Commit Graph

263 Commits

Author SHA1 Message Date
Mathy Vanhoef
8092813616 injection test: sniff longer in reorder test
This was important to avoid false negatives when testing the MT7612U,
specifcally a device with internally an MT7612UN.
2022-10-02 00:40:31 +02:00
Angelo Compagnucci
0375781b8e research/fragattack: add --pre-test-delay parameter
This parameter can be used each time a test needs to be delayed before
actually executing it.

Suggested-by: Michael Trimarchi <michael@amarulasolutions.com>
Signed-off-by: Angelo Compagnucci <angelo@amarulasolutions.com>
2022-03-31 13:44:04 +08:00
Angelo Compagnucci
4c59cdfffd research/fraginternals: Test: adding enforce_pre_delay
Adding a delay before actually executing the test. This can be useful in
all the cases the network stack of the victim is still not ready to
receive packets leading to a timed out test result.

Suggested-by: Michael Trimarchi <michael@amarulasolutions.com>
Signed-off-by: Angelo Compagnucci <angelo@amarulasolutions.com>
2022-03-31 13:43:58 +08:00
Angelo Compagnucci
33b49cbad3 research/fraginternals: Test: adding pre_delay
pre_delay can be used to add a delay before actually executing the test.

Suggested-by: Michael Trimarchi <michael@amarulasolutions.com>
Signed-off-by: Angelo Compagnucci <angelo@amarulasolutions.com>
2022-03-31 13:25:54 +08:00
Mathy Vanhoef
568d566478 fragattack: add RT5572 notes 2022-01-27 17:15:05 +01:00
Mathy Vanhoef
0e9ef74801 fragattack: add comment in code 2022-01-27 16:23:15 +01:00
Mathy Vanhoef
93441c3e45 fragattacks: avoid python dependency with vulnerability
The py dependency in requirements.txt causes a security warning on
GitHub and attracts automated bug hunters (without the hunters verifying
the relevancy of the finding). Avoid this.

Flaws in py: CVE-2020-29651
Vulnerable versions: < 1.10.0
Patched version: 1.10.0
Description: A denial of service via regular expression in the py.path.svnwc
component of py (aka python-py) through 1.9.0 could be used by attackers to
cause a compute-time denial of service attack by supplying malicious input
to the blame functionality.

