AttackParameters.py 4.7 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687
  1. import enum
  2. class Parameter(enum.Enum):
  3. """
  4. Defines the shortname for attack parameters. The shortname may be used for attack parameter specification
  5. when calling Core via the command line.
  6. """
  7. # recommended type: IP address -------------------------------
  8. IP_SOURCE = 'ip.src' # source IP address
  9. IP_DESTINATION = 'ip.dst' # destination IP address
  10. IP_DNS = 'ip.dns' # IP address of DNS server
  11. HOSTING_IP = 'hosting.ip'
  12. IP_VICTIM = 'ip.victim'
  13. # recommended type: MAC address ------------------------------
  14. MAC_SOURCE = 'mac.src' # MAC address of source
  15. MAC_DESTINATION = 'mac.dst' # MAC address of destination
  16. # recommended type: Port -------------------------------------
  17. PORT_OPEN = 'port.open' # open ports
  18. PORT_DESTINATION = 'port.dst' # destination ports
  19. PORT_SOURCE = 'port.src' # source ports
  20. # recommended type: Integer positive -------------------------
  21. PACKETS_LIMIT = 'packets.limit'
  22. NUMBER_ATTACKERS = 'attackers.count'
  23. ATTACK_DURATION = 'attack.duration' # in seconds
  24. VICTIM_BUFFER = 'victim.buffer' # in packets
  25. TARGET_URI = 'target.uri'
  26. NUMBER_INITIATOR_BOTS = 'bots.count'
  27. INTERVAL_SELECT_START = 'interval.selection.start'
  28. INTERVAL_SELECT_END = 'interval.selection.end'
  29. # recommended type: domain -----------------------------------
  30. TARGET_HOST = 'target.host'
  31. # recommended type: Float ------------------------------------
  32. PACKETS_PER_SECOND = 'packets.per-second' # packets per second
  33. INJECT_AT_TIMESTAMP = 'inject.at-timestamp' # unix epoch time (seconds.millis) where attack should be injected
  34. # recommended type: Packet Position ----------------------------------
  35. INJECT_AFTER_PACKET = 'inject.after-pkt' # packet after which attack should be injected
  36. # recommended type: boolean --------------------------------
  37. PORT_DEST_SHUFFLE = 'port.dst.shuffle' # shuffles the destination ports if a list of ports is given
  38. PORT_DEST_ORDER_DESC = 'port.dst.order-desc' # uses a descending port order instead of a ascending order
  39. IP_SOURCE_RANDOMIZE = 'ip.src.shuffle' # randomizes the sources IP address if a list of IP addresses is given
  40. PORT_SOURCE_RANDOMIZE = 'port.src.shuffle' # randomizes the source port if a list of sources ports is given
  41. NAT_PRESENT = 'nat.present' # if NAT is active, external computers cannot initiate a communication in MembersMgmtCommAttack
  42. TTL_FROM_CAIDA = 'ttl.from.caida' # if True, TTLs are assigned based on the TTL distributions from the CAIDA dataset
  43. MULTIPORT = "multiport" # select destination port as an ephemeral port if True, calculate the destination port based on the hostname, otherwise
  44. HIDDEN_MARK = "hidden_mark" # indicating if the attack will mark generated packets
  45. # recommended type: Filepath ------------------------------------
  46. FILE_CSV = 'file.csv' # filepath to CSV containing a communication pattern
  47. FILE_XML = 'file.xml' # filepath to XML containing a communication pattern
  48. # recommended type: CommType ------------------------------------
  49. COMM_TYPE = "comm.type" # the locality of bots in botnet communication (e.g. local, external, mixed)
  50. # recommended type: Percentage (0.0-1.0) ------------------------------------
  51. IP_REUSE_TOTAL = 'ip.reuse.total' # percentage of IPs in original PCAP to be reused
  52. IP_REUSE_LOCAL = 'ip.reuse.local' # percentage of private IPs in original PCAP to be reused
  53. IP_REUSE_EXTERNAL = 'ip.reuse.external' # percentage of public IPs in original PCAP to be reused
  54. # recommended type: Positive Integer between 0 and 100 ------------------------------------
  55. PACKET_PADDING = 'packet.padding'
  56. #recommended type: interval selection strategy, i.e. 'random', 'optimal' or 'custom' ------------------------------------
  57. INTERVAL_SELECT_STRATEGY = 'interval.selection.strategy'
  58. PROTOCOL_VERSION = 'protocol.version'
  59. HOSTING_VERSION = 'hosting.version'
  60. SOURCE_PLATFORM = 'src.platform'
  61. CUSTOM_PAYLOAD = 'custom.payload' # custom payload for ftp exploits
  62. CUSTOM_PAYLOAD_FILE = 'custom.payload.file' # file that contains custom payload for ftp exploits
  63. class ParameterTypes(enum.Enum):
  64. """
  65. Defines types for parameters. These types may be used in the specification of allowed parameters within the
  66. individual attack classes. The type is used to verify the validity of the given value.
  67. """
  68. TYPE_IP_ADDRESS = 0
  69. TYPE_MAC_ADDRESS = 1
  70. TYPE_PORT = 2
  71. TYPE_INTEGER_POSITIVE = 3
  72. TYPE_TIMESTAMP = 4
  73. TYPE_BOOLEAN = 5
  74. TYPE_FLOAT = 6
  75. TYPE_PACKET_POSITION = 7 # used to derive timestamp from parameter INJECT_AFTER_PACKET
  76. TYPE_DOMAIN = 8
  77. TYPE_STRING = 9
  78. TYPE_FILEPATH = 10
  79. TYPE_PERCENTAGE = 11
  80. TYPE_PADDING = 12
  81. TYPE_INTERVAL_SELECT_STRAT = 13