|
|
|
|
@ -52,7 +52,7 @@ CHANNEL=1
|
|
|
|
|
# Displays the message in argument on the error output and exits
|
|
|
|
|
error()
|
|
|
|
|
{
|
|
|
|
|
echo "$1" >&2
|
|
|
|
|
printf '%s\n' "$1" >&2
|
|
|
|
|
clean
|
|
|
|
|
exit 1
|
|
|
|
|
}
|
|
|
|
|
@ -66,7 +66,7 @@ clean()
|
|
|
|
|
# Verifies the presence of the needed programs
|
|
|
|
|
check_dependencies()
|
|
|
|
|
{
|
|
|
|
|
which tcpdump >/dev/null \
|
|
|
|
|
command -v tcpdump >/dev/null \
|
|
|
|
|
|| error "tcpdump is required to run this program!"
|
|
|
|
|
|
|
|
|
|
if [ "$OS" = Linux ] ; then
|
|
|
|
|
@ -80,25 +80,25 @@ check_dependencies()
|
|
|
|
|
iface_set_channel()
|
|
|
|
|
{
|
|
|
|
|
echo "Setting interface $IFACE on channel $1..."
|
|
|
|
|
case $OS in
|
|
|
|
|
case "$OS" in
|
|
|
|
|
Linux)
|
|
|
|
|
iface_down
|
|
|
|
|
iwconfig $IFACE mode managed
|
|
|
|
|
iwconfig "$IFACE" mode managed
|
|
|
|
|
iface_up
|
|
|
|
|
iwconfig $IFACE channel $1
|
|
|
|
|
iwconfig "$IFACE" channel "$1"
|
|
|
|
|
;;
|
|
|
|
|
NetBSD | OpenBSD)
|
|
|
|
|
iface_down
|
|
|
|
|
ifconfig $IFACE media autoselect chan $1
|
|
|
|
|
ifconfig "$IFACE" media autoselect chan "$1"
|
|
|
|
|
iface_up
|
|
|
|
|
;;
|
|
|
|
|
*)
|
|
|
|
|
error "Your OS is not supported."
|
|
|
|
|
;;
|
|
|
|
|
esac \
|
|
|
|
|
&& echo "Channel set." \
|
|
|
|
|
|| error "Cannot set the channel!"
|
|
|
|
|
|
|
|
|
|
echo "Channel set."
|
|
|
|
|
iface_monitor
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
@ -107,54 +107,56 @@ iface_monitor()
|
|
|
|
|
{
|
|
|
|
|
iface_down
|
|
|
|
|
|
|
|
|
|
echo -n "Switching interface $IFACE to monitor mode... "
|
|
|
|
|
case $OS in
|
|
|
|
|
printf 'Switching interface %s to monitor mode... ' "$IFACE"
|
|
|
|
|
case "$OS" in
|
|
|
|
|
Linux)
|
|
|
|
|
iwconfig $IFACE mode monitor
|
|
|
|
|
iwconfig "$IFACE" mode monitor
|
|
|
|
|
;;
|
|
|
|
|
NetBSD | OpenBSD)
|
|
|
|
|
ifconfig $IFACE media autoselect mediaopt monitor
|
|
|
|
|
ifconfig "$IFACE" media autoselect mediaopt monitor
|
|
|
|
|
;;
|
|
|
|
|
*)
|
|
|
|
|
error "Your OS is not supported."
|
|
|
|
|
;;
|
|
|
|
|
esac \
|
|
|
|
|
&& echo "OK." \
|
|
|
|
|
|| error "Cannot switch the interface to monitor mode!"
|
|
|
|
|
|
|
|
|
|
echo "OK."
|
|
|
|
|
iface_up
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# Shuts down the capture interface
|
|
|
|
|
iface_down()
|
|
|
|
|
{
|
|
|
|
|
echo -n "Shuting down interface $IFACE... "
|
|
|
|
|
ifconfig $IFACE down && echo "OK." \
|
|
|
|
|
printf 'Shuting down interface %s... ' "$IFACE"
|
|
|
|
|
ifconfig "$IFACE" down \
|
|
|
|
|
|| error "Cannot shut down the interface!"
|
|
|
|
|
echo "OK."
