Init

Author: lauvsong

.gitignore

@@ -0,0 +1 @@
+*.user

README.md

@@ -0,0 +1,12 @@
+# arp-spoof
+advanced arp spoofing
+
+## syntax
+```
+syntax : arp-spoof <interface> <sender ip 1> <target ip 1> [<sender ip 2> <target ip 2>...]
+sample : arp-spoof wlan0 192.168.10.2 192.168.10.1 192.168.10.1 192.168.10.2
+```
+
+## function
+- spoofed IP packet relay (to target)
+- reinfect sender when arp recover

arp-spoof-unittest.pro

@@ -0,0 +1,18 @@
+TEMPLATE = app
+CONFIG += console c++11
+CONFIG -= app_bundle
+CONFIG -= qt
+DEFINES *= GTEST
+LIBS += -lgtest_main -lgtest -pthread
+
+SOURCES += \
+	arphdr.cpp \
+	ethhdr.cpp \
+	ip.cpp \
+	mac.cpp
+
+HEADERS += \
+	arphdr.h \
+	ethhdr.h \
+	ip.h \
+	mac.h

arp-spoof.pro

@@ -0,0 +1,18 @@
+TEMPLATE = app
+CONFIG += console c++11
+CONFIG -= app_bundle
+CONFIG -= qt
+LIBS += -lpcap
+
+SOURCES += \
+	arphdr.cpp \
+	ethhdr.cpp \
+	ip.cpp \
+	mac.cpp \
+	main.cpp
+
+HEADERS += \
+	arphdr.h \
+	ethhdr.h \
+	ip.h \
+	mac.h

arphdr.cpp

@@ -0,0 +1 @@
+#include "arphdr.h"

arphdr.h

@@ -0,0 +1,59 @@
+#pragma once
+
+#include <cstdint>
+#include <arpa/inet.h>
+#include "mac.h"
+#include "ip.h"
+
+#pragma pack(push, 1)
+struct ArpHdr final {
+	uint16_t hrd_;
+	uint16_t pro_;
+	uint8_t hln_;
+	uint8_t pln_;
+	uint16_t op_;
+	Mac smac_;
+	Ip sip_;
+	Mac tmac_;
+	Ip tip_;
+
+	uint16_t hrd() { return ntohs(hrd_); }
+	uint16_t pro() { return ntohs(pro_); }
+	uint8_t hln() { return hln_;}
+	uint8_t pln() { return pln_;}
+	uint16_t op() { return ntohs(op_); }
+	Mac smac() { return smac_; }
+	Ip sip() { return ntohl(sip_); }
+	Mac tmac() { return tmac_; }
+	Ip tip() { return ntohl(tip_); }
+
+	// HardwareType(hrd_)
+	enum: uint16_t {
+		NETROM = 0, // from KA9Q: NET/ROM pseudo
+		ETHER = 1, // Ethernet 10Mbps
+		EETHER = 2, // Experimental Ethernet
+		AX25 = 3, // AX.25 Level 2
+		PRONET = 4, // PROnet token ring
+		CHAOS = 5, // Chaosnet
+		IEEE802 = 6, // IEEE 802.2 Ethernet/TR/TB
+		ARCNET = 7, // ARCnet
+		APPLETLK = 8, // APPLEtalk
+		LANSTAR = 9, // Lanstar
+		DLCI = 15, // Frame Relay DLCI
+		ATM = 19, // ATM
+		METRICOM = 23, // Metricom STRIP (new IANA id)
+		IPSEC = 31 // IPsec tunnel
+	};
+
+	// Operation(op_)
+	enum: uint16_t {
+		Request = 1, // req to resolve address
+		Reply = 2, // resp to previous request
+		RevRequest = 3, // req protocol address given hardware
+		RevReply = 4, // resp giving protocol address
+		InvRequest = 8, // req to identify peer
+		InvReply = 9 // resp identifying peer
+	};
+};
+typedef ArpHdr *PArpHdr;
+#pragma pack(pop)

deps.sh

@@ -0,0 +1,8 @@
+# g++
+sudo apt install g++
+
+# libpcap-dev
+sudo apt install libpcap-dev
+
+# google test
+sudo apt install libgtest-dev

