Merge pull request #21 from knownsec/dev

v0.5
knownsec · Sep 9, 2020 · 48a4987 · 48a4987
2 parents 4c3c37d + 6d156cc
commit 48a4987
Show file tree

Hide file tree

Showing 3 changed files with 100 additions and 7 deletions.
diff --git a/core/banner.go b/core/banner.go
@@ -4,7 +4,7 @@ import (
 	"ksubdomain/gologger"
 )
 
-const Version = "0.4"
+const Version = "0.5"
 const banner = `
  _  __   _____       _         _                       _
 | |/ /  / ____|     | |       | |                     (_)

diff --git a/core/device.go b/core/device.go
@@ -1,6 +1,7 @@
 package core
 
 import (
+	"context"
 	"fmt"
 	"github.com/google/gopacket"
 	"github.com/google/gopacket/layers"
@@ -10,11 +11,98 @@ import (
 	"time"
 )
 
-//SrcIp     string           = "10.13.20.60"
-//device    string           = "en0"
-//SrcMac    net.HardwareAddr = net.HardwareAddr{0xf0, 0x18, 0x98, 0x1a, 0x56, 0xe8}
-//DstMac    net.HardwareAddr = net.HardwareAddr{0x5c, 0xc9, 0x99, 0x33, 0x34, 0x80
-
+func AutoGetDevices() EthTable {
+	domain := RandomStr(4) + "paper.seebug.org"
+	signal := make(chan EthTable)
+	devices, err := pcap.FindAllDevs()
+	if err != nil {
+		gologger.Fatalf("获取网络设备失败:%s\n", err.Error())
+	}
+	data := make(map[string]net.IP)
+	keys := []string{}
+	for _, d := range devices {
+		for _, address := range d.Addresses {
+			ip := address.IP
+			if ip.To4() != nil && !ip.IsLoopback() {
+				data[d.Name] = ip
+				keys = append(keys, d.Name)
+			}
+		}
+	}
+	ctx := context.Background()
+	// 在初始上下文的基础上创建一个有取消功能的上下文
+	ctx, cancel := context.WithCancel(ctx)
+	for _, drviceName := range keys {
+		go func(drviceName string, domain string, signal chan EthTable, ctx context.Context) {
+			var (
+				snapshot_len int32         = 1024
+				promiscuous  bool          = false
+				timeout      time.Duration = -1 * time.Second
+				handle       *pcap.Handle
+			)
+			var err error
+			handle, err = pcap.OpenLive(
+				drviceName,
+				snapshot_len,
+				promiscuous,
+				timeout,
+			)
+			if err != nil {
+				gologger.Fatalf("pcap打开失败:%s\n", err.Error())
+			}
+			defer handle.Close()
+			// Use the handle as a packet source to process all packets
+			packetSource := gopacket.NewPacketSource(handle, handle.LinkType())
+			for {
+				select {
+				case <-ctx.Done():
+					return
+				default:
+					packet, err := packetSource.NextPacket()
+					gologger.Printf(".")
+					if err != nil {
+						continue
+					}
+					if dnsLayer := packet.Layer(layers.LayerTypeDNS); dnsLayer != nil {
+						dns, _ := dnsLayer.(*layers.DNS)
+						if !dns.QR {
+							continue
+						}
+						for _, v := range dns.Questions {
+							if string(v.Name) == domain {
+								ethLayer := packet.Layer(layers.LayerTypeEthernet)
+								if ethLayer != nil {
+									eth := ethLayer.(*layers.Ethernet)
+									signal <- EthTable{SrcIp: data[drviceName], Device: drviceName, SrcMac: eth.DstMAC, DstMac: eth.SrcMAC}
+									// 网关mac 和 本地mac
+									return
+								}
+							}
+						}
+					}
+				}
+			}
+		}(drviceName, domain, signal, ctx)
+	}
+	var c EthTable
+	for {
+		select {
+		case c = <-signal:
+			cancel()
+			goto END
+		default:
+			_, _ = net.LookupHost(domain)
+			time.Sleep(time.Millisecond * 20)
+		}
+	}
+END:
+	gologger.Printf("\n")
+	gologger.Infof("Use Device: %s\n", c.Device)
+	gologger.Infof("Use IP:%s\n", c.SrcIp.String())
+	gologger.Infof("Local Mac:%s\n", c.SrcMac.String())
+	gologger.Infof("GateWay Mac:%s\n", c.DstMac.String())
+	return c
+}
 func GetDevices(options *Options) EthTable {
 	// Find all devices
 	defaultSelect := options.NetworkId

diff --git a/core/start.go b/core/start.go
@@ -20,7 +20,12 @@ func PrintStatus() {
 func Start(options *Options) {
 	version := pcap.Version()
 	gologger.Infof(version + "\n")
-	ether := GetDevices(options)
+	var ether EthTable
+	if options.NetworkId == -1 {
+		ether = AutoGetDevices()
+	} else {
+		ether = GetDevices(options)
+	}
 	LocalStack = NewStack()
 	// 设定接收的ID
 	flagID := uint16(RandInt64(400, 654))