h`yddlZddlZddlmZddlZddlZddlmZddlm Z ddl m Z ddl m Z mZddlmZddlmZdd lmZmZdd lmZdd lmZdd lmZmZmZmZmZm Z m!Z!m"Z"m#Z#m$Z$m%Z%m&Z&m'Z'm(Z(dd l)m*Z*ddl+m,Z,m-Z-m.Z.m/Z/ddl0m1Z1ddl2m3Z3ddl4m5Z5m6Z6ddl7m8Z8ddl9m:Z:m;Z;mZ>m?Z?m@Z@mAZAmBZBGdde1ZCGddeZDdS)N)count)hashes) PBKDF2HMAC)default_backend)ATMT Automaton)Net)conf)rawchb)LINUX) log_runtime)AKMSuiteDot11 Dot11AssoReq Dot11AssoResp Dot11Auth Dot11BeaconDot11EltDot11EltDSSSet Dot11EltRSN Dot11EltRates Dot11ProbeReqDot11ProbeRespRSNCipherSuiteRadioTap)EAPOL)ARPLLCSNAPEther)DHCP_am)Raw)hexdumpmac2str)RandBin) parse_data_pktparse_TKIP_hdrbuild_TKIP_payload check_MIC_ICVMICErrorICVError build_MIC_ICV customPRF512 ARC4_encryptc(eZdZdZfdZdZxZS) DHCPOverWPAz:Wrapper over DHCP_am to send and recv inside a WPA channelcVtt|j|i|||_dSN)superr1__init__ send_function)self send_funcargskwargs __class__s a/mounts/lovelace/software/anaconda3/lib/python3.11/site-packages/scapy/modules/krack/automaton.pyr5zDHCPOverWPA.__init__5s3)k4  )4:6:::&cdSr3)r7r9r:s r<sniffzDHCPOverWPA.sniff9sr=)__name__ __module__ __qualname____doc__r5r@ __classcell__r;s@r<r1r12sMDD'''''r=r1ceZdZdZdZfdZ dDfd Zfd Zed Z d Z d Z d Z dZ e dEdZdZddgdfdZdZdFdZdZdZejddZejdZejdZejdZejdZejdZejd Zejed!d"Zejd#Z ejd$Z!ejd%Z"ejd!&d'Z#eje!d!d(Z$ejed)d*Z%ej&e%d+Z'ej(ed,Z)ej&e)d-Z*ej(ed.Z+ej&e+d/Z,ej(ed0Z-ej&e-d1Z.ej/ed2Z0ej&e0d3Z1ej(ed4Z2ej&e2d5Z3ej(ed6Z4ej/ed7Z5ej&e5dGd9Z6ej(ed:Z7ej&e7d;Z8ej/e d<Z9ej&e9d=Z:ej(e!d>Z;ej&e;d?Z<eje"d@dAZ=ej(e"dBZ>ej&e>dCZ?xZ@S)HKrackAPa5Tiny WPA AP for detecting client vulnerable to KRACK attacks defined in: "Key Reinstallation Attacks: Forcing Nonce Reuse in WPA2" Example of use: KrackAP( iface="mon0", # A monitor interface ap_mac='11:22:33:44:55:66', # MAC to use ssid="TEST_KRACK", # SSID passphrase="testtest", # Associated passphrase ).run() Then, on the target device, connect to "TEST_KRACK" using "testtest" as the passphrase. The output logs will indicate if one of the CVE have been triggered. 2c|dtjts|ddt t |j|i|dS)NllmonitorT) setdefaultr L2socketr r4rHr5)r7r9kargsr;s r<r5zKrackAP.__init__Tsa t}--- .   Y - - -%gt%t5u55555r=NTr c  0tt|jdi| ||_||_||_|d}||_d|_d|_t|_ t|_ d|_ t|jtddd|_g|_d|_d|_d|_||_||_||_||_| |_| |jj} | |_| |_|dS) a4 Mandatory arguments: :param iface: interface to use (must be in monitor mode) :param ap_mac: AP's MAC :param ssid: AP's SSID :param passphrase: AP's Passphrase (min 8 char.) Optional arguments: :param channel: used by the interface. Default 6 Krack attacks options: - Msg 3/4 handshake replay: :param double_3handshake: double the 3/4 handshake message :param encrypt_3handshake: encrypt the second 3/4 handshake message :param wait_3handshake: time to wait (in