hak5
/
lanturtle-modules
mirror of https://github.com/hak5/lanturtle-modules.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #3 from ShadGIT/gh-pages 

New Modules for LAN Turtle
pull/7/head
Darren Kitchen 2015-08-26 21:07:48 -07:00
parent 574a38a2e6 bf0f7aefca
commit 99158958db
2 changed files with 196 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

68
modules/clomac Normal file
View File

@ -0,0 +1,68 @@
#!/bin/bash /usr/lib/turtle/turtle_module
VERSION="1.1"
DESCRIPTION="Clone Client's MAC address into WAN interface"
AUTHOR="Shad"
: ${DIALOG_OK=0}
: ${DIALOG_CANCEL=1}
: ${DIALOG_HELP=2}
: ${DIALOG_EXTRA=3}
: ${DIALOG_ITEM_HELP=4}
: ${DIALOG_ESC=255}
function configure {
dialog --title "clomac" --msgbox "\n\
(\___/) \n\
(='.'=) Nothing to configure here.\n\
(\")_(\")\ \n\
" 9 72
}
function start {
if [ "`grep clomac /etc/dnsmasq.conf`" == "" ]; then
echo "dhcp-script=/tmp/clomac_pivot" >> /etc/dnsmasq.conf
fi
echo "#!/bin/bash" > /tmp/clomac_pivot
echo "/etc/turtle/modules/clomac start" >> /tmp/clomac_pivot
chmod 755 /tmp/clomac_pivot
echo "debug" >> /tmp/clomac.debug
CLIENT_MAC="`cat /tmp/dhcp.leases | tail -1 | awk '{ print $2; }'`"
if [ "$CLIENT_MAC" != "" ]; then
if [ "$CLIENT_MAC" != "`macchanger -s eth1 | awk '{ print $3; }'`" ]; then
ifconfig eth1 down
macchanger -s eth1 | awk '{ print $3; }' > /tmp/clomac.srcmac
macchanger -m "$CLIENT_MAC" eth1
ifconfig eth1 up
sleep 1
ETH1_IP="`ifconfig eth1 | grep "inet addr"`"
if [ "$ETH1_IP" == "" ]; then
killall -9 udhcpc
udhcpc -p /var/run/udhcpc-eth1.pid -s /lib/netifd/dhcp.script -f -t 0 -i eth1 -C
fi
fi
fi
}
function stop {
if [ "`grep clomac /etc/dnsmasq.conf`" != "" ]; then
cp /etc/dnsmasq.conf /etc/dnsmasq.conf.back
cat /etc/dnsmasq.conf.back | grep -v clomac > /etc/dnsmasq.conf
fi
rm -f /tmp/clomac_pivot
ifconfig eth1 down
macchanger -m `cat /tmp/clomac.srcmac` eth1
ifconfig eth1 up
}
function status {
if [ "`grep clomac /etc/dnsmasq.conf`" == "" ]; then
echo 0
elif [ -e /tmp/clomac_pivot ]; then
echo 1
fi
}

