|
@@ -12,7 +12,20 @@ class MessageType(Enum):
|
|
|
SALITY_HELLO_REPLY = 104
|
|
|
|
|
|
class Message():
|
|
|
- def __init__(self, msg_id: int, src: str, dst: str, type_: MessageType, time: float, refer_msg_id: int=-1):
|
|
|
+ """
|
|
|
+ Defines a compact message type that contains all necessary information.
|
|
|
+ """
|
|
|
+ def __init__(self, msg_id: int, src, dst, type_: MessageType, time: float, refer_msg_id: int=-1):
|
|
|
+ """
|
|
|
+ Constructs a message with the given parameters.
|
|
|
+
|
|
|
+ :param msg_id: the ID of the message
|
|
|
+ :param src: something identifiying the source, e.g. ID or configuration
|
|
|
+ :param dst: something identifiying the destination, e.g. ID or configuration
|
|
|
+ :param type_: the type of the message
|
|
|
+ :param time: the timestamp of the message
|
|
|
+ :param refer_msg_id: the ID this message is a request for or reply to. -1 if there is no related message.
|
|
|
+ """
|
|
|
self.msg_id = msg_id
|
|
|
self.src = src
|
|
|
self.dst = dst
|
|
@@ -124,15 +137,110 @@ class MembersMgmtCommAttack(BaseAttack.BaseAttack):
|
|
|
|
|
|
|
|
|
def generate_attack_pcap(self):
|
|
|
- def add_ids_to_config(ids_to_add, existing_ips, new_ips, bot_configs, idtype="local", router_mac=""):
|
|
|
+
|
|
|
+ messages = self._create_messages()
|
|
|
+
|
|
|
+
|
|
|
+
|
|
|
+
|
|
|
+
|
|
|
+ BUFFER_SIZE = 1000
|
|
|
+ pkt_gen = PacketGenerator()
|
|
|
+ file_timestamp_prv = messages[0].time
|
|
|
+ pcap_timestamp = self.get_param_value(Param.INJECT_AT_TIMESTAMP)
|
|
|
+ padding = self.get_param_value(Param.PACKET_PADDING)
|
|
|
+ packets = deque(maxlen=BUFFER_SIZE)
|
|
|
+ total_pkts = 0
|
|
|
+ limit_packetcount = self.get_param_value(Param.PACKETS_LIMIT)
|
|
|
+ limit_duration = self.get_param_value(Param.ATTACK_DURATION)
|
|
|
+ duration = 0
|
|
|
+ path_attack_pcap = None
|
|
|
+
|
|
|
+
|
|
|
+ for msg in messages:
|
|
|
+
|
|
|
+ id_src, id_dst = msg.src["ID"], msg.dst["ID"]
|
|
|
+ ip_src, ip_dst = msg.src["IP"], msg.dst["IP"]
|
|
|
+ mac_src, mac_dst = msg.src["MAC"], msg.dst["MAC"]
|
|
|
+ port_src, port_dst = msg.src["Port"], msg.dst["Port"]
|
|
|
+ ttl = msg.src["TTL"]
|
|
|
+
|
|
|
+
|
|
|
+ file_timestamp = msg.time
|
|
|
+ file_time_delta = file_timestamp - file_timestamp_prv
|
|
|
+ pcap_timestamp += file_time_delta
|
|
|
+ duration += file_time_delta
|
|
|
+ file_timestamp_prv = file_timestamp
|
|
|
+
|
|
|
+
|
|
|
+ if ((limit_packetcount is not None and total_pkts >= limit_packetcount) or
|
|
|
+ (limit_duration is not None and duration >= limit_duration)):
|
|
|
+ break
|
|
|
+
|
|
|
+
|
|
|
+ nl_size = 0
|
|
|
+ if msg.type == MessageType.SALITY_NL_REPLY:
