ownlan 0.3.0 → 0.3.2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 658740cd319738b37e958afd1eebeb078ce837b8
-  data.tar.gz: 19c72648c6c78002d5baa76b3e007490acf1eed4
+  metadata.gz: fa6b625171c578b995c39a2139166cfad3c32eec
+  data.tar.gz: d1a2ffd2c688404404d22fc59dc6c659c29ede4d
 SHA512:
-  metadata.gz: d160941ba71b2a09558ed126127ffa77e93244983633e9fd0071556fa0cb12dd7eaee9c8c6c7d871b1866ad53a8f72e56301be2665e17dfd2047eddcefac2cab
-  data.tar.gz: db524183b9da4cc8b9a0058643feeb8422bd668f5034e695c999bb5902be78c2ced117bbbcf1a5d4cf7ef1657779787f30afd96719e5e1d467af6c4a3751a60f
+  metadata.gz: a1fa861dd614a478adcaca2c329da24564d81461a38a5b2b833110c2eb8e8d8087d9514638d96f3e08ef1a67ee024ee8d3372e2c4fb9b42b251d7b5caeeb0e30
+  data.tar.gz: 67c6bb75c988a9cf79a7c3ebd511819f65d00ac3c896fa247a3cc105b209c93f3b6b386ad267ff9a4b22e44e468dcd4d50c9822aeb3a59a72b35a4734f537b19

data/Gemfile.lock

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    ownlan (0.3.0)
+    ownlan (0.3.2)
       activesupport
       packetfu
       trollop
@@ -9,7 +9,7 @@ PATH
 GEM
   remote: https://rubygems.org/
   specs:
-    activesupport (4.2.3)
+    activesupport (4.2.4)
       i18n (~> 0.7)
       json (~> 1.7, >= 1.7.7)
       minitest (~> 5.1)

data/README.md

@@ -1,59 +1,139 @@
-# OwnLan
+# Ownlan
 
-**Ownlan** aims to be a simple, concise and useful pentesting LAN poisoning suite, Written in ``Ruby`` and using ``PacketFU`` for reading and sending the packets on the wire. I decided to make this suite of tools mainly due do to the lack of existing tools on Linux, on top of helping me understanding the whole process behind the scene. OwnLan got uniques features, with some exclusives and excitings attacks probably never ever used on a (pentesting) network.
+__Ownlan__ aims to be a simple, concise and useful pentesting LAN poisoning suite, Written in ``Ruby`` and using ``PacketFU`` for reading and sending the packets off the wire. I decided to make this suite of tools mainly due do to the lack of existing tools on Linux, on top of helping me understanding the whole process behind the scene. OwnLan got uniques features, with some exclusives and excitings attacks probably never ever used on a (pentesting) network.
 
+## Installation
+
+Add this line to your application's Gemfile:
+
+```ruby
+gem 'ownlan'
+```
+
+And then execute:
+
+    $ bundle
+
+Or install it yourself as:
+
+    $ gem install ownaln
+
+And require it in your application:
+
+    irb(main):001:0> require 'ownlan'
+    => true
+
+
+## Usage
+
+Please look at the [cli section](#command-line-interface) for advanced option.
+
+### Configuration ###
+You can pass multiple variables that will be used in the gem.
+
+```ruby
+Ownlan.configure do |config|
+      config.attack      = 'ntoa'
+      config.victim_ip   = '192.168.0.1'
+      config.delay       = 1.5
+      config.random_mac  = true
+      config.interface   = 'eth0'
+end
+```
+
+You can also pass any of those options inline when loading an instance of Ownlan.
+
+```rubypro
+Ownlan.new(attack: 'ntoa', victim_ip: '192.168.0.1', delay: 1.5, random_mac: true).call
+```
 ## Features
 
 **OwnLan** has four features:
 
 1. Disconnect one or several users off the wire
-2. Protecting users from these kind of attacks
-3. Sending ARP + DHCP packets easily (manual way)
-4. Easy ARP packets capture
+2. Protecting users from these kind of attacks *[Not Implemented]*
+3. Sending custom ARP + DHCP packets easily *[Not Implemented]*
+4. Easy ARP packets capture *[Not Implemented]*
 
 ### Disconnecting users off the wire
 
 The biggest part of **OwnLan**. It disconnects clients thanks to severals techniques:
 