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# Turns on the capture interface
|
|
|
|
|
iface_up()
|
|
|
|
|
{
|
|
|
|
|
echo -n "Turning up interface $IFACE... "
|
|
|
|
|
ifconfig $IFACE up && echo "OK." \
|
|
|
|
|
printf 'Turning up interface %s... ' "$IFACE"
|
|
|
|
|
ifconfig "$IFACE" up \
|
|
|
|
|
|| error "Cannot turn the interface up!"
|
|
|
|
|
echo "OK."
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# Invokes tcpdump and displays the number of packets captured
|
|
|
|
|
invoke_tcpdump()
|
|
|
|
|
{
|
|
|
|
|
NCAP=$(tcpdump -i $IFACE -c $NB_PKT -w "$FILE" 2>&1 \
|
|
|
|
|
NCAP=$(tcpdump -i "$IFACE" -c "$NB_PKT" -w "$FILE" 2>&1 \
|
|
|
|
|
| sed -nr 's/([[:digit:]]+) packets received by filter$/\1/p')
|
|
|
|
|
[ "$NCAP" = "" ] \
|
|
|
|
|
[ -z "$NCAP" ] \
|
|
|
|
|
&& error "Error parsing the tcpdump messages! (NCAP=\"$NCAP\")"
|
|
|
|
|
echo $NCAP
|
|
|
|
|
echo "$NCAP"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
# Waits for a number of seconds, then kills any tcpdump process
|
|
|
|
|
wait_tcpdump()
|
|
|
|
|
{
|
|
|
|
|
sleep $1
|
|
|
|
|
sleep "$1"
|
|
|
|
|
echo "$1 seconds passed, killing all tcpdump processes..."
|
|
|
|
|
pkill tcpdump
|
|
|
|
|
}
|
|
|
|
|
@ -162,15 +164,15 @@ wait_tcpdump()
|
|
|
|
|
# Gets some information about the running system
|
|
|
|
|
gather_system_information()
|
|
|
|
|
{
|
|
|
|
|
echo -n "Gathering system information... "
|
|
|
|
|
printf "Gathering system information... "
|
|
|
|
|
# Kernel & other information:
|
|
|
|
|
uname -a >"$DESTDIR"/uname-a
|
|
|
|
|
# Wi-Fi interface information:
|
|
|
|
|
ifconfig $IFACE >"$DESTDIR"/ifconfig_$IFACE
|
|
|
|
|
[ $OS = Linux ] \
|
|
|
|
|
&& iwconfig $IFACE >"$DESTDIR"/iwconfig_$IFACE
|
|
|
|
|
ifconfig "$IFACE" >"$DESTDIR/ifconfig_$IFACE"
|
|
|
|
|
[ "$OS" = Linux ] \
|
|
|
|
|
&& iwconfig "$IFACE" >"$DESTDIR/iwconfig_$IFACE"
|
|
|
|
|
# PCI devices:
|
|
|
|
|
which lspci >/dev/null \
|
|
|
|
|
command -v lspci >/dev/null \
|
|
|
|
|
&& lspci >"$DESTDIR"/lspci \
|
|
|
|
|
|| echo "lspci not available! Please install pciutils. "
|
|
|
|
|
# USB devices:
|
|
|
|
|
@ -183,14 +185,14 @@ gather_system_information()
|
|
|
|
|
# Gets information about the plugged usb devices
|
|
|
|
|
gather_usb_devices()
|
|
|
|
|
{
|
|
|
|
|
case $OS in
|
|
|
|
|
case "$OS" in
|
|
|
|
|
Linux)
|
|
|
|
|
which lsusb >/dev/null \
|
|
|
|
|
command -v lsusb >/dev/null \
|
|
|
|
|
&& lsusb >"$DESTDIR"/lsusb \
|
|
|
|
|
|| echo "lsusb not available! Please install usbutils. "
|
|
|
|
|
;;
|
|
|
|
|
NetBSD | OpenBSD | DragonFly)
|
|
|
|
|
which usbstats >/dev/null \
|
|
|
|
|
command -v usbstats >/dev/null \
|
|
|
|
|
&& usbstats >"$DESTDIR"/usbstats \
|
|
|
|
|
|| echo "usbstats not available! Please install usbutil. "
|
|
|
|
|
;;
|
|
|
|
|
@ -200,7 +202,7 @@ gather_usb_devices()
|
|
|
|
|
# Gets information about the loaded kernel modules
|
|
|
|
|
gather_kernel_modules()
|
|
|
|
|
{
|
|
|
|
|
case $OS in
|
|
|
|
|
case "$OS" in
|
|
|
|
|
Linux)
|
|
|
|
|
lsmod >"$DESTDIR"/lsmod
|
|
|
|
|
;;
|
|
|
|
|
@ -217,7 +219,7 @@ gather_kernel_modules()
|
|
|
|
|
create_archive()
|
|
|
|
|
{
|
|
|
|
|
TARBALL="${DESTDIR}.tar.gz"
|
|
|
|
|
DIR=`basename "$DESTDIR"`
|
|
|
|
|
DIR=$(basename "$DESTDIR")
|
|
|
|
|
tar -C "$TMP" -czf "$TARBALL" "$DIR"
|
|
|
|
|
echo "Archive \"$TARBALL\" created."
