Home Explore Help
Sign In
SPIN
/
ID2T-toolkit
6
5
Fork 2
Files Issues 20 Pull Requests 0 Wiki
Browse Source

refactor imports in Attack/SMBLorisAttack.py

refactor whitspaces in Attack/SMBLorisAttack.py
deep refactoring Attack/SMBLorisAttack.py
Jens Keim 6 years ago
parent
534b994f74
commit
38464da818
1 changed files with 64 additions and 64 deletions
Split View Show Diff Stats
  1. 64 64
      code/Attack/SMBLorisAttack.py

+ 64 - 64
code/Attack/SMBLorisAttack.py
View File 

@@ -1,26 +1,23 @@
 
 import logging
 
+import random as rnd
 
 
-import random
 
-from lea import Lea
 
-from scapy.layers.inet import IP, Ether, TCP
 
+import scapy.layers.inet as inet
 
 from scapy.layers.netbios import NBTSession
 
 
-from Attack import BaseAttack
 
-from Attack.AttackParameters import Parameter as Param
 
-from Attack.AttackParameters import ParameterTypes
 
-from ID2TLib.Utility import update_timestamp, handle_most_used_outputs
 
-from ID2TLib.SMBLib import smb_port
 
+import Attack.AttackParameters as atkParam
 
+import Attack.BaseAttack as BaseAttack
 
+import ID2TLib.SMBLib as SMBLib
 
+import ID2TLib.Utility as Util
 
 
 logging.getLogger("scapy.runtime").setLevel(logging.ERROR)
 
+
 
 # noinspection PyPep8
 
 
 
 class SMBLorisAttack(BaseAttack.BaseAttack):
 
-
 
     def __init__(self):
 
         """
 
         Creates a new instance of the SMBLorisAttack.
 
-
 
         """
 
         # Initialize attack
 
         super(SMBLorisAttack, self).__init__("SMBLoris Attack", "Injects an SMBLoris (D)DoS Attack",
 
@@ -28,15 +25,15 @@ class SMBLorisAttack(BaseAttack.BaseAttack):
 
 
         # Define allowed parameters and their type
 
         self.supported_params.update({
 
-            Param.IP_SOURCE: ParameterTypes.TYPE_IP_ADDRESS,
 
-            Param.IP_DESTINATION: ParameterTypes.TYPE_IP_ADDRESS,
 
-            Param.MAC_SOURCE: ParameterTypes.TYPE_MAC_ADDRESS,
 
-            Param.MAC_DESTINATION: ParameterTypes.TYPE_MAC_ADDRESS,
 
-            Param.INJECT_AT_TIMESTAMP: ParameterTypes.TYPE_FLOAT,
 
-            Param.INJECT_AFTER_PACKET: ParameterTypes.TYPE_PACKET_POSITION,
 
-            Param.PACKETS_PER_SECOND: ParameterTypes.TYPE_FLOAT,
 
-            Param.ATTACK_DURATION: ParameterTypes.TYPE_INTEGER_POSITIVE,
 
-            Param.NUMBER_ATTACKERS: ParameterTypes.TYPE_INTEGER_POSITIVE
 
+            atkParam.Parameter.IP_SOURCE: atkParam.ParameterTypes.TYPE_IP_ADDRESS,
 
+            atkParam.Parameter.IP_DESTINATION: atkParam.ParameterTypes.TYPE_IP_ADDRESS,
 
+            atkParam.Parameter.MAC_SOURCE: atkParam.ParameterTypes.TYPE_MAC_ADDRESS,
 
+            atkParam.Parameter.MAC_DESTINATION: atkParam.ParameterTypes.TYPE_MAC_ADDRESS,
 
+            atkParam.Parameter.INJECT_AT_TIMESTAMP: atkParam.ParameterTypes.TYPE_FLOAT,
 
+            atkParam.Parameter.INJECT_AFTER_PACKET: atkParam.ParameterTypes.TYPE_PACKET_POSITION,
 
+            atkParam.Parameter.PACKETS_PER_SECOND: atkParam.ParameterTypes.TYPE_FLOAT,
 
+            atkParam.Parameter.ATTACK_DURATION: atkParam.ParameterTypes.TYPE_INTEGER_POSITIVE,
 
+            atkParam.Parameter.NUMBER_ATTACKERS: atkParam.ParameterTypes.TYPE_INTEGER_POSITIVE
 
         })
 
 
     def init_params(self):
 