 - Client side ARP Cache Poisoning (**first duplex**). *The most used and common attack nowadays, the main purpose is to make a MITM attack, but alone (= without IP forwarding), it will disconnect the client. Used by ``TuxCut`` and ``Arpspoof`` . If no MAC Adress is given, yours will be given.*
+
 - Gateway side ARP Cache Poisoning (**second duplex**). *A less known attack and powerful one, used by ``NetCut`` , the principle is to give the gateway a fake correspondancy of the victim MAC Adress to make the later one unreachable. If no MAC Adress is given, yours will be given.*
+
 - Neighbour Table Overflow attack. *I invented this attack, not to be modest. In fact, I should say 'implemented' since, usually, it is the gateway which is attacked (even so, this one attack is very rare), here, we attack the client directly. I don't think anyone has ever thought of this... and it works! The **NTOA** will not insert random MAC adress, but following a scheme, to ensure that 2 same mac adress won't be injected. So, it makes the attack faster. One client or all clients can be specified.*
+
 - Gateway ARP Cache Overflow. *This attack will render the GateWay ARP Cache unusable, and will make a loss of connectivity to all the clients. Some CISCO routers are immuned to this attack though*
+
 - DHCP Lease Spoofing [Not Implemented]. *This attack will spoof DHCP lease (udp) packet by telling the DHCP server 'Hello, I don't use this IP anymore, just disconnect me' . As of today, this attack is extremly rare, difficult to make, and used only by ``Yersinia`` . There is nothing to prevent this attack, after it has been used. Really.
 
-### Protecting [Not implemented]
 
-#### Prevention
+### Command Line Interface
+
+You can also use the provided executable. Simple launch it in accordance to the following scheme:
+
+    ownlan --[options] [sub-options] --[other-option]
+
+ 
+- Where [options] are either:
+ 
+
+        -a, --attack=<s>           Set an attack on a device on the network
+        -p, --protect=<s>          Protect a device from lan attacks
+        -b, --broadcast=<s>        Inject ARP crafted packets in the wire
+        -c, --capture=<s>          Sniffing ARP packets on the network
+
+
+-  where [sub-options] are either:
 
-- A mix between arptables and iptables to become invisible in the network is a good fix to prevent ALL of the attacks. Please note that it is a prevention measure, and not a fix.
+        client              Set a First-Duplex disconnection attack (the client is targeted). If no source mac argument, yours will be given (useful for MITM Attacks).
+                          * Required options: victim_ip
+        gateway             Set a Second-Duplex disconnection attack (the gateway is targeted). If no source mac argument, yours will be given (useful for MITM Attacks).
+                          * Required options: victim_ip
+        ntoa                The client is targeted to get disconnected, using a neighbour table overflow attack. Requires a victim ip.
+                          * Required options: victim_ip
+                          * Falcultative options: random_source_mac
+        fake-ip-conflict    Generate a fake ip conflict to the victim. Can be used along all the others attacks, or alone.
+                          * Required options: victim_ip
 
-#### Counter-Measure
+        stealth             Becomes invisible from network scanners, preventing you from getting targeted.
+        static              Set a static ARP Cache for the current session. Good against first-duplex ARP Cache Poisoning.
+        freeze              Reset and Freeze your ARP Cache. Good against NTOAs.
+        resynchronize       Resynchronize the Gateway ARP Cache by sending to it continuous healthy correspondancies packets to protect someone or yourself from gateway
+        attack. (reveive IP or MAC argument)
 
-- Against a client side arp cache poisoning, OwnLan will set a static ARP Cache.
-- Against a client side or gateway side arp cache poisoning, Ownlan can send continuous fix packet to recreate the right correspondancy. It can be used for fixing other clients in the network.
-- Against a NTOA, Ownlan will delete all the cache, will set a static ARP cache on top of freezing the whole thing.
 
-### Sending Raw Packet [Not implemented]
+- Where  [Other Options] can be:
 
-#### ARP
+        -d, --delay=<f>            Set the time lapse delay between each packet (default: 0.5)
+        -i, --interface=<s>        Set the network interface which will be used (default: wlan0)
+        -r, --random-source-mac    If setted, the used origin addresses will be randomly generated. If not specified, the mac of your given interface will be used.
+        -v, --version              Print version and exit
+        -h, --help                 Show this message
 
-    ownlan -sm [source-mac] -dm [destination-mac] -sip [source-ip] -dip [destination-ip] -op [1/2]
 
-OP is the opcode: 1 for ARP Request, 2 for ARP Reply
 
-#### DHCP (udp) [Not Implemented]
+## Versioning
 
-## Notes
+__Ownlan__ follows [Semantic Versioning 2.0](http://semver.org/).
 
-- If you put the -ic to option, you will generate a fake IP Conflict to lure the client to the wrong way of handling his connection loss
+## Contributing
 
-- The handy thing in this tools, is that thanks to all these options, you will literally be able to do whatever ARP Cache poisonning attack you wish to make. For instance, if you want to make a Full Duplex attack, use the first and second duplex attack as specified above.
+1. Fork it ( https://github.com/shideneyu/ownlan/fork )
+2. Create your feature branch (`git checkout -b my-new-feature`)
+3. Commit your changes (`git commit -am 'Add some feature'`)
+4. Push to the branch (`git push origin my-new-feature`)
+5. Create a new Pull Request
 
-- OwnLan is way faster than ``arpspoof``, and can make 1000 times more requests per seconds than it. You can specify the delay between each request by specifying whatever attack you do : '-d [integer]' . Replace [integer] by some number in miliseconds.
+# Contact
 
-## Exemples
+Any question ? Feel free to contact me at `contact(at)sidney.email` .
+Any Issue ? Open a [ticket](https://github.com/shideneyu/ownlan/issues) !
 