ethhdr.cpp

@@ -0,0 +1 @@
+#include "ethhdr.h"

ethhdr.h

@@ -0,0 +1,24 @@
+#pragma once
+
+#include <arpa/inet.h>
+#include "mac.h"
+
+#pragma pack(push, 1)
+struct EthHdr final {
+	Mac dmac_;
+	Mac smac_;
+	uint16_t type_;
+
+	Mac dmac() { return dmac_; }
+	Mac smac() { return smac_; }
+	uint16_t type() { return ntohs(type_); }
+
+	// Type(type_)
+	enum: uint16_t {
+		Ip4 = 0x0800,
+		Arp = 0x0806,
+		Ip6 = 0x86DD
+	};
+};
+typedef EthHdr *PEthHdr;
+#pragma pack(pop)

ip.cpp

@@ -0,0 +1,48 @@
+#include "ip.h"
+#include <cstdio>
+
+Ip::Ip(const std::string r) {
+	unsigned int a, b, c, d;
+	int res = sscanf(r.c_str(), "%u.%u.%u.%u", &a, &b, &c, &d);
+	if (res != SIZE) {
+		fprintf(stderr, "Ip::Ip sscanf return %d r=%s\n", res, r.c_str());
+		return;
+	}
+	ip_ = (a << 24) | (b << 16) | (c << 8) | d;
+}
+
+Ip::operator std::string() const {
+	char buf[32]; // enough size
+	sprintf(buf, "%u.%u.%u.%u",
+		(ip_ & 0xFF000000) >> 24,
+		(ip_ & 0x00FF0000) >> 16,
+		(ip_ & 0x0000FF00) >> 8,
+		(ip_ & 0x000000FF));
+	return std::string(buf);
+}
+
+#ifdef GTEST
+#include <gtest/gtest.h>
+
+TEST(Ip, ctorTest) {
+	Ip ip1; // Ip()
+
+	Ip ip2(0x7F000001); // Ip(const uint32_t r)
+
+	Ip ip3("127.0.0.1"); // Ip(const std::string r);
+
+	EXPECT_EQ(ip2, ip3);
+}
+
+TEST(Ip, castingTest) {
+	Ip ip("127.0.0.1");
+
+	uint32_t ui = ip; // operator uint32_t() const
+	EXPECT_EQ(ui, 0x7F000001);
+
+	std::string s = std::string(ip); // explicit operator std::string()
+
+	EXPECT_EQ(s, "127.0.0.1");
+}
+
+#endif // GTEST

ip.h

@@ -0,0 +1,37 @@
+#pragma once
+
+#include <cstdint>
+#include <string>
+
+struct Ip final {
+	static const int SIZE = 4;
+
+	// constructor
+	Ip() {}
+	Ip(const uint32_t r) : ip_(r) {}
+	Ip(const std::string r);
+
+	// casting operator
+	operator uint32_t() const { return ip_; } // default
+	explicit operator std::string() const;
+
+	// comparison operator
+	bool operator == (const Ip& r) const { return ip_ == r.ip_; }
+
+	bool isLocalHost() const { // 127.*.*.*
+		uint8_t prefix = (ip_ & 0xFF000000) >> 24;
+		return prefix == 0x7F;
+	}
+
+	bool isBroadcast() const { // 255.255.255.255
+		return ip_ == 0xFFFFFFFF;
+	}
+
+	bool isMulticast() const { // 224.0.0.0 ~ 239.255.255.255
+		uint8_t prefix = (ip_ & 0xFF000000) >> 24;
+		return prefix >= 0xE0 && prefix < 0xF0;
+	}
+
+protected:
+	uint32_t ip_;
+};