@@ -51,55 +48,56 @@ class SMBLorisAttack(BaseAttack.BaseAttack):
 
         most_used_ip_address = self.statistics.get_most_used_ip_address()
 
 
         # The most used IP class in background traffic
 
-        most_used_ip_class = handle_most_used_outputs(self.statistics.process_db_query("most_used(ipClass)"))
 
-        num_attackers = random.randint(1, 16)
 
+        most_used_ip_class = Util.handle_most_used_outputs(self.statistics.process_db_query("most_used(ipClass)"))
 
+        num_attackers = rnd.randint(1, 16)
 
         source_ip = self.generate_random_ipv4_address(most_used_ip_class, num_attackers)
 
 
-        self.add_param_value(Param.IP_SOURCE, source_ip)
 
-        self.add_param_value(Param.MAC_SOURCE, self.generate_random_mac_address(num_attackers))
 
+        self.add_param_value(atkParam.Parameter.IP_SOURCE, source_ip)
 
+        self.add_param_value(atkParam.Parameter.MAC_SOURCE, self.generate_random_mac_address(num_attackers))
 
 
         random_ip_address = self.statistics.get_random_ip_address()
 
         # ip-dst should be valid and not equal to ip.src
 
         while not self.is_valid_ip_address(random_ip_address) or random_ip_address == source_ip:
 
             random_ip_address = self.statistics.get_random_ip_address()
 
 
-        self.add_param_value(Param.IP_DESTINATION, random_ip_address)
 
+        self.add_param_value(atkParam.Parameter.IP_DESTINATION, random_ip_address)
 
         destination_mac = self.statistics.get_mac_address(random_ip_address)
 
         if isinstance(destination_mac, list) and len(destination_mac) == 0:
 
             destination_mac = self.generate_random_mac_address()
 
-        self.add_param_value(Param.MAC_DESTINATION, destination_mac)
 
-        self.add_param_value(Param.PACKETS_PER_SECOND,
 
+        self.add_param_value(atkParam.Parameter.MAC_DESTINATION, destination_mac)
 
+        self.add_param_value(atkParam.Parameter.PACKETS_PER_SECOND,
 
                              (self.statistics.get_pps_sent(most_used_ip_address) +
 
                               self.statistics.get_pps_received(most_used_ip_address)) / 2)
 
-        self.add_param_value(Param.INJECT_AFTER_PACKET, random.randint(0, self.statistics.get_packet_count()))
 
-        self.add_param_value(Param.ATTACK_DURATION, 30)
 
+        self.add_param_value(atkParam.Parameter.INJECT_AFTER_PACKET, rnd.randint(0, self.statistics.get_packet_count()))
 
+        self.add_param_value(atkParam.Parameter.ATTACK_DURATION, 30)
 
 
     def generate_attack_packets(self):
 
-        pps = self.get_param_value(Param.PACKETS_PER_SECOND)
 
+        pps = self.get_param_value(atkParam.Parameter.PACKETS_PER_SECOND)
 
 
         # Timestamp
 
-        first_timestamp = self.get_param_value(Param.INJECT_AT_TIMESTAMP)
 
+        first_timestamp = self.get_param_value(atkParam.Parameter.INJECT_AT_TIMESTAMP)
 
         # store start time of attack
 
         self.attack_start_utime = first_timestamp
 
 
         # Initialize parameters
 
         self.packets = []
 
-        ip_destination = self.get_param_value(Param.IP_DESTINATION)
 
-        mac_destination = self.get_param_value(Param.MAC_DESTINATION)
 
+        ip_destination = self.get_param_value(atkParam.Parameter.IP_DESTINATION)
 
+        mac_destination = self.get_param_value(atkParam.Parameter.MAC_DESTINATION)
 
 
         # Determine source IP and MAC address
 
-        num_attackers = self.get_param_value(Param.NUMBER_ATTACKERS)
 
-        if (num_attackers is not None) and (num_attackers is not 0):  # user supplied Param.NUMBER_ATTACKERS
 
+        num_attackers = self.get_param_value(atkParam.Parameter.NUMBER_ATTACKERS)
 
+        # user supplied atkParam.Parameter.NUMBER_ATTACKERS
 
+        if (num_attackers is not None) and (num_attackers is not 0):
 
             # The most used IP class in background traffic
 
-            most_used_ip_class = handle_most_used_outputs(self.statistics.process_db_query("most_used(ipClass)"))
 
