Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/mschwager/dhcpwn

All your IPs are belong to us.
https://github.com/mschwager/dhcpwn

attack bootp-protocol dhcp dhcpwn protocol python udp

Last synced: 1 day ago
JSON representation

All your IPs are belong to us.

Host: GitHub
URL: https://github.com/mschwager/dhcpwn
Owner: mschwager
License: gpl-3.0
Created: 2015-12-04T00:05:52.000Z (almost 9 years ago)
Default Branch: master
Last Pushed: 2018-06-04T21:59:17.000Z (over 6 years ago)
Last Synced: 2024-09-26T03:10:15.568Z (about 1 month ago)
Topics: attack, bootp-protocol, dhcp, dhcpwn, protocol, python, udp
Language: Python
Size: 31.3 KB
Stars: 667
Watchers: 26
Forks: 62
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

awesome-network-stuff - **635**星

README

        # DHCPwn

[![Build Status](https://travis-ci.org/mschwager/dhcpwn.svg?branch=master)](https://travis-ci.org/mschwager/dhcpwn)

[![Python Versions](https://img.shields.io/pypi/pyversions/dhcpwn.svg)](https://img.shields.io/pypi/pyversions/dhcpwn.svg)

[![PyPI Version](https://img.shields.io/pypi/v/dhcpwn.svg)](https://img.shields.io/pypi/v/dhcpwn.svg)

DHCPwn is a tool used for testing `DHCP` `IP` exhaustion attacks. It can also be

used to sniff local `DHCP` traffic.

Useful links:

* [DHCP](https://en.wikipedia.org/wiki/Dynamic_Host_Configuration_Protocol)

  * [RFC1531](https://tools.ietf.org/html/rfc1531) (obsolete)

  * [RFC1541](https://tools.ietf.org/html/rfc1541) (obsolete)

  * [RFC2131](https://tools.ietf.org/html/rfc2131)

* [Bootstrap Protocol](https://en.wikipedia.org/wiki/Bootstrap_Protocol)

  * [RFC951](https://tools.ietf.org/html/rfc951)

# Overview

The `DHCP` protocol is connectionless and implemented via `UDP`. These two

characteristics allow this attack to be performed. Since there is no actual

connection being made between the client and server we can quickly send many

spoofed requests.

`DHCP` servers rely on the senders `MAC` address to allocate `IP` addresses. We can

easily spoof many requests with different, fake `MAC` addresses. This will

eventually exhaust the server's ability to assign new `IP` addresses. Depending

on the server's method of releasing `IP` addresses associated with a given `MAC`

address this attack will either be more, or less effective. For example, if

a server quickly releases allocations that it doesn't receive responses from,

the attack will be less effective.

This attack is typically considered to be a form of DoS.

# Installing

```

$ pip3 install dhcpwn

$ dhcpwn -h

```

OR

```

$ git clone https://github.com/mschwager/dhcpwn.git

$ cd dhcpwn

$ pip3 install -r requirements.txt

$ python3 dhcpwn.py -h

```

# Using

Flood:

```

$ dhcpwn --interface wlan0 flood --count 256

```

Sniff:

```

$ dhcpwn --interface wlan0 sniff

```

Help:

```

$ dhcpwn -h

```