.uAdresses) mod.Debug(" addresses=%v macs=%v whitelisted-addresses=%v whitelisted-macs=%v spoofed-addresses=%v", mod.tAddresses, mod.tMacs, mod.wAddresses, mod.wMacs, mod.sAdresses)
if mod.ban { if mod.forward {
mod.Warning("running in ban mode, forwarding not enabled!")
mod.Session.Firewall.EnableForwarding(false)
} else if mod.forward {
mod.Info("enabling forwarding") mod.Info("enabling forwarding")
if !mod.Session.Firewall.IsForwardingEnabled() { if !mod.Session.Firewall.IsForwardingEnabled() {
mod.Session.Firewall.EnableForwarding(true) mod.Session.Firewall.EnableForwarding(true)
@ -160,16 +156,16 @@ func (mod *ArpSpoofer) Start() error {
return err return err
} }
nTargets := len(mod.addresses) + len(mod.macs) nTargets := len(mod.tAddresses) + len(mod.tMacs)
if nTargets == 0 { if nTargets == 0 {
mod.Warning("list of targets is empty, module not starting.") mod.Warning("list of targets is empty, module not starting.")
return nil return nil
} }
return mod.SetRunning(true, func() { return mod.SetRunning(true, func() {
nUsurpate := len(mod.uAdresses) nSpoofed := len(mod.sAdresses)
mod.Info("arp spoofer started targeting %d addresses, probing %d targets.", nUsurpate, nTargets) mod.Info("arp spoofer started spoofing %d addresses, probing %d targets.", nSpoofed, nTargets)
if mod.fullDuplex { if mod.fullDuplex {
mod.Warning("full duplex spoofing enabled, if the router has ARP spoofing mechanisms, the attack will fail.") mod.Warning("full duplex spoofing enabled, if the router has ARP spoofing mechanisms, the attack will fail.")
@ -180,23 +176,23 @@ func (mod *ArpSpoofer) Start() error {
myMAC := mod.Session.Interface.HW myMAC := mod.Session.Interface.HW
for mod.Running() { for mod.Running() {
for _, address := range mod.uAdresses { for _, address := range mod.sAdresses {
if net.IP.Equal(address, mod.Session.Gateway.IP) || !mod.Session.Skip(address) { if net.IP.Equal(address, mod.Session.Gateway.IP) || !mod.Session.Skip(address) {
mod.arpSpoofTargets(address, myMAC, true, false) mod.arpSpoofTargets(address, myMAC, true, false)
} }
} }
time.Sleep(1 * time.Second) time.Sleep(time.Duration(mod.intervalMs) * time.Millisecond)
} }
}) })
} }
func (mod *ArpSpoofer) unSpoof() error { func (mod *ArpSpoofer) unSpoof() error {
if !mod.skipRestore { if !mod.skipRestore {
nTargets := len(mod.addresses) + len(mod.macs) nTargets := len(mod.tAddresses) + len(mod.tMacs)
mod.Info("restoring ARP cache of %d targets.", nTargets) mod.Info("restoring ARP cache of %d targets.", nTargets)
for _, address := range mod.uAdresses { for _, address := range mod.sAdresses {
if net.IP.Equal(address, mod.Session.Gateway.IP) || !mod.Session.Skip(address) { if net.IP.Equal(address, mod.Session.Gateway.IP) || !mod.Session.Skip(address) {
if realMAC, err := mod.Session.FindMAC(address, false); err == nil { if realMAC, err := mod.Session.FindMAC(address, false); err == nil {
mod.arpSpoofTargets(address, realMAC, false, false) mod.arpSpoofTargets(address, realMAC, false, false)
@ -216,7 +212,6 @@ func (mod *ArpSpoofer) Stop() error {
return mod.SetRunning(false, func() { return mod.SetRunning(false, func() {
mod.Info("waiting for ARP spoofer to stop ...") mod.Info("waiting for ARP spoofer to stop ...")
mod.unSpoof() mod.unSpoof()
mod.ban = false
mod.waitGroup.Wait() mod.waitGroup.Wait()
}) })
} }
@ -241,7 +236,7 @@ func (mod *ArpSpoofer) getTargets(probe bool) map[string]net.HardwareAddr {
targets := make(map[string]net.HardwareAddr) targets := make(map[string]net.HardwareAddr)
// add targets specified by IP address // add targets specified by IP address
for _, ip := range mod.addresses { for _, ip := range mod.tAddresses {
if mod.Session.Skip(ip) { if mod.Session.Skip(ip) {
continue continue
} }
@ -251,7 +246,7 @@ func (mod *ArpSpoofer) getTargets(probe bool) map[string]net.HardwareAddr {
} }
} }
// add targets specified by MAC address // add targets specified by MAC address
for _, hw := range mod.macs { for _, hw := range mod.tMacs {
if ip, err := network.ArpInverseLookup(mod.Session.Interface.Name(), hw.String(), false); err == nil { if ip, err := network.ArpInverseLookup(mod.Session.Interface.Name(), hw.String(), false); err == nil {
if mod.Session.Skip(net.ParseIP(ip)) { if mod.Session.Skip(net.ParseIP(ip)) {
continue continue