Breakpointing-Bad-Public
/
vpn-attacks
7
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
34 Commits
1 Branch
0 Tags
530 MiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
vpn-attacks/virtual-test-environment/README.md

84 lines
2.9 KiB
Raw Permalink Normal View History

added client side attack env to virtual lab and server side tcp
3 years ago
adding original attack test scripts and demos
3 years ago
added client side attack env to virtual lab and server side tcp
3 years ago
adding original attack test scripts and demos
3 years ago
added client side attack env to virtual lab and server side tcp
3 years ago
adding original attack test scripts and demos
3 years ago
added client side attack env to virtual lab and server side tcp
3 years ago
adding original attack test scripts and demos
3 years ago
added client side attack env to virtual lab and server side tcp
3 years ago
adding original attack test scripts and demos
3 years ago
added client side attack env to virtual lab and server side tcp
3 years ago
adding original attack test scripts and demos
3 years ago
added client side attack env to virtual lab and server side tcp
3 years ago
adding original attack test scripts and demos
3 years ago
added client side attack env to virtual lab and server side tcp
3 years ago
adding original attack test scripts and demos
3 years ago
added client side attack env to virtual lab and server side tcp
3 years ago
adding original attack test scripts and demos
3 years ago
added client side attack env to virtual lab and server side tcp
3 years ago
adding original attack test scripts and demos
3 years ago
added client side attack env to virtual lab and server side tcp
3 years ago
adding original attack test scripts and demos
3 years ago
added client side attack env to virtual lab and server side tcp
3 years ago
adding original attack test scripts and demos
3 years ago
added client side attack env to virtual lab and server side tcp
3 years ago
adding original attack test scripts and demos
3 years ago
  1. # virt-lab
  2. VM lab environment for doing network stuff
  5. ### Requirements
  7. * Virtualbox (5.2 or older)
  8. * Vagrant 2.2.x
  11. ### Setup base virtual network
  13. 1. Start all 6 VMs (3 routers and 3 edge nodes): `./boot_all.sh`
  14. 2. Go do something else cause its gonna take a while..
  15. 3. (Optional) ssh to some machine:
  16. * ssh by port: `ssh -l vagrant localhost -p 22111`
  17. * ssh with vagrant: `cd edgers/vpn-server/ && vagrant ssh` or `cd <path-to-vagrantfile> && vagrant ssh`
  18. 4. Restart all the machines to make network changes take effect: `./stop_all.sh` then `./start_all.sh`
  19. 4. Build VPN server and add VPN client config file to client node: `cd virt-lab/configs; ./configure_vpn.sh`
  22. ![picture](diagrams/virtlab-setup.jpg)
  25. #### Connect client to VPN server
  27. 1. Ssh to the client VM: `cd virt-lab/edgers/client && vagrant ssh`
  28. 2. Connect to the local vpn server: `./connect.sh`
  33. ## Client-Side Attack
  35. #### Configure client side attack environment
  37. 1. Navigate to configuration folder: `cd virt-lab/configs`
  38. 2. Run setup script to build gateway attacker node: `./setup_cliside_env.sh`
  42. #### Test client side attack
  45. 1. ssh to victim client VM (base host): `cd virt-lab/edgers/client && vagrant ssh`
  46. 2. Connect client to VPN (in client vm): `./connect.sh`
  47. 3. Open another shell to ssh to web server node (base host): `cd virt-lab/edgers/web-server && vagrant ssh`
  48. 4. Open another shell to ssh to gateway attacker node (base host): `cd virt-lab/routers/gateway && vagrant ssh`
  49. 5. On web-server vm, open a netcat connection for the client to connect to: `nc -l 8080`
  50. 6. On the client vm, connect to the web server: `nc 192.168.3.2 8080 -p 40404`
  51. 7. On the attacker vm, navigate to the attack folder: `cd vpn-attacks/client-side-attack`
  52. 8. Rebuild all the attack scripts (attacker): `./rebuild_all.sh`
  53. 9. Navigate to full attack folder (attacker): `cd complete_attack`
  54. 10. Start full attack script (attacker): `./attack.sh`
  55. 11. Wait for script to infer private tun IP, port in use, exact sequence number, and in-window ack number needed to inject TCP
  59. ## Server-Side Attack
  61. #### Configure server side attack environment
  63. 1. Navigate to configuration folder: `cd virt-lab/configs`
  64. 2. Run setup script to build gateway attacker node: `./setup_servside_env.sh.sh`
  67. #### Test server side DNS attack
  69. 1. ssh to victim client VM (base host): `cd virt-lab/edgers/client && vagrant ssh`
  70. 2. Connect client to VPN (in client vm): `./connect.sh`
  71. 3. Open another shell to ssh to router1 attacker node (base host): `cd virt-lab/routers/router1 && vagrant ssh`
  72. 4. On the attack router vm navigate to dns inject folder: `cd vpn-attacks/server-side-attack/dns-sside/full_scan/`
  73. 5. Compile full attack script (attacker): `make`
  74. 6. Issue DNS lookup from client vm: `nslookup test.com 192.168.3.2`
  75. 7. Start inject script from attacker node: `./inject_test.sh`
  79. ## Teardown
  81. 1. Stop all the VMs: `./stop_all.sh`
  82. 2. Destroii all VMs in our path: `./destroy_all.sh`