Home Explore Help
Sign In
bart
/
cfuzz
mirror of https://github.com/bartpleiter/cfuzz
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

Finished fuzzer

Bart 4 years ago
parent
5606fb4646
commit
243e52af01
3 changed files with 15 additions and 5 deletions
Split View Show Diff Stats
  1. 11 1
      README.md
  2. BIN
      authFuzzer/cfuzz
  3. 4 4
      authFuzzer/cfuzz.c

+ 11 - 1
README.md
View File 

@@ -2,4 +2,14 @@
 
 
 A 802.11 fuzzer written in C using libpcap.
 
 
-Work in progress.
 
+Contains the following files and directories:
 
+- monitor.sh. Script to set Atheros dongle in monitor mode
 
+- experiment 3. Contains the files for experiment 3
 
+- experiment 4. Contains the files for experiment 4
 
+- experiment 5. Contains the files for experiment 5
 
+- BeaconSender. Contains python3 script for sending Beacon frames using a second dongle in monitor mode
 
+- prbFuzzer. Contains the Probe response fuzzer
 
+- authFuzzer. Contains the Authentication fuzzer
 
+- assFuzzer. Contains the Association response fuzzer
 
+- DSI. Contains a modified Probe response fuzzer to crash the Nintendo DSI XL
 
+- README.md. This file

BIN
authFuzzer/cfuzz
View File


+ 4 - 4
authFuzzer/cfuzz.c
View File 

@@ -36,7 +36,7 @@ u_char myMAC[6]            =  "\x00\x0a\xeb\x2d\x72\x55";
 
 //Mac address of SUT
 
 //Is needed to ignore frames from other devices
 
 //Comment out the SUT
 
-//u_char sutMAC[6]            =  "\xec\x9b\xf3\x1e\x19\x71"; //Galaxy S6
 
+u_char sutMAC[6]            =  "\xec\x9b\xf3\x1e\x19\x71"; //Galaxy S6
 
 //u_char sutMAC[6]            =  "\xcc\xfa\x00\xc9\xfc\xad"; //LG Optimus G
 
 //u_char sutMAC[6]            =  "\xd0\x17\x6a\xe8\xe9\x7a"; //Galaxy Ace
 
 //u_char sutMAC[6]            =  "\x12\x42\x2a\x7e\xd4\xe8"; //Orange Pi Zero
 
@@ -48,7 +48,7 @@ u_char myMAC[6]            =  "\x00\x0a\xeb\x2d\x72\x55";
 
 //u_char sutMAC[6]            = "\xb8\x27\xeb\xf1\x89\x68"; //RPI 3
 
 //u_char sutMAC[6]            = "\x84\x00\xd2\xe0\x81\xb2"; //Xperia Ray
 
 //u_char sutMAC[6]            = "\x54\x60\x09\xf8\xbe\x28"; //Chromecast Audio
 
-u_char sutMAC[6]            = "\x80\x7d\x3a\x73\x81\xc7"; //Power plug
 
+//u_char sutMAC[6]            = "\x80\x7d\x3a\x73\x81\xc7"; //Power plug
 
 
 //Returns filter for libpcap
 
 //we want to use as many filters here as possible, since libpcap is closer to the hardware than this user-level program
 
@@ -323,11 +323,11 @@ int main(int argc, char *argv[])
 
                             u_char *packet = createDisAss(sutMAC, &packetSize, radioTapHeader, myMAC);
 
                             sendPacket(pcap_h, packet, packetSize);
 
                             free(packet);      //free allocated memory
 
-                            /*packet = createDisAss(sutMAC, &packetSize, radioTapHeader, myMAC);
 
+                            packet = createDisAss(sutMAC, &packetSize, radioTapHeader, myMAC);
 
                             sendPacket(pcap_h, packet, packetSize);
 
                             free(packet);      //free allocated memory
 
                             //sleep(1);
 
-                            packet = createDisAss(sutMAC, &packetSize, radioTapHeader, myMAC);
 
+                            /*packet = createDisAss(sutMAC, &packetSize, radioTapHeader, myMAC);
 
                             sendPacket(pcap_h, packet, packetSize);
 
                             free(packet);      //free allocated memory
 
                             packet = createDisAss(sutMAC, &packetSize, radioTapHeader, myMAC);