Wireless CTS/RTS Flooder
This module sends 802.11 CTS/RTS requests to a
specific wireless peer, using the specified source address.
Module Options
|
ADDR_DST
|
TARGET MAC (e.g 00:DE:AD:BE:EF:00)
|
|
ADDR_SRC
|
Source MAC (not needed for CTS)
|
|
CHANNEL
|
The initial channel (default: 11)
|
|
DRIVER
|
The name of the wireless driver for lorcon
(default: autodetect)
|
|
INTERFACE
|
The name of the wireless interface (default:
wlan0)
|
|
NUM
|
Number of frames to send (default: 100)
|
|
TYPE
|
Type of Frame (RTS, CTS) (default: RTS)
|
|
VERBOSE
|
Enable detailed status messages
|
|
WORKSPACE
|
Specify the workspace for this module
|
Theory
RTS/CTS (Request to Send / Clear to Send) is the
optional mechanism used by the 802.11 wireless networking protocol to reduce
frame collisions introduced by the hidden node problem. Originally the protocol
fixed the exposed node problem as well, but modern RTS/CTS includes ACKs and
does not solve the exposed node problem.
A node wishing to send data initiates the process by
sending a Request to Send frame (RTS). The destination node replies with a
Clear To Send frame (CTS). Any other node receiving the RTS or CTS frame should
refrain from sending data for a given time (solving the hidden node problem).
The amount of time the node should wait before trying to get access to the
medium is included in both the RTS and the CTS frame. This protocol was
designed under the assumption that all nodes have the same transmission ranges.
RTS/CTS is an additional method to implement virtual
carrier sensing in Carrier sense multiple access with collision avoidance
(CSMA/CA). By default, 802.11 relies on physical carrier sensing only which is
known to suffer from the hidden node problem.
Source Code Demystified:
In this auxiliary module a very large number of RTS
and CTS packets are created and send to the wireless network in order to do
denial of service attack.This will create the collision in the network and
finally result in a denial of service.
As you can see below in the source code also two
different packet rts and cts are create using the function create_rts and
create_cts.
Demonstration
 |
| Attacker-1 |
 |
| Attacker-2 |
 |
| Attacker-3 |
Now lets look at victim machine:
 |
| Victim |
Comments
Post a Comment