sec.) before sending the second 3/4 - double GTK rekeying: :param double_gtk_refresh: double the 1/2 GTK rekeying message :param wait_gtk: time to wait (in sec.) before sending the GTK rekeying :param arp_target_ip: Client IP to use in ARP req. (to detect attack success). If None, use a DHCP server :param arp_source_ip: Server IP to use in ARP req. (to detect attack success). If None, use the DHCP server gateway address Nz192.168.42.128/25z192.168.42.0/24z 192.168.42.1)r8poolnetworkgwrr?)r4rH parse_argsmacssid passphrasechannellast_ivclientrseq_numreplay_countertime_handshake_endr1send_ether_over_wpar dhcp_serverarp_sent arp_to_send arp_retry krack_statedouble_3handshakeencrypt_3handshakewait_3handshakedouble_gtk_refresh arp_target_iprU arp_source_ipwait_gtk install_PMK)r7ap_macrXrYrZrfrgrhrirjrkrlr:r;s r<rVzKrackAP.parse_argsZs4R (gt'11&111 $ ?G   ww #gg"&&1I,/0C,D,D/@*8:::  "3"4."4*   ,/M*   r=ctjd|j|jt t |j|i|dS)Nz$AP started with ESSID: %s, BSSID: %s)rwarningrXrWr4rHrun)r7r9r:r;s r<rqz KrackAP.runsLB Itx 1 1 1 gt $1&11111r=c:tt|S)z;Return a nonce of @size element of random bytes as a string)r r&)sizes r< gen_noncezKrackAP.gen_nonces74==!!!r=cttjd|jdt |j|_dS)zCompute and install the PMK i) algorithmlengthsalt iterationsbackendN) rrSHA1rXencoderderiverYpmkr7s r<rmzKrackAP.install_PMKsekmm!!###%%    &'')) * * r=c|j}|j}|}t|j}t|j}t ||||||_|jdd|_|jdd|_|jdd|_ |jdd|_ |jdd|_ t|_ dS)z~Use the client nonce @client_nonce to compute and install PTK, KCK, KEK, TK, MIC (AP -> STA), MIC (STA -> AP) Nrv08@)ranoncer%rWr\r.ptkkckkektk mic_ap_to_sta mic_sta_to_apr client_iv)r7 client_noncerrsnonceamacsmacs r<install_unicast_keyszKrackAP.install_unicast_keysshtx  t{## T4@@8CRC=8BrE?(2b5/!Xbe_!Xbe_r=c|d|_|jdd|_|jdd|_t |_dS)zbCompute a new GTK and install it alongs MIC (AP -> Group = broadcast + multicast) rvNr)rtgtk_fullgtkmic_ap_to_grouprgroup_ivrs r< install_GTKzKrackAP.install_GTKsO r** ="% $}RU3 r=cttjdzdz}tt||j|jz ||ddz t d|jz tgd  z t|j z ttd td gtd gz S)z^Build a packet with info describing the current AP For beacon / proberesp use g.Aladdr1addr2addr3dz ESS+privacy) timestampbeacon_intervalcapSSID)IDinfo r$rates)rZ)cipher)suite)group_cipher_suitepairwise_cipher_suites akm_suites) inttimerrrWrrXrrrZrrr)r7 layer_clsdesttss r<build_ap_info_pktzKrackAP.build_ap_info_pktss" # #&8 8zz$dhdh???@i"c)++++&ty111 2 "F"F"FGGG H T\222 3^3-G-G-G2@2L2L2L1M&.S&9&9&9%:<<< < Hs z>Qs)load)skip)rrHrtjoinr structpacklenr#r/copyr hmacnewhashlibmd5digest)key_informationr^noncedatakey_mickey_data_encryptkey_rsckey_idkey_descriptor_typepktkey_ivpayload offset_MICenc_datatemp_micto_micmic final_payloads r<build_EAPOL_Key_8021X2004z!KrackAP.build_EAPOL_Key_8021X2004sM <<<""2&&!