-            # Create random attackers based on user input Param.NUMBER_ATTACKERS
 
+            most_used_ip_class = Util.handle_most_used_outputs(self.statistics.process_db_query("most_used(ipClass)"))
 
+            # Create random attackers based on user input atkParam.Parameter.NUMBER_ATTACKERS
 
             ip_source = self.generate_random_ipv4_address(most_used_ip_class, num_attackers)
 
             mac_source = self.generate_random_mac_address(num_attackers)
 
-        else:  # user did not supply Param.NUMBER_ATTACKS
 
+        else:  # user did not supply atkParam.Parameter.NUMBER_ATTACKS
 
             # use default values for IP_SOURCE/MAC_SOURCE or overwritten values
 
             # if user supplied any values for those params
 
-            ip_source = self.get_param_value(Param.IP_SOURCE)
 
-            mac_source = self.get_param_value(Param.MAC_SOURCE)
 
+            ip_source = self.get_param_value(atkParam.Parameter.IP_SOURCE)
 
+            mac_source = self.get_param_value(atkParam.Parameter.MAC_SOURCE)
 
 
         ip_source_list = []
 
         mac_source_list = []
 
@@ -123,24 +121,24 @@ class SMBLorisAttack(BaseAttack.BaseAttack):
 
         # Get MSS, TTL and Window size value for destination IP
 
         destination_mss_value, destination_ttl_value, destination_win_value = self.get_ip_data(ip_destination)
 
 
-        minDelay,maxDelay = self.get_reply_delay(ip_destination)
 
+        min_delay, max_delay = self.get_reply_delay(ip_destination)
 
 
-        attack_duration = self.get_param_value(Param.ATTACK_DURATION)
 
+        attack_duration = self.get_param_value(atkParam.Parameter.ATTACK_DURATION)
 
         attack_ends_time = first_timestamp + attack_duration
 
 
-        victim_pps = pps*num_attackers
 
+        victim_pps = pps * num_attackers
 
 
         for attacker in range(num_attackers):
 
             # Get MSS, TTL and Window size value for source IP(attacker)
 
             source_mss_value, source_ttl_value, source_win_value = self.get_ip_data(ip_source_list[attacker])
 
 
-            attacker_seq = random.randint(1000, 50000)
 
-            victim_seq = random.randint(1000, 50000)
 
+            attacker_seq = rnd.randint(1000, 50000)
 
+            victim_seq = rnd.randint(1000, 50000)
 
 
             sport = 1025
 
 
             # Timestamps of first self.packets shouldn't be exactly the same to look more realistic
 
-            timestamp_next_pkt = random.uniform(first_timestamp, update_timestamp(first_timestamp, pps))
 
+            timestamp_next_pkt = rnd.uniform(first_timestamp, Util.update_timestamp(first_timestamp, pps))
 
 
             while timestamp_next_pkt <= attack_ends_time:
 
                 # Establish TCP connection
 
@@ -148,54 +146,56 @@ class SMBLorisAttack(BaseAttack.BaseAttack):
 
                     sport = 1025
 
 
                 # prepare reusable Ethernet- and IP-headers
 
-                attacker_ether = Ether(src=mac_source_list[attacker], dst=mac_destination)
 
-                attacker_ip = IP(src=ip_source_list[attacker], dst=ip_destination, ttl=source_ttl_value, flags='DF')
 
-                victim_ether = Ether(src=mac_destination, dst=mac_source_list[attacker])
 
-                victim_ip = IP(src=ip_destination, dst=ip_source_list[attacker], ttl=destination_ttl_value, flags='DF')
 
+                attacker_ether = inet.Ether(src=mac_source_list[attacker], dst=mac_destination)
 
+                attacker_ip = inet.IP(src=ip_source_list[attacker], dst=ip_destination, ttl=source_ttl_value,
 
+                                      flags='DF')
 
+                victim_ether = inet.Ether(src=mac_destination, dst=mac_source_list[attacker])
 
+                victim_ip = inet.IP(src=ip_destination, dst=ip_source_list[attacker], ttl=destination_ttl_value,
 
+                                    flags='DF')
 
 
                 # connection request from attacker (client)
 
-                syn_tcp = TCP(sport=sport, dport=smb_port, window=source_win_value, flags='S',
 
-                              seq=attacker_seq, options=[('MSS', source_mss_value)])
 