128
modules/upnp-portfwd Normal file
View File

@ -0,0 +1,128 @@
#!/bin/bash /usr/lib/turtle/turtle_module
VERSION="0.6"
DESCRIPTION="uPnP Port Forwarding"
AUTHOR="Shad"
CONF=/tmp/upnp_portfwd.form
: ${DIALOG_OK=0}
: ${DIALOG_CANCEL=1}
: ${DIALOG_HELP=2}
: ${DIALOG_EXTRA=3}
: ${DIALOG_ITEM_HELP=4}
: ${DIALOG_ESC=255}
function configure {
if [ -s /etc/config/upnp_portfwd ]
then
upnp_portfwd_lport=$(uci get upnp_portfwd.lport)
upnp_portfwd_rport=$(uci get upnp_portfwd.rport)
upnp_portfwd_proto=$(uci get upnp_portfwd.protocol)
else
touch /etc/config/upnp_portfwd
fi
dialog --ok-label "Submit" \
--help-button \
--title "uPnp Port Forwarding Configuration" \
--form "Port Forward\n\n\
Router Port: External port of router to be forwarded\n\
Local Port: Port of service running in Turtle's WAN\n\
Protocol: tcp or udp\n \n" 16 60 3\
"Router Port:" 1 1 "$upnp_portfwd_rport" 1 14 48 0 \
"Local Port:" 2 1 "$upnp_portfwd_lport" 2 14 48 0 \
"Protocol:" 3 1 "$upnp_portfwd_proto" 3 14 48 0 \
2>$CONF
return=$?
case $return in
$DIALOG_OK)
cat $CONF | {
read -r upnp_portfwd_rport
read -r upnp_portfwd_lport
read -r upnp_portfwd_proto
touch /etc/config/upnp_portfwd
uci set upnp_portfwd.lport="$upnp_portfwd_lport"
uci set upnp_portfwd.rport="$upnp_portfwd_rport"
uci set upnp_portfwd.protocol="$upnp_portfwd_proto"
uci commit upnp_portfwd
rm $CONF
};;
$DIALOG_CANCEL)
rm $CONF
clear
exit;;
$DIALOG_HELP)
dialog --title "Help" \
--msgbox "\
uPnP Portfwd is a service which provides automatic port forwarding when connected to some uPnP enabled routers.\nThis service is typically used to provide a
convenient and persistent DIRECT shell from the outside into the LAN Turtle so that a remote "proxy" server or host is not needed.\n*IF* the router is uPnP enabled
and forwards the port it would be possible to connect directly to the Turtle from any arbitrary/anonymous location, even from TOR.\n \n
Remote Port - External port on the router to be forwarded to the Turtle.\n \n\
Local Port - The port where a local service is running in the Turtle (Tipically 22 -ssh-)\n \n\
Protocol - TCP or UDP (tcp for ssh)\n \n\
Example: Per the defaults, the router will forward its external port 45000 to the LAN Turtle port 22. In this scenario one may establish a direct connection to the
LAN Turtle by ssh'ing into the router's external interface port 45000: ssh -p 45000 root@external.router.ip \n \n
While this won't work in many cases, it may come handy when it does, which is frequent for some telco provided SOHO routers.\n \n\
" 20 60
configure
;;
$DIALOG_ESC)
clear;;
esac
}
function start {
if [ ! -e "/etc/config/upnp_portfwd" ]; then
touch /etc/config/upnp_portfwd
uci set upnp_portfwd.lport="22"
uci set upnp_portfwd.rport="45000"
uci set upnp_portfwd.protocol="tcp"
uci commit upnp_portfwd
fi
if [ ! -e "/usr/bin/upnpc" ]; then
opkg install miniupnpc
fi
ETH1_IP="`ifconfig eth1 | grep "inet addr" | awk -F: '{ print $2; }' | awk '{ print $1; }'`"
iptables -t filter -I INPUT 1 -i eth1 -j ACCEPT # Kludge to allow uPnP work - Maybe a more specific way to do it?
upnpc -a $ETH1_IP $(uci get upnp_portfwd.lport) $(uci get upnp_portfwd.rport) $(uci get upnp_portfwd.protocol)
iptables -I INPUT 1 -i eth1 -p $(uci get upnp_portfwd.protocol) --dport $(uci get upnp_portfwd.lport) -j ACCEPT
FWDRULE="`upnpc -l | grep "$(uci get upnp_portfwd.rport)->" | tail -1`"
if [ "$FWDRULE" == "" ]; then
uci set upnp_portfwd.enabled="0"
else
uci set upnp_portfwd.enabled="1"
fi
uci commit upnp_portfwd
iptables -t filter -D INPUT -i eth1 -j ACCEPT
}
function stop {
iptables -t filter -I INPUT 1 -i eth1 -j ACCEPT
upnpc -d $(uci get upnp_portfwd.rport) $(uci get upnp_portfwd.protocol)
iptables -t filter -D INPUT -i eth1 -j ACCEPT
iptables -D INPUT -i eth1 -p $(uci get upnp_portfwd.protocol) --dport $(uci get upnp_portfwd.lport) -j ACCEPT
uci set upnp_portfwd.enabled="0"
uci commit upnp_portfwd
}
function status {
if [ "$(uci get upnp_portfwd.enabled)" == "1" ]; then
echo "1"
else
echo "0"
fi
}