||||{{{{(( # $ $ Ko . .  Kn - -   Kg & & Kf % %    \\ >! >T\""a'    $CIIw$GG  s%k2txMMNNN # r=c |d|j|j|t|jt|j|j|jfi|SNr)rMrrrrr]r\r)r7rr:s r<send_wpa_to_clientzKrackAP.send_wpa_to_clientnsc-111 t tDN';';!%dl!3!3T[!%!3??7=?? ?r=ff:ff:ff:ff:ff:ffc |d|j|j|t|jt|j||jfi|Sr)rMrrrrr]r)r7rrr:s r<send_wpa_to_groupzKrackAP.send_wpa_to_grouptsf-222 t tDM':':!%dl!3!3T!%!5AA9?AA Ar=c ttz |tjz }|j}|dkr|||dS||jksJ||dS)zSend an Ethernet packet using the WPA channel Extra arguments will be ignored, and are just left for compatibility rN)rr r!rdstrr\r)r7rr:rrs r<r`zKrackAP.send_ether_over_wpazs} %%$&&.3u:#55w & & &  " "7D 1 1 1 1 14;&&&&  # #G , , , , ,r=cXt|vrHt|j|j|tjz }|j|t|vr|tjdkr|tj |jj kr|j 1|tj |_ tjd|j ttz td|j|j |j|jz }||dSdSdSdS)N)srcrzDetected IP: %szis-at)oppsrcpdsthwsrchwdst)r r!r\rWrrareplyrrrrUrjrrrrrkr)r7r ether_pktARP_anss r<deal_common_pktzKrackAP.deal_common_pkts 3;;$+48<<rr8s r<send_auth_responsezKrackAP.send_auth_responsesi 2DK@@@ jj u4;dhdhGGGG yI(; #I 5777 7 #r=ct|vrg|j|jcxkr |jkrMndS|tdddij|jkr+||dSdSdSr3) rrrrWrrrXrr4r5s r<assoc_receivedzKrackAP.assoc_receiveds 3  39 #E#E#E#ETX#E#E#E#E#E#E x"$" # (DI 5 5**,,>>sCC C  #E#E 5 5r=c|tdddi}|t||_|jdddz|_t }|t |j|j|jz}|tz}|tgdz}| |dS)Nrrrrrr) rrremove_payloadr RSNrrr\rWrrr)r7rtemp_pktrs r<send_assoc_responsezKrackAP.send_assoc_response sx+$+,1133!!!x==8CRC=;.jj u4;dhdhGGGG } }#G#G#GHHHH #r=c*|r3)rrs r< assoc_sentzKrackAP.assoc_sents,,...r=c |d|_t}|t|j|j|jdt |jdzz}|tdddz}|tdd z}|| d t |j |j z}| |dS) Nrvrrrrrrrdsapssapctrlr鎈OUIcode)rr^r) rtrrrr\rWrr]rr rr^rr0s r<send_wpa_handshake_1zKrackAP.send_wpa_handshake_1 snnR(( jj u+((T\""a'      s4a0000 t'''' t--  344+.    #r=ct|vrdSt|vre|j|jcxkr |jkrKndS|tjdddkr+||dSdSdS)Nrrr)rrrrrWrrr4r5s r<wpa_handshake_1_sentzKrackAP.wpa_handshake_1_sent7s 3   F C<>>>dh>>>>>> u:?1Q3 7 * *0022DDSII I <>> * *r=c ~|tjdd}|||tjdd}t|t|dt |z}t j|j|tj  |ksJt}|t|j|j|jdt!|jdzz}|t%d d d z}|t'd d z}||j}||z }|dt!|j|j||j|j}|||z dS)N -M]rrrKrLrMrNrrRrSrr^rrrr)rrrr replacerrrrrrrrrr\rWrr]rr rrErrr^rrr)r7rr client_mic client_datarreaps r<send_wpa_handshake_3zKrackAP.send_wpa_handshake_3Bs5zr)|4  !!,/// Z_RZ0 #e*oo--j'C OO:STT x+w{;;BBDD RRRRjj u+((T\""a'      s4a0000 t'''' x ""$$$,," 344+H!X -   #)r=c t|vrdSt|vrj|j|jcxkr |jkrPndS|tjdddkr0t j|_|dSdSdS)NrrMs ) rrrrrWrrr_rr5s r<wpa_handshake_3_sentzKrackAP.wpa_handshake_3_sentls 3   F C<>>>dh>>>>>> u:?1Q3 ; . .&*ikkD #'')) ) <>> . .r=ctj}|jr]|jdzdkrO||jz |jkr>D !C(:$;$;;*4#)SYOO #%<====h'        !( ) ) )  gc555 6 6 6   % % % F'*4888999*oo$s))$$$ S!!!!!s%!C""C65C6!AE))E=<E=c*|r3)r$rs r< gtk_pkt_1zKrackAP.gtk_pkt_1s""$$$r=c&tddd}|tddz}|}|dt |j|j||j|j}||z}| |dS) NrLrMrNrrRrSira) rr rrrr^rrrr)r7 rep_to_encrres r<send_renew_gtkzKrackAP.send_renew_gtksdA666 dqv.... !!