-[To do]
+## License
 
+Copyright (c) 2016 Sidney Sissaoui
 
-Copyright (c) 2016 Sidney Sissaoui, released under the MIT license
+Released under the MIT license. See [LICENSE.md](https://github.com/shideneyu/ownlan/blob/master/LICENSE.md) for more details.

data/lib/ownlan/cli.rb

@@ -30,14 +30,14 @@ where [sub-options] are either:
 
 Attacks sub-options   :
   client              Set a First-Duplex disconnection attack (the client is targeted). If no source mac argument, yours will be given (useful for MITM Attacks).
-                      * Require options: victim_ip
+                      * Required options: victim_ip
   gateway             Set a Second-Duplex disconnection attack (the gateway is targeted). If no source mac argument, yours will be given (useful for MITM Attacks).
-                      * Require options: victim_ip
+                      * Required options: victim_ip
   ntoa                The client is targeted to get disconnected, using a neighbour table overflow attack. Requires a victim ip.
-                      * Require options:      victim_ip
+                      * Required options: victim_ip
                       * Falcultative options: random_source_mac
   fake-ip-conflict    Generate a fake ip conflict to the victim. Can be used along all the others attacks, or alone.
-                      * Require options: victim_ip
+                      * Required options: victim_ip
   EOS
 
 
@@ -73,7 +73,7 @@ Other Options:
 
   opt :delay,              "Set the time lapse delay between each packet", default: 0.5
   opt :interface,          "Set the network interface which will be used", short: 'i', default: 'wlan0'
-  opt :random_source_mac,  "If setted, the used origin addresses will be randomly generated. If not specified, the corresponding mac of your given interface will be used #{mac=ServiceObjects::NetworkInformation.self_mac('wlan0') ; ', in your case ' + mac + ' for wlan0' if !mac.empty?}"
+  opt :random_source_mac,  "If setted, the used origin addresses will be randomly generated. If not specified, the mac of your given interface will be used #{mac=ServiceObjects::NetworkInformation.self_mac('wlan0') ; ', in your case ' + mac + ' for wlan0' if !mac.empty?}"
   opt :victim_ip,          "Set the ip of the target ip address.", short: 't', type: :string
   opt :source_mac,         "Set the mac of the source mac address.", short: 's', type: :string
 

data/lib/ownlan/config.rb

@@ -32,6 +32,7 @@ module Ownlan
       @modes     = { attack: attack_sub_modes, protect: protect_sub_modes, manual: manual_sub_modes }
       @interface = 'wlan0'
       @delay     = 0.5
+      @victim_ip = '192.168.0.1'
     end
 
     private

data/lib/ownlan/version.rb

@@ -1,3 +1,3 @@
 module Ownlan
-  VERSION = "0.3.0"
+  VERSION = "0.3.2"
 end

data/ownlan.gemspec

@@ -12,7 +12,7 @@ Gem::Specification.new do |spec|
   spec.description           = 'Ownlan is used to test a network against MITM attacks, and then to secure it.'
   spec.homepage              = 'https://github.com/shideneyu/ownlan'
   spec.license               = 'MIT'
-  spec.required_ruby_version = '~> 2.1.2'
+  spec.required_ruby_version = '>= 1.9.3'
 
   # Prevent pushing this gem to RubyGems.org by setting 'allowed_push_host', or
   # delete this section to allow pushing this gem to any host.

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: ownlan
 version: !ruby/object:Gem::Version
-  version: 0.3.0
+  version: 0.3.2
 platform: ruby
 authors:
 - sidney
@@ -121,7 +121,7 @@ files:
 - ".travis.yml"
 - Gemfile
 - Gemfile.lock
-- MIT-LICENSE.txt
+- LICENSE.md
 - README.md
 - Rakefile
 - bin/ownlan
@@ -149,6 +149,7 @@ files:
 - ownlan.gemspec
 - pkg/ownlan-0.1.0.gem
 - pkg/ownlan-0.3.0.gem
+- pkg/ownlan-0.3.1.gem
 homepage: https://github.com/shideneyu/ownlan
 licenses:
 - MIT
@@ -160,9 +161,9 @@ require_paths:
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
-  - - "~>"
+  - - ">="
     - !ruby/object:Gem::Version
-      version: 2.1.2
+      version: 1.9.3
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="