+                syn_tcp = inet.TCP(sport=sport, dport=SMBLib.smb_port, window=source_win_value, flags='S',
 
+                                   seq=attacker_seq, options=[('MSS', source_mss_value)])
 
                 attacker_seq += 1
 
                 syn = (attacker_ether / attacker_ip / syn_tcp)
 
                 syn.time = timestamp_next_pkt
 
-                timestamp_next_pkt = update_timestamp(timestamp_next_pkt, victim_pps, minDelay)
 
+                timestamp_next_pkt = Util.update_timestamp(timestamp_next_pkt, victim_pps, min_delay)
 
                 self.packets.append(syn)
 
 
                 # response from victim (server)
 
-                synack_tcp = TCP(sport=smb_port, dport=sport, seq=victim_seq, ack=attacker_seq, flags='SA',
 
-                                 window=destination_win_value, options=[('MSS', destination_mss_value)])
 
+                synack_tcp = inet.TCP(sport=SMBLib.smb_port, dport=sport, seq=victim_seq, ack=attacker_seq, flags='SA',
 
+                                      window=destination_win_value, options=[('MSS', destination_mss_value)])
 
                 victim_seq += 1
 
                 synack = (victim_ether / victim_ip / synack_tcp)
 
                 synack.time = timestamp_next_pkt
 
-                timestamp_next_pkt = update_timestamp(timestamp_next_pkt, pps, minDelay)
 
+                timestamp_next_pkt = Util.update_timestamp(timestamp_next_pkt, pps, min_delay)
 
                 self.packets.append(synack)
 
 
                 # acknowledgement from attacker (client)
 
-                ack_tcp = TCP(sport=sport, dport=smb_port, seq=attacker_seq, ack=victim_seq, flags='A',
 
-                              window=source_win_value, options=[('MSS', source_mss_value)])
 
+                ack_tcp = inet.TCP(sport=sport, dport=SMBLib.smb_port, seq=attacker_seq, ack=victim_seq, flags='A',
 
+                                   window=source_win_value, options=[('MSS', source_mss_value)])
 
                 ack = (attacker_ether / attacker_ip / ack_tcp)
 
                 ack.time = timestamp_next_pkt
 
-                timestamp_next_pkt = update_timestamp(timestamp_next_pkt, pps)
 
+                timestamp_next_pkt = Util.update_timestamp(timestamp_next_pkt, pps)
 
                 self.packets.append(ack)
 
 
                 # send NBT session header paket with maximum LENGTH-field
 
-                req_tcp = TCP(sport=sport, dport=smb_port, seq=attacker_seq, ack=victim_seq, flags='AP',
 
-                              window=source_win_value, options=[('MSS', source_mss_value)])
 
+                req_tcp = inet.TCP(sport=sport, dport=SMBLib.smb_port, seq=attacker_seq, ack=victim_seq, flags='AP',
 
+                                   window=source_win_value, options=[('MSS', source_mss_value)])
 
                 req_payload = NBTSession(TYPE=0x00, LENGTH=0x1FFFF)
 
 
                 attacker_seq += len(req_payload)
 
                 req = (attacker_ether / attacker_ip / req_tcp / req_payload)
 
                 req.time = timestamp_next_pkt
 
-                timestamp_next_pkt = update_timestamp(timestamp_next_pkt, victim_pps, minDelay)
 
+                timestamp_next_pkt = Util.update_timestamp(timestamp_next_pkt, victim_pps, min_delay)
 
                 self.packets.append(req)
 
 
                 # final ack from victim (server)
 
-                last_ack_tcp = TCP(sport=smb_port, dport=sport, seq=victim_seq, ack=attacker_seq, flags='A',
 
-                                   window=destination_win_value, options=[('MSS', destination_mss_value)])
 
+                last_ack_tcp = inet.TCP(sport=SMBLib.smb_port, dport=sport, seq=victim_seq, ack=attacker_seq, flags='A',
 
+                                        window=destination_win_value, options=[('MSS', destination_mss_value)])
 
                 last_ack = (victim_ether / victim_ip / last_ack_tcp)
 
                 last_ack.time = timestamp_next_pkt
 
-                timestamp_next_pkt = update_timestamp(timestamp_next_pkt, pps, minDelay)
 
+                timestamp_next_pkt = Util.update_timestamp(timestamp_next_pkt, pps, min_delay)
 
                 self.packets.append(last_ack)
 
 
                 sport += 1