mschwager/dhcpwn mschwager/dhcpwn

  • Stars
    star
    663
  • Rank 67,547 (Top 2 %)
  • Language
    Python
  • License
    GNU General Publi...
  • Created almost 9 years ago
  • Updated over 6 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
mschwager/dhcpwn
github

mschwager

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

All your IPs are belong to us.

DHCPwn

Build Status Python Versions PyPI Version

DHCPwn is a tool used for testing DHCP IP exhaustion attacks. It can also be used to sniff local DHCP traffic.

Useful links:

Overview

The DHCP protocol is connectionless and implemented via UDP. These two characteristics allow this attack to be performed. Since there is no actual connection being made between the client and server we can quickly send many spoofed requests.

DHCP servers rely on the senders MAC address to allocate IP addresses. We can easily spoof many requests with different, fake MAC addresses. This will eventually exhaust the server's ability to assign new IP addresses. Depending on the server's method of releasing IP addresses associated with a given MAC address this attack will either be more, or less effective. For example, if a server quickly releases allocations that it doesn't receive responses from, the attack will be less effective.

This attack is typically considered to be a form of DoS.

Installing

$ pip3 install dhcpwn
$ dhcpwn -h

OR

$ git clone https://github.com/mschwager/dhcpwn.git
$ cd dhcpwn
$ pip3 install -r requirements.txt
$ python3 dhcpwn.py -h

Using

Flood:

$ dhcpwn --interface wlan0 flood --count 256

Sniff:

$ dhcpwn --interface wlan0 sniff

Help:

$ dhcpwn -h

More Repositories

1

fierce

A DNS reconnaissance tool for locating non-contiguous IP space.
Python
1,558
star
2

route-detect

Find authentication (authn) and authorization (authz) security bugs in web application routes.
Python
246
star
3

cohesion

A tool for measuring Python class cohesion.
Python
229
star
4

gitem

A Github organization reconnaissance tool.
Python
214
star
5

0wned

Code execution via Python package installation.
Python
168
star
6

riplink

Find dead links on the web.
Go
60
star
7

memunit

A testing library for ensuring memory usage levels in Python.
Python
37
star
8

dnsleak

Test for leaking DNS queries (i.e. if you're on a VPN)
Python
21
star
9

docker-simplesamlphp

SimpleSAMLphp using Docker Compose.
Dockerfile
17
star
10

shellshock_poc

Python
16
star
11

deauth

Python
13
star
12

duo_go

An implementation of the Duo Security Web SDK in Go/Golang.
Go
13
star
13

yacgol

A pure Python implementation of Conway's Game of Life using Tkinter.
Python
7
star
14

hosTor

A convenient management system for hosting multiple Tor relays
Python
6
star
15

docker-statamic

Statamic using Docker.
5
star
16

socket-speed

Comparing IPC methods on Linux.
Python
5
star
17

crypto_challenges

Matasano crypto challenges
Python
1
star
18

pamd

Simulate PAM authentications in your browser.
TypeScript
1
star
19

py-httptemplate

A Python HTTP server template package.
Python
1
star
20

project_euler

Project Euler solutions repository
C++
1
star
21

semgrepsec-rules

An odd assortment of Semgrep rules
Python
1
star