|
|
|
|
|
}
|
|
|
|
|
@ -231,14 +233,14 @@ create_archive()
|
|
|
|
|
# Interface to capture from:
|
|
|
|
|
IFACE=$1
|
|
|
|
|
# Machine information:
|
|
|
|
|
OS=`uname`
|
|
|
|
|
OS_RELEASE=`uname -r`
|
|
|
|
|
HOSTNAME=`uname -n`
|
|
|
|
|
OS=$(uname)
|
|
|
|
|
OS_RELEASE=$(uname -r)
|
|
|
|
|
HOSTNAME=$(uname -n)
|
|
|
|
|
# Current date:
|
|
|
|
|
DATE=`date +%FT%H%M%S`
|
|
|
|
|
DATE=$(date +%FT%H%M%S)
|
|
|
|
|
# Temporary destination directory:
|
|
|
|
|
DESTDIR=$(mktemp -d \
|
|
|
|
|
"$TMP"/capture_${OS}-${OS_RELEASE}_${IFACE}_${HOSTNAME}_${DATE}_XXX)
|
|
|
|
|
"$TMP/capture_${OS}-${OS_RELEASE}_${IFACE}_${HOSTNAME}_${DATE}_XXX")
|
|
|
|
|
# Update capture file with full path:
|
|
|
|
|
FILE="$DESTDIR/$FILE"
|
|
|
|
|
|
|
|
|
|
@ -246,26 +248,25 @@ check_dependencies
|
|
|
|
|
|
|
|
|
|
echo "Trying to capture $NB_PKT packets..."
|
|
|
|
|
CAPTURED=0
|
|
|
|
|
while [ $CAPTURED -eq 0 -a $CHANNEL -le 14 ] ; do
|
|
|
|
|
while [ "$CAPTURED" -eq 0 ] && [ "$CHANNEL" -le 14 ] ; do
|
|
|
|
|
echo
|
|
|
|
|
iface_set_channel $CHANNEL
|
|
|
|
|
wait_tcpdump $TIMEOUT &
|
|
|
|
|
iface_set_channel "$CHANNEL"
|
|
|
|
|
wait_tcpdump "$TIMEOUT" &
|
|
|
|
|
CAPTURED=$(invoke_tcpdump)
|
|
|
|
|
[ $CAPTURED -eq 0 ] \
|
|
|
|
|
[ "$CAPTURED" -eq 0 ] \
|
|
|
|
|
&& echo "No packet captured on channel $CHANNEL." \
|
|
|
|
|
|| echo "$CAPTURED packets captured on channel $CHANNEL."
|
|
|
|
|
CHANNEL=`expr $CHANNEL + 1`
|
|
|
|
|
CHANNEL=$((CHANNEL + 1))
|
|
|
|
|
done
|
|
|
|
|
|
|
|
|
|
echo
|
|
|
|
|
[ $CAPTURED -gt 0 ] \
|
|
|
|
|
&& echo "Capture file \"$FILE\" created." \
|
|
|
|
|
[ "$CAPTURED" -gt 0 ] \
|
|
|
|
|
|| error "Failed to capture any packet!"
|
|
|
|
|
echo "Capture file \"$FILE\" created."
|
|
|
|
|
|
|
|
|
|
gather_system_information
|
|
|
|
|
create_archive
|
|
|
|
|
clean
|
|
|
|
|
|
|
|
|
|
echo
|
|
|
|
|
echo "You can now shut down the interface $IFACE if you want:"
|
|
|
|
|
echo " ifconfig $IFACE down"
|
|
|
|
|
printf '\nYou can now shut down the interface %s if you would like:\n' "$IFACE"
|
|
|
|
|
printf '\tifconfig %s down\n' "$IFACE"
|
|
|
|
|
|