|
|
|
+ nl_size = randint(1, 25)
|
|
|
+
|
|
|
+
|
|
|
+ packet = pkt_gen.generate_mmcom_packet(ip_src=ip_src, ip_dst=ip_dst, ttl=ttl, mac_src=mac_src, mac_dst=mac_dst,
|
|
|
+ port_src=port_src, port_dst=port_dst, message_type=msg.type, neighborlist_entries=nl_size)
|
|
|
+ PaddingGenerator.add_padding(packet, padding)
|
|
|
+
|
|
|
+ packet.time = pcap_timestamp
|
|
|
+ packets.append(packet)
|
|
|
+ total_pkts += 1
|
|
|
+
|
|
|
+
|
|
|
+ if total_pkts <= 1:
|
|
|
+ self.attack_start_utime = packets[0].time
|
|
|
+ elif total_pkts % BUFFER_SIZE == 0:
|
|
|
+ packets = list(packets)
|
|
|
+ PaddingGenerator.equal_length(packets)
|
|
|
+ last_packet = packets[-1]
|
|
|
+ path_attack_pcap = self.write_attack_pcap(packets, True, path_attack_pcap)
|
|
|
+ packets = deque(maxlen=BUFFER_SIZE)
|
|
|
+
|
|
|
+
|
|
|
+ if len(packets) > 0:
|
|
|
+ packets = list(packets)
|
|
|
+ PaddingGenerator.equal_length(packets)
|
|
|
+ path_attack_pcap = self.write_attack_pcap(packets, True, path_attack_pcap)
|
|
|
+ last_packet = packets[-1]
|
|
|
+
|
|
|
+
|
|
|
+ self.attack_end_utime = last_packet.time
|
|
|
+
|
|
|
+
|
|
|
+ return total_pkts , path_attack_pcap
|
|
|
+
|
|
|
+
|
|
|
+ def _create_messages(self):
|
|
|
+ def add_ids_to_config(ids_to_add: list, existing_ips: list, new_ips: list, bot_configs: dict, idtype:str="local", router_mac:str=""):
|
|
|
+ """
|
|
|
+ Creates IP and MAC configurations for the given IDs and adds them to the existing configurations object.
|
|
|
+
|
|
|
+ :param ids_to_add: all sorted IDs that have to be configured and added
|
|
|
+ :param existing_ips: the existing IPs in the PCAP file that should be assigned to some, or all, IDs
|
|
|
+ :param new_ips: the newly generated IPs that should be assigned to some, or all, IDs
|
|
|
+ :param bot_configs: the existing configurations for the bots
|
|
|
+ :param idtype: the locality type of the IDs
|
|
|
+ :param router_mac: the MAC address of the router in the PCAP
|
|
|
+ """
|
|
|
+
|
|
|
ids = ids_to_add.copy()
|
|
|
+
|
|
|
+
|
|
|
macgen = MacAddressGenerator()
|
|
|
+
|
|
|
+
|
|
|
for ip in existing_ips:
|
|
|
random_id = choice(ids)
|
|
|
mac = self.statistics.process_db_query("macAddress(IPAddress=%s)" % ip)
|
|
|
bot_configs[random_id] = {"Type": idtype, "IP": ip, "MAC": mac}
|
|
|
ids.remove(random_id)
|
|
|
|
|
|
+
|
|
|
for ip in new_ips:
|
|
|
random_id = choice(ids)
|
|
|
if idtype == "local":
|
|
@@ -143,22 +251,43 @@ class MembersMgmtCommAttack(BaseAttack.BaseAttack):
|
|
|
ids.remove(random_id)
|
|
|
|
|
|
def index_increment(number: int, max: int):
|
|
|
+ """
|
|
|
+ Number increment with rollover.