##,,# 344+H!X-    c   +++++r=c"t|vrdS|tjjrdS|tjjsdS t ||j}n#t$rYdSwxYw t||j |j |j }n#ttf$rYdSwxYwt|}t|vrR|j|j cxkr |jkr8ndS|tjdddkr|dSdSdS)NrrMs)rrrrsrr'r ValueErrorr*rrrr,r+rrrrWrr&)r7rrr pkt_clears r< get_gtk_2zKrackAP.get_gtk_2sQ 3   F u:  #  F5z!+  F !#tw//DD    FF  &tT-?'*y22JJ(#    FF  OO I  #)sy"D"D"D"DDH"D"D"D"D"D"D U  1 % 4 4'')) )  "D"D 4 4s#A A#"A#'!B BBc ^|jdzdkr|jj|j|j|_|jJt jd|j|j| ttz td|j|j|j z d}|j|dS|jt#|jkr7||j|j|xjdz c_dSd|_|xjdz c_t jd |j|j|j|jkr(t jd ||) Nrrz"Send ARP who-was from '%s' to '%s'zwho-has)rrrrrr/rz&Trying to trigger CVE-2017-13080 %d/%dz1Client is likely not vulnerable to CVE-2017-13080)reraleasesgetr\rjrrrkrrr rrWrbappendrcrrrd ARP_MAX_RETRYrpr)r")r7arp_pkts r< send_arp_reqzKrackAP.send_arp_req4s  a 1 $ $!%!1!8!D$666')9:::))++%nn&&&r=g?cR||r3)rr&rs r<resend_arp_reqzKrackAP.resend_arp_req\s& ##%%%r=ct|vrdS|tjjrdS|tjjsdS|jdkr@t |vr9|j|jkr+| |dSdSdSrr) rrrrsrrr#rrWr&r4r5s r<get_arpzKrackAP.get_arparur=c t||j} t||j|j|j}n#t tf$rYdSwxYwt|}tj t|dtj t|| |t|vrdS|tjdkr|tj|jkr|tj|jkrt|jdzdkrLtjd|xjdzc_tjd|tjddSdSdSdS) NTrzrrrzGot ARP reply, this is normalz Trying to trigger CVE-2017-13080z2Broadcast packet accepted twice!! (CVE-2017-13080))r'rr*rrrr,r+rrrr$r}r rrrrjrrkrerr"rp)r7rrr decoded_pkts r<check_arp_replyzKrackAP.check_arp_replytsc47++ &tT-?'*y22JJ(#    FF *oo '+D999:::${++,,, [))) k ! ! F s  ! # # s  D$6 6 6 s  D$6 6 6!#q(( !@AAA  A%   !CDDDnn&&&#%788888 $ # 6 6 6 6s!9A A)NTTrTNNrP)NNNrrr)r)FF)ArArBrCrDrr5rVrq staticmethodrtrmrrrrrrrrr`r rstaterrrrrrrtimeoutr r"r$r&r)r+r-actionr1receive_conditionr6r9r;r?rArG conditionrIrWrYrfrhrmrprtrrrrrrrrrErFs@r<rHrH>s&M66666 %)&*#$&*!%!%SSSSSSj22222""\"+++!!!.    "<<<  ! !@-@-@-\@-D    )!%@??? AAAA - - ----4TZ555TZ\\66\6TZ\\77\7TZ\\==\=TZ\\==\=TZ\\44\4TZ\\00\0T\,""&&#"&TZ\\--\-TZ\\33\3TZ\\44\4TZa(((T\/1%%&%T\#S))''*)'T[!!"! T-..BB/.BT['(()(T-..CC/.CT[!""#" T.//DD0/D T[  !  T^'((//)(/T[,T566JJ76JT[%&&'''&'RT566**76*T^$%%66&%6 T[  ,#,#,#! ,#\TL))AA*)A$T[/"/"/"bT^I%%%T[,,,,TO,,**-,*:T[%'%'%'NT\"C((&&)(&T,--AA.-A$T[8888888r=rH)Err itertoolsrrrcryptography.hazmat.primitivesr)cryptography.hazmat.primitives.kdf.pbkdf2rcryptography.hazmat.backendsrscapy.automatonrrscapy.base_classesr scapy.configr scapy.compatr r scapy.constsr scapy.errorrscapy.layers.dot11rrrrrrrrrrrrrrscapy.layers.eaprscapy.layers.l2rrr r!scapy.layers.dhcpr" scapy.packetr# scapy.utilsr$r%scapy.volatiler&scapy.modules.krack.cryptor'r(r)r*r+r,r-r.r/r1rHr?r=r<rs   111111@@@@@@888888++++++++""""""!!!!!!!!###### #"""""111111111111%%%%%%((((((((""""""     '   T 8T 8T 8T 8T 8iT 8T 8T 8T 8T 8r=