This fixes #40
2021-09-06 13:59:31 +02:00
Mathy Vanhoef
f27bf12e32 fragattacks: README: clarify ping-frag-sep tests 2021-06-21 23:57:45 +04:00
Mathy Vanhoef
1bc7636768 fragattacks: option to never send QoS data frames
Fixes #5. This option is experimental and may break some tests that
rely on sending QoS Data frames with different priorities.
2021-05-16 22:09:28 +04:00
Mathy Vanhoef
6cb61da4a1 libwifi: add remove_dot11qos function 2021-05-16 22:09:28 +04:00
Mathy Vanhoef
7f93c1cec7 fragattacks: directly track libwifi and not as submodule
This will make it easier for users to clone the repository and will
assure that they always use the correct version of libwifi.
2021-05-08 19:35:48 +04:00
Mathy Vanhoef
ccde9077f6 track latest libwifi 2021-05-08 02:23:32 +04:00
Mathy Vanhoef
5346a3a5d2 fragattacks: kernel 5.11 and 5.12 and device updates 2021-05-08 02:21:33 +04:00
Mathy Vanhoef
5991db531f fragattacks: minor tweak to client.conf 2021-05-07 13:33:01 +04:00
Mathy Vanhoef
23b039bd2d fragattacks: updated ath9k_htc firmware images
The updated firmware images assure that the sequence and fragment
number of management frames will not be overwirtten. Previously,
it was only assured that these fields were not overwritten for data
frames.
2021-05-07 13:31:11 +04:00
Mathy Vanhoef
0b99805f78 fragattacks: basic support for 40 MHz channels 2021-05-07 13:30:47 +04:00
Mathy Vanhoef
ad423fbab1 fragattacks: prepare README for release 2021-05-06 01:07:48 +04:00
Mathy Vanhoef
3146b65d09 fragattacks: README: clarify what I mean with The Above 2021-04-15 18:47:10 +04:00
Mathy Vanhoef
769ed3d7be fragattacks: Appendix E now discusses FreeBSD 2021-04-15 18:38:43 +04:00
Mathy Vanhoef
eedac9c6c2 fragattacks: README: title and spelling fix 2021-04-15 18:09:05 +04:00
Mathy Vanhoef
f5ba68a05a fragattacks: track latest libwifi 2021-03-15 22:13:11 +04:00
Mathy Vanhoef
35b5399816 fragattacks: README: updated drivers to compile on kernel 5.10 2021-03-15 21:03:09 +04:00
Mathy Vanhoef
78bc4b7ffb fragattacks: reorder CVEs in SUMMARY.md 2021-03-15 21:02:44 +04:00
Mathy Vanhoef
f6310c198d fragattacks: mention reboot as troubleshooting in README 2021-03-13 06:06:23 +04:00
Mathy Vanhoef
f0c97b2446 fragattacks: reorder CVEs in SUMMARY 2021-03-13 06:05:51 +04:00
Mathy Vanhoef
070cfd9bad v1.3.2: reference presentation handouts and icmp-size parameter 2021-03-08 05:51:44 +04:00
Mathy Vanhoef
c362116dcd fragattacks: the tool is now called FragAttack 2021-03-01 20:55:14 +04:00
Mathy Vanhoef
3ad0d1a883 fragattacks: updated README for 1.3.1 release 2021-03-01 08:07:38 +04:00
Mathy Vanhoef
f069b9d724 fragattack: fix paper references in README 2021-02-19 11:16:39 +04:00
Mathy Vanhoef
32de654b74 fragattack: detect unexpected scapy version 2021-01-30 06:52:45 +04:00
Mathy Vanhoef
7eb3596f07 fragattack: clarify fragmented ping test sanity check 2021-01-22 05:14:37 +04:00
Mathy Vanhoef
40d19275c8 fragattack: minor fix in README 2021-01-21 10:56:05 +04:00
Mathy Vanhoef
8d62941087 fragattack: README: rerun pysetup.sh when pulling new code 2021-01-21 04:48:57 +04:00
Mathy Vanhoef
6f8d45f37e fragattack: improved scapy fix and driver/hostap version check 2021-01-21 01:49:12 +04:00
Mathy Vanhoef
ac012353e9 fragattack: updated amsduattack reference 2021-01-20 21:30:29 +04:00
Mathy Vanhoef
694aaa0100 fragattack: updated README and SUMMARY 2021-01-20 04:30:41 +04:00
Mathy Vanhoef
2f4a6cb56e fragattack: tweaked troubleshooting steps 2021-01-16 15:48:07 +04:00
Mathy Vanhoef
d7718bc6f6 fragattack: use set_amsdu and is_amsdu functions 2021-01-16 14:39:21 +04:00
Mathy Vanhoef
56a0d40b3b fragattack: tweak to README 2021-01-13 04:23:24 +04:00
Mathy Vanhoef
cab3422a38 fragattack: bugfixes and move to new scapy 2021-01-13 04:18:13 +04:00
Mathy Vanhoef
d3dcc2c449 fragattack: track latest libwifi 2021-01-12 22:49:39 +04:00
Mathy Vanhoef
89a1cd8283 fragattack: scapy fix with Python 3.9 2021-01-12 22:48:32 +04:00
Mathy Vanhoef
95033755ae fragattack: track latest libwifi 2021-01-07 00:27:48 +04:00
Mathy Vanhoef
4fc8340205 fragattack: minor driver check bug 2021-01-05 20:45:34 +04:00
Mathy Vanhoef
1c7d9224b5 fragattack: mention ath9k_htc 11n fix in README 2020-12-19 04:50:50 +04:00
Mathy Vanhoef
ac5dea5903 fragattack: check hostap and driver for version 1.3 2020-12-19 04:47:04 +04:00
Mathy Vanhoef
c5648ebcd2 fragattacks: updated README for version 1.3 2020-12-19 00:50:26 +04:00
Mathy Vanhoef
f7d7681386 fragattack: support SAE with hash-to-element method 2020-12-19 00:30:29 +04:00
Mathy Vanhoef
35acc6dce2 fragattack: track latest libwifi 2020-12-18 22:47:40 +04:00
Mathy Vanhoef
641c4a5f2d fragattack: add --stay-up argument 2020-12-18 21:18:51 +04:00