|
|
|
+ """
|
|
|
if number + 1 < max:
|
|
|
return number + 1
|
|
|
else:
|
|
|
return 0
|
|
|
|
|
|
+ def assign_realistic_ttls(bot_configs):
|
|
|
+
|
|
|
+ ids = sorted(bot_configs.keys())
|
|
|
+ alpha, loc, beta = (2.3261710235, -0.188306914406, 44.4853123884)
|
|
|
+ gd = gamma.rvs(alpha, loc=loc, scale=beta, size=len(ids))
|
|
|
+
|
|
|
+ for pos, bot in enumerate(ids):
|
|
|
+
|
|
|
+ is_invalid = True
|
|
|
+ pos_max = len(gd)
|
|
|
+ while is_invalid:
|
|
|
+ ttl = int(round(gd[pos]))
|
|
|
+ if 0 < ttl < 256:
|
|
|
+ is_invalid = False
|
|
|
+ else:
|
|
|
+ pos = index_increment(pos, pos_max)
|
|
|
+ bot_configs[bot]["TTL"] = ttl
|
|
|
+
|
|
|
|
|
|
filepath_xml = self.get_param_value(Param.FILE_XML)
|
|
|
filepath_csv = self.get_param_value(Param.FILE_CSV)
|
|
|
|
|
|
-
|
|
|
+
|
|
|
if filepath_csv and filepath_xml == self.DEFAULT_XML_PATH:
|
|
|
filepath_xml = FileUtils.parse_csv_to_xml(filepath_csv)
|
|
|
|
|
|
abstract_packets = FileUtils.parse_xml(filepath_xml)
|
|
|
|
|
|
-
|
|
|
+
|
|
|
duration = self.get_param_value(Param.ATTACK_DURATION)
|
|
|
number_bots = self.get_param_value(Param.NUMBER_BOTS)
|
|
|
comm_proc = CommunicationProcessor(abstract_packets)
|
|
@@ -168,50 +297,44 @@ class MembersMgmtCommAttack(BaseAttack.BaseAttack):
|
|
|
print("Error: There is no interval in the given CSV/XML that has enough communication")
|
|
|
return 0, None
|
|
|
|
|
|
+
|
|
|
mapped_ids, id_comms, packet_start_idx, packet_end_idx = comm_interval["IDs"], comm_interval["Comms"], comm_interval["Start"], comm_interval["End"]
|
|
|
-
|
|
|
+
|
|
|
comm_proc.set_mapping(abstract_packets[packet_start_idx:packet_end_idx+1], mapped_ids, id_comms)
|
|
|
-
|
|
|
+
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
-
|
|
|
+
|
|
|
reuse_percent_total = self.get_param_value(Param.IP_REUSE_TOTAL)
|
|
|
reuse_percent_external = self.get_param_value(Param.IP_REUSE_EXTERNAL)
|
|
|
reuse_percent_local = self.get_param_value(Param.IP_REUSE_LOCAL)
|
|
|
-
|
|
|
reuse_count_external = int(reuse_percent_total * reuse_percent_external * len(mapped_ids))
|
|
|
reuse_count_local = int(reuse_percent_total * reuse_percent_local * len(mapped_ids))
|
|
|
|
|
|
-
|
|
|
+
|
|
|
ipgen = IPGenerator()
|
|
|
comm_type = self.get_param_value(Param.COMM_TYPE)
|
|
|
pcapops = PcapAddressOperations(self.statistics)
|
|
|
router_mac = pcapops.get_probable_router_mac()
|
|
|
bot_configs = {}
|
|
|
+
|
|
|
init_ids, respnd_ids, both_ids, messages = comm_proc.det_id_roles_and_msgs(self.msg_types)
|
|
|
+
|
|
|
local_ids, external_ids = comm_proc.det_ext_and_local_ids(comm_type, self.PROB_INIT_IS_LOCAL, self.PROB_RESPND_IS_LOCAL)
|
|
|
-
|
|
|
-
|
|
|
-
|
|
|
-
|
|
|
-
|
|
|
-
|
|
|
-
|
|
|
-
|
|
|
-
|
|
|
-
|
|
|
-
|
|
|
-
|
|
|
-
|
|
|
+
|