mac.cpp

@@ -0,0 +1,114 @@
+#include "mac.h"
+
+Mac::Mac(const std::string& r) {
+	std::string s;
+	for(char ch: r) {
+		if ((ch >= '0' && ch <= '9') || (ch >= 'A' && ch <= 'F') || (ch >= 'a' && ch <= 'f'))
+			s += ch;
+	}
+	int res = sscanf(s.c_str(), "%02hhx%02hhx%02hhx%02hhx%02hhx%02hhx", &mac_[0], &mac_[1], &mac_[2], &mac_[3], &mac_[4], &mac_[5]);
+	if (res != SIZE) {
+		fprintf(stderr, "Mac::Mac sscanf return %d r=%s\n", res, r.c_str());
+		return;
+	}
+}
+
+Mac::operator std::string() const {
+	char buf[20]; // enough size
+	sprintf(buf, "%02x:%02X:%02X:%02X:%02X:%02X", mac_[0], mac_[1], mac_[2], mac_[3], mac_[4], mac_[5]);
+	return std::string(buf);
+}
+
+Mac Mac::randomMac() {
+	Mac res;
+	for (int i = 0; i < SIZE; i++)
+		res.mac_[i] = uint8_t(rand() % 256);
+	res.mac_[0] &= 0x7F;
+	return res;
+}
+
+Mac& Mac::nullMac() {
+	static uint8_t _value[] = { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 };
+	static Mac res(_value);
+	return res;
+}
+
+Mac& Mac::broadcastMac() {
+	static uint8_t _value[] = { 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF };
+	static Mac res(_value);
+	return res;
+}
+
+// ----------------------------------------------------------------------------
+// GTEST
+// ----------------------------------------------------------------------------
+#ifdef GTEST
+#include <gtest/gtest.h>
+
+static constexpr uint8_t _temp[] = {0x00, 0x11, 0x22, 0x33, 0x44, 0x55};
+
+TEST(Mac, ctorTest) {
+	Mac mac1; // ()
+
+	Mac mac2{mac1}; // (const Mac& r)
+
+	Mac mac3(_temp); // (const uint8_t* r)
+
+	Mac mac4(std::string("001122-334455")); // (const std::string& r)
+	EXPECT_EQ(mac3, mac4);
+
+	Mac mac5("001122-334455"); // (const std::string& r)
+	EXPECT_EQ(mac3, mac5);
+}
+
+TEST(Mac, castingTest) {
+	Mac mac("001122-334455");
+
+	const uint8_t* uc = (uint8_t*)mac; // operator uint8_t*()
+	uint8_t temp[Mac::SIZE];
+	for (int i = 0; i < Mac::SIZE; i++)
+		temp[i] = *uc++;
+	EXPECT_TRUE(memcmp(&mac, temp, 6) == 0);
+
+	std::string s2 = std::string(mac); // operator std::string()
+	EXPECT_EQ(s2, "00:11:22:33:44:55");
+}
+
+TEST(Mac, funcTest) {
+	Mac mac;
+
+	mac.clear();
+	EXPECT_TRUE(mac.isNull());
+
+	mac = std::string("FF:FF:FF:FF:FF:FF");
+	EXPECT_TRUE(mac.isBroadcast());
+
+	mac = std::string("01:00:5E:00:11:22");
+	EXPECT_TRUE(mac.isMulticast());
+}
+
+#include <map>
+TEST(Mac, mapTest) {
+	typedef std::map<Mac, int> MacMap;
+	MacMap m;
+	m.insert(std::make_pair(Mac("001122-334455"), 1));
+	m.insert(std::make_pair(Mac("001122-334456"), 2));
+	m.insert(std::make_pair(Mac("001122-334457"), 3));
+	EXPECT_EQ(m.size(), 3);
+	MacMap::iterator it = m.begin();
+	EXPECT_EQ(it->second, 1); it++;
+	EXPECT_EQ(it->second, 2); it++;
+	EXPECT_EQ(it->second, 3);
+}
+
+#include <unordered_map>
+TEST(Mac, unordered_mapTest) {
+	typedef std::unordered_map<Mac, int> MacUnorderedMap;
+	MacUnorderedMap m;
+	m.insert(std::make_pair(Mac("001122-334455"), 1));
+	m.insert(std::make_pair(Mac("001122-334456"), 2));
+	m.insert(std::make_pair(Mac("001122-334457"), 3));
+	//EXPECT_EQ(m.size(), 3);
+}
+
+#endif // GTEST