|
|
+
|
|
|
+
|
|
|
number_local_ids, number_external_ids = len(local_ids), len(external_ids)
|
|
|
+
|
|
|
if number_local_ids > 0:
|
|
|
reuse_count_local = int(reuse_percent_total * reuse_percent_local * number_local_ids)
|
|
|
existing_local_ips = sorted(pcapops.get_existing_priv_ips(reuse_count_local))
|
|
|
new_local_ips = sorted(pcapops.get_new_priv_ips(number_local_ids - len(existing_local_ips)))
|
|
|
add_ids_to_config(sorted(local_ids), existing_local_ips, new_local_ips, bot_configs)
|
|
|
|
|
|
+
|
|
|
if number_external_ids > 0:
|
|
|
reuse_count_external = int(reuse_percent_total * reuse_percent_external * number_external_ids)
|
|
|
existing_external_ips = sorted(pcapops.get_existing_external_ips(reuse_count_external))
|
|
@@ -219,112 +342,51 @@ class MembersMgmtCommAttack(BaseAttack.BaseAttack):
|
|
|
new_external_ips = sorted([ipgen.random_ip() for _ in range(remaining)])
|
|
|
add_ids_to_config(sorted(external_ids), existing_external_ips, new_external_ips, bot_configs, idtype="external", router_mac=router_mac)
|
|
|
|
|
|
+
|
|
|
+
|
|
|
+
|
|
|
+
|
|
|
+
|
|
|
+
|
|
|
|
|
|
-
|
|
|
+
|
|
|
+
|
|
|
+
|
|
|
+
|
|
|
+
|
|
|
for bot in bot_configs:
|
|
|
bot_configs[bot]["Port"] = gen_random_server_port()
|
|
|
-
|
|
|
-
|
|
|
-
|
|
|
-
|
|
|
- ids = bot_configs.keys()
|
|
|
- alpha, loc, beta = (2.3261710235, -0.188306914406, 44.4853123884)
|
|
|
- gd = gamma.rvs(alpha, loc=loc, scale=beta, size=len(ids))
|
|
|
-
|
|
|
- for pos, bot in enumerate(bot_configs):
|
|
|
- is_invalid = True
|
|
|
- pos_max = len(gd)
|
|
|
- while is_invalid:
|
|
|
- ttl = int(round(gd[pos]))
|
|
|
- if 0 < ttl < 256:
|
|
|
- is_invalid = False
|
|
|
- else:
|
|
|
- pos = index_increment(pos, pos_max)
|
|
|
- bot_configs[bot]["TTL"] = ttl
|
|
|
-
|
|
|
-
|
|
|
- BUFFER_SIZE = 1000
|
|
|
- pkt_gen = PacketGenerator()
|
|
|
- file_timestamp_prv = float(abstract_packets[packet_start_idx]["Time"])
|
|
|
- pcap_timestamp = self.get_param_value(Param.INJECT_AT_TIMESTAMP)
|
|
|
- padding = self.get_param_value(Param.PACKET_PADDING)
|
|
|
- packets = deque(maxlen=BUFFER_SIZE)
|
|
|
- total_pkts = 0
|
|
|
- limit_packetcount = self.get_param_value(Param.PACKETS_LIMIT)
|
|
|
- limit_duration = duration
|
|
|
- duration = 0
|
|
|
- path_attack_pcap = None
|
|
|
- nl_requests = {}
|
|
|
|
|
|
-
|
|
|
- for abst_packet in abstract_packets[packet_start_idx:packet_end_idx+1]:
|
|
|
-
|
|
|
- id_src, id_dst = abst_packet["Src"], abst_packet["Dst"]
|
|
|
- if (not id_src in bot_configs) or (not id_dst in bot_configs):
|
|
|
- continue
|
|
|
-
|
|
|
- ip_src, ip_dst = bot_configs[id_src]["IP"], bot_configs[id_dst]["IP"]
|
|
|
- mac_src, mac_dst = bot_configs[id_src]["MAC"], bot_configs[id_dst]["MAC"]
|
|
|
- port_src, port_dst = bot_configs[id_src]["Port"], bot_configs[id_dst]["Port"]
|
|
|
- ttl = bot_configs[id_src]["TTL"]
|
|
|
- type_src, type_dst = bot_configs[id_src]["Type"], bot_configs[id_dst]["Type"]
|
|
|
+
|
|
|
+ assign_realistic_ttls(bot_configs)
|
|
|
|
|
|
-
|
|
|
+
|
|
|
+
|
|
|
+ final_messages = []
|
|
|
+ new_id = 0
|
|
|
+ for msg in messages:
|
|
|
+ print(msg)
|
|
|
+ print(mapped_ids.keys())
|
|
|
+ type_src, type_dst = bot_configs[msg.src]["Type"], bot_configs[msg.dst]["Type"]
|
|
|
+ id_src, id_dst = msg.src, msg.dst
|
|
|
|
|
|
+
|
|
|
if type_src == "external" and type_dst == "external":
|
|
|
continue
|
|
|
if comm_type == "external":
|
|
|
if type_src == "local" and type_dst == "local":
|
|
|
continue
|
|
|
|
|
|
+ msg.src, msg.dst = bot_configs[id_src], bot_configs[id_dst]
|
|
|
+ msg.src["ID"], msg.dst["ID"] = id_src, id_dst
|
|
|
+ msg.msg_id = new_id
|
|
|
+ new_id += 1
|
|
|
+
|
|
|
+ final_messages.append(msg)
|
|
|
|
|
|
-
|
|
|
- file_timestamp = float(abst_packet["Time"])
|
|
|
- file_time_delta = file_timestamp - file_timestamp_prv
|
|
|
- pcap_timestamp += file_time_delta
|
|
|
- duration += file_time_delta
|
|
|
- file_timestamp_prv = file_timestamp
|
|
|
-
|
|
|
-
|
|
|
- if ((limit_packetcount is not None and total_pkts >= limit_packetcount) or
|
|
|
- (limit_duration is not None and duration >= limit_duration)):
|
|
|
- break
|
|
|
-
|
|
|
-
|
|
|
- message_type = self.msg_types[int(abst_packet["Type"])]
|
|
|
- nl_size = 0
|
|
|
-
|
|
|
- if message_type == MessageType.SALITY_NL_REPLY:
|
|
|
- nl_size = randint(1, 25)
|
|
|
- elif message_type == MessageType.TIMEOUT:
|
|
|
- continue
|
|
|
+ return final_messages
|
|
|
|
|
|
- packet = pkt_gen.generate_mmcom_packet(ip_src=ip_src, ip_dst=ip_dst, ttl=ttl, mac_src=mac_src, mac_dst=mac_dst,
|
|
|
- port_src=port_src, port_dst=port_dst, message_type=message_type, neighborlist_entries=nl_size)
|
|
|
- PaddingGenerator.add_padding(packet, padding)
|
|
|
|
|
|
- packet.time = pcap_timestamp
|
|
|
- packets.append(packet)
|
|
|
- total_pkts += 1
|
|
|
|
|
|
-
|
|
|
- if total_pkts <= 1:
|
|
|
- self.attack_start_utime = packets[0].time
|
|
|
- elif total_pkts % BUFFER_SIZE == 0:
|
|
|
- packets = list(packets)
|
|
|
- PaddingGenerator.equal_length(packets)
|
|
|
- last_packet = packets[-1]
|
|
|
- path_attack_pcap = self.write_attack_pcap(packets, True, path_attack_pcap)
|
|
|
- packets = deque(maxlen=BUFFER_SIZE)
|
|
|
-
|
|
|
- if len(packets) > 0:
|
|
|
- packets = list(packets)
|
|
|
- PaddingGenerator.equal_length(packets)
|
|
|
- path_attack_pcap = self.write_attack_pcap(packets, True, path_attack_pcap)
|
|
|
- last_packet = packets[-1]
|
|
|
|
|
|
-
|
|
|
- self.attack_end_utime = last_packet.time
|
|
|
|
|
|
-
|
|
|
- return total_pkts , path